Re: Virtual folder auto creation
On 21/11/2019 10:59, Sami Ketola via dovecot wrote: > Return the virtual folder settings from userdb for only the selected users. > Or return hidden = yes variable for those that you wish not to see it. Could you give more details how to do this? > Virtual folder really does not exist. It is memory only and is generated on > each login. It is not true. Virtual folder really exists (for all users): # ls -d /var/mail/user/mailboxes/virtual /var/mail/user/mailboxes/virtual/ While some MUAs (k9, tb, roundcube) don't show it (may be as empty) some other (apple ios, com.android.mail) shows it. And it annoys that users. -- sergio.
virtual folder index logs
A virtual folder is just really a saved search, but index log files are created. dovecot.list.index.log for the virtual folder itself and dovecot.index.log for all subfolders. Is it correct? Is it possible to disable index logs for virtual folder or it will only make dovecot worse? -- sergio.
Virtual folder auto creation
After switching on Virtual Plugin and configuring it as specified on https://doc.dovecot.org/configuration_manual/virtual_plugin/ the virtual folder is created for each user. Is it possible do not creater virtual folder automatically, only manually, for specific users? lda_mailbox_autocreate set to yes, but hope it's not related. -- sergio.
Re: Junk virtual forder
Sorry, I've missed the rfc3501. The right answer is just "KEYWORD Junk" without a backslash. Aleksander, thank you! -- sergio.
Re: Junk virtual forder
Aki, sorry for poor question. >> Is it possible to create a virtual folder that selects all mails with >> imap Junk flag (set by pigeonhole imap4flags' setflag "Junk")? > Yes, see https://doc.dovecot.org/configuration_manual/virtual_plugin/ Yes, I'm talking exactly about virtual_plugin. While it's absolutely clear how to select all messages marked as deleted, I can't understand how to select all messages with the "junk" flag. -- sergio.
Junk virtual forder
Is it possible to create a virtual folder that selects all mails with imap Junk flag (set by pigeonhole imap4flags' setflag "Junk")? -- sergio.
limits in high-security mode with ssl
Hello.
I'm using dovecot in high-security mode:
service_count = 1 for imap-login service
starttls is requires, so the maximum number of active connections is
process_limit (which is set to 1024) for the same imap-login service.
But with this setup I got:
doveconf: Warning: service auth { client_limit=1000 } is lower than
required under max. load (1324)
doveconf: Warning: service anvil { client_limit=1000 } is lower than
required under max. load (1227)
1. Where did 1324 and 1227 come from?
2. How configuration should be updated so these warnings disappear?
--
sergio.
Secure Client-Initiated Renegotiation
Hello. I've just tested my system that runs dovecot 2.3.4.1 on debian buster with testssl.sh (https://testssl.sh/) and is says: Secure Renegotiation (CVE-2009-3555)not vulnerable (OK) Secure Client-Initiated Renegotiation VULNERABLE (NOT ok), potential DoS threat Is this a configuration or a compilation issue and how to solve it? -- sergio.
Fwd: segfault in libdovecot-storage at unknown circumstances
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=925961
Forwarded Message
Subject: segfault in libdovecot-storage at unknown circumstances
Date: Fri, 29 Mar 2019 16:34:15 +0300
From: sergio
To: Debian Bug Tracking System
Package: dovecot-core
Version: 1:2.3.4.1-1~bpo9+1
Severity: normal
Yes, I know this is not very informative. I've already set
ALLOW_COREDUMPS to 1 in /etc/default/dovecot and waiting for the next
fault.
% grep segfa kern.log*
kern.log.1: Mar 17 13:27:09 mail kernel: [118616.482998] imap[3]:
segfault at 8 ip 7efbff924cbb sp 7fff0b333890 error 4 in
libdovecot-storage.so.0.0.0[7efbff858000+145000]
% zgrep segfa kern.log*gz
kern.log.2.gz:Mar 15 01:51:07 mail kernel: [1691560.449110] imap[8329]:
segfault at 8 ip 7ff38ae2390e sp 7ffcd3317640 error 4
kern.log.2.gz:Mar 15 01:51:07 mail kernel: [1691560.449117] imap[8380]:
segfault at 8 ip 7fea0c1c890e sp 7ffdc7607150 error 4 in
libdovecot-storage.so.0.0.0[7fea0c10d000+12c000]
kern.log.2.gz:Mar 15 01:51:07 mail kernel: [1691560.449438] imap[8371]:
segfault at 8 ip 7f4775b0490e sp 7ffce2814cc0 error 4 in
libdovecot-storage.so.0.0.0[7f4775a49000+12c000]
kern.log.2.gz:Mar 15 01:51:07 mail kernel: [1691560.461685] imap[2435]:
segfault at 8 ip 7fa8cb0ab90e sp 7ffc4185e130 error 4 in
libdovecot-storage.so.0.0.0[7fa8caff+12c000]
kern.log.3.gz:Mar 13 02:35:33 mail kernel: [1521426.802606] imap[11824]:
segfault at 8 ip 7fa1b95d290e sp 7ffd935de700 error 4
kern.log.3.gz:Mar 13 02:35:33 mail kernel: [1521426.802614] imap[11827]:
segfault at 8 ip 7f1afe53490e sp 7fffbeb753d0 error 4 in
libdovecot-storage.so.0.0.0[7f1afe479000+12c000]
kern.log.3.gz:Mar 13 02:35:33 mail kernel: [1521426.802983] imap[11837]:
segfault at 8 ip 7f70b5c9b90e sp 7ffd7f80bc80 error 4 in
libdovecot-storage.so.0.0.0[7f70b5be+12c000]
% grep 'signal 11' mail.err*
mail.err.1: Mar 17 13:27:09 mail dovecot:
imap(sergio)<3>: Fatal: master: service(imap):
child 3 killed with signal 11 (core dumps disabled -
https://dovecot.org/bugreport.html#coredumps)
% zgrep 'signal 11' mail.err*
mail.err.1:Mar 17 13:27:09 mail dovecot:
imap(sergio)<3>: Fatal: master: service(imap):
child 3 killed with signal 11 (core dumps disabled -
https://dovecot.org/bugreport.html#coredumps)
mail.err.2.gz:Mar 15 01:51:07 mail dovecot: imap(sergio): Fatal: master:
service(imap): child 8371 killed with signal 11 (core dumps disabled)
mail.err.2.gz:Mar 15 01:51:07 mail dovecot: imap(sergio): Fatal: master:
service(imap): child 8380 killed with signal 11 (core dumps disabled)
mail.err.2.gz:Mar 15 01:51:07 mail dovecot: imap(sergio): Fatal: master:
service(imap): child 8329 killed with signal 11 (core dumps disabled)
mail.err.2.gz:Mar 15 01:51:07 mail dovecot: imap(sergio): Fatal: master:
service(imap): child 2435 killed with signal 11 (core dumps disabled)
mail.err.3.gz:Mar 13 02:35:33 mail dovecot: imap(sergio): Fatal: master:
service(imap): child 11827 killed with signal 11 (core dumps disabled)
mail.err.3.gz:Mar 13 02:35:33 mail dovecot: imap(sergio): Fatal: master:
service(imap): child 11837 killed with signal 11 (core dumps disabled)
mail.err.3.gz:Mar 13 02:35:33 mail dovecot: imap(sergio): Fatal: master:
service(imap): child 11824 killed with signal 11 (core dumps disabled)
% s dovecot -n
# 2.3.4.1 (f79e8e7e4): /etc/dovecot/dovecot.conf
# Pigeonhole version 0.5.4 ()
doveconf: Warning: service auth { client_limit=1000 } is lower than
required under max. load (1324)
doveconf: Warning: service anvil { client_limit=1000 } is lower than
required under max. load (1227)
# OS: Linux 4.9.0-8-amd64 x86_64 Debian 9.8 ext4
# Hostname: mail.outerface.net
auth_verbose = yes
lda_mailbox_autocreate = yes
lda_mailbox_autosubscribe = yes
lmtp_rcpt_check_quota = yes
lmtp_save_to_detail_mailbox = yes
mail_home = /var/mail/%u
mail_location = sdbox:/var/mail/%u
mail_plugins = quota fts virtual
mail_privileged_group = mail
managesieve_notify_capability = mailto
managesieve_sieve_capability = fileinto reject envelope
encoded-character vacation subaddress comparator-i;ascii-numeric
relational regex imap4flags copy include variables body enotify
environment mailbox date index ihave duplicate mime foreverypart
extracttext spamtest spamtestplus
namespace {
location = virtual:~/mailboxes/virtual
prefix = virtual/
separator = /
}
namespace inbox {
inbox = yes
location =
mailbox Drafts {
special_use = \Drafts
}
mailbox Junk {
special_use = \Junk
}
mailbox Sent {
special_use = \Sent
}
mailbox "Sent Messages" {
special_use = \Sent
}
mailbox Spam {
special_use = \Junk
}
mailbox Trash {
special_use = \Trash
}
prefix =
}
passdb {
args = /etc/dovecot/dovecot-ldap.conf.ext
driver = ldap
}
plugin {
fts_autoindex = yes
quota = count:User quota
quota_grace = 10%%
quota_rule = *:storage=2G
quota_vsizes = yes
sieve = file:~/
Re: ssl_dh
On 16/03/2019 17:07, Aki Tuomi via dovecot wrote: ssl_dh is required from 2.3.0-2.3.2. From 2.3.3 onwards its optional. You can rm the ssl-parameters.dat file to get rid of that warning. Should wiki be updated? -- sergio.
Re: ssl_dh
On 16/03/2019 23:25, Kostya Vasilyev via dovecot wrote: Did you check /var/lib/dovecot Sorry, no! Works fine now, thank you (: -- sergio.
Re: ssl_dh
I'm subscribed, please reply to list directly. ssl_dh is required from 2.3.0-2.3.2. From 2.3.3 onwards its optional. You can rm the ssl-parameters.dat file to get rid of that warning. I have no ssl-parameters.dat file. -- sergio.
ssl_dh
https://wiki.dovecot.org/SSL/DovecotConfiguration says: "Since v2.3.3+ Diffie-Hellman parameters have been made optional, and you are encouraged to disable non-ECC DH algorithms completely." and a bit later: "From version 2.3, you must specify path to DH parameters file using ssl_dh= So. 1. Is ssl_dh an optional or a must? 2. I've disabled ssl_dh in my config. Dovecot works fine except it shows warnings: doveconf: Warning: please set ssl_dh=
