Re: [Dovecot] getting quota error when accessing private namespace
Am 12.07.2013 07:27, schrieb Andreas Oster: Hi all, I have run into a problem which I cannot find a solution for. I have created an additional private namespace with the following commands in dovecot.conf : namespace { disabled = no hidden = no ignore_on_failure = no inbox = no list = children location = maildir:/var/vmail/archives/%Ln/Maildir mailbox archived mails { auto = subscribe driver = special_use = \Archive } prefix = Archives/ separator = / subscriptions = yes type = private } plugin { quota = maildir:User quota:ns= quota2 = maildir:Archives quota:ns=Archives/ quota2_rule = *:storage=5G quota_rule = *:storage=1G quota_rule2 = Trash:storage=+200M } I can access the new namespace without any problems but every time a folder in this namespace is accessed, I get the following error messages in mail.err log: dovecot: imap(testuser): Error: quota: Unknown namespace: Archives/ dovecot: last message repeated 49 times Quota seems to work, though I have the feeling, that it only will be updated when closing and reopening the mail client, but this can also be a client issue. Quota for the INBOX is either taken from LDAP or, if there is no value defined in LDAP, will be assigned a quota of 1G The Archives/ namespace has a static quota of 5G for every user. Does anyone have idea how to get rid of these error messages ? Thank you for your kind help Andreas why you want to have a separate namespace for archives ?, why not use simply a imap folder for every user ( which i wouldnt call archives, cause that name is allready used by thunderbird etc ), or use some pub namespace with an archive-username folder, restrictions can be done by acl, what problem youre trying to solve? perhaps you might have a look at http://sys4.de/de/blog/2013/02/07/mailarchiv-mit-dovecot-und-postfix-sortiert-nach-datum-mailadressen-und-ein-ausgehend-unterordnern/ for ideas also http://sys4.de/de/blog/2013/03/25/outlook-2013-special-use-mit-dovecot/ should give you help for special use handling, guess german is ok for you Best Regards MfG Robert Schetterer -- [*] sys4 AG http://sys4.de, +49 (89) 30 90 46 64 Franziskanerstraße 15, 81669 München Sitz der Gesellschaft: München, Amtsgericht München: HRB 199263 Vorstand: Patrick Ben Koetter, Axel von der Ohe, Marc Schiffbauer Aufsichtsratsvorsitzender: Florian Kirstein
Re: [Dovecot] getting quota error when accessing private namespace
Am 12.07.2013 08:39, schrieb Robert Schetterer: Am 12.07.2013 07:27, schrieb Andreas Oster: Hi all, I have run into a problem which I cannot find a solution for. I have created an additional private namespace with the following commands in dovecot.conf : namespace { disabled = no hidden = no ignore_on_failure = no inbox = no list = children location = maildir:/var/vmail/archives/%Ln/Maildir mailbox archived mails { auto = subscribe driver = special_use = \Archive } prefix = Archives/ separator = / subscriptions = yes type = private } plugin { quota = maildir:User quota:ns= quota2 = maildir:Archives quota:ns=Archives/ quota2_rule = *:storage=5G quota_rule = *:storage=1G quota_rule2 = Trash:storage=+200M } I can access the new namespace without any problems but every time a folder in this namespace is accessed, I get the following error messages in mail.err log: dovecot: imap(testuser): Error: quota: Unknown namespace: Archives/ dovecot: last message repeated 49 times Quota seems to work, though I have the feeling, that it only will be updated when closing and reopening the mail client, but this can also be a client issue. Quota for the INBOX is either taken from LDAP or, if there is no value defined in LDAP, will be assigned a quota of 1G The Archives/ namespace has a static quota of 5G for every user. Does anyone have idea how to get rid of these error messages ? Thank you for your kind help Andreas why you want to have a separate namespace for archives ?, why not use simply a imap folder for every user ( which i wouldnt call archives, cause that name is allready used by thunderbird etc ), or use some pub namespace with an archive-username folder, restrictions can be done by acl, what problem youre trying to solve? perhaps you might have a look at http://sys4.de/de/blog/2013/02/07/mailarchiv-mit-dovecot-und-postfix-sortiert-nach-datum-mailadressen-und-ein-ausgehend-unterordnern/ for ideas also http://sys4.de/de/blog/2013/03/25/outlook-2013-special-use-mit-dovecot/ should give you help for special use handling, guess german is ok for you Best Regards MfG Robert Schetterer Hello Robert, thank you for your fast response. I wanted to use the Thunderbird archive feature to allow users to move old mails, they want to keep, to a storage located on another server. But it would be perfectly OK to just have another folder where they can drop their old stuff. Every user should have a quota of 5G in that folder, which is different from the default INBOX quota. best regards Andreas
Re: [Dovecot] getting quota error when accessing private namespace
Am 12.07.2013 09:07, schrieb Andreas Oster: Am 12.07.2013 08:39, schrieb Robert Schetterer: Am 12.07.2013 07:27, schrieb Andreas Oster: Hi all, I have run into a problem which I cannot find a solution for. I have created an additional private namespace with the following commands in dovecot.conf : namespace { disabled = no hidden = no ignore_on_failure = no inbox = no list = children location = maildir:/var/vmail/archives/%Ln/Maildir mailbox archived mails { auto = subscribe driver = special_use = \Archive } prefix = Archives/ separator = / subscriptions = yes type = private } plugin { quota = maildir:User quota:ns= quota2 = maildir:Archives quota:ns=Archives/ quota2_rule = *:storage=5G quota_rule = *:storage=1G quota_rule2 = Trash:storage=+200M } I can access the new namespace without any problems but every time a folder in this namespace is accessed, I get the following error messages in mail.err log: dovecot: imap(testuser): Error: quota: Unknown namespace: Archives/ dovecot: last message repeated 49 times Quota seems to work, though I have the feeling, that it only will be updated when closing and reopening the mail client, but this can also be a client issue. Quota for the INBOX is either taken from LDAP or, if there is no value defined in LDAP, will be assigned a quota of 1G The Archives/ namespace has a static quota of 5G for every user. Does anyone have idea how to get rid of these error messages ? Thank you for your kind help Andreas why you want to have a separate namespace for archives ?, why not use simply a imap folder for every user ( which i wouldnt call archives, cause that name is allready used by thunderbird etc ), or use some pub namespace with an archive-username folder, restrictions can be done by acl, what problem youre trying to solve? perhaps you might have a look at http://sys4.de/de/blog/2013/02/07/mailarchiv-mit-dovecot-und-postfix-sortiert-nach-datum-mailadressen-und-ein-ausgehend-unterordnern/ for ideas also http://sys4.de/de/blog/2013/03/25/outlook-2013-special-use-mit-dovecot/ should give you help for special use handling, guess german is ok for you Best Regards MfG Robert Schetterer Hello Robert, thank you for your fast response. I wanted to use the Thunderbird archive feature to allow users to move old mails, they want to keep, to a storage located on another server. But it would be perfectly OK to just have another folder where they can drop their old stuff. Every user should have a quota of 5G in that folder, which is different from the default INBOX quota. best regards Andreas a folder can have additional plus quota via quota rules http://wiki2.dovecot.org/Quota/Configuration for short thinking you may use pub namespace with http://wiki2.dovecot.org/MailboxFormat/dbox#Alternate_storage but i nearly sure, there are some other solutions too for solving this, wait for other maybe better ideas Best Regards MfG Robert Schetterer -- [*] sys4 AG http://sys4.de, +49 (89) 30 90 46 64 Franziskanerstraße 15, 81669 München Sitz der Gesellschaft: München, Amtsgericht München: HRB 199263 Vorstand: Patrick Ben Koetter, Axel von der Ohe, Marc Schiffbauer Aufsichtsratsvorsitzender: Florian Kirstein
Re: [Dovecot] getting quota error when accessing private namespace
Am 12.07.2013 09:37, schrieb Robert Schetterer: http://sys4.de/de/blog/2013/02/07/mailarchiv-mit-dovecot-und-postfix-sortiert-nach-datum-mailadressen-und-ein-ausgehend-unterordnern/ for ideas like above a little bit different ( no postfix bcc archive feature and sieve autosort, instead for putting users mails by themselves to some archive by imap ) you may solve it ,with some backup.domain.de with alternate mail location in i.e ldap or mysql having some inbox and archive folder for every user mailbox on other physical mount in shared user namespace and using acl on it, this can be done automatic at user mailbox creation time with subscribe archive folder, use some static quota with it Best Regards MfG Robert Schetterer -- [*] sys4 AG http://sys4.de, +49 (89) 30 90 46 64 Franziskanerstraße 15, 81669 München Sitz der Gesellschaft: München, Amtsgericht München: HRB 199263 Vorstand: Patrick Ben Koetter, Axel von der Ohe, Marc Schiffbauer Aufsichtsratsvorsitzender: Florian Kirstein
Re: [Dovecot] getting quota error when accessing private namespace
Am 12.07.2013 09:54, schrieb Robert Schetterer: Am 12.07.2013 09:37, schrieb Robert Schetterer: http://sys4.de/de/blog/2013/02/07/mailarchiv-mit-dovecot-und-postfix-sortiert-nach-datum-mailadressen-und-ein-ausgehend-unterordnern/ for ideas like above a little bit different ( no postfix bcc archive feature and sieve autosort, instead for putting users mails by themselves to some archive by imap ) you may solve it ,with some backup.domain.de with alternate mail location in i.e ldap or mysql having some inbox and archive folder for every user mailbox on other physical mount in shared user namespace and using acl on it, this can be done automatic at user mailbox creation time with subscribe archive folder, use some static quota with it Best Regards MfG Robert Schetterer Hello Robert, thank you for all your hints. I already know the +quota stuff, but this is not shown in the mail client and the user has no way to see if he is reaching the max level. That is why I tried to set up an additional namespace in the first place. Thank you very much for your kind help. Andreas
Re: [Dovecot] avoid log message when using nagios check
Am 12.07.2013 02:09, schrieb Timo Sirainen: On 10.7.2013, at 23.47, Daniel Partheyd.part...@metaways.de wrote: You're right, TCP connections don't seem to be a real problem here. I confused it with the following messages, we get every few minutes in the dovecot-director.log, but I'm not sure of their origin yet, there are some other imap proxies/balancer in front of the director: Jul 10 21:51:46 10.129.3.233 dovecot: director: Error: read(login connection) failed: Connection reset by peer Jul 10 21:51:49 10.129.3.213 dovecot: director: Error: read(login connection) failed: Connection reset by peer Those aren't really errors. They should just be ignored. This gets rid of them: http://hg.dovecot.org/dovecot-2.2/rev/ebbe00999da8 I'm not sure why I haven't seen these before though. Was this with Linux? Yes, this was with Linux. Or I guess more likely it's because you're not using it in high performance mode as explained in http://wiki2.dovecot.org/LoginProcess Indeed we're currently using the default (high security mode). Regards Daniel -- Dipl.-Inf. Daniel Parthey System Engineer Metaways Infosystems GmbH Pickhuben 2, D-20457 Hamburg E-Mail: d.part...@metaways.de Web:http://www.metaways.de Metaways Infosystems GmbH - Sitz: D-22967 Tremsbüttel Handelsregister: Amtsgericht Lübeck HRB 4508 AH Geschäftsführung: Hermann Thaele, Lüder-H.Thaele
Re: [Dovecot] virtual users
Hello Gab, well the most attractive feature of virtual users is ease of administration. Adding a new domain and user is a matter of adding a couple of text lines (if using simplest text-based user databases), mail users do not litter the system user space, you do not expose system access to mail-only users, you don't have to create and manage email-to-sysuser mapping, each user logins simply by his/her email address, mail storage is separated from system home dir, etc... In fact it is more convenient and consistent to use virtual mailboxes even for system users (e.g. admin), just add an alias root - u...@domain.zz (Naturally system password and mail password are independent so they can be different for added security). Of course in simplest form all virtual users use one system account but exploiting this would require circumventing Dovecot security which is pretty high. Also at most it would get access to other accounts' mail, not other system access. Migration is really quite easy, actually I just created the virtual user infrastructure (postfix + dovecot) and then simply copied each Maildir directory from ~user/ to ~vmail/u...@domain.zz/ Best wishes Eugene -Original Message- From: Gab IIpop Sent: Thursday, July 11, 2013 5:31 PM To: dovecot@dovecot.org Subject: [Dovecot] (no subject) From the documentation, virtual users seem like a good idea if you plan on having a lot of users. Although I'm wondering about the following: What other benefits/consequences are there to using virtual over system users and vice versa? Will virtual users have the same protection as system users (system users would use linux permissions, which is pretty secure)? How easy will it be to switch from using system users to virtual users or vice versa?
Re: [Dovecot] login_trusted_networks from webmail ?
On Thu, Jul 04, 2013 at 08:51:47PM +0200, Benny Pedersen wrote: Timo Sirainen skrev den 2013-07-03 22:34: If backend has login_trusted_networks pointing to directors, then the IP gets forwarded to backends as well. how does imap get ip from http ? The webmail-server will use the HTTP REMOTE_ADDR header in the IMAP ID when initiating the IMAP connection. a ID (x-originating-ip $REMOTE_ADDR) -jf
[Dovecot] Dovecot Virtual Folders... could these be managed by a/the Client?
Hi all/Timo, I was thinking about Thunderbirds ability to create Virtual folders allowing you to have many different views of your messages... The downside though, is you only see these in Thunderbird. I know that dovecot supports server side virtual folders: http://wiki2.dovecot.org/Plugins/Virtual But I'm wondering about the possibility to manage these from the client side... For example, would it be possible to create an extension in Thunderbird that allowed the user to manage these (create, edit the filters for, delete, rename, etc)? Thanks, -- Best regards, Charles
[Dovecot] mail not reject when the mailbox is full (Dovecot-LDAP-Imap_quota)
Hello List. Currently I have configured the share of users through the LDAP query as shown #dovecot.conf protocol imap { mail_plugins = quota imap_quota } plugin { quota = dirsize } userdb ldap { args = /etc/dovecot/dovecot-ldap.conf } #dovecot-ldap.conf auth_bind = yes ldap_version = 3 base = dc=XXX,dc=YY,dc=ZZ deref = never scope = subtree user_attrs = homeDirectory=home,uidNumber=uid,gidNumber=gid,mail=Maildir,mailQuotaSize=quota_rule=*:storage=%$ user_filter = ((objectClass=posixAccount)(uid=%u)) pass_attrs = uid=user,userPassword=password,homeDirectory=userdb_home,uidNumber=userdb_uid,gidNumber=userdb_gid pass_filter = ((objectClass=posixAccount)(uid=%u)) Additionally in thunderbird customers have the plug so they can see the share. This works perfect! However, when the mailbox exceeds 100% users continue to receive mail which makes the risk set allocated disk space, the idea is that when full the mail reject with a message mailbox XXX full . As always appreciate the ideas. Victor Oñate
Re: [Dovecot] Dovecot Virtual Folders... could these be managed by a/the Client?
Hi, On 12.7.2013, at 16.21, Charles Marcus cmar...@media-brokers.com wrote: I know that dovecot supports server side virtual folders: http://wiki2.dovecot.org/Plugins/Virtual But I'm wondering about the possibility to manage these from the client side... For example, would it be possible to create an extension in Thunderbird that allowed the user to manage these (create, edit the filters for, delete, rename, etc)? Currently Dovecot doesn't provide an IMAP level interface for managing these. There have been two proposed IMAP extensions for these, but nothing really came ouf ot those. It would be possible to add some new IMAP extension to configure the virtual folders, but the main reason why there isn't one is simply because I haven't thought anyone would bother to implement such spec.
[Dovecot] Difference between using auth_realms and setting up virtual mailboxes in postfix?
Hi, there is a possibility in the future that I might have to support multiple domain names(but using the same IP address). Postfix has something called 'virtual mailboxes' to help handle this. But I also noticed that dovecot has a setting auth_realms where I can specify domains separated by a space. What is the relationship between the two?
Re: [Dovecot] Ambiguous behavior with prefetch database?
Le 12 juil. 2013 à 01:44, Timo Sirainen a écrit : [...] Here: http://hg.dovecot.org/dovecot-2.2/rev/2be295a0b64f Hello Timo, I hope I'll have the opportunity to try it tomorrow. In the meantime, thanks again for your care, Axel
[Dovecot] A sqlite-based quota dict
Hello, While experimenting with the sqlite backend, I noticed a big vacuum wrt its use for a quota dict. This is thus an opportunity to share a solution I managed to devise after some trials and errors and a (very quick and unscientific) look at the code. And also the opportunity to ask the community to check for possible flaws. Yes, nothing comes for free... ;-) TIA, Axel This is the SQL for creating the database or for adding needed table/trigger to an existing database (with many comments and few active lines): CREATE TABLE quota ( -- We will assume that, in the case of a sqlite DB (and probably a pgsql DB -- as well), Dovecot will *always* act along these lines: -- In case of a row creation: -- INSERT INTO quota (subject, byte_count) -- VALUES (some id, byte count); -- INSERT INTO quota (subject, message_count) -- VALUES (some id, msg count); -- In case of a recalculation: -- UPDATE quota -- SET byte_count = byte_count + byte count diff, -- message_count = message_count + msg count diff -- WHERE subject = some id; -- In case of a row deletion: -- DELETE FROM quota -- WHERE subject = some id; -- For example, a doveadm quota recalc may first delete the relevant row -- if it exists, then (re-)create it. -- Clearly, the row creation case is a bit problematic, hence the need for -- a trigger. -- An id for the entity subjected to a quota (a user/mailbox, a domain...). subject TEXT PRIMARY KEY NOT NULL, -- The entity's size, expressed as a storage space use and as a message -- count. -- Note the NULL defaults: they allow to simplify the trigger's logics. byte_count INTEGER DEFAULT NULL, message_count INTEGER DEFAULT NULL ); CREATE TRIGGER quota_insert BEFORE INSERT ON quota FOR EACH ROW BEGIN -- If there's a row to update, that's because the first INSERT of the row -- creation has been performed. -- (this UPDATE could probably be simplified if the insertion order, -- byte_count then message_count, was guaranteed; anyway, since the row -- creation operation shouldn't be very frequent, we may afford a slight -- inefficiency). UPDATE quota SET byte_count = CASE WHEN NEW.byte_count ISNULL THEN byte_count ELSE NEW.byte_count END, message_count = CASE WHEN NEW.message_count ISNULL THEN message_count ELSE NEW.message_count END WHERE subject = NEW.subject; -- In which case we may ignore that second (current) INSERT, since the -- previously inserted row has just been updated with the value coming -- from the current INSERT statement. SELECT raise(IGNORE) WHERE EXISTS (SELECT * FROM quota WHERE subject = NEW.subject); END; The corresponding dict configuration being thus supposed to be similar to this one: connect = /path/to/database map { pattern = priv/quota/storage table = quota username_field = subject value_field = byte_count } map { pattern = priv/quota/messages table = quota username_field = subject value_field = message_count }