Operation not permitted - fchown() failed for /run/dovecot/login

[Dshah]

# dovecot --version
2.3.10.1 (a3d0e1171)

Dovecot is unable to start, I see error " Fatal: fchown() failed for
/run/dovecot/login: Operation not permitted"

what could be the problem?
any help please


$ls -la  /var/mail/
drwxr-xr-x1 root root  4096 May 29 17:32 .
drwxr-xr-x1 root root  4096 May 28 17:08 ..
drw---2 root root  4096 May 29 17:32 domains

# cat /etc/dovecot/dovecot.conf=
auth_mechanisms = plain login
auth_username_format = %Lu
auth_verbose = yes
auth_debug = yes
auth_debug_passwords = no

log_timestamp = "%Y-%m-%d %H:%M:%S "
login_greeting = IMAP server ready

disable_plaintext_auth = no

protocols = imap pop3
log_timestamp = "%Y-%m-%d %H:%M:%S "
mail_location = maildir:/var/mail/domains/%d/%n

first_valid_gid = 105
first_valid_uid = 102
last_valid_gid = 105
last_valid_uid = 102

service anvil {
client_limit = 2100
}

ssl_cert = 

Re: Operation not permitted - fchown() failed for /run/dovecot/login

[Dshah]

I had permission issues on docker, its fixed by running chown command at
docker init.

On Fri, May 29, 2020 at 8:56 PM Dshah  wrote:

> # dovecot --version
> 2.3.10.1 (a3d0e1171)
>
> Dovecot is unable to start, I see error " Fatal: fchown() failed for
> /run/dovecot/login: Operation not permitted"
>
> what could be the problem?
> any help please
>
>
> $ls -la  /var/mail/
> drwxr-xr-x1 root root  4096 May 29 17:32 .
> drwxr-xr-x1 root root  4096 May 28 17:08 ..
> drw---2 root root  4096 May 29 17:32 domains
>
> # cat /etc/dovecot/dovecot.conf=
> auth_mechanisms = plain login
> auth_username_format = %Lu
> auth_verbose = yes
> auth_debug = yes
> auth_debug_passwords = no
>
> log_timestamp = "%Y-%m-%d %H:%M:%S "
> login_greeting = IMAP server ready
>
> disable_plaintext_auth = no
>
> protocols = imap pop3
> log_timestamp = "%Y-%m-%d %H:%M:%S "
> mail_location = maildir:/var/mail/domains/%d/%n
>
> first_valid_gid = 105
> first_valid_uid = 102
> last_valid_gid = 105
> last_valid_uid = 102
>
> service anvil {
> client_limit = 2100
> }
>
> ssl_cert =  ssl_key =  ssl_ca = 
>
> namespace inbox {
> inbox = yes
>
> mailbox Trash {
> auto = create
> special_use = \Trash
> }
>
> mailbox Spam {
> auto = no
> special_use = \Junk
> }
>
> mailbox Ham {
> auto = no
> }
> mailbox Sent {
> auto = subscribe
> special_use = \Sent
> }
>
> }
> # service auth {
> # unix_listener auth-master {
> # mode = 0600
> # user = vmail
> # }
>
> # unix_listener /var/spool/postfix/private/auth {
> # mode = 0666
> # user = postfix
> # group = postfix
> # }
>
> # user = root
> # }
>
> # service auth-worker {
> # user = root
> # }
>
> # protocol lda {
> # log_path = /home/vmail/dovecot-deliver.log
> # auth_socket_path = /var/run/dovecot/auth-master
> # postmaster_address = postmas...@razalabs.com
> # }
>
> protocol pop3 {
> pop3_uidl_format = %08Xu%08Xv
> }
>
> userdb {
> driver = static
> args = uid=102 gid=105 home=/var/mail/domains/%d/%n allow_all_users=yes
> }
>
> passdb {
> driver = sql
> args = /etc/dovecot/dovecot-sql.conf.ext
> }
>
> =/etc/dovecot/dovecot-sql.conf.ext===
> driver = mysql
> connect = host=localhost dbname=mail user=root password=pass
> default_pass_scheme = CRYPT
> password_query = SELECT email as user, password FROM users WHERE
> email='%u';
> =dovecot-sql.conf.ext===
>
> =/etc/dovecot/dovecot-sql.conf.ext===
> driver = mysql
> connect = host=localhost dbname=mail user=root password=pass
> default_pass_scheme = CRYPT
> password_query = SELECT email as user, password FROM users WHERE
> email='%u';
> =dovecot-sql.conf.ext===
>
>
> and postfix
>  =/etc/postfix/main.cf===
> inet_protocols = all
> meta_directory = /etc/postfix
> shlib_directory = /usr/lib/postfix
> myhostname = mail.my-domain.com
> mynetworks = 127.0.0.0/8
> message_size_limit = 3072
> virtual_alias_domains =
> virtual_alias_maps = proxy:mysql:/etc/postfix/mysql-virtual_forwardings.cf,
> mysql:/etc/postfix/mysql-virtual_email2email.cf
> virtual_mailbox_domains = proxy:mysql:/etc/postfix/
> mysql-virtual_domains.cf
> virtual_mailbox_maps = proxy:mysql:/etc/postfix/mysql-virtual_mailboxes.cf
> virtual_mailbox_base = /var/mail/domains
> virtual_uid_maps = static:102
> virtual_gid_maps = static:105
> smtpd_sasl_type = dovecot
> smtpd_sasl_path = /var/spool/postfix/private/auth
> smtpd_sasl_auth_enable = yes
> broken_sasl_auth_clients = yes
> smtpd_sasl_authenticated_header = yes
> smtpd_recipient_restrictions = permit_mynetworks,
> permit_sasl_authenticated, reject_unauth_destination
> smtpd_use_tls = yes
> smtpd_tls_cert_file = /secret/tls.crt
> smtpd_tls_key_file = /secret/tls.key
> #virtual_create_maildirsize = yes
> #virtual_maildir_extended = yes
> proxy_read_maps = $local_recipient_maps $mydestination $virtual_alias_maps
> $virtual_alias_domains $virtual_mailbox_maps $virtual_mailbox_domains
> $relay_recipient_maps $relay_domains $canonical_maps $sender_canonical_maps
> $recipient_canonical_maps $relocated_maps $transport_maps $mynetworks
> virtual_transport = dovecot
> dovecot_destination_recipient_limit = 1
> smtpd_milters   = inet:127.0.0.1:8891
> milter_default_action   = accept
>
> =/etc/postfix/main.cf===
>

Apple mail works but thunderbird unable to connect

[Dshah]

Dear all,

I am stuck on this issue for days, I am able to connect on my IMAP server
using Apple mail client but thunderbird shows me this error: "improper
command pipelining after EHLO"

I have tried all the ports in manual config but it just is not working
while Apple Mail is able to connect perfectly,

here are my configuration details of "postconf -n" , "doveconf -n" and "
master.cf"
https://pastebin.com/M3XG9DXA

Thanks in advance.

Re: Apple mail works but thunderbird unable to connect

[Dshah]

Thanks Mark,

I don't have iptables or other firewall block this port, it is behind a
load balancer and port 993 is open. I am pretty sure it's something in my
configuration which I linked above:
https://pastebin.com/M3XG9DXA


On Mon, Jun 22, 2020 at 7:36 PM Mark Stevens  wrote:

>
> make sure ports are set correctly in IPtables as it seems to be failing on
> TLS/SSL (open port 993)
>
> Mark
>
> On 6/22/2020 12:19 PM, Dshah wrote:
>
> Dear all,
>
> I am stuck on this issue for days, I am able to connect on my IMAP server
> using Apple mail client but thunderbird shows me this error: "improper
> command pipelining after EHLO"
>
> I have tried all the ports in manual config but it just is not working
> while Apple Mail is able to connect perfectly,
>
> here are my configuration details of "postconf -n" , "doveconf -n" and "
> master.cf"
> https://pastebin.com/M3XG9DXA
>
> Thanks in advance.
>
>
>
>

Re: Apple mail works but thunderbird unable to connect

[Dshah]

Hi all,

First I would like to Thank you all, it is such a responsive and wonderful
community here.

I started to debug the issue by streaming logs and figured that EHLO was
being sent when I click "Re-Test" button on thunderbird, another issue I
encountered I was not able to connect ports 465/993, It was not blocked by
firewall cause I could see live streaming logs, I think it's more on
postfix side which I have sent for help.

here are my logs

https://pastebin.com/7xRHax4q

and config ( postfix, dovecot)
https://pastebin.com/M3XG9DXA

In case someone could help, I can pay a small amount for figuring out this
issue.

Thanks again

On Tue, Jun 23, 2020 at 8:33 AM Bernardo Reino  wrote:

> On 22/06/2020 18:19, Dshah wrote:
>
> > I am stuck on this issue for days, I am able to connect on my IMAP
> > server using Apple mail client but thunderbird shows me this error:
> > "improper command pipelining after EHLO"
>
> The problem is, AFAIK, Thunderbird's autoconfiguration. It tries to
> detect your SMTP settings (note: SMTP, i.e. for mail sending, not for
> receiving, which would actually involve dovecot), but does it violating
> the protocol (does pipelining without waiting for confirmation).
>
> https://bugzilla.mozilla.org/show_bug.cgi?id=832457
>
> The bug is old and considered to be resolved. And nobody cares :(
> If you use postfix a "workaround" is to temporarily disable postscreen,
> which IIRC is the one (rightly) complaining about the improper pipelining.
>
> Cheers,
> Bernardo Reino
>

Re: Apple mail works but thunderbird unable to connect

[Dshah]

I disabled postscreen and enabled logging, I have all ports working except
993,  in log when I try to connect on port 993

dovecot: imap-login: Disconnected (no auth attempts in 0 secs): user=<>,
rip=10.244.0.24, lip=10.244.0.108, TLS handshaking: SSL_accept() failed:
error:1408F10B:SSL routines:ssl3_get_record:wrong version number,
session=

I found that I could disable ssl3 by "ssl_protocols = !SSLv2 !SSLv3" but
this option is not working (dovecot 2.3.10.1 (a3d0e1171)

On Tue, Jun 23, 2020 at 6:27 PM Michael Peddemors 
wrote:

> On 2020-06-23 8:24 a.m., Alexander Dalloz wrote:
> > Am 23.06.2020 um 07:33 schrieb Bernardo Reino:
> >> If you use postfix a "workaround" is to temporarily disable
> >> postscreen, which IIRC is the one (rightly) complaining about the
> >> improper pipelining.
> >>
> >> Cheers,
> >> Bernardo Reino
> >
> > No, submitting on SMTP port 25 would be the wrong step. There's
> > submission on port 587 or submissions (formerly called smtps) on port
> > 465 for taking MUA requests authenticating and submitting a message.
> >
> > Alexander
> >
>
> +1, you should even go farther and disable authentication on port 25
>
>
> --
> "Catch the Magic of Linux..."
> 
> Michael Peddemors, President/CEO LinuxMagic Inc.
> Visit us at http://www.linuxmagic.com @linuxmagic
> A Wizard IT Company - For More Info http://www.wizard.ca
> "LinuxMagic" a Registered TradeMark of Wizard Tower TechnoServices Ltd.
> 
> 604-682-0300 Beautiful British Columbia, Canada
>
> This email and any electronic data contained are confidential and intended
> solely for the use of the individual or entity to which they are addressed.
> Please note that any views or opinions presented in this email are solely
> those of the author and are not intended to represent those of the company.
>