Compile error Dovecot2-pigeonhole

2016-07-06 Thread Maximus 
FreeBSD 9.3

Dovecot 2.25 (7be1766)

 

 

I'm trying to install Dovecot2-pigeonhole-0.4.14_2 from ports.

Get an error: 

cc1: error: unrecognized command line option "-Wno-duplicate-decl-specifier"

 

With options MAKE_JOBS_UNSAFE=yes:

cc1: error: unrecognized command line option "-Wno-duplicate-decl-specifier"

*** [edit-mail.lo] Error code 1

Stop in
/usr/ports/mail/dovecot2-pigeonhole/work/dovecot-2.2-pigeonhole-0.4.14/src/l
ib-sieve/util.

*** [all-recursive] Error code 1

Stop in
/usr/ports/mail/dovecot2-pigeonhole/work/dovecot-2.2-pigeonhole-0.4.14/src/l
ib-sieve.

*** [all-recursive] Error code 1

Stop in
/usr/ports/mail/dovecot2-pigeonhole/work/dovecot-2.2-pigeonhole-0.4.14/src.

*** [all-recursive] Error code 1

Stop in
/usr/ports/mail/dovecot2-pigeonhole/work/dovecot-2.2-pigeonhole-0.4.14.

*** [all] Error code 1

Stop in
/usr/ports/mail/dovecot2-pigeonhole/work/dovecot-2.2-pigeonhole-0.4.14.

*** [do-build] Error code 1

Stop in /usr/ports/mail/dovecot2-pigeonhole.

*** [stage] Error code 1

 

I was trying to compile from sources. Same error.

 

Any suggestions?

Dovecot and Solr 6

2016-07-06 Thread KSB 

Hi!
Dovecot 2.2.24
Had set up solr and new schema collection. Copied dovecot provided 
schema. There was an error with booleans (while getting schema via 
http), which I "solved" by removing "add-unknown-fields-to-the-schema" 
from solrconfig.xml. It is correct way to solve this?

Anyway, I run tcpdump to see network activity between dovecot and solr:
#tcpdump -i lo port 8983
and see nothing while doing:
#doveadm fts rescan -u usern...@domain.tld
no output also from doveadm.

Noticed that dovecot.index.log reapears in user mail root if deleted.

plugin {
  fts = solr
  fts_solr = url=http://localhost:8983/solr/dovecot/ debug
  ..
}

--
KSB

Director/Doveadm: Trying to iterate users, but userdbs don't support it

2016-07-06 Thread Tom Sommer 

Hi

I'm doing: doveadm force-resync -S director1:1234 -A "*"

The director gives this error:

Jul 06 16:17:29 auth: Error: Trying to iterate users, but userdbs don't 
support it

Jul 06 16:17:29 doveadm: Error: User listing returned failure
Jul 06 16:17:29 doveadm: Error: Failed to iterate through some users

The director has "iterate_query" set

--
Tom

Re: Configure Dovecot for GSSAPI [formerly: Looking for GSSAPI config]

2016-07-06 Thread Brendan Kearney 

On 07/04/2016 03:58 PM, Mark Foley wrote:

Brendan - yes, go ahead and send that doc directly to my email address. I've 
got Maildir
folders going, but not nfs; and I'm curious about your load balance.

THX --Mark

-Original Message-

Date: Mon, 04 Jul 2016 10:40:06 -0400
From: Brendan Kearney 
To: dovecot@dovecot.org
Subject: Re: Configure Dovecot for GSSAPI [formerly: Looking for GSSAPI config]

On 07/04/2016 03:30 AM, Mark Foley wrote:

Actually, I see that you used host.domain.name further down. That's a good 
substitute for mail.hprs.local.

Also, not to be a literary critic, but it might not hurt to show an example 
keytab beneath your
"Make sure your keytab has entry for ...". Just in case people don't exactly know 
how to "make sure:

$ klist -Kek /etc/dovecot/dovecot.keytab
Keytab name: FILE:/etc/dovecot/dovecot.keytab
KVNO Principal
 --
 1 imap/host.domain.name@MYREALM (des-cbc-crc)  (0x232616c2a4fd08f7)
 1 imap/host.domain.name@MYREALM (des-cbc-md5)  (0x232616c2a4fd08f7)
 1 imap/host.domain.name@MYREALM (arcfour-hmac)  
(0x9dae89a221dc374a39f560833

--Mark

-Original Message-
From: Mark Foley 
Date: Mon, 04 Jul 2016 03:23:30 -0400
Organization: Ohio Highway Patrol Retirement System
To: dovecot@dovecot.org
Subject: Re: Configure Dovecot for GSSAPI [formerly: Looking for GSSAPI config]

On Mon, 4 Jul 2016 08:54:27 +0300 Aki Tuomi  wrote:


http://wiki2.dovecot.org/Authentication/Kerberos

It has been now updated.

Excellent! That was quick!

Although, you used my actual local domain in your example: mail.hprs.local.  
Not that I care,
no one can get to that, but it might be clearer to those of us who 
uncomprehendingly
monkey-type things from wiki's when we don't fully understand.  Perhaps 
something more generic
would be clearer: myhost.myrealm, or myhost.mydom.local, or myLocalFDQN -- 
something like that.
Not sure what is best; just don't want to imply that they HAVE TO use 
mail.hprs.local.


I had a look at the NTLM mechanism, it *should* support SSP and NTLMv2.
I have to set up some kind of test environment to find out why it bugs.

I'm going to give my brain a rest for a bit before I resume tilting at the NTML 
windmill! I'll
check back with the list to see if you've come up with anything.


Aki

Again, thanks for all your help.

--Mark

-Original Message-

Subject: Re: Configure Dovecot for GSSAPI [formerly: Looking for GSSAPI config]
To: dovecot@dovecot.org
From: Aki Tuomi 
Organization: Dovecot Oy
Date: Mon, 4 Jul 2016 08:54:27 +0300
On 04.07.2016 07:44, Mark Foley wrote:

After a over a year and a half struggling to get Dovecot to do either NTLM or 
GSSAPI
authentication with Samba4 AD/DC, I believe I've finally got it! Thanks to all 
those in this
list who helped: Jan Jurkus, Edgar Pettijohn, Gregory Sloop, Tom Talpey 
especially Aki Tuomi;
and infinite thanks to Achim Gottinger on the SambaList for his patience in 
working this
through with me.  Although my purpose was for Dovecot to authenticate mail 
clients, the
configuration settings needed were on the Samba side.  I hope a variation of 
these instructions
can eventually make it into:

http://wiki2.dovecot.org/Authentication/Kerberos



It has been now updated.

I had a look at the NTLM mechanism, it *should* support SSP and NTLMv2.
I have to set up some kind of test environment to find out why it bugs.

Aki


i have a document that i had written, recording each of the changes
needed to each of the files to be modified, in order to have dovecot
authenticate against kerberos and authorize against ldap.  in addition,
the use of nfs for maildir mailboxes and load balanced nuances are
covered.  the doc is in odt format (libre office writer), and i have
attempted to post it to this mailing list, but it was quarantined.

if there is any interest in the doc, reach out to me.  i welcome input
and feedback on it.

brendan


replied off list as my doc is quarantined for size.

having re-read the doc, nfs is not specifically mentioned.  the default 
storage dir (or the one i specified), /var/spool/dovecot, is automounted 
to a nas share i have.  my export on the nas looks like the below:


/export/dovecot server[1-2].bpk2.com(rw,sync) mail.bpk2.com(rw,sync)

i normally run sec=krb5p in addition to the rw,sync options, but i do 
not believe a way exists to have the maildir mounted with a credential set.


the mount on the mailserver looks like the below:

nas.bpk2.com:/export/dovecot on /var/spool/dovecot type nfs 
(rw,relatime,vers=3,rsize=1048576,wsize=1048576,namlen=255,hard,proto=tcp,timeo=600,retrans=2,sec=sys,mountaddr=192.168.88.3,mountvers=3,mountport=20048,mountproto=udp,local_lock=none,addr=192.168.88.3)


with the nas exporting the nfs share, and sssd managing the automount, 
the fact that the maildir is mounted across the network is

Re: Director/Doveadm: Trying to iterate users, but userdbs don't support it

2016-07-06 Thread Tom Sommer 

On the director (which is set to proxy doveadm commands):

# doveadm force-resync -A "*"
Error: User listing returned failure
doveadm: Error: Failed to iterate through some users

---
Tom

On 2016-07-06 16:20, Tom Sommer wrote:

Hi

I'm doing: doveadm force-resync -S director1:1234 -A "*"

The director gives this error:

Jul 06 16:17:29 auth: Error: Trying to iterate users, but userdbs
don't support it
Jul 06 16:17:29 doveadm: Error: User listing returned failure
Jul 06 16:17:29 doveadm: Error: Failed to iterate through some users

The director has "iterate_query" set

Master-Master replication question

2016-07-06 Thread Remko Lodder 
Dear list,

I have setup a master-master replication setup. My primairy MX's send email 
over on a DNS loadbalanced way, so DNS is doing some kind of round-robin way of 
sending mail to both master servers.

I found out, that on one of the two machines, the email synchronisation is 
heavily delayed.
Lets assume server A receives a mail from the MX; it synchronises almost 
instantly with the other server.

Whenever server B receives the email, it could take up to several hours to 
synchronise the email, it seems that it is not detected prior.

It is also interesting to see, that the mailboxes on server A (Where users 
login to retrieve their email via webmail/clients) are significantly smaller 
then the mailboxes on server B. When investigating, it seems that "older" 
mailboxes (or storage rather since we use mdbox) are still there on server B, 
which already had been removed on server A.

My personal mailbox was 170MB on server A, while it was still 2.5GB on server 
B. (which was around that size before cleaning up the mailsboxes).

I enabled debugging on the servers, and I see rather quick : "Replication 
requests" on server A, but when getting an email on server B, I do not see the 
request at all.

My servers are both running the same version, same configuration (utilizing 
puppet), both running on ZFS and FreeBSD. Where server B is more loaded in it's 
memory because of some bhyve VM's and the server A does not run any VM.

Does someone have any pointers on where to look?

Thanks in advance ;-)
Remko

Included below the configurations from server A and B:

Server A:
# 2.2.25 (7be1766): /usr/local/etc/dovecot/dovecot.conf
# Pigeonhole version 0.4.14 (099a97c)
# OS: FreeBSD 10.3-RELEASE-p2 amd64  
auth_mechanisms = plain login
disable_plaintext_auth = no
doveadm_password =  # hidden, use -P to show it
haproxy_trusted_networks = 
lda_mailbox_autocreate = yes
lda_mailbox_autosubscribe = yes
lmtp_save_to_detail_mailbox = yes
mail_debug = yes
mail_fsync = always
mail_location = mdbox:~/mdbox
mail_plugins = " quota notify replication"
managesieve_notify_capability = mailto
managesieve_sieve_capability = fileinto reject envelope encoded-character 
vacation subaddress comparator-i;ascii-numeric relational regex imap4flags copy 
include variables body enotify environment mailbox date index ihave duplicate 
mime foreverypart extracttext
namespace {
  inbox = yes
  location = 
  mailbox Drafts {
auto = subscribe
special_use = \Drafts
  }
  mailbox Junk {
special_use = \Junk
  }
  mailbox Sent {
auto = subscribe
special_use = \Sent
  }
  mailbox "Sent Messages" {
special_use = \Sent
  }
  mailbox Spam {
auto = subscribe
special_use = \Junk
  }
  mailbox Trash {
auto = subscribe
special_use = \Trash
  }
  prefix = 
  separator = .
}
passdb {
  driver = pam
}
plugin {
  antispam_backend = mailtrain
  antispam_mail_notspam = --ham
  antispam_mail_sendmail = /usr/local/bin/sa-learn.sh
  antispam_mail_spam = --spam
  antispam_spam_pattern_ignorecase = spam;junk
  antispam_trash_pattern_ignorecase = trash;deleted items;deleted messages
  antispam_verbose_debug = 1
  mail_log_events = delete undelete expunge copy mailbox_delete mailbox_rename
  mail_log_fields = uid box msgid size
  mail_replica = tcps:the other server:12346
  sieve = ~/.dovecot.sieve
  sieve_dir = ~/sieve
  sieve_global_dir = /usr/local/etc/dovecot/sieve/global/
  sieve_global_path = /usr/local/etc/dovecot/sieve/default.sieve
}
postmaster_address = postmaster@xxx
protocols = imap pop3 lmtp sieve
replication_dsync_parameters = -d -N -l 60 -U
replication_max_conns = 100
service aggregator {
  fifo_listener replication-notify-fifo {
mode = 0666
  }
  unix_listener replication-notify {
mode = 0666
  }
}
service auth {
  unix_listener /var/spool/postfix/private/auth {
mode = 0666
  }
}
service doveadm {
  inet_listener {
port = 12346
ssl = yes
  }
}
service imap-login {
  inet_listener imap_haproxy {
haproxy = yes
port = 10143
  }
  inet_listener imaps_haproxy {
haproxy = yes
port = 10144
ssl = yes
  }
  service_count = 1
}
service imap {
  process_limit = 1024
}
service lmtp {
  unix_listener /var/spool/postfix/private/dovecot-lmtp {
group = postfix
mode = 0600
user = postfix
  }
}
service pop3 {
  process_limit = 1024
}
service replicator {
  process_min_avail = 1
  unix_listener replicator-doveadm {
mode = 0666
  }
}
ssl_ca =

Re: Compile error v2.2.25 MacOS X

2016-07-06 Thread aki . tuomi 

> On July 6, 2016 at 8:19 AM James Brown  wrote:
> 
> 
> 
> > On 6 Jul. 2016, at 2:31 pm, Edgar Pettijohn  wrote:
> > 
> > 
> > 
> > Sent from my iPhone
> > 
> >> On Jul 5, 2016, at 9:28 PM, James Brown  wrote:
> >> 
> >> Tried to update from 2.2.24 to 2.2.25 using same configure command as 
> >> previously.
> >> 
> >> make ends with:
> >> 
> >> In file included from guid.c:6:
> >> sha1.h:80: error: static or type qualifiers in abstract declarator
> >> make[4]: *** [guid.lo] Error 1
> >> make[3]: *** [all] Error 2
> >> make[2]: *** [all-recursive] Error 1
> >> make[1]: *** [all-recursive] Error 1
> >> make: *** [all] Error 2
> >> 
> >> Mac OS X 10.7.5
> >> 
> >> Configure statement was:
> >> 
> >> ./configure --with-mysql --with-ssl=openssl
> >> 
> >> Any suggestions?
> >> 
> >> Thanks,
> >> 
> >> James.
> > 
> > Look at config.h and check for STATIC_ARRAY static
> > 
> > If so remove the word "static".
> 
> Yes I had ‘static’ after STATIC_ARRAY.
> 
> Removed it and compile went through without errors.
> 
> Thanks,
> 
> James.

Hi!

This has been fixed in 
https://github.com/dovecot/core/commit/d9c865ce774aae9f2f17b89e7e94c3cfca29dea7

If it still occurs with your OS please let me know.

Aki

Dovecot2-pigeonhole

2016-07-06 Thread Maximus 
Got an error then I'm trying to upgrade to version 0.4.14:

cc1: error: unrecognized command line option "-Wno-duplicate-decl-specifier"