Thomas Leuxner:
> I have a view defined (virtual plugin) with around 22.000 messages in it
interesting.
I assume you drop multiple mailing lists together in a mailbox and separate
them using the virtual plugin, right?
could publish how you configured dovecot virtual plugin?
I never had success on
Oliver Welter:
> >after upgrading my mail server (dovecot 1.1.7 -> 2.2.13) I get tons of
> >messages about corrupted index files in the syslog ("Error: Corrupted
> >transaction log" and "Warning: fscking index file .. dovecot.index".
> >
> Some more debugging - I did a "fuser" on a broken dovecot.i
Florian:
> Why not add the attribute to all your users?
yeah, that would be really the simplest solution. Unfortunately the world
is sometimes more complex. That's why I search for other ways...
- multiple dovecot installations
- different ldap filters based on imap or pop3
- other magic
Andr
Hello,
I have all userdata in a ldapserver. Every user has the right to use pop3.
There is no explicit attribute allowing that. It's simply possible.
Now I like to add imap. For a starting period I like to restrict, who
may use imap.
http://wiki2.dovecot.org/Authentication/RestrictAccess me
Maciej Uhlig:
Please explain the following dovecot (2.2.13) behaviour: I run dovecot
in ldap auth debug mode and log file excerpt follows:
filter=(&(objectClass=MailAccount)(accountActive=TRUE)(mail=user@domain))
fields=mail,quota,mailbox
Hello,
no solution but a comment:
ldap.conf define
Timo,
thanks for having a look at my message...
This looks scary, wouldn't it work without it? : request->failed = FALSE;
I simply copied the logic from existing code in the same function.
Also, don't these work already?
any = 0.0.0.0/0
none = 0.0.0.0/32
Or I'm not sure if the 0.0.0.0/0 m
Jiri Bourek:
> Well they seem to know what they are talking about. The description
> of the threat in linked screenshot says "attacker needs to have
> ability to submit any plain text"
I wrote the attached patch to add SSL_OP_NO_COMPRESSION to dovecot.
Looks not perfect but definitly works.
Andre
Andreas Schulze:
in January: http://dovecot.org/list/dovecot/2014-January/094606.html
Hello,
looks like there is only little interest on allow_nets + ldap :-/
I step forward to put this feature in our production environment.
So I like to ask again if the patch may be included in dovecot
and
Ralf Hildebrandt:
Can I enable STARTTLS/SSL on the LMTP listener in Dovecot 2.1.x?
service lmtp {
unix_listener lmtp {
}
inet_listener lmtp {
address = *
port = 24
-->ssl=yes
}
}
Hi Ralf,
I just tried it for fun on 2.2.12: still does not work...
Is stunnel an option?
MT
Maciej Uhlig:
May I ask to add receiving smtp server mail queue id to sieve 'sent
vacation response' log line?
Hello,
I like to support that request.
It would allow me to exactly follow the mailflow in case any user
claim "I did not get a vacation response."
With a complete QueueID chain
Tamsy:
> There seems to be an incompatibility when compiling Pigeonhole against
> Dovecot v2.2.13.rc1.
same here:
debian squeeze, pigeonhole.0.4.2, dovecot-2.2.13.rc1
Test case: ./tests/extensions/editheader/addheader.svtest:
1: Test 'Addheader - first' SUCCEEDED
2: Test 'Addhe
Jiri Bourek:
The more interesting question is why do you need to explain to your
it-security people
I'm asking that myself too :-/
Reindl Harald:
https://www.ssllabs.com/ssltest/ just don't alow anything other than
https and port 443 - what reports are you speaking about?
your free to configure pop3s/imaps/ssmtp on the "nonstandard" port 443
I have to explain this message from Qualys as not
relevant/harmless/cannot chan
Reindl Harald:
that attacks are not relevant for email because they
rely on the way a webbrowser works which is not the
case for a mail client - you can't trigger XSS and
Ajax in a MUA
sure, that may be right, but
We manage numerous public available services. And every time we go through our
Stephan von Krawczynski:
> If there is no chance to convince Timo for something like a passwd-scheme
> parameter useful for more people than just me I will probably rewrite the
> stuff myself. Nevertheless if someone kindly points me to the right piece of
> code I could save some hours searching fo
Hello,
Our "it-security" department asked me about Qualys warnings like
-> SSL/TLS Compression Algorithm Information Leakage Vulnerability
As far as I learned it's compression inside ssl.
postfix-2.11 knows 'tls_ssl_options = no_compression'
( see http://www.postfix.org/postconf.5.html#tls_s
Joseph Tam:
"azurIt" writes:
is it, somehow, possible to attach the original message to the vacation
autoreply?
Hmm. Allowing a sender control over both the recipient (via spoofing),
and the content seems like perfect recipe to turn your mail server into
a spam relay cannon.
I would lik
Denny Fuchs:
I want to test a Kolab setup, first for private use, later also in
the university
same here but horde, not kolab
I thought, it is plugin, so I tried to find it on the disk ... but
nothing found on the Debian (regular Wheezy packages)
I compile the source, no experience with Wh
Denny Fuchs:
Do I need Dovecot 2.2.10 to compile successful ?
if depends on your needs. dovecot support IMAP METADATA Extension (RFC
5464) out of the box.
at least I do not need a separate source package anymore.
I have this with dovecot-2.2.12:
--- snip
imap_metadata = yes
mail_attribute
Mihai Badici:
It's working, starting with 2.2.7 as i remember.
I could confirm. 2.2.10 works wonderful as horde preference backend ...
Andreas
Hadmut Danisch:
I did not say that I did not trust 127.0.0.1. I said that I do not
trust the Web-IMAP-Gateway (such as squirrelmail) if the client uses
an untrusted computer.
the question to me is: why could Hadmut Danisch not configure
dovecot use an non default trust state for localhost for
Hello,
I'm playing with allow_nets function. It is really cool!
In a filebased passwd backend you simply add "allow_nets=192.0.2.143/32"
as mentioned in http://wiki2.dovecot.org/PasswordDatabase/ExtraFields/AllowNets
But if I use an LDAP backend it looks different.
Following http://wiki2.dovecot.
Hello,
looks like a cosmetical problem but I like to mention it though:
doveadm stats top is interactive. To exit I press as usual CTRL+C and get
^Cdoveadm(root): Error: close(-1[doveadm-stats.c:496]) failed: Interrupted
system call
It's dovecot-2.2.10.
Andreas
Zitat von Dmitry :
Users imap - 10.10.10.10:143
User smtp - 10.10.10.10:25
10.10.10.10:25 - postfix with
sender_dependent_relayhost_maps = hash:$config_directory/relayhost_maps
Dmitry,
just an untested idea:
leave the RFC5321.MAILFROM empty. That's fine as it avoid loops.
let the user set a
Hello,
today I run the command "doveadm auth cache flush" for the first time.
# doveadm auth cache flush
doveadm(root): Error: userdb lookup:
connect(/var/run/dovecotauth-master) failed: No such file or directory
0 cache entries flushed
#
base_dir was the only item contain 'run' and it did
Am 14.01.2014 20:38 schrieb Adrian Zaugg:
> This is not the test morrison has suggested. Doing his test with telnet
> and thus not complete the SSL handshake, the connection stays open much
> longer than 3 Minutes. I closed the connection now manually after a
> little more than 2 hours. This is on
Zitat von "A.L.E.C" :
Timo fixed this in http://hg.dovecot.org/dovecot-2.2/rev/0c3071ebe44b
one day before 2.2.10 release. Didn't it make to the release?
yes
Am 23.12.2013 17:40 schrieb Michael Cramer:
> 10-mail.conf:mail_attribute_dict =
> file:/srv/vmail/dovecot/metadata/%d/%n/attributes
> 20-imap.conf:imap_metadata = yes
nothing more here but no no segfault.
I had also strange problems while using horde.
They went away after I cleaned *all* files re
Am 19.12.2013 11:23 schrieb Andreas Schulze:
> Horde (http://horde.org) has the ability to store its preferences direct into
> a users imap mailbox
> using imap metadata extension. There are two implementations of the imap
> extension.
> 1. a dovecot plugin: http://hg.dove
Hello,
I think about migrating small servers storage to LAYOUT=fs
(http://wiki2.dovecot.org/MailLocation/Maildir#Directory_layout)
Is there a smooth way to adjust the existing folders?
Andreas
GOUT
* BYE Logging out
5 OK Logout completed.
Are there any hints or is the metadata extension just not fully implemented in
dovecot?
Thanks,
Andreas
--
Andreas Schulze
Internetdienste | P252
DATEV eG
90329 Nürnberg | Telefon +49 911 319-0 | Telefax +49 911 319-3196
E-Mail info @datev.de | Inte
ive = yes/no"
or "my_local_parts_are_caseINsensitive = no/yes"
The name and default must be well selected and not break existing behaviour.
I think that's more transparent then changing an mostly unvisible setting.
Andreas
--
Andreas Schulze
Internetdienste | P252
DATEV eG
90
the same timeframe. I know this
because the MTA on the same host was able to deliver messages into mailboxes.
Any hints?
Thanks
Andreas
--
Andreas Schulze
Internetdienste | P252
DATEV eG
90329 Nürnberg | Telefon +49 911 319-0 | Telefax +49 911 319-3196
E-Mail info @datev.de | Internet www.date
me
signature was generated.
These dkim signatures are valid all the time.
Unfortunately I have no idea if that help neither how to debug this...
Andreas
--
Andreas Schulze
Internetdienste | P252
DATEV eG
90329 Nürnberg | Telefon +49 911 319-0 | Telefax +49 911 319-3196
E-Mail info @datev.de |
nation pop3 { program("multilog t /path/to/logdir"); };
Thanks for the pointer to syslog-ng configuration :-)
--
Andreas Schulze
Internetdienste | P252
DATEV eG
90329 Nürnberg | Telefon +49 911 319-0 | Telefax +49 911 319-3196
E-Mail info @datev.de | Internet www.datev.de
S
r why don't you use Splunk or
> some other proper grown-up logging tool ? Relying on STDOUT sounds
> like a recipe for disaster.
writing >1 TB per day sounds not wise. At least not if I mostly will not read
it.
The interesting part is allways at the end...
--
Andreas Schulz
/multilog.html)
That way I can have a look at the last activities to any time.
I like to have that in dovecot too. But since dovecot uses syslog
it's not possible to adopt 1:1
Any ideas?
Thanks
--
Andreas Schulze
Internetdienste | P252
DATEV eG
90329 Nürnberg | Telefon +49 911 319-0 | Telefa
Am 23.07.2013 07:32 schrieb Andreas Schulze:
> sles9: (autoconf-2.59)
> --
> autoreconf: /usr/bin/autoconf failed with exit status: 1
>
> sles10: (autoconf-2.59)
> ---
> autoreconf: /usr/bin/autoconf failed with exit status: 1
>
Hello,
to build dovecot-2.2.5 on a system based on openssl-0.9.7 I had to apply the
attached patch.
Maybe it could be applied in the next versions
Thanks.
--
Andreas Schulze
Internetdienste | P252
DATEV eG
90329 Nürnberg | Telefon +49 911 319-0 | Telefax +49 911 319-3196
E-Mail info
Am 09.09.2013 10:26 schrieb Stephan Bosch:
> Well, Sieve is certainly not meant for something like that. To echo
> the complete message back verbatim you could do the following:
...
> I haven't tested the above only with sieve-test and not in the wild.
Stephan,
thanks for your response. I tried
Hello Stephan,
I love to use the vacation extension to build an echo service.
I have not to worry about whether to answer or not if the sender is a list,
postmaster, mailer-daemon or other crasy thing.
But i like to echo the *complete headers* back.
I did not found a solution with sieve yet. Is i
installing './depcomp'
src/Makefile.am:13: warning: variable 'libdovecot_metadata_la_SOURCES' is
defined but no program or
src/Makefile.am:13: library has 'libdovecot_metadata_la' as canonical name
(possible typo)
autoreconf: automake failed with exit status: 1
--
Andreas Sc
autoconf-2.59 and pigeonhole does not require any specific
autoconf version.
I asked the authors of the plugin for support but got no response.
Maybe somebody could review the plugin.
Thanks
Andreas
--
Andreas Schulze
Internetdienste | P252
DATEV eG
90329 Nürnberg | Telefon +49 911 319-0
n is 3.3.3
Is there a special option to disable ithe ld option or do I have to apply a
special patch?
Are there other suggestions?
Thanks
--
Andreas Schulze
Internetdienste | P252
DATEV eG
90329 Nürnberg | Telefon +49 911 319-0 | Telefax +49 911 319-3196
E-Mail info @datev.de | Internet www.dat
o $?
doveadm(root): Error: Mailbox name not valid mUTF-7: grün
0
Would be nice if doveadm exit with an errorcode != 0 in that case.
Andreas
--
Andreas Schulze
Internetdienste | P252
DATEV eG
90329 Nürnberg | Telefon +49 911 319-0 | Telefax +49 911 319-3196
E-Mail info @datev.de | Internet w
Hi all,
since many dovecot/pigeonhole versions I have an error:
Mails are delivered into wrong folders if the foldername contain a german
umlaut. ( ä, ö, ü )
setup: dovecot-2.1.1 / pigeonhole-0.3.0
postfix deliver to dovecot-lda
.dovecot.sieve contains this:
require
["fileinto","reject","vaca
-instance2.
But all produce strance postfix errors I never saw in my last 6 years as
postfix-admin.
Would it be possible to configure dovecot lmtp server to use an external
smtp-server to submit
new mails ?
Any other Ideas ?
Thanks
Andreas
--
Andreas Schulze
Internetdienste | P252
DATEV eG
found:
remote 192.0.2.143/32 {
disable_plaintext_auth = no
}
( http://dovecot.org/list/dovecot/2011-February/057282.html )
--
Andreas Schulze
Internetdienste | P252
DATEV eG
90329 Nürnberg | Telefon +49 911 319-0 | Telefax +49 911 319-3196
E-Mail info @datev.de | Internet www.datev.de
Sitz
Hello,
I have disable_plaintext_auth=yes enabled. ( dovecot-2.0.12 )
But for one internel host I like to allow plaintext.
Can somebody point me to the configuration ?
I did not found it in the wiki2 ...
Thanks
Andreas
--
Andreas Schulze
Internetdienste | P252
DATEV eG
90329 Nürnberg
found something similar here:
http://osdir.com/ml/science.robotics.orocos.devel/2006-03/msg00029.html
"It seems this option (tar-ustar) is automake 1.9 only"
Is the a workaround or something I can patch ?
Thanks,
Andreas
--
Andreas Schulze
Internetdienste | P532
DATEV eG
90329 Nürnber
ink, it's helpfull, because in this special setup
"doveadm stop" can and will not do what the the user expects from the name.
--
Andreas Schulze
Internetdienste | P532
DATEV eG
90329 Nürnberg | Telefon +49 911 319-0 | Telefax +49 911 319-3196
E-Mail info @datev.de | Internet www.
ould be nice to have
protocols += imap in conf.d/imap.conf
and
protocols += managesieve in conf.d/managesieve.conf
This would make the include feature more consistent...
or is it already possible ?
--
Andreas Schulze
Internetdienste | P532
DATEV eG
90329 Nürnberg | Telefon +49 911 319-0 | Tele
x27; to overwrite
I dont know *why* AC_CONFIG_AUX_DIR is .. but in .. there are
the mentioned files (from dovecot) already present. The following make failed
with less helpfull errors.
-> my fix is to call "autoreconf -i -f" again after autogen.sh
should -f be added to autogen.sh ?
--
Andrea
somebody experiences while delivering huge ammount of mail via
dovecot2 lmtp service?
- is it faster/slower/comaparable with deliver?
- it's hard to believe, that nobody realy misses the return-path header
Thanks,
Andreas
--
Andreas Schulze
Internetdienste | P532
DATEV eG
90329 Nür
(at the time of mail arriving on
> SMTP so it doesn't queue anything that would later be rejected). This is a
> smallish setup on one server, with probably a max of 50 to 100 users and 50
> or so role account mailboxes over the next year or two. Any
> recommendations?
--
Andre
Am 21.04.2010 12:00 schrieb Anton Dollmaier:
> With Maildir and SQL-userdb you can save the quota-information in a
> database (proxy::dict) and monitor the usage there.
>
> works great here ;-)
Could you post configuration details ?
Thanks!
--
Andreas Schulze
Internetdienste | P5
; I still got the "fatal setgid failed: Not owner" ( Fatal:
> setgid(12345(postfix)) failed with euid=12346(dovecot),
> gid=54322(dovecot), egid=54322(dovecot): Not owner )
>
>
>
> 2010/4/20 Andreas Schulze :
> > I would never use /dev/null as homedir.
> >
Am 16.04.2010 13:43 schrieb Andreas Schulze:
> yes, this makes dovecot starting wihout errors,
> but *without* ssl listenport too :-(
protocols = imap pop3
service imap-login {
inet_listener imap {
address = imap01.t6-isa.de
}
inet_listener imaps {
address = imap01.t6-
Am 16.04.2010 13:19 schrieb Timo Sirainen:
> > or allow ssl only in a protocol section
>
> I think you can do that already?
>
> ssl = no
> protocol imap {
> ssl = yes
> ..
> }
yes, this makes dovecot starting wihout errors,
but *without* ssl listenport
Am 16.04.2010 13:05 schrieb Timo Sirainen:
> > Is it possible that dovecot logs statistics on regular intervals ?
> Make a cronjob that sends the SIGUSR2 on regular intervals? :)
would be nice if dovecot master process would do this ;-)
--
Andreas Schulze
Internetdienste | P532
)
Andreas
--
Andreas Schulze
Internetdienste | P532
DATEV eG
90329 Nürnberg | Telefon +49 911 319-0 | Telefax +49 911 319-3196
E-Mail info @datev.de | Internet www.datev.de
Sitz: 90429 Nürnberg, Paumgartnerstr. 6-14 | Registergericht Nürnberg, GenReg
Nr.70
Vorstand
Prof. Dieter Kempf
doesn't need any files to permanently exist there, the
> whole directory could be deleted every time before startup.
could you add this to http://wiki.dovecot.org/MainConfig?highlight=(base_dir) ?
--
Andreas Schulze
Internetdienste | P532
DATEV eG
90329 Nürnberg | Telefon +49 911 319-0 | Tel
Am 14.04.2010 07:36 schrieb Andreas Schulze:
> an in case you like different certs:
>
> protocol imap {
> ssl = yes
> ssl_cert =ssl_key = }
>
> protocol pop3 {
> ssl = yes
> ssl_cert =ssl_key = }
Hello Timo,
I like one service per ip/dnsname which
.t6-isa.de
}
}
an in case you like different certs:
protocol imap {
ssl = yes
ssl_cert =
GnuPG-Signatur.asc
Description: digitale Signatur dieser Nachricht von Andreas Schulze
his scenario I would like to see a concept for
datainspection/datamodification in dovecot.
What about when dovecot would act as a milter client?
Sounds strange but the problems are the same, why not use existing solutions ?
--
Andreas Schulze
Internetdienste | P532
DATEV eG
90329 Nürnberg | Telefon
ot;
Any suggestions !?
Thanks,
Andreas
--
########
#
# Andreas Schulze
# https://andreasschulze.de
#
# GnuPG Key-ID: A7DBA67F, https://andreasschulze.de/sca.asc
# GnuPG Fingerprint: 14C1 39A8 CE6D 6BE0 28C6 5652 03B5 6793 A7DB A67F
#
# $Id: .sig
vecot.org be updated?
--
Andreas Schulze
Internetdienste | P532
DATEV eG
90329 Nürnberg | Telefon +49 911 319-0 | Telefax +49 911 319-3196
E-Mail info @datev.de | Internet www.datev.de
Sitz: 90429 Nürnberg, Paumgartnerstr. 6-14 | Registergericht Nürnberg, GenReg
Nr.70
Vorstand
Prof. Dieter Kempf (Vor
Am 17.03.2010 17:45 schrieb Ivica Glavocic:
> Can i use Managesieve patch for Dovecot v1.2.10
> on new Dovecot version v1.2.11
at least: it compiles ;-)
I will try these days
--
Andreas Schulze
Internetdienste | P532
DATEV eG
90329 Nürnberg | Telefon +49 911 319-0 | Telefax +49 911 319-
Hallo again.
the problem with different certs is solved.
( tested with dovecot2.Beta3 )
there are multiple solutions:
(hopefully without typos)
Solution 1
--
ssl = yes
ssl_cert =
GnuPG-Signatur.asc
Description: digitale Signatur dieser Nachricht von Andreas Schulze
dnsnames.
But this seemes not a real, clean solution to me.
Thanks,
Andreas
--
Andreas Schulze
Internetdienste | P532
DATEV eG
90329 Nürnberg | Telefon +49 911 319-0 | Telefax +49 911 319-3196
E-Mail info @datev.de | Internet www.datev.de
Sitz: 90429 Nürnberg, Paumgartnerstr. 6-14
fm. Wolfgang Stegmann (stellvertretender Vorsitzender)
Dipl.-Kfm. Michael Leistenschneider
Jörg Rabe v. Pappenheim
Dipl.-Vw. Eckhard Schwarzer
Vorsitzender des Aufsichtsrates: Reinhard Verholen
GnuPG-Signatur.asc
Description: digitale Signatur dieser Nachricht von Andreas Schulze
Lv2.
Nobody really needs security known to be insecure.
--
Andreas Schulze
Internetdienste | P532
DATEV eG
90329 Nürnberg | Telefon +49 911 319-0 | Telefax +49 911 319-3196
E-Mail info @datev.de | Internet www.datev.de
Sitz: 90429 Nürnberg, Paumgartnerstr. 6-14 | Registergericht Nürnberg, Gen
Hello Timo,
> a) Assume "the hang never happens" and just do the blocking lookups.
maybe switchable.
It's suggested to run a caching dns on every system. In this case
a hang realy never happens
Thanks
Andreas
--
Andreas Schulze
Internetdienste | P532
DATEV eG
90329 Nürnberg
Hello,
reading the wiki I found
http://wiki.dovecot.org/PasswordDatabase/ExtraFields/Proxy?highlight=(no DNS
resolving)
I have a setup where the destination of a proxyconnection is an DNS name.
Is there a technical reason which currently require host= to be an IP address ?
--
Andreas Schulze
74 matches
Mail list logo
