Re: Virtual Mailboxes redux

2018-03-08 Thread LuKreme 
On Mar 8, 2018, at 00:05, Aki Tuomi  wrote:
> 
> You actually have a mailbox called '@virtual.day'?

The behavior isn’t any different if the prefix is “virtual.” instead of 
“@virtual.”

--  
My main job is trying to come up with new and innovative and effective ways to 
reject even more mail. I'm up to about 97% now.

Extra intermediate certificate when using ssl_alt_cert

2018-03-08 Thread Peter Linss 
I just added an ECDSA certificate to my mail server using ssl_alt_cert (the RSA 
certificate is specified by ssl_cert), both certificate files contain the 
certificate and a single intermediate (which currently happens to be the same 
intermediate from Let’s Encrypt).

When connecting to the server using either RSA or ECDSA ciphers, the server 
sends the proper certificate, but also sends two intermediates. Apparently it’s 
reading the intermediate from both files and using both for all situations, 
rather than using only the intermediate in the RSA file for RSA certificates, 
and the intermediate in the ECDSA file for ECDSA certificates. I expect this 
will be a bigger problem when Let’s Encrypt starts using ECDSA intermediates.

Removing the intermediate from the ssl_alt_cert file solves the problem (but 
then doesn’t allow an ECDSA intermediate to be specified).

Configuration:
# 2.2.34 (874deae): /etc/dovecot/dovecot.conf
# Pigeonhole version 0.4.22 (22940fb7)
# OS: Linux 4.14.17-x86_64-linode99 x86_64 Debian 9.3 ext4
# Hostname: [redacted]
auth_mechanisms = plain login
listen = [ipv4 redacted], [ipv6 redacted]
mail_location = maildir:/var/mail/vhosts/%d/%n
mail_privileged_group = mail
namespace inbox {
  inbox = yes
  location = 
  mailbox Drafts {
special_use = \Drafts
  }
  mailbox Junk {
special_use = \Junk
  }
  mailbox Sent {
special_use = \Sent
  }
  mailbox "Sent Messages" {
special_use = \Sent
  }
  mailbox Trash {
special_use = \Trash
  }
  prefix = 
}
passdb {
  args = /etc/dovecot/dovecot-sql.conf.ext
  driver = sql
}
passdb {
  args = /etc/dovecot/dovecot-ldap.conf.ext
  driver = ldap
}
protocols = imap lmtp
service auth-worker {
  user = vmail
}
service auth {
  unix_listener /var/spool/postfix/private/auth {
group = postfix
mode = 0666
user = postfix
  }
  unix_listener auth-userdb {
mode = 0600
user = vmail
  }
  user = dovecot
}
service imap-login {
  inet_listener imap {
port = 0
  }
  inet_listener imaps {
port = 993
ssl = yes
  }
}
service lmtp {
  unix_listener /var/spool/postfix/private/dovecot-lmtp {
group = postfix
mode = 0600
user = postfix
  }
}
ssl = required
ssl_alt_cert =

Re: Sieve filter doesn't respect mailbox separator

2018-03-08 Thread Konstantinos Tsakiltzidis 
The problem seems to be my Public/.. mailboxes, and the home path of 
each one.


This apparently is not a bug, just a very hard configuration detail.


On 03/06/2018 04:15 PM, Jungersen, Danjel - Jungersen Grafisk ApS wrote:

On 2 Mar 2018 at 18:10, Konstantinos Tsakiltzidis wrote:

> namespace separator is '.',
> this sieve script incorrectly tries to put the mail inside a mailbox
> rather that beside it, for example if the mailbox is named 'example',
> the mail will be put in the path 'example/.Spam' instead of
> 'example.Spam'
> 
> require ["fileinto"];

> if header :contains "X-Spam" "yes" {
>    fileinto "Spam";
> }
Could it be related to the fact that in one line you say "Junk" (In 
dovecot) and in another you say "Spam" (In sieve) ??


//Danjel
> 
> 
> 
> # 2.2.33.2 (d6601f4ec): /etc/dovecot/dovecot.conf

> # Pigeonhole version 0.4.21 (92477967)
> # OS: Linux 4.9.0-6-amd64 x86_64 Debian 9.1 ext4
> lda_mailbox_autocreate = yes
> lda_mailbox_autosubscribe = yes
> mail_debug = yes
> mail_location = maildir:/var/vmail/%d/%n
> managesieve_notify_capability = mailto
> managesieve_sieve_capability = fileinto reject envelope
> encoded-character vacation subaddress comparator-i;ascii-numeric
> relational regex imap4flags copy include variables body enotify
> environment mailbox date index ihave duplicate mime foreverypart
> extracttext namespace inbox {
>    inbox = yes
>    location =
>    mailbox Drafts {
>      special_use = \Drafts
>    }
>    mailbox Junk {
>      special_use = \Junk
>    }
>    mailbox Sent {
>      special_use = \Sent
>    }
>    mailbox "Sent Messages" {
>      special_use = \Sent
>    }
>    mailbox Trash {
>      special_use = \Trash
>    }
>    prefix =
>    separator = .
>    subscriptions = yes
>    type = private
> }
> namespace modulus {
>    list = children
>    location = maildir:/var/vmail/%d/Public:INDEXPVT=~/public/indexes
>    mailbox admin {     auto = subscribe   }   mailbox support {
>      auto = subscribe   }  mailbox telecoms {     auto =
>  subscribe   }   prefix = Public.   separator = .   subscriptions
>  = yes   type = public
> }
> passdb {
>    driver = pam
> }
> plugin {
>    acl = vfile
>    mail_log_events = flag_change
>    mail_log_fields = box flags uid
>    sieve = ~/dovecot.sieve
>    sieve_before = /var/vmail/global.sieve
>    sieve_dir = ~/sieve
>    sieve_global_dir = /var/vmail/sieve
> }
> protocols = " imap lmtp sieve lmtp"
> service auth {
>    unix_listener /var/spool/postfix/private/auth {
>      group = mail
>      mode = 0666
>      user = postfix
>    }
>    unix_listener auth-userdb {
>      group = mail
>      mode = 0666
>      user = vmail
>    }
> }
> service imap-login {
>    inet_listener imap {
>      port = 0
>    }
> }
> service lmtp {
>    unix_listener /var/spool/postfix/private/dovecot-lmtp {
>      group = postfix
>      mode = 0600
>      user = postfix
>    }
> }
> service managesieve-login {
>    inet_listener sieve {
>      port = 4190
>    }
>    process_min_avail = 0
>    service_count = 1
>    vsz_limit = 64 M
> }
> service managesieve {
>    process_limit = 1024
> }
> ssl = required
> ssl_cert =  ssl_key =  # hidden, use -P to show it
> userdb {
>    driver = passwd
> }
> protocol imap {
>    mail_max_userip_connections = 20
>    mail_plugins = " mail_log notify acl"
>    passdb {
>      args = /etc/dovecot/dovecot-ldap-users.conf.ext
>      driver = ldap
>      name =
>    }
>    userdb {
>      args = uid=vmail gid=mail home=/var/vmail/%d/%n
>      driver = static
>      name =
>    }
> }
> protocol lda {
>    mail_plugins = " sieve acl"
>    userdb {
>      args = /etc/dovecot/dovecot-ldap-users.conf.ext
>      driver = ldap
>      name =
>      override_fields = uid=vmail gid=mail home=/var/vmail/%d/%n
>  }   userdb {     args = /etc/dovecot/dovecot-ldap-groups.conf.ext
>      driver = ldap     name =     override_fields = uid=vmail
>  gid=mail home=/var/vmail/%d/Public/.%n
> mail=maildir:/var/vmail/%d/Public/.%n
>    }
> }
> protocol lmtp {
>    mail_plugins = " sieve acl"
>    postmaster_address = postmas...@modulus.gr
>    userdb {
>      args = /etc/dovecot/dovecot-ldap-users.conf.ext
>      driver = ldap
>      name =
>      override_fields = uid=vmail gid=mail home=/var/vmail/%d/%n
>  }   userdb {     args = /etc/dovecot/dovecot-ldap-groups.conf.ext
>      driver = ldap     name =     override_fields = uid=vmail
>  gid=mail home=/var/vmail/%d/Public/.%n
> mail=maildir:/var/vmail/%d/Public/.%n
>    }
> }
> protocol doveadm {
>    userdb {
>      args = /etc/dovecot/dovecot-ldap-users.conf.ext
>      driver = ldap
>      name =
>      override_fields = uid=vmail gid=mail home=/var/vmail/%d/%n
>  }   userdb {     args = /etc/dovecot/dovecot-ldap-groups.conf.ext
>      driver = ldap     name =     override_fields = uid=vmail
>  gid=mail home=/var/vmail/%d/Public/.%n
> mail=maildir:/var/vmail/%d/Public/.%n
>    }
> }
> protocol sieve {
>    mail_max_userip_connections = 10
>   managesieve_implementation_string =

Re: Virtual Mailboxes redux

2018-03-08 Thread @lbutlr 
-- 
I AM NOT A LICENSED HAIRSTYLIST Bart chalkboard Ep. AABF04


On 2018-03-08 (00:05 MST), Aki Tuomi  wrote:
> 
> On 08.03.2018 03:09, @lbutlr wrote:
>> On 2018-03-06 (14:41 MST), "@lbutlr"  wrote:
 and using "doveadm search mailbox $VIRTUAL_MAILBOX”
>>> # doveadm search mailbox "@virtual.day" -u kremels 
>>> #
>> Any clues on this? As far as I can tell from the documentation and the list 
>> this should work, but it is not.
>> 
> You actually have a mailbox called '@virtual.day'?

A virtual mailbox, yes. and @virtual.month

Re: Authentication Problem with dovecot-2.3.0.1

2018-03-08 Thread Aki Tuomi 

> On 08 March 2018 at 10:00 Odhiambo Washington  wrote:
> 
> 
> On 8 March 2018 at 10:09, Aki Tuomi  wrote:
> 
> >
> >
> > On 07.03.2018 22:07, Odhiambo Washington wrote:
> >
> > I am a little confused here.
> >
> > I have been running 2.2.34 which I installed in /opt/dovecot2.2
> > I installed 2.3.0.1 to /opt/dovecot23
> >
> > I then used config files from /opt/dovecot2.2/etc/dovecot to
> > /opt/dovecot2.3/etc/dovecot and all I did was sed -i.BAK
> > 's/dovecot2.2/dovecot2.3/g'. Dovecot started and was running file.
> >
> > Next, I manually crafted config files for 2.3.0.1 based on the example
> > config files provided which diff-ing those with what I had for 2.2.34. I
> > doub't if I missed something crucial during the process.
> >
> > 1. I realized that I cannot start 2.3.0.1 when I enable submission, since
> > my Exim MTA is already using that port. This persists even if I tell the
> > submission protocol to use a different port than 587. I tested 2587, but it
> > would appear that 587 is hard-coded!
> >
> > 2. I realize that "unix_listener auth-client" service ceased to exist!
> >
> > 3. *I realized that while 2.2.34 runs with default_pass_scheme =
> > MD5-CRYPT, 2.3.0.1 would not run with it.*
> >
> > 4. I have run dovecot -n from my 2.2.x installation and 2.3.x installation
> > and here is the diff from the two files.
> >
> > I am confused why authentication is failing with dovecot-2.3.0.1 when it
> > uses 2.3.x config files using MD5-CRYPT scheme while it is succeeding with
> > dovecot-2.2.34 using the same.
> > *Mar 07 22:30:22 auth: Info: sql(user.n...@domain.name
> > ,192.168.55.97,<4CETl9dmscvAqDdh>): Requested
> > DIGEST-MD5 scheme, but we have only MD5-CRYPT*
> >
> > Maybe the problem is elsewhere??? I need a 3rd eye to help me.
> >
> > For now
> >
> > root@gw:~wash/public_html # sdiff dovecot-2.2.txt dovecot-2.3.txt | less
> > # 2.2.34 (874deae): /opt/dovecot2.2/etc/dovecot/dovecot.conf  | # 2.3.0.1
> > (ffd8a29): /opt/dovecot2.3/etc/dovecot/dovecot.conf
> > # OS: FreeBSD 9.3-STABLE i386  ufs  # OS:
> > FreeBSD 9.3-STABLE i386  ufs
> > # Hostname: localhost <
> > auth_cache_size = 20 M
> > auth_cache_size = 20 M
> > auth_master_user_separator = *
> > auth_master_user_separator = *
> > auth_mechanisms = plain login digest-md5
> > auth_mechanisms = plain login digest-md5
> > auth_socket_path = /var/run/dovecot/auth-userdb
> >  auth_socket_path = /var/run/dovecot/auth-userdb
> > base_dir = /var/run/dovecot/base_dir =
> > /var/run/dovecot/
> > default_login_user = dovecot
> > default_login_user = dovecot
> > disable_plaintext_auth = no
> >  disable_plaintext_auth = no
> > first_valid_gid = 0
> >  first_valid_gid = 0
> > first_valid_uid = 26
> > first_valid_uid = 26
> > hostname = gw hostname = gw
> > info_log_path = /var/log/dovecot.log
> > info_log_path = /var/log/dovecot.log
> > mail_location = maildir:/var/spool/virtual/%d/%n/Maildir:INDE
> >  mail_location = maildir:/var/spool/virtual/%d/%n/Maildir:INDE
> > mail_plugins = " quota"   <
> > namespace inbox {   namespace
> > inbox {
> >   inbox = yes inbox =
> > yes
> >   location =  location
> > =
> >   mailbox Drafts {mailbox
> > Drafts {
> > special_use = \Drafts
> >  special_use = \Drafts
> >   }   }
> >   mailbox Junk {  mailbox
> > Junk {
> > special_use = \Junk
> >  special_use = \Junk
> >   }   }
> >   mailbox Sent {  mailbox
> > Sent {
> > special_use = \Sent
> >  special_use = \Sent
> >   }   }
> >   mailbox "Sent Messages" {   mailbox
> > "Sent Messages" {
> > special_use = \Sent
> >  special_use = \Sent
> >   }   }
> >   mailbox Trash { mailbox
> > Trash {
> > special_use = \Trash
> > special_use = \Trash
> >   }   }
> >   prefix =prefix =
> > }   }
> > passdb {passdb {
> >   args = /opt/dovecot2.2/etc/dovecot/passwd.master_users.ext  |   args =
> > /opt/dovecot2.3/etc/dovecot/passwd.master_users.ext
> >   driver = passwd-file