Re: [Dovecot] Bug: empty m-files
On 11.1.2013, at 15.14, Peer Heinlein p.heinl...@heinlein-support.de wrote: Having an empty m-File, doveadm force-resync isn't able to detect and repair this: Fixed: http://hg.dovecot.org/dovecot-2.1/rev/b91e1b94af21
Re: [Dovecot] LDA misbehavior?
On 21.2.2013, at 16.59, Eugene Paskevich eug...@raptor.kiev.ua wrote: Could somebody please give me a hint on what might be going wrong? Feb 21 16:33:07 hopper dovecot: lda(eugene): Panic: file mail-storage.c: line 1757 (mailbox_transaction_commit_get_changes): assertion failed: (ret 0 || seq_range_count(changes_r-saved_uids) == save_count) Fixed: http://hg.dovecot.org/dovecot-2.2/rev/0158c7b2c5db
Re: [Dovecot] patch to fix binary attachment indexing
On 22.2.2013, at 4.06, Mike Abbott michael.abb...@apple.com wrote: FTS indexing of binary attachments is broken in dovecot-2.1.15: the binary data which fts_build_mail_real() sends to fts_build_body_block() (which sends it to fts_backend_update_build_more()) is garbled. This patch ungarbles it but I’m not positive it’s the best fix. Applied basically the same logic: http://hg.dovecot.org/dovecot-2.1/rev/b0e68c53771e I guess you're building a new fts backend?
Re: [Dovecot] error running indexer-worker as non-root user
On 11.2.2013, at 21.32, Mike Abbott michael.abb...@apple.com wrote: Using dovecot-2.1.15 if I run indexer-worker as a non-root user it fails with an error: Feb 11 13:06:47 indexer-worker: Error: user foobar: Error reading configuration: net_connect_unix(/var/run/dovecot/config) failed: Permission denied Well.. http://hg.dovecot.org/dovecot-2.1/rev/6d45b9bd1cff fixes it, although it's a little bit annoying fix. Now it unnecessarily reads the config at startup and then keeps the connection open, even if it really doesn't need to keep it open afterwards. But it is a rather generic problem..
Re: [Dovecot] Full-text search
On 18.2.2013, at 18.10, Valery V. Sedletski valer...@afterlogic.com wrote: I discovered that the full-text search (fts) plugin can work without SQUAT/LUCENE/SOLR backend. I.e., Dovecot creates separate indexes for header search in files dovecot.index and dovecot.index.cache. Even, the search by headers is fast enough, and can search for phrases. Also, it seems that this buillt-in search is faster than Solr-based search. Well, that depends on the mailbox size. The built-in search probably does more work than Solr, but the latency is better I guess. But if I enable the Solr backend (fts_solr), then the FTS generic plugin built-in search becomes disabled. But, Solr-based Full-text search is faster if search inside message bodies. Also, it appears that the built-in search inside message bodies works too, but very slow (it seems that is because it is dumb file-based search and does not use indexes at all) So, my question is: is it possible to combine the built-in search with Solr or Lucene plugin-based search so that the first one searches by headers, and the second one works by bodies? This could make the advantages of both search methods combined. If you unconditionally want to remove it, that's easy. Just have fts_header_want_indexed() in fts-api.c always return FALSE. But there are also advantages to searching all headers through Solr, even if it's slower, because it can do inexact matching. For example query can match queries and so on.
Re: [Dovecot] Connection leak in sqlpool for ACL Dict Postgres in v2.1.15 (14907:b96df105ec55) and v2.2.beta1 (15857:07dfd4391d22)
On 20.2.2013, at 16.06, Steffen Kaiser skdove...@smail.inf.fh-brs.de wrote: I'm using a postgres dict for ACL, when when use deleteacl or setacl I get a not connected error and (v2.2) Panic: file driver-pgsql.c: line 84 (driver_pgsql_set_state): assertion failed: (state == SQL_DB_STATE_BUSY || db-cur_result == NULL) and a rawdump eventually. You can trigger the error with the dict socket easily: while true; do ( echo -en H2\t0\t0\t\tacl\nI1\tshared/shared-boxes/\n sleep 1 ) | socat - unix:/var/run/dovecot2.2/dict done Thanks for the easy test :) I've heard of these crashes for a quite a long time but haven't really figured out how to reproduce them. Also I always thought the bug was in driver-pgsql code, while it was really in dict-sql code. Fixed: http://hg.dovecot.org/dovecot-2.1/rev/0e0fd4b5a582 Although of course the driver-pgsql code is also quite ugly and complex and I wouldn't be surprised if there were some bugs in its error handling code paths. But I guess it can be left for later..
Re: [Dovecot] Errors after enable vnd.dovecot.duplicate
On 20.2.2013, at 3.58, Daniel Parthey daniel.part...@informatik.tu-chemnitz.de wrote: Since I'm using the vnd.dovecot.duplicate extension in my sieve script, we got the same error exactly three times, but only on Feb 11. We are using LMTP on a 4 node director+mailbox dual-instance setup with NFSv4. Feb 11 11:10:45 10.129.3.233 dovecot: lmtp(23044, dpart...@example.org): Error: file_dotlock_create(/mail/dovecot/example.org/dparthey/.dovecot.lda-dupes) failed: Resource temporarily unavailable Feb 11 11:10:50 10.129.3.233 dovecot: lmtp(23139, dpart...@example.org): Error: file_dotlock_create(/mail/dovecot/example.org/dparthey/.dovecot.lda-dupes) failed: Resource temporarily unavailable Feb 11 11:10:52 10.129.3.233 dovecot: lmtp(23207, dpart...@example.org): Error: file_dotlock_create(/mail/dovecot/example.org/dparthey/.dovecot.lda-dupes) failed: Resource temporarily unavailable No further errors on dovecot-error.log. The error did not reoccur yet and seems to be very rare. This error happens when the dupes file has been locked for 10 seconds. I guess that user was delivered multiple mails at the same time and the delivery took a long time.. I made the error message somewhat better anyway: http://hg.dovecot.org/dovecot-2.1/rev/81ea622b6394
Re: [Dovecot] Using different auth_default_realm on multiple sockets with postfix. Is it possible?
On 19.2.2013, at 15.48, Gábor Lénárt l...@lgb.hu wrote: Hi, I have more postfix smtpd instances (via master.cf) listening on different ports, and the FW passes the inbound mail submit connections to the right port. The problem: it seems postfix is not able to append default realm and I need to set different values for the instances. As far as I see, it's not possible as postfix only passes the base64 encoded string from the user to the dovecot auth service (as I'm using dovecot for sasl authentication). We're talking about PLAIN and LOGIN methods. In the other hand, dovecot is happily append realm with auth_default_realm. It works (which does not with postfix) but again: I need more defaults. I wouldn't like to run multiple instances of dovecot (just for having a single setting be different), so I've tried similar solutions: service auth { unix_listener /var/spool/postfix/private/auth-dom1 { group = postfix mode = 0660 user = postfix } auth_default_realm = domain1.com } And the same for /var/spool/postfix/private/auth-dom2 with domain2.com. I thought then I could use postfix's master.cf to give different auth socket (like /var/spool/postfix/private/auth-dom1 and auth-dom2) with smtpd_sasl_path postfix parameter. However it seems dovecot finds auth_default_realm invalid unless it's used in the global scope of the configuration. It's dovecot 2.0.19 (in Ubuntu 12.04 LTS). Is it possible at all, what I would like to do? Maybe with newer dovecot, or can you suggest me some other solution? Best you can do now is to run two Dovecot instances with different configs.
Re: [Dovecot] Connection leak in sqlpool for ACL Dict Postgres in v2.1.15 (14907:b96df105ec55) and v2.2.beta1 (15857:07dfd4391d22)
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On Fri, 22 Feb 2013, Timo Sirainen wrote: Thanks for the easy test :) I've heard of these crashes for a quite a long time but haven't really figured out how to reproduce them. Also I always thought the bug was in driver-pgsql code, while it was really in dict-sql code. Fixed: http://hg.dovecot.org/dovecot-2.1/rev/0e0fd4b5a582 Many thanks, it works now :-) Please, don't forget to add the patch to v2.2. I didn't found it in its hg incoming. Kind regards, - -- Steffen Kaiser -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.11 (GNU/Linux) iQEVAwUBUSdNHV3r2wJMiz2NAQKd0AgAhucI89hun6yIzQYtom0u428106/rxPGJ 6Y+/K/tLbzGOr0Hm7g0AjMNU8YDIhOeAKZiXJ5Dt2Lm71425jWUlvWpKZnUfOehH RoIzTLCKMXs/3HIdqIoEVNHnpV4JSWKMqsJIvMFLvewRhHM/MiLo2WUaQo3DZDSB ggIq8zKovbliZi50ZTdXnnKTbDrKUaD66jj8CGJKJj17zu6jlLyIkAbJu62qsNcf Np4P21ffgTurjM5LMFVpIlhshhtB7YoZ3WOEjrzAC5yKc0ifbN9aN0dRVl2eraRo fHwud22+wi5lfvQR0ANZ5eNyahdZEHdCaeaKK34ZgM+SllIu5mdfGg== =6NNC -END PGP SIGNATURE-
Re: [Dovecot] Connection leak in sqlpool for ACL Dict Postgres in v2.1.15 (14907:b96df105ec55) and v2.2.beta1 (15857:07dfd4391d22)
On 22.2.2013, at 12.49, Steffen Kaiser skdove...@smail.inf.fh-brs.de wrote: On Fri, 22 Feb 2013, Timo Sirainen wrote: Thanks for the easy test :) I've heard of these crashes for a quite a long time but haven't really figured out how to reproduce them. Also I always thought the bug was in driver-pgsql code, while it was really in dict-sql code. Fixed: http://hg.dovecot.org/dovecot-2.1/rev/0e0fd4b5a582 Many thanks, it works now :-) Please, don't forget to add the patch to v2.2. I didn't found it in its hg incoming. I'm nowadays just once in a while pulling all changes from v2.1 tree to v2.2 tree and merging them. Not sure if that's the best way to do it, but works at least and there's no way of accidentally missing any changes.
Re: [Dovecot] v2.2.beta2 released
Il 21/02/2013 16:34, Timo Sirainen ha scritto: Please test and report any bugs found! Hi, I'm running dovecot 2.2b2 , for the first time, with vpopmail-auth and works fine. But I found this bug, also present in 2.1.15. When I enable dict quota with mysql and in dovecot DB there is no entry for the user, dovecot waits 3 minutes and 30 seconds before create the entry and close telnet session: Feb 22 11:45:26 demo-vpop dovecot: pop3-login: Login: user=t...@alessio.com, method=PLAIN, rip=127.0.0.1, lip=127.0.0.1, mpid=18132, secured, session=6R6m403WlAB/AAAB Feb 22 11:45:32 demo-vpop dovecot: pop3(t...@alessio.com): Disconnected: Logged out top=0/0, retr=0/0, del=1/21, size=9828 Feb 22 11:45:32 demo-vpop dovecot: dict: mysql(localhost): Connected to database dovecot Feb 22 11:46:02 demo-vpop dovecot: pop3(t...@alessio.com): Error: read(/usr/local/dovecot-2.2/var/run/dovecot/dict) failed: Timeout after 30 seconds Feb 22 11:46:32 demo-vpop dovecot: pop3(t...@alessio.com): Error: read(/usr/local/dovecot-2.2/var/run/dovecot/dict) failed: Timeout after 30 seconds Feb 22 11:47:02 demo-vpop dovecot: pop3(t...@alessio.com): Error: read(/usr/local/dovecot-2.2/var/run/dovecot/dict) failed: Timeout after 30 seconds Feb 22 11:47:32 demo-vpop dovecot: pop3(t...@alessio.com): Error: read(/usr/local/dovecot-2.2/var/run/dovecot/dict) failed: Timeout after 30 seconds Feb 22 11:48:02 demo-vpop dovecot: pop3(t...@alessio.com): Error: read(/usr/local/dovecot-2.2/var/run/dovecot/dict) failed: Timeout after 30 seconds Feb 22 11:48:32 demo-vpop dovecot: pop3(t...@alessio.com): Error: read(/usr/local/dovecot-2.2/var/run/dovecot/dict) failed: Timeout after 30 seconds Feb 22 11:49:02 demo-vpop dovecot: pop3(t...@alessio.com): Error: read(/usr/local/dovecot-2.2/var/run/dovecot/dict) failed: Timeout after 30 seconds # telnet 0 110 Trying 0.0.0.0... Connected to 0. Escape character is '^]'. +OK Dovecot ready. user t...@alessio.com +OK pass ciao +OK Logged in. [...] 21 468 . dele 21 +OK Marked to be deleted. quit +OK Logging out, messages deleted. [ here is waiting for logout 3 minutes] Connection closed by foreign host. LDA as the same problem: Feb 22 12:09:00 demo-vpop dovecot: master: Dovecot v2.2.beta2 starting up (core dumps disabled) Feb 22 12:09:02 demo-vpop dovecot: lda(t...@alessio.com): msgid=20130222110902.20244.qm...@demo-vpop.alessio.com: saved mail to INBOX Feb 22 12:09:02 demo-vpop dovecot: dict: mysql(localhost): Connected to database dovecot Feb 22 12:09:32 demo-vpop dovecot: lda(t...@alessio.com): Error: read(/usr/local/dovecot-2.2/var/run/dovecot/dict) failed: Timeout after 30 seconds Feb 22 12:10:02 demo-vpop dovecot: lda(a...@alessio.it): Error: read(/usr/local/dovecot-2.2/var/run/dovecot/dict) failed: Timeout after 30 seconds Feb 22 12:10:32 demo-vpop dovecot: lda(a...@alessio.it): Error: read(/usr/local/dovecot-2.2/var/run/dovecot/dict) failed: Timeout after 30 second Here is my configuration: # dovecot -n # 2.2.beta2: /usr/local/dovecot-2.2/etc/dovecot/dovecot.conf # OS: Linux 2.6.32-5-amd64 x86_64 Debian 6.0.6 default_login_user = dovecot dict { quota = mysql:/usr/local/dovecot-2.2/etc/dovecot/dovecot-dict-sql.conf.ext } first_valid_gid = 89 first_valid_uid = 89 last_valid_gid = 89 last_valid_uid = 89 mail_location = maildir:~/Maildir mail_plugins = quota managesieve_notify_capability = mailto managesieve_sieve_capability = fileinto reject envelope encoded-character vacation subaddress comparator-i;ascii-numeric relational regex imap4flags copy include variables body enotify environment mailbox date ihave namespace inbox { inbox = yes location = mailbox Drafts { special_use = \Drafts } mailbox Junk { special_use = \Junk } mailbox Sent { special_use = \Sent } mailbox Sent Messages { special_use = \Sent } mailbox Trash { special_use = \Trash } prefix = } passdb { driver = vpopmail } plugin { quota = maildir:User quota quota2 = dict:User dict::proxy::quota sieve = ~/.dovecot.sieve sieve_dir = ~/sieve } service auth { unix_listener auth-userdb { group = vchkpw mode = 0660 user = vpopmail } } service dict { unix_listener dict { group = vchkpw mode = 0600 user = vpopmail } } ssl_cert = /etc/ssl/certs/dovecot.pem ssl_key = /etc/ssl/private/dovecot.pem userdb { args = quota_template=quota_rule=*:backend=%q driver = vpopmail } protocol imap { mail_plugins = quota imap_quota } I hope can be fixed. Thanks -- Alessio Cecchi is: @ ILS - http://www.linux.it/~alessice/ on LinkedIn - http://www.linkedin.com/in/alessice Assistenza Sistemi GNU/Linux - http://www.cecchi.biz/ @ PLUG - ex-Presidente, adesso senatore a vita, http://www.prato.linux.it
Re: [Dovecot] Dovecot auth works when tested with doveadm, but fails with Postfix
If you want both CRAM-MD5 and DIGEST-MD5 auth, the password must be in plaintext format. http://wiki2.dovecot.org/Authentication/Mechanisms#Non-plaintext_authentication (In theory it would be possible to have both CRAM-MD5 and DIGEST-MD5 hashes stored in the passdb and have Dovecot use the one that's needed, but currently this isn't supported.) On 19.2.2013, at 13.38, Darren Pilgrim list_dove...@bluerosetech.com wrote: I have three postfix 2.9.5 servers: chombo, rush, yoshi. Chombo relays to rush and yoshi for outbound email. Outbound relay requires SASL authentication. Rush and yoshi run Dovecot 2.1.12 servers with simple passwd-file backends. If I create a new password hash for chombo's user, houseloki, on either rush or yoshi: # doveadm pw -u houseloki -p password {CRAM-MD5}... Then I add that to rush and yoshi's passwd file: houseloki@_auth.bluerosetech.com:{CRAM-MD5}... Then `doveadm reload`, it works fine: # doveadm auth houseloki password passdb: houseloki auth succeeded extra fields: user=houseloki@_auth.bluerosetech.com So I add that username and password to the smtp_sasl_password_maps hash file on chombo, reload postfix, and then try to relay something from chombo, it fails with rush and yoshi logging warnings like: Feb 19 03:32:33 yoshi postfix/smtpd[75783]: warning: chombo.example.com[2001:db8::2]: SASL DIGEST-MD5 authentication failed: really long string redacted Rush and yoshi have other hashes in their passwd files, and if I configure chombo to use one of those, it works fine. Those hashes use digest-md5 and are at least a few years old. I tried that scheme instead of the default cram-md5, as well as several others, but none work. I've poured over the wiki and man pages, but can't find the problem. What am I missing? Why can I not generate new hashes correctly?
Re: [Dovecot] Dict quota timeout error: Has anything changed in the latest versions?
On 12.2.2013, at 12.34, Alessio Cecchi ales...@skye.it wrote: Since dovecot 2.1.10-13 (but perhaps even before) when a new user log in via POP/IMAP or receive an email for the first time dovecot created the entry for the users in the table quota of dovecot database with quota usage and number of messages (before of this login/delivery the user has no entry in the quota table of dovecot DB). After the update to 2.1.14 when a new user login or receive an email for the first time dovecot was unable to create (immediately) the entry in quota table and in the log print these errors: Feb 12 11:05:41 pop3(ales...@domain.com): Error: read(/usr/local/dovecot-2.1/var/run/dovecot/dict) failed: Timeout after 30 seconds I don't see any recent changes in this code, so I think it has been broken for a long time. Anyway, this fixes it: http://hg.dovecot.org/dovecot-2.1/rev/225c64ed0439
Re: [Dovecot] fts_solr search in subfolders?
I can't reproduce this with latest v2.1. You can reproduce it every time? What about with v2.2.beta2? On 11.2.2013, at 11.46, Frederic Biermann f.bierm...@eye-on.de wrote: hello, created virtual folder virtuall.all now usin this folder is working fine. But when i want to search in this virtual folder i get these errors with fts-solr: Feb 11 10:37:24 myserver dovecot: indexer-worker(usern...@mailadress.de): Panic: file solr-connection.c: line 419 (solr_connection_select): assertion failed: (!conn-posting) Feb 11 10:37:24 myserver dovecot: indexer-worker(usern...@mailadress.de): Error: Raw backtrace: /usr/lib/dovecot/libdovecot.so.0 [0xcff170] - /usr/lib/dovecot/libdovecot.so.0 [0xcff1cd] - /usr/lib/dovecot/libdovecot.so.0 [0xcfe7b4] - /usr/lib/dovecot/lib21_fts_solr_plugin.so [0x3cfec5] - /usr/lib/dovecot/lib21_fts_solr_plugin.so [0x3cc63f] - /usr/lib/dovecot/lib20_fts_plugin.so(fts_backend_get_last_uid+0x6b) [0x3c09cb] - /usr/lib/dovecot/lib20_fts_plugin.so [0x3c53c1] - /usr/lib/dovecot/lib20_fts_plugin.so [0x3c6019] - /usr/lib/dovecot/lib20_virtual_plugin.so [0x8d3115] - /usr/lib/dovecot/lib20_fts_plugin.so [0x3c5f18] - /usr/lib/dovecot/libdovecot-storage.so.0(mail_precache+0xf) [0x345f9f] - dovecot/indexer-worker [0x8049d3f] - /usr/lib/dovecot/libdovecot.so.0(io_loop_call_io+0x42) [0xd0bcb2] - /usr/lib/dovecot/libdovecot.so.0(io_loop_handler_run+0xef) [0xd0d23f] - /usr/lib/dovecot/libdovecot.so.0(io_loop_run+0x48) [0xd0bc58] - /usr/lib/dovecot/libdovecot.so.0(master_service_run+0x2d) [0xcf5c6d] - Feb 11 10:37:24 myserver dovecot: indexer: Error: Indexer worker disconnected, discarding 1 requests for usern...@mailadress.de Feb 11 10:37:24 myserver dovecot: indexer-worker(usern...@mailadress.de): Fatal: master: service(indexer-worker): child 30511 killed with signal 6 (core dumps disabled) Feb 11 10:37:24 myserver dovecot: imap(usern...@mailadress.de): Error: indexer failed to index mailbox virtual.all After some (realy long time) i get correct answer with the right UIDs of mails, but it's not from solr. :-( Search in normal inbox is not concerned. Search there is very fast and i log i get these: Feb 11 10:44:44 myserver dovecot: indexer-worker(usern...@mailadress.de): Indexed 9 messages in INBOX Anyone some ideas? Am 11.02.2013 um 02:29 schrieb Timo Sirainen: On Thu, 2013-02-07 at 11:04 +0100, Frederic Biermann wrote: Hello, i am using dovecot 2.1.x with Solr 4.x and it is all working fine. Search in current selected folder is extremly fast. But i want to ask if it is possible that i have selected inbox, setup a search and get results from subfolders. This is not working for me. I have to select the subfolder and then i get results. Is there any solution to fix this? Create a virtual folder that contains all the folders you want to search: http://wiki2.dovecot.org/Plugins/Virtual
Re: [Dovecot] dovecot-2.2: broken domain quota calculation
On 6.2.2013, at 14.07, Evgeny Basov ya.mw...@yandex.ru wrote: Quota configuration: plugin { quota = dict:Domain quota:%d:redis:host=127.0.0.1:prefix=domain/ quota_rule = *:storage=0 quota_rule2 = Trash:storage=+5%% quota2 = dict:User quota::redis:host=127.0.0.1:prefix=user/ quota2_rule = *:storage=0 quota2_rule2 = Trash:storage=+5%% } Problem: incorrect quota calculations. Dovecot gets size and messages count of all domain from last user in list. In 2.1 works fine. Steps to reproduce problem: 1. install dovecot 2. create over 50 users with e-mails 3. execute: doveadm quota recalc -A Are you talking about the recalc command not counting the domain quota correctly? It has never worked. That's the main reason that feature isn't being advertised much. Nowadays it would at least be possible to implement by iterating through users within the domain.
Re: [Dovecot] Errors with doveadm when using checkpassword
On 5.2.2013, at 14.53, Andy Dills a...@xecu.net wrote: On Tue, 5 Feb 2013, Timo Sirainen wrote: I think you need to remove doveadm_proxy_port from the backend dovecot.conf. Then it doesn't perform the PASS lookup. But you also should run doveadm via the proxy instance so that it gets run in the correct server (doveadm -c /etc/dovecot/proxy.conf or doveadm -i proxy if you've given it a name). On a seperate note I'm sure a lot of people would benefit from -c/-i being mentioned on http://wiki2.dovecot.org/Tools/Doveadm. You are one man with only so much time so I tried registering on the wiki to propose an edit for you, but I'm not allowed. I think all we need is to know that -c and -i exist, and a note about how people in proxy/director configurations need to make sure to tell doveadm to communicate with the instance that is running director. The Doveadm wiki pages are generated from man pages that exist in Dovecot source code. Feel free to send patches for them. :) For some reason, my intuition would be that since doveadm is aware of both instances, that it should be aware of which one's config to use for connecting to director for proxy information. Too dangerous to do that kind of guessing. You could write your own doveadm script/alias though.
Re: [Dovecot] Possible sort optimization (?)
On 6.2.2013, at 1.02, Michael M Slusarz slus...@curecanti.org wrote: a UID SORT RETURN (ALL COUNT) (DATE) UTF-8 SUBJECT foo is always about 10 percent slower than this split query (I've done this 4-5 times, and the numbers are similar): a UID SEARCH RETURN (SAVE) CHARSET UTF-8 SUBJECT foo b UID SORT RETURN (ALL COUNT) (DATE) UTF-8 UID $ (The particular query I used matched 5 messages out of the 21,000+) I think the main difference is that the first command fetches also Date: header from dovecot.index.cache. Did you check if the slowness was because of additional userspace CPU usage (instead of disk IO)? See if the attached patch makes a difference? One possible solution would be to do the prefetching when search program is all, but not otherwise. But if most of the messages match the search query then this is slower.. diff Description: Binary data
Re: [Dovecot] Dovecot auth works when tested with doveadm, but fails with Postfix
On 2013-02-22 03:30, Timo Sirainen wrote: If you want both CRAM-MD5 and DIGEST-MD5 auth, the password must be in plaintext format. I tried using a DIGEST-MD5 hash instead of CRAM-MD5. It doesn't work either: rush# doveadm pw -s digest-md5 -u houseloki -p password {DIGEST-MD5}... Add to passwd file: houseloki@_auth.bluerosetech.com:{DIGEST-MD5}... rush# doveadm auth houseloki password passdb: houseloki auth succeeded extra fields: user=houseloki@_auth.bluerosetech.com Give new password to chombo, attempt relay: rush postfix/smtpd[49653]: warning: chombo[2001:db8::2]: SASL DIGEST-MD5 authentication failed: ... Without changing anything on rush or yoshi, I can swap in one of the older digest-md5 hashes and chombo can relay just fine (in fact, this email was relayed via chombo using SASL auth with one of the older DIGEST-MD5 hashes). There are three other servers also successfully relaying through yoshi and rush, also using the older DIGEST-MD5 hashes. I can use any of the four older hashes on any of the machines and they work. I can't generate any new hashes that work for any. I also checked that all six machines generate the same hashes.
Re: [Dovecot] Header is huge in fts-solr
On 5.2.2013, at 15.58, Valery V. Sedletski valer...@afterlogic.com wrote: Hi, Timo and all! I am trying to index mail in a test mailbox using fts_solr plugin for full-text search. On most mailboxes, it works fine, but on some big messages I get warnings like the following, and then I get an Out of memory error from Solr, then the indexer-worker process (or doveadm) crashes with assertion failed error and the backtrace: == doveadm(valer...@test.afterlogic.com): Warning: fts-solr(valer...@test.afterlogic.com): Mailbox gmail.com UID=48 header size is huge I'm not sure why Solr would become out of memory. If it handles huge message bodies then I don't really see why it couldn't handle huge headers.. doveadm(valer...@test.afterlogic.com): Panic: file ../../../../src/plugins/fts-solr/solr-connection.c: line 548 (solr_connection_post_more): assertion failed: (maxfd = 0) This is hopefully fixed by v2.2, which uses its own lib-http instead of libcurl (which I'm apparently not using correctly). So, it seems that Dovecot tries to parse messages in the mailbox, and can't correctly determine where the message header ends. So, it thinks that the message header is big, and passes very big data to Solr. When trying to index it, Solr exhausts the available memory (though, I have 8 Gb of RAM on my machine, and java eats more than 2 Gb when indexing). Then connections to Solr get closed, and maxfd is invalid, hence the assertion is failed. Note also the following error == SEVERE: org.apache.solr.common.SolrException: undefined field text == before an out of memory error. I don't know about that one. I also tried to tweak the decode2text.sh script to ignore all attachments bigger than 1 Mb (just test if the file is bigger than 1 Mb, and if so, return 1). This won't help. As I understood, this is because of big header, so attachments doesn't matter. Yes. I separated the set of messages which cause this error (by their UID's). So, I can give them as a testcase, the size of them all in archive is about 40 Mb. The error can be reproduced if put all these messages into an empty mailbox, and do reindexing, via IMAP search, or via doveadm index -u . Is it really a message with huge header? Also MIME headers are counted as headers. Anyway, http://hg.dovecot.org/dovecot-2.1/rev/0a932ba1f01f hopefully helps?
Re: [Dovecot] Userdb passwd and 'nologin' users
After thinking about this for a while, I think the best solution is simply to remove the shell check unconditionally. I'm not sure if anyone else except me ever wanted it (and I can live with a couple of unnecessary users getting mailboxes). Done for v2.2: http://hg.dovecot.org/dovecot-2.2/rev/4eea2224e16b I did also wonder about using a special dovecot-skip GECOS field for this, but maybe not a good idea either. On 1.2.2013, at 0.35, Ben Morrow b...@morrow.me.uk wrote: I am running Dovecot with system users (userdb passwd), but some of those users don't have shell accounts on the IMAP server so their shell on that machine is set to /usr/sbin/nologin. Currently I am using maildirs and this is not a problem, but I am in the process of switching to dbox which means I will need a cronjob running 'doveadm purge -A'. During testing I found that those users with a 'nologin' shell are not included in the list returned by the userdb iterator, and that the iterator doesn't honour the first/last_valid_uid settings. This inconsistency seems undesirable, so the attached patch - makes lookup perform the same checks as iteration, - makes the 'nologin' check configurable, - adds a new optional check that the user owns their home directory. The last check was the one performed by qmail, and seems to me to be a more reliable 'is this a real user' check than a nologin shell. If this patch is applied, the release notes for the next release should probably mention that system users with a 'nologin' shell will no longer be allowed to log in to IMAP until the 'auth_check_nologin' setting is changed from true to false. Also, there seem to be two first/last_valid_uid settings: first_valid_uid itself, which is honoured by the storage subsystem, and auth_first_valid_uid, which is honoured by the 'passwd' userdb. Is this intentional? Ben userdb-passwd-nologin.patch
Re: [Dovecot] High CPU Usage with 2.2
On 22.2.2013, at 15.04, Odhiambo Washington odhia...@gmail.com wrote: I am seeing a rather high CPU usage with 2.2 now: 30569 mailnull 1 1120 4956K 2784K RUN 0 1:27 68.65% pop3 They're in infinite loop? strace -tt -o log -p 30569 ctrl-c gdb -p 30569 bt full And send me the strace and gdb output.
Re: [Dovecot] error running indexer-worker as non-root user
http://hg.dovecot.org/dovecot-2.1/rev/6d45b9bd1cff fixes it Yes it does. Thanks.
Re: [Dovecot] patch to fix binary attachment indexing
Applied basically the same logic: http://hg.dovecot.org/dovecot-2.1/rev/b0e68c53771e Cool, thanks. I guess you're building a new fts backend? Just maintaining the one I already have.
Re: [Dovecot] Trouble with expire plugin
On 27.1.2013, at 22.49, Gedalya geda...@gedalya.net wrote: I got it working. I know this worked before, I can't specify when it stopped working, but here is the story. I have: auth_default_realm = domain.com in dovecot-sql.conf.ext I had: iterate_query = SELECT userid as user, domain FROM email where deleted=0 Now it's working when I changed it to: iterate_query = SELECT concat(userid, '@', domain) as username FROM email where deleted=0 iterate_query = SELECT userid as username, domain FROM email where deleted=0 would have worked too. user = the whole user@domain, while username = without domain. I think I'll leave it like this. Is this a bug? The wiki clearly says that iterate_query can take the domain in a separate field, yet dovecot seems to ignore the domain field and use auth_default_realm. The wiki page was partially wrong though, updated.
Re: [Dovecot] assert in mail-transaction-log-file.c
On 25.1.2013, at 13.28, Anton Yuzhaninov cit...@citrin.ru wrote: I setup new server with dovecot 2.1.12 and mboxes from backup (moboxes was used with dovecot 1.1.6). OS: FreeBSD 8.3-STABLE, amd64. All index files from dovecot 1.1.6 has been deleted. Some times dovecot processes aborted. E. g. Jan 25 03:01:52 ost dovecot: lda(u...@example.ru): Panic: file mail-transaction-log-file.c: line 1694 (mail_transaction_log_file_map): assertion failed: (file-buffer != NULL) Hmm. Not sure about this .. I guess either you're running out of quota for the user, or mbox_min_index_size isn't 0. It still should work though, but maybe too much trouble to figure out what exactly is wrong. Anyway, this should cause it to give an error message instead of crash: http://hg.dovecot.org/dovecot-2.1/rev/e33fe1a7bb89
Re: [Dovecot] [PATCH] support for NetBSD 6.0 libquota
On 19.1.2013, at 7.41, Emmanuel Dreyfus m...@netbsd.org wrote: NetBSD 6.0 introduced a new improved quota subsystem and an unified API (libquota) to handle the new and old quota implementation. dovecot is unable to use the new quota implementation right now, and will even fail to build with the old quota API on NetBSD 6.0: Here are dovecot patches to support NetBSD libquota: http://ftp.espci.fr/shadow/manu/dovecot-libquota.tgz Added to v2.2: http://hg.dovecot.org/dovecot-2.2/rev/b3f890c4a41c
Re: [Dovecot] environment for dovecot auth
On 18.1.2013, at 13.39, Emmanuel Dreyfus m...@netbsd.org wrote: Is there a way to set environment variables for the auth process? All I found for now is to replace it by a shell script that sets variables and then launch the real auth, but I wonder if there is a better way. dovecot.conf: import_environment = TZ FOO Start dovecot: FOO=bar dovecot
Re: [Dovecot] pop3_lock_session and mdbox format
On 9.1.2013, at 12.42, Ewald Dieterich ewald.li...@fun.de wrote: Setting pop3_lock_session = yes in the configuration has no effect when I use Dovecot 2.1.13 with the mdbox format. A second POP3 connection to the same mailbox is still allowed. Grepping for MAILBOX_FLAG_KEEP_LOCKED in the source code shows that POP3 session locking only works for the Maildir and mbox formats. Is it possible to enable it for the mdbox format, as well? v2.2 implements a separate pop3 lock file now.
[Dovecot] problems with imaps
hi, i'm using dovecot 1.2.15 with self signed certificates using starttls on ports 110/143 works ok with thunderbird 10.0.12 (and i guess most other clients) using imaps on port 993 works with outlook 2002. with thunderbird 10.0.12 i can't connect to port 993 and get errors in the logs like TLS: SSL_read() failed: error:14094412:SSL routines:SSL3_READ_BYTES:sslv3 alert bad certificate (certificate generated by dovecot mkcert.sh) or TLS: SSL_read() failed: error:14094418:SSL routines:SSL3_READ_BYTES:tlsv1 alert unknown ca (certificate generated by own openssl cmdline) i know that a lot of information is missing, but since this looks like a more general problem i dare to ask for help before posting more config details thx matthias
[Dovecot] Ubuntu-12.04 packages for latest Dovecot release
Hi, Does anyone here know a trusted package repository for Ubuntu LTS which has always the latest version of Dovecot? Thanks ! -- Thiago Henrique adminlinux.com.br
Re: [Dovecot] High CPU Usage with 2.2
On 22.2.2013, at 15.04, Odhiambo Washington odhia...@gmail.com wrote: I am seeing a rather high CPU usage with 2.2 now: 30569 mailnull 1 1120 4956K 2784K RUN 0 1:27 68.65% pop3 Looks like POP3 code hadn't been tested much. Fixed: http://hg.dovecot.org/dovecot-2.2/rev/dcbebe49922a
Re: [Dovecot] Ubuntu-12.04 packages for latest Dovecot release
On 22-02-13 15:13, 3.lis...@adminlinux.com.br wrote: Hi, Does anyone here know a trusted package repository for Ubuntu LTS which has always the latest version of Dovecot? Thanks ! http://wiki2.dovecot.org/PrebuiltBinaries
[Dovecot] LMTP logging
Hi, Is there a way (in Dovecot 2.1.14) to sent LMTP log entries and IMAP log entries to different files? I know I could achieve this with syslog-ng, but as LDA has a log file of its own, I am wondering if this is possible with LMTP as well. I apologize if I missed something in the wiki. Thanks, Peter
Re: [Dovecot] High CPU Usage with 2.2
On 22 February 2013 17:22, Timo Sirainen t...@iki.fi wrote: On 22.2.2013, at 15.04, Odhiambo Washington odhia...@gmail.com wrote: I am seeing a rather high CPU usage with 2.2 now: 30569 mailnull 1 1120 4956K 2784K RUN 0 1:27 68.65% pop3 Looks like POP3 code hadn't been tested much. Fixed: http://hg.dovecot.org/dovecot-2.2/rev/dcbebe49922a And my server can breath life again. THANK YOU for a very fast remedy!!! -- Best regards, Odhiambo WASHINGTON, Nairobi,KE +254733744121/+254722743223 _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ I can't hear you -- I'm using the scrambler.
Re: [Dovecot] LMTP logging
On Fri, 2013-02-22 at 15:32 +0100, Peter Rindfuss wrote: Hi, Is there a way (in Dovecot 2.1.14) to sent LMTP log entries and IMAP log entries to different files? I know I could achieve this with syslog-ng, but as LDA has a log file of its own, I am wondering if this is possible with LMTP as well. I apologize if I missed something in the wiki. This should work: service lmtp { executable = lmtp -L } protocol lmtp { log_path = .. }
Re: [Dovecot] Ubuntu-12.04 packages for latest Dovecot release
Thank you Tom Hendrikx! But with the newest version package for Ubuntu Precise is 2.0.19. I would like to use the Dovecot version 2.1.15. I think I will have to generate my own packages ... :-\ -- Thiago Henrique adminlinux.com.br On 22-02-2013 11:28, Tom Hendrikx wrote: http://wiki2.dovecot.org/PrebuiltBinaries
Re: [Dovecot] problems with imaps
On 2013-02-22, Matthias Leopold wrote: with thunderbird 10.0.12 i can't connect to port 993 and get errors in the logs like TLS: SSL_read() failed: error:14094412:SSL routines:SSL3_READ_BYTES:sslv3 alert bad certificate (certificate generated by dovecot mkcert.sh) or TLS: SSL_read() failed: error:14094418:SSL routines:SSL3_READ_BYTES:tlsv1 alert unknown ca (certificate generated by own openssl cmdline) Did you create a Root CA certificate? If not, I would prefer to create your own CA and sign all certs with this Root CA certificate. You'll have to import the created Root CA certificate in Thunderbird and/or the Microsoft Certificate Store so that the applications can trust the self signed certificates. You could also use a free Certificate Authority like StartSSL but the Root CA certificate must also be available in the certificate store of the application (Thunderbird, MS, Opera...). -- Daniel
Re: [Dovecot] v2.2.beta2 released
Thank you very much Michael. I'll set it up again, because I think that initially I was not using any aggregator service. My setup is a little atypical as I have servers spread-out on 2 (soon 3) continents that are connected via slow uplinks. Hopefully the v2.2 is more stable and less buggy for the synch ;) Best regards, Andrei Hi -- On 2013-02-21 Michescu Andrei wrote: Can you post to the list your working configurations for dovecot? (This is based on http://dovecot.org/list/dovecot/2012-March/064513.html) My design: single user vmail to run dsync over ssh (one may use root instead) Thus, my prerequisites are: create vmail user accounts at both servers (example: mx1 and mx2) exchange ssh-keys for ssh authentication between both servers involved My relevant parts from dovecot.conf, identical for both servers: ## --- DSYNC REPLICATION # ssh command line used in dsync replication # added: # -p xxx (ssh port) # -o mail_plugins=(omit mail_log plugins for dsync) # dsync_remote_cmd = ssh -p 44488 -l%{login} %{host} doveadm -omail_plugins= dsync-server -u%u -n%{namespace} # aggregator, replicator, doveadm, and config needed, and dsync_remote_cmd (see above) # service aggregator { # give enough permissions for mail processes # fifo_listener replication-notify-fifo { user = vmail mode = 0600 } unix_listener replication-notify { user = vmail mode = 0600 } } service replicator { # start replication at startup # process_min_avail = 1 } service doveadm { # if you're using a single virtual user, set this to start ssh as vmail (not root) # user = vmail } service config { # needed to grant access to /var/run/dovecot/config for service doveadm # unix_listener config { user = vmail } } The following part is for server mx1, only: --- # dsync replication plugin # plugin { # this host replicates to remote host # mail_replica = remote:vm...@mx2.fqdn # run full synchronization mode every other hour # replication_full_sync_interval = 1 hours } The following part is for server mx2, only: --- # dsync replication plugin # plugin { # this host replicates to remote host # mail_replica = remote:vm...@mx1.fqdn # run full synchronization mode every other hour # replication_full_sync_interval = 1 hours } HTH, Michael !DSPAM:51271e3f42781904211018!
Re: [Dovecot] Ubuntu-12.04 packages for latest Dovecot release
On 22-02-13 17:01, 3.lis...@adminlinux.com.br wrote: Thank you Tom Hendrikx! But with the newest version package for Ubuntu Precise is 2.0.19. I would like to use the Dovecot version 2.1.15. I think I will have to generate my own packages ... :-\ Or use 2.1 packages made by stefan bosch, as documented on that page...
Re: [Dovecot] problems with imaps
Am 2013-02-22 17:02, schrieb Daniel Luttermann: On 2013-02-22, Matthias Leopold wrote: with thunderbird 10.0.12 i can't connect to port 993 and get errors in the logs like TLS: SSL_read() failed: error:14094412:SSL routines:SSL3_READ_BYTES:sslv3 alert bad certificate (certificate generated by dovecot mkcert.sh) or TLS: SSL_read() failed: error:14094418:SSL routines:SSL3_READ_BYTES:tlsv1 alert unknown ca (certificate generated by own openssl cmdline) Did you create a Root CA certificate? If not, I would prefer to create your own CA and sign all certs with this Root CA certificate. You'll have to import the created Root CA certificate in Thunderbird and/or the Microsoft Certificate Store so that the applications can trust the self signed certificates. You could also use a free Certificate Authority like StartSSL but the Root CA certificate must also be available in the certificate store of the application (Thunderbird, MS, Opera...). -- Daniel thx, but this is not an option as this server is used by our customers who won't be willing to import this CA certificate. i know about the limitations of self signed certificates and i think it's ok for a user to import an unsecure certificate once. after all this does work for starttls and works for some clients with imaps. i didn't find any hint that i can't use self signed certificates for imaps/pops matthias
Re: [Dovecot] LMTP logging
Am 22.02.2013 15:50, schrieb Timo Sirainen: On Fri, 2013-02-22 at 15:32 +0100, Peter Rindfuss wrote: Hi, Is there a way (in Dovecot 2.1.14) to sent LMTP log entries and IMAP log entries to different files? I know I could achieve this with syslog-ng, but as LDA has a log file of its own, I am wondering if this is possible with LMTP as well. I apologize if I missed something in the wiki. This should work: service lmtp { executable = lmtp -L } protocol lmtp { log_path = .. } or use rsyslog if everything is logged to /var/log/mail.log i.e central logging /etc/rsyslog.d/50-default.conf ... # dovecot :programname, isequal, dovecot /var/log/dovecot.log #lmtp :msg, contains, lmtp /var/log/dovecot-lmtp.log Best Regards MfG Robert Schetterer -- [*] sys4 AG http://sys4.de, +49 (89) 30 90 46 64 Franziskanerstraße 15, 81669 München Sitz der Gesellschaft: München, Amtsgericht München: HRB 199263 Vorstand: Patrick Ben Koetter, Axel von der Ohe, Marc Schiffbauer Aufsichtsratsvorsitzender: Joerg Heidrich
Re: [Dovecot] problems with imaps
Am 22.02.2013 17:21, schrieb Matthias Leopold: Am 2013-02-22 17:02, schrieb Daniel Luttermann: On 2013-02-22, Matthias Leopold wrote: with thunderbird 10.0.12 i can't connect to port 993 and get errors in the logs like TLS: SSL_read() failed: error:14094412:SSL routines:SSL3_READ_BYTES:sslv3 alert bad certificate (certificate generated by dovecot mkcert.sh) or TLS: SSL_read() failed: error:14094418:SSL routines:SSL3_READ_BYTES:tlsv1 alert unknown ca (certificate generated by own openssl cmdline) Did you create a Root CA certificate? If not, I would prefer to create your own CA and sign all certs with this Root CA certificate. You'll have to import the created Root CA certificate in Thunderbird and/or the Microsoft Certificate Store so that the applications can trust the self signed certificates. You could also use a free Certificate Authority like StartSSL but the Root CA certificate must also be available in the certificate store of the application (Thunderbird, MS, Opera...). -- Daniel thx, but this is not an option as this server is used by our customers who won't be willing to import this CA certificate. i know about the limitations of self signed certificates and i think it's ok for a user to import an unsecure certificate once. after all this does work for starttls and works for some clients with imaps. i didn't find any hint that i can't use self signed certificates for imaps/pops surely, you can, but it makes only troubles as you see as CUSTOMER if i pay for your services i would consider search someone how is willing to spend a little amount of money for a certificate which does not greet me with a warning it is up to the client how he handles untrusted certs however, with the scripts below generated PEM-files are working with any known client and imaps/pop3s as well as STARTTLS or use them for Apache or postfix submission as also port 465 ___ [root@buildserver:/buildserver/ssl-cert]$ cat generate-cert.sh #!/usr/bin/bash WORKING_DIR=/buildserver/ssl-cert OUT_DIR=$WORKING_DIR/$1 mkdir $OUT_DIR 2 /dev/null chmod 700 $OUT_DIR if [ $1 == ]; then exit fi rm -f $OUT_DIR/$1.key rm -f $OUT_DIR/$1.csr rm -f $OUT_DIR/$1.crt rm -f $OUT_DIR/$1.pem sed s/my_common_name/$1/g $WORKING_DIR/openssl.conf.template $WORKING_DIR/openssl.conf openssl genrsa -out $OUT_DIR/$1.key 2048 openssl req -config $WORKING_DIR/openssl.conf -new -key $OUT_DIR/$1.key -out $OUT_DIR/$1.csr openssl x509 -req -days 3650 -in $OUT_DIR/$1.csr -signkey $OUT_DIR/$1.key -out $OUT_DIR/$1.crt cat $OUT_DIR/$1.crt $OUT_DIR/$1.key $OUT_DIR/$1.pem echo echo $OUT_DIR/$1.key echo $OUT_DIR/$1.csr echo $OUT_DIR/$1.crt echo $OUT_DIR/$1.pem echo chmod 600 $OUT_DIR/* ls -l -h --color=tty -X --group-directories-first --time-style=long-iso $OUT_DIR/ echo rm -f $WORKING_DIR/openssl.conf ___ [root@buildserver:/buildserver/ssl-cert]$ cat openssl.conf.template [ req ] prompt = yes default_bits= 2048 distinguished_name = req_DN string_mask = nombstr [ req_DN ] countryName = 1. Landeskennung countryName_default = AT countryName_min = 2 countryName_max = 2 stateOrProvinceName = 2. Bundesland stateOrProvinceName_default = Vienna localityName= 3. Stadt localityName_default= Vienna 0.organizationName = 4. Firmenname 0.organizationName_default = the lounge interactive design gmbh organizationalUnitName = 5. Abteilung organizationalUnitName_default = Administration commonName = 6. Server-Name commonName_max = 64 commonName_default = my_common_name emailAddress= 7. Mail-Adresse emailAddress_max= 40 emailAddress_default= hostmas...@thelounge.net signature.asc Description: OpenPGP digital signature
Re: [Dovecot] Ubuntu-12.04 packages for latest Dovecot release
Am 22.02.2013 17:01, schrieb 3.lis...@adminlinux.com.br: Thank you Tom Hendrikx! But with the newest version package for Ubuntu Precise is 2.0.19. I would like to use the Dovecot version 2.1.15. I think I will have to generate my own packages ... :-\ no you havent, you can use 2.1.15 debs from http://xi.rename-it.nl/debian/pool/testing-auto/dovecot-2.1/ if you want, you may recompile it from deb source ,the debian way, i do this since years on serveral ubuntu lts releases Best Regards MfG Robert Schetterer -- [*] sys4 AG http://sys4.de, +49 (89) 30 90 46 64 Franziskanerstraße 15, 81669 München Sitz der Gesellschaft: München, Amtsgericht München: HRB 199263 Vorstand: Patrick Ben Koetter, Axel von der Ohe, Marc Schiffbauer Aufsichtsratsvorsitzender: Joerg Heidrich
Re: [Dovecot] assert in mail-transaction-log-file.c
22.02.2013 17:51, Timo Sirainen пишет: On 25.1.2013, at 13.28, Anton Yuzhaninov cit...@citrin.ru wrote: I setup new server with dovecot 2.1.12 and mboxes from backup (moboxes was used with dovecot 1.1.6). OS: FreeBSD 8.3-STABLE, amd64. All index files from dovecot 1.1.6 has been deleted. Some times dovecot processes aborted. E. g. Jan 25 03:01:52 ost dovecot: lda(u...@example.ru): Panic: file mail-transaction-log-file.c: line 1694 (mail_transaction_log_file_map): assertion failed: (file-buffer != NULL) Hmm. Not sure about this .. I guess either you're running out of quota for the user, or mbox_min_index_size isn't 0. It still should work though, but maybe too much trouble to figure out what exactly is wrong. Anyway, this should cause it to give an error message instead of crash: http://hg.dovecot.org/dovecot-2.1/rev/e33fe1a7bb89 Thanks, I will try this patch, but last assertion was more than two weeks ago. I have mbox_min_index_size = 64 k in my config.
Re: [Dovecot] doveadm user error messages
* Timo Sirainen t...@iki.fi 2013.02.22 14:35: $ doveadm user foo $ echo $? 67 Fixed: http://hg.dovecot.org/dovecot-2.2/rev/bf817bc963f7 Looks good now. Thanks. signature.asc Description: Digital signature
Re: [Dovecot] LMTP logging
Am 22.02.2013 15:50, schrieb Timo Sirainen: On Fri, 2013-02-22 at 15:32 +0100, Peter Rindfuss wrote: Hi, Is there a way (in Dovecot 2.1.14) to sent LMTP log entries and IMAP log entries to different files? I know I could achieve this with syslog-ng, but as LDA has a log file of its own, I am wondering if this is possible with LMTP as well. I apologize if I missed something in the wiki. This should work: service lmtp { executable = lmtp -L } protocol lmtp { log_path = .. } Thanks, it works ... but now LMTP is logged to both the main log and the lmtp log. Peter
Re: [Dovecot] problems with imaps
Am 23.02.2013 00:48, schrieb Joseph Tam: On 2013-02-22, Matthias Leopold wrote: with thunderbird 10.0.12 i can't connect to port 993 and get errors in the logs like TLS: SSL_read() failed: error:14094412:SSL routines:SSL3_READ_BYTES:sslv3 alert bad certificate (certificate generated by dovecot mkcert.sh) I haven't come across any problems with our use of self-signed certificates, but I run the latest 2.1.x dovecot so maybe there's some SSL changes between our version and your's. started with dovecot 1.2 and now dovecot-2.1.15-3.fc18.20130209.rh.x86_64 there was never a problem TLS: SSL_read() failed: error:14094418:SSL routines:SSL3_READ_BYTES:tlsv1 alert unknown ca This error entry pops up in my logs once in a while these errors are simply pops up if the client the first time comes up with the certificate warning, not more and not less signature.asc Description: OpenPGP digital signature