Recently, I've installed the centOS 6. The purpose of the installation to use this server as Mail server. Where I've installed **Exim version 4.84_2 #1** and **Dovecot**. I've followed this blog post and I've tried to solve the below given error, however I do not have luck to resolve it. 2017-02-06 07:07:27 no host name found for IP address x.x.x.x 2017-02-06 07:07:32 dovecot_plain authenticator failed for ([x.x.x.x]) [x.x.x.x]: 535 Incorrect authentication data (set_id=mailclown@com-supportnet.work) 2017-02-06 07:07:40 dovecot_plain authenticator failed for ([x.x.x.x]) [x.x.x.x]: 535 Incorrect authentication data (set_id=mailclown@com-supportnet.work) 2017-02-06 07:07:48 dovecot_login authenticator failed for ([x.x.x.x]) [x.x.x.x]: 535 Incorrect authentication data (set_id=mailclown@com-supportnet.work) 2017-02-06 07:07:52 dovecot_login authenticator failed for ([x.x.x.x]) [x.x.x.x]: 535 Incorrect authentication data (set_id=mailclown@com-supportnet.work) Following is the output the configuration which I used from the above blog post. [root@com-supportnet ~]# dovecot -n # 2.0.9: /etc/dovecot/dovecot.conf # OS: Linux 2.6.32-642.11.1.el6.x86_64 x86_64 CentOS release 6.8 (Final) auth_mechanisms = plain login auth_socket_path = /var/run/dovecot/auth-userdb mail_location = maildir:~/mail mbox_write_locks = fcntl passdb { driver = pam } service auth { unix_listener auth-client { mode = 0777 user = exim } } ssl_cert = /etc/ssl/mail.com-supportnet.work.crt ssl_key = /etc/ssl/mail.com-supportnet.work.key userdb { driver = passwd } Please let me know, how I can resolve this error.

I am trying to set up my own mail server (for 'fun'). I followed this tutorial to the bone. But I get this error message: imap-login: Disconnected (auth failed, 2 attempts in 9 secs): user=, method=PLAIN, rip=203.210.7.43, lip=1.2.3.4, TLS: Disconnected, session= I am using the SSL certificate and key I have for my nginx web server, on the same machine. I disabled plaintext authentication by adding these two lines (as per tutorial) to /etc/dovecot/conf.d/10-auth.conf: disable_plaintext_auth = yes auth_mechanisms = plain login But the method in the log entry still says PLAIN, and TLS is Disconnected. Could that be an issue? There're too many configurations to post them all here. if you think you need more information, please tell me which parts and I will update my question.

I'm using Vultr for Web Hosting and according to them they have unblocked all SMTP Ports (25, 465, 587, 2525). Now after setting up apache server and installing Postfix, Dovecot and SpamAssassin when I tested it by sending the mail I got this error: Connection could not be established. getaddrinfo for mail.domain.com failed: Temporary failure in name resolution When I run nslookup against the domain I get a valid IP but when I run it against mail.domain.com I get this error message: ** server can't find mail.domain.com: SERVFAIL I have allow both port 25 and 587 in the ufw. I checked the status of both port 25 and 587 using different technique that I found on the internet (nmap, netstat, iptables). These are the result: Does anyone know what I'm doing wrong and how can I open port 25 and 587 so that I will be able to send and receive emails. Thanks

I am trying to setup a mail server with postfix/dovecot/maria DB on centos 7 and have seem to hit a roadblock. I am not able to send emails to internal users and the logs suggest "mail transport unavailable". I checked few resources online and dont seem to find help, the services are up and running. /var/log/maillog Mar 9 21:30:41 server postfix/qmgr: 2222637E93F: from=, size=472, nrcpt=1 (queue active) Mar 9 21:30:41 server postfix/qmgr: warning: connect to transport private/dovecot: No such file or directory Mar 9 21:30:41 server postfix/error: 2222637E93F: to=, relay=none, delay=0.14, delays=0.09/0.03/0/0.02, dsn=4.3.0, status=deferred (mail transport unavailable) Mar 9 21:34:53 server postfix/pickup: 59F6E2D66A4: uid=0 from= Mar 9 21:34:53 server postfix/cleanup: 59F6E2D66A4: message-id= Mar 9 21:34:53 server postfix/qmgr: 59F6E2D66A4: from=, size=472, nrcpt=1 (queue active) Mar 9 21:34:53 server postfix/qmgr: warning: connect to transport private/dovecot: No such file or directory Mar 9 21:34:53 server postfix/error: 59F6E2D66A4: to=, relay=none, delay=0.17, delays=0.12/0.03/0/0.03, dsn=4.3.0, status=deferred (mail transport unavailable) Mar 9 21:35:22 server postfix/qmgr: C47911FB57A: from=, size=476, nrcpt=1 (queue active) Mar 9 21:35:22 server postfix/error: C47911FB57A: to=, relay=none, delay=540, delays=540/0/0/0, dsn=4.3.0, status=deferred (mail transport unavailable) I need to find out the source of the error.

Does any one have a complete configuration of using Dovecot to handle OAuth2 tokens to allow Postfix to send mail to gmail? Most use cases found are either too old or not complete. I have done the required steps from the google api and received a credential in json format. Thanks in advance, Dean

I have certbot installed and successfully use it to encrypt my homepage. Now I tried to set up an email system for my website using dovecot and postfix. I got it mostly running; the only problem is that thunderbird gives me a warning about the address being fraudulent because I use the SSL key of mysite.com for imap.mysite.com (same for SMTP). How can I add imap.mysite.com and smtp.mysite.com to the existing mysite.com certificate using certbot in order to avoid the warning?

I’ve inherited some systems that runs on the FreeBSD operating system and inside jails. Basically the services running are old versions of qmail, spamd, Dovecot, etc. None of the versions are up to date or even maintainable any more. At present we can’t move from these systems but I would at least like to be able to troubleshoot them. My question: Normally I would be able to run for example service qmail status and get some info about the top level process. How do I do this inside a jail? In the case of the qmail process I can use qmailctl but what would be the equivalent for spamd or Dovecot? Also how do you go about troubleshooting these types of services? The logs don’t really give a very good steer on what could be going wrong.

**My setup:** ---------------- * **Network:** Low spec vps server, * **Mail server**: postfix + dovecot + mysql, * **OS**: ubuntu 16.04 (to be upgraded once mail config is complete). I have a single domain (call it mydomain1.com) successfully configured for sending/receiving email. I achieved this by following one of the many guides available through an internet search. Now I have a second domain (call it mydomain2.com) I'd like to include on the same VPS server (same IP address), and the same email service. I'm currently working out how to configure this 2nd domain within the existing setup, from DNS settings to postfix, dovecot, mysql and virtual mailbox OS-level folder structure. What DNS records are needed to ensure POP3 delivery from external mail senders succeeds? Currently: * mydomain1.com is working (receiving and sending) * mydomain2.com is not working (sending but not receiving) * Only email sent from mydomain1.com is arriving at mydomain2.com addresses. * The 'returned to sender' error msg says:

: host C.secondary-mx.nl[00.000.00.00] said: 550 Unknown
    user. Unrouteable address (in reply to RCPT TO command)

I have installed the iRedMail email server script on an Ubuntu 22.04 with Nginx. Now, when I create a new email account, the user gets an email when he logs in the first time.  It’s a welcome email with a link to where you should login, but the link is totally wrong.  I have asked in the iRedMail forum, but all answer I got is that the installation doesn’t install anything to send out welcome messages.  I have tried to find the text string using grep, but it seems to hang and doesn’t show anything.  Can anyone hint about a better way to find this string?

root@mail:~# grep -r -i 'Welcome and thank you' /
grep: /proc/sys/fs/binfmt_misc/register: Invalid argument
grep: /proc/sys/net/ipv4/route/flush: Permission denied
grep: /proc/sys/net/ipv6/conf/all/stable_secret: Input/output error
grep: /proc/sys/net/ipv6/conf/default/stable_secret: Input/output error
grep: /proc/sys/net/ipv6/conf/eth0/stable_secret: Input/output error
grep: /proc/sys/net/ipv6/conf/lo/stable_secret: Input/output error
grep: /proc/sys/net/ipv6/route/flush: Permission denied
grep: /proc/sys/vm/compact_memory: Permission denied
grep: /proc/sys/vm/drop_caches: Permission denied
grep: /proc/kmsg: Resource temporarily unavailable

>... explain – or even show – what’s wrong with the link. Well, in the first place, there should not be a welcome message at all.  It’s nothing I have configured.  The welcome plugin in Dovecot is not enabled.  And, if it was to be correct, it should lead to the roundcube login mail.mxmail.pro/mail. This is the text: >Welcome and thank you for registering at Mx Mail! Your account has now been created and you can log in by using your email address and password by visiting our website or at the following URL: **https://mxmail.pro/index.php ? route-account/login&language=en-gb**

In postfix or dovecot, it's possible exclude an user from sending and receiving mail to and from some domains by creating a rule that the user cannot deactivate?

**Background** I am looking for plugins for Dovecot (specifically authentication plugins) because I would like to look at source code for reference as to how to make an authentication plugin for Dovecot. I have search through the official list on the Dovecot website as well as a Google search for a list of plugins available. Unfortunately I haven't been able to find anything that fits what I am looking for. **Questions** Are there more plugins available than in the official list? Where can I find these plugins? Are there any authentication plugins available for Dovecot? I am looking for a response that answers all of the questions above. Thank you for your assistance.

I try to get postfix and dovecot up and running. I have a little problem with the mail-box path that connects both. **Postfix** virtual_mailbox_base = /var/vmail virtual_mailbox_domains = mydom.org This creates a file /var/vmail/mydom.org/sam as an mbox-file if I send to sam@mydom.org. The sent mail is inside of that file. So far - so good. But in dovecot I have this for a virtual user. sam@mydom.org:{PLAIN}mysecret:5000:5000::/var/vmail/mydom.org::userdb_mail=mbox:~/%u That creates /var/vmail/mydom.org/sam@mydom.org/inbox after successful login. So my POP3-client finds always an empty mailbox. If I copy the postfix-mailbox to the inbox-file, then POP3 gets the message. How do I get dovecot to use the postfix-mailbox or postfix to use the dovecot-file? I tried several settings in dovecot but I did not get it going to use the posfix-file as it is. Thanks!

I'm trying to configure Dovecot to access mysql, but it's not working because there is a space in the mysql password. driver = mysql connect = "host=localhost dbname=postfix user=postfix password=blah bluh blih" When I'm trying to access a mailbox from Thunderbird / Evoution, I'm getting this error : Jan 05 14:41:11 mx1 dovecot: auth: Fatal: mysql: Missing value in connect string: bluh I can't find the proper syntax to make it work. Has someone an idea ?

I run the dovecot imap server and use thunderbird as frontend. The access is password protected, and I see zillion login attempts with leaked passwords. I would like to switch to bi-key authentication and if possible with a FIDO2 physical key too. Is this possible ? I currently use bi-keys for ssh authentication and start to use a FIDO2 physical key.

I have a mail server that has been running for quite some time. Most of my clients use non-Apple devices or are okay with web-clients. I am only now running into this roadblock, because a new client prefers using the Apple app to read email. They have an older iPad, which maxes out at iOS 9.3.5. Just found out this is rather old. Will my set up run on a more modern iOS? * When that older iOS device attempts IMAP connection, I am getting the following errors.

Jan  8 17:59:40 host dovecot: imap-login: Debug: SSL: where=0x10, ret=1: before SSL initialization
    Jan  8 17:59:40 host dovecot: imap-login: Debug: SSL: where=0x2001, ret=1: before SSL initialization
    Jan  8 17:59:40 host dovecot: imap-login: Debug: SSL: where=0x2002, ret=-1: before SSL initialization
    Jan  8 17:59:40 host dovecot: imap-login: Debug: SSL: where=0x2001, ret=1: before SSL initialization
    Jan  8 17:59:40 host dovecot: imap-login: Debug: SSL alert: where=0x4008, ret=582: fatal protocol version
    Jan  8 17:59:40 host dovecot: imap-login: Debug: SSL: where=0x2002, ret=-1: error
    Jan  8 17:59:40 host dovecot: imap-login: Debug: SSL error: SSL_accept() failed: error:0A000102:SSL routines::unsupported protocol
    Jan  8 17:59:40 host dovecot: imap-login: Disconnected: Connection closed: SSL_accept() failed: error:0A000102:SSL routines::unsupported protocol (no auth attempts in 0 secs): user=, rip=x.x.x.x, lip=y.y.y.y, TLS handshaking: SSL_accept() failed: error:0A000102:SSL routines::unsupported protocol, session=
    Jan  8 17:59:40 host dovecot: imap-login: Debug: SSL error: SSL_accept() syscall failed: Invalid argument

* With Roundcube and Outlook, here are the log results (similar for both) where client IMAP access works:

Jan  8 18:19:14 host dovecot: imap-login: Debug: SSL: where=0x10, ret=1: before SSL initialization
    Jan  8 18:19:14 host dovecot: imap-login: Debug: SSL: where=0x2001, ret=1: before SSL initialization
    Jan  8 18:19:14 host dovecot: imap-login: Debug: SSL: where=0x2002, ret=-1: before SSL initialization
    Jan  8 18:19:14 host dovecot: imap-login: Debug: SSL: where=0x2001, ret=1: before SSL initialization
    Jan  8 18:19:14 host dovecot: imap-login: Debug: SSL: where=0x2001, ret=1: SSLv3/TLS read client hello
    Jan  8 18:19:14 host dovecot: imap-login: Debug: SSL: where=0x2001, ret=1: SSLv3/TLS write server hello
    Jan  8 18:19:14 host dovecot: imap-login: Debug: SSL: where=0x2001, ret=1: SSLv3/TLS write change cipher spec
    Jan  8 18:19:14 host dovecot: imap-login: Debug: SSL: where=0x2001, ret=1: TLSv1.3 write encrypted extensions
    Jan  8 18:19:14 host dovecot: imap-login: Debug: SSL: where=0x2001, ret=1: SSLv3/TLS write certificate
    Jan  8 18:19:14 host dovecot: imap-login: Debug: SSL: where=0x2001, ret=1: TLSv1.3 write server certificate verify
    Jan  8 18:19:14 host dovecot: imap-login: Debug: SSL: where=0x2001, ret=1: SSLv3/TLS write finished
    Jan  8 18:19:14 host dovecot: imap-login: Debug: SSL: where=0x2001, ret=1: TLSv1.3 early data
    Jan  8 18:19:14 host dovecot: imap-login: Debug: SSL: where=0x2002, ret=-1: TLSv1.3 early data
    Jan  8 18:19:14 host dovecot: message repeated 2 times: [ imap-login: Debug: SSL: where=0x2002, ret=-1: TLSv1.3 early data]
    Jan  8 18:19:14 host dovecot: imap-login: Debug: SSL: where=0x2001, ret=1: TLSv1.3 early data
    Jan  8 18:19:14 host dovecot: imap-login: Debug: SSL: where=0x2001, ret=1: SSLv3/TLS read finished
    Jan  8 18:19:14 host dovecot: imap-login: Debug: SSL: where=0x20, ret=1: SSLv3/TLS write session ticket
    Jan  8 18:19:14 host dovecot: imap-login: Debug: SSL: where=0x2001, ret=1: SSLv3/TLS write session ticket
    Jan  8 18:19:14 host dovecot: imap-login: Debug: SSL: where=0x2001, ret=1: SSLv3/TLS write session ticket
    Jan  8 18:19:14 host dovecot: imap-login: Debug: SSL: where=0x2002, ret=1: SSL negotiation finished successfully
    Jan  8 18:19:14 host dovecot: imap-login: Login: user=, method=PLAIN, rip=x.x.x.x, lip=x.x.x.x, mpid=421260, TLS, session=
    Jan  8 18:19:14 host dovecot: imap-login: Debug: SSL: where=0x10, ret=1: before SSL initialization
    Jan  8 18:19:14 host dovecot: imap-login: Debug: SSL: where=0x2001, ret=1: before SSL initialization
    Jan  8 18:19:14 host dovecot: imap-login: Debug: SSL: where=0x2002, ret=-1: before SSL initialization
    Jan  8 18:19:14 host dovecot: imap-login: Debug: SSL: where=0x2001, ret=1: before SSL initialization
    Jan  8 18:19:14 host dovecot: imap-login: Debug: SSL: where=0x2001, ret=1: SSLv3/TLS read client hello
    Jan  8 18:19:14 host dovecot: imap-login: Debug: SSL: where=0x2001, ret=1: SSLv3/TLS write server hello
    Jan  8 18:19:14 host dovecot: imap-login: Debug: SSL: where=0x2001, ret=1: SSLv3/TLS write change cipher spec
    Jan  8 18:19:14 host dovecot: imap-login: Debug: SSL: where=0x2001, ret=1: TLSv1.3 write encrypted extensions
    Jan  8 18:19:14 host dovecot: imap-login: Debug: SSL: where=0x2001, ret=1: SSLv3/TLS write certificate
    Jan  8 18:19:14 host dovecot: imap-login: Debug: SSL: where=0x2001, ret=1: TLSv1.3 write server certificate verify
    Jan  8 18:19:14 host dovecot: imap-login: Debug: SSL: where=0x2001, ret=1: SSLv3/TLS write finished
    Jan  8 18:19:14 host dovecot: imap-login: Debug: SSL: where=0x2001, ret=1: TLSv1.3 early data
    Jan  8 18:19:14 host dovecot: imap-login: Debug: SSL: where=0x2002, ret=-1: TLSv1.3 early data
    Jan  8 18:19:14 host dovecot: imap-login: Debug: SSL: where=0x2001, ret=1: TLSv1.3 early data
    Jan  8 18:19:14 host dovecot: imap-login: Debug: SSL: where=0x2001, ret=1: SSLv3/TLS read finished
    Jan  8 18:19:14 host dovecot: imap-login: Debug: SSL: where=0x20, ret=1: SSLv3/TLS write session ticket
    Jan  8 18:19:14 host dovecot: imap-login: Debug: SSL: where=0x2001, ret=1: SSLv3/TLS write session ticket
    Jan  8 18:19:14 host dovecot: imap-login: Debug: SSL: where=0x2001, ret=1: SSLv3/TLS write session ticket
    Jan  8 18:19:14 host dovecot: imap-login: Debug: SSL: where=0x2002, ret=1: SSL negotiation finished successfully
    Jan  8 18:19:14 host dovecot: imap-login: Debug: SSL alert: close notify
    Jan  8 18:19:14 host dovecot: imap-login: Debug: SSL alert: close notify
    Jan  8 18:19:14 host dovecot: imap(user@domain.net): Disconnected: Logged out in=316 out=1699 deleted=0 expunged=0 trashed=0 hdr_count=1 hdr_bytes=250 body_count=0 body_bytes=0

Here is my setup

* Ubuntu 22.04.3 LTS * Kernel 5.15.0-91-generic * Dovecot 2.3.16 (7e2e900c1a) * OpenSSL 3.0.2 * Certbot 2.8.0

Config Files

* SSL-configuration

-shellsession
    $ cat /etc/dovecot/conf.d/10-ssl.conf
    ssl = yes
    verbose_ssl = yes
    ssl_cert = 
* Dovecot:

lang-shellsession $ cat /etc/dovecot/conf.d/10-master.conf service imap-login { inet_listener imap { port = 0 } inet_listener imaps { port = 993 ssl = yes } } service pop3-login { inet_listener pop3 { port = 0 } inet_listener pop3s { port = 995 ssl = yes } } service lmtp { unix_listener /var/spool/postfix/private/dovecot-lmtp { mode = 0600 user = postfix group = postfix } } service imap { } service pop3 { } service auth { unix_listener /var/spool/postfix/private/auth { mode = 0666 user = postfix group = postfix } unix_listener auth-userdb { mode = 0600 user = vmail } user = dovecot } service auth-worker { user = vmail } service dict { unix_listener dict { } } ```

SSL Labs Test Results

Overall A Rating. A few highlights from the Configuration section.
| Protocols | | | --------- | --- | | TLS1.3 | Yes | | TLS1.2 | Yes | | TLS1.1 | No | | TLS1.0 | No | | SSL 3 | No | | SSL 2 | No | | Cipher Suites - TLS 1.3 (server has no preference) | | | ------------------------------------------------------------------------ | --- | | TLS_AES_128_GCM_SHA256 (0x1301) ECDH x25519 (eq. 3072 bits RSA) FS | 128 | | TLS_AES_256_GCM_SHA384 (0x1302) ECDH x25519 (eq. 3072 bits RSA) FS | 256 | | TLS_CHACHA20_POLY1305_SHA256 (0x1303) ECDH x25519 (eq. 3072 bits RSA) FS | 256 | | Cipher Suites - TLS 1.2 (server has no preference) | | | ------------------------------------------------------------------------------------------------- | --- | | TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256 (0xc02b) ECDH secp521r1 (eq. 15360 bits RSA) FS 128 | 128 | | TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384 (0xc02c) ECDH secp521r1 (eq. 15360 bits RSA) FS 256 | 256 | | TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256 (0xcca9) ECDH secp521r1 (eq. 15360 bits RSA) FS 256 | 256 |

I'm looking to send emails to myself from various scripts on my Linux (Debian 10) system. My thought was to install just Dovecot, and not an MTA like Postfix, to avoid the complexity of configuring the MTA. All I want to do is drop myself the odd email from a script, and then connect to my mail server with Thunderbird and pull those emails. I used to run my own email server, however, and the way I sent scripts on there was to use /usr/sbin/sendmail. This binary seems to have been supplied by Postfix, because it isn't there with just a Dovecot install. Assuming I have already set up Dovecot to successfully allow retrieval of email from local user mailboxes via eg. POP3, what's the simplest way (least configuration, basically) for me to send email to those local mailboxes from a unix script? I'd like to avoid installing a full-on MTA, or ideally, anything else at all. I'd like some sort of equivalent to:

/usr/sbin/sendmail "to@address.com" <