Re: [Dovecot] Problem in deliver (Panic: file index-mail-headers.c ...)

[Stefan Roese]

Hi Timo,

On Tuesday 26 May 2009 22:54:31 Timo Sirainen wrote:
> On Wed, 2009-05-06 at 13:16 +0200, Stefan Roese wrote:
> > Hi All,
> >
> > I'm experiencing a problem with some mails in deliver. Here the logged
> > error message:
> >
> > deliver(ste...@roese.nl): 2009-05-06 11:57:36 Panic: file
> > index-mail-headers.c: line 141 (index_mail_parse_header_finish):
> > assertion failed: ((match[match_idx] & HEADER_MATCH_FLAG_FOUND) == 0)
>
> Fixed: http://hg.dovecot.org/dovecot-1.1/rev/e596c98605dd
>
> It broke if the message body started with a space or tab.

Great, thanks.

Do you plan on releasing a new 1.1.x version soon? Or would you suggest to 
build/run the latest 1.1.x version (without release) from the Mercurial 
repository instead?

BTW: Is this problem also available or already fixed in the 1.2 (and later) 
versions?

Thanks.

Best regards,
Stefan

Re: [Dovecot] Clustering dovecot?

[Seth Mattinen]

dove...@corwyn.net wrote:
> At 02:00 PM 5/27/2009, Seth Mattinen wrote:
>> You're going to need something in front of the two servers to abstract
>> the connections (another poster recommended ultramonkey) if you want
>> them both to be serviced by the same IP address. My suggestion was to
>> use active/standby, where the standby doesn't "up" its mail IP unless it
>> detects the primary is dead, typically through some kind of heartbeat;
>> not separate clients across the two servers.
> 
> I'm not sure what you mean by "client"; do you mean instances of dovecot?
> 
> wouldn't that be two server instances, each running it's own copy of
> dovecot?
> 

Yes, two totally separate servers, either running shared storage (still
a common failure point, unless you have redundancy there too) or one
that waits in the wings in standby mode until the primary fails using
DBRD or something else to keep the mail stores in sync.

Their website explains it all better than I can:
http://www.drbd.org/

~Seth

[Dovecot] expire: mysql table creation error

[John Fawcett]

Don't know if anyone found this already (couldn't see anything in the
archives about it) but maybe this is useful to someone else who finds
the same problem.

When following the instructions for setting up expire on v1.2+ for mysql
backend at http://wiki.dovecot.org/Plugins/Expire I got the following error:

mysql> CREATE TABLE expires (
->   username varchar(100) not null,
->   mailbox varchar(255) not null,
->   expire_stamp integer not null,
->   primary key (username, mailbox)
-> );
ERROR 1071 (42000): Specified key was too long; max key length is 1000 bytes

that's because it's a utf8 database where every char is 3 bytes so a 355
char index is 1065 bytes.

it worked ok with the following modification:
mysql> CREATE TABLE expires (  
->   username varchar(100) not null,
->   mailbox varchar(255) not null,
->   expire_stamp integer not null,
->   primary key (username, mailbox(200))
->   );
Query OK, 0 rows affected (0.00 sec)

but maybe that's not such a good primary key,
probably better to do:

mysql> CREATE TABLE expires (  
->   id integer not null auto_increment,
->   username varchar(100) not null,  
->   mailbox varchar(255) not null,  
->   expire_stamp integer not null,  
->   primary key (id),
->   key (username, mailbox(200))
->   );
Query OK, 0 rows affected (0.00 sec)

John

[Dovecot] What does "a" flag in Maildir format mean?

[Max Ivanov]

Here is sample filename from Maildir:

1243423383.M745917P32169.termserv1,W=1295:2,Sa

1) why there is no S= field? It definetely differs from
1295.I've not quota plugin, could it  be the reason of this?
2) what does "a" flag mean? I not found any description of this
neither in Maildir spec nor on the Dovecot wiki.

Re: [Dovecot] v3.0 architecture

[Max Ivanov]

> "Protocol buffers are Google's ... blah-blah-blah ... using a variety of
> languages - Java, C++, or Python."
>
> I can't find good old plain C in this "variety of languages" :(
>

Protocol buffers is flexible message format specification, there are
plenty implementations of it , including C based:
http://code.google.com/p/protobuf-c/

Re: [Dovecot] Clustering dovecot?

[Noel Butler]

On Wed, 2009-05-27 at 21:47 -0400, dove...@corwyn.net wrote:

> At 04:21 PM 5/27/2009, you wrote:
> >On Wed, 2009-05-27 at 14:02 -0400, dove...@corwyn.net wrote:
> >yes, and use NAS  not SAN
> 
> Why NAS and not SAN?
> 

Because the two technologies differ and it permits you to run non
clustering FS's,  remember, SAN is block device, so it can only do one
single write operation at a time, NAS, as many as you can throw at it,
each has its own pros and cons, for mail NAS is perfect, for databases,
SAN is better.


> >you could also use DNS load balancing in a away that has  0 cache TTL on
> >MX addresses, thats better than a software based LB if you cant afford a
> >hardware LB 
> I'm not sure I understand that. The MX records have little to do with


Your correct (too early in the morning when I sent that) but the same
applies, if its for redundancy set 0 in DNS record for the hosts so if
one fails, retrying has a better chance of getting the alive one, if you
are that worried about it, get yourself a hardware solution, there are
plenty around and cheap enough these days.

Re: [Dovecot] Clustering dovecot?

[dovecot]

At 06:39 PM 5/27/2009, Timo Sirainen wrote:

If you don't necessarily need load-balancing to multiple servers, it
should be faster and more reliable to use active/passive and some
(automated) failover between them. If you use active/active servers, you
either need some clustered filesystem (not that efficient) or NFS (kind
of sucks too).


Is active/passive a dovecot configuration option?

Rick

Re: [Dovecot] Clustering dovecot?

[dovecot]

At 04:21 PM 5/27/2009, you wrote:

On Wed, 2009-05-27 at 14:02 -0400, dove...@corwyn.net wrote:
yes, and use NAS  not SAN


Why NAS and not SAN?


you could also use DNS load balancing in a away that has  0 cache TTL on
MX addresses, thats better than a software based LB if you cant afford a
hardware LB


I'm not sure I understand that. The MX records have little to do with 
Dovecot richt (as that would be where things look for the SMTP 
record), which would be inbound mail which is handled by the SMTP 
server (in my case postfix).


I can see load balancing DNS for what the IMAP server is, but why the 
MX records?


Rick

Re: [Dovecot] Clustering dovecot?

[dovecot]

At 02:00 PM 5/27/2009, Seth Mattinen wrote:

You're going to need something in front of the two servers to abstract
the connections (another poster recommended ultramonkey) if you want
them both to be serviced by the same IP address. My suggestion was to
use active/standby, where the standby doesn't "up" its mail IP unless it
detects the primary is dead, typically through some kind of heartbeat;
not separate clients across the two servers.


I'm not sure what you mean by "client"; do you mean instances of dovecot?

wouldn't that be two server instances, each running it's own copy of dovecot?

Rick


~Seth

Re: [Dovecot] Clustering dovecot?

[Timo Sirainen]

On Wed, 2009-05-27 at 14:02 -0400, dove...@corwyn.net wrote:
> At 01:49 PM 5/27/2009, Rick Romero wrote:
> 
> >>But what it sounds like you're saying is that there's no good way to
> >>run dovecot so that if the single server it's on fails I can keep
> >>service availability?
> >
> >If you have 2 dovecot servers with your mailboxes stored on a SAN
> >(over NFS), you can front your 2 dovecot machines with a load balancer
> >like UltraMonkey (LHA/Heartbeat).
> 
> Would this mean I would configure two identical dovecot systems, and 
> point them both at the same SAN space? (so instead of having a 
> "clustered" environment both instances of dovecot are just using 
> shared filespace?)  Isn't there a risk there of both dovecot 
> instances writing a file/email with the same filename?

If you don't necessarily need load-balancing to multiple servers, it
should be faster and more reliable to use active/passive and some
(automated) failover between them. If you use active/active servers, you
either need some clustered filesystem (not that efficient) or NFS (kind
of sucks too).


signature.asc
Description: This is a digitally signed message part

Re: [Dovecot] Testing 1.2

[Raymond Lillard]

Marc Perkel wrote:
> Just installed it. Upgraded from 1.1.15. So far so good.
> 
Nice to know, but it would be more useful if you were to
include some details about your test environment.

Re: [Dovecot] === SPAM === test of mailing list

[Karsten Bräckelmann]

On Wed, 2009-05-27 at 17:16 +0200, Ioannis Aslanidis wrote:
> And this may be why:

>   *  3.9 FORGED_MUA_OUTLOOK Forged mail pretending to be from MS Outlook

Ugh. :/  I've been looking into a FP for that rule recently, though the
issue I spotted is different from these headers. Hmm, and it actually
doesn't trigger that rule for me.

Ah, that would be why.  Ioannis, you're running an old version of SA. :)
This is an old FP that's been fixed long ago. Please update your SA
version 3.1.9 to the latest stable available 3.2.5 -- you'll find you
don't need to lower your required_score threshold to 3.5 either.

  guenther

-- 
char *t="\10pse\0r\0dtu...@ghno\x4e\xc8\x79\xf4\xab\x51\x8a\x10\xf4\xf4\xc4";
main(){ char h,m=h=*t++,*x=t+2*h,c,i,l=*x,s=0; for (i=0;i>=1)||!t[s+h]){ putchar(t[s]);h=m;s=0; }}}

Re: [Dovecot] Clustering dovecot?

[Noel Butler]

On Wed, 2009-05-27 at 14:02 -0400, dove...@corwyn.net wrote:


> 
> Would this mean I would configure two identical dovecot systems, and 
> point them both at the same SAN space? (so instead of having a 

yes, and use NAS  not SAN

you could also use DNS load balancing in a away that has  0 cache TTL on
MX addresses, thats better than a software based LB if you cant afford a
hardware LB

Re: [Dovecot] v3.0 architecture

[Peter Lindgren]

Timo Sirainen skrev:
The big problem is what the protocol should be. Use some existing RPC 
protocol? It should be something extensible so that a plugin in imap 
process can talk to a plugin in storage process, without the base 
processes knowing anything about the details (e.g. imap-quota plugin 
asking quota usage from storage's quota plugin). In any case the client 
side API should be asynchronous. That can make it annoyingly difficult 
to use though. Wonder if I could switch to erlang or something for the 
imap/pop3 processes :)


SOAP / BEEP: http://www.faqs.org/rfcs/rfc3288.html

You will need to thread calls, waiting for long-running commands. Unless 
you switch to Erlang, of course :-)


If you don't overdo the XML document part, you can use your own 
implementation or use saxon (sp?) or another serial XML processor.


/Peter
--
Peter Lindgren

Re: [Dovecot] RFC 3501 section 7

[Jose Celestino]

On Qua, 2009-05-27 at 12:27 -0700, Scott Haneda wrote:
> Hello, been lurking a while, about to move over to Dovecot soon.  I  
> have a nice test machine up and running.  My previous email server  
> when talking IMAP to Apple Mail, will eventually go "deaf" and new  
> messages will not make it to the Inbox of Apple Mail Client.  A  
> restart of the desktop application is required.
> 
> I am told that the reason for this is that my current email server  
> adheres to RFC 3501, specifically section 7, the second paragraph of  
> which says:
> The client MUST be prepared to accept any response at all times.
> 
> Apparently, Apple Mail is not adhering to that, and my email server is  
> sending out that type of response.  However, I look at this list, for  
> which I am not entirely sure how accurate the actual test is:
>   http://www.imapwiki.org/ImapTest/ServerStatus
> 
> It lists Dovecot as one of only two that are fully compliant IMAP  
> servers.  Congrats on that.
> 
> My questions are:
> Does Dovecot in fact support correctly the above mentioned RFC and  
> subsection?  I assume so.  That being the case, I have not had issues  
> in my testing of Dovecot, nor heard reports of Apple Mail and IMAP  
> having any significant problems.
> 

That's because Timo does a hell of a good job of fixing things, in the
case those that Apple gets wrong.

Take this for instance:

http://hg.dovecot.org/dovecot-1.1/rev/4407b7265afd

It brought some people here to tears for not being able to use Mail.app
but Timo promptly got a workaround (dunno about the bug he opened on
Apple at the time though).

> How, if that is the case, can Apple Mail and Dovecot work well with  
> each other, and my current email server is not able to?
> 

Guess so, from what I said.

-- Jose Celestino SAPO.pt::Systems http://www.sapo.pt
- *
Progress (n.): The process through which Usenet has evolved from smart
people in front of dumb terminals to dumb people in front of smart
terminals.

Re: [Dovecot] Dovecot and Phpgroupware compatibility

[Scott Silva]

on 5-27-2009 6:20 AM Carlos Xavier spake the following:
> Hi,
> I am resending this email, since the fist one didn't hit the list.

Yes it did!





signature.asc
Description: OpenPGP digital signature

[Dovecot] RFC 3501 section 7

[Scott Haneda]

Hello, been lurking a while, about to move over to Dovecot soon.  I  
have a nice test machine up and running.  My previous email server  
when talking IMAP to Apple Mail, will eventually go "deaf" and new  
messages will not make it to the Inbox of Apple Mail Client.  A  
restart of the desktop application is required.


I am told that the reason for this is that my current email server  
adheres to RFC 3501, specifically section 7, the second paragraph of  
which says:

   The client MUST be prepared to accept any response at all times.

Apparently, Apple Mail is not adhering to that, and my email server is  
sending out that type of response.  However, I look at this list, for  
which I am not entirely sure how accurate the actual test is:

http://www.imapwiki.org/ImapTest/ServerStatus

It lists Dovecot as one of only two that are fully compliant IMAP  
servers.  Congrats on that.


My questions are:
Does Dovecot in fact support correctly the above mentioned RFC and  
subsection?  I assume so.  That being the case, I have not had issues  
in my testing of Dovecot, nor heard reports of Apple Mail and IMAP  
having any significant problems.


How, if that is the case, can Apple Mail and Dovecot work well with  
each other, and my current email server is not able to?


My primary reason for moving to Dovecot is to not be burdened by this  
issue, as well as have what I consider to be a more advanced storage  
mechanism for the actual messages.  What I would like to avoid, is  
spending a lot of time migrating thousands of users to a new system,  
to only have them burdened by the same inability to have email come to  
them without an application relaunch.


Thank you for any insight on this.

* I have filed a bug report with Apple, which was accepted.  Their  
system does not allow me to see the status on the report once it has  
been closed.

--
Scott * If you contact me off list replace talklists@ with scott@ *

[Dovecot] A few easy pam and virtual domains questions

[Mauricio Tavares]

  I am using dovecot with postfix, which was setup to do virtual
domains. Dovecot is setup to authenticate against pam (I know, I know)
and knows to look for email in /var/spool/vmail/:

virtual_mailbox_base = /var/spool/vmail

I also have virtual_mailbox_maps defined as

virtual_mailbox_maps = hash:/etc/postfix/vmaps.txt

where I currently only have one account,

% cat /etc/postfix/vmaps.txt
r...@domain.com domain.com/raub/
%

Inside raub we have the usual 3 directories, new,cur, and tmp. When I
try to login through imap as r...@domain.com@mail.domain.com (i.e.
since we are doing the virtual domain thingie, the username has to
indicate the domain it belongs to), it will not take it. But, if I
login as r...@mail.domain.com, it has no problems authenticating.
However, it now expects to retrieve email from /var/spool/vmail/raub
instead of /var/spool/vmail/domain.com/raub. Why would it be doing
that? Could it be that pam reports raub to be a local account and as a
result simply ignoring vmaps.txt?

I asked dovecot to log everything it could. When I checked the log
file, the following line screamed at me:

dovecot: May 27 14:40:28 Info: IMAP(raub): maildir++:
root=/var/spool/vmail//raub, index=, control=,
inbox=/var/spool/vmail//raub

Note the "//" in root and inbox declarations; between those slashes I
would expect to be domain.com.

Compounding the problem, and perhaps a clue of how pam is telling what
these accounts are, postfix is completely ignoring /var/spool/vmail,
placing the emails in /home/raub/Maildir (account is actually being
nfs-automounted and user authenticated through ldap through pam). Once
again I am guessing it too is being told raub is a local user; am I
correct?

Re: [Dovecot] v3.0 architecture

[LEVAI Daniel]

On Wednesday 27 May 2009 20.14.01 Aria Stewart wrote:
> > The big problem is what the protocol should be. Use some existing
> > RPC protocol? It should be something extensible so that a plugin in
> > imap process can talk to a plugin in storage process, without the
> > base processes knowing anything about the details (e.g. imap-quota
> > plugin asking quota usage from storage's quota plugin). In any case
> > the client side API should be asynchronous. That can make it
> > annoyingly difficult to use though. Wonder if I could switch to
> > erlang or something for the imap/pop3 processes :)
>
> process-to-process D-Bus!
Pleeess. Do not need to bloat dovecot with heavy lib-depends, AT ALL.

Daniel

-- 
LÉVAI Dániel
PGP key ID = 0x4AC0A4B1
Key fingerprint = D037 03B9 C12D D338 4412  2D83 1373 917A 4AC0 A4B1

Re: [Dovecot] v3.0 architecture

[Aria Stewart]

The big problem is what the protocol should be. Use some existing  
RPC protocol? It should be something extensible so that a plugin in  
imap process can talk to a plugin in storage process, without the  
base processes knowing anything about the details (e.g. imap-quota  
plugin asking quota usage from storage's quota plugin). In any case  
the client side API should be asynchronous. That can make it  
annoyingly difficult to use though. Wonder if I could switch to  
erlang or something for the imap/pop3 processes :)


process-to-process D-Bus!

smime.p7s
Description: S/MIME cryptographic signature

Re: [Dovecot] setgid error

[Roy Sigurd Karlsbakk]

On 26. mai. 2009, at 01.51, Timo Sirainen wrote:


On Mon, 2009-05-25 at 11:50 +0200, Roy Sigurd Karlsbakk wrote:

On 25. mai. 2009, at 00.12, Timo Sirainen wrote:


On Sun, 2009-05-24 at 12:17 +0200, Roy Sigurd Karlsbakk wrote:

mailbox_command = procmail -a "$EXTENSION"
mailbox_transport = dovecot


I guess the mailbox_command is ignored and it really uses dovecot
transport? What does the dovecot line look like in master.cf?



dovecot   unix  -   n   n   -   -   pipe
flags=DRhu user=dovecot:dovecot argv=/usr/lib/dovecot/deliver -f $
{sender} -d ${recipient}


Don't use dovecot user here or in your userdb.
http://wiki.dovecot.org/UserIds


Can someone please give me an example config that works? I've tried  
multiple different configurations, but I just get stuck. The docs  
don't really say much about what should be used either. I tried making  
a uid 500 user and setting minimum uid to 500, but I still got an error.


roy
--
Roy Sigurd Karlsbakk
(+47) 97542685 / 98013356
r...@karlsbakk.net
http://blogg.karlsbakk.net/
--
I all pedagogikk er det essensielt at pensum presenteres  
intelligibelt. Det er et elementært imperativ for alle pedagoger å  
unngå eksessiv anvendelse av idiomer med fremmed opprinnelse. I de  
fleste tilfeller eksisterer adekvate og relevante synonymer på norsk.

Re: [Dovecot] Clustering dovecot?

[dovecot]

At 01:49 PM 5/27/2009, Rick Romero wrote:


But what it sounds like you're saying is that there's no good way to
run dovecot so that if the single server it's on fails I can keep
service availability?


If you have 2 dovecot servers with your mailboxes stored on a SAN
(over NFS), you can front your 2 dovecot machines with a load balancer
like UltraMonkey (LHA/Heartbeat).


Would this mean I would configure two identical dovecot systems, and 
point them both at the same SAN space? (so instead of having a 
"clustered" environment both instances of dovecot are just using 
shared filespace?)  Isn't there a risk there of both dovecot 
instances writing a file/email with the same filename?


(and I presume also have my user mysql config also stored and shared 
on the SAN between the two servers?).


RickS

Re: [Dovecot] Clustering dovecot?

[Seth Mattinen]

dove...@corwyn.net wrote:
> At 01:17 PM 5/27/2009, Seth Mattinen wrote:
>> You're probably looking for Dovecot replication, which as far as I'm
>> aware, has not made itself known in a functional form yet. I really want
>> to see master/master replication.
> 
> I at least don't think I am - I think I'd rather run dovecot with two
> front-end servers clustered to a backend SAN. If I"m running two
> separate servers then all of my clients (which i can point to only 1 IP)
> I think woudl go down if "their" server went  down.


You're going to need something in front of the two servers to abstract
the connections (another poster recommended ultramonkey) if you want
them both to be serviced by the same IP address. My suggestion was to
use active/standby, where the standby doesn't "up" its mail IP unless it
detects the primary is dead, typically through some kind of heartbeat;
not separate clients across the two servers.

~Seth

Re: [Dovecot] (no subject) LDAP authentication binds with special chars

[Patrick Hemmen]

Sorry for the missing subject.


>Hi,
>
>I use a OpenLDAP for authentication. To authenticate a full DN as the user 
>name must be used, like "cn=jim,ou=users,dc=example,dc=com". There are several 
>domains, like example2.com and example3.com. I want to use Dovecot with ldap 
>and >authentication binds. For testing I use "auth_bind_userdn = 
>cn=%n,ou=users,dc=%d" and the user name must provide as  
>"j...@example,dc=com". To allow the special chars ("=,") in user name, I 
>extend "auth_username_chars".
>Now my questions. Exists a real chance to attack the ldap directory with the 
>extended "auth_username_chars"? And it's possible to use authentication binds 
>with the regular "auth_username_chars" and a provided user names like 
>>"j...@example.com" in my special ldap directory structure?
>
>Thanks in advance
>- Patrick 

Re: [Dovecot] Clustering dovecot?

[Rick Romero]

Quoting dove...@corwyn.net:


At 01:17 PM 5/27/2009, Seth Mattinen wrote:

You're probably looking for Dovecot replication, which as far as I'm
aware, has not made itself known in a functional form yet. I really want
to see master/master replication.


I at least don't think I am - I think I'd rather run dovecot with  
two front-end servers clustered to a backend SAN. If I"m running two  
separate servers then all of my clients (which i can point to only 1  
IP) I think woudl go down if "their" server went  down.


But what it sounds like you're saying is that there's no good way to  
run dovecot so that if the single server it's on fails I can keep  
service availability?


If you have 2 dovecot servers with your mailboxes stored on a SAN  
(over NFS), you can front your 2 dovecot machines with a load balancer  
like UltraMonkey (LHA/Heartbeat).


Rick

Re: [Dovecot] Clustering dovecot?

[dovecot]

At 01:17 PM 5/27/2009, Seth Mattinen wrote:

You're probably looking for Dovecot replication, which as far as I'm
aware, has not made itself known in a functional form yet. I really want
to see master/master replication.


I at least don't think I am - I think I'd rather run dovecot with two 
front-end servers clustered to a backend SAN. If I"m running two 
separate servers then all of my clients (which i can point to only 1 
IP) I think woudl go down if "their" server went  down.


But what it sounds like you're saying is that there's no good way to 
run dovecot so that if the single server it's on fails I can keep 
service availability?


Rick

[Dovecot] (no subject)

[Patrick Hemmen]

Hi,

I use a OpenLDAP for authentication. To authenticate a full DN as the user name 
must be used, like "cn=jim,ou=users,dc=example,dc=com". There are several 
domains, like example2.com and example3.com. I want to use Dovecot with ldap 
and authentication binds. For testing I use "auth_bind_userdn = 
cn=%n,ou=users,dc=%d" and the user name must provide as  "j...@example,dc=com". 
To allow the special chars ("=,") in user name, I extend "auth_username_chars".
Now my questions. Exists a real chance to attack the ldap directory with the 
extended "auth_username_chars"? And it's possible to use authentication binds 
with the regular "auth_username_chars" and a provided user names like 
"j...@example.com" in my special ldap directory structure?

Thanks in advance
- Patrick 

Re: [Dovecot] Capability problems dovecot 2.0

[Rich Wales]

> I never said anything about breaking Thunderbird.

Sorry if I misinterpreted your response to reg9...@yahoo.de (when
he said that your proposed change "would actually just break with a
rather common client and change behaviour to all previous versions").

-- 
Rich Wales  /  ri...@richw.org  /  ri...@stanford.edu
Wikipedia:  http://en.wikipedia.org/wiki/User:Richwales
Facebook:   http://www.new.facebook.com/profile.php?id=206680

Re: [Dovecot] Clustering dovecot?

[Seth Mattinen]

dove...@corwyn.net wrote:
> 
> 
> 
> Currently I have a mail server running postfix and dovecot with users in
> mysql. I have Outlook (blich) clients checking IMAP mail on the server.
> I'd like to build some fault-tolerance into that system in case I have
> hardware failure.
> 
> I've read through: http://wiki.dovecot.org/MailLocation/SharedDisk but I
> feel I need more information. My basic understanding is that I'll need 2
> clustered systems running with shared disk space and shared IP. 
> Performance/load-balancing isn't an issue for me, it's just
> fault-tolerance that I'm worried about.
> 
> I found a nice long doc for Cyrus IMAP
> (http://cyrusimap.web.cmu.edu//ag.html), anything similar for dovecot?
> 

You're probably looking for Dovecot replication, which as far as I'm
aware, has not made itself known in a functional form yet. I really want
to see master/master replication.

I was working on coming up with something myself in an active/standby
setup using DRBD. If the heartbeat dies, DRBD on the standby fires up
its Dovecot and takes over. Vice-versa for the primary recovering: shut
down standby and start primary. It's not totally transparent because it
would drop all active connections during the switch. In practice, I find
that nobody notices unless it happens multiple times in a row or they
happened to be in the middle of a long IMAP command.

~Seth

[Dovecot] Clustering dovecot?

[dovecot]

Currently I have a mail server running postfix and dovecot with users 
in mysql. I have Outlook (blich) clients checking IMAP mail on the 
server. I'd like to build some fault-tolerance into that system in 
case I have hardware failure.


I've read through: http://wiki.dovecot.org/MailLocation/SharedDisk 
but I feel I need more information. My basic understanding is that 
I'll need 2 clustered systems running with shared disk space and 
shared IP.  Performance/load-balancing isn't an issue for me, it's 
just fault-tolerance that I'm worried about.


I found a nice long doc for Cyrus IMAP 
(http://cyrusimap.web.cmu.edu//ag.html), anything similar for dovecot?


Rick




Rick Steeves
http://www.sinister.net

"The more I learn, it seems, the less I know." Frazz

Re: [Dovecot] test of mailing list

[Konstantin Khomoutov]

Pascal Volk wrote:


Im sendding messages to the list and they do not show up.

Who wrote this messages to the mailing list?
* http://dovecot.org/list/dovecot/2009-May/039893.html
* http://dovecot.org/list/dovecot/2009-May/039902.html
It's possible to switch off reception of own messages in the mailman 
settings. The original poster might have this problem.

Re: [Dovecot] test of mailing list

[Pascal Volk]

On 05/27/2009 05:04 PM Carlos Xavier wrote:
> Im sendding messages to the list and they do not show up.

Who wrote this messages to the mailing list?
* http://dovecot.org/list/dovecot/2009-May/039893.html
* http://dovecot.org/list/dovecot/2009-May/039902.html


Regards,
Pascal
-- 
The trapper recommends today: c01dcofe.0914...@localdomain.org

Re: [Dovecot] === SPAM === test of mailing list

[Ioannis Aslanidis]

And this may be why:

* -0.7 BAYES_20 BODY: Bayesian spam probability is 5 to 20%
*  [score: 0.1759]
*  3.9 FORGED_MUA_OUTLOOK Forged mail pretending to be from MS Outlook
*  0.4 AWL AWL: From: address is in the auto white-list

Carlos Xavier wrote:
> Im sendding messages to the list and they do not show up.
> 
> its just a test, please ignore
> 
> Regards,
> Carlos Xavier.
begin:vcard
fn:Ioannis Aslanidis
n:Aslanidis;Ioannis
org:Flumotion Services S.A.;Infrastructure Department
adr:Edifici Nord Planta 2;;World Trade Center;Barcelona;Barcelona;08039;Spain
email;internet:iaslani...@flumotion.com
title:System and Network Administrator
tel;work:+34935086359
tel;cell:+34672204575
note;quoted-printable:PGP Key: 0xBEAC0800 (pgp.rediris.es)=0D=0A=
	Key fingerprint =3D 73FE B836 D116 1EF1 D580  C06E 16AF BCC3 BEAC 0800
url:http://www.flumotion.com
version:2.1
end:vcard



signature.asc
Description: OpenPGP digital signature

[Dovecot] test of mailing list

[Carlos Xavier]

Im sendding messages to the list and they do not show up.

its just a test, please ignore

Regards,
Carlos Xavier.

Re: [Dovecot] LDAP (AD) auth problem

[Misha Volodko]

Hello,

Tried  with version 1.1.13 - the same issue.
Does anybody succeed in auth. virtual users using active directory and
authentication binds mechanism?
I've found a lot of examples how to use password lookups but I cannot
use it, unfortunately.


On Tue, May 26, 2009 at 9:08 AM, Misha Volodko  wrote:
> Hello,
>
> Using port 3268 I faced with absolutely the same behavior.
> So, doesn't matter in this case.
>
>
> On Tue, May 26, 2009 at 1:33 AM, Timo Sirainen  wrote:
>> On Mon, 2009-05-25 at 17:07 +0200, Misha Volodko wrote:
>>> I'm trying to authenticate users using MS AD with auth_bind option.
>>> Here is my config file:
>> ..
>>> content of dovecot-ldap.conf
>>> hosts =  myhost:389
>>
>> You should use port 3268 with AD.

-- 
Best Regards

Re: [Dovecot] Inotify instance limit for user exceeded, disabling?

[Steffen Kaiser]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

On Wed, 27 May 2009, dove...@corwyn.net wrote:

surprise given the error message really).  I can fix that with echo 256 > 
/proc/sys/fs/inotify/max_user_instances , but  as /proc is temporary, so if I 
change it won't it break if/when the system reboots?


See man sysctl

Bye,

- -- 
Steffen Kaiser

-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.6 (GNU/Linux)

iQEVAwUBSh1L9nWSIuGy1ktrAQJ+0wf+N6SKut3mM+6ZqOH2hjqgE9wsix9QfFeZ
5vVls1vS6hMlSQhqSXYMW0UrDqvrH2ypPbgZpoClTU+Xvtc0yPhkqy7Bf3EJwEGY
4RY0W/aDTNHw6SAB3ilmQ03CACtnxMLZiUFndWOaoY+LtfHvYZZwEuyFvE1n7cQo
60wplS3DMrxzBtdKzrjsSUR8UrDQSTTfY0F4iFY553+GzcgKOLyqzT2yin0avjeI
Y3jYBIC9ucr87kb82Jkmk4F/rQc2Falyk56LAJ9MuNQqyCZa9qWdnLoy28oXoRYM
fUNQ4y7oWyRr2zu6TknLpCKz9Xmd9+CiGfCUq8lORzdfT/cGlZRlYw==
=uZj7
-END PGP SIGNATURE-

[Dovecot] Testing 1.2

[Marc Perkel]

Just installed it. Upgraded from 1.1.15. So far so good.

[Dovecot] Inotify instance limit for user exceeded, disabling?

[dovecot]

I'm seeing this message in my /var/log/maillog:

May 26 12:35:00 agencymail dovecot: IMAP(i...@example.com): Inotify 
instance limit for user exceeded, disabling. Increase 
/proc/sys/fs/inotify/max_user_instances


I rummaged through google, and found :
http://www.dovecot.org/list/dovecot-cvs/2008-May/011132.html

which says I need to increase /proc/sys/fs/inotify/max_user_instances 
(no surprise given the error message really).  I can fix that with 
echo 256 > /proc/sys/fs/inotify/max_user_instances , but  as /proc is 
temporary, so if I change it won't it break if/when the system reboots?


The error message also implies that something has been disabled. If I 
increase /proc/sys/fs/inotify/max_user_instances will it fix 
automatically, or do I need to do something else?  since it's a 
kernel message, I suspect just restarting dovecot won't do it.


And what exactly is breaking when I receive this notification?  The 
proc docs indicate:

/proc/sys/fs/inotify (since Linux 2.6.13)
This directory contains files max_queued_events, max_user_instances, 
and max_user_watches, that can be used to limit the amount of kernel 
memory consumed by the inotify interface. For further details, see 
inotify(7).


Is this dovecot monitoring for new mail?

thanks

Rick



[r...@agencymail inotify]# dovecot -n
# 1.1.8: /etc/dovecot.conf
# OS: Linux 2.6.18-92.el5 i686 Red Hat Enterprise Linux Server 
release 5.2 (Tikanga) ext3

ssl_cert_file: /etc/httpd/certs/agencymail_example_com.crt
ssl_key_file: /etc/httpd/certs/agencymail.example.com.key.no.password
login_dir: /var/run/dovecot/login
login_executable(default): /usr/libexec/dovecot/imap-login
login_executable(imap): /usr/libexec/dovecot/imap-login
login_executable(pop3): /usr/libexec/dovecot/pop3-login
login_max_processes_count: 256
mail_uid: 1015
mail_gid: 105
mail_location: maildir:/var/spool/mail/%d/%n/Maildir
mail_executable(default): /usr/libexec/dovecot/imap
mail_executable(imap): /usr/libexec/dovecot/imap
mail_executable(pop3): /usr/libexec/dovecot/pop3
mail_plugins(default): acl quota imap_quota expire trash
mail_plugins(imap): acl quota imap_quota expire trash
mail_plugins(pop3): expire quota
mail_plugin_dir(default): /usr/lib/dovecot/imap
mail_plugin_dir(imap): /usr/lib/dovecot/imap
mail_plugin_dir(pop3): /usr/lib/dovecot/pop3
imap_client_workarounds(default): delay-newmail outlook-idle
imap_client_workarounds(imap): delay-newmail outlook-idle
imap_client_workarounds(pop3):
pop3_client_workarounds(default):
pop3_client_workarounds(imap):
pop3_client_workarounds(pop3): outlook-no-nuls oe-ns-eoh
dict_db_config: /etc/dovecot-db.conf
auth default:
  mechanisms: plain login
  passdb:
driver: sql
args: /etc/dovecot-sql.conf
  userdb:
driver: passwd
  userdb:
driver: sql
args: /etc/dovecot-sql.conf
  userdb:
driver: static
  socket:
type: listen
client:
  path: /var/spool/postfix/private/auth
  mode: 432
  user: postfix
  group: postfix
master:
  path: /var/run/dovecot/auth-master
  mode: 384
  user: vuser
  group: vuser
plugin:
  quota: maildir
  quota_rule: *:storage=10240
  quota_rule2: Trash:storage=100M
  acl: vfile:/etc/dovecot/acls
  trash: /etc/dovecot-trash.conf
  expire: Trash 14 Trash/* 14 Spam 14
  expire_dict: proxy::expire
dict:
  expire: mysql:/etc/dovecot-dict-expire.conf




Rick Steeves
http://www.sinister.net

"The more I learn, it seems, the less I know." Frazz

[Dovecot] Dovecot and Phpgroupware compatibility

[Carlos Xavier]

Hi,
I am resending this email, since the fist one didn't hit the list.
Recently we moved our server from mbox format to Maildir format and started 
using Dovecot.
Almost all the users are very happy with this, since the speed had increased 
very much.
I used mb2md to do the conversion and on this task all the mailboxes that 
had "." (dot)

on their names were converted to "_".

But there is one issue with this, we also use the webmail that comes with 
Phpgroupware,
and it uses some mailbox that have fixed named like INBOX.Sent, INBOX.Draft 
and so on.
When their names were changed the sent messages didn't get saved anymore, so 
I had to move

them back to the old names.

After that the sent messages returned to be saved again, but another trouble 
showed up.
As they start with .INBOX and have "." on the names, Dovecot shown them as a 
subdirectory

of the INBOX and we got some people upset with this.

I need help on configuring Dovecot to not show them this way, because if you 
reed the .INBOX.Sent
either on the webmail or by Outlook, the field displayed is the sender, 
witch is not desired.


When I did the conversion, to keep the compatibility with the old server 
(quota, avoid I/O bottleneck, etc), I set
two Maildirs, one at /var/spool/mail/$USER, to be the INBOX and another at 
the user home.


We are using Dovecot version 1.1.13, and below is the relevant configuration 
on use.


namespace public {
  prefix = "#mbox/"
  separator = /
  inbox = yes
  list = no
  location= maildir:/var/spool/mail/%u/:CONTROL=~/control:INDEX=~/control
}

namespace private {
  separator = /
  prefix =
  location= maildir:~/Maildir/:CONTROL=~/control:INDEX=~/control
  inbox = no
}

Best Regards,
Carlos Xavier. 

Re: [Dovecot] v3.0 architecture

[Andrey Panin]

On 147, 05 27, 2009 at 01:31:41PM +0400, Max Ivanov wrote:
> > The big problem is what the protocol should be. Use some existing RPC
> > protocol? It should be something extensible so that a plugin in imap process
> > can talk to a plugin in storage process, without the base processes knowing
> > anything about the details (e.g. imap-quota plugin asking quota usage from
> > storage's quota plugin).
> 
> Googles Protocol Buffers offer both flexibility and speed.

"Protocol buffers are Google's ... blah-blah-blah ... using a variety of 
languages - Java, C++, or Python."

I can't find good old plain C in this "variety of languages" :(

[Dovecot] antispam plugin and MUA-Junk folders

[Steffen Kaiser]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

Hello,

I have a configuration problem, that I ignored till now.

Many MUAs tag SPAM themselves and move SPAM to a junk folder (Thunderbird 
uses "Junk").


It is said to not automatically train these mails, but let have an human 
revise them.


Currently, I have configured those folders as "trash" folders for 
antispam, which means that those messages are essentially lost, because a 
move into a spam folder will not train them. -> The current antispam 
plugin ignores moves in and out of trash folders completely. I wonder why 
the move trash -> SPAM is ignored?


If I configure those junk folders as "unsure" in antispam, the situation 
can happen, that an user selects a spam folder, the MUA identifies junk 
and moves the messages into its Junk folder. Current implementation would 
train this move as HAM.


How about the following:

1) copy from * into trash or unsure -> not train
2) copy from !spam into spam -> train as SPAM
4) copy from spam or unsure into !(trash or unsure or spam) -> train as 
HAM

6) else -> not train

Bye,

- -- 
Steffen Kaiser

-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.6 (GNU/Linux)

iQEVAwUBSh0PdHWSIuGy1ktrAQKmaAf/ew1SixCkkWD2V12Jfw3mLcWnUrUSRq/J
nsyMkW2//tX74wSJeMjbzlEkxN3dyfJg7f4WviGPdnUp5sqNGuS9lBfHh3ShQHtt
30+mRzVqizmcNEXBFoZXVy1K5hE8p9ssN9avahmUejBVPaSZHD0OjN5h8nFkNMDI
XHU2347g03zr1MxejinWyRiKt1MFQyyJ6Y7gXNf6yascWKJA8W6b4Zu/eIH5uEW+
yiMuweaxJOwuGcwqh/qSKZTXnoCLa9rzvd8i/uZGvn7AXoT5u4P5coZkIHrh64U7
oswuYAZwxkmjGNLdGrovZadRJym16BlfVHH5g3Zo7k4nwX+kGRKyug==
=9b+n
-END PGP SIGNATURE-

Re: [Dovecot] v3.0 architecture

[Max Ivanov]

> The big problem is what the protocol should be. Use some existing RPC
> protocol? It should be something extensible so that a plugin in imap process
> can talk to a plugin in storage process, without the base processes knowing
> anything about the details (e.g. imap-quota plugin asking quota usage from
> storage's quota plugin).

Googles Protocol Buffers offer both flexibility and speed.

Re: [Dovecot] v3.0 architecture

[reg9009]

Timo Sirainen schrieb:
>
>
> 3. Mail processes talk to storage processes via some protocol. They
> can talk via UNIX socket or TCP/IP. If an existing connection can't
> handle the target UID, a new connection is made that either reuses an
> existing storage proces or creates a new one.
>
This sounds really, really cool! I am thinking of the possibilities of
separating storage to frontend. That way one could build dynamically
distributing mailboxes. Use local ressources of many storage boxes
instead of using FC storages all the way. Or just "replicate" mails
twice to have them redundantly stored (hadn't you the idea of a
replication part, anyway?).
>
> The big problem is what the protocol should be. Use some existing RPC
> protocol? It should be something extensible so that a plugin in imap
> process can talk to a plugin in storage process, without the base
> processes knowing anything about the details (e.g. imap-quota plugin
> asking quota usage from storage's quota plugin). In any case the
> client side API should be asynchronous. That can make it annoyingly
> difficult to use though. Wonder if I could switch to erlang or
> something for the imap/pop3 processes :)
>

Maybe one could "lend" some parts of erlang based database
http://couchdb.apache.org/ ... :)

Regards,
Sebastian

[Dovecot] v3.0 architecture

[Timo Sirainen]

I just had a thought. It's probably going to be too big of a change  
for v2.0, so something to think about for v3.0:


Supporting multiple UIDs is difficult. Currently expire-tool and  
v2.0's LMTP server are implemented in a way that it's always running  
as root and only temporarily dropping privileges. So any security hole  
in there gives the attacker root privileges. Not very nice. With a  
single UID it's possible (or will be) to just use that one UID for the  
process without running as root.


User sharing mailboxes to another user with different UID is even more  
difficult. Currently the only practical way to implement this is to  
assign read-write permissions to some group and have all mail files  
owned by that group. Not very nice.


Sharing mailboxes between users located in different servers is  
impossible if the disk isn't somehow shared.


All of these can be solved the same way:

1. imap, pop3, lmtp, etc. processes will be running without any  
privileges, very much like imap/pop3-login nowadays. Nobody-chrooted  
to empty directory.


2. Create storage processes that are started as needed. They can be  
configured in different security/performance settings: One storage  
process per user, one storage process per UID, setuid-root style  
shared storage process for multiple UIDs.


3. Mail processes talk to storage processes via some protocol. They  
can talk via UNIX socket or TCP/IP. If an existing connection can't  
handle the target UID, a new connection is made that either reuses an  
existing storage proces or creates a new one.


4. IMAP can finally implement truly simultaneously running queries  
(where it makes sense) by creating more storage processes if existing  
ones are busy handling longer-running commands. This also allows using  
the same storage process for multiple simultaneous IMAP connections  
and mail deliveries (and etc). The storage processes can also hang  
around and keep mailboxes open after all connections have closed it  
(dynamically figured out when it makes sense) to handle webmail  
clients that create lots of short-living connections or POP3 clients  
who poll for new mail every minute.


The big problem is what the protocol should be. Use some existing RPC  
protocol? It should be something extensible so that a plugin in imap  
process can talk to a plugin in storage process, without the base  
processes knowing anything about the details (e.g. imap-quota plugin  
asking quota usage from storage's quota plugin). In any case the  
client side API should be asynchronous. That can make it annoyingly  
difficult to use though. Wonder if I could switch to erlang or  
something for the imap/pop3 processes :)

Re: [Dovecot] offlineimap with dovecot and sieve

[Steffen Kaiser]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

On Tue, 26 May 2009, Dieter Faulbaum wrote:


But it seems, that my sieve-scripts on the local dovecot server are not
recognised by this combination.


You have to simulate the delivery after synchronisation. However, I wonder 
how this is to work:


1) you sync news mails from A -> B
2) you process them with Sieve on B, possible out them into other folders
3) next time you sync the filtered mails back to A, because they appear to 
be new.


But I guess you cannot run Sieve on A?

===

You could re-submit all "new" & unread messages to get them to the LDA on 
B.




The new libsieve library of Stephan Bosch does include a tool called 
"sieve-filter". It applies a Sieve script to all messages in a folder.


In addition there is a "sieve-test" tool that:

"
- -e Turns on true execution of the set of actions that results from 
running the script. In combination with the -l parame‐
  ter,  the  actual  delivery  of  messages  can be tested. 
Note that this will not transmit any messages to remote SMTP
  recipients. Such actions only print the outgoing message to 
stdout.

"

Bye,

- -- 
Steffen Kaiser

-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.6 (GNU/Linux)

iQEVAwUBShzqwXWSIuGy1ktrAQLdxQf/e8RrlA1jR40g48LaqudYbllGfDjYuX9L
gOsnpJHZtK65/z2et8+CIvDlGkFi2ftmg8eFKX6TRQFi79B/QbeKBXs8wYIQ1REN
SgcSnfV53lmMDGjbAKdZubAZKSXIICAQXvKV5Nfsl/G6I0DcswHdzlQbIY161nfS
siKTDBOWXYxTlDowBetFne0f+c/ZpivbYYYRXpcsPpsnnra0VX/W/zf7TigHCUTu
iZ85T9HW3C/U33TFzEJY2T86fvx8KDQ9yznKqYWFXyhPxujFGdEp28uAsBZ1O4/9
1HyWnt3waPuH6ekdQvQoURDypMQLqm+Np/Q9dP5QLxeHPZEC46GpaA==
=Spl/
-END PGP SIGNATURE-

Re: [Dovecot] Capability problems dovecot 2.0

[Timo Sirainen]

On May 27, 2009, at 3:15 AM, Max Ivanov wrote:

The alternative that I'm thinking right now is that in the pre- 
login process
Dovecot would only advertise those capabilities that are actually  
useful
before login. Then after login it would send an updated capability  
reply to
the client. The important question here is: Are there any clients  
that don't

update their capabilities?


RFC says:
 A server MAY send capabilities automatically, by using the
 CAPABILITY response code in the initial PREAUTH or OK responses,
 and by sending an updated CAPABILITY response code in the tagged
 OK response as part of a successful authentication.  It is
 unnecessary for a client to send a separate CAPABILITY command if
 it recognizes these automatic capabilities.

So that's valid approach and any client should support it.


Most IMAP clients are violaing IMAP RFC in many other ways already  
anyway. And that doesn't actually require clients to use the  
capability, just says it's unnecessary to ask it..

Re: [Dovecot] Capability problems dovecot 2.0

[Max Ivanov]

> The alternative that I'm thinking right now is that in the pre-login process
> Dovecot would only advertise those capabilities that are actually useful
> before login. Then after login it would send an updated capability reply to
> the client. The important question here is: Are there any clients that don't
> update their capabilities?

RFC says:
  A server MAY send capabilities automatically, by using the
  CAPABILITY response code in the initial PREAUTH or OK responses,
  and by sending an updated CAPABILITY response code in the tagged
  OK response as part of a successful authentication.  It is
  unnecessary for a client to send a separate CAPABILITY command if
  it recognizes these automatic capabilities.

So that's valid approach and any client should support it.

[Dovecot] Dovecot and Phpgroupware compatibility

[Carlos Xavier]

Hi,
recently moved our server from mbox format to Maildir format.
Almost all the users are very happy with this, since the speed had increased 
very much.
I used mb2md to do the conversion and on this task all the mailboxes that had 
"." (dot)
on their names were converted to "_".

But there is one issue with this, we also use the webmail that comes with 
Phpgroupware,
and it uses some mailbox that have fixed named like INBOX.Sent, INBOX.Draft and 
so on.
When their names were changed the sent messages didn't get saved anymore, so I 
had to move
them back to the old names.

After that the sent messages returned to be saved again, but another troube 
showed up.
As they start with .INBOX and have "." on the names, Dovecot shown them as a 
subdirectory
of the INBOX and we got some people upset with this.

I need help on configuring Dovecot to not show them this way, because if you 
look the .INBOX.Sent
either on the webmail or by outlook, the field displayed is the sender, witch 
is not desired.

When I did the conversion, to keep the compatibility with the old server 
(quota, avoid I/O botleneck, etc), I set 
two Maildirs, one at /var/spool/mail/$USER, to be the INBOX and another at the 
user home. 

We are using Dovecot version 1.1.13, and below is the relevant configuration on 
use.

namespace public {
   prefix = "#mbox/"
   separator = /
   inbox = yes
   list = no
   location= maildir:/var/spool/mail/%u/:CONTROL=~/control:INDEX=~/control
}

namespace private {
   separator = /
   prefix =
   location= maildir:~/Maildir/:CONTROL=~/control:INDEX=~/control
   inbox = no
}

Best Regards,
Carlos Xavier.

Re: [Dovecot] Capability problems dovecot 2.0

[reg9009]

Timo Sirainen schrieb:
>
>> For gathering the capabilities of plugins, etc. Would it be a viable
>> solution to demand the plugins to pass capabilities at the point where
>> the plugin registers/loads itself? That way it may not be that ugly?
>
> The problem is that Dovecot's IMAP code is split to pre-login and
> post-login processes. The pre-login processes don't load any plugins,
> only the post-login processes do. But the capability is needed in the
> pre-login process. So the way it works with v1.x is that when you
> start dovecot it'll execute the imap post-login binary with a
> "dump-capability" flag enabled, which basically loads the plugins and
> tells the current capability string to Dovecot master process. This
> has caused all kinds of problems in past and I'm sure as there will be
> more trouble with that in future.
>
> The alternative that I'm thinking right now is that in the pre-login
> process Dovecot would only advertise those capabilities that are
> actually useful before login. Then after login it would send an
> updated capability reply to the client. The important question here
> is: Are there any clients that don't update their capabilities? So far
> I've tested Apple Mail, Thunderbird and Alpine and they're fine with
> it. The most important question here is do Outlook and OE update that
> list? (Or does OE use any extensions anyway? Outlook uses IDLE anyway.)
>
>

Ok. Your suggestion makes sense. If you would do it that way, I'm happy
to test with different (Outlook, OE, etc.) clients to crosscheck if
they've got a problem with that and, if not, honor new capabilities.

Regards,
Sebastian

Re: [Dovecot] Capability problems dovecot 2.0

[reg9009]

answered the wrong address...

Timo Sirainen schrieb:
> On May 27, 2009, at 2:35 AM, reg9009 wrote:
>
>> what if TB just needs the "IMAP4rev1" capability before logging in?
>
> That's a completely different issue. Meaning that v2.0 is buggy here
> currently and returning an empty string, because I haven't yet decided
> how to fix it.
That explains all :) I'll try imap_capability manual override for now.
Btw., when I telnet to the server, I get * OK [CAPABILITY IMAP4rev1
LITERAL+ SASL-IR LOGIN-REFERRALS ID ENABLE AUTH=PLAIN AUTH=LOGIN
AUTH=DIGEST-MD5 AUTH=CRAM-MD5] Dovecot ready.
What's this capability string? Couldn't we use this one, at least until
a user is logging in?
>
>> Where is the setting "imap_capability" used? I could try and see how TB
>> is behaving, in parallel to Outlook, OE, etc.
>
> What do you mean by used? You should be able to just set in dovecot.conf:
>
> imap_capability = imap4rev1 and other stuff
>
>
I didn't know if that shoul be used in some section or directly in
dovecot.conf. Thx.

Regards,
Sebastian