Re: a temporary failure

Mon, 22 Jun 2015 08:44:13 -0700 

On 22/06/15 15:57, Steffen Kaiser wrote:

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On Mon, 22 Jun 2015, lejeczek wrote:

On 22/06/15 09:43, Steffen Kaiser wrote:

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On Mon, 22 Jun 2015, lejeczek wrote:

On 22/06/15 09:16, lejeczek wrote:
to=<me@my.domain>,orig_to=<root@localhost>, relay=dovecot, delay=39296, delays=39294/2.2/0/0.27, dsn=4.3.0, status=deferred (temporary failure)
and dovecot logs no error, despite having debug to yes in couple of places, 
it shows:
auth: Debug: master in: USER 1 me@my.domain service=lda 
auth-worker(25343): Debug: passwd(me@my.domain): lookup
auth-worker(25343): passwd(me@my.domain): unknown user
auth: Debug: ldap(me@my.domain): user search: base=ou=People,dc=my,dc=domain scope=subtree filter=(&(objectClass=person)(uid=me)) fields= auth: Debug: ldap(me@my.domain): result: objectClass=top,top,top,top,
... here goes the whole lot of ldap atrribs, and at the end: 

unused.
For passdb & userdb in the configs I only configure ldap backed, nothing else. Ldap works, I can query it without failling. I believe it's very simple set up but I must be wrong somewhere. 

pass_filter = (&(objectClass=posixAccount)(uid=%n))
pass_attrs = uid=user=%n,userPassword=password
Use either uid=user oder =user=%n but not uid=user=%n. I would use uid=user, so the user cannot specify the case of the username.
user_attrs = =home=/var/spool/mail/%d/%n,=mail=maildir:/var/spool/mail/%d/%n/Maildir:INDEX=/var/spool/mail/%d/%n:CONTROL=/var/spool/mail/%d/%n 
user_filter = (&(objectClass=person)(uid=%n))


even stranger, if I use(along with ldap in configs):


Please post:

complete doveconf -n
and the complete LDAP config being referenced by the config. 


userdb {
 driver = static
args = uid=vmail gid=mail home=/var/spool/mail/%d/%n mail=maildir:/var/spool/mail/%d/%n/Maildir:INDEX=/var/spool/mail/%d/%n:CONTROL=/var/spool/mail/%d/%n sieve_storage=/var/spool/mail/%d/%n/SIEVE sieve=/var/spool/mail/%d/%n/dovecot.sieve 
}

dovecot start to core dump:
auth: Fatal: master: service(auth): child 9188 killed with signal 11 (core dumped) 



- -- Steffen Kaiser
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1
iQEVAwUBVYfKoHz1H7kL/d9rAQLhsQgAkwOcfTIoH/NiIXHL+IJcUjzHBpFsQJeT lXdN5XIfyXgZdpzmObXG606ON5Y5higyfR1kby3bLxlvkioyAt4WqWHcTw7XLrwo e5zz9774M7dlnZN+CpY0WAHcyllZeodaD5jVruXzS2JAZmShL8vAV1AIC2QKOtwL h4Z5y0ZYTA4bwD7J6pwZ18kaF3pV9lD6uHiFE0DTq8TupUjp0gV0wLOMKkcetsD2 kpWPvz8CGlc2LBDJTEHVdw1of7/VVIRIJKSqX3mzizWMf+DLy6fAJRue4S1o3cT8 m+4PM48B50ycGQXW1U3dJ9ERAgg21sS0kmUBbuuKnC8BWacsdSFUaA== 
=QCeP
-----END PGP SIGNATURE-----



auth_debug = yes
auth_mechanisms = login
auth_verbose = yes
first_valid_uid = 999
mail_debug = yes
mail_location = maildir:/var/spool/mail/my.domain/%u/Maildir
mail_uid = vmail
managesieve_notify_capability = mailto
managesieve_sieve_capability = fileinto reject envelope encoded-character vacation subaddress comparator-i;ascii-numeric relational regex imap4flags copy include variables body enotify environment mailbox date ihave 
mbox_write_locks = fcntl
namespace inbox {
 inbox = yes
 location =
 mailbox Drafts {
   special_use = \Drafts
 }
 mailbox Junk {
   special_use = \Junk
 }
 mailbox Sent {
   special_use = \Sent
 }
 mailbox "Sent Messages" {
   special_use = \Sent
 }
 mailbox Trash {
   special_use = \Trash
 }
 prefix =
}
passdb {
 driver = pam
}
passdb {
 args = /etc/dovecot/ldap-passdb-my.domain.conf
 driver = ldap
}
plugin {
 sieve = ~/.dovecot.sieve
 sieve_dir = ~/sieve
 sieve_storage = SIEVE
}
protocols = imap sieve
service auth {
 unix_listener /var/spool/postfix/private/auth {
   group = mail
   mode = 0660
   user = vmail
 }
 unix_listener auth-userdb {
   group = mail
   mode = 0660
   user = vmail
 }
}
service imap-login {
 inet_listener imap {
   port = 143
 }
 inet_listener imaps {
   port = 993
 }
}
ssl = required
ssl_cert = </etc/pki/dovecot/certs/dovecot.pem
ssl_key = </etc/pki/dovecot/private/dovecot.pem
userdb {
 driver = passwd
}
userdb {
 args = /etc/dovecot/ldap-userdb-my.domain.conf
 driver = ldap
}
protocol lmtp {
 mail_plugins = " sieve"
}
protocol lda {
 mail_plugins = " sieve"
}

#ldap-passdb
hosts = localhost
uris = ldap://localhost:389/
ldap_version = 3
base = ou=People,dc=my,dc=domain
dn = cn=Manager,dc=my,dc=domain
dnpass = my.pass
auth_bind = no
pass_attrs = uid=%n,userPassword=password


That's neiter your original request nor following:


if I use uid=user then dovecot loses domain and I get:
.. username changed my@my.domain .> me
and still does not work
Use either uid=user oder =user=%n but not uid=user=%n. I would use uid=user, so the user cannot specify the case of the username. 


pass_filter = (&(objectClass=posixAccount)(uid=%n))


#ldap-userdb
hosts = localhost
uris = ldap://localhost:389/
ldap_version = 3
base = ou=People,dc=my,dc=domain
dn = cn=Manager,dc=my,dc=domain
dnpass = my.pass
auth_bind = no
user_attrs = =home=/var/spool/mail/%d/%n,=mail=maildir:/var/spool/mail/%d/%n/Maildir:INDEX=/var/spool/mail/%d/%n:CONTROL=/var/spool/mail/%d/%n 
user_filter = (&(objectClass=person)(uid=%n))
default_pass_scheme = SSHA
It cannot be postfix if it relays and dovecots gets these relays. Can it be? 



- -- Steffen Kaiser
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1
iQEVAwUBVYgiXXz1H7kL/d9rAQLvTAgAk4lWQgRkclu9hx8InE1VGukWKSxwDcpI kwpQtVGrqm7AjSnNIn02NMZfyfEAxS67aHfn49fPgjnOkGSDwl6b3WDpUrtJ9XVJ cAcMSDsWPiqyHmAHNY2YTRKfcEySFctc/voMcxo0gFPFtJfpjf7UvNw8EdkX+BmW XRNTlIKDaa6bLSFv48F8NpMH0M7uOUqxgm8R/3DOt8M55qK0aa/Qqvqbxj/L9Ir3 KtCGYI02Lk/QZngzIqtIPIXASOzpVFefLKLxwnIuVFS5Xfv/Wat7URD6TKn5Wx8S 
dRnC/CH9MduOfcHmoaUMxzsFfVkAeeVMB0rVl/GdljHr6pefUxtrPA==
=VsKL
-----END PGP SIGNATURE-----

Reply via email to