Re: [Dovecot] auth: Error: LDAP: Connection lost to LDAP server, reconnecting
El 25/08/11 12:10, Timo Sirainen escribió: On 25.8.2011, at 13.04, Angel L. Mateo wrote: Aug 24 23:07:32 myotis28 dovecot: auth-worker(default): LDAP: Connection lost to LDAP server, reconnecting I have seen in the mail list a patch for 1.2 (http://hg.dovecot.org/dovecot-1.2/rev/355d5a40f7a7) to ignore these logs when the disconnection is because of idle timeouts. As far as I could see in this patch and 2.0.13 source code, this patch is already applied in 2.0. So I guess that the disconnection is for other problem, isn't it? I had completely forgotten I had added such a feature :) See what it logs with attached patch. Hello, I have found the problem. Is not a dovecot issue. The problem (if this is a problem) is that our ldap is behind a load balancer. This load balancer has a timeout of 3600s for ldap connections. If there is a connection with more than 3600s without activity, the load balancer close it, and this is the reason of the message. Now I'm trying to find why dovecot has a ldap connection with inactivity. One question, does auth process use more than one ldap connection? If it uses a pool is more reasonable, because we have auth cache enabled and now he have low activity, so it could be that a connection last more than 1 hour with activity, isn't it? -- Angel L. Mateo Martínez Sección de Telemática Área de Tecnologías de la Información _o) y las Comunicaciones Aplicadas (ATICA) / \\ http://www.um.es/atica_(___V Tfo: 868887590 Fax: 86337
Re: [Dovecot] On IMAP vhost login, only Username being used
Recapping: I'm working to set up Dovecot 2.0.13 along with some additional software (qmail, vpopmail, squirrelmail). It's working fine with squirrelmail now, but trying to connect over SSL with a Thunderbird variant and using IMAP, authentication fails because Dovecot is trying to match only the front part of the name (the user part), ignoring the domain name part of what it's being sent. So, instead of seeking to match virtual user: joe_blow@some_domain.com ...it's trying to match: joe_blow ...and failing, since joe_blow is not a system user but is a virtual host user. With Squirrelmail, connecting from localhost via non-SSL IMAP, the match is handled correctly, no problem. I've run the runtbird.sh script but no light was shed on this by the resulting output, all it said was that authentication was failing. Has anyone else encountered this problem? Any suggestions on how to fix it or where to look for additional info? Thanks kindly. --hobie > I tried the runtbird.sh script, hoping for more info - all it did was show that auth is failing. I don't understand why Dovecot is separating the username from the domain name, and trying to match only on the username. Seems like there must be a config setting that affects this and that I'm overlooking. Thanks ahead for any help with this. > > --hobie > > hobie wrote earlier: > > = > > Attempting IMAP SSL login on new installation, using Icedove (Debain Thunderbird variant), login fails. Logs show Dovecot attempting to match username only, not username with domain name, on Vpopmail user, so of course no match. Tried with '@' in full username, also with '%'. What's missing? > > Log shows: > > Aug 24 19:30:48 debian dovecot: auth: Debug: client in: CONT Aug 24 19:30:48 debian dovecot: auth: Debug: Loading modules from directory: /usr/local/lib/dovecot/auth > Aug 24 19:30:48 debian dovecot: auth: Debug: vpopmail(postmaster,[IP redacted]): lookup user=postmaster domain= > > Current config: > > # 2.0.13: /usr/local/etc/dovecot/dovecot.conf > # OS: Linux 2.6.32-5-amd64 x86_64 Debian 6.0.2 ext3 > auth_debug = yes > auth_verbose = yes > disable_plaintext_auth = no > first_valid_gid = 89 > first_valid_uid = 89 > mail_debug = yes > mail_location = maildir:/home/vpopmail/domains/%d/%n/Maildir > maildir_very_dirty_syncs = yes > passdb { > driver = vpopmail > } > protocols = imap pop3 > ssl_cert = ssl_key = userdb { > args = quota_template=quota_rule=*:backend=%q > driver = vpopmail > } > > --hobie > > = >
Re: [Dovecot] Dovecot 2.0.13 How to use POP3 order
On Thu, 2011-08-25 at 15:11 -0400, Nick Celebic wrote: > I saw a few commits for 2.0.13 that added MAIL_FETCH_POP3_ORDER, but I > haven't been able to find any information on how to use it. You'll need to add "O" fields to dovecot-uidlist where the numbers are sorted in the order you want the mails to show up. For example: 1 O2 Pfoo :mailfile1 2 O1 Pbar :mailfile2 Now message with IMAP UID 2 is shown first in POP3 UIDL (with POP3 UIDL "bar") and the message with IMAP UID 1 is shown second in POP3 UIDL (with POP3 UIDL "foo"). But if you're only migrating from another POP3 server, this doesn't matter. It was added only to fix the situation when IMAP UID order doesn't match POP3 UIDL order and the user has been using both IMAP and POP3. So if you simply want POP3 UIDLs to be in wanted order, just put them in the right order to dovecot-uidlist: 1 Pbar :mailfile2 2 Pfoo :mailfile1 http://no1.wiki2.dovecot.org/MailboxFormat/Maildir explains dovecot-uidlist more, and you can also look at http://www.dovecot.org/tools/courier-dovecot-migrate.pl as an example.
[Dovecot] Dovecot 2.0.13 How to use POP3 order
I saw a few commits for 2.0.13 that added MAIL_FETCH_POP3_ORDER, but I haven't been able to find any information on how to use it. I'm migrating from a Merak mail server into dovecot and all the email can be copied directly into a Maildir/cur directory. The filenames are just the timestamps. When I check with dovecot pop3, they seem to be randomly ordered. I'm hoping this provides a solution where it will look at the file list or stat order. If this isn't possible, can someone tell me how I can change the order in which dovecot lists mails in a UIDL in POP3? Thanks, Nick Celebic
[Dovecot] Virtual user and post-login 2.0.13
Hi I tried several variants of suggestions but I can't get it working dovecot-info.log: === Aug 25 17:37:48 imap-login: Info: Login: user=, method=PLAIN, rip=192.168.1.xx, lip=192.168.1.xx, mpid=11264 Aug 25 17:37:48 imap(vuser): Info: Post-login script denied access to user vuser dovecot.log Aug 25 17:31:28 imap-postlogin: Error: script-login: Error: user p...@bredband.net: Error reading configuration: net_connect_unix(/var/run/dovecot/config) failed: Permission denied Aug 25 17:31:28 imap-postlogin: Error: script-login: Fatal: Internal error occurred. Refer to server log for more information. Aug 25 17:31:28 log: Error: service(imap-postlogin): child 11082 returned error 89 (Fatal failure) dovecot.conf protocols = imap pop3 base_dir = /var/run/dovecot/ log_path = /var/log/dovecot.log info_log_path = /var/log/dovecot-info.log ssl = no # v1.2+, for older versions use: ssl_disable = yes disable_plaintext_auth = no mail_location = maildir:/home/fetchmail/mailroot/dummy pop3_uidl_format = %08Xu%08Xv !include conf.d/*.conf !include_try local.conf mail_uid=500 mail_gid=500 auth_verbose = yes auth_debug=yes auth_debug_passwords=yes mail_debug=yes # Optional tried with this!!! service config { unix_listener config { group = dovecot mode = 0660 } } service imap { # tell imap to do post-login lookup using a socket called "imap-postlogin" executable = imap imap-postlogin # Optional tried with this!!! user=dovecot } # The service name below doesn't actually matter. service imap-postlogin { # all post-login scripts are executed via script-login binary executable = script-login /home/fetchmail/dovecot-postlogin.sh # the script process runs as the user specified here (v2.0.14+): # Optional tried with this!!! # user=dovecot # user = $default_internal_user # this UNIX socket listener must use the same name as given to imap executable # Optional tried with this!!! #unix_listener imap-postlogin { #} } users vuser:{PLAIN}pass:500:500::/home/fetchmail::userdb_mail=maildir:/home/fetchmail/mailroot/vuser-root allow_nets=192.168.1.0/24 ls -l /home/fetchmail/dovecot-postlogin.sh -rwxrwxrwx. 1 dovecot root108 Aug 25 17:08 dovecot-postlogin.sh Any suggestions are very welcome!! /Thanks
Re: [Dovecot] Catch22: user needs space to fix out of space condition
On 08/25/2011 07:38 AM, Timo Sirainen wrote: > On 25.8.2011, at 5.12, David Warden wrote: > >> In your mail_location you can specify a different control and index >> directory as a place where the user has no quotas. I'm not quite sure which >> it is (control or index) that says where the dotlock file goes but it should >> be one of them. > > Nope, dotlocks go to exactly where the mbox file is, never elsewhere > (otherwise using Dovecot with non-Dovecot software could cause corruption). > fcntl locks is the only solution. > Quota rule (conf.d/90-quota.conf)? > plugin { > # 10 GByte in kbytes > quota_rule = *:storage=10485760 > > # 1 GByte in kbytes > quota_rule2 = Trash:storage=+1048576 > } So you have a quota of 10GB on the mailbox, but the Trash has an additional space of 1GB for the abilioty to delete mails. Regards Karsten
Re: [Dovecot] auth: Error: LDAP: Connection lost to LDAP server, reconnecting
On 25.8.2011, at 13.04, Angel L. Mateo wrote: > Aug 24 23:07:32 myotis28 dovecot: auth-worker(default): LDAP: Connection lost > to LDAP server, reconnecting > > I have seen in the mail list a patch for 1.2 > (http://hg.dovecot.org/dovecot-1.2/rev/355d5a40f7a7) to ignore these logs > when the disconnection is because of idle timeouts. As far as I could see in > this patch and 2.0.13 source code, this patch is already applied in 2.0. So I > guess that the disconnection is for other problem, isn't it? I had completely forgotten I had added such a feature :) See what it logs with attached patch. diff Description: Binary data
[Dovecot] auth: Error: LDAP: Connection lost to LDAP server, reconnecting
Hello, I continue debugging my problems with my update to dovecot 2.x :-( I have dovecot 2.0.13 running in ubuntu 10.04 (lucid) x64. My users are in a ldap directory. The problem is that I have a lot of errors like: Aug 24 23:07:32 myotis28 dovecot: auth-worker(default): LDAP: Connection lost to LDAP server, reconnecting I have seen in the mail list a patch for 1.2 (http://hg.dovecot.org/dovecot-1.2/rev/355d5a40f7a7) to ignore these logs when the disconnection is because of idle timeouts. As far as I could see in this patch and 2.0.13 source code, this patch is already applied in 2.0. So I guess that the disconnection is for other problem, isn't it? -- Angel L. Mateo Martínez Sección de Telemática Área de Tecnologías de la Información _o) y las Comunicaciones Aplicadas (ATICA) / \\ http://www.um.es/atica_(___V Tfo: 868887590 Fax: 86337
Re: [Dovecot] dovecot and maillists problem
Yes, Timo, you were absolutely right! if someone stucks at this: read http://exim.org/exim-html-current/doc/html/spec_html/ch30.html I had to tune max_rcpt parameter in transport section. Thank you very much! -Original Message- From: Timo Sirainen [mailto:t...@iki.fi] Sent: Thursday, August 25, 2011 6:19 PM To: Костырев Александр Алексеевич Cc: dovecot@dovecot.org Subject: Re: [Dovecot] dovecot and maillists problem Right, so it looks like Exim is configured to send DATA after each 100 RCPT TOs, which means Dovecot links each message 100 times. If you want it linked those ~500 times, I guess you'll need to increase some limit in Exim. On 25.8.2011, at 10.14, Костырев Александр Алексеевич wrote: > I've sniffed traffic between exim and lmtp > > In log of dovecot I have: > 17:17:46 msgid=: G48FNNjoVU63IwAA1nFjLA: > 17:17:51 msgid=: HI8FNNjoVU63IwAA1nFjLA: > 17:17:56 msgid=: gY8FNNjoVU63IwAA1nFjLA: > 17:18:01 msgid=: 5o8FNNjoVU63IwAA1nFjLA: > 17:18:08 msgid=: S5AFNNjoVU63IwAA1nFjLA: > 17:18:13 msgid=: sJAFNNjoVU63IwAA1nFjLA: > 17:18:18 msgid=: FZEFNNjoVU63IwAA1nFjLA: > 17:18:23 msgid=: epEFNNjoVU63IwAA1nFjLA: > 17:18:29 msgid=: 35EFNNjoVU63IwAA1nFjLA: > 17:18:31 msgid=: RJIFNNjoVU63IwAA1nFjLA: > Totally 10 different lmtp ids. > > According to wireshark while sending I've got 2 tcp streams with 5 different > ids in each > > Log of one the streams (I've truncated DATA part - it's the same for both > streams): > http://pastebin.com/w4qJqZMG > > *note > I've send message in maillist with > mailx -s 'g' 2...@atlas-2.ru < /boot/initrd.img-686 > > > -Original Message- > From: Timo Sirainen [mailto:t...@iki.fi] > Sent: Thursday, August 25, 2011 5:01 PM > To: Костырев Александр Алексеевич > Cc: dovecot@dovecot.org > Subject: Re: [Dovecot] dovecot and maillists problem > > I mean, my point of view of what is happening is is disagreement with the > logs you showed. So something's weird here and only the LMTP traffic logs can > lead to more clarity. > > On 25.8.2011, at 8.49, Костырев Александр Алексеевич wrote: > >>> But that kind of conflicts on your logs that show tons of SQL lookups one >>> after another.. >> >> I'm not sure that these are conflicts. >> As I see it, it's legitimate lookups for the users who are the members of >> maillist >> I thought that's correct behavior, am I wrong? >> >> >> >> >> -Original Message- >> From: Timo Sirainen [mailto:t...@iki.fi] >> Sent: Thursday, August 25, 2011 4:36 PM >> To: Костырев Александр Алексеевич >> Cc: dovecot@dovecot.org >> Subject: Re: [Dovecot] dovecot and maillists problem >> >> On 25.8.2011, at 8.17, Костырев Александр Алексеевич wrote: >> >>> The problem is: >>> When I send a letter to short maillist (as above) it get the same ID and >>> stored only once in the maildir of one user who is the member of that >>> maillist - that's ok, but >>> When I send a letter to maillist with a large number of recipients it >>> occurred that it's saved more than one, because of the headers added by >>> dovecot lmtp (I've changed host name): >>> >>> diff >>> letter_in_one_user/1314238006.M841940P6916.pink\,S\=12778136\,W\=12953189 >>> letler_in_second_user/new/1314237993.M460165P6916.pink\,S\=12778136\,W\=12953189 >>> >>> 3,4c3,4 >>> < by pink.example.com (Dovecot) with LMTP id 6UiGJBWuVU4EGwAA1nFjLA >>> < ; Thu, 25 Aug 2011 13:06:46 +1100 >>> --- by pink.example.com (Dovecot) with LMTP id VUeGJBWuVU4EGwAA1nFjLA ; Thu, 25 Aug 2011 13:06:29 +1100 >>> >>> It's the same letter accept the date and id. >> >> Try capturing the LMTP traffic between Dovecot and Exim? I'm not sure if >> there's a good way to capture traffic from UNIX sockets, but at least if >> Exim and Dovecot talk via TCP there are many ways. >> >> The different LMTP ids and dates are added only when there are different >> DATA commands, which would mean that Exim has sent separate RCPT TO + DATA >> commands for each of these mails. But that kind of conflicts on your logs >> that show tons of SQL lookups one after another.. >> >> >
[Dovecot] Sieve and UserDB/SQL support
Hi, I would like to know if plugins of sieve support UserDB/SQL backend. For example, for the vacation plugin, is it possible to retrieve a field like "sieve_vacation_days", "sieve_vacation_reason", and so on.. on user_query? Or, there is a plan for implement this? Thanks -- dovecot version: 2.0.13
Re: [Dovecot] dovecot and maillists problem
Right, so it looks like Exim is configured to send DATA after each 100 RCPT TOs, which means Dovecot links each message 100 times. If you want it linked those ~500 times, I guess you'll need to increase some limit in Exim. On 25.8.2011, at 10.14, Костырев Александр Алексеевич wrote: > I've sniffed traffic between exim and lmtp > > In log of dovecot I have: > 17:17:46 msgid=: G48FNNjoVU63IwAA1nFjLA: > 17:17:51 msgid=: HI8FNNjoVU63IwAA1nFjLA: > 17:17:56 msgid=: gY8FNNjoVU63IwAA1nFjLA: > 17:18:01 msgid=: 5o8FNNjoVU63IwAA1nFjLA: > 17:18:08 msgid=: S5AFNNjoVU63IwAA1nFjLA: > 17:18:13 msgid=: sJAFNNjoVU63IwAA1nFjLA: > 17:18:18 msgid=: FZEFNNjoVU63IwAA1nFjLA: > 17:18:23 msgid=: epEFNNjoVU63IwAA1nFjLA: > 17:18:29 msgid=: 35EFNNjoVU63IwAA1nFjLA: > 17:18:31 msgid=: RJIFNNjoVU63IwAA1nFjLA: > Totally 10 different lmtp ids. > > According to wireshark while sending I've got 2 tcp streams with 5 different > ids in each > > Log of one the streams (I've truncated DATA part - it's the same for both > streams): > http://pastebin.com/w4qJqZMG > > *note > I've send message in maillist with > mailx -s 'g' 2...@atlas-2.ru < /boot/initrd.img-686 > > > -Original Message- > From: Timo Sirainen [mailto:t...@iki.fi] > Sent: Thursday, August 25, 2011 5:01 PM > To: Костырев Александр Алексеевич > Cc: dovecot@dovecot.org > Subject: Re: [Dovecot] dovecot and maillists problem > > I mean, my point of view of what is happening is is disagreement with the > logs you showed. So something's weird here and only the LMTP traffic logs can > lead to more clarity. > > On 25.8.2011, at 8.49, Костырев Александр Алексеевич wrote: > >>> But that kind of conflicts on your logs that show tons of SQL lookups one >>> after another.. >> >> I'm not sure that these are conflicts. >> As I see it, it's legitimate lookups for the users who are the members of >> maillist >> I thought that's correct behavior, am I wrong? >> >> >> >> >> -Original Message- >> From: Timo Sirainen [mailto:t...@iki.fi] >> Sent: Thursday, August 25, 2011 4:36 PM >> To: Костырев Александр Алексеевич >> Cc: dovecot@dovecot.org >> Subject: Re: [Dovecot] dovecot and maillists problem >> >> On 25.8.2011, at 8.17, Костырев Александр Алексеевич wrote: >> >>> The problem is: >>> When I send a letter to short maillist (as above) it get the same ID and >>> stored only once in the maildir of one user who is the member of that >>> maillist - that's ok, but >>> When I send a letter to maillist with a large number of recipients it >>> occurred that it's saved more than one, because of the headers added by >>> dovecot lmtp (I've changed host name): >>> >>> diff >>> letter_in_one_user/1314238006.M841940P6916.pink\,S\=12778136\,W\=12953189 >>> letler_in_second_user/new/1314237993.M460165P6916.pink\,S\=12778136\,W\=12953189 >>> >>> 3,4c3,4 >>> < by pink.example.com (Dovecot) with LMTP id 6UiGJBWuVU4EGwAA1nFjLA >>> < ; Thu, 25 Aug 2011 13:06:46 +1100 >>> --- by pink.example.com (Dovecot) with LMTP id VUeGJBWuVU4EGwAA1nFjLA ; Thu, 25 Aug 2011 13:06:29 +1100 >>> >>> It's the same letter accept the date and id. >> >> Try capturing the LMTP traffic between Dovecot and Exim? I'm not sure if >> there's a good way to capture traffic from UNIX sockets, but at least if >> Exim and Dovecot talk via TCP there are many ways. >> >> The different LMTP ids and dates are added only when there are different >> DATA commands, which would mean that Exim has sent separate RCPT TO + DATA >> commands for each of these mails. But that kind of conflicts on your logs >> that show tons of SQL lookups one after another.. >> >> >
Re: [Dovecot] dovecot and maillists problem
I've sniffed traffic between exim and lmtp In log of dovecot I have: 17:17:46 msgid=: G48FNNjoVU63IwAA1nFjLA: 17:17:51 msgid=: HI8FNNjoVU63IwAA1nFjLA: 17:17:56 msgid=: gY8FNNjoVU63IwAA1nFjLA: 17:18:01 msgid=: 5o8FNNjoVU63IwAA1nFjLA: 17:18:08 msgid=: S5AFNNjoVU63IwAA1nFjLA: 17:18:13 msgid=: sJAFNNjoVU63IwAA1nFjLA: 17:18:18 msgid=: FZEFNNjoVU63IwAA1nFjLA: 17:18:23 msgid=: epEFNNjoVU63IwAA1nFjLA: 17:18:29 msgid=: 35EFNNjoVU63IwAA1nFjLA: 17:18:31 msgid=: RJIFNNjoVU63IwAA1nFjLA: Totally 10 different lmtp ids. According to wireshark while sending I've got 2 tcp streams with 5 different ids in each Log of one the streams (I've truncated DATA part - it's the same for both streams): http://pastebin.com/w4qJqZMG *note I've send message in maillist with mailx -s 'g' 2...@atlas-2.ru < /boot/initrd.img-686 -Original Message- From: Timo Sirainen [mailto:t...@iki.fi] Sent: Thursday, August 25, 2011 5:01 PM To: Костырев Александр Алексеевич Cc: dovecot@dovecot.org Subject: Re: [Dovecot] dovecot and maillists problem I mean, my point of view of what is happening is is disagreement with the logs you showed. So something's weird here and only the LMTP traffic logs can lead to more clarity. On 25.8.2011, at 8.49, Костырев Александр Алексеевич wrote: >> But that kind of conflicts on your logs that show tons of SQL lookups one >> after another.. > > I'm not sure that these are conflicts. > As I see it, it's legitimate lookups for the users who are the members of > maillist > I thought that's correct behavior, am I wrong? > > > > > -Original Message- > From: Timo Sirainen [mailto:t...@iki.fi] > Sent: Thursday, August 25, 2011 4:36 PM > To: Костырев Александр Алексеевич > Cc: dovecot@dovecot.org > Subject: Re: [Dovecot] dovecot and maillists problem > > On 25.8.2011, at 8.17, Костырев Александр Алексеевич wrote: > >> The problem is: >> When I send a letter to short maillist (as above) it get the same ID and >> stored only once in the maildir of one user who is the member of that >> maillist - that's ok, but >> When I send a letter to maillist with a large number of recipients it >> occurred that it's saved more than one, because of the headers added by >> dovecot lmtp (I've changed host name): >> >> diff >> letter_in_one_user/1314238006.M841940P6916.pink\,S\=12778136\,W\=12953189 >> letler_in_second_user/new/1314237993.M460165P6916.pink\,S\=12778136\,W\=12953189 >> >> 3,4c3,4 >>> <; Thu, 25 Aug 2011 13:06:46 +1100 >> --- >>> by pink.example.com (Dovecot) with LMTP id VUeGJBWuVU4EGwAA1nFjLA >>> ; Thu, 25 Aug 2011 13:06:29 +1100 >> >> It's the same letter accept the date and id. > > Try capturing the LMTP traffic between Dovecot and Exim? I'm not sure if > there's a good way to capture traffic from UNIX sockets, but at least if Exim > and Dovecot talk via TCP there are many ways. > > The different LMTP ids and dates are added only when there are different DATA > commands, which would mean that Exim has sent separate RCPT TO + DATA > commands for each of these mails. But that kind of conflicts on your logs > that show tons of SQL lookups one after another.. > >