Re: [Dovecot] Sieve problem. Timo, is this mbox file size limitation hard coded? If so, why?
On 11/05/10 04:06, Stan Hoeppner wrote: It would be nice if there was a short heads up regarding this in the dovecot wiki postfix LDA and/or sieve sections. I'll mention this on postfix-user as well. From http://wiki.dovecot.org/LDA: "Note that Postfix's mailbox_size_limit setting applies to all files that are written to. So if you have a limit of 50 MB, deliver can't write to log files larger than 50 MB and you'll start getting temporary failures." Bob
Re: [Dovecot] Best location for indexes?
On Mon, May 10, 2010 at 11:21 PM, Curtis Maloney wrote: > On 05/11/10 16:05, Brandon Lamb wrote: >> >> I cant seem to find anything via a google search, so if this has been >> answered I apologize. >> >> I am wondering if INDEX=MEMORY is going to give the best performance >> versus files? I have a server with directly attached storage, 8 gigs >> of ram, about 500 gigs of data. > >> I am ok with losing and having to rebuild the indexes on a reboot as >> the last uptime was over 200 days > > Last I checked, INDEX=MEMORY rebuilds the index on demand, on each > _connection_. > > Your best bet is to keep the indices on disk. Certainly, if you can keep > them on a separate spindle from the mail store, you may find a performance > improvement through parallelism and lack of seek clash. > > -- > Curtis Maloney Oh damnit haha. I thought it saved it in memory like a ramdisk or some kind of implementation like that, not only the duration of a connection =\ Back to disk then! Thanks! =)
Re: [Dovecot] Best location for indexes?
On 05/11/10 16:05, Brandon Lamb wrote: I cant seem to find anything via a google search, so if this has been answered I apologize. I am wondering if INDEX=MEMORY is going to give the best performance versus files? I have a server with directly attached storage, 8 gigs of ram, about 500 gigs of data. I am ok with losing and having to rebuild the indexes on a reboot as the last uptime was over 200 days Last I checked, INDEX=MEMORY rebuilds the index on demand, on each _connection_. Your best bet is to keep the indices on disk. Certainly, if you can keep them on a separate spindle from the mail store, you may find a performance improvement through parallelism and lack of seek clash. -- Curtis Maloney
[Dovecot] Best location for indexes?
I cant seem to find anything via a google search, so if this has been answered I apologize. I am wondering if INDEX=MEMORY is going to give the best performance versus files? I have a server with directly attached storage, 8 gigs of ram, about 500 gigs of data. I am ok with losing and having to rebuild the indexes on a reboot as the last uptime was over 200 days
[Dovecot] antispam plugin problem
Hi I have installed a plug-in an antispam and when I try to move the message to a folder a spam mutt produces an error "Failed to call dspam." Here's my configuration(all built from ports): dovecot 1.2.11 dovecot-antispam 1.2_4,1 dspam 3.9.0_1 FreeBSD 8.0 Relevant sections from dovecot.conf: protocol imap { mail_plugins = antispam ... } plugin { antispam_signature = X-DSPAM-Signature antispam_dspam_result_header = X-DSPAM-Result antispam_signature_missing = error antispam_spam = SPAM;spam;JUNK antispam_dspam_binary = /usr/local/bin/dspam antispam_dspam_args = --client;--user vmail antispam_crm_args = --config=/home/vmail } .config used by dovecot-antispam: BACKEND=dspam-exec PLUGINNAME=antispam DEBUG=syslog DEBUG_VERBOSE=1 May 11 10:54:09 evil imap: antispam: mail copy: src spam: 0, dst spam: 1, src unsure: 0 May 11 10:54:09 evil imap: antispam: /usr/local/bin/dspam --source=error --class=spam --signature=4be87a9f953248352114216 --client --user vmail May 11 10:54:09 evil imap: antispam: executing /usr/local/bin/dspam failed: 13 (uid=1009, gid=1010) uid=1009, gid=1010 is vmail user %> grep vmail /usr/local/etc/dspam.conf Trust vmail Thanks
Re: [Dovecot] looking for feedbacks on courier to dovecot
> Charles Marcus : >My advice is - and no offense No problem. You're right. >On 2010-05-08 2:09 PM, luben karavelov wrote: >> On 8.05.2010 20:57, Mihamina Rakotomandimby wrote: "Arne K. Haaje" : This worked great, and as it preserves flags users did not have to re-download mail. You might want to tune some of the parameters like wheter to subscribe to folders or not. >> >>> That's about IMAP switch. Thank you. >>> What about any POP experience? >> >> I have used courier-dovecot-migrate.pl. You have to use a recent >> version of dovecot (>=1.1) and set the uidl format in the pop3 >> configuration. I.e. in "protocol pop3" section, add following: >> >> pop3_uidl_format = %08Xu%08Xv > >So - you need to: > >1. UPGRADE Dovecot (1.0.15 is OLD - latest versions available from >backports), and > >2. Adjust the pop3_uidl_format per above... Ok, I'll tell you the result. Thank you. -- Architecte Informatique chez Blueline/Gulfsat: Administration Systeme, Recherche & Developpement +261 34 29 155 34 / +261 33 11 207 36
Re: [Dovecot] Sieve problem. Timo, is this mbox file size limitation hard coded? If so, why?
Apologies for pointing the finger at lda/sieve. After much digging and Googling I found that the problem actually lies with a Postfix default setting, specifically: "mailbox_size_limit (default: 5120) The maximal size of any local(8) individual mailbox or maildir file, or zero (no limit). In fact, this limits the size of any file that is written to upon local delivery, including files written by external commands that are executed by the local(8) delivery agent. This limit must not be smaller than the message size limit." I set it to zero and that fixed the problem. This is indeed one strange situation. The error was reported in the log by dovecot, but the setting that fixes the problem is actually in Postfix. It would be nice if there was a short heads up regarding this in the dovecot wiki postfix LDA and/or sieve sections. I'll mention this on postfix-user as well. -- Stan Stan Hoeppner put forth on 5/10/2010 6:03 PM: > I would not have expected this upon implementing sieve. And I really need > to get around this limitation. LDA has no problem writing to these large > mbox files. Why does sieve have a problem with them? This is very odd. > > May 10 17:45:04 greer dovecot: deliver(stan): write() failed with mbox file > /home/stan/mail/1-Debian-Users: File too large > May 10 17:45:04 greer dovecot: deliver(stan): write() failed with mbox file > /home/stan/mail/1-Debian-Users: File too large > May 10 17:45:04 greer dovecot: deliver(stan): sieve: > msgid=<20100510224422.ga4...@heima.gjk.dk>: failed to store into mailbox > '1-Debian-Users': Internal error occurred. Refer to server log for more > information. [2010-05-10 17:45:04] > May 10 17:45:04 greer dovecot: deliver(stan): sieve: > msgid=<20100510224422.ga4...@heima.gjk.dk>: stored mail into mailbox 'INBOX' > May 10 17:45:04 greer dovecot: deliver(stan): sieve: execution of script > /home/stan/.dovecot.sieve failed, but implicit keep was successful > > May 10 17:47:41 greer dovecot: deliver(stan): write() failed with mbox file > /home/stan/mail/1-Spam-l: File too large > May 10 17:47:41 greer dovecot: deliver(stan): sieve: > msgid=: failed > store into mailbox '1-Spam-l': Internal error occurred. Refer to server log > for more information. [2010-05-10 17:47:41] > May 10 17:47:41 greer dovecot: deliver(stan): sieve: > msgid=: stored > il into mailbox 'INBOX' > May 10 17:47:41 greer dovecot: deliver(stan): sieve: execution of script > /home/stan/.dovecot.sieve failed, but implicit keep was scessful > > [05:52:24][r...@greer]/usr/bin$ la /home/stan/mail/ > total 301M > drwx-- 5 stan stan 4.0K May 7 04:33 . > drwxr-xr-x 10 stan stan 4.0K May 10 16:18 .. > drwx-- 37 stan stan 4.0K May 7 04:33 .imap > -rw--- 1 stan stan 463 May 7 04:33 .subscriptions > -rw--- 1 stan stan 66M May 10 17:45 1-Debian-Users > -rw--- 1 stan stan 14M May 10 17:16 1-Dovecot > -rw--- 1 stan stan 3.6M May 10 16:05 1-Linux-IDE > -rw--- 1 stan stan 30M May 10 17:48 1-Postfix-Users > -rw--- 1 stan stan 1.4M May 10 12:33 1-Roundcube > -rw--- 1 stan stan 17M May 10 15:55 1-Samba > -rw--- 1 stan stan 56M May 10 17:47 1-Spam-l > -rw--- 1 stan stan 6.7M May 10 17:45 1-XFS > -rw--- 1 stan stan 18M May 10 16:32 SpamTrap > > Is there any reason we have a fixed ceiling on the size of an mbox sieve > will write to? Man this is disappointing. What is the ceiling? It appears > to be somewhere between 30MB and 56MB as writes to 1-Postfix-Users are > successful but writes to 1-Spam-l fail. > > Is there a fix/patch for this? > > Thanks. >
[Dovecot] Sieve problem. Timo, is this mbox file size limitation hard coded? If so, why?
I would not have expected this upon implementing sieve. And I really need to get around this limitation. LDA has no problem writing to these large mbox files. Why does sieve have a problem with them? This is very odd. May 10 17:45:04 greer dovecot: deliver(stan): write() failed with mbox file /home/stan/mail/1-Debian-Users: File too large May 10 17:45:04 greer dovecot: deliver(stan): write() failed with mbox file /home/stan/mail/1-Debian-Users: File too large May 10 17:45:04 greer dovecot: deliver(stan): sieve: msgid=<20100510224422.ga4...@heima.gjk.dk>: failed to store into mailbox '1-Debian-Users': Internal error occurred. Refer to server log for more information. [2010-05-10 17:45:04] May 10 17:45:04 greer dovecot: deliver(stan): sieve: msgid=<20100510224422.ga4...@heima.gjk.dk>: stored mail into mailbox 'INBOX' May 10 17:45:04 greer dovecot: deliver(stan): sieve: execution of script /home/stan/.dovecot.sieve failed, but implicit keep was successful May 10 17:47:41 greer dovecot: deliver(stan): write() failed with mbox file /home/stan/mail/1-Spam-l: File too large May 10 17:47:41 greer dovecot: deliver(stan): sieve: msgid=: failed store into mailbox '1-Spam-l': Internal error occurred. Refer to server log for more information. [2010-05-10 17:47:41] May 10 17:47:41 greer dovecot: deliver(stan): sieve: msgid=: stored il into mailbox 'INBOX' May 10 17:47:41 greer dovecot: deliver(stan): sieve: execution of script /home/stan/.dovecot.sieve failed, but implicit keep was scessful [05:52:24][r...@greer]/usr/bin$ la /home/stan/mail/ total 301M drwx-- 5 stan stan 4.0K May 7 04:33 . drwxr-xr-x 10 stan stan 4.0K May 10 16:18 .. drwx-- 37 stan stan 4.0K May 7 04:33 .imap -rw--- 1 stan stan 463 May 7 04:33 .subscriptions -rw--- 1 stan stan 66M May 10 17:45 1-Debian-Users -rw--- 1 stan stan 14M May 10 17:16 1-Dovecot -rw--- 1 stan stan 3.6M May 10 16:05 1-Linux-IDE -rw--- 1 stan stan 30M May 10 17:48 1-Postfix-Users -rw--- 1 stan stan 1.4M May 10 12:33 1-Roundcube -rw--- 1 stan stan 17M May 10 15:55 1-Samba -rw--- 1 stan stan 56M May 10 17:47 1-Spam-l -rw--- 1 stan stan 6.7M May 10 17:45 1-XFS -rw--- 1 stan stan 18M May 10 16:32 SpamTrap Is there any reason we have a fixed ceiling on the size of an mbox sieve will write to? Man this is disappointing. What is the ceiling? It appears to be somewhere between 30MB and 56MB as writes to 1-Postfix-Users are successful but writes to 1-Spam-l fail. Is there a fix/patch for this? Thanks. -- Stan
Re: [Dovecot] dovecot/deliver ... Can't open log file /var/log/dovecot/error.log: Permission denied
On Mon, 10 May 2010 17:30:48 -0400 Phil Howard articulated: > On Mon, May 10, 2010 at 17:11, Romer Ventura > wrote: > > > try using -d ${recipient}, but change the format of the username in > > dovecot.conf > > > > What does "change the format of the username" mean? > > > > > What i did was to set the mail attribute for each user in AD, then > > perform a query for it and have dovecot group users by domain, this > > way i can have us...@example.net and us...@example.com > > > Sorry, now I'm just not following this at all. I don't know what mail > attribute apply here, and I don't know what "in AD" means. > > I have the following in in my dovecot-postfix.conf file: > > mail_location = > maildir:/home/mail/dnamesum=%12MLd/dname=%Ld/unamesum=%12MLn/uname=%Ln/mail > > And this was working until I switched to the "virtual_transport = > dovecot" method ... although %d was coming up empty (and %12MLd was > the md5 of empty). Ultimately my intention is to have: > > mail_location = maildir:/home/mail/%2MLd/%Ld/%2MLn/%Ln/mail Please post the output of "dovecot -n" and "postconf -n". Better, provide output from the postfinger tool. This can be found at http://ftp.wl0.org/SOURCES/postfinger. -- Jerry dovecot.u...@seibercom.net Disclaimer: off-list followups get on-list replies or get ignored. Please do not ignore the Reply-To header. __
Re: [Dovecot] dovecot/deliver ... Can't open log file /var/log/dovecot/error.log: Permission denied
On Mon, May 10, 2010 at 17:23, Romer Ventura wrote: > man pipe > > ${nexthop} > This macro expands to the next-hop hostname. > > This information is modified by the h flag for case > folding. > But what is next hop? I don't have any next hop that I'm aware of. These are local domains being kept distinct.
Re: [Dovecot] dovecot/deliver ... Can't open log file /var/log/dovecot/error.log: Permission denied
On Mon, May 10, 2010 at 17:11, Romer Ventura wrote: > try using -d ${recipient}, but change the format of the username in > dovecot.conf > What does "change the format of the username" mean? > What i did was to set the mail attribute for each user in AD, then perform > a query for it and have dovecot group users by domain, this way i can have > us...@example.net and us...@example.com Sorry, now I'm just not following this at all. I don't know what mail attribute apply here, and I don't know what "in AD" means. I have the following in in my dovecot-postfix.conf file: mail_location = maildir:/home/mail/dnamesum=%12MLd/dname=%Ld/unamesum=%12MLn/uname=%Ln/mail And this was working until I switched to the "virtual_transport = dovecot" method ... although %d was coming up empty (and %12MLd was the md5 of empty). Ultimately my intention is to have: mail_location = maildir:/home/mail/%2MLd/%Ld/%2MLn/%Ln/mail
Re: [Dovecot] dovecot/deliver ... Can't open log file /var/log/dovecot/error.log: Permission denied
man pipe ${nexthop} This macro expands to the next-hop hostname. This information is modified by the h flag for case folding. Thanks -- Romer Ventura On May 10, 2010, at 4:23 PM, Phil Howard wrote: On Mon, May 10, 2010 at 15:25, Jerry wrote: From my 'master.cf' file: dovecot unix - n n - - pipe flags=DRhu user=vmail:vmail argv=/usr/local/libexec/dovecot/deliver -f ${sender} -d ${us...@${nexthop} From 'main.cf' file: (snippet) virtual_gid_maps = static:1002 virtual_minimum_uid = 100 virtual_transport = dovecot virtual_uid_maps = static:1002 I want to give this approach a try. But I can't find anything in the docs on what ${nexthop} means. I'm not doing any hopping. I don't know what to put in here. Is this just the domain? Would that be ${domain} that I need to use? I just gave it a shot. Nothing is happening. Postfix comes up. Email into port 25 goes in. But nothing shows up in a mailbox and the log files are not created. It's as if deliver doesn't even get run. Oops ... just found that the mail is showing up in /var/mail/$ {USER} ... totally wrong place like Postfix is ignoring this and not running dovecot/deliver at all.
Re: [Dovecot] dovecot/deliver ... Can't open log file /var/log/dovecot/error.log: Permission denied
On Mon, May 10, 2010 at 15:25, Jerry wrote: > From my 'master.cf' file: > > dovecot unix - n n - - pipe > flags=DRhu user=vmail:vmail argv=/usr/local/libexec/dovecot/deliver > -f ${sender} -d ${us...@${nexthop} > > From 'main.cf' file: (snippet) > > virtual_gid_maps = static:1002 > virtual_minimum_uid = 100 > virtual_transport = dovecot > virtual_uid_maps = static:1002 > I want to give this approach a try. But I can't find anything in the docs on what ${nexthop} means. I'm not doing any hopping. I don't know what to put in here. Is this just the domain? Would that be ${domain} that I need to use? I just gave it a shot. Nothing is happening. Postfix comes up. Email into port 25 goes in. But nothing shows up in a mailbox and the log files are not created. It's as if deliver doesn't even get run. Oops ... just found that the mail is showing up in /var/mail/${USER} ... totally wrong place like Postfix is ignoring this and not running dovecot/deliver at all.
Re: [Dovecot] dovecot/deliver ... Can't open log file /var/log/dovecot/error.log: Permission denied
try using -d ${recipient}, but change the format of the username in dovecot.conf What i did was to set the mail attribute for each user in AD, then perform a query for it and have dovecot group users by domain, this way i can have us...@example.net and us...@example.com Thanks -- Romer Ventura On May 10, 2010, at 3:56 PM, Phil Howard wrote: On Mon, May 10, 2010 at 15:58, Jerry wrote: See: http://wiki.dovecot.org/LDA/Postfix Be sure to read the entire page. I have a few times. But now I'm getting a bit of a different perspective on part of it. The parameters are: -d : Destination username. If given, the user information is looked up from dovecot-auth. Typically used with virtual users, but not necessarily with system users. -a : Destination address (e.g. user+...@domain). Default is the same as username. (v1.1+ only) Well, that was actually confusing. I was passing the address via -a instead of -d because -d was described as username. That, and I know that the first cases of "virtual users" (in sendmail and earlier postfix) was actually just a twisted variant of system users, where the left hand side of @ was used alone, and it didn't support distinct domains (e.g. b...@example.com and b...@example.net were both just bob ... even if not the same as bob in /etc/passwd). And that's why I didn't use -d because in my case, I do have different domains, where f...@example.com and f...@example.net are different people. So they are separate mailboxes and separate IMAP and submit logins. Oh, and their passwords may be different, too :-) It's easy to continue to tie in virtual users to system users when uniqueness is only on the LHS. So if je...@example.com and je...@example.net are the same user, and likewise for all users, then storing the password in /etc/passwd or /etc/shadow suffices (for those not wanting to use LDAP, SQL, etc). But when the users need to be different across different domains, even though the LHS is the same, now we have issues with connecting them to system users. And I have seen people map usern...@domainname to someothername to lookup in /etc/passwd (that would be a nightmare) or just put usern...@domainname in /etc/passwd (not sure how well that would work). But there is more than one semantic for "virtual users". I believe I have seen at least four. In my case it will be unrelated to system users in /etc/passwd or the setuid() or seteuid() calls. Security will depend on the mail application codes, not the underlying OS, to keep one user out of another's mailbox (or sieve scripts,etc). So what is virtual_minimum_uid doing for you if virtual_uid_maps is static? Or why are any of these even relevant if everything is being piped to a process started via master.cf? Not really sure. I was told it has something to do with Postfix itself. The description of virtual_minumum_uid seemed to suggest that it was a bound applied to what you get from virtual_uid_maps in case something was bad in the map. And (problem I posted in a separate thread) does %d get assigned correctly with the domain name for mail_location = if this method of running dovecot/deliver is used? You can either try it or perhaps ask on the Postfix forum. Maybe it's related to -d vs -a in dovecot/deliver. Postfix was sending the full u...@domain to dovecot/deliver, and the %d should have been filled in from that by dovecot/deliver. But I was using -a and that may be wrong. I'll try with -d instead. Now I get a new error I didn't get before: Error: Can't connect to auth server at /var/run/dovecot//auth-master: Permission denied It's not really clear how it is that worked before.
Re: [Dovecot] dovecot/deliver ... Can't open log file /var/log/dovecot/error.log: Permission denied
On Mon, May 10, 2010 at 15:58, Jerry wrote: > > See: http://wiki.dovecot.org/LDA/Postfix > > Be sure to read the entire page. > I have a few times. But now I'm getting a bit of a different perspective on part of it. The parameters are: -d : Destination username. If given, the user information is looked up from dovecot-auth. Typically used with virtual users, but not necessarily with system users. -a : Destination address (e.g. user+...@domain). Default is the same as username. (v1.1+ only) Well, that was actually confusing. I was passing the address via -a instead of -d because -d was described as username. That, and I know that the first cases of "virtual users" (in sendmail and earlier postfix) was actually just a twisted variant of system users, where the left hand side of @ was used alone, and it didn't support distinct domains (e.g. b...@example.com and b...@example.net were both just bob ... even if not the same as bob in /etc/passwd). And that's why I didn't use -d because in my case, I do have different domains, where f...@example.com and f...@example.net are different people. So they are separate mailboxes and separate IMAP and submit logins. Oh, and their passwords may be different, too :-) It's easy to continue to tie in virtual users to system users when uniqueness is only on the LHS. So if je...@example.com and je...@example.net are the same user, and likewise for all users, then storing the password in /etc/passwd or /etc/shadow suffices (for those not wanting to use LDAP, SQL, etc). But when the users need to be different across different domains, even though the LHS is the same, now we have issues with connecting them to system users. And I have seen people map usern...@domainname to someothername to lookup in /etc/passwd (that would be a nightmare) or just put usern...@domainname in /etc/passwd (not sure how well that would work). But there is more than one semantic for "virtual users". I believe I have seen at least four. In my case it will be unrelated to system users in /etc/passwd or the setuid() or seteuid() calls. Security will depend on the mail application codes, not the underlying OS, to keep one user out of another's mailbox (or sieve scripts,etc). > > So what is virtual_minimum_uid doing for you if virtual_uid_maps is > > static? Or why are any of these even relevant if everything is being > > piped to a process started via master.cf? > > Not really sure. I was told it has something to do with Postfix itself. > The description of virtual_minumum_uid seemed to suggest that it was a bound applied to what you get from virtual_uid_maps in case something was bad in the map. > > And (problem I posted in a separate thread) does %d get assigned > > correctly with the domain name for mail_location = if this method of > > running dovecot/deliver is used? > > You can either try it or perhaps ask on the Postfix forum. > Maybe it's related to -d vs -a in dovecot/deliver. Postfix was sending the full u...@domain to dovecot/deliver, and the %d should have been filled in from that by dovecot/deliver. But I was using -a and that may be wrong. I'll try with -d instead. Now I get a new error I didn't get before: Error: Can't connect to auth server at /var/run/dovecot//auth-master: Permission denied It's not really clear how it is that worked before.
Re: [Dovecot] dovecot/deliver ... Can't open log file /var/log/dovecot/error.log: Permission denied
On Mon, 10 May 2010 15:35:15 -0400 Phil Howard articulated: > On Mon, May 10, 2010 at 15:25, Jerry > wrote: > > > From my 'master.cf' file: > > > > dovecot unix - n n - - pipe > > flags=DRhu user=vmail:vmail argv=/usr/local/libexec/dovecot/deliver > > -f ${sender} -d ${us...@${nexthop} > > > > From 'main.cf' file: (snippet) > > > > virtual_gid_maps = static:1002 > > virtual_minimum_uid = 100 > > virtual_transport = dovecot > > virtual_uid_maps = static:1002 > > > > Obviously, I have that user: > > > > pw showuser 1002 > > vmail:*:1002:1002::0:0:Virtual Mail > > User:/nonexistent:/usr/sbin/nologin > > > > My log file is has 0600 permissions and its owner/group is 'vmail'. > > > > So what does this make Postfix do? Run one instance of > dovecot/deliver and pipe email to it? Maybe that is the right > solution and running it via mailbox_command is wrong? See: http://wiki.dovecot.org/LDA/Postfix Be sure to read the entire page. > So what is virtual_minimum_uid doing for you if virtual_uid_maps is > static? Or why are any of these even relevant if everything is being > piped to a process started via master.cf? Not really sure. I was told it has something to do with Postfix itself. > And (problem I posted in a separate thread) does %d get assigned > correctly with the domain name for mail_location = if this method of > running dovecot/deliver is used? You can either try it or perhaps ask on the Postfix forum. -- Jerry dovecot.u...@seibercom.net Disclaimer: off-list followups get on-list replies or get ignored. Please do not ignore the Reply-To header. __
[Dovecot] about acl
I use dovecot, vpopmail. I wish to restrict a mail user's login to its mailbox according to its ip address. I don't wish other users to be affected . Namely, for instance, a...@domain.com can login to its mailbox from a few specific ip addresses but the same user will not able to login from anywhere. Meanwhile normally other mail users can login to their mailboxes from all ip addresses. How can I do that with dovecot acl ? any advice.
Re: [Dovecot] dovecot/deliver ... Can't open log file /var/log/dovecot/error.log: Permission denied
On Mon, May 10, 2010 at 15:25, Jerry wrote: > From my 'master.cf' file: > > dovecot unix - n n - - pipe > flags=DRhu user=vmail:vmail argv=/usr/local/libexec/dovecot/deliver > -f ${sender} -d ${us...@${nexthop} > > From 'main.cf' file: (snippet) > > virtual_gid_maps = static:1002 > virtual_minimum_uid = 100 > virtual_transport = dovecot > virtual_uid_maps = static:1002 > > Obviously, I have that user: > > pw showuser 1002 > vmail:*:1002:1002::0:0:Virtual Mail User:/nonexistent:/usr/sbin/nologin > > My log file is has 0600 permissions and its owner/group is 'vmail'. > So what does this make Postfix do? Run one instance of dovecot/deliver and pipe email to it? Maybe that is the right solution and running it via mailbox_command is wrong? So what is virtual_minimum_uid doing for you if virtual_uid_maps is static? Or why are any of these even relevant if everything is being piped to a process started via master.cf? And (problem I posted in a separate thread) does %d get assigned correctly with the domain name for mail_location = if this method of running dovecot/deliver is used?
[Dovecot] Help with acl_shared_dict
Hi all, I am trying to set up shared folders with dovecot 1.2.10-0xk1 on a ubuntu 8.04 server and so far so good. I managed to share a folder using GOSa GUI, but I cannot list it on Thunderbird yet, because of acl_shared_dict param (I guess). I tried BDB as per the wiki: plugin { acl_shared_dict = file:/var/lib/dovecot/shared-mailboxes.db } I gave shared-mailboxes.db 0666 perms but it keeps resetting permissions to 0600, which gives me "open(/var/lib/dovecot/shared-mailboxes.db) failed: Permission denied" errors. So I went to try sql dict, but could not find where to put sql server connection details like user, host, password. dovecot -n (with sql dict): # 1.2.10: /etc/dovecot/dovecot.conf # OS: Linux 2.6.24-27-server i686 Ubuntu 8.04.4 LTS log_timestamp: %Y-%m-%d %H:%M:%S protocols: imap imaps managesieve ssl_cert_file: /etc/ssl/certs/dovecot.pem ssl_key_file: /etc/ssl/private/dovecot.pem disable_plaintext_auth: no login_dir: /var/run/dovecot/login login_executable(default): /usr/lib/dovecot/imap-login login_executable(imap): /usr/lib/dovecot/imap-login login_executable(managesieve): /usr/lib/dovecot/managesieve-login mail_privileged_group: mail mail_location: maildir:~/Maildir mail_executable(default): /usr/lib/dovecot/imap mail_executable(imap): /usr/lib/dovecot/imap mail_executable(managesieve): /usr/lib/dovecot/managesieve mail_plugins(default): quota imap_quota acl imap_acl mail_plugins(imap): quota imap_quota acl imap_acl mail_plugins(managesieve): mail_plugin_dir(default): /usr/lib/dovecot/modules/imap mail_plugin_dir(imap): /usr/lib/dovecot/modules/imap mail_plugin_dir(managesieve): /usr/lib/dovecot/modules/managesieve namespace: type: private separator: / inbox: yes list: yes subscriptions: yes namespace: type: shared separator: / prefix: shared/%%u/ location: maildir:%%h/Maildir:INDEX=~/Maildir/shared/%%u list: children lda: postmaster_address: postmas...@a1.ind.br hostname: a1.ind.br mail_plugins: quota sieve acl auth default: mechanisms: plain login passdb: driver: pam args: session=yes blocking=yes dovecot userdb: driver: passwd socket: type: listen client: path: /var/spool/postfix/private/dovecot mode: 436 user: postfix group: postfix plugin: quota: maildir:storage=10485760 acl: vfile acl_anyone: allow acl_shared_dict: proxy::acl dict: acl: mysql:/etc/dovecot-dict-sql.conf (/etc/dovecot-dict-sql.conf is a copy from the wiki) Have I missed something? Thanks and best regards. -- Marcio Merlone
Re: [Dovecot] dovecot/deliver ... Can't open logfile /var/log/dovecot/error.log: Permission denied
On Mon, May 10, 2010 at 15:15, Egbert Jan wrote: > Could it be that selinux or apparmor are playing games with you??? > Good idea to check. But I don't have anything in my apparmor setup for either postfix or dovecot. I don't know about Romer Ventura's config. I do know the error trying to open the log files that I got is because the userid Postfix ran dovecot deliver as was not allowed to open files there (before I did chmod 777). So it's definitely an issue of what userid dovecot/deliver is running as (it runs as the LHS of receipient, not "vmail" as preferred).
Re: [Dovecot] dovecot/deliver ... Can't open log file /var/log/dovecot/error.log: Permission denied
On Mon, 10 May 2010 14:06:27 -0500 Romer Ventura articulated: > Yes, 1001 are the uid and gid in my system, check your /etc/passwd > to get the ones for your system. > > mailbox_command = /usr/lib/dovecot/deliver > > Thanks > -- > Romer Ventura > > On May 10, 2010, at 1:56 PM, Phil Howard wrote: > > > On Mon, May 10, 2010 at 14:44, Romer Ventura > > wrote: > > > >> What about your postfix conf..? > >> mine is set to: > >> virtual_gid_maps = static:1001 > >> virtual_mailbox_base = /srv/mail/vmail/ > >> virtual_mailbox_domains = $mydomain > >> virtual_mailbox_maps = ldap:/etc/postfix/ldap_users.cf > >> virtual_transport = dovecot > >> virtual_uid_maps = static:1001 > >> > > > > I saw conflicts in the docs for some of that and what I was > > doing. What is > > uid 1001 on yours? vmail? > > > > What does Postfix do with virtual_mailbox_base ... or why should > > it care if > > it is passing all deliverables to dovecot/deliver. I'm not using > > LDAP, so > > that's out. Auth is via Dovecot, and a test to a non-existant > > user was > > rejected as expected, so it seems the userdb lookup worked. What > > does "virtual_transport = dovecot" mean that ... > > > > mailbox_command = /usr/lib/dovecot/deliver -c > > /etc/dovecot/dovecot-postfix.conf -a "${RECIPIENT}" > > > > ... does not? > From my 'master.cf' file: dovecot unix - n n - - pipe flags=DRhu user=vmail:vmail argv=/usr/local/libexec/dovecot/deliver -f ${sender} -d ${us...@${nexthop} From 'main.cf' file: (snippet) virtual_gid_maps = static:1002 virtual_minimum_uid = 100 virtual_transport = dovecot virtual_uid_maps = static:1002 Obviously, I have that user: pw showuser 1002 vmail:*:1002:1002::0:0:Virtual Mail User:/nonexistent:/usr/sbin/nologin My log file is has 0600 permissions and its owner/group is 'vmail'. -- Jerry dovecot.u...@seibercom.net Disclaimer: off-list followups get on-list replies or get ignored. Please do not ignore the Reply-To header. __
[Dovecot] %d is empty in mail_location
I have this in dovecot-postfix.conf: mail_location = maildir:/home/mail/dnamesum=%12MLd/dname=%Ld/unamesum=%12MLn/uname=%Ln/mail Yes, it is excessive, but that's just for testing. The pattern I really want is less clear for debugging. In postfix/main.cf I have: mailbox_command = /usr/lib/dovecot/deliver -c /etc/dovecot/dovecot-postfix.conf -a "${RECIPIENT}" I verified through strace that -a "${RECIPIENT}" is in fact getting a full u...@domain address. The problem is that %d and %Ld are coming up as empty, and %12MLd is giving me the first 12 hex characters of an md5 of an empty content. It's losing the domain name somewhere. It's in the mail headers and in the -a option. So what else is needed?
Re: [Dovecot] dovecot/deliver ... Can't open logfile /var/log/dovecot/error.log: Permission denied
Could it be that selinux or apparmor are playing games with you??? just my 2 $cents Egbert Jan (NL) > -Oorspronkelijk bericht- > Van: dovecot-bounces+egbert=vandenbussche...@dovecot.org > [mailto:dovecot-bounces+egbert=vandenbussche...@dovecot.org] > Namens Romer Ventura > Verzonden: maandag 10 mei 2010 21:08 > Aan: Dovecot Mailing List > Onderwerp: Re: [Dovecot] dovecot/deliver ... Can't open > logfile /var/log/dovecot/error.log: Permission denied > > > I dont know what else. > > I tried to chwon postfix:postfix, vmail:vmail, postfix:vmail, > vmail:postfix and none of them worked. I had to go with chmod 777 > > > Thanks > -- > Romer Ventura > > On May 10, 2010, at 1:42 PM, Charles Marcus wrote: > > > On 2010-05-10 1:59 PM, Romer Ventura wrote: > >> I had to chmod 777 for it to work.. > > > > That's pretty much *never* a reasonable solution. > > > > -- > > > > Best regards, > > > > Charles Marcus > > I.T. Director > > Media Brokers International, Inc. > > 678.514.6200 x224 | 678.514.6299 fax > >
Re: [Dovecot] dovecot/deliver ... Can't open log file /var/log/dovecot/error.log: Permission denied
On Mon, May 10, 2010 at 15:07, Romer Ventura wrote: > I dont know what else. > > I tried to chwon postfix:postfix, vmail:vmail, postfix:vmail, vmail:postfix > and none of them worked. I had to go with chmod 777 > I believe that is because Postfix is running dovecot/deliver as username derived from the email address. Are all your users in your /etc/passwd file?
Re: [Dovecot] dovecot/deliver ... Can't open log file /var/log/dovecot/error.log: Permission denied
I dont know what else. I tried to chwon postfix:postfix, vmail:vmail, postfix:vmail, vmail:postfix and none of them worked. I had to go with chmod 777 Thanks -- Romer Ventura On May 10, 2010, at 1:42 PM, Charles Marcus wrote: On 2010-05-10 1:59 PM, Romer Ventura wrote: I had to chmod 777 for it to work.. That's pretty much *never* a reasonable solution. -- Best regards, Charles Marcus I.T. Director Media Brokers International, Inc. 678.514.6200 x224 | 678.514.6299 fax
Re: [Dovecot] dovecot/deliver ... Can't open log file /var/log/dovecot/error.log: Permission denied
Yes, 1001 are the uid and gid in my system, check your /etc/passwd to get the ones for your system. mailbox_command = /usr/lib/dovecot/deliver Thanks -- Romer Ventura On May 10, 2010, at 1:56 PM, Phil Howard wrote: On Mon, May 10, 2010 at 14:44, Romer Ventura wrote: What about your postfix conf..? mine is set to: virtual_gid_maps = static:1001 virtual_mailbox_base = /srv/mail/vmail/ virtual_mailbox_domains = $mydomain virtual_mailbox_maps = ldap:/etc/postfix/ldap_users.cf virtual_transport = dovecot virtual_uid_maps = static:1001 I saw conflicts in the docs for some of that and what I was doing. What is uid 1001 on yours? vmail? What does Postfix do with virtual_mailbox_base ... or why should it care if it is passing all deliverables to dovecot/deliver. I'm not using LDAP, so that's out. Auth is via Dovecot, and a test to a non-existant user was rejected as expected, so it seems the userdb lookup worked. What does "virtual_transport = dovecot" mean that ... mailbox_command = /usr/lib/dovecot/deliver -c /etc/dovecot/dovecot-postfix.conf -a "${RECIPIENT}" ... does not?
Re: [Dovecot] dovecot/deliver ... Can't open log file /var/log/dovecot/error.log: Permission denied
On Mon, May 10, 2010 at 14:44, Romer Ventura wrote: > What about your postfix conf..? > mine is set to: > virtual_gid_maps = static:1001 > virtual_mailbox_base = /srv/mail/vmail/ > virtual_mailbox_domains = $mydomain > virtual_mailbox_maps = ldap:/etc/postfix/ldap_users.cf > virtual_transport = dovecot > virtual_uid_maps = static:1001 > I saw conflicts in the docs for some of that and what I was doing. What is uid 1001 on yours? vmail? What does Postfix do with virtual_mailbox_base ... or why should it care if it is passing all deliverables to dovecot/deliver. I'm not using LDAP, so that's out. Auth is via Dovecot, and a test to a non-existant user was rejected as expected, so it seems the userdb lookup worked. What does "virtual_transport = dovecot" mean that ... mailbox_command = /usr/lib/dovecot/deliver -c /etc/dovecot/dovecot-postfix.conf -a "${RECIPIENT}" ... does not?
Re: [Dovecot] dovecot/deliver ... Can't open log file /var/log/dovecot/error.log: Permission denied
On Mon, May 10, 2010 at 14:42, Charles Marcus wrote: > On 2010-05-10 1:59 PM, Romer Ventura wrote: > > I had to chmod 777 for it to work.. > > That's pretty much *never* a reasonable solution. > Absolutely right! But it's an interim test ... in this case to see what userid the created file would be owned by regardless of the creator's credentials. What I discovered is, it is not "vmail". It is the system user that is the same as the username part of the email address (and that is not supposed to be the case). Postfix is choosing the wrong userid to run dovecot/deliver as. It should be "vmail". But I can't find a way to tell it that (so of course it's going to do whatever its default is). If it can setuid/seteuid to some arbitrary user as it is doing now, then it must be running as root at that point. So it should be able to just as easily setuid/seteuid to "vmail" ... if I can just find a way to tell it that. More Postfix doc reading to do.
Re: [Dovecot] dovecot/deliver ... Can't open log file /var/log/dovecot/error.log: Permission denied
What about your postfix conf..? mine is set to: virtual_gid_maps = static:1001 virtual_mailbox_base = /srv/mail/vmail/ virtual_mailbox_domains = $mydomain virtual_mailbox_maps = ldap:/etc/postfix/ldap_users.cf virtual_transport = dovecot virtual_uid_maps = static:1001 Thanks -- Romer Ventura On May 10, 2010, at 1:45 PM, Phil Howard wrote: Just realized my email was not going to the list. On Mon, May 10, 2010 at 14:20, Romer Ventura wrote: I am using static uids: mail_uid = vmail mail_gid = vmail user = vmail group = vmail else it will do what you describe. I have that, too. But it's not running the right userid. Deliver is running as the userid Postfix starts it as. How could it be any different since deliver is not suid root (nor should it be, afaik). It seems that I need to tell Postfix a specific userid to run it as (and tell it that userid is vmail). I haven't found how to do that, yet. I'm also getting wrong mail_location. The variable %d comes up empty. I verified that Postfix actually is passing the full u...@domain, in the message header, and in the -a argument (as coded in main.cf mainbox_command =). Maybe I need to make /usr/lib/dovecot/deliver be suid vmail? That would open it up to logged in system users injecting into mailboxes. Thanks -- Romer Ventura On Mon, May 10, 2010 at 13:59, Romer Ventura wrote: I had to chmod 777 for it to work.. I did chmod 777 to see what it would do, and especially, what userid the log files were owned by. Bad news from that ... they are owned by the first user I sent email to. That seems to me to be a Postfix issue where Postfix still thinks I mailing to local system users, and running the deliver program under such a userid. When I start adding users which don't have local system user equivalents, that's going to be a problem Also, I'm finding that in mail_location = the variable %d is empty. It should be the domain. Again, this seems like Postfix is treating local delivery as all-users-are-equivalent for any local domain (and that is definitely not the case). So I need to look at some Postfix config now to see how to make it pass the full email address (u...@domain ... so %...@%d represents the email address), and to run dovecot/deliver as user vmail. At least I'm not using sendmail :-) This old legacy "system user" thing is sure a PITA. It should either be ON or OFF. log files automatically named by the date (and maybe time) ... kind of like in a shell script I would do: `date +/path/to/tree/%Y/%m/% d.log` or such.
Re: [Dovecot] dovecot/deliver ... Can't open log file /var/log/dovecot/error.log: Permission denied
Just realized my email was not going to the list. On Mon, May 10, 2010 at 14:20, Romer Ventura wrote: > I am using static uids: > mail_uid = vmail > mail_gid = vmail > user = vmail > group = vmail > > else it will do what you describe. > I have that, too. But it's not running the right userid. Deliver is running as the userid Postfix starts it as. How could it be any different since deliver is not suid root (nor should it be, afaik). It seems that I need to tell Postfix a specific userid to run it as (and tell it that userid is vmail). I haven't found how to do that, yet. I'm also getting wrong mail_location. The variable %d comes up empty. I verified that Postfix actually is passing the full u...@domain, in the message header, and in the -a argument (as coded in main.cf mainbox_command =). Maybe I need to make /usr/lib/dovecot/deliver be suid vmail? That would open it up to logged in system users injecting into mailboxes. > Thanks > -- > Romer Ventura > > On Mon, May 10, 2010 at 13:59, Romer Ventura wrote: >> I had to chmod 777 for it to work.. >> >> I did chmod 777 to see what it would do, and especially, what userid the >> log files were owned by. Bad news from that ... they are owned by the first >> user I sent email to. That seems to me to be a Postfix issue where Postfix >> still thinks I mailing to local system users, and running the deliver >> program under such a userid. When I start adding users which don't have >> local system user equivalents, that's going to be a problem >> >> Also, I'm finding that in mail_location = the variable %d is empty. It >> should be the domain. Again, this seems like Postfix is treating local >> delivery as all-users-are-equivalent for any local domain (and that is >> definitely not the case). So I need to look at some Postfix config now to >> see how to make it pass the full email address (u...@domain ... so %...@%d >> represents the email address), and to run dovecot/deliver as user vmail. >> >> At least I'm not using sendmail :-) >> >> This old legacy "system user" thing is sure a PITA. It should either be >> ON or OFF. >> log files automatically named by the date (and maybe time) ... kind of >> like in a shell script I would do: `date +/path/to/tree/%Y/%m/%d.log` or >> such. >> > >
Re: [Dovecot] dovecot/deliver ... Can't open log file /var/log/dovecot/error.log: Permission denied
On 2010-05-10 1:59 PM, Romer Ventura wrote: > I had to chmod 777 for it to work.. That's pretty much *never* a reasonable solution. -- Best regards, Charles Marcus I.T. Director Media Brokers International, Inc. 678.514.6200 x224 | 678.514.6299 fax
Re: [Dovecot] dovecot/deliver ... Can't open log file /var/log/dovecot/error.log: Permission denied
I am using static uids: mail_uid = vmail mail_gid = vmail user = vmail group = vmail else it will do what you describe. Thanks -- Romer Ventura On Mon, May 10, 2010 at 13:59, Romer Ventura wrote: I had to chmod 777 for it to work.. I did chmod 777 to see what it would do, and especially, what userid the log files were owned by. Bad news from that ... they are owned by the first user I sent email to. That seems to me to be a Postfix issue where Postfix still thinks I mailing to local system users, and running the deliver program under such a userid. When I start adding users which don't have local system user equivalents, that's going to be a problem Also, I'm finding that in mail_location = the variable %d is empty. It should be the domain. Again, this seems like Postfix is treating local delivery as all-users-are-equivalent for any local domain (and that is definitely not the case). So I need to look at some Postfix config now to see how to make it pass the full email address (u...@domain ... so %...@%d represents the email address), and to run dovecot/deliver as user vmail. At least I'm not using sendmail :-) This old legacy "system user" thing is sure a PITA. It should either be ON or OFF. log files automatically named by the date (and maybe time) ... kind of like in a shell script I would do: `date +/path/to/tree/%Y/%m/% d.log` or such.
Re: [Dovecot] dovecot/deliver ... Can't open log file /var/log/dovecot/error.log: Permission denied
I had to chmod 777 for it to work.. Thanks -- Romer Ventura On May 10, 2010, at 12:33 PM, Phil Howard wrote: I'm getting this ... May 10 12:45:01 eth0 postfix/local[3416]: A788D685F7: to=< x...@.net>, relay=local, delay=13, delays=13/0/0/0.03, dsn=4.3.0, status=deferred (temporary failure. Command output: Can't open log file /var/log/dovecot/error.log: Permission denied ) So I'm looking at http://wiki.dovecot.org/LDA to see what I can do about it. I would have hoped some comments in the example config file would have mentioned this and suggested a default practice solution. Is this something few people or many people encounter (among those using dovecot/ deliver from Postfix)? If I do as the wiki describes and make separate log files for dovecot/deliver to use, do I just make them owned by Postfix? It would seem to me a different directory might be more helpful (absent log files could be created by having the directory permissions. I'm also thinking in terms of log rotations, too ... and I prefer to do log rotations by date stamping rather than pushing sequence numbers (the legacy log rotation). Any chance there are %-style variables I can use in log file/path names to make log files automatically named by the date (and maybe time) ... kind of like in a shell script I would do: `date +/path/to/tree/%Y/%m/% d.log` or such.
[Dovecot] libdovecot not referencing libiconv
OS: AIX 5.3 with IBM c compiler. Dovecot revision: 11278:2ead7574bb08 This problem is old for me, I just kept forgetting to report. Trying to start dovecot and I get: exec(): 0509-036 Cannot load program dovecot because of the following errors: rtld: 0712-001 Symbol iconv was referenced from module /usr/local/dovecot2.0beta5/lib/dovecot/libdovecot.so(), but a runtime definition of the symbol was not found. rtld: 0712-001 Symbol iconv_open was referenced from module /usr/local/dovecot2.0beta5/lib/dovecot/libdovecot.so(), but a runtime definition of the symbol was not found. rtld: 0712-001 Symbol iconv_close was referenced from module /usr/local/dovecot2.0beta5/lib/dovecot/libdovecot.so(), but a runtime definition of the symbol was not found. To fix this I did: --- a/src/lib-dovecot/Makefile.am Mon May 10 12:05:58 2010 -0400 +++ b/src/lib-dovecot/Makefile.am Mon May 10 12:31:36 2010 -0400 @@ -16,7 +16,7 @@ libdovecot_la_LIBADD = \ $(libs) \ $(MODULE_LIBS) \ - $(LTLIBICONV) + $(LIBICONV) libdovecot_la_DEPENDENCIES = $(libs) smime.p7s Description: S/MIME cryptographic signature
[Dovecot] dovecot/deliver ... Can't open log file /var/log/dovecot/error.log: Permission denied
I'm getting this ... May 10 12:45:01 eth0 postfix/local[3416]: A788D685F7: to=< x...@.net>, relay=local, delay=13, delays=13/0/0/0.03, dsn=4.3.0, status=deferred (temporary failure. Command output: Can't open log file /var/log/dovecot/error.log: Permission denied ) So I'm looking at http://wiki.dovecot.org/LDA to see what I can do about it. I would have hoped some comments in the example config file would have mentioned this and suggested a default practice solution. Is this something few people or many people encounter (among those using dovecot/deliver from Postfix)? If I do as the wiki describes and make separate log files for dovecot/deliver to use, do I just make them owned by Postfix? It would seem to me a different directory might be more helpful (absent log files could be created by having the directory permissions. I'm also thinking in terms of log rotations, too ... and I prefer to do log rotations by date stamping rather than pushing sequence numbers (the legacy log rotation). Any chance there are %-style variables I can use in log file/path names to make log files automatically named by the date (and maybe time) ... kind of like in a shell script I would do: `date +/path/to/tree/%Y/%m/%d.log` or such.
[Dovecot] authentification failure: double quotes in password
we use Passdb LDAP with authentication binds against an Active Directory Server. The problem with one of our users seems to be the usage of double quotes in his password, as the windows-login works: /var/log/dovecot-info.log auth(default): Info: ldap(testuser 77.22.xx.xxx): invalid credentials (given password: x"xxx) Which chars in passwords does the dovecot auth process not like? Is there something similar to auth_username_chars for passwords? thanks, martin
Re: [Dovecot] v2.0.beta5 released - Proctitle
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Timo Sirainen said the following on 09/05/10 21:27: > http://dovecot.org/releases/2.0/beta/dovecot-2.0.beta5.tar.gz > http://dovecot.org/releases/2.0/beta/dovecot-2.0.beta5.tar.gz.sig I don't know if it is an issue linked to the 2.0 proctitle or what else because I just enabled ssl feature of Dovecot. That said, I am running 2.0B5 in a CentOS 5.4 64 bit. When I have three IMAP user connected via SSL I have this IMAP processes: 27258 ?S 0:00 dovecot/imap-login [1 connections (1 TLS)] 27259 ?S 0:00 dovecot/imap-login [1 connections (1 TLS)] 27263 ?S 0:00 dovecot/imap [...@a 10.x.x.1 IDLE] 27265 ?S 0:00 dovecot/imap [...@a 10.x.x.1 IDLE] 27266 ?S 0:00 dovecot/imap-login [1 connections (1 TLS)] 27267 ?S 0:00 dovecot/imap [...@a 10.x.x.1] 27717 ?S 0:00 dovecot/imap-login [1 connections (1 TLS)] 27719 ?S 0:00 dovecot/imap [...@b 10.x.x.1 IDLE] 27720 ?S 0:00 dovecot/imap-login [1 connections (1 TLS)] 27721 ?S 0:00 dovecot/imap [...@b 10.x.x.1 IDLE] 27722 ?S 0:00 dovecot/imap-login [1 connections (1 TLS)] 27723 ?S 0:00 dovecot/imap [...@c 10.x.x.1 IDLE] 27726 ?S 0:00 dovecot/imap-login [1 connections (1 TLS)] 27727 ?S 0:00 dovecot/imap [...@a 10.x.x.1 IDLE] 27748 ?S 0:00 dovecot/imap-login [1 connections (1 TLS)] 27749 ?S 0:00 dovecot/imap [...@b 10.x.x.1] 27750 ?S 0:00 dovecot/imap-login [1 connections (1 TLS)] 27751 ?S 0:00 dovecot/imap [...@b 10.x.x.1 IDLE] 27752 ?S 0:00 dovecot/imap-login [1 connections (1 TLS)] 27753 ?S 0:00 dovecot/imap [...@b 10.x.x.1 IDLE] 27754 ?S 0:00 dovecot/imap-login [1 connections (1 TLS)] 27755 ?S 0:00 dovecot/imap [...@b 10.x.x.1 IDLE] 27760 ?S 0:00 dovecot/imap-login [1 connections (1 TLS)] 27761 ?S 0:00 dovecot/imap [...@c 10.x.x.1] 27762 ?S 0:00 dovecot/imap-login [1 connections (1 TLS)] 27763 ?S 0:00 dovecot/imap [...@c 10.x.x.1 IDLE] 27764 ?S 0:00 dovecot/imap-login [1 connections (1 TLS)] 27765 ?S 0:00 dovecot/imap [...@c 10.x.x.1 IDLE] 27779 ?S 0:00 dovecot/imap-login [1 connections (1 TLS)] 27780 ?S 0:00 dovecot/imap [...@c 10.x.x.1 IDLE] Isn't there a way to see if a "dovecot/imap [...@c 10.x.x.1 IDLE]" connection is ssl other that looking at the parent process? Ciao, luigi - -- / +--[Luigi Rosa]-- \ Luke: I don't believe it. Yoda: That is why you fail. --Empire Strikes Back -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.10 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/ iEYEARECAAYFAkvoOfQACgkQ3kWu7Tfl6ZQmWwCghHgAQC449wqiHJFPpsURzx7v 6dYAnRyLtjEj92unMTbjTsY0HFjnOrXk =+NgJ -END PGP SIGNATURE-
[Dovecot] Client cant see emails
Hello, Last Saturday i scp the vmail folder from server1 running SLES to server2 running Debian. Everything went ok and only have a few small problems, but the one to bring up is that some users cant see their new emails. The server receives the emails and puts them in their folder, but the client cant see them. One user's inbox shows last email was received on Friday, however, the Maildir/cur/ shows: -rw--- 1 vmail vmail 42K 2010-05-10 08:40 1273498807.M796425P7283.housigma22,S=42341,W=43018:2, -rw--- 1 vmail vmail 324K 2010-05-10 09:13 1273500815.M763640P10054.housigma22,S=331257,W=335660:2, -rw--- 1 vmail vmail 20K 2010-05-10 09:34 1273502066.M777253P11943.housigma22,S=19857,W=20357:2, -rw--- 1 vmail vmail 8.9K 2010-05-10 09:44 1273502685.M898747P12796.housigma22,S=9035,W=9324:2, -rw--- 1 vmail vmail 7.3K 2010-05-10 09:46 1273502798.M419897P12975.housigma22,S=7386,W=7659:2, -rw--- 1 vmail vmail 9.1K 2010-05-10 09:48 1273502934.M480959P13148.housigma22,S=9228,W=9521:2, -rw--- 1 vmail vmail 74K 2010-05-10 10:02 1273503774.M524188P14327.housigma22,S=75769,W=78183:2, -rw--- 1 vmail vmail 8.6K 2010-05-10 10:08 1273504123.M573796P14820.housigma22,S=8790,W=9032:2, -rw--- 1 vmail vmail 158K 2010-05-10 10:21 1273504907.M531961P15897.housigma22,S=161359,W=166243:2, -rw--- 1 vmail vmail 59K 2010-05-10 10:22 1273504953.M794482P15971.housigma22,S=59529,W=60838:2, -rw--- 1 vmail vmail 301K 2010-05-10 11:03 1273507382.M33967P19462.housigma22,S=307286,W=311302:2, -rw--- 1 vmail vmail 306K 2010-05-10 11:03 1273507387.M136374P19464.housigma22,S=313035,W=317125:2, -rw--- 1 vmail vmail 5.4K 2010-05-10 11:08 1273507736.M805483P19953.housigma22,S=5432,W=5539:2, -rw--- 1 vmail vmail 6.6K 2010-05-10 11:10 1273507842.M113988P20125.housigma22,S=6718,W=6921:2, -rw--- 1 vmail vmail 3.3K 2010-05-10 11:20 1273508415.M94558P20879.housigma22,S=3308,W=3419:2, Any ideas...? # 1.2.11: /etc/dovecot/dovecot.conf # OS: Linux 2.6.29-xs5.5.0.15 i686 Debian 5.0.4 ext3 log_timestamp: %Y-%m-%d %H:%M:%S protocols: imaps imap ssl_cert_file: /etc/ssl/certs/smtpd.crt ssl_key_file: /etc/ssl/private/smtpd.key login_dir: /var/run/dovecot/login login_executable: /usr/lib/dovecot/imap-login login_user: postfix mail_privileged_group: mail mail_uid: vmail mail_gid: vmail mail_location: maildir:/srv/mail/vmail/%Ud/%Ln/Maildir mbox_write_locks: fcntl dotlock imap_client_workarounds: delay-newmail outlook-idle netscape-eoh lda: postmaster_address: postmas...@somedomain.com auth_socket_path: /var/run/dovecot/auth-master log_path: /var/log/dovecot-deliver.log info_log_path: /var/log/dovecot-deliver-info.log auth default: mechanisms: plain login passdb: driver: ldap args: /etc/dovecot/dovecot-ldap.conf userdb: driver: ldap args: /etc/dovecot/dovecot-ldap.conf socket: type: listen client: path: /var/spool/postfix/private/auth-client mode: 432 user: postfix group: postfix master: path: /var/run/dovecot/auth-master mode: 384 user: vmail group: vmail Thanks -- Romer Ventura
Re: [Dovecot] 2.0.beta4, Panic: stream doesn't support seeking backwards
On Sat Apr 24 12:27:40 EEST 2010, Juergen Daubert wrote: > On Mon, Mar 29, 2010 at 02:14:28PM +0200, Juergen Daubert wrote: >> Hi, >> >> got the following with beta4 while uploading messages from a local >> mbox to the dovecot server in my LAN, tested with mutt and sylpheed, >> the same action works with 1.2.11: >> >> >> Mar 29 13:42:46 [dovecot] imap(juergen): Panic: stream doesn't support >> seeking backwards > > FYI, got the same crash with a build from nightly 20100422. If you > need further informations, please let me know. I have started seeing apparently the same crash. I have a new android phone with K-9 imap client and I see this error in the log every time the phone polls the server. I upgraded to 2.0.beta5 yesterday and the crash is still happening. The phone logs an error "readQuotedString(): end of stream reached", but otherwise seems OK. I suspect this is a bug in the K-9, but it would be nice if dovecot didn't crash. I have no problems with other imap clients. -- Mark Sapiro The highway is for gamblers, San Francisco Bay Area, Californiabetter use your sense - B. Dylan
Re: [Dovecot] wrong config file?
On Mon, May 10, 2010 at 09:06:05AM -0400, Phil Howard wrote: > On Fri, May 7, 2010 at 11:43, Dennis Guhl wrote: > > > Ubuntu is using dovecot-postfix.conf as the working config file if you > > install the package 'dovecot-postfix' from the Ubuntu server team. But > > if you install the seperate packages 'dovecot-[common|imapd|pop3d]' > > dovecot.conf will be used. > > > > And it might be, that your master.cf does not call dovecot deliver > > with '-c /etc/dovecot/dovecot-postfix.conf' as part of argv=. > > > > Apparently the config file selection is being done in /etc/init.d/dovecot so > it applies to the daemon and probably anything started from it, but not to > programs started elsewhere. I'm guessing this special handling of Postfix > is distro specific, and not part of the basic Dovecot package. But if they > are going to make such a change, they really should have made it fully > consistent and universal by changing the default file name string (and maybe > the logic to test between 2 different names) within the Dovecot programs. > > That init file is testing if dovecot-postfix.conf exists, and falling back > to the default if not. > > If that observation is correct, then I can simply be sure of which config > file I'm using by removing dovecot-postfix.conf and just using dovecot.conf > only. While not using Ubuntu I don't know if this is correct, but I agree that they should have made the changes more consistent if they think they are necessary at all. Dennis
Re: [Dovecot] wrong config file?
On Mon, May 10, 2010 at 08:46:27AM -0400, Phil Howard wrote: > On Fri, May 7, 2010 at 17:45, Dennis Guhl wrote: > > > You can also give the full command here instead a transport name > > defined in the master.cf. And you append all parameters directly > > behind the command. > > > > So I can do it either way? I would prefer in main.cf if that is sufficient. Yep, have a look at the provided link for further reference. Dennis
Re: [Dovecot] Thunderbird very slow startup, 1.2.11, mbox, postfix local delivery to /var/mail
On 2010-05-10 9:44 AM, Stan Hoeppner wrote: > Charles Marcus put forth on 5/10/2010 8:26 AM: >> Also, for Tools > Account Settings > Synchronization & Storage, >> have you told TBird to delete any messages under the 'To recover >> disk space ...' section? > I don't sync messages, so this setting is ignored. Are you sure (I'm sincerely asking as I don't know)? Hmmm... Ok, I just re-read the message where you said that you keep your Inbox small (rarely has more than a few hundred messages in it), so what I was thinking - if you have a large number of messages in your Inbox, maybe it is having to parse all of them each time you access the Inbox to see what messages might need to be deleted - was totally irrelevant. The only other thing I can think of now is: > AFAIK, the only difference between the two scenarios is that new > messages are stored in /var/mail and already existing messages are > stored in /home/stan/mail. Maybe its a filesystem issue - what filesystems are used for /var/mail and /home/stan/mail? -- Best regards, Charles
[Dovecot] configuration user= or auth_user=
The sample config file has: # User to use for the process. This user needs access to only user and # password databases, nothing else. Only shadow and pam authentication # requires roots, so use something else if possible. Note that passwd # authentication with BSDs internally accesses shadow files, which also # requires roots. Note that this user is NOT used to access mails. # That user is specified by userdb above. user = root # Directory where to chroot the process. Most authentication backends don't # work if this is set, and there's no point chrooting if auth_user is root. # Note that valid_chroot_dirs isn't needed to use this setting. #chroot = So is the variable for the authentication process user supposed to be "user" or "auth_user"? It would make more sense to be "auth_user". Is it just "user" for legacy reasons, and the reference to "auth_user" is in error? Or can either name be used? Also, those of you who change this, do you change it to something existing like "dovecot" or "vmail" or "nobody" or do you make a whole new user for it?
Re: [Dovecot] Thunderbird very slow startup, 1.2.11, mbox, postfix local delivery to /var/mail
Charles Marcus put forth on 5/10/2010 8:26 AM: > On 2010-05-10 8:48 AM, Stan Hoeppner wrote: >> I'm thinking at this point that the cause of the problem is that I probably >> use Tbird in a way/methodology that the Tbird devs never anticipated, or >> discourages. It's seems clear, unfortunately, that their entire mindset is >> based on a FAT client that caches, indexes, and syncs all messages locally. > > What is Tools > Options > Disk Space > Cache set to? I guess it is > possible that if you set the cache too low it might cause problems... It's set at 100MB. But recall I cleared out all the local stuff the other day (by hand at the command line). Afterward, I launched TB and accessed each IMAP folder. Tbird pulled 25k+ headers in under 30 seconds. Again, the problem is strictly the speed of pulling new message headers. And again, it appears all the time is wasted within Tbird running some kind of loop code, as there is zero network or disk activity on the client or the server. > Also, for Tools > Account Settings > Synchronization & Storage, have you > told TBird to delete any messages under the 'To recover disk space ...' > section? I don't sync messages, so this setting is ignored. This setting only applies to local mbox files resulting from IMAP sync. It doesn't apply to index/cache files. Index/cache file records are automatically purged when you delete an IMAP message on the server, thus this setting couldn't apply to them regardless. Again, the only problem is the speed of pulling new message headers from the INBOX. Everything else is lighting fast. The speed issue seems due to a code loop. It is not related to actual data transmission. The problem must be with the INBOX new message processing code in TBird and/or a setting that configures said code. My mission is find out exactly what that is. -- Stan
Re: [Dovecot] Thunderbird very slow startup, 1.2.11, mbox, postfix local delivery to /var/mail
On 2010-05-10 8:48 AM, Stan Hoeppner wrote: > I'm thinking at this point that the cause of the problem is that I probably > use Tbird in a way/methodology that the Tbird devs never anticipated, or > discourages. It's seems clear, unfortunately, that their entire mindset is > based on a FAT client that caches, indexes, and syncs all messages locally. What is Tools > Options > Disk Space > Cache set to? I guess it is possible that if you set the cache too low it might cause problems... Also, for Tools > Account Settings > Synchronization & Storage, have you told TBird to delete any messages under the 'To recover disk space ...' section? -- Best regards, Charles
Re: [Dovecot] wrong config file?
On Fri, May 7, 2010 at 11:43, Dennis Guhl wrote: > Ubuntu is using dovecot-postfix.conf as the working config file if you > install the package 'dovecot-postfix' from the Ubuntu server team. But > if you install the seperate packages 'dovecot-[common|imapd|pop3d]' > dovecot.conf will be used. > > And it might be, that your master.cf does not call dovecot deliver > with '-c /etc/dovecot/dovecot-postfix.conf' as part of argv=. > Apparently the config file selection is being done in /etc/init.d/dovecot so it applies to the daemon and probably anything started from it, but not to programs started elsewhere. I'm guessing this special handling of Postfix is distro specific, and not part of the basic Dovecot package. But if they are going to make such a change, they really should have made it fully consistent and universal by changing the default file name string (and maybe the logic to test between 2 different names) within the Dovecot programs. That init file is testing if dovecot-postfix.conf exists, and falling back to the default if not. If that observation is correct, then I can simply be sure of which config file I'm using by removing dovecot-postfix.conf and just using dovecot.conf only.
Re: [Dovecot] wrong config file?
On Fri, May 7, 2010 at 17:45, Dennis Guhl wrote: > You can also give the full command here instead a transport name > defined in the master.cf. And you append all parameters directly > behind the command. > So I can do it either way? I would prefer in main.cf if that is sufficient.
Re: [Dovecot] Thunderbird very slow startup, 1.2.11, mbox, postfix local delivery to /var/mail
Charles Marcus put forth on 5/10/2010 5:06 AM: > On 2010-05-09 2:54 AM, Stan Hoeppner wrote: >> It's frustrating trying to solve this, to say the least. :( I don't have >> enough in depth knowledge of either application to figure this out on my >> own. > > Hey Stan, > > Sorry I can't offer any more help, other than to ask - have you > seen/used the troubleshooting techniques available for Thunderbird as > described here? > > http://wiki.dovecot.org/Debugging/Thunderbird?highlight=%28thunderbird%29|%28log%29 > > Please do post back if you are ever able to solve this... Oh, if it's solvable without code changes by the devs I'll eventually figure it out. One of my personality traits is that I physically/mentally _can't_ stop until I identify root cause. Anyway, I just sat down and fired up Tbird. Had 181 new messages. Even after switching over to Dovecot LDA, Tbird still took forever to pull the message headers. At this point I don't see how this could be a Dovecot problem, so I'm going to focus all my research now on Tbird. I'm thinking at this point that the cause of the problem is that I probably use Tbird in a way/methodology that the Tbird devs never anticipated, or discourages. It's seems clear, unfortunately, that their entire mindset is based on a FAT client that caches, indexes, and syncs all messages locally. Thanks for the link. I'll post updates as I gather new information. -- Stan
Re: [Dovecot] per domain quota
On 10.05.2010 13:49, alex wrote: Everything works as expected, but I have some inconveniences for domains with large number of mailboxes. Allocating and maintain quota to every account it's a hard job. I just want to implement some flexibility for this situations (ex the first enforcement to be the user quota and the second to be the domain quota). Is there a way to implement such thing in dovecot and what are the adjustments that I need to do. Regards Alex Why don't you implement domain quota in terms of filesystem quota? So basically, every domain has differend user, UID and GID. You use the usual quota tools to enforce soft/hard limits, enforcement period etc. based on user or group. And you leave mailbox quota handled by dovecot. Best regards -- Luben Karavelov Research and development Spectrum Net JSC 36, D-r G. M. Dimitrov Blvd. 1797 Sofia Mobile: +359 884332140 url: www.spnet.net
[Dovecot] per domain quota
Hi I'am using dovecot with quota_rule stored in mysql user table, and quota usage stored in mysql dict ## Quota # dict { quotadict = mysql:/usr/local/etc/dovecot-quota.conf } plugin { quota = dict:user::proxy::quotadict quota_rule2 = Trash:storage=10%% quota_rule3 = Sent:ignore #quota_rule = *:storage=10M } ### Everything works as expected, but I have some inconveniences for domains with large number of mailboxes. Allocating and maintain quota to every account it's a hard job. I just want to implement some flexibility for this situations (ex the first enforcement to be the user quota and the second to be the domain quota). Is there a way to implement such thing in dovecot and what are the adjustments that I need to do. Regards Alex
Re: [Dovecot] Thunderbird very slow startup, 1.2.11, mbox, postfix local delivery to /var/mail
On 2010-05-10 6:06 AM, Charles Marcus wrote: > On 2010-05-09 2:54 AM, Stan Hoeppner wrote: >> It's frustrating trying to solve this, to say the least. :( I don't have >> enough in depth knowledge of either application to figure this out on my >> own. > Hey Stan, > > Sorry I can't offer any more help, other than to ask - have you > seen/used the troubleshooting techniques available for Thunderbird as > described here? > > http://wiki.dovecot.org/Debugging/Thunderbird?highlight=%28thunderbird%29|%28log%29 > > Please do post back if you are ever able to solve this... Oh - and here: http://wiki.dovecot.org/Debugging/Rawlog -- Best regards, Charles
Re: [Dovecot] Thunderbird very slow startup, 1.2.11, mbox, postfix local delivery to /var/mail
On 2010-05-09 2:54 AM, Stan Hoeppner wrote: > It's frustrating trying to solve this, to say the least. :( I don't have > enough in depth knowledge of either application to figure this out on my > own. Hey Stan, Sorry I can't offer any more help, other than to ask - have you seen/used the troubleshooting techniques available for Thunderbird as described here? http://wiki.dovecot.org/Debugging/Thunderbird?highlight=%28thunderbird%29|%28log%29 Please do post back if you are ever able to solve this... -- Best regards, Charles
Re: [Dovecot] looking for feedbacks on courier to dovecot
On 2010-05-10 5:22 AM, Mihamina Rakotomandimby wrote: >> They dont match at all (from 1 to 261)... >> All is leny based, so: >> - courier-pop0.60 on one side >> - dovecot-pop3d 1.0.15 on the other side > > I forgot to send Dovecot's configuration Please always send output of dovecot -n, not copy/pastes from dovecot.conf... > protocol pop3 { > pop3_uidl_format = UID%u-%v > } > > If you have advices, feel free to speak :-) My advice is - and no offense is intended, but - if you are going to ask for advice, it might help if you actually listened and tried the suggestions already offered: On 2010-05-08 2:09 PM, luben karavelov wrote: > On 8.05.2010 20:57, Mihamina Rakotomandimby wrote: >>> "Arne K. Haaje" : >>> This worked great, and as it preserves flags users did not have to >>> re-download mail. You might want to tune some of the parameters like >>> wheter to subscribe to folders or not. > >> That's about IMAP switch. Thank you. >> What about any POP experience? > > I have used courier-dovecot-migrate.pl. You have to use a recent > version of dovecot (>=1.1) and set the uidl format in the pop3 > configuration. I.e. in "protocol pop3" section, add following: > > pop3_uidl_format = %08Xu%08Xv So - you need to: 1. UPGRADE Dovecot (1.0.15 is OLD - latest versions available from backports), and 2. Adjust the pop3_uidl_format per above... -- Best regards, Charles
Re: [Dovecot] looking for feedbacks on courier to dovecot
> Mihamina Rakotomandimby : >> Mihamina Rakotomandimby : >> Manao ahoana, Hello, Bonjour, >> >> We currently run courier POP . >> We would like to switch to Dovecot. >> >>I encounter problems when migrating the UIDL > >My current proble is UIDL, just for POP: > >On courier: On Dovecot: >UIDL UIDL >[...] [...] >252 UID436864-1244045323 252 UID4452-1272985490 >253 UID436865-1244045323 253 UID4453-1272985490 >254 UID436866-1244045323 254 UID4454-1272985490 >255 UID436867-1244045323 255 UID4455-1272985490 >256 UID436868-1244045323 256 UID4456-1272985490 >257 UID436869-1244045323 257 UID4457-1272985490 >258 UID436870-1244045323 258 UID4458-1272985490 >259 UID436871-1244045323 259 UID4459-1272985490 >260 UID436872-1244045323 260 UID4460-1272985490 >261 UID436873-1244045323 261 UID4461-1272985490 > >They dont match at all (from 1 to 261)... >All is leny based, so: >- courier-pop0.60 on one side >- dovecot-pop3d 1.0.15 on the other side I forgot to send Dovecot's configuration protocol pop3 { pop3_uidl_format = UID%u-%v } If you have advices, feel free to speak :-) -- Architecte Informatique chez Blueline/Gulfsat: Administration Systeme, Recherche & Developpement +261 34 29 155 34 / +261 33 11 207 36
[Dovecot] lmtp_generic_maps with postfix
Hi All, I am new to dovecot so this may be a very easy thing to do. I need to setup a postfix+dovecot server for a multilocation setup The rules are very simple mails to *...@local.example.com send to dovecot mails to *...@otherlocation.example.com send to smtp:[otherlocation] But the users are created on dovecot as u...@example.com. How can I configure dovecot to accept mails for *...@local.example.com and deliver to *...@example.com I use lmtp_generic_maps for a similar thing in postfix+cyrus Thanks Derwyn.
Re: [Dovecot] looking for feedbacks on courier to dovecot
> Mihamina Rakotomandimby : > Manao ahoana, Hello, Bonjour, > > We currently run courier POP . > We would like to switch to Dovecot. > >I encounter problems when migrating the UIDL My current proble is UIDL, just for POP: On courier: On Dovecot: UIDL UIDL [...] [...] 252 UID436864-1244045323 252 UID4452-1272985490 253 UID436865-1244045323 253 UID4453-1272985490 254 UID436866-1244045323 254 UID4454-1272985490 255 UID436867-1244045323 255 UID4455-1272985490 256 UID436868-1244045323 256 UID4456-1272985490 257 UID436869-1244045323 257 UID4457-1272985490 258 UID436870-1244045323 258 UID4458-1272985490 259 UID436871-1244045323 259 UID4459-1272985490 260 UID436872-1244045323 260 UID4460-1272985490 261 UID436873-1244045323 261 UID4461-1272985490 They dont match at all (from 1 to 261)... All is leny based, so: - courier-pop0.60 on one side - dovecot-pop3d 1.0.15 on the other side I used then the http://www.dovecot.org/tools/courier-dovecot-migrate-1.0.pl (old one) convert script. What are your suggestions? -- Architecte Informatique chez Blueline/Gulfsat: Administration Systeme, Recherche & Developpement +261 34 29 155 34 / +261 33 11 207 36