I have been trying to follow the "instructions" at "http://blog.iandreev.com/?p=1975#dovecot" and they seem to be pretty good. everything works until I get to the part were I test the dovecot installation and it keeps failing. I get an AUTH fail error at the "telnet localhost 110" login commands I am trying to setup 3 domains: domain1.us domain2.com domain3.com I have 4 users entered in the /etc/dovecot/users file I followed the instructions for creating an encrypted password but don't think it is correct and I don't have the knowledge to say why. Just doesn't feel right. I admit I am over my head and the learning curve just got exponential - any help at all would be really appreciated. System: QEMU/KVM vitrual install Centos 7.01 basic install 4096 G Ram 4 proc 120 G HD unit is behind an IPCop firewall with port forwarding. internal IP 192.168.1.155 external IP on request have username in /etc/dovecot/users as such: mynamehere at mydomainhere.us: Turned on debuggin and log file shows: May 18 16:45:02 auth: Debug: auth client connected (pid=5639) May 18 16:45:16 auth: Debug: client in: AUTH 1 PLAIN service=pop3 secured session=2pP4xSQzzgAAAAAAAAAAAAAAAAAAAAAB lip=::1 rip=::1 lport=110 rport=33742 $ May 18 16:45:16 auth: Debug: passwd-file(mynamehere at mydomainhere.us,::1,<2pP4xSQzzgAAAAAAAAAAAAAAAAAAAAAB>): lookup: user=mynamehere at mydomainhere.us file=/etc/dovecot/users May 18 16:45:16 auth: Info: passwd-file(mynamehere at mydomainhere.us,::1,<2pP4xSQzzgAAAAAAAAAAAAAAAAAAAAAB>): Password mismatch May 18 16:45:18 auth: Debug: client passdb out: FAIL 1 user=mynameherel at mydomainhere.us May 18 16:45:20 pop3-login: Info: Aborted login (auth failed, 1 attempts in 4 secs): user=<mynamehere at mydomain.us>, method=PLAIN, rip=::1, lip=::1, secured, session=<2pP4xSQzzgAAAAAA$
On 05/18/16 17:07, Mike Ponto wrote:> I have been trying to follow the "instructions" at > "http://blog.iandreev.com/?p=1975#dovecot" and they seem to be pretty > good. everything works until I get to the part were I test the > dovecot installation and it keeps failing. > I get an AUTH fail error at the "telnet localhost 110" login commands > > I am trying to setup 3 domains: > domain1.us > domain2.com > domain3.com > I have 4 users entered in the /etc/dovecot/users file > I followed the instructions for creating an encrypted password but > don't think it is correct and I don't have the knowledge to say why. > Just doesn't feel right. > > I admit I am over my head and the learning curve just got exponential > - any help at all would be really appreciated. > > > System: > QEMU/KVM vitrual install > Centos 7.01 > basic install > 4096 G Ram > 4 proc > 120 G HD > > unit is behind an IPCop firewall with port forwarding. > internal IP 192.168.1.155 > external IP on request > > have username in /etc/dovecot/users as such: > mynamehere at mydomainhere.us: > > Turned on debuggin and log file shows: > May 18 16:45:02 auth: Debug: auth client connected (pid=5639) > May 18 16:45:16 auth: Debug: client in: AUTH 1 PLAIN > service=pop3 secured > session=2pP4xSQzzgAAAAAAAAAAAAAAAAAAAAAB lip=::1 rip=::1 > lport=110 rport=33742 $ > May 18 16:45:16 auth: Debug: > passwd-file(mynamehere at mydomainhere.us,::1,<2pP4xSQzzgAAAAAAAAAAAAAAAAAAAAAB>): > lookup: user=mynamehere at mydomainhere.us file=/etc/dovecot/users > May 18 16:45:16 auth: Info: > passwd-file(mynamehere at mydomainhere.us,::1,<2pP4xSQzzgAAAAAAAAAAAAAAAAAAAAAB>): > Password mismatch > May 18 16:45:18 auth: Debug: client passdb out: FAIL 1 > user=mynameherel at mydomainhere.us > May 18 16:45:20 pop3-login: Info: Aborted login (auth failed, 1 > attempts in 4 secs): user=<mynamehere at mydomain.us>, method=PLAIN, > rip=::1, lip=::1, secured, session=<2pP4xSQzzgAAAAAA$doveconf -n would have been helpful man doveadm-pw then edit your passdb { scheme = SHA512-CRYPT } telnet is user-error prone. try mutt -f imap://user at example.com@mail.example.com
I used his blog for freebsd. He gets you really close, but I found a few lines deprecated, but IIRC in postfix mostly.? The sha512 scheme works fine. But are you sure you did the postmap earlier in the instructions? What I like about his scheme is it is a stick shift versus automatic. That is there is no port 80 means to add or delete users. This is fine for a mail server with a small number of addresses. I prefer this set up rather than having jerks/bots trying to login to some web based email account management panel. But you need to follow the instructions exactly else you will grind the gears. ?As I add accounts, I occasional miss the postmap. Again to avoid hackers, I didn't add the roundcube feature. ?(Technically you would say this reduces the attack surface.) ? Original Message ? From: Mike Ponto Sent: Wednesday, May 18, 2016 3:09 PM To: dovecot at dovecot.org Subject: passwd mismatch I have been trying to follow the "instructions" at "http://blog.iandreev.com/?p=1975#dovecot" and they seem to be pretty good. everything works until I get to the part were I test the dovecot installation and it keeps failing. I get an AUTH fail error at the "telnet localhost 110" login commands I am trying to setup 3 domains: domain1.us domain2.com domain3.com I have 4 users entered in the /etc/dovecot/users file I followed the instructions for creating an encrypted password but don't think it is correct and I don't have the knowledge to say why. Just doesn't feel right. I admit I am over my head and the learning curve just got exponential - any help at all would be really appreciated. System: QEMU/KVM vitrual install Centos 7.01 basic install 4096 G Ram 4 proc 120 G HD unit is behind an IPCop firewall with port forwarding. internal IP 192.168.1.155 external IP on request have username in /etc/dovecot/users as such: mynamehere at mydomainhere.us: Turned on debuggin and log file shows: May 18 16:45:02 auth: Debug: auth client connected (pid=5639) May 18 16:45:16 auth: Debug: client in: AUTH 1 PLAIN service=pop3 secured session=2pP4xSQzzgAAAAAAAAAAAAAAAAAAAAAB lip=::1 rip=::1 lport=110 rport=33742 $ May 18 16:45:16 auth: Debug: passwd-file(mynamehere at mydomainhere.us,::1,<2pP4xSQzzgAAAAAAAAAAAAAAAAAAAAAB>): lookup: user=mynamehere at mydomainhere.us file=/etc/dovecot/users May 18 16:45:16 auth: Info: passwd-file(mynamehere at mydomainhere.us,::1,<2pP4xSQzzgAAAAAAAAAAAAAAAAAAAAAB>): Password mismatch May 18 16:45:18 auth: Debug: client passdb out: FAIL 1 user=mynameherel at mydomainhere.us May 18 16:45:20 pop3-login: Info: Aborted login (auth failed, 1 attempts in 4 secs): user=<mynamehere at mydomain.us>, method=PLAIN, rip=::1, lip=::1, secured, session=<2pP4xSQzzgAAAAAA$
here is the "doveconf -n" as requested
[root at email conf.d]# doveconf -n
# 2.2.10: /etc/dovecot/dovecot.conf
# OS: Linux 3.10.0-327.el7.x86_64 x86_64 CentOS Linux release 7.2.1511
(Core)
auth_debug = yes
disable_plaintext_auth = no
log_path = /var/log/dovecot.log
mail_gid = 1001
mail_home = /var/mail/vhosts/%d/%n
mail_location = maildir:~
mail_privileged_group = vpostfix
mail_uid = 1001
mbox_write_locks = fcntl
namespace inbox {
inbox = yes
location mailbox Drafts {
special_use = \Drafts
}
mailbox Junk {
special_use = \Junk
}
mailbox Sent {
special_use = \Sent
}
mailbox "Sent Messages" {
special_use = \Sent
}
mailbox Trash {
special_use = \Trash
}
prefix }
passdb {
args = scheme=CRYPT username_format=%u /etc/dovecot/users
driver = passwd-file
}
service auth {
unix_listener /var/spool/postfix/private/auth {
group = vpostfix
mode = 0666
user = vpostfix
}
unix_listener auth-userdb {
group = vpostfix
mode = 0600
user = vpostfix
}
}
ssl = no
ssl_cert = </etc/pki/dovecot/certs/dovecot.pem
ssl_key = </etc/pki/dovecot/private/dovecot.pem
userdb {
args = username_format=%u /etc/dovecot/users
driver = passwd-file
}
[root at email conf.d]#
On 05/18/2016 05:31 PM, Edgar Pettijohn wrote:>
>
> On 05/18/16 17:07, Mike Ponto wrote:
>> I have been trying to follow the "instructions" at
>> "http://blog.iandreev.com/?p=1975#dovecot" and they seem to
be pretty
>> good. everything works until I get to the part were I test the
>> dovecot installation and it keeps failing.
>> I get an AUTH fail error at the "telnet localhost 110" login
commands
>>
>> I am trying to setup 3 domains:
>> domain1.us
>> domain2.com
>> domain3.com
>> I have 4 users entered in the /etc/dovecot/users file
>> I followed the instructions for creating an encrypted password but
>> don't think it is correct and I don't have the knowledge to say
why.
>> Just doesn't feel right.
>>
>> I admit I am over my head and the learning curve just got exponential
>> - any help at all would be really appreciated.
>>
>>
>> System:
>> QEMU/KVM vitrual install
>> Centos 7.01
>> basic install
>> 4096 G Ram
>> 4 proc
>> 120 G HD
>>
>> unit is behind an IPCop firewall with port forwarding.
>> internal IP 192.168.1.155
>> external IP on request
>>
>> have username in /etc/dovecot/users as such:
>> mynamehere at mydomainhere.us:
>>
>> Turned on debuggin and log file shows:
>> May 18 16:45:02 auth: Debug: auth client connected (pid=5639)
>> May 18 16:45:16 auth: Debug: client in: AUTH 1 PLAIN
>> service=pop3 secured
>> session=2pP4xSQzzgAAAAAAAAAAAAAAAAAAAAAB lip=::1 rip=::1
>> lport=110 rport=33742 $
>> May 18 16:45:16 auth: Debug:
>> passwd-file(mynamehere at
mydomainhere.us,::1,<2pP4xSQzzgAAAAAAAAAAAAAAAAAAAAAB>):
>> lookup: user=mynamehere at mydomainhere.us file=/etc/dovecot/users
>> May 18 16:45:16 auth: Info:
>> passwd-file(mynamehere at
mydomainhere.us,::1,<2pP4xSQzzgAAAAAAAAAAAAAAAAAAAAAB>):
>> Password mismatch
>> May 18 16:45:18 auth: Debug: client passdb out: FAIL 1
>> user=mynameherel at mydomainhere.us
>> May 18 16:45:20 pop3-login: Info: Aborted login (auth failed, 1
>> attempts in 4 secs): user=<mynamehere at mydomain.us>,
method=PLAIN,
>> rip=::1, lip=::1, secured, session=<2pP4xSQzzgAAAAAA$
> doveconf -n would have been helpful
>
> man doveadm-pw
>
> then edit your passdb { scheme = SHA512-CRYPT }
> telnet is user-error prone. try mutt -f
> imap://user at example.com@mail.example.com
This got it!! Edgar you were right about the doveadm usage. the tutorial leaves out the part about using a username. That is what was bugging me and I never saw it. Thanks for the extra eyes. dud - your are my hero for the 3 hours. On 05/18/2016 05:31 PM, Edgar Pettijohn wrote:> > > On 05/18/16 17:07, Mike Ponto wrote: >> I have been trying to follow the "instructions" at >> "http://blog.iandreev.com/?p=1975#dovecot" and they seem to be pretty >> good. everything works until I get to the part were I test the >> dovecot installation and it keeps failing. >> I get an AUTH fail error at the "telnet localhost 110" login commands >> >> I am trying to setup 3 domains: >> domain1.us >> domain2.com >> domain3.com >> I have 4 users entered in the /etc/dovecot/users file >> I followed the instructions for creating an encrypted password but >> don't think it is correct and I don't have the knowledge to say why. >> Just doesn't feel right. >> >> I admit I am over my head and the learning curve just got exponential >> - any help at all would be really appreciated. >> >> >> System: >> QEMU/KVM vitrual install >> Centos 7.01 >> basic install >> 4096 G Ram >> 4 proc >> 120 G HD >> >> unit is behind an IPCop firewall with port forwarding. >> internal IP 192.168.1.155 >> external IP on request >> >> have username in /etc/dovecot/users as such: >> mynamehere at mydomainhere.us: >> >> Turned on debuggin and log file shows: >> May 18 16:45:02 auth: Debug: auth client connected (pid=5639) >> May 18 16:45:16 auth: Debug: client in: AUTH 1 PLAIN >> service=pop3 secured >> session=2pP4xSQzzgAAAAAAAAAAAAAAAAAAAAAB lip=::1 rip=::1 >> lport=110 rport=33742 $ >> May 18 16:45:16 auth: Debug: >> passwd-file(mynamehere at mydomainhere.us,::1,<2pP4xSQzzgAAAAAAAAAAAAAAAAAAAAAB>): >> lookup: user=mynamehere at mydomainhere.us file=/etc/dovecot/users >> May 18 16:45:16 auth: Info: >> passwd-file(mynamehere at mydomainhere.us,::1,<2pP4xSQzzgAAAAAAAAAAAAAAAAAAAAAB>): >> Password mismatch >> May 18 16:45:18 auth: Debug: client passdb out: FAIL 1 >> user=mynameherel at mydomainhere.us >> May 18 16:45:20 pop3-login: Info: Aborted login (auth failed, 1 >> attempts in 4 secs): user=<mynamehere at mydomain.us>, method=PLAIN, >> rip=::1, lip=::1, secured, session=<2pP4xSQzzgAAAAAA$ > doveconf -n would have been helpful > > man doveadm-pw > > then edit your passdb { scheme = SHA512-CRYPT } > telnet is user-error prone. try mutt -f > imap://user at example.com@mail.example.com