Re: Dovecot alternatives with good i18n support?

[PGNet Dev]

On 11/22/20 6:59 AM, David Bürgin wrote:


Hello!







I’m interested in exploring alternative IMAP servers that have good



support for internationalised email, such as support for SMTPUTF8, IDN



mail domains, Unicode local-part, etc. etc.







If you used to use Dovecot, and found an alternative that does such



things well, I would very much like to hear it.




"good support" is a rather fuzzy qualifier.  in general, it's sketchy.  here's a 
comparison list / sort on "IDN/UTF8",



  https://en.wikipedia.org/wiki/Comparison_of_mail_servers



Many of those^ are 'integrated mail servers' -- whether their IMAP backends can 
be split off and do/don't support I18N, dunno.



What dovecot does/doesn't have planned, I dunno either; no bug tracker to 
peruse, and digging through this list is not really helpful.
  I've not yet seen a stmt of support for https://www.ietf.org/rfc/rfc6855.txt


mail I18N's not a frequent need in my world (OTOH, for content search, it is); 
where I _do_ have the stringent requirement, for just a couple of very large 
installs, CommunigatePro runs.
Runs well, but comes with significant costs.



You might also take a look at Jakarta Mail (formerly JavaMail)

Its IMAP

  
https://eclipse-ee4j.github.io/mail/docs/api/com/sun/mail/imap/package-summary.html

claims support for rfc6855.

Dovecot alternatives with good i18n support?

[David Bürgin]

Hello!

I’m interested in exploring alternative IMAP servers that have good
support for internationalised email, such as support for SMTPUTF8, IDN
mail domains, Unicode local-part, etc. etc.

If you used to use Dovecot, and found an alternative that does such
things well, I would very much like to hear it.

Thank you,


-- 
David

Dovecot+Samba AD - authentication failure

[Odhiambo Washington]

Hi,

I have setup samba4 as AD and hoping to have dovecot authenticate users
against it. I am facing challenges though and I am unable to figure it out.
I could do with a third eye to help me spot what is wrong.


root@adc0:/etc# doveadm auth test -x service=imap odhiambo@newideatest.local
Password:
passdb: odhiambo@newideatest.local auth failed
extra fields:
  temp
Warning: auth-client: conn unix:/var/run/dovecot/auth-client: Auth
connection closed with 1 pending requests (max 0 secs, pid=10537, EOF)
Fatal: Couldn't connect to auth socket

A test against IMAP gives the following debug information:
Nov 22 14:31:01 auth: Debug: Loading modules from directory:
/usr/lib/dovecot/modules/auth
Nov 22 14:31:01 auth: Debug: Module loaded:
/usr/lib/dovecot/modules/auth/lib20_auth_var_expand_crypt.so
Nov 22 14:31:01 auth: Debug: Module loaded:
/usr/lib/dovecot/modules/auth/libdriver_mysql.so
Nov 22 14:31:01 auth: Debug: Loading modules from directory:
/usr/lib/dovecot/modules/auth
Nov 22 14:31:01 auth: Debug: Module loaded:
/usr/lib/dovecot/modules/auth/libauthdb_ldap.so
Nov 22 14:31:01 auth: Debug: Read auth token secret from
/var/run/dovecot/auth-token-secret.dat
Nov 22 14:31:01 auth: Debug: auth client connected (pid=10979)
Nov 22 14:31:08 auth: Debug: client in: AUTH1   PLAIN
 service=imapsecured session=uPLvabC0RIh/AAABlip=127.0.0.1
 rip=127.0.0.1   lport=143   rport=34884 resp=
Nov 22 14:31:08 auth: Debug:
ldap(odhiambo@newideatest.local,127.0.0.1,):
Performing passdb lookup
Nov 22 14:31:08 auth: Debug:
ldap(odhiambo@newideatest.local,127.0.0.1,):
bind search: base=cn=Users,dc=NEWIDEATEST,dc=LOCAL
filter=(&(objectClass=user)(!(userAccountControl:1.2.840.113556.1.4.803:=2))(sAMAccountName=odhiambo@newideatest.local
))
Nov 22 14:31:08 auth: Debug:
ldap(odhiambo@newideatest.local,127.0.0.1,):
no fields returned by the server *< *
Nov 22 14:31:08 auth: Debug:
ldap(odhiambo@newideatest.local,127.0.0.1,):
Finished passdb lookup
Nov 22 14:31:08 auth: Debug:
auth(odhiambo@newideatest.local,127.0.0.1,):
Auth request finished
Nov 22 14:31:10 auth: Debug: client passdb out: FAIL1
 user=odhiambo@newideatest.local

info.log:

Nov 22 14:31:08 auth: Info: ldap(odhiambo@newideatest.local
,127.0.0.1,):* unknown user* (given password: XXX)
Nov 22 14:31:15 imap-login: Info: Aborted login (auth failed, 1 attempts in
7 secs): user=, method=PLAIN, rip=127.0.0.1,
lip=127.0.0.1, secured, session=


Here is my doveconf -n:

https://paste.ubuntu.com/p/SPmrxZxHPx/

My dovecot-ldap.cont.ext:

uris = ldap://localhost/
dn   = "dovecot@newideatest.local"
dnpass   = ""
sasl_bind= no
tls  = no
ldap_version = 3
deref= never
scope= subtree
base = cn=Users,dc=NEWIDEATEST,dc=LOCAL
auth_bind= yes
user_filter  =
(&(objectClass=user)(!(userAccountControl:1.2.840.113556.1.4.803:=2))(|(mail=%u)(sAMAccountName=%u)(otherMailbox=%u)))
user_attrs   =
sAMAccountName=user,userPassword=password,=mail=maildir:/home/%n/Maildir/
pass_filter  =
(&(objectClass=user)(!(userAccountControl:1.2.840.113556.1.4.803:=2))(sAMAccountName=%u))
pass_attrs   = sAMAccountName=user,userPassword=password

The use exists in the database:

*root@adc0:/var/log/dovecot# samba-tool user show odhiambo*
ldb_wrap open of secrets.ldb
dn: CN=Odhiambo Washington,CN=Users,DC=newideatest,DC=local
objectClass: top
objectClass: person
objectClass: organizationalPerson
objectClass: user
cn: Odhiambo Washington
sn: Washington
givenName: Odhiambo
instanceType: 4
whenCreated: 20201120101420.0Z
displayName: Odhiambo Washington
uSNCreated: 4086
name: Odhiambo Washington
objectGUID: e6969596-8b28-41af-b5d8-cea63cc97f98
badPwdCount: 0
codePage: 0
countryCode: 0
badPasswordTime: 0
lastLogoff: 0
lastLogon: 0
primaryGroupID: 513
objectSid: S-1-5-21-701866827-3355127779-3787685610-1106
accountExpires: 9223372036854775807
logonCount: 0
sAMAccountName: odhiambo
sAMAccountType: 805306368
userPrincipalName: odhiambo@newideatest.local
objectCategory: CN=Person,CN=Schema,CN=Configuration,DC=newideatest,DC=local
mail: odhiambo@newideatest.local
loginShell: /bin/bash
userAccountControl: 512
pwdLastSet: 132505181852397220
whenChanged: 20201122112945.0Z
uSNChanged: 4104
distinguishedName: CN=Odhiambo Washington,CN=Users,DC=newideatest,DC=local




-- 
Best regards,
Odhiambo WASHINGTON,
Nairobi,KE
+254 7 3200 0004/+254 7 2274 3223
"Oh, the cruft.", grep ^[^#] :-)