Re: [Dovecot] quota-status not working in distributed environment
On 27.07.2018 16:26, Tom Sommer wrote: > On 2013-06-16 21:46, Timo Sirainen wrote: >> On 14.6.2013, at 9.15, Benoit Panizzon wrote: >> >>> Is there a way to get quota-status to also use the proxy feature to >>> request >>> the quota information from the correct machine? >> >> Looks like this is a missing feature. I first thought quota-status >> would go through doveadm protocol, which would make this work via >> doveadm proxying, but looks like it doesn't. Perhaps it optionally >> should. > > Any news on this? Seems strange to lose this feature when running > Director. > > -- > Tom We'll look into this. Aki
Re: mdbox_deleted proper syntax
Are you sure you have deleted mails and not just Trashed mails?
Aki
On 26.07.2018 19:23, Johan Huldtgren wrote:
> hello,
>
> on the wiki, https://wiki2.dovecot.org/MailboxFormat/dbox, it says that one
> can
> use either doveadm fetch or doveadm import, however I can find no correct
> syntax
> with fetch that'll actually work. Is the idea to simply override the
> mail_location with -o ? That seems to work for doveadm mailbox but not for
> doveadm fetch or search
>
> # doveadm -f table mailbox status -u johan all dovecot
> mailbox messages recent uidnext uidvalidity unseen highestmodseq vsize
> guid firstsaved
> dovecot 00 1 1362145026 0 1 164208086
> 64bd9f0003af30519004b9256959 1471825482
>
> # doveadm -f table -o "mail_location=mdbox_deleted:~/mdbox" mailbox status -u
> johan all dovecot
> mailbox messages recent uidnext uidvalidity unseen highestmodseq vsize guid
> firstsaved
> dovecot 00 1 0 0 1 0
> ddb9421479f0595bf21b0100b9256959 18446744073709551615
>
>
> # doveadm -f flow fetch -u johan size.virtual mailbox dovecot
> size.virtual=2869
> size.virtual=2960
> size.virtual=8023
> size.virtual=6683
> ...
> #
>
> # doveadm -f flow -o "mail_location=mdbox_deleted:~/mdbox" fetch -u johan
> size.virtual mailbox dovecot
> #
>
> # doveadm search -u johan mailbox dovecot subject "LMTP Log"
> 64bd9f0003af30519004b9256959 8642
> 64bd9f0003af30519004b9256959 21302
> 64bd9f0003af30519004b9256959 21373
> 64bd9f0003af30519004b9256959 21420
> 64bd9f0003af30519004b9256959 21434
> 64bd9f0003af30519004b9256959 21435
> 64bd9f0003af30519004b9256959 21460
> 64bd9f0003af30519004b9256959 21461
> 64bd9f0003af30519004b9256959 21463
> 64bd9f0003af30519004b9256959 23684
>
> # doveadm -o "mail_location=mdbox_deleted:~/mdbox" search -u johan mailbox
> dovecot subject "LMTP Log"
> #
>
>
> What I'm really trying to accomplish is see if a mail which a user deleted
> still exists in mdbox_deleted, so I
> wanted to do a fetch / search to see and then try to copy / import that
> message back.
>
> This is on OpenBSD 6.3-current with dovecot 2.2.36, doveconf -n below.
>
> thanks,
>
> .jh
>
> ---
>
> # 2.2.36 (1f10bfa63): /etc/dovecot/dovecot.conf
> # Pigeonhole version 0.4.24 (124e06aa)
> # OS: OpenBSD 6.3 amd64
> # Hostname: www.example.com
> auth_mechanisms = plain login
> first_valid_gid = 0
> first_valid_uid = 507
> imap_client_workarounds = delay-newmail tb-extra-mailbox-sep tb-lsub-flags
> imap_id_log = *
> last_valid_uid = 1059
> listen = 127.0.0.1
> mail_home = /home/vmail/%d/%n
> mail_location = mdbox:~/mdbox
> mail_plugins = stats fts fts_solr
> mail_privileged_group = _dovecot
> mailbox_list_index = yes
> managesieve_notify_capability = mailto
> managesieve_sieve_capability = fileinto reject envelope encoded-character
> vacation subaddress comparator-i;ascii-numeric relational regex imap4flags
> copy include variables body enotify environment mailbox date index ihave
> duplicate mime foreverypart extracttext spamtest spamtestplus virustest
> mbox_write_locks = fcntl
> mmap_disable = yes
> namespace {
> inbox = yes
> location =
> mailbox spam {
> auto = subscribe
> special_use = \Junk
> }
> mailbox drafts {
> auto = subscribe
> special_use = \Drafts
> }
> mailbox sent-mail {
> auto = subscribe
> special_use = \Sent
> }
> mailbox trash {
> auto = subscribe
> autoexpunge = 30 days
> special_use = \Trash
> }
> prefix =
> separator = /
> subscriptions = yes
> type = private
> }
> passdb {
> args = /etc/dovecot/dovecot-pgsql.conf
> driver = sql
> }
> passdb {
> args = /etc/dovecot/dovecot-pgsql2.conf
> driver = sql
> }
> passdb {
> args = cache_key=%u%r%l *
> driver = bsdauth
> }
> plugin {
> antispam_backend = mailtrain
> antispam_mail_notspam = learn_ham
> antispam_mail_sendmail = /usr/local/bin/rspamc
> antispam_mail_sendmail_args = -h;127.0.0.1:11334;-P;q1
> antispam_mail_spam = learn_spam
> antispam_spam = caughtspam
> antispam_trash = trash
> fts = solr
> fts_autoindex = yes
> fts_solr = url=http://127.0.0.1:8983/solr/dovecot/
> recipient_delimiter = +
> sieve = file:~/sieve;active=~/.dovecot.sieve
> sieve_before = /var/dovecot/sieve/before/
> sieve_default = /var/dovecot/sieve/default.sieve
> sieve_extensions = +spamtest +spamtestplus +virustest
> sieve_spamtest_max_header = X-Spamd-Result: default: [[:alnum:]]+
> \[-?[[:digit:]]+\.[[:digit:]]+ / (-?[[:digit:]]+\.[[:digit:]]+)\]
> sieve_spamtest_status_header = X-Spamd-Result: default: [[:alnum:]]+
> \[(-?[[:digit:]]+\.[[:digit:]]+) / -?[[:digit:]]+\.[[:digit:]]+\]
> sieve_spamtest_status_type = score
> sieve_virustest_status_header = X-Virus-Scan: Found to be (.+)\.
> sieve_virustest_status_type = text
> sieve_virustest_text_value1 = clean
> sieve_virus
Re: 2.3.2.1 - EC keys suppport?
On 29.07.2018 23:39, ѽ҉ᶬḳ℠ wrote: >>> facing [ no shared cipher ] error with EC private keys. >> the client connecting to your instance has to support ecdsa >> >> > It does - Thunderbird 60.0b10 (64-bit) > > [ security.ssl3.ecdhe_ecdsa_aes_256_gcm_sha384;true ] > > It seems there is a difference between the private key (rsa vs. ecc -> > SSL_CTX?) used for the certificate signing request and the signed > certificate. > > The csr created from a private key with [ openssl genpkey -algorithm RSA > ] and signed by a CA with [ ecdhe_ecdsa ] works with no error. > > But as stated in the initial message it does not work if the private key > for the csr is generated with [ openssl ecparam -name brainpoolP512t1 > -genkey ]. > > Hi! Can you show doveconf ssl_cipher_list? Aki
Re: OT - copied maildir from 2T drive to 4T drive
4K vs 512b sectors? -- Larry Rosenman http://www.lerctr.org/~ler Phone: +1 214-642-9640 E-Mail: larry...@gmail.com US Mail: 5708 Sabbia Drive, Round Rock, TX 78665-2106 On 7/29/18, 5:58 PM, "dovecot on behalf of Marc Perkel" wrote: And it's taking up more space on the 4T drive. What did I miss?
OT - copied maildir from 2T drive to 4T drive
And it's taking up more space on the 4T drive. What did I miss?
Re: Restricting SSL/TLS protocol versions on Dovecot 2.2.22
Am 29.07.2018 um 21:02 schrieb J Doe: Hello, I have a question regarding SSL/TLS settings for Dovecot version 2.2.22. In: 10-ssl.conf there are two parameters: ssl_protocols ssl_cipher_list ssl_protocols is commented with “SSL protocol to use” and ssl_cipher_list is commented with “SSL ciphers to use”. If I want to disable SSLv3, for example, do I need to use both parameters or will disabling SSLv3 ciphers in ssl_cipher_list do the same thing ? So is: ssl_cipher_list = !SSLv3 …equivalent to: ssl_protocols = !SSLv3 ssl_cipher_list = !SSLv3 No. SSLv3 is not a cipher but a protocol. "ssl_protocols = !SSLv2 !SSLv3" is what you want to specify. For ciphers you could define by ssl_cipher_list see "openssl ciphers -v" Thanks, - J Alexander
Re: 2.3.2.1 - EC keys suppport?
>> facing [ no shared cipher ] error with EC private keys. > the client connecting to your instance has to support ecdsa > > It does - Thunderbird 60.0b10 (64-bit) [ security.ssl3.ecdhe_ecdsa_aes_256_gcm_sha384;true ] It seems there is a difference between the private key (rsa vs. ecc -> SSL_CTX?) used for the certificate signing request and the signed certificate. The csr created from a private key with [ openssl genpkey -algorithm RSA ] and signed by a CA with [ ecdhe_ecdsa ] works with no error. But as stated in the initial message it does not work if the private key for the csr is generated with [ openssl ecparam -name brainpoolP512t1 -genkey ].
2.3.2.1 - EC keys suppport?
Am 29.07.2018 um 21:06 schrieb ѽ҉ᶬḳ℠: > facing [ no shared cipher ] error with EC private keys. the client connecting to your instance has to support ecdsa Andreas
2.3.2.1 - EC keys suppport?
Hi, facing [ no shared cipher ] error with EC private keys. This happens when the private key is generated with [ openssl ecparam -name brainpoolP512t1 -genkey ] with OpenSSL 1.1.0hh on the same machine Dovecot is running on. Tried some variations of [ ssl_cipher_list ] but to no avail - the [ no shared cipher ] error persists. Once the key is generated with [ openssl genpkey -algorithm RSA ] however the error is gone. Thus wondering whether (1) I am missing something or (2) this a bug or (3) there is no support for EC keys?
Restricting SSL/TLS protocol versions on Dovecot 2.2.22
Hello, I have a question regarding SSL/TLS settings for Dovecot version 2.2.22. In: 10-ssl.conf there are two parameters: ssl_protocols ssl_cipher_list ssl_protocols is commented with “SSL protocol to use” and ssl_cipher_list is commented with “SSL ciphers to use”. If I want to disable SSLv3, for example, do I need to use both parameters or will disabling SSLv3 ciphers in ssl_cipher_list do the same thing ? So is: ssl_cipher_list = !SSLv3 …equivalent to: ssl_protocols = !SSLv3 ssl_cipher_list = !SSLv3 Thanks, - J
