Re: [Dovecot] quota-status not working in distributed environment
On 27.07.2018 16:26, Tom Sommer wrote: > On 2013-06-16 21:46, Timo Sirainen wrote: >> On 14.6.2013, at 9.15, Benoit Panizzon wrote: >> >>> Is there a way to get quota-status to also use the proxy feature to >>> request >>> the quota information from the correct machine? >> >> Looks like this is a missing feature. I first thought quota-status >> would go through doveadm protocol, which would make this work via >> doveadm proxying, but looks like it doesn't. Perhaps it optionally >> should. > > Any news on this? Seems strange to lose this feature when running > Director. > > -- > Tom We'll look into this. Aki
Re: mdbox_deleted proper syntax
Are you sure you have deleted mails and not just Trashed mails? Aki On 26.07.2018 19:23, Johan Huldtgren wrote: > hello, > > on the wiki, https://wiki2.dovecot.org/MailboxFormat/dbox, it says that one > can > use either doveadm fetch or doveadm import, however I can find no correct > syntax > with fetch that'll actually work. Is the idea to simply override the > mail_location with -o ? That seems to work for doveadm mailbox but not for > doveadm fetch or search > > # doveadm -f table mailbox status -u johan all dovecot > mailbox messages recent uidnext uidvalidity unseen highestmodseq vsize > guid firstsaved > dovecot 00 1 1362145026 0 1 164208086 > 64bd9f0003af30519004b9256959 1471825482 > > # doveadm -f table -o "mail_location=mdbox_deleted:~/mdbox" mailbox status -u > johan all dovecot > mailbox messages recent uidnext uidvalidity unseen highestmodseq vsize guid > firstsaved > dovecot 00 1 0 0 1 0 > ddb9421479f0595bf21b0100b9256959 18446744073709551615 > > > # doveadm -f flow fetch -u johan size.virtual mailbox dovecot > size.virtual=2869 > size.virtual=2960 > size.virtual=8023 > size.virtual=6683 > ... > # > > # doveadm -f flow -o "mail_location=mdbox_deleted:~/mdbox" fetch -u johan > size.virtual mailbox dovecot > # > > # doveadm search -u johan mailbox dovecot subject "LMTP Log" > 64bd9f0003af30519004b9256959 8642 > 64bd9f0003af30519004b9256959 21302 > 64bd9f0003af30519004b9256959 21373 > 64bd9f0003af30519004b9256959 21420 > 64bd9f0003af30519004b9256959 21434 > 64bd9f0003af30519004b9256959 21435 > 64bd9f0003af30519004b9256959 21460 > 64bd9f0003af30519004b9256959 21461 > 64bd9f0003af30519004b9256959 21463 > 64bd9f0003af30519004b9256959 23684 > > # doveadm -o "mail_location=mdbox_deleted:~/mdbox" search -u johan mailbox > dovecot subject "LMTP Log" > # > > > What I'm really trying to accomplish is see if a mail which a user deleted > still exists in mdbox_deleted, so I > wanted to do a fetch / search to see and then try to copy / import that > message back. > > This is on OpenBSD 6.3-current with dovecot 2.2.36, doveconf -n below. > > thanks, > > .jh > > --- > > # 2.2.36 (1f10bfa63): /etc/dovecot/dovecot.conf > # Pigeonhole version 0.4.24 (124e06aa) > # OS: OpenBSD 6.3 amd64 > # Hostname: www.example.com > auth_mechanisms = plain login > first_valid_gid = 0 > first_valid_uid = 507 > imap_client_workarounds = delay-newmail tb-extra-mailbox-sep tb-lsub-flags > imap_id_log = * > last_valid_uid = 1059 > listen = 127.0.0.1 > mail_home = /home/vmail/%d/%n > mail_location = mdbox:~/mdbox > mail_plugins = stats fts fts_solr > mail_privileged_group = _dovecot > mailbox_list_index = yes > managesieve_notify_capability = mailto > managesieve_sieve_capability = fileinto reject envelope encoded-character > vacation subaddress comparator-i;ascii-numeric relational regex imap4flags > copy include variables body enotify environment mailbox date index ihave > duplicate mime foreverypart extracttext spamtest spamtestplus virustest > mbox_write_locks = fcntl > mmap_disable = yes > namespace { > inbox = yes > location = > mailbox spam { > auto = subscribe > special_use = \Junk > } > mailbox drafts { > auto = subscribe > special_use = \Drafts > } > mailbox sent-mail { > auto = subscribe > special_use = \Sent > } > mailbox trash { > auto = subscribe > autoexpunge = 30 days > special_use = \Trash > } > prefix = > separator = / > subscriptions = yes > type = private > } > passdb { > args = /etc/dovecot/dovecot-pgsql.conf > driver = sql > } > passdb { > args = /etc/dovecot/dovecot-pgsql2.conf > driver = sql > } > passdb { > args = cache_key=%u%r%l * > driver = bsdauth > } > plugin { > antispam_backend = mailtrain > antispam_mail_notspam = learn_ham > antispam_mail_sendmail = /usr/local/bin/rspamc > antispam_mail_sendmail_args = -h;127.0.0.1:11334;-P;q1 > antispam_mail_spam = learn_spam > antispam_spam = caughtspam > antispam_trash = trash > fts = solr > fts_autoindex = yes > fts_solr = url=http://127.0.0.1:8983/solr/dovecot/ > recipient_delimiter = + > sieve = file:~/sieve;active=~/.dovecot.sieve > sieve_before = /var/dovecot/sieve/before/ > sieve_default = /var/dovecot/sieve/default.sieve > sieve_extensions = +spamtest +spamtestplus +virustest > sieve_spamtest_max_header = X-Spamd-Result: default: [[:alnum:]]+ > \[-?[[:digit:]]+\.[[:digit:]]+ / (-?[[:digit:]]+\.[[:digit:]]+)\] > sieve_spamtest_status_header = X-Spamd-Result: default: [[:alnum:]]+ > \[(-?[[:digit:]]+\.[[:digit:]]+) / -?[[:digit:]]+\.[[:digit:]]+\] > sieve_spamtest_status_type = score > sieve_virustest_status_header = X-Virus-Scan: Found to be (.+)\. > sieve_virustest_status_type = text > sieve_virustest_text_value1 = clean > sieve_virus
Re: 2.3.2.1 - EC keys suppport?
On 29.07.2018 23:39, ѽ҉ᶬḳ℠ wrote: >>> facing [ no shared cipher ] error with EC private keys. >> the client connecting to your instance has to support ecdsa >> >> > It does - Thunderbird 60.0b10 (64-bit) > > [ security.ssl3.ecdhe_ecdsa_aes_256_gcm_sha384;true ] > > It seems there is a difference between the private key (rsa vs. ecc -> > SSL_CTX?) used for the certificate signing request and the signed > certificate. > > The csr created from a private key with [ openssl genpkey -algorithm RSA > ] and signed by a CA with [ ecdhe_ecdsa ] works with no error. > > But as stated in the initial message it does not work if the private key > for the csr is generated with [ openssl ecparam -name brainpoolP512t1 > -genkey ]. > > Hi! Can you show doveconf ssl_cipher_list? Aki
Re: OT - copied maildir from 2T drive to 4T drive
4K vs 512b sectors? -- Larry Rosenman http://www.lerctr.org/~ler Phone: +1 214-642-9640 E-Mail: larry...@gmail.com US Mail: 5708 Sabbia Drive, Round Rock, TX 78665-2106 On 7/29/18, 5:58 PM, "dovecot on behalf of Marc Perkel" wrote: And it's taking up more space on the 4T drive. What did I miss?
OT - copied maildir from 2T drive to 4T drive
And it's taking up more space on the 4T drive. What did I miss?
Re: Restricting SSL/TLS protocol versions on Dovecot 2.2.22
Am 29.07.2018 um 21:02 schrieb J Doe: Hello, I have a question regarding SSL/TLS settings for Dovecot version 2.2.22. In: 10-ssl.conf there are two parameters: ssl_protocols ssl_cipher_list ssl_protocols is commented with “SSL protocol to use” and ssl_cipher_list is commented with “SSL ciphers to use”. If I want to disable SSLv3, for example, do I need to use both parameters or will disabling SSLv3 ciphers in ssl_cipher_list do the same thing ? So is: ssl_cipher_list = !SSLv3 …equivalent to: ssl_protocols = !SSLv3 ssl_cipher_list = !SSLv3 No. SSLv3 is not a cipher but a protocol. "ssl_protocols = !SSLv2 !SSLv3" is what you want to specify. For ciphers you could define by ssl_cipher_list see "openssl ciphers -v" Thanks, - J Alexander
Re: 2.3.2.1 - EC keys suppport?
>> facing [ no shared cipher ] error with EC private keys. > the client connecting to your instance has to support ecdsa > > It does - Thunderbird 60.0b10 (64-bit) [ security.ssl3.ecdhe_ecdsa_aes_256_gcm_sha384;true ] It seems there is a difference between the private key (rsa vs. ecc -> SSL_CTX?) used for the certificate signing request and the signed certificate. The csr created from a private key with [ openssl genpkey -algorithm RSA ] and signed by a CA with [ ecdhe_ecdsa ] works with no error. But as stated in the initial message it does not work if the private key for the csr is generated with [ openssl ecparam -name brainpoolP512t1 -genkey ].
2.3.2.1 - EC keys suppport?
Am 29.07.2018 um 21:06 schrieb ѽ҉ᶬḳ℠: > facing [ no shared cipher ] error with EC private keys. the client connecting to your instance has to support ecdsa Andreas
2.3.2.1 - EC keys suppport?
Hi, facing [ no shared cipher ] error with EC private keys. This happens when the private key is generated with [ openssl ecparam -name brainpoolP512t1 -genkey ] with OpenSSL 1.1.0hh on the same machine Dovecot is running on. Tried some variations of [ ssl_cipher_list ] but to no avail - the [ no shared cipher ] error persists. Once the key is generated with [ openssl genpkey -algorithm RSA ] however the error is gone. Thus wondering whether (1) I am missing something or (2) this a bug or (3) there is no support for EC keys?
Restricting SSL/TLS protocol versions on Dovecot 2.2.22
Hello, I have a question regarding SSL/TLS settings for Dovecot version 2.2.22. In: 10-ssl.conf there are two parameters: ssl_protocols ssl_cipher_list ssl_protocols is commented with “SSL protocol to use” and ssl_cipher_list is commented with “SSL ciphers to use”. If I want to disable SSLv3, for example, do I need to use both parameters or will disabling SSLv3 ciphers in ssl_cipher_list do the same thing ? So is: ssl_cipher_list = !SSLv3 …equivalent to: ssl_protocols = !SSLv3 ssl_cipher_list = !SSLv3 Thanks, - J