from:"Infraestructura TIC \- UNNOBA"

Re: Cyrus LMTP Delivery Error

2020-05-28 Thread Infraestructura TIC - UNNOBA

Hello, David.
The code is in imap/lmtp_err..et, according to this bug report:

https://github.com/cyrusimap/cyrus-imapd/issues/3035

Good luck!

Javier.-



El 28/5/20 a las 13:20, David Faller escribió:
>
> Thanks for your solution, could you provide detailed which line did
> you change?
>
> under imap/lmptd.c or lmtpd.h which line did you adjust?
>
>  
>
> Best Regards,
>
> David Faller
>


Cyrus Home Page: http://www.cyrusimap.org/
List Archives/Info: http://lists.andrew.cmu.edu/pipermail/info-cyrus/
To Unsubscribe:
https://lists.andrew.cmu.edu/mailman/listinfo/info-cyrus

Re: Cyrus LMTP Delivery Error

2020-05-28 Thread Infraestructura TIC - UNNOBA


Finally, I downloaded source from

https://github.com/cyrusimap/cyrus-imapd/releases/download/cyrus-imapd-3.2.0/cyrus-imapd-3.2.0.tar.gz

untar into /usr/src
installed dependencies  (pkg-config, libsasl2-dev, libicu-dev, 
libjansson-dev, libssl-dev, bison, flex...)


edit /usr/src/cyrus-imapd-3.2.0/imap/lmtpd
and change the first line for

ec LMTP_OK,
   "250 2.1.5 Ok SESSIONID=<*%s*>"

./configure
./make

and

mv /usr/lib/cyrus/bin/lmtpd /usr/lib/cyrus/bin/lmtpd.old
ln -s /usr/src/cyrus-imapd-3.2.0/imap/lmtpd /usr/lib/cyrus/bin/lmtpd


And now, it's working until upgraded Debian package 3.2.1 is delivered.


Thanks!



El 28/5/20 a las 10:58, David Faller escribió:


Dear all, we’re running into the same issue after upgrade cyrus to 
3.2.0-5~bpo10+1


We had try to downgrade cyrus but after this we got kernel issues 
which prevent thunderbird connections.


May 28 15:43:26 CGSG cyrus/master[2136]: process type:SERVICE 
name:lmtpchroot path:/usr/lib/cyrus/bin/lmtpd age:0.057s pid:2694 
signaled to death by signal 6 (Aborted)


May 28 15:43:26 CGSG postfix/lmtp[2693]: 446EEDE17EF: 
to=, 
relay=groupware.uc-central.net[/local/socket/lmtp], delay=4.2, 
delays=4.1/0.01/0.02/0.04, dsn=4.4.2, status=deferred (lost connection 
with groupware.uc-central.net[/local/socket/lmtp] while sending end of 
data -- message may be sent more than once)


Best Regards



Cyrus Home Page: http://www.cyrusimap.org/
List Archives/Info: http://lists.andrew.cmu.edu/pipermail/info-cyrus/
To Unsubscribe:
https://lists.andrew.cmu.edu/mailman/listinfo/info-cyrus




Cyrus Home Page: http://www.cyrusimap.org/
List Archives/Info: http://lists.andrew.cmu.edu/pipermail/info-cyrus/
To Unsubscribe:
https://lists.andrew.cmu.edu/mailman/listinfo/info-cyrus

Cyrus LMTP Delivery Error

2020-05-27 Thread Infraestructura TIC - UNNOBA


Hello!


After last upgrade of Cyrus (3.2.0-5 on Debian Bullseye), I started to 
see errors in Exim4 mainlog:


2020-05-27 00:34:27 1jdmpm-000vHV-4S == te...@charne.net R=cyrus_user 
T=cyrus_delivery defer (-1): *LMTP connection closed after end of data*


Mail is delivered, but still remains in queue.


And, in cyrus log:

cyrus/master[164861]: process type:SERVICE name:lmtpunix 
path:/usr/lib/cyrus/bin/lmtpd age:11025.520s pid:217212 *signaled to 
death by signal 6 (Aborted)**

*


And, in Cyrus status there's a error when try to access sieve, because 
path are duplicated:


cyrus/lmtpunix[3132]: IOERROR: *unable to open 
/var/spool/sieve/t/tecno//var/spool/sieve/t/tecno/ingo.script *for 
reading: No such file or directory



Can anyone help me, please?



ii  cyrus-admin 3.2.0-5    amd64    Cyrus mail 
system - administration tools
ii  cyrus-clients 3.2.0-5    amd64    Cyrus mail 
system - test clients
ii  cyrus-common 3.2.0-5    amd64    Cyrus mail 
system - common files
ii  cyrus-doc 3.2.0-5    all  Cyrus mail 
system - documentation files
ii  cyrus-imapd 3.2.0-5    amd64    Cyrus mail 
system - IMAP support
ii  cyrus-murder 3.2.0-5    amd64    Cyrus mail 
system - proxies and aggregator
ii  cyrus-pop3d 3.2.0-5    amd64    Cyrus mail 
system - POP3 support
ii  cyrus-replication 3.2.0-5    amd64    Cyrus 
mail system - replication
ii  libcyrus-imap-perl:amd64 3.2.0-5    amd64    
Interface to Cyrus imap client imclient library



Thanks in advance!


Javier.-

Cyrus Home Page: http://www.cyrusimap.org/
List Archives/Info: http://lists.andrew.cmu.edu/pipermail/info-cyrus/
To Unsubscribe:
https://lists.andrew.cmu.edu/mailman/listinfo/info-cyrus

Re: Folder subscription issue

2019-07-18 Thread Infraestructura TIC - UNNOBA

Muchísimas gracias, Egoitz!


El 18/7/19 a las 11:12, Egoitz Aurrekoetxea escribió:
> Hi!!,
>
> Fine! Very happy sharing then :) :) . It only handles email. For
> Calendars/Contacts we have been long time now, using Davical (to which
> we contributed in it’s
> day https://wiki.davical.org/index.php/DAViCal-cli) . We don’t refuse
> to use Caldav with Cyrus, it’s just we did the system previous to
> Cyrus Caldav system.
>
> I attach the code in this email. I explain how we use it. We have each
> mailbox server running this code as a cron job and we have too some
> servers with Cyrus IMAP for just storing removed content (without the
> cron obviously). Each user in the restore server (a normal mailbox
> server but just for storing deleted content) is something like :
> user_dom...@recuperaciones.saremail.com
> . All our servers have
> autocreate feature (although in our mailbox servers is not being used
> nowadays). So, we keep track of what has been removed in a mailbox
> server with two elements… the Cyrus log and cyradm command. With
> cyradm command we keep track of deleted “folders" in each user
> account. With the log, we know where expunges had been run. Later, we
> take the DELETED mailboxes (the folders of each user) and upload them
> to Saremail-Restore. After that, we check the log (from some hours
> before till the present moment). Then we ask unexpunge to see what has
> been removed in each place. We upload them. We keep track in a
> database of what exactly has dealed with and what is remaining to deal
> with, so in the case a fail over to a slave is produced unexpunges can
> then be run there, even if there’s nothing in the logs that say that
> (because it’s obviously a slave).
>
>
> If you think it could be useful, perhaps could be uploaded to contrib
> directory…
>
> Cheers!


-- 
Lic. Javier Charne
Responsable Infraestructura Tecnológica
Prosecretaría de TIC | UNNOBA
Junín, Buenos Aires, Argentina
jav...@unnoba.edu.ar
Tel: +54 (0236) 4407750 int 11712
Cel: +5492364542182


Cyrus Home Page: http://www.cyrusimap.org/
List Archives/Info: http://lists.andrew.cmu.edu/pipermail/info-cyrus/
To Unsubscribe:
https://lists.andrew.cmu.edu/mailman/listinfo/info-cyrus

Re: Problems with SSL [SOLVED]

2016-11-30 Thread Infraestructura TIC - UNNOBA via Info-cyrus

Thanks, Michael.


El 30/11/16 a las 06:03, Michael Menge via Info-cyrus escribió:
> Hi,
>
>
> Quoting Infraestructura TIC - UNNOBA via Info-cyrus
> :
>
>> Hello!
>> I'm using cyrus on Debian vm for several years but now, SSL starts to
>> fail:
>>
>> Nov 29 13:05:58 server1 cyrus/imaps[9595]: inittls: Loading
>> hard-coded DH parameters
>> Nov 29 13:05:58 server1 cyrus/imaps[9595]: imaps TLS negotiation
>> failed: [2801:0:140:f42:f3fa:b0b2:4ab1:8d10]
>>
>> I tried with self-signed certificates, and third-party ones, but the
>> result is the same.
>> I spent two days trying to figure out what happened, without results.
>>
>> #openssl s_client -connect mail.server.test:993 -crlf -state
>> CONNECTED(0003)
>> SSL_connect:before SSL initialization
>> SSL_connect:SSLv3/TLS write client hello
>> SSL3 alert read:fatal:handshake failure
>> SSL_connect:error in SSLv3/TLS write client hello
>> 140019483313280:error:14094410:SSL routines:ssl3_read_bytes:sslv3
>> alert handshake failure:ssl/record/rec_layer_s3.c:1388:SSL alert number
>> 40
>> ---
>> no peer certificate available
>> ---
>> No client certificate CA names sent
>> ---
>> SSL handshake has read 7 bytes and written 176 bytes
>> Verification: OK
>> ---
>> New, (NONE), Cipher is (NONE)
>
> I believe the server and client have no SSL/TLS version and/or Cipher
> in common and
> therefore can't establish an encrypted connection.
>
> Some time ago i found an ssl server test suite
> https://github.com/drwetter/testssl.sh
> witch tries to do what https://www.ssllabs.com/ does for web servers
> but for all protocols
> and server not reachable form the internet.
>
> You might want to check your server with ./testssl.sh
> mail.server.test:993
>

I tried with testssl.sh and sslscan and both tools informed that TLS was
not working on Cyrus.

"  TLS renegotiation:
   Secure session renegotiation supported"

and

"
 Testing protocols (via sockets except TLS 1.2, SPDY+HTTP2)

 SSLv2   not offered (OK)
 SSLv3   not offered (OK)
 TLS 1   not offered
 TLS 1.1 not offered
 *TLS 1.2 not offered*
 SPDY/NPN(SPDY is an HTTP protocol and thus not tested here)
 HTTP2/ALPN  (HTTP/2 is a HTTP protocol and thus not tested here)

"


I solved it by specifying ciphers in this way (in /etc/imapd.conf):

tls_ciphers:
EDH+CAMELLIA:EDH+aRSA:EECDH+aRSA+AESGCM:EECDH+aRSA+SHA256:EECDH:+CAMELLIA128:+AES128:+SSLv3:!aNULL:!eNULL:!LOW:!3DES:!MD5:!EXP:!PSK:!DSS:!RC4:!SEED:!IDEA:!ECDSA:kEDH:CAMELLIA128-SHA:AES128-SHA

instead of

tls_ciphers: TLSv1+HIGH:!aNULL:@STRENGTH


And now, TLS 1.2 is working.

Thanks!








>
>> Secure Renegotiation IS NOT supported
>> Compression: NONE
>> Expansion: NONE
>> No ALPN negotiated
>> SSL-Session:
>> Protocol  : TLSv1.2
>> Cipher: 
>> Session-ID:
>> Session-ID-ctx:
>> Master-Key:
>> PSK identity: None
>> PSK identity hint: None
>> SRP username: None
>> Start Time: 1480435442
>> Timeout   : 7200 (sec)
>> Verify return code: 0 (ok)
>> Extended master secret: no
>> ---
>>
>>
>> I'm using this versions:
>>
>> cyrus-admin   2.5.10-2
>> cyrus-clients 2.5.10-2
>> cyrus-common  2.5.10-2
>> cyrus-doc 2.5.10-2
>> cyrus-imapd   2.5.10-2
>> cyrus-murder  2.5.10-2
>> cyrus-pop3d   2.5.10-2
>> cyrus-replication 2.5.10-2
>>
>>
>>
>> Both, certificate and key, are accesibles by user cyrus. Certificate is
>> up-to-date.
>>
>> This is the config:
>>
>> $sudo -u cyrus /usr/lib/cyrus/bin/cyr_info  conf
>> [...]
>> tls_ciphers: TLSv1+HIGH:!aNULL:@STRENGTH
>> tls_client_ca_dir: /etc/ssl/certs
>> tls_client_ca_file: /etc/ssl/certs/cyrus.pem
>> tls_server_cert: /etc/ssl/certs/cyrus.pem
>> tls_server_key: /etc/ssl/private/cyrus.key
>> tls_session_timeout: 0
>> [...]
>>
>>
>> And before I declared myself "I'm completely lost", I was watching
>> entropy ... but is ok.
>>
>> #cat /proc/sys/kernel/random/entropy_avail
>> 2354
>>
>>
>>
>> ¿An

Problems with SSL

2016-11-29 Thread Infraestructura TIC - UNNOBA via Info-cyrus

Hello!
I'm using cyrus on Debian vm for several years but now, SSL starts to fail:

Nov 29 13:05:58 server1 cyrus/imaps[9595]: inittls: Loading
hard-coded DH parameters
Nov 29 13:05:58 server1 cyrus/imaps[9595]: imaps TLS negotiation
failed: [2801:0:140:f42:f3fa:b0b2:4ab1:8d10]

I tried with self-signed certificates, and third-party ones, but the
result is the same.
I spent two days trying to figure out what happened, without results.

#openssl s_client -connect mail.server.test:993 -crlf -state
CONNECTED(0003)
SSL_connect:before SSL initialization
SSL_connect:SSLv3/TLS write client hello
SSL3 alert read:fatal:handshake failure
SSL_connect:error in SSLv3/TLS write client hello
140019483313280:error:14094410:SSL routines:ssl3_read_bytes:sslv3
alert handshake failure:ssl/record/rec_layer_s3.c:1388:SSL alert number
40
---
no peer certificate available
---
No client certificate CA names sent
---
SSL handshake has read 7 bytes and written 176 bytes
Verification: OK
---
New, (NONE), Cipher is (NONE)
Secure Renegotiation IS NOT supported
Compression: NONE
Expansion: NONE
No ALPN negotiated
SSL-Session:
Protocol  : TLSv1.2
Cipher: 
Session-ID:
Session-ID-ctx:
Master-Key:
PSK identity: None
PSK identity hint: None
SRP username: None
Start Time: 1480435442
Timeout   : 7200 (sec)
Verify return code: 0 (ok)
Extended master secret: no
---
   
 
I'm using this versions:

cyrus-admin   2.5.10-2
cyrus-clients 2.5.10-2
cyrus-common  2.5.10-2
cyrus-doc 2.5.10-2
cyrus-imapd   2.5.10-2
cyrus-murder  2.5.10-2
cyrus-pop3d   2.5.10-2
cyrus-replication 2.5.10-2



Both, certificate and key, are accesibles by user cyrus. Certificate is
up-to-date.

This is the config:

$sudo -u cyrus /usr/lib/cyrus/bin/cyr_info  conf
[...]
tls_ciphers: TLSv1+HIGH:!aNULL:@STRENGTH
tls_client_ca_dir: /etc/ssl/certs
tls_client_ca_file: /etc/ssl/certs/cyrus.pem
tls_server_cert: /etc/ssl/certs/cyrus.pem
tls_server_key: /etc/ssl/private/cyrus.key
tls_session_timeout: 0
[...]


And before I declared myself "I'm completely lost", I was watching
entropy ... but is ok.

#cat /proc/sys/kernel/random/entropy_avail
2354



¿Any suggestions?

Thanks in advance!



Javier.-



Cyrus Home Page: http://www.cyrusimap.org/
List Archives/Info: http://lists.andrew.cmu.edu/pipermail/info-cyrus/
To Unsubscribe:
https://lists.andrew.cmu.edu/mailman/listinfo/info-cyrus

Folders missing from list

2016-08-02 Thread Infraestructura TIC - UNNOBA via Info-cyrus

Hello.

I have cyrus for 12 years, with 2 users. Recently, I upgraded to
2.2.5.8-Debian-2.5.8-1  and some user's folders are lost from listing. 

Folders are present in /var/spool/cyrus/, appears in .sub files; 
Squatter indexes the folder, Reconstruct shows it everything looks
normal. But folders are missing from list.

In clients applications (horde as webmail and thunderbird, for example),
they appear as "unsubscribed" and can't subscribe again!

Any suggestions?

Thanks in advance.

-- 


Cyrus Home Page: http://www.cyrusimap.org/
List Archives/Info: http://lists.andrew.cmu.edu/pipermail/info-cyrus/
To Unsubscribe:
https://lists.andrew.cmu.edu/mailman/listinfo/info-cyrus

Re: Cyrus LMTP Delivery Error

Re: Cyrus LMTP Delivery Error

Cyrus LMTP Delivery Error

Re: Folder subscription issue

Re: Problems with SSL [SOLVED]

Problems with SSL

Folders missing from list

7 matches

Site Navigation

Mail list logo

Footer information