Replication fails over SSL
Hi
Replication works fine on poor TCP, when I enable SSL it fails
Jul 06 17:28:48 mail dovecot[13114]: doveconf: Fatal:
execvp(/usr/libexec/dovecot/managesieve) failed: Argument list too long
Jul 06 17:28:48 mail dovecot[13114]: config: Error: managesieve-login:
dump-capability process returned 89
Jul 06 17:28:48 mail dovecot[13114]: doveadm: Error: Corrupted SSL
parameters file in state_dir: ssl-parameters.dat - disabling SSL 360
Jul 06 17:28:48 mail dovecot[13114]: doveadm: Error: Couldn't initialize
SSL parameters, disabling SSL
I have set:
service doveadm {
inet_listener {
address = {{ dovecot_doveadm_listen_address }}
port = {{ dovecot_doveadm_listen_port }}
ssl = yes
}
}
ssl_client_ca_file = mail_replica = tcps:{{ dovecot_replica }}:{{
dovecot_doveadm_listen_port }}
}
I am running native dovecot 2.2.10 on Centos 7. File ssl-parameters.dat
exists. I have already removed it and regenerated - does not help
Thanks for any advice.
Vladimir
doveadm backup -A does not create user dirs
Hello doveadm backup -A mdbox:/tmp/test does not create per user folders, instead it tries to override same catalog again and again doveadm backup -A mdbox:/tmp/test/%u does not work as well Is there a solution for local backups? Thanks Vladimir
Re: failed: Stream is smaller than expected (0 < 5098)
Ah yes, sorry dovecot --version 2.2.10 provided by CentOS 7.5 On 15/06/18 11:55, Aki Tuomi wrote: On 15.06.2018 13:50, Vladimir Tiukhtin wrote: Hi Looks like I have got in a situation with missing or corrupted attachments. I am getting from time to time lmtp(17147, us...@example.com): Error: read(attachments-connector(zlib(/var/spool/mail/example.com/user2/mail/storage/m.203))) failed: read(/srv/attachments/user2/4a/e0/4ae062027dd745f56c2cc1c43fa4f349f52986a0-2bcf4e063994235bfb426f28d014[base64:19 b/l]) failed: Stream is smaller than expected (0 < 5098) Replication works, but is there a way to recover the logic even with empty files or cleaning indices? Thanks Vladimir What version of dovecot are you running? Aki
failed: Stream is smaller than expected (0 < 5098)
Hi Looks like I have got in a situation with missing or corrupted attachments. I am getting from time to time lmtp(17147, us...@example.com): Error: read(attachments-connector(zlib(/var/spool/mail/example.com/user2/mail/storage/m.203))) failed: read(/srv/attachments/user2/4a/e0/4ae062027dd745f56c2cc1c43fa4f349f52986a0-2bcf4e063994235bfb426f28d014[base64:19 b/l]) failed: Stream is smaller than expected (0 < 5098) Replication works, but is there a way to recover the logic even with empty files or cleaning indices? Thanks Vladimir
Re: outlook hangs using TLS
I have tested just now on outlook 2016 - same issue. TLS makes it hanged
On 08/06/18 18:17, Jerry wrote:
On Fri, 8 Jun 2018 17:54:28 +0100, Vladimir Tiukhtin stated:
I am using dovecot 2.2.10 on CentOS 7
Any Outlook versions (2007, 2010, 2013...) hang if I tried to use TLS,
it works if I switch in client TLS to SSL. Thunderbird works perfect
both scenarios
{snip}
Seriously, those versions of Outlook are both old and no longer supported. In
any case, you have already answered your question; ie, use SSL.
outlook hangs using TLS
Hello
I am using dovecot 2.2.10 on CentOS 7
Any Outlook versions (2007, 2010, 2013...) hang if I tried to use TLS,
it works if I switch in client TLS to SSL. Thunderbird works perfect
both scenarios
Please find debug log
mail dovecot[24287]: imap-login: Debug: SSL: where=0x10, ret=1:
before/accept initialization [X.X.X.X]
mail dovecot[24287]: imap-login: Debug: SSL: where=0x2001, ret=1:
before/accept initialization [X.X.X.X]
mail dovecot[24287]: imap-login: Debug: SSL: where=0x2002, ret=-1:
SSLv2/v3 read client hello A [X.X.X.X]
mail dovecot[24287]: imap-login: Debug: SSL: elliptic curve secp384r1
will be used for ECDH and ECDHE key exchanges
mail dovecot[24287]: imap-login: Debug: SSL: elliptic curve secp384r1
will be used for ECDH and ECDHE key exchanges
mail dovecot[24287]: auth: Debug: auth client connected (pid=24300)
mail dovecot[24287]: imap-login: Disconnected (no auth attempts in 31
secs): user=<>, rip=X.X.X.X, lip=X.X.X.X, TLS handshaking: Disconnected,
session=
Please find my config
# 2.2.10: /etc/dovecot/dovecot.conf
# OS: Linux 3.10.0-862.3.2.el7.x86_64 x86_64 CentOS Linux release
7.5.1804 (Core)
auth_cache_size = 16 M
auth_cache_ttl = 1 days
auth_debug = yes
auth_mechanisms = plain login
auth_username_chars = abcdefghijklmnopqrstuvwxyz.@
auth_verbose = yes
default_client_limit = 1024
default_process_limit = 16
doveadm_password = mysecretpasswordsharedamongservers
first_valid_uid = 1000
mail_attachment_dir = /srv/attachments
mail_attachment_min_size = 4 k
mail_debug = yes
mail_home = /var/spool/mail/%d/%n
mail_location = mdbox:~/mail
mail_plugins = replication notify
mail_privileged_group = mail
managesieve_notify_capability = mailto
managesieve_sieve_capability = fileinto reject envelope
encoded-character vacation subaddress comparator-i;ascii-numeric
relational regex imap4flags copy include variables body enotify
environment mailbox date ihave
mbox_write_locks = fcntl
namespace inbox {
inbox = yes
location =
mailbox Drafts {
auto = subscribe
special_use = \Drafts
}
mailbox Junk {
special_use = \Junk
}
mailbox Sent {
auto = subscribe
special_use = \Sent
}
mailbox "Sent Messages" {
auto = subscribe
special_use = \Sent
}
mailbox Spam {
auto = create
special_use = \Junk
}
mailbox Trash {
auto = subscribe
special_use = \Trash
}
mailbox virtual/All {
auto = no
special_use = \All
}
prefix =
type = private
}
passdb {
args = /etc/dovecot/dovecot-sql.conf.ext
driver = sql
}
plugin {
sieve = ~/.dovecot.sieve
sieve_dir = ~/sieve
}
protocols = imap lmtp
service aggregator {
fifo_listener replication-notify-fifo {
mode = 0666
user = $default_internal_user
}
unix_listener replication-notify {
mode = 0666
user = $default_internal_user
}
}
service auth {
unix_listener auth-userdb {
mode = 0666
}
}
service doveadm {
inet_listener {
port = 5
}
}
service imap-login {
inet_listener imap {
port = 0
}
inet_listener imaps {
port = 993
ssl = yes
}
process_min_avail = 2
service_count = 1
}
service imap {
client_limit = 0
}
service lmtp {
unix_listener lmtp {
group = postfix
mode = 0600
user = postfix
}
}
ssl = required
ssl_cert =
Replication fails with dsync-server(ad...@asergis.com): Error: Couldn't create lock /home/admin/.dovecot-sync.lock: No such file or directory
Hello
I have configured replication using dsync. It fails with a message
Error: Couldn't create lock /home/admin/.dovecot-sync.lock: No such file
or directory
This directory predictably does not exist - all my users are supposed to
be virtual. I can not find an option to switch this off. At the same
time if I try manual replication I get segfault error
Mar 30 17:17:24 localhost.localdomain dovecot[29063]:
dsync-server(ad...@asergis.com): Error: Couldn't create lock
/home/admin/.dovecot-sync.lock: No such file or directory
Mar 30 17:17:54 localhost.localdomain dovecot[29063]:
dsync-server(ad...@asergis.com): Error: sieve-storage: couldn't find
storage root directory; sieve_dir was left unconfigured and
autodetection failed
Mar 30 17:17:54 localhost.localdomain dovecot[29063]:
dsync-server(ad...@asergis.com): Fatal: master: service(doveadm): child
29133 killed with signal 11 (core dumps disabled)
Mar 30 17:17:54 localhost.localdomain kernel: doveadm-server[29133]:
segfault at 58 ip 7fa0608c9ca1 sp 7fffbf349480 error 4 in
lib10_doveadm_sieve_plugin.so[7fa0608c2000+b000]
Mar 30 17:22:25 localhost.localdomain dovecot[29063]:
dsync-server(ad...@asergis.com): Error: Couldn't create lock
/home/admin/.dovecot-sync.lock: No such file or directory
Mar 30 17:27:58 localhost.localdomain kernel: doveadm[29153]: segfault
at 58 ip 7fc1e65baca1 sp 7ffd1a78b020 error 4 in
lib10_doveadm_sieve_plugin.so[7fc1e65b3000+b000]
**
*My OS*:
# cat /etc/os-release
NAME="CentOS Linux"
VERSION="7 (Core)"
ID="centos"
ID_LIKE="rhel fedora"
VERSION_ID="7"
PRETTY_NAME="CentOS Linux 7 (Core)"
ANSI_COLOR="0;31"
CPE_NAME="cpe:/o:centos:centos:7"
HOME_URL="https://www.centos.org/";
BUG_REPORT_URL="https://bugs.centos.org/";
CENTOS_MANTISBT_PROJECT="CentOS-7"
CENTOS_MANTISBT_PROJECT_VERSION="7"
REDHAT_SUPPORT_PRODUCT="centos"
REDHAT_SUPPORT_PRODUCT_VERSION="
*My dovecot:*
# dovecot --version
2.2.10
*My config*:
auth_cache_size = 12 M
auth_cache_ttl = 1 days
auth_debug = yes
auth_mechanisms = plain login
auth_username_chars = abcdefghijklmnopqrstuvwxyz.@
auth_verbose = yes
base_dir = /var/run/dovecot/
default_client_limit = 1024
default_process_limit = 128
doveadm_password = mysecretpasswordsharedamongservers
first_valid_uid = 1000
instance_name = powergate
login_greeting = with a great power comes great responsibility
mail_location = mdbox:/var/mail/%d/%n
mail_plugins = replication notify
mail_privileged_group = mail
mbox_write_locks = fcntl
namespace inbox {
inbox = yes
location =
mailbox Drafts {
auto = no
special_use = \Drafts
}
mailbox Junk {
special_use = \Junk
}
mailbox Sent {
auto = subscribe
special_use = \Sent
}
mailbox "Sent Messages" {
auto = no
special_use = \Sent
}
mailbox Spam {
auto = create
special_use = \Junk
}
mailbox Trash {
auto = no
special_use = \Trash
}
mailbox virtual/All {
auto = no
special_use = \All
}
prefix =
}
passdb {
args = /etc/dovecot/dovecot-sql.conf.ext
driver = sql
}
plugin {
mail_replica = tcp:192.168.100.11:54321
}
protocols = imap lmtp
service aggregator {
fifo_listener replication-notify-fifo {
mode = 0666
user = $default_internal_user
}
unix_listener replication-notify {
mode = 0666
user = $default_internal_user
}
}
service auth {
client_limit = 512
inet_listener auth-client {
port = 12345
}
unix_listener auth-userdb {
mode = 0666
}
}
service doveadm {
inet_listener {
port = 54321
}
}
service imap-login {
inet_listener imap {
port = 0
}
inet_listener imaps {
port = 993
ssl = yes
}
process_min_avail = 2
service_count = 1
}
service imap {
service_count = 1
}
service lmtp {
unix_listener lmtp {
group = postfix
mode = 0600
user = postfix
}
}
ssl = required
ssl_cert =
Re: BUG: Unknown command in userdb socket: CPID?2625
Hi
And why it is not working with that name? Do you have any document
describing "special" names? Thanks
Vladimir
On 26/03/18 13:02, Aki Tuomi wrote:
Dovecot has some special socket names, auth-userdb is one of those.
Aki
On 26.03.2018 14:47, Vladimir Tiukhtin wrote:
Hi
What you have suggested works.
service auth {
unix_listener /var/spool/postfix/private/auth {
user = postfix
group = postfix
mode = 0600
}
}
This works as well:
service auth {
unix_listener /var/run/dovecot/auth {
owner = postfix
group = postfix
mode = 0600
}
}
And this works as well:
service auth {
unix_listener /var/run/dovecot/auth-test-test {
owner = postfix
group = postfix
mode = 0600
}
}
And only when socket has name "auth-userdb"
service auth {
unix_listener auth-userdb {
owner = postfix
group = postfix
mode = 0600
}
}
it doesn't.
When socket name is "auth-userdb" I can see in the log:
Mar 26 11:43:59 mail-server postfix/smtpd[3648]: connect from
unknown[10.15.5.127]
Mar 26 11:43:59 mail-server dovecot[3577]: auth: Debug: Loading
modules from directory: /usr/lib64/dovecot/auth
Mar 26 11:43:59 mail-server dovecot[3577]: auth: Debug: Module
loaded: /usr/lib64/dovecot/auth/libdriver_mysql.so
Mar 26 11:43:59 mail-server dovecot[3577]: auth: Debug: Module
loaded: /usr/lib64/dovecot/auth/libdriver_sqlite.so
Mar 26 11:43:59 mail-server dovecot[3577]: auth: Debug: Wrote new
auth token secret to /var/run/dovecot//auth-token-secret.dat
Mar 26 11:43:59 mail-server postfix/smtpd[3648]: fatal: no SASL
authentication mechanisms
Mar 26 11:43:59 mail-server dovecot[3577]: auth: Debug: master in:
CPID 3648
Mar 26 11:43:59 mail-server dovecot[3577]: auth: Error: BUG: Unknown
command in userdb socket: CPID?3648
Mar 26 11:44:00 mail-server postfix/master[3644]: warning: process
/usr/libexec/postfix/smtpd pid 3648 exit status 1
Mar 26 11:44:00 mail-server postfix/master[3644]: warning:
/usr/libexec/postfix/smtpd: bad command startup -- throttling
Vladimir
On 26/03/18 09:55, Aki Tuomi wrote:
Ah i see.
try this:
dovecot.conf:
service auth {
unix_listener /var/spool/postfix/private/auth {
owner = postfix
group = postfix
mode = 0600
}
}
postfix.conf:
smtpd_sasl_path = private/auth
Aki
On 26.03.2018 11:25, Vladimir Tiukhtin wrote:
Hello
Yes, please find my postfix config:
smtpd_sasl_type = dovecot
#smtpd_sasl_path = /var/run/dovecot/auth
smtpd_sasl_path = /var/run/dovecot/auth-userdb
smtpd_sasl_auth_enable = yes
smtpd_relay_restrictions = permit_mynetworks,
permit_sasl_authenticated, reject_unauth_destination
As I mentioned if I remove minus from socket name everything works
perfect. Thanks
Vladimir
On 26/03/18 08:37, Aki Tuomi wrote:
Did you tell postfix it's talking to dovecot?
Aki
On 25.03.2018 20:29, Vladimir Tiukhtin wrote:
Hi guys.
I am getting strange error:
BUG: Unknown command in userdb socket: CPID?2625
I am using service auth to authenticate users on postfix.
*My OS*:
# cat /etc/os-release
NAME="CentOS Linux"
VERSION="7 (Core)"
ID="centos"
ID_LIKE="rhel fedora"
VERSION_ID="7"
PRETTY_NAME="CentOS Linux 7 (Core)"
ANSI_COLOR="0;31"
CPE_NAME="cpe:/o:centos:centos:7"
HOME_URL="https://www.centos.org/";
BUG_REPORT_URL="https://bugs.centos.org/";
CENTOS_MANTISBT_PROJECT="CentOS-7"
CENTOS_MANTISBT_PROJECT_VERSION="7"
REDHAT_SUPPORT_PRODUCT="centos"
REDHAT_SUPPORT_PRODUCT_VERSION="
*My dovecot:*
# dovecot --version
2.2.10
*My config*:
service auth {
unix_listener auth-userdb {
mode = 0600
user = postfix
group = postfix
}
}
*My Postfix:*
# rpm -qa | grep postf
postfix-2.10.1-6.el7.x86_64
*Log*:
Mar 25 16:52:33 mail-server postfix/smtpd[2625]: connect from
unknown[10.254.200.202]
Mar 25 16:52:33 mail-server dovecot[2621]: auth: Debug: Loading
modules from directory: /usr/lib64/dovecot/auth
Mar 25 16:52:33 mail-server dovecot[2621]: auth: Debug: Module
loaded: /usr/lib64/dovecot/auth/libdriver_mysql.so
Mar 25 16:52:33 mail-server dovecot[2621]: auth: Debug: Module
loaded: /usr/lib64/dovecot/auth/libdriver_sqlite.so
Mar 25 16:52:33 mail-server dovecot[2621]: auth: Debug: Read auth
token secret from /var/run/dovecot//auth-token-secret.dat
Mar 25 16:52:33 mail-server dovecot[2621]: auth: Debug: master
in: CPID 2625
Mar 25 16:52:33 mail-server dovecot[2621]: auth: Error: BUG:
Unknown command in userdb socket: CPID?2625
Mar 25 16:52:33 mail-server postfix/smtpd[2625]: fatal: no SASL
authentication mechanisms
Mar 25 16:52:34 mail-server postfix/master[2424]: warning:
process /usr/libexec/postfix/smtpd pid 2625 exit status 1
Mar 25 16:52:34 mail-server postfix/master[2424]: warning:
/usr/libexec/postfix/smtpd: bad co
Re: BUG: Unknown command in userdb socket: CPID?2625
Hi
What you have suggested works.
service auth {
unix_listener /var/spool/postfix/private/auth {
user = postfix
group = postfix
mode = 0600
}
}
This works as well:
service auth {
unix_listener /var/run/dovecot/auth {
owner = postfix
group = postfix
mode = 0600
}
}
And this works as well:
service auth {
unix_listener /var/run/dovecot/auth-test-test {
owner = postfix
group = postfix
mode = 0600
}
}
And only when socket has name "auth-userdb"
service auth {
unix_listener auth-userdb {
owner = postfix
group = postfix
mode = 0600
}
}
it doesn't.
When socket name is "auth-userdb" I can see in the log:
Mar 26 11:43:59 mail-server postfix/smtpd[3648]: connect from
unknown[10.15.5.127]
Mar 26 11:43:59 mail-server dovecot[3577]: auth: Debug: Loading modules
from directory: /usr/lib64/dovecot/auth
Mar 26 11:43:59 mail-server dovecot[3577]: auth: Debug: Module loaded:
/usr/lib64/dovecot/auth/libdriver_mysql.so
Mar 26 11:43:59 mail-server dovecot[3577]: auth: Debug: Module loaded:
/usr/lib64/dovecot/auth/libdriver_sqlite.so
Mar 26 11:43:59 mail-server dovecot[3577]: auth: Debug: Wrote new auth
token secret to /var/run/dovecot//auth-token-secret.dat
Mar 26 11:43:59 mail-server postfix/smtpd[3648]: fatal: no SASL
authentication mechanisms
Mar 26 11:43:59 mail-server dovecot[3577]: auth: Debug: master in:
CPID 3648
Mar 26 11:43:59 mail-server dovecot[3577]: auth: Error: BUG: Unknown
command in userdb socket: CPID?3648
Mar 26 11:44:00 mail-server postfix/master[3644]: warning: process
/usr/libexec/postfix/smtpd pid 3648 exit status 1
Mar 26 11:44:00 mail-server postfix/master[3644]: warning:
/usr/libexec/postfix/smtpd: bad command startup -- throttling
Vladimir
On 26/03/18 09:55, Aki Tuomi wrote:
Ah i see.
try this:
dovecot.conf:
service auth {
unix_listener /var/spool/postfix/private/auth {
owner = postfix
group = postfix
mode = 0600
}
}
postfix.conf:
smtpd_sasl_path = private/auth
Aki
On 26.03.2018 11:25, Vladimir Tiukhtin wrote:
Hello
Yes, please find my postfix config:
smtpd_sasl_type = dovecot
#smtpd_sasl_path = /var/run/dovecot/auth
smtpd_sasl_path = /var/run/dovecot/auth-userdb
smtpd_sasl_auth_enable = yes
smtpd_relay_restrictions = permit_mynetworks,
permit_sasl_authenticated, reject_unauth_destination
As I mentioned if I remove minus from socket name everything works
perfect. Thanks
Vladimir
On 26/03/18 08:37, Aki Tuomi wrote:
Did you tell postfix it's talking to dovecot?
Aki
On 25.03.2018 20:29, Vladimir Tiukhtin wrote:
Hi guys.
I am getting strange error:
BUG: Unknown command in userdb socket: CPID?2625
I am using service auth to authenticate users on postfix.
*My OS*:
# cat /etc/os-release
NAME="CentOS Linux"
VERSION="7 (Core)"
ID="centos"
ID_LIKE="rhel fedora"
VERSION_ID="7"
PRETTY_NAME="CentOS Linux 7 (Core)"
ANSI_COLOR="0;31"
CPE_NAME="cpe:/o:centos:centos:7"
HOME_URL="https://www.centos.org/";
BUG_REPORT_URL="https://bugs.centos.org/";
CENTOS_MANTISBT_PROJECT="CentOS-7"
CENTOS_MANTISBT_PROJECT_VERSION="7"
REDHAT_SUPPORT_PRODUCT="centos"
REDHAT_SUPPORT_PRODUCT_VERSION="
*My dovecot:*
# dovecot --version
2.2.10
*My config*:
service auth {
unix_listener auth-userdb {
mode = 0600
user = postfix
group = postfix
}
}
*My Postfix:*
# rpm -qa | grep postf
postfix-2.10.1-6.el7.x86_64
*Log*:
Mar 25 16:52:33 mail-server postfix/smtpd[2625]: connect from
unknown[10.254.200.202]
Mar 25 16:52:33 mail-server dovecot[2621]: auth: Debug: Loading
modules from directory: /usr/lib64/dovecot/auth
Mar 25 16:52:33 mail-server dovecot[2621]: auth: Debug: Module
loaded: /usr/lib64/dovecot/auth/libdriver_mysql.so
Mar 25 16:52:33 mail-server dovecot[2621]: auth: Debug: Module
loaded: /usr/lib64/dovecot/auth/libdriver_sqlite.so
Mar 25 16:52:33 mail-server dovecot[2621]: auth: Debug: Read auth
token secret from /var/run/dovecot//auth-token-secret.dat
Mar 25 16:52:33 mail-server dovecot[2621]: auth: Debug: master in:
CPID 2625
Mar 25 16:52:33 mail-server dovecot[2621]: auth: Error: BUG:
Unknown command in userdb socket: CPID?2625
Mar 25 16:52:33 mail-server postfix/smtpd[2625]: fatal: no SASL
authentication mechanisms
Mar 25 16:52:34 mail-server postfix/master[2424]: warning: process
/usr/libexec/postfix/smtpd pid 2625 exit status 1
Mar 25 16:52:34 mail-server postfix/master[2424]: warning:
/usr/libexec/postfix/smtpd: bad command startup -- throttling
The interesting thing is IF I am taking off "-" (minus) from the
socket name, everything works just perfect! So if I change config to:
service auth {
unix_listener blabla {
mode = 0600
user = postfix
group = postfix
}
}
Mar 25 16:5
Re: BUG: Unknown command in userdb socket: CPID?2625
Hello
Yes, please find my postfix config:
smtpd_sasl_type = dovecot
#smtpd_sasl_path = /var/run/dovecot/auth
smtpd_sasl_path = /var/run/dovecot/auth-userdb
smtpd_sasl_auth_enable = yes
smtpd_relay_restrictions = permit_mynetworks, permit_sasl_authenticated,
reject_unauth_destination
As I mentioned if I remove minus from socket name everything works
perfect. Thanks
Vladimir
On 26/03/18 08:37, Aki Tuomi wrote:
Did you tell postfix it's talking to dovecot?
Aki
On 25.03.2018 20:29, Vladimir Tiukhtin wrote:
Hi guys.
I am getting strange error:
BUG: Unknown command in userdb socket: CPID?2625
I am using service auth to authenticate users on postfix.
*My OS*:
# cat /etc/os-release
NAME="CentOS Linux"
VERSION="7 (Core)"
ID="centos"
ID_LIKE="rhel fedora"
VERSION_ID="7"
PRETTY_NAME="CentOS Linux 7 (Core)"
ANSI_COLOR="0;31"
CPE_NAME="cpe:/o:centos:centos:7"
HOME_URL="https://www.centos.org/";
BUG_REPORT_URL="https://bugs.centos.org/";
CENTOS_MANTISBT_PROJECT="CentOS-7"
CENTOS_MANTISBT_PROJECT_VERSION="7"
REDHAT_SUPPORT_PRODUCT="centos"
REDHAT_SUPPORT_PRODUCT_VERSION="
*My dovecot:*
# dovecot --version
2.2.10
*My config*:
service auth {
unix_listener auth-userdb {
mode = 0600
user = postfix
group = postfix
}
}
*My Postfix:*
# rpm -qa | grep postf
postfix-2.10.1-6.el7.x86_64
*Log*:
Mar 25 16:52:33 mail-server postfix/smtpd[2625]: connect from
unknown[10.254.200.202]
Mar 25 16:52:33 mail-server dovecot[2621]: auth: Debug: Loading
modules from directory: /usr/lib64/dovecot/auth
Mar 25 16:52:33 mail-server dovecot[2621]: auth: Debug: Module
loaded: /usr/lib64/dovecot/auth/libdriver_mysql.so
Mar 25 16:52:33 mail-server dovecot[2621]: auth: Debug: Module
loaded: /usr/lib64/dovecot/auth/libdriver_sqlite.so
Mar 25 16:52:33 mail-server dovecot[2621]: auth: Debug: Read auth
token secret from /var/run/dovecot//auth-token-secret.dat
Mar 25 16:52:33 mail-server dovecot[2621]: auth: Debug: master in:
CPID 2625
Mar 25 16:52:33 mail-server dovecot[2621]: auth: Error: BUG: Unknown
command in userdb socket: CPID?2625
Mar 25 16:52:33 mail-server postfix/smtpd[2625]: fatal: no SASL
authentication mechanisms
Mar 25 16:52:34 mail-server postfix/master[2424]: warning: process
/usr/libexec/postfix/smtpd pid 2625 exit status 1
Mar 25 16:52:34 mail-server postfix/master[2424]: warning:
/usr/libexec/postfix/smtpd: bad command startup -- throttling
The interesting thing is IF I am taking off "-" (minus) from the
socket name, everything works just perfect! So if I change config to:
service auth {
unix_listener blabla {
mode = 0600
user = postfix
group = postfix
}
}
Mar 25 16:55:12 mail-server postfix/smtpd[2872]: connect from
unknown[10.254.200.202]
Mar 25 16:55:12 mail-server dovecot[2786]: auth: Debug: Loading
modules from directory: /usr/lib64/dovecot/auth
Mar 25 16:55:12 mail-server dovecot[2786]: auth: Debug: Module
loaded: /usr/lib64/dovecot/auth/libdriver_mysql.so
Mar 25 16:55:12 mail-server dovecot[2786]: auth: Debug: Module
loaded: /usr/lib64/dovecot/auth/libdriver_sqlite.so
Mar 25 16:55:12 mail-server dovecot[2786]: auth: Debug: Read auth
token secret from /var/run/dovecot//auth-token-secret.dat
Mar 25 16:55:12 mail-server dovecot[2786]: auth: Debug: auth client
connected (pid=0)
Mar 25 16:55:13 mail-server dovecot[2786]: auth: Debug: client in:
AUTH 1 PLAIN service=smtp nologin
lip=192.168.101.24 rip=10.254.200.202 secured resp=
Mar 25 16:55:13 mail-server dovecot[2786]: auth: Debug:
cache(ad...@asergis.com,10.254.200.202): miss
Mar 25 16:55:13 mail-server dovecot[2786]: auth-worker(2878): Debug:
Loading modules from directory: /usr/lib64/dovecot/auth
Mar 25 16:55:13 mail-server dovecot[2786]: auth-worker(2878): Debug:
Module loaded: /usr/lib64/dovecot/auth/libdriver_mysql.so
Mar 25 16:55:13 mail-server dovecot[2786]: auth-worker(2878): Debug:
Module loaded: /usr/lib64/dovecot/auth/libdriver_sqlite.so
Mar 25 16:55:13 mail-server dovecot[2786]: auth-worker(2878): Debug:
sql(ad...@asergis.com,10.254.200.202): query: SELECT userid AS
username, domain, password FROM users WHERE userid = 'admin' AND
domain = 'asergis.com'
Mar 25 16:55:13 mail-server dovecot[2786]: auth: Debug: client passdb
out: OK 1 user=ad...@asergis.com
Mar 25 16:55:13 mail-server postfix/smtpd[2872]: 5C63030208:
client=unknown[10.254.200.202], sasl_method=PLAIN,
sasl_username=ad...@asergis.com
Mar 25 16:55:13 mail-server postfix/cleanup[2881]: 5C63030208:
message-id=
Mar 25 16:55:13 mail-server postfix/qmgr[2870]: 5C63030208:
from=, size=622, nrcpt=1 (queue active)
P.s. I don't mind to use socket without minus on its name. But this
looks really strange. Thanks. You are awesome
Vladimir
BUG: Unknown command in userdb socket: CPID?2625
Hi guys.
I am getting strange error:
BUG: Unknown command in userdb socket: CPID?2625
I am using service auth to authenticate users on postfix.
*My OS*:
# cat /etc/os-release
NAME="CentOS Linux"
VERSION="7 (Core)"
ID="centos"
ID_LIKE="rhel fedora"
VERSION_ID="7"
PRETTY_NAME="CentOS Linux 7 (Core)"
ANSI_COLOR="0;31"
CPE_NAME="cpe:/o:centos:centos:7"
HOME_URL="https://www.centos.org/";
BUG_REPORT_URL="https://bugs.centos.org/";
CENTOS_MANTISBT_PROJECT="CentOS-7"
CENTOS_MANTISBT_PROJECT_VERSION="7"
REDHAT_SUPPORT_PRODUCT="centos"
REDHAT_SUPPORT_PRODUCT_VERSION="
*My dovecot:*
# dovecot --version
2.2.10
*My config*:
service auth {
unix_listener auth-userdb {
mode = 0600
user = postfix
group = postfix
}
}
*My Postfix:*
# rpm -qa | grep postf
postfix-2.10.1-6.el7.x86_64
*Log*:
Mar 25 16:52:33 mail-server postfix/smtpd[2625]: connect from
unknown[10.254.200.202]
Mar 25 16:52:33 mail-server dovecot[2621]: auth: Debug: Loading modules
from directory: /usr/lib64/dovecot/auth
Mar 25 16:52:33 mail-server dovecot[2621]: auth: Debug: Module loaded:
/usr/lib64/dovecot/auth/libdriver_mysql.so
Mar 25 16:52:33 mail-server dovecot[2621]: auth: Debug: Module loaded:
/usr/lib64/dovecot/auth/libdriver_sqlite.so
Mar 25 16:52:33 mail-server dovecot[2621]: auth: Debug: Read auth token
secret from /var/run/dovecot//auth-token-secret.dat
Mar 25 16:52:33 mail-server dovecot[2621]: auth: Debug: master in:
CPID 2625
Mar 25 16:52:33 mail-server dovecot[2621]: auth: Error: BUG: Unknown
command in userdb socket: CPID?2625
Mar 25 16:52:33 mail-server postfix/smtpd[2625]: fatal: no SASL
authentication mechanisms
Mar 25 16:52:34 mail-server postfix/master[2424]: warning: process
/usr/libexec/postfix/smtpd pid 2625 exit status 1
Mar 25 16:52:34 mail-server postfix/master[2424]: warning:
/usr/libexec/postfix/smtpd: bad command startup -- throttling
The interesting thing is IF I am taking off "-" (minus) from the socket
name, everything works just perfect! So if I change config to:
service auth {
unix_listener blabla {
mode = 0600
user = postfix
group = postfix
}
}
Mar 25 16:55:12 mail-server postfix/smtpd[2872]: connect from
unknown[10.254.200.202]
Mar 25 16:55:12 mail-server dovecot[2786]: auth: Debug: Loading modules
from directory: /usr/lib64/dovecot/auth
Mar 25 16:55:12 mail-server dovecot[2786]: auth: Debug: Module loaded:
/usr/lib64/dovecot/auth/libdriver_mysql.so
Mar 25 16:55:12 mail-server dovecot[2786]: auth: Debug: Module loaded:
/usr/lib64/dovecot/auth/libdriver_sqlite.so
Mar 25 16:55:12 mail-server dovecot[2786]: auth: Debug: Read auth token
secret from /var/run/dovecot//auth-token-secret.dat
Mar 25 16:55:12 mail-server dovecot[2786]: auth: Debug: auth client
connected (pid=0)
Mar 25 16:55:13 mail-server dovecot[2786]: auth: Debug: client in:
AUTH 1 PLAIN service=smtp nologin
lip=192.168.101.24 rip=10.254.200.202 secured resp=
Mar 25 16:55:13 mail-server dovecot[2786]: auth: Debug:
cache(ad...@asergis.com,10.254.200.202): miss
Mar 25 16:55:13 mail-server dovecot[2786]: auth-worker(2878): Debug:
Loading modules from directory: /usr/lib64/dovecot/auth
Mar 25 16:55:13 mail-server dovecot[2786]: auth-worker(2878): Debug:
Module loaded: /usr/lib64/dovecot/auth/libdriver_mysql.so
Mar 25 16:55:13 mail-server dovecot[2786]: auth-worker(2878): Debug:
Module loaded: /usr/lib64/dovecot/auth/libdriver_sqlite.so
Mar 25 16:55:13 mail-server dovecot[2786]: auth-worker(2878): Debug:
sql(ad...@asergis.com,10.254.200.202): query: SELECT userid AS username,
domain, password FROM users WHERE userid = 'admin' AND domain =
'asergis.com'
Mar 25 16:55:13 mail-server dovecot[2786]: auth: Debug: client passdb
out: OK 1 user=ad...@asergis.com
Mar 25 16:55:13 mail-server postfix/smtpd[2872]: 5C63030208:
client=unknown[10.254.200.202], sasl_method=PLAIN,
sasl_username=ad...@asergis.com
Mar 25 16:55:13 mail-server postfix/cleanup[2881]: 5C63030208:
message-id=
Mar 25 16:55:13 mail-server postfix/qmgr[2870]: 5C63030208:
from=, size=622, nrcpt=1 (queue active)
P.s. I don't mind to use socket without minus on its name. But this
looks really strange. Thanks. You are awesome
Vladimir
