dovecot - Mar 2013 - dovecot 2 in ubuntu 12.04 or Debian Squeeze

Dear sir,
 
I have to set up a mail gateway which will be explored to Internet and a
secure mail server in the Intranet.
I need a smart imap proxy in the mail gateway which will fetch the mail from
server and present to user through either a stand alone mail client or a web
mail client.
All authentication is through ldap server.
 
I have installed Dovecot 2.2 Unstable in my Ubuntu 12.04 with ssl enabled
But when I am starting dovecot, I am getting the following error

*doveconf: Fatal: Error in configuration file
/usr/local/etc/dovecot/conf.d/10-ssl.conf line 12: Unknown setting:
ssl_cert*
 
I couldn't figure out what is wrong. Please help me to sort it out.
 
Thanks & Regards,
 
Suja PV
LEOS
 



--
View this message in context:
http://dovecot.2317879.n4.nabble.com/dovecot-2-in-ubuntu-12-04-or-Debian-Squeeze-tp40634.html
Sent from the Dovecot mailing list archive at Nabble.com.

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On Tue, 5 Mar 2013, pvsuja wrote:
> I have installed Dovecot 2.2 Unstable in my Ubuntu 12.04 with ssl enabled
> But when I am starting dovecot, I am getting the following error
>
> *doveconf: Fatal: Error in configuration file
> /usr/local/etc/dovecot/conf.d/10-ssl.conf line 12: Unknown setting:
> ssl_cert*
What's line #12 in /usr/local/etc/dovecot/conf.d/10-ssl.conf ?
Does it match http://wiki2.dovecot.org/SSL ?

What's your doveconf -n output?

Does ./sbin/dovecot --build-options tells you that SSL is build in at all?

Are you sure that you try to start Dovecot v2 rather than Dovecot v1? I 
mean, maybe you have multiple versions of Dovecot on your system and the 
init script starts another binary with the new config.

- -- 
Steffen Kaiser
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.11 (GNU/Linux)

iQEVAwUBUTbkwF3r2wJMiz2NAQIx2wf+J4Jl2j6V45T+F7wrezB4Da4O3oimHgN3
7MKwi07kxFcsXyexmvEPQFBJGZuit6Kh7fsr/HQ06LD1+mMNOQbQKKpQPR9Ohc6M
VQ6GrVC0geHYRLohUkvUoU450HqXWwa3bM5w57phlAaWp4js6+orQ/OcY+hO1x1U
f0SR0P6dmJa9pelbarqRvWzACpVWzOd3WVB8LB43S08tI/dY2bxRjmEuQPUcwdfh
J5CX1YeJ3JZyQr5kp95+KWvUXnLM2jHU8VQXaOTn7dWC3+dZ/FgYUMgcD1cgQmDt
v+Q0ceyID7N/A/c1tAzq8BbNu3MbOLunCMjIIW4JyJFHryOgP7UGfQ==RHx6
-----END PGP SIGNATURE-----

Line #12 is 
ssl_cert = </etc/ssl/certs/dovecot.pem

doveconf -n gives the error:

&lt;b>doveconf: Fatal: Error in configuration file
/usr/local/etc/dovecot/conf.d/10-ssl.conf line 12: Unknown setting:
ssl_cert*

./sbin/dovecot --build-options gives:
*Build options: ioloop=epoll notify=inotify ipv6 openssl io_block_size=8192
Mail storages: shared mdbox sdbox maildir mbox cydir imapc_stub pop3c_stub
raw
SQL drivers:
Passdb: checkpassword passwd passwd-file shadow
Userdb: checkpassword nss passwd prefetch passwd-file
*

Note: I have not changed any settings. Simply copied from example_config and
tried doveconf and getting this error.





--
View this message in context:
http://dovecot.2317879.n4.nabble.com/dovecot-2-in-ubuntu-12-04-or-Debian-Squeeze-tp40634p40640.html
Sent from the Dovecot mailing list archive at Nabble.com.

Am 06.03.2013 09:01, schrieb pvsuja:
> Line #12 is
> ssl_cert = </etc/ssl/certs/dovecot.pem
>
> doveconf -n gives the error:
>
> &lt;b>doveconf: Fatal: Error in configuration file
> /usr/local/etc/dovecot/conf.d/10-ssl.conf line 12: Unknown setting:
> ssl_cert*
>
Please post your 10-ssl.conf file on Pastebin and add the link.

Greetings, Jan

I installed the stable version 2.1 and its working fine.
Now there is  a separate issue.
I have set up my mail server to disable all plaintext auth.
Now when i am trying to login with the imapcproxy, its giving error Unknown
user/password

The log says:

In proxy:
/mailproxy dovecot: imap-login: Aborted login (auth failed, 1 attempts in 2
secs): user=<xxx>, method=PLAIN, rip=127.0.0.1, lip=127.0.0.1, TLS,
session=<1pBG/03XogB/AAAB>
/
In server:
/mailserver dovecot: imap-login: Disconnected (tried to use disabled
plaintext auth): rip=10.x.x.x, lip=10.x.x.y/


Regards, 
Suja





--
View this message in context:
http://dovecot.2317879.n4.nabble.com/dovecot-2-in-ubuntu-12-04-or-Debian-Squeeze-tp40634p40664.html
Sent from the Dovecot mailing list archive at Nabble.com.

Small correction:

Am 14.03.2013 06:41, schrieb pvsuja:
> how will i make sure, auth is done after starttls only?
 > In proxy:
 > /mailproxy dovecot: imap-login: Aborted login (auth failed, 1 
attempts in 2
 > secs): user=<xxx>, method=PLAIN, rip=127.0.0.1, lip=127.0.0.1, TLS, 
session=<1pBG/03XogB/AAAB>

your proxy says that the authentication was going over TLS. :)

Yes,
proxy log says that its over TLS.
but the server is receiving username and password in plain text. I verified
it in wireshark.
I am using squirrelmail web client n had configured it for STARTTLS.


*My dovecot settings for Server:*

suja at mailserver:/etc/dovecot# dovecot -n
# 1.2.15: /etc/dovecot/dovecot.conf
# OS: Linux 2.6.32-5-amd64 x86_64 Debian 6.0.6 ext3
log_timestamp: %Y-%m-%d %H:%M:%S 
ssl: required
ssl_cert_file: /etc/postfix/certs/public_cert.pem
ssl_key_file: /etc/postfix/certs/private_key.pem
login_dir: /var/run/dovecot/login
login_executable: /usr/lib/dovecot/imap-login
mail_privileged_group: mail
mail_location: maildir:/email/%n:INBOX=/email/%n/INBOX
mbox_write_locks: fcntl dotlock
auth default:
  mechanisms: plain login
  passdb:
    driver: ldap
    args: /etc/dovecot/dovecot-ldap.conf
  userdb:
    driver: ldap
    args: /etc/dovecot/dovecot-ldap-userdb.conf




*My dovecot settings for Proxy:*

suja at mailproxy:/usr/local/etc/dovecot# dovecot -n
# 2.1.15: /usr/local/etc/dovecot/dovecot.conf
# OS: Linux 3.2.0-35-generic-pae i686 Ubuntu 12.04.1 LTS 
auth_mechanisms = plain login
imapc_host = 10.131.1.16
mail_gid = imapproxy
mail_home = /home/imapproxy/%u
mail_location = imapc:~/imapc
mail_uid = imapproxy
passdb {
  args = host=10.131.1.16
  default_fields = userdb_imapc_user=%u userdb_imapc_password=%w
  driver = imap
}
protocols = imap
service auth {
  inet_listener {
    port = 12345
  }
}
ssl = required
ssl_ca = </usr/lib/ssl/misc/demoCA/cacert.pem
ssl_cert = </usr/lib/ssl/misc/public_cert.pem
ssl_key = </usr/lib/ssl/misc/private_key.pem
userdb {
  driver = prefetch
}


Thanks & regards,

Suja




--
View this message in context:
http://dovecot.2317879.n4.nabble.com/dovecot-2-in-ubuntu-12-04-or-Debian-Squeeze-tp40634p40862.html
Sent from the Dovecot mailing list archive at Nabble.com.