Re: [Dovecot] Expire/Quota error

2009-06-05 Thread e-frog 
Matt Rude wrote:
> Using both 1.2rc5 and hg version a9d3108d0cec from today, when I run the
> expire tools program, I receive the following error.
> 
> # /usr/local/sbin/dovecot --exec-mail ext
> /usr/local/libexec/dovecot/expire-tool --test
> 
> /usr/local/sbin/dovecot --exec-mail ext
> /usr/local/libexec/dovecot/expire-tool --testError:
> dlopen(/usr/local/lib/dovecot/imap/lib10_quota_plugin.so) failed:
> /usr/local/lib/dovecot/imap/lib10_quota_plugin.so: undefined symbol:
> mountpoint_get
> 

The expire-tool uses now mail_plugins defined in protocol imap section.

Read the following thread for a workaround:

http://dovecot.org/pipermail/dovecot/2009-June/040118.html

Re: [Dovecot] Multiple Dovecot instances over single mail store

2009-06-05 Thread Timo Sirainen 

On Jun 5, 2009, at 9:26 AM, Zohan wrote:


I want to know whether it is possible at all. If possible, how do we
implement proper concurrent access (locking, etc.) between the two
instances to a single maildir-based store? I guess this should be
possible since I know Dovecot can operate NFS-backed mail stores, e.g.
in a load-balancing cluster setup.


Works just fine, as long as the locking settings are the same (only  
lock_method with maildir).



Second, is it OK to run the second instance in the same OS (we use
Linux)? or chroot'ed or even virtualized solution will work better?


http://wiki.dovecot.org/RunningDovecot#Running_Multiple_Invocations_of_Dovecot

[Dovecot] Expire/Quota error

2009-06-05 Thread Matt Rude 
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

Using both 1.2rc5 and hg version a9d3108d0cec from today, when I run the
expire tools program, I receive the following error.

# /usr/local/sbin/dovecot --exec-mail ext
/usr/local/libexec/dovecot/expire-tool --test

/usr/local/sbin/dovecot --exec-mail ext
/usr/local/libexec/dovecot/expire-tool --testError:
dlopen(/usr/local/lib/dovecot/imap/lib10_quota_plugin.so) failed:
/usr/local/lib/dovecot/imap/lib10_quota_plugin.so: undefined symbol:
mountpoint_get


# 1.2.rc5: /usr/local/etc/dovecot.conf
# OS: Linux 2.6.27.21-170.2.56.fc10.i686 i686 Fedora release 10
(Cambridge) ext3
protocols: imap imaps managesieve
listen: *:143
ssl_listen: *:993
ssl_cert_file: /etc/postfix/SSL/mail.mattrude.com.cert
ssl_key_file: /etc/postfix/SSL/mail.mattrude.com.key
login_dir: /usr/local/var/run/dovecot/login
login_executable: /usr/local/libexec/dovecot/imap-login
login_user: postfix
mail_location:
maildir:/var/spool/virtualmailboxes/%d/%u/:INDEX=/var/spool/virtualmailboxes/.Index/%d/%u/
mail_plugins: autocreate expire quota imap_quota zlib
auth default:
  mechanisms: plain login cram-md5
  cache_size: 128
  cache_ttl: 600
  passdb:
driver: sql
args: /etc/dovecot-mysql.conf
  userdb:
driver: sql
args: /etc/dovecot-mysql.conf
  socket:
type: listen
client:
  path: /var/spool/postfix/private/auth
  mode: 432
  user: postfix
  group: postfix
master:
  path: /var/run/dovecot/auth-master
  mode: 384
  user: virtualmail
  group: virtualmail
plugin:
  autocreate: Drafts
  autocreate2: Sent
  autocreate3: Trash
  autocreate4: Junk
  autocreate5: Junk.IsSpam
  autocreate6: Junk.IsNotSpam
  autocreate7: Save
  autosubscribe: Drafts
  autosubscribe2: Sent
  autosubscribe3: Trash
  autosubscribe4: Junk
  autosubscribe5: Junk.IsSpam
  autosubscribe6: Junk.IsNotSpam
  autosubscribe7: Save
  auth_socket_path: /var/run/dovecot/auth-master
  expire: Trash 1 Junk 3
  expire_dict: proxy::expire
  quota: maildir:User quota
  quota_rule: *:storage=10M
  quota_rule2: Trash:storage=10%%
  quota_rule3: Junk:storage=20%%
  sieve: /var/spool/virtualmailboxes/%d/%u/dovecot.sieve
  sieve_storage: = /var/spool/virtualmailboxes/%d/%u/
  trash: /etc/dovecot-trash.conf
dict:
  expire: db:/var/spool/imap/expire.db

- --
Matt Rude  -  li...@mattrude.com  -  http://www.mattrude.com
PGPkey:  5115332   https://mail.mattrude.com/keys/0x5115332E.asc
Fingerprint:0012 4A0A 3720 6268 1802 F66D 7DCA C0A7 5115 332E
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.9 (GNU/Linux)

iEYEARECAAYFAkopu4AACgkQfcrAp1EVMy5PrACeNtxU+z0NBFpmH0vxyO0ikWAy
DucAnRLiJeOirhupfjB4ebqZ0uq8fmfA
=Cow4
-END PGP SIGNATURE-

Re: [Dovecot] sieve/dovecot folder separator inconsistency

2009-06-05 Thread Daniel Mayer 

On 06/05/2009 05:13 PM, Robert Schetterer wrote:

e-frog schrieb:

Daniel Mayer wrote:

Hi,

I'm running dovecot 1.0.15 and ran recently into a problem with the
folder separators when using sieve scripts.



According to http://wiki.dovecot.org/LDA/Sieve ->  "Mailbox names with fileinto"
this only works for versions 1.1+


ups i am testing with 1.2 beta
so you should upgrade
Okay apparently my version really does not support what I need. I wrote 
a small workaround for Ingo which writes the sieve file in a format 
which can be processed by our dovecot version. I cannot upgrade dovecot 
at the moment unfortunately.


Thanks for the replies,
Daniel

Re: [Dovecot] sieve/dovecot folder separator inconsistency

2009-06-05 Thread Robert Schetterer 
e-frog schrieb:
> Daniel Mayer wrote:
>> Hi,
>>
>> I'm running dovecot 1.0.15 and ran recently into a problem with the 
>> folder separators when using sieve scripts.
>>
> 
> According to http://wiki.dovecot.org/LDA/Sieve -> "Mailbox names with 
> fileinto"
> this only works for versions 1.1+

ups i am testing with 1.2 beta
so you should upgrade

-- 
Best Regards

MfG Robert Schetterer

Germany/Munich/Bavaria

Re: [Dovecot] sieve/dovecot folder separator inconsistency

2009-06-05 Thread e-frog 
Daniel Mayer wrote:
> Hi,
> 
> I'm running dovecot 1.0.15 and ran recently into a problem with the 
> folder separators when using sieve scripts.
> 

According to http://wiki.dovecot.org/LDA/Sieve -> "Mailbox names with fileinto"
this only works for versions 1.1+

[Dovecot] Multiple Dovecot instances over single mail store

2009-06-05 Thread Zohan 
Hi,

I need to run two Dovecot instances with totally different
authentication configs: first - passwordless, based on client SSL
certificate; and second - regular password based (LDAP, passwd etc.).
(As far as I know this cannot be achieved with single Dovecot instance;
if I'm mistaken, please correct me). My intention is to give clients
dual access to their mailboxes: some do own a SSL cert, others do not.

I want to know whether it is possible at all. If possible, how do we
implement proper concurrent access (locking, etc.) between the two
instances to a single maildir-based store? I guess this should be
possible since I know Dovecot can operate NFS-backed mail stores, e.g.
in a load-balancing cluster setup.

Second, is it OK to run the second instance in the same OS (we use
Linux)? or chroot'ed or even virtualized solution will work better?

Thank you!
Zohan

Re: [Dovecot] sieve/dovecot folder separator inconsistency

2009-06-05 Thread Daniel Mayer 

On 06/05/2009 11:46 AM, Robert Schetterer wrote:

Daniel Mayer schrieb:

Hi,

I'm running dovecot 1.0.15 and ran recently into a problem with the
folder separators when using sieve scripts.

The server is set to use a slash as a folder separator for all
namespaces and announces this correctly when issuing the NAMESPACE
command. We are using Ingo (http://www.horde.org/ingo/) of the horde
framework to manage our sieve scripts. It creates the folder name /
folder path to be used in the sieve scripts based on the result of the
NAMESPACE given by the IMAP Server. It therefore created the path
separated by  slashes ("/").

According to my tests, the delivery agent along with sieve expects the
folders to be separated by dots (".") instead of slashes. Is this a
correct observation or can this be set using a parameter or something
similar?

The result of this otherwise inconsistent behavior is that a client who
sticks to the provided namespace creates a folder path which cannot be
understood by the deliver process.

Please let me know if you need any additional information.

Thanks,
Daniel


With my last tests / seperator worked with
ingo i looked in my ingo prefs but couldnt find relation
so i specutlate its bound to general hord/imp prefs
perhaps you should ask on the horde/ingo list
and/or send more logging details here


I already did. Ingo takes the folder separator out of the namespace 
information provided  by dovecot. Which is a slash in my case. It IMP 
(the webmail part) works perfectly and displays everything correctly. If 
I setup a sieve filter to place a mail in a subfolder, ingo creates the 
following:

 fileinto "INBOX/mailinglists/discussion/dovecot";
which dovecot does not understand when an email hist this rule. If I 
however manually change it to

 fileinto "INBOX.mailinglists.discussion.dovecot";

The same rule works fine. Ingo is behaving like it should, sticking to 
the namespace given by the server but the delivery agent does not seem 
to understand slashes as folder separators and gives the following error:


deliver(mayer): 2009-06-05 17:55:11 Info: 
msgid=<4a293fc0.9030...@couga.net>: Couldn't open mailbox 
INBOX/mailinglists/discussion/dovecot: Invalid mailbox name


deliver(mayer): 2009-06-05 17:55:11 Info: sieve runtime error: Fileinto: 
Generic Error


deliver(mayer): 2009-06-05 17:55:11 Error: 
sieve_execute_bytecode(/home/mayer/.dovecot.sievec) failed


deliver(mayer): 2009-06-05 17:55:11 Info: 
msgid=<4a293fc0.9030...@couga.net>: saved mail to INBOX




Daniel

Re: [Dovecot] sieve/dovecot folder separator inconsistency

2009-06-05 Thread Robert Schetterer 
Daniel Mayer schrieb:
> Hi,
> 
> I'm running dovecot 1.0.15 and ran recently into a problem with the
> folder separators when using sieve scripts.
> 
> The server is set to use a slash as a folder separator for all
> namespaces and announces this correctly when issuing the NAMESPACE
> command. We are using Ingo (http://www.horde.org/ingo/) of the horde
> framework to manage our sieve scripts. It creates the folder name /
> folder path to be used in the sieve scripts based on the result of the
> NAMESPACE given by the IMAP Server. It therefore created the path
> separated by  slashes ("/").
> 
> According to my tests, the delivery agent along with sieve expects the
> folders to be separated by dots (".") instead of slashes. Is this a
> correct observation or can this be set using a parameter or something
> similar?
> 
> The result of this otherwise inconsistent behavior is that a client who
> sticks to the provided namespace creates a folder path which cannot be
> understood by the deliver process.
> 
> Please let me know if you need any additional information.
> 
> Thanks,
> Daniel
> 
With my last tests / seperator worked with
ingo i looked in my ingo prefs but couldnt find relation
so i specutlate its bound to general hord/imp prefs
perhaps you should ask on the horde/ingo list
and/or send more logging details here

-- 
Best Regards

MfG Robert Schetterer

Germany/Munich/Bavaria

[Dovecot] sieve/dovecot folder separator inconsistency

2009-06-05 Thread Daniel Mayer 

Hi,

I'm running dovecot 1.0.15 and ran recently into a problem with the 
folder separators when using sieve scripts.


The server is set to use a slash as a folder separator for all 
namespaces and announces this correctly when issuing the NAMESPACE 
command. We are using Ingo (http://www.horde.org/ingo/) of the horde 
framework to manage our sieve scripts. It creates the folder name / 
folder path to be used in the sieve scripts based on the result of the 
NAMESPACE given by the IMAP Server. It therefore created the path 
separated by  slashes ("/").


According to my tests, the delivery agent along with sieve expects the 
folders to be separated by dots (".") instead of slashes. Is this a 
correct observation or can this be set using a parameter or something 
similar?


The result of this otherwise inconsistent behavior is that a client who 
sticks to the provided namespace creates a folder path which cannot be 
understood by the deliver process.


Please let me know if you need any additional information.

Thanks,
Daniel

[Dovecot] crash in imap with 1.2rc5

2009-06-05 Thread Ralf Hildebrandt 
>From the log:

Jun  5 16:38:46 postamt dovecot: imap-login: Login: user=, 
method=PLAIN, rip=141.42.142.67, lip=141.42.4.250
Jun  5 16:38:49 postamt dovecot: IMAP(username): Panic: Trying to sync mailbox 
Sent with open transactions
Jun  5 16:38:49 postamt dovecot: IMAP(username): Raw backtrace: imap 
[0x80f0381] -> imap [0x80f0402] -> imap [0x80efd89] -> imap
[0x80b5084] -> imap(imap_sync_init+0x54) [0x806fd24] -> imap [0x80623d2] -> 
imap(cmd_idle+0x119) [0x8062539] -> imap [0x806734c] ->
imap [0x80673f3] -> imap(client_handle_input+0x2d) [0x806754d] -> 
imap(client_input+0x5f) [0x8067eaf] -> imap(io_loop_handler_run+0xe0)
[0x80f8f90] -> imap(io_loop_run+0x20) [0x80f8400] -> imap(main+0x5f5) 
[0x80708b5] -> /lib/i686/cmov/libc.so.6(__libc_start_main+0xe5)
[0xb7ded775] -> imap [0x805fcb1]
Jun  5 16:38:49 postamt dovecot: IMAP(username): Connection closed bytes=101/783

The backtrace:

GNU gdb 6.8-debian
Copyright (C) 2008 Free Software Foundation, Inc.
License GPLv3+: GNU GPL version 3 or later 
This is free software: you are free to change and redistribute it.
There is NO WARRANTY, to the extent permitted by law.  Type "show copying"
and "show warranty" for details.
This GDB was configured as "i486-linux-gnu"...
Reading symbols from /lib/i686/cmov/libdl.so.2...Reading symbols from 
/usr/lib/debug/lib/i686/cmov/libdl-2.9.so...done.
done.
Loaded symbols for /lib/i686/cmov/libdl.so.2
Reading symbols from /lib/i686/cmov/libc.so.6...Reading symbols from 
/usr/lib/debug/lib/i686/cmov/libc-2.9.so...done.
done.
Loaded symbols for /lib/i686/cmov/libc.so.6
Reading symbols from /lib/ld-linux.so.2...Reading symbols from 
/usr/lib/debug/lib/ld-2.9.so...done.
done.
Loaded symbols for /lib/ld-linux.so.2
Reading symbols from /usr/local/lib/dovecot/imap/lib10_quota_plugin.so...done.
Loaded symbols for /usr/local/lib/dovecot/imap/lib10_quota_plugin.so
Reading symbols from 
/usr/local/lib/dovecot/imap/lib11_imap_quota_plugin.so...done.
Loaded symbols for /usr/local/lib/dovecot/imap/lib11_imap_quota_plugin.so
Reading symbols from /usr/local/lib/dovecot/imap/lib11_trash_plugin.so...done.
Loaded symbols for /usr/local/lib/dovecot/imap/lib11_trash_plugin.so
Reading symbols from 
/usr/local/lib/dovecot/imap/lib20_autocreate_plugin.so...done.
Loaded symbols for /usr/local/lib/dovecot/imap/lib20_autocreate_plugin.so
Reading symbols from /usr/local/lib/dovecot/imap/lib20_fts_plugin.so...done.
Loaded symbols for /usr/local/lib/dovecot/imap/lib20_fts_plugin.so
Reading symbols from 
/usr/local/lib/dovecot/imap/lib20_mail_log_plugin.so...done.
Loaded symbols for /usr/local/lib/dovecot/imap/lib20_mail_log_plugin.so
Reading symbols from /usr/local/lib/dovecot/imap/lib20_zlib_plugin.so...done.
Loaded symbols for /usr/local/lib/dovecot/imap/lib20_zlib_plugin.so
Reading symbols from /usr/lib/libz.so.1...done.
Loaded symbols for /usr/lib/libz.so.1
Reading symbols from /lib/libbz2.so.1.0...done.
Loaded symbols for /lib/libbz2.so.1.0
Reading symbols from 
/usr/local/lib/dovecot/imap/lib21_fts_squat_plugin.so...done.
Loaded symbols for /usr/local/lib/dovecot/imap/lib21_fts_squat_plugin.so
Reading symbols from /usr/lib/gconv/ISO8859-1.so...Reading symbols from 
/usr/lib/debug/usr/lib/gconv/ISO8859-1.so...done.
done.
Loaded symbols for /usr/lib/gconv/ISO8859-1.so
Reading symbols from /usr/lib/gconv/ISO8859-15.so...Reading symbols from 
/usr/lib/debug/usr/lib/gconv/ISO8859-15.so...done.
done.
Loaded symbols for /usr/lib/gconv/ISO8859-15.so
Reading symbols from /lib/libgcc_s.so.1...done.
Loaded symbols for /lib/libgcc_s.so.1
Core was generated by `imap [username 141.42.142.67]'.
Program terminated with signal 6, Aborted.
[New process 11429]
#0  0xb7f47424 in __kernel_vsyscall ()
#0  0xb7f47424 in __kernel_vsyscall ()
No symbol table info available.
#1  0xb7e02680 in *__GI_raise (sig=6)
at ../nptl/sysdeps/unix/sysv/linux/raise.c:64
resultvar = 
pid = -1208799244
selftid = 11429
#2  0xb7e05d68 in *__GI_abort () at abort.c:88
act = {__sigaction_handler = {sa_handler = 0x9ed64b8, 
sa_sigaction = 0x9ed64b8}, sa_mask = {__val = {3214921832, 135193146, 
  3086165728, 0, 3214921952, 3214921940, 512, 0, 0, 3214922016, 
  3086374512, 134566059, 516, 0, 0, 0, 1, 135263934, 512, 1, 3214921940, 
  166552728, 69, 3214922068, 3214921912, 135194742, 166553276, 3214921940, 
  3214921944, 517, 166552760, 3085608163}}, sa_flags = 517, 
  sa_restorer = 0x81052f9 }
sigs = {__val = {32, 0 }}
#3  0x080f0395 in default_fatal_finish (type=, status=0)
at failures.c:160
backtrace = 0x9ed6288 "imap [0x80f0381] -> imap [0x80f0402] -> imap 
[0x80efd89] -> imap [0x80b5084] -> imap(imap_sync_init+0x54) [0x806fd24] -> 
imap [0x80623d2] -> imap(cmd_idle+0x119) [0x8062539] -> imap [0x806734c] -> 
ima"...
#4  0x080f0402 in i_internal_fatal_handler (type=LOG_TYPE_PANIC, status=0, 
fmt=0x8112614 "Trying to sync mailbox %s with open transactions", 
args=0xbf9fd1b4 "\03

Re: [Dovecot] Dovecot + DRBD/GFS mailstore

2009-06-05 Thread Robert Schetterer 
Guy schrieb:
> Hi guys,
> 
> I'm looking at the possibility of running a pair of servers with
> Dovecot LDA/imap/pop3 using internal drives with DRBD and GFS (or
> other clustered FS) for the mail storage and ext3 for the root drive.
> 
> I'm currently using maildrop for delivery and Dovecot imap/pop3 with
> the stores over NFS. I'm looking for better performance but still
> keeping the HA element I have now with shared storage over NFS.
> 
> Has anyone had experience with a setup like the one I'm suggesting?
> What was performance like with Dovecot using GFS?
> 
> Thanks
> Guy
> 
i tested
DRBD with ocfs
which works nice, also did tests with linux ha

perhaps this helps

http://www.idimmu.net/2008/01/08/High-availability-with-LVS-using-LVSadmin
http://www.drbd.org/users-guide/ch-gfs.html
https://blog.devnu11.net/2008/04/ha-mit-debian-lenny-drbd8-ocfs2-heartbeat-pound-http-und-mysql/

cant get GFS run on ubuntu ( maybe my fault )

didnt test dovecot and postfix setup implemented in the ha-lb-cluster
yet ( but ocfs was reported to work nice with dovecot deliver as far i
remember), i used only apache http service for testing, but that worked nice
in a vmware testing field with 4 servers ( 2 redundant loadbalancer and
2 Ha Servers )

-- 
Best Regards

MfG Robert Schetterer

Germany/Munich/Bavaria

Re: [Dovecot] Dovecot under brute force attack - nice attacker

2009-06-05 Thread Cédric Laruelle 
That would be just crystal clear and perfect for me :)

Cédric

-Message d'origine-
De : Timo Sirainen [mailto:t...@iki.fi] 
Envoyé : vendredi 5 juin 2009 16:07
À : Cédric Laruelle
Cc : dovecot@dovecot.org
Objet : Re: [Dovecot] Dovecot under brute force attack - nice attacker

On Jun 5, 2009, at 4:58 AM, Cédric Laruelle wrote:

> So to me, the only "problem" is the documentation as mentioned  
> initially by
> Henri which says :
>   # More verbose logging. Useful for figuring out why authentication
> isn't
>   # working.
>   auth_verbose = yes

OK, how about: http://hg.dovecot.org/dovecot-1.2/rev/a9d3108d0cec

Re: [Dovecot] Dovecot Problem

2009-06-05 Thread Timo Sirainen 

On Jun 5, 2009, at 9:26 AM, Robert Sloan wrote:

Every 2 or 3 days dovecot will not allow me to log into my IMAP  
server.  It keeps requesting my username and password.  If I do a / 
etc/init.d/dovecot restart it will start working again for a few  
days.  I have dovecot set up to use Maildir.


Set auth_debug=yes and look at what the logs say when it re-requests  
the password.

Re: [Dovecot] Dovecot under brute force attack - nice attacker

2009-06-05 Thread Timo Sirainen 

On Jun 5, 2009, at 4:58 AM, Cédric Laruelle wrote:

So to me, the only "problem" is the documentation as mentioned  
initially by

Henri which says :
# More verbose logging. Useful for figuring out why authentication
isn't
# working.
auth_verbose = yes


OK, how about: http://hg.dovecot.org/dovecot-1.2/rev/a9d3108d0cec

[Dovecot] Dovecot + DRBD/GFS mailstore

2009-06-05 Thread Guy 
Hi guys,

I'm looking at the possibility of running a pair of servers with
Dovecot LDA/imap/pop3 using internal drives with DRBD and GFS (or
other clustered FS) for the mail storage and ext3 for the root drive.

I'm currently using maildrop for delivery and Dovecot imap/pop3 with
the stores over NFS. I'm looking for better performance but still
keeping the HA element I have now with shared storage over NFS.

Has anyone had experience with a setup like the one I'm suggesting?
What was performance like with Dovecot using GFS?

Thanks
Guy

-- 
Don't just do something...sit there!

[Dovecot] Dovecot Problem

2009-06-05 Thread Robert Sloan 
Every 2 or 3 days dovecot will not allow me to log into my IMAP server.  
It keeps requesting my username and password.  If I do a 
/etc/init.d/dovecot restart it will start working again for a few days.  
I have dovecot set up to use Maildir.


Dovecot Version: Not sure but it is the one that comes with Ubuntu 9.04
OS: Ubuntu 9.04
CPU: x86
Filesystem: Local EXT4
Dovecot Config:

# 1.1.11: /etc/dovecot/dovecot.conf
# OS: Linux 2.6.28-11-server i686 Ubuntu 9.04
log_timestamp: %Y-%m-%d %H:%M:%S
protocols: imap imaps pop3 pop3s
disable_plaintext_auth: no
login_dir: /var/run/dovecot/login
login_executable(default): /usr/lib/dovecot/imap-login
login_executable(imap): /usr/lib/dovecot/imap-login
login_executable(pop3): /usr/lib/dovecot/pop3-login
mail_privileged_group: mail
mail_location: maildir:~/Maildir
mail_executable(default): /usr/lib/dovecot/imap
mail_executable(imap): /usr/lib/dovecot/imap
mail_executable(pop3): /usr/lib/dovecot/pop3
mail_plugin_dir(default): /usr/lib/dovecot/modules/imap
mail_plugin_dir(imap): /usr/lib/dovecot/modules/imap
mail_plugin_dir(pop3): /usr/lib/dovecot/modules/pop3
auth default:
 passdb:
   driver: pam
 userdb:
   driver: passwd


Thanks.

Re: [Dovecot] Dovecot under brute force attack - nice attacker

2009-06-05 Thread henry ritzlmayr 
Am Freitag, den 05.06.2009, 09:24 +0200 schrieb Lenthir:
> Timo Sirainen pisze:
> > On Jun 4, 2009, at 10:01 AM, Lenthir wrote:
> >> Trying 127.0.0.1...
> >> Connected to localhost.
> >> Escape character is '^]'.
> >> +OK POP3 [127.0.0.1] server ready
> >> user krzys
> >> +OK User name accepted, password please
> >> pass wew
> >> -ERR Bad login / Bledne haslo lub login.
> >> Connection closed by foreign host.
> > 
> > That's not Dovecot.
> > 
> 
> I'm sorry to said that, but this is Dovecot...
> Maybe with little modifications, but this is Dovecot :)

Could you elaborate what kind of modifications you made?
Especially the connection closing is of real interest for me.

thanks
Henry

Re: [Dovecot] v1.2.rc5 released

2009-06-05 Thread Timo Sirainen 

On Jun 5, 2009, at 6:07 AM, Joan wrote:


after all. I've been a bit busy with v2.0 changes recently.



How stable is 2.0 compared to 1.2.rc5 ?


It's changing a lot, so it's not very stable.

Re: [Dovecot] v1.2.rc5 released

2009-06-05 Thread Joan 



http://dovecot.org/releases/1.2/rc/dovecot-1.2.rc5.tar.gz
http://dovecot.org/releases/1.2/rc/dovecot-1.2.rc5.tar.gz.sig
  


Great !


after all. I've been a bit busy with v2.0 changes recently.
  


How stable is 2.0 compared to 1.2.rc5 ?

Re: [Dovecot] User with multiple domains

2009-06-05 Thread Peter Sparkes 

Uldis Pakuls wrote:

Peter Sparkes wrote:
Jun  3 06:47:02 silkliving dovecot: POP3(sa...@aandt.co.uk): 
file_dotlock_open() failed with file 
/home/aandt.co.uk/sales/Maildir/dovecot.index.log: Permission denied
Jun  3 06:47:02 silkliving dovecot: POP3(sa...@aandt.co.uk): Couldn't 
open INBOX: Internal error occurred. Refer to server log for more 
information. [2009-06-03 06:47:02]


and the Maildir does not contain the following files which are in the 
user Maildir which are working correctly (these users only have email 
accounts in one domain):
dovecot-uidlist, dovecot.index, dovecot.index.cache and 
dovecot.index.log


Peter


": Permission denied" - that is reason why mailbox is unaccessible. Of
course maildir files cant be created if permission is denied. Check
premissions of "/home/aandt.co.uk/sales/Maildir/"

Uldis


As far as I can see the Permission are correct, all the other username 
domain combinations are working correctly . However to enable my client 
to get all his emails, I have  (in  Exim) sent the sales emails to 
another user. I will reproduce  the same conditions on a couple of 
domains I use for testing and report back


Thanks all for help

Peter

Re: [Dovecot] Dovecot under brute force attack - nice attacker

2009-06-05 Thread Cédric Laruelle 
I'm not sure I got everything here... Actually, I said it was a problem for
me, but it's not really.
Indeed, by just changing the setting auth_verbose to yes (but leaving
auth-debug to no), I get a line like
auth-worker(default): pam(USER,HOST): pam_authenticate() failed:
Authentication failure (password mismatch?)
without any extra log information I don't need (only auth_debug would
produce such info).
This log is perfectly catchable by fail2ban or any other system.

So to me, the only "problem" is the documentation as mentioned initially by
Henri which says :
# More verbose logging. Useful for figuring out why authentication
isn't
# working.
auth_verbose = yes

Am I missing something ?

Cédric

Re: [Dovecot] ldap_search() failed "Server Busy"

2009-06-05 Thread Paul Carter-Brown 
Thanks Timo,

Dovecot would not boot without count=1 but i did change the settings to
cache authentications and we cant reproduce the error any more.

Thanks for your help!

Paul


-Original Message-
From: Timo Sirainen 
To: Paul Carter-Brown 
Cc: dovecot@dovecot.org
Subject: Re: [Dovecot] ldap_search() failed "Server Busy"
Date: Thu, 04 Jun 2009 17:56:35 -0400


On Thu, 2009-06-04 at 22:23 +0200, Paul Carter-Brown wrote:
> Jun  4 18:30:59 ug1s02-zone1 dovecot: [ID 107833 mail.error]
> auth(default): ldap(0202934...@ug.smilecoms.com,10.31.3.13):
> ldap_search() failed (filter (uid=0202934...@ug.smilecoms.com)): Server
> is busy
> 
> We are authenticating against sun directory server yet see no errors in
> the directory server and it seems to be under low load. Any ideas if
> there is something on dovecot we should tune to erradicate this? We are
> running a web front end on top of dovecot and hence have a lot of
> login/logout happening as the user navigates around.

Oh, and enabling auth cache would probably solve this too, since most
auths wouldn't go to LDAP then.

Re: [Dovecot] Dovecot under brute force attack - nice attacker

2009-06-05 Thread Lenthir 

Timo Sirainen pisze:

On Jun 4, 2009, at 10:01 AM, Lenthir wrote:

Trying 127.0.0.1...
Connected to localhost.
Escape character is '^]'.
+OK POP3 [127.0.0.1] server ready
user krzys
+OK User name accepted, password please
pass wew
-ERR Bad login / Bledne haslo lub login.
Connection closed by foreign host.


That's not Dovecot.



I'm sorry to said that, but this is Dovecot...
Maybe with little modifications, but this is Dovecot :)

POP3:
telnet localhost 10101
Escape character is '^]'.
+OK POP3 [127.0.0.1] server ready
user krzys7...@op.pl
+OK User name accepted, password please
pass 
+OK Mailbox open, 5 messages, new: 0, your primary account: 
krzys7...@op.pl, message quota: 30 kB

capa
+OK
CAPA
TOP
UIDL
RESP-CODES
PIPELINING
.
quit
+OK Sayonara

IMAP:
telnet localhost 10102
Trying 127.0.0.1...
Connected to localhost.
Escape character is '^]'.
* OK [CAPABILITY IMAP4rev1 LITERAL+ SASL-IR LOGIN-REFERRALS ID ENABLE 
STARTTLS AUTH=PLAIN] Dovecot ready.

o logout
Connection closed by foreign host.

Re: [Dovecot] Under POP attack - now to prevent?

2009-06-05 Thread Ralf Hildebrandt 
* James Brown :
> Looks like we are under a dictionary login attack on our POP server:
...

> Any suggestions on how to prevent this?

apt-get install fail2ban

-- 
Ralf Hildebrandt
Postfix - Einrichtung, Betrieb und Wartung   Tel. +49 (0)30-450 570-155
http://www.computerbeschimpfung.de
May's Law: The quality of correlation is inversely proportional to the
density of control. (The fewer data points, the smoother the curves.)