I think my installation is sick: Hi all, I'm still having problems getting my mails out. I changed my VPS for a larger one but still something wrong. I also tried to see why the mails were not going out: source.list : Code: deb http://deb.debian.org/debian buster main deb-src http://deb.debian.org/debian buster main --------------------- deb http://security.debian.org/ buster/updates main deb-src http://security.debian.org/ buster/updates main deb http://deb.debian.org/debian buster-updates main deb-src http://deb.debian.org/debian buster-updates main ------------------ deb http://deb.debian.org/debian buster-backports main deb-src http://deb.debian.org/debian buster-backports main ------------------ ## For ispConfig deb http://deb.debian.org/debian/ buster main contrib non-free deb-src http://deb.debian.org/debian/ buster main contrib non-free ------------------- deb http://security.debian.org/debian-security buster/updates main contrib non-free deb-src http://security.debian.org/debian-security buster/updates main contrib non-free Machine : Code: System load: 0.08 Int IP Address: 10.64.168.15 Memory usage: 0.0% Pub IP Address: 51.15.196.216 Usage on /: 40% Swap usage: 0.0% Local Users: 0 Processes: 177 Image build: 2020-01-15 System uptime: 18:37 hours Disk : l_ssd 80G Open Ports : Code: telnet democrasite.com 587 Trying 163.172.143.149... Connected to democrasite.com. Escape character is '^]'. 220 srv-b.democrasite.com ESMTP Postfix (Debian/GNU) quit 221 2.0.0 Bye Connection closed by foreign host. [email protected]:~# netstat --proto=inet -pnl Active Internet connections (only servers) Proto Recv-Q Send-Q Local Address Foreign Address State PID/Program name tcp 0 0 0.0.0.0:25 0.0.0.0:* LISTEN 8769/master tcp 0 0 127.0.0.1:953 0.0.0.0:* LISTEN 817/named tcp 0 0 0.0.0.0:993 0.0.0.0:* LISTEN 784/dovecot tcp 0 0 0.0.0.0:995 0.0.0.0:* LISTEN 784/dovecot tcp 0 0 127.0.0.1:10023 0.0.0.0:* LISTEN 1089/postgrey --pid tcp 0 0 127.0.0.1:10025 0.0.0.0:* LISTEN 8769/master tcp 0 0 127.0.0.1:10027 0.0.0.0:* LISTEN 8769/master tcp 0 0 0.0.0.0:587 0.0.0.0:* LISTEN 8769/master tcp 0 0 127.0.0.1:11211 0.0.0.0:* LISTEN 747/memcached tcp 0 0 0.0.0.0:110 0.0.0.0:* LISTEN 784/dovecot tcp 0 0 0.0.0.0:143 0.0.0.0:* LISTEN 784/dovecot tcp 0 0 0.0.0.0:465 0.0.0.0:* LISTEN 8769/master tcp 0 0 0.0.0.0:21 0.0.0.0:* LISTEN 1428/pure-ftpd (SER tcp 0 0 10.64.168.15:53 0.0.0.0:* LISTEN 817/named tcp 0 0 127.0.0.1:53 0.0.0.0:* LISTEN 817/named tcp 0 0 0.0.0.0:22 0.0.0.0:* LISTEN 967/sshd udp 0 0 10.64.168.15:53 0.0.0.0:* 817/named udp 0 0 127.0.0.1:53 0.0.0.0:* 817/named udp 0 0 0.0.0.0:68 0.0.0.0:* 486/dhclient udp 0 0 10.64.168.15:123 0.0.0.0:* 785/ntpd udp 0 0 127.0.0.1:123 0.0.0.0:* 785/ntpd udp 0 0 0.0.0.0:123 0.0.0.0:* 785/ntpd postfix master.cf : Code: # ========================================================================== # service type private unpriv chroot wakeup maxproc command + args # (yes) (yes) (no) (never) (100) # ========================================================================== smtp inet n - n - - smtpd #smtp inet n - y - 1 postscreen #smtpd pass - - y - - smtpd #dnsblog unix - - y - 0 dnsblog #tlsproxy unix - - y - 0 tlsproxy submission inet n - - - - smtpd -o syslog_name=postfix/submission -o smtpd_tls_security_level=encrypt -o smtpd_sasl_auth_enable=yes -o smtpd_client_restrictions=permit_sasl_authenticated,reject # -o smtpd_tls_auth_only=yes # -o smtpd_reject_unlisted_recipient=no # -o smtpd_client_restrictions=$mua_client_restrictions # -o smtpd_helo_restrictions=$mua_helo_restrictions # -o smtpd_sender_restrictions=$mua_sender_restrictions # -o smtpd_recipient_restrictions= # -o smtpd_relay_restrictions=permit_sasl_authenticated,reject # -o milter_macro_daemon_name=ORIGINATING smtps inet n - - - - smtpd -o syslog_name=postfix/smtps -o smtpd_tls_wrappermode=yes -o smtpd_sasl_auth_enable=yes -o smtpd_client_restrictions=permit_sasl_authenticated,reject # -o smtpd_reject_unlisted_recipient=no # -o smtpd_client_restrictions=$mua_client_restrictions # -o smtpd_helo_restrictions=$mua_helo_restrictions # -o smtpd_sender_restrictions=$mua_sender_restrictions # -o smtpd_recipient_restrictions= # -o smtpd_relay_restrictions=permit_sasl_authenticated,reject # -o milter_macro_daemon_name=ORIGINATING #628 inet n - y - - qmqpd Postfix main.cf : Code: # TLS parameters smtpd_tls_cert_file = /etc/postfix/smtpd.cert smtpd_tls_key_file = /etc/postfix/smtpd.key smtpd_use_tls = yes smtpd_tls_session_cache_database = btree:${data_directory}/smtpd_scache smtp_tls_session_cache_database = btree:${data_directory}/smtp_scache ——————————————————————— smtpd_relay_restrictions = permit_mynetworks, permit_sasl_authenticated, reject_unauth_destination myhostname = srv-b.democrasite.com alias_maps = hash:/etc/aliases, hash:/var/lib/mailman/data/aliases alias_database = hash:/etc/aliases, hash:/var/lib/mailman/data/aliases myorigin = /etc/mailname #mydestination = mail.democrasite.com, localhost.democrasite.com, localhost mydestination = $myhostname, localhost, $mydomain , www.$mydomain relayhost = mynetworks = 127.0.0.0/8 [::1]/128 ————————————————————————- amavis : Code: Warning: Journal has been rotated since unit was started. Log output is incomplete or unavailable. [email protected]:~# service clamav-daemon start [email protected]:~# systemctl status amavis ● amavis.service - LSB: Starts amavisd-new mailfilter Loaded: loaded (/etc/init.d/amavis; generated) Active: failed (Result: exit-code) since Fri 2022-06-17 18:34:19 UTC; 18h ago Docs: man:systemd-sysv-generator(8) Process: 783 ExecStart=/etc/init.d/amavis start (code=exited, status=1/FAILURE) Warning: Journal has been rotated since unit was started. Log output is incomplete or unavailable. Journalctl : Code: Jun 18 00:55:14 scw-lucid-hofstadter incrond[771]: (root) CMD (IN_MODIFY ./etc/init.d/le_ispc_pem.sh) Jun 18 00:55:14 scw-lucid-hofstadter incrond[771]: PATH (./lib/x86_64-linux-gnu) FILE (libnss_systemd.so.2) EVENT (IN_ACCESS) Journalctl -x : Code: Jun 18 00:55:14 scw-lucid-hofstadter incrond[771]: PATH (./proc/sys/kernel) FILE (ngroups_max) EVENT (IN_OPEN) Jun 18 00:55:14 scw-lucid-hofstadter incrond[771]: (root) CMD (IN_MODIFY ./etc/init.d/le_ispc_pem.sh) Jun 18 00:55:14 scw-lucid-hofstadter incrond[771]: PATH (./proc/sys/kernel/ngroups_max) FILE () EVENT (IN_OPEN) Jun 18 00:55:14 scw-lucid-hofstadter incrond[771]: (root) CMD (IN_MODIFY ./etc/init.d/le_ispc_pem.sh) Jun 18 00:55:14 scw-lucid-hofstadter incrond[771]: PATH (./proc/sys/kernel) FILE (ngroups_max) EVENT (IN_ACCESS) Jun 18 00:55:14 scw-lucid-hofstadter incrond[771]: (root) CMD (IN_MODIFY ./etc/init.d/le_ispc_pem.sh) Jun 18 00:55:14 scw-lucid-hofstadter incrond[771]: PATH (./proc/sys/kernel/ngroups_max) FILE () EVENT (IN_ACCESS) Jun 18 00:55:14 scw-lucid-hofstadter incrond[771]: (root) CMD (IN_MODIFY ./etc/init.d/le_ispc_pem.sh) Jun 18 00:55:14 scw-lucid-hofstadter incrond[771]: PATH (./proc/sys/kernel) FILE (ngroups_max) EVENT (IN_CLOSE_NOWRITE) Jun 18 00:55:14 scw-lucid-hofstadter incrond[771]: (root) CMD (IN_MODIFY ./etc/init.d/le_ispc_pem.sh) Jun 18 00:55:14 scw-lucid-hofstadter incrond[771]: PATH (./proc/sys/kernel/ngroups_max) FILE () EVENT (IN_CLOSE_NOWRITE) Jun 18 00:55:14 scw-lucid-hofstadter incrond[771]: (root) CMD (IN_MODIFY ./etc/init.d/le_ispc_pem.sh) Jun 18 00:55:14 scw-lucid-hofstadter incrond[771]: PATH (./etc) FILE (group) EVENT (IN_OPEN) Jun 18 00:55:14 scw-lucid-hofstadter incrond[771]: (root) CMD (IN_MODIFY ./etc/init.d/le_ispc_pem.sh) Jun 18 00:55:14 scw-lucid-hofstadter incrond[771]: PATH (./etc/group) FILE () EVENT (IN_OPEN) Jun 18 00:55:14 scw-lucid-hofstadter incrond[771]: (root) CMD (IN_MODIFY ./etc/init.d/le_ispc_pem.sh) Jun 18 00:55:14 scw-lucid-hofstadter incrond[771]: PATH (./etc) FILE (group) EVENT (IN_ACCESS) Jun 18 00:55:14 scw-lucid-hofstadter incrond[771]: (root) CMD (IN_MODIFY ./etc/init.d/le_ispc_pem.sh) Jun 18 00:55:14 scw-lucid-hofstadter incrond[771]: PATH (./etc/group) FILE () EVENT (IN_ACCESS) Jun 18 00:55:14 scw-lucid-hofstadter incrond[771]: (root) CMD (IN_MODIFY ./etc/init.d/le_ispc_pem.sh) Jun 18 00:55:14 scw-lucid-hofstadter incrond[771]: PATH (./etc) FILE (group) EVENT (IN_CLOSE_NOWRITE) Jun 18 00:55:14 scw-lucid-hofstadter incrond[771]: (root) CMD (IN_MODIFY ./etc/init.d/le_ispc_pem.sh) Jun 18 00:55:14 scw-lucid-hofstadter incrond[771]: PATH (./etc/group) FILE () EVENT (IN_CLOSE_NOWRITE) Jun 18 00:55:14 scw-lucid-hofstadter incrond[771]: (root) CMD (IN_MODIFY ./etc/init.d/le_ispc_pem.sh) Jun 18 00:55:14 scw-lucid-hofstadter incrond[771]: PATH (./etc) FILE (ld.so.cache) EVENT (IN_OPEN) Jun 18 00:55:14 scw-lucid-hofstadter incrond[771]: (root) CMD (IN_MODIFY ./etc/init.d/le_ispc_pem.sh)
Hi @jesse, thanks all of my mailboxes are blocked : Code: mpid=21815, TLS, session=<6jai1sThLXBbrVjo> Jun 19 03:46:54 scw-lucid-hofstadter dovecot: imap-login: Login: user=<[email protected]>, method=PLAIN, rip=91.173.88.232, lip=10.64.168.15, mpid=21816, TLS, session=<6jai1sThLUxbrVjo> Jun 19 03:46:54 scw-lucid-hofstadter dovecot: imap-login: Login: user=<[email protected]>, method=PLAIN, rip=91.173.88.232, lip=10.64.168.15, mpid=21817, TLS, session=<8FSi1sTh0XtbrVjo> Jun 19 03:46:54 scw-lucid-hofstadter dovecot: imap-login: Login: user=<[email protected]>, method=PLAIN, rip=91.173.88.232, lip=10.64.168.15, mpid=21818, TLS, session=<xSuk1sThgFVbrVjo> Jun 19 03:46:54 scw-lucid-hofstadter dovecot: imap-login: Login: user=<[email protected]>, method=PLAIN, rip=91.173.88.232, lip=10.64.168.15, mpid=21819, TLS, session=<nTik1sTheE9brVjo> Jun 19 03:46:54 scw-lucid-hofstadter dovecot: imap-login: Login: user=<[email protected]>, method=PLAIN, rip=91.173.88.232, lip=10.64.168.15, mpid=21820, TLS, session=<Szik1sThAn5brVjo> Jun 19 03:46:54 scw-lucid-hofstadter dovecot: imap-login: Login: user=<[email protected]>, method=PLAIN, rip=91.173.88.232, lip=10.64.168.15, mpid=21821, TLS, session=<44uk1sThHE5brVjo> Jun 19 03:46:54 scw-lucid-hofstadter dovecot: imap-login: Login: user=<[email protected]>, method=PLAIN, rip=91.173.88.232, lip=10.64.168.15, mpid=21822, TLS, session=<gYyk1sThUE5brVjo> Jun 19 03:46:54 scw-lucid-hofstadter dovecot: imap-login: Login: user=<[email protected]>, method=PLAIN, rip=91.173.88.232, lip=10.64.168.15, mpid=21823, TLS, session=<CG6l1sThrndbrVjo> Jun 19 03:46:54 scw-lucid-hofstadter dovecot: imap-login: Login: user=<[email protected]>, method=PLAIN, rip=91.173.88.232, lip=10.64.168.15, mpid=21824, TLS, session=<5G6l1sThkFVbrVjo> more… Code: Jun 19 03:59:01 scw-lucid-hofstadter postfix/smtps/smtpd[22420]: SSL_accept error from monitoring.internet-measurement.com[64.225.77.188]: -1 Jun 19 03:59:01 scw-lucid-hofstadter postfix/smtps/smtpd[22420]: warning: TLS library problem: error:1408F10B:SSL routines:ssl3_get_record:wrong version number:../ssl/record/ssl3_record.c:332: Jun 19 03:59:01 scw-lucid-hofstadter postfix/smt
The listing you show indicates there are users logged in to those mailboxes. So looks like mailboxes are not blocked? Maybe elaborate on what do you mean by a blocked mailbox? Your previous message had amavis status, it is not running. Examine this, what shows systemctl start amavis The last log excerpt in #3 shows SSL_accept error. Is that from outgoing or incoming message? Have you checked with for example https://ssl-tools.net/mailservers/ setup of your e-mail domain? You have included lots of logs and configuration files, but are those in any way relevant to the problem to be solved? You could have started with the read before posting -article instructions, for instance.
because, I'm still working too to find a solution, but some mails pass, lot of others don't… Amavis seems to be ok : Code: systemctl status amavis ● amavis.service - LSB: Starts amavisd-new mailfilter Loaded: loaded (/etc/init.d/amavis; generated) Active: active (running) since Sun 2022-06-19 04:42:04 UTC; 8h ago Docs: man:systemd-sysv-generator(8) Process: 760 ExecStart=/etc/init.d/amavis start (code=exited, status=0/SUCCESS) Tasks: 3 (limit: 4915) Memory: 239.4M CGroup: /system.slice/amavis.service ├─ 1356 /usr/sbin/amavisd-new (master) ├─ 4309 /usr/sbin/amavisd-new (ch5-avail) └─20626 /usr/sbin/amavisd-new (ch13-avail) I found something wrong there : Code: tail -20 /var/log/apache2/error.log [ 2022-06-19 13:02:41.8548 12026/7fe7b8f43980 age/Cor/CoreMain.cpp:982 ]: Starting Passenger core... [ 2022-06-19 13:02:41.8552 12026/7fe7b8f43980 age/Cor/CoreMain.cpp:235 ]: Passenger core running in multi-application mode. [ 2022-06-19 13:02:41.8573 12026/7fe7b8f43980 age/Cor/CoreMain.cpp:732 ]: Passenger core online, PID 12026 [ 2022-06-19 13:02:41.8813 12039/7f1a6067a980 age/Ust/UstRouterMain.cpp:529 ]: Starting Passenger UstRouter... [ 2022-06-19 13:02:41.8978 12039/7f1a6067a980 age/Ust/UstRouterMain.cpp:342 ]: Passenger UstRouter online, PID 12039 [Sun Jun 19 13:02:41.999646 2022] [ssl:warn] [pid 12006] AH01906: srv-b.democrasite.com:8080:0 server certificate is a CA certificate (BasicConstraints: CA == TRUE !?) [Sun Jun 19 13:02:41.999704 2022] [ssl:warn] [pid 12006] AH01909: srv-b.democrasite.com:8080:0 server certificate does NOT include an ID which matches the server name [Sun Jun 19 13:02:41.999823 2022] [ssl:error] [pid 12006] AH02217: ssl_stapling_init_cert: can't retrieve issuer certificate! [subject: [email protected],CN=democrasite,OU=dev,O=democrasite.com,L=Paris,ST=France,C=FR / issuer: [email protected],CN=democrasite,OU=dev,O=democrasite.com,L=Paris,ST=France,C=FR / serial: 5DEFDA2587F855D667337378F7BC7EA3751C220A / notbefore: Sep 29 03:00:15 2020 GMT / notafter: Sep 27 03:00:15 2030 GMT] [Sun Jun 19 13:02:41.999969 2022] [ssl:error] [pid 12006] AH02604: Unable to configure certificate srv-b.democrasite.com:8080:0 for stapling [Sun Jun 19 13:02:42.000419 2022] [ssl:warn] [pid 12006] AH01906: srv-b.democrasite.com:8081:0 server certificate is a CA certificate (BasicConstraints: CA == TRUE !?) [Sun Jun 19 13:02:42.000528 2022] [ssl:warn] [pid 12006] AH01909: srv-b.democrasite.com:8081:0 server certificate does NOT include an ID which matches the server name [Sun Jun 19 13:02:42.000690 2022] [ssl:error] [pid 12006] AH02217: ssl_stapling_init_cert: can't retrieve issuer certificate! [subject: [email protected],CN=democrasite,OU=dev,O=democrasite.com,L=Paris,ST=France,C=FR / issuer: [email protected],CN=democrasite,OU=dev,O=democrasite.com,L=Paris,ST=France,C=FR / serial: 5DEFDA2587F855D667337378F7BC7EA3751C220A / notbefore: Sep 29 03:00:15 2020 GMT / notafter: Sep 27 03:00:15 2030 GMT] [Sun Jun 19 13:02:42.000720 2022] [ssl:error] [pid 12006] AH02604: Unable to configure certificate srv-b.democrasite.com:8081:0 for stapling [Sun Jun 19 13:02:42.024553 2022] [:error] [pid 12006] python_init: Python version mismatch, expected '2.7.5+', found '2.7.16'. [Sun Jun 19 13:02:42.031086 2022] [:error] [pid 12006] python_init: Python executable found '/usr/bin/python'. [Sun Jun 19 13:02:42.031138 2022] [:error] [pid 12006] python_init: Python path being used '/usr/lib/python2.7:/usr/lib/python2.7/plat-x86_64-linux-gnu:/usr/lib/python2.7/lib-tk:/usr/lib/python2.7/lib-old:/usr/lib/python2.7/lib-dynload'. [Sun Jun 19 13:02:42.031186 2022] [:notice] [pid 12006] mod_python: Creating 8 session mutexes based on 150 max processes and 0 max threads. [Sun Jun 19 13:02:42.031196 2022] [:notice] [pid 12006] mod_python: using mutex_directory /tmp [Sun Jun 19 13:02:42.079653 2022] [mpm_prefork:notice] [pid 12006] AH00163: Apache/2.4.38 (Debian) mod_fcgid/2.3.9 Phusion_Passenger/5.0.30 OpenSSL/1.1.1n mod_python/3.3.1 Python/2.7.16 configured -- resuming normal operations [Sun Jun 19 13:02:42.079722 2022] [core:notice] [pid 12006] AH00094: Command line: '/usr/sbin/apache2' I'm not sure of exactitude of etc/postfix/main.cf : Code: smtpd_relay_restrictions = permit_mynetworks, permit_sasl_authenticated, reject_unauth_destination myhostname = srv-b.democrasite.com alias_maps = hash:/etc/aliases, hash:/var/lib/mailman/data/aliases alias_database = hash:/etc/aliases, hash:/var/lib/mailman/data/aliases myorigin = /etc/mailname mydestination = mail.democrasite.com, localhost.democrasite.com, localhost #mydestination = $myhostname, localhost, $mydomain , www.$mydomain relayhost = mynetworks = 127.0.0.0/8 [::1]/128 and master.cf too, I began back the "perfect server debian10" and let everything smpt----- smtpd: Code: ========================================================================== # service type private unpriv chroot wakeup maxproc command + args # (yes) (yes) (no) (never) (100) # ========================================================================== smtp inet n - - - - smtpd #smtp inet n - y - 1 postscreen #smtpd pass - - y - - smtpd #dnsblog unix - - y - 0 dnsblog #tlsproxy unix - - y - 0 tlsproxy submission inet n - - - - smtpd -o syslog_name=postfix/submission -o smtpd_tls_security_level=encrypt -o smtpd_sasl_auth_enable=yes -o smtpd_client_restrictions=permit_sasl_authenticated,reject # -o smtpd_tls_auth_only=yes # -o smtpd_reject_unlisted_recipient=no # -o smtpd_client_restrictions=$mua_client_restrictions # -o smtpd_helo_restrictions=$mua_helo_restrictions # -o smtpd_sender_restrictions=$mua_sender_restrictions # -o smtpd_recipient_restrictions= # -o smtpd_relay_restrictions=permit_sasl_authenticated,reject # -o milter_macro_daemon_name=ORIGINATING smtps inet n - - - - smtpd
I'm exhausted… I tried to reconfigure ispconf … but it's worst for my mailboxes and I have new errors sasl or something… Code: fatal: proxymap service is not configured for table "mysql:/etc/postfix/mysql-virtual_sender-relayhost.cf" I don't know how clean this mess and reconfigure them from the begining . At the begining my problem seems the same of this post after ugrade isp : https://forum.howtoforge.com/threads/after-upgrade-to-ispconfig-3-2-can-not-receive-mails.85418/ Even I change from mail client to a new one for testing, I put account infos in settings / password… the mail client says "connexion impossible with the server… If you have an idea… it will be great Code: [email protected]:~# tail -f /var/log/mail.log Jun 21 23:38:01 srv-b dovecot: imap-login: Disconnected (no auth attempts in 3 secs): user=<>, rip=80.11.30.178, lip=10.64.168.15, TLS handshaking: SSL_accept() failed: error:14094412:SSL routines:ssl3_read_bytes:sslv3 alert bad certificate: SSL alert number 42, session=<LN8Xtv3hXcdQCx6y> Jun 21 23:38:02 srv-b postfix/master[1307]: warning: unix_trigger_event: read timeout for service public/pickup Jun 21 23:38:02 srv-b dovecot: imap-login: Disconnected (no auth attempts in 1 secs): user=<>, rip=80.11.30.178, lip=10.64.168.15, TLS handshaking: SSL_accept() failed: error:14094412:SSL routines:ssl3_read_bytes:sslv3 alert bad certificate: SSL alert number 42, session=<W1shtv3hXsdQCx6y> Jun 21 23:38:02 srv-b dovecot: imap-login: Disconnected (no auth attempts in 0 secs): user=<>, rip=80.11.30.178, lip=10.64.168.15, TLS handshaking: SSL_accept() failed: error:14094412:SSL routines:ssl3_read_bytes:sslv3 alert bad certificate: SSL alert number 42, session=</Pcmtv3hX8dQCx6y> Jun 21 23:38:03 srv-b dovecot: imap-login: Disconnected (no auth attempts in 0 secs): user=<>, rip=80.11.30.178, lip=10.64.168.15, TLS handshaking: SSL_accept() failed: error:14094412:SSL routines:ssl3_read_bytes:sslv3 alert bad certificate: SSL alert number 42, session=<QbQ6tv3hYMdQCx6y> Jun 21 23:38:04 srv-b dovecot: imap-login: Disconnected (no auth attempts in 1 secs): user=<>, rip=80.11.30.178, lip=10.64.168.15, TLS handshaking: SSL_accept() failed: error:14094412:SSL routines:ssl3_read_bytes:sslv3 alert bad certificate: SSL alert number 42, session=<ipE+tv3hYcdQCx6y> Jun 21 23:38:04 srv-b dovecot: imap-login: Disconnected (no auth attempts in 0 secs): user=<>, rip=80.11.30.178, lip=10.64.168.15, TLS handshaking: SSL_accept() failed: error:14094412:SSL routines:ssl3_read_bytes:sslv3 alert bad certificate: SSL alert number 42, session=<rRBFtv3hYsdQCx6y> Jun 21 23:38:04 srv-b dovecot: imap-login: Disconnected (no auth attempts in 0 secs): user=<>, rip=80.11.30.178, lip=10.64.168.15, TLS handshaking: SSL_accept() failed: error:14094412:SSL routines:ssl3_read_bytes:sslv3 alert bad certificate: SSL alert number 42, session=<v+hKtv3hY8dQCx6y> Jun 21 23:38:05 srv-b dovecot: imap-login: Disconnected (no auth attempts in 0 secs): user=<>, rip=80.11.30.178, lip=10.64.168.15, TLS handshaking: SSL_accept() failed: error:14094412:SSL routines:ssl3_read_bytes:sslv3 alert bad certificate: SSL alert number 42, session=<bHVStv3hZMdQCx6y> Jun 21 23:38:05 srv-b dovecot: imap-login: Disconnected (no auth attempts in 0 secs): user=<>, rip=80.11.30.178, lip=10.64.168.15, TLS handshaking: SSL_accept() failed: error:14094412:SSL routines:ssl3_read_bytes:sslv3 alert bad certificate: SSL alert number 42, session=<zPBXtv3hZcdQCx6y> Jun 21 23:38:06 srv-b dovecot: imap-login: Disconnected (no auth attempts in 0 secs): user=<>, rip=80.11.30.178, lip=10.64.168.15, TLS handshaking: SSL_accept() failed: error:14094412:SSL routines:ssl3_read_bytes:sslv3 alert bad certificate: SSL alert number 42, session=<WgZftv3hZsdQCx6y> Jun 21 23:38:06 srv-b dovecot: imap-login: Disconnected (no auth attempts in 0 secs): user=<>, rip=80.11.30.178, lip=10.64.168.15, TLS handshaking: SSL_accept() failed: error:14094412:SSL routines:ssl3_read_bytes:sslv3 alert bad certificate: SSL alert number 42, session=<Dh9mtv3hZ8dQCx6y> Jun 21 23:38:07 srv-b postfix/submission/smtpd[20963]: connect from lneuilly-657-1-64-178.w80-11.abo.wanadoo.fr[80.11.30.178] Jun 21 23:38:07 srv-b postfix/submission/smtpd[20963]: SSL_accept error from lneuilly-657-1-64-178.w80-11.abo.wanadoo.fr[80.11.30.178]: -1 Jun 21 23:38:07 srv-b postfix/submission/smtpd[20963]: warning: TLS library problem: error:14094412:SSL routines:ssl3_read_bytes:sslv3 alert bad certificate:../ssl/record/rec_layer_s3.c:1544:SSL alert number 42: Jun 21 23:38:07 srv-b postfix/submission/smtpd[20963]: lost connection after STARTTLS from lneuilly-657-1-64-178.w80-11.abo.wanadoo.fr[80.11.30.178] Jun 21 23:38:07 srv-b postfix/submission/smtpd[20963]: disconnect from lneuilly-657-1-64-178.w80-11.abo.wanadoo.fr[80.11.30.178] ehlo=1 starttls=0/1 commands=1/2 Jun 21 23:38:11 srv-b dovecot: imap-login: Disconnected (no auth attempts in 0 secs): user=<>, rip=80.11.30.178, lip=10.64.168.15, TLS handshaking: SSL_accept() failed: error:14094412:SSL routines:ssl3_read_bytes:sslv3 alert bad certificate: SSL alert number 42, session=<rSSztv3hbcdQCx6y> Jun 21 23:38:23 srv-b postfix/qmgr[1311]: warning: problem talking to service rewrite: Connection timed out Jun 21 23:38:25 srv-b postfix/proxymap[1317]: warning: request for unapproved table: "mysql:/etc/postfix/mysql-virtual_sender-relayhost.cf" Jun 21 23:38:25 srv-b postfix/proxymap[1317]: warning: to approve this table for read-only access, list proxy:mysql:/etc/postfix/mysql-virtual_sender-relayhost.cf in main.cf:proxy_read_maps Jun 21 23:38:25 srv-b postfix/trivial-rewrite[25226]: fatal: proxymap service is not configured for table "mysql:/etc/postfix/mysql-virtual_sender-relayhost.cf" Jun 21 23:38:26 srv-b postfix/master[1307]: warning: process /usr/lib/postfix/sbin/trivial-rewrite pid 25226 exit status 1 Jun 21 23:38:26 srv-b postfix/master[1307]: warning: /usr/lib/postfix/sbin/trivial-rewrite: bad command startup -- throttling Jun 21 23:38:26 srv-b postfix/submission/smtpd[20963]: connect from lneuilly-657-1-64-178.w80-11.abo.wanadoo.fr[80.11.30.178] Jun 21 23:38:28 srv-b dovecot: imap-login: Disconnected (no auth attempts in 1 secs): user=<>, rip=80.11.30.178, lip=10.64.168.15, TLS handshaking: SSL_accept() failed: error:14094412:SSL routines:ssl3_read_bytes:sslv3 alert bad certificate: SSL alert number 42, session=<Ahutt/3hb8dQCx6y> Jun 21 23:38:44 srv-b dovecot: imap-login: Disconnected (no auth attempts in 1 secs): user=<>, rip=80.11.30.178, lip=10.64.168.15, TLS handshaking: SSL_accept() failed: error:14094412:SSL routines:ssl3_read_bytes:sslv3 alert bad certificate: SSL alert number 42, session=<3kihuP3hccdQCx6y> Jun 21 23:39:02 srv-b postfix/master[1307]: warning: unix_trigger_event: read timeout for service public/pickup Jun 21 23:39:25 srv-b postfix/qmgr[1311]: warning: problem talking to service rewrite: Connection timed out Jun 21 23:39:26 srv-b postfix/proxymap[1317]: warning: request for unapproved table: "mysql:/etc/postfix/mysql-virtual_sender-relayhost.cf" Jun 21 23:39:26 srv-b postfix/proxymap[1317]: warning: to approve this table for read-only access, list proxy:mysql:/etc/postfix/mysql-virtual_sender-relayhost.cf in main.cf:proxy_read_maps Jun 21 23:39:26 srv-b postfix/trivial-rewrite[7813]: fatal: proxymap service is not configured for table "mysql:/etc/postfix/mysql-virtual_sender-relayhost.cf" Jun 21 23:39:27 srv-b postfix/master[1307]: warning: process /usr/lib/postfix/sbin/trivial-rewrite pid 7813 exit status 1 Jun 21 23:39:27 srv-b postfix/master[1307]: warning: /usr/lib/postfix/sbin/trivial-rewrite: bad command startup -- throttling Jun 21 23:39:31 srv-b postfix/smtps/smtpd[9146]: connect from unknown[5.34.207.156] Jun 21 23:39:34 srv-b postfix/smtps/smtpd[9146]: warning: unknown[5.34.207.156]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 21 23:39:34 srv-b postfix/smtps/smtpd[9146]: lost connection after AUTH from unknown[5.34.207.156] Jun 21 23:39:34 srv-b postfix/smtps/smtpd[9146]: disconnect from unknown[5.34.207.156] ehlo=1 auth=0/1 rset=1 commands=2/3 Jun 21 23:39:37 srv-b dovecot: pop3-login: Disconnected: Inactivity (auth failed, 1 attempts in 179 secs): user=<support>, method=PLAIN, rip=218.78.17.84, lip=10.64.168.15, session=<Q9Mesf3hWJraThFU> Jun 21 23:40:02 srv-b postfix/master[1307]: warning: unix_trigger_event: read timeout for service public/pickup Jun 21 23:40:07 srv-b dovecot: imap-login: Disconnected (no auth attempts in 0 secs): user=<>, rip=::1, lip=::1, secured, session=<9XGbvf3hypUAAAAAAAAAAAAAAAAAAAAB> Jun 21 23:40:07 srv-b dovecot: pop3-login: Disconnected (no auth attempts in 0 secs): user=<>, rip=::1, lip=::1, secured, session=<MPibvf3hKukAAAAAAAAAAAAAAAAAAAAB> Jun 21 23:40:07 srv-b postfix/smtpd[18674]: connect from localhost[::1] Jun 21 23:40:07 srv-b postfix/smtpd[18674]: lost connection after CONNECT from localhost[::1] Jun 21 23:40:07 srv-b postfix/smtpd[18674]: disconnect from localhost[::1] commands=0/0 Jun 21 23:40:23 srv-b postfix/smtpd[18674]: warning: hostname fadnuget.net does not resolve to address 45.125.66.22 Jun 21 23:40:23 srv-b postfix/smtpd[18674]: connect from unknown[45.125.66.22] Jun 21 23:40:25 srv-b postfix/smtpd[23329]: warning: hostname annoying.medyamol.com does not resolve to address 141.98.11.113: Name or service not known Jun 21 23:40:25 srv-b postfix/smtpd[23329]: connect from unknown[141.98.11.113] Jun 21 23:40:26 srv-b postfix/qmgr[1311]: warning: problem talking to service rewrite: Connection timed out Jun 21 23:40:27 srv-b postfix/smtpd[18674]: warning: unknown[45.125.66.22]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 21 23:40:27 srv-b postfix/smtpd[18674]: disconnect from unknown[45.125.66.22] ehlo=1 auth=0/1 quit=1 commands=2/3 Jun 21 23:40:27 srv-b postfix/proxymap[1317]: warning: request for unapproved table: "mysql:/etc/postfix/mysql-virtual_sender-relayhost.cf" Jun 21 23:40:27 srv-b postfix/proxymap[1317]: warning: to approve this table for read-only access, list proxy:mysql:/etc/postfix/mysql-virtual_sender-relayhost.cf in main.cf:proxy_read_maps Jun 21 23:40:27 srv-b postfix/trivial-rewrite[23833]: fatal: proxymap service is not configured for table "mysql:/etc/postfix/mysql-virtual_sender-relayhost.cf" Jun 21 23:40:28 srv-b postfix/master[1307]: warning: process /usr/lib/postfix/sbin/trivial-rewrite pid 23833 exit status 1 Jun 21 23:40:28 srv-b postfix/master[1307]: warning: /usr/lib/postfix/sbin/trivial-rewrite: bad command startup -- throttling Jun 21 23:40:29 srv-b postfix/smtpd[23329]: warning: unknown[141.98.11.113]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 21 23:40:29 srv-b postfix/smtpd[23329]: disconnect from unknown[141.98.11.113] ehlo=1 auth=0/1 quit=1 commands=2/3 Jun 21 23:40:31 srv-b postfix/smtpd[18674]: warning: hostname vashnev.com does not resolve to address 67.198.131.71: Name or service not known Jun 21 23:40:31 srv-b postfix/smtpd[18674]: connect from unknown[67.198.131.71] Jun 21 23:41:02 srv-b postfix/master[1307]: warning: unix_trigger_event: read timeout for service public/pickup Jun 21 23:41:28 srv-b postfix/proxymap[1317]: warning: request for unapproved table: "mysql:/etc/postfix/mysql-virtual_sender-relayhost.cf" Jun 21 23:41:28 srv-b postfix/proxymap[1317]: warning: to approve this table for read-only access, list proxy:mysql:/etc/postfix/mysql-virtual_sender-relayhost.cf in main.cf:proxy_read_maps Jun 21 23:41:28 srv-b postfix/trivial-rewrite[6746]: fatal: proxymap service is not configured for table "mysql:/etc/postfix/mysql-virtual_sender-relayhost.cf" Jun 21 23:41:29 srv-b postfix/master[1307]: warning: process /usr/lib/postfix/sbin/trivial-rewrite pid 6746 exit status 1 Jun 21 23:41:29 srv-b postfix/master[1307]: warning: /usr/lib/postfix/sbin/trivial-rewrite: bad command startup -- throttling Jun 21 23:41:41 srv-b dovecot: imap-login: Disconnected (no auth attempts in 0 secs): user=<>, rip=80.11.30.178, lip=10.64.168.15, TLS handshaking: SSL_accept() failed: error:14094412:SSL routines:ssl3_read_bytes:sslv3 alert bad certificate: SSL alert number 42, session=<lqszw/3hisdQCx6y> Jun 21 23:41:46 srv-b postfix/smtpd[23329]: connect from unknown[141.98.10.81] Jun 21 23:41:50 srv-b postfix/smtpd[23329]: warning: unknown[141.98.10.81]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 21 23:41:50 srv-b postfix/smtpd[23329]: disconnect from unknown[141.98.10.81] ehlo=1 auth=0/1 quit=1 commands=2/3 Jun 21 23:41:54 srv-b postfix/qmgr[1311]: warning: problem talking to service rewrite: Connection timed out Jun 21 23:42:02 srv-b postfix/master[1307]: warning: unix_trigger_event: read timeout for service public/qmgr Jun 21 23:42:02 srv-b postfix/master[1307]: warning: unix_trigger_event: read timeout for service public/pickup Jun 21 23:42:17 srv-b postfix/smtpd[23329]: connect from unknown[141.98.11.17] Jun 21 23:42:20 srv-b postfix/submission/smtpd[19938]: connect from lneuilly-657-1-64-178.w80-11.abo.wanadoo.fr[80.11.30.178] Jun 21 23:42:22 srv-b postfix/smtpd[23329]: warning: unknown[141.98.11.17]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 21 23:42:22 srv-b postfix/smtpd[23329]: disconnect from unknown[141.98.11.17] ehlo=1 auth=0/1 quit=1 commands=2/3 Jun 21 23:42:29 srv-b postfix/proxymap[1317]: warning: request for unapproved table: "mysql:/etc/postfix/mysql-virtual_sender-relayhost.cf" Jun 21 23:42:29 srv-b postfix/proxymap[1317]: warning: to approve this table for read-only access, list proxy:mysql:/etc/postfix/mysql-virtual_sender-relayhost.cf in main.cf:proxy_read_maps Jun 21 23:42:29 srv-b postfix/trivial-rewrite[22154]: fatal: proxymap service is not configured for table "mysql:/etc/postfix/mysql-virtual_sender-relayhost.cf" Jun 21 23:42:30 srv-b postfix/master[1307]: warning: process /usr/lib/postfix/sbin/trivial-rewrite pid 22154 exit status 1 Jun 21 23:42:30 srv-b postfix/master[1307]: warning: /usr/lib/postfix/sbin/trivial-rewrite: bad command startup -- throttling Jun 21 23:42:43 srv-b postfix/smtpd[23329]: warning: hostname srv-141-98-11-74.serveroffer.net does not resolve to address 141.98.11.74: Name or service not known Jun 21 23:42:43 srv-b postfix/smtpd[23329]: connect from unknown[141.98.11.74] Jun 21 23:42:47 srv-b postfix/smtpd[23329]: warning: unknown[141.98.11.74]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 21 23:42:47 srv-b postfix/smtpd[23329]: disconnect from unknown[141.98.11.74] ehlo=1 auth=0/1 quit=1 commands=2/3 Jun 21 23:42:50 srv-b postfix/smtpd[23329]: warning: hostname 110.getpocket.com does not resolve to address 91.224.92.110: Name or service not known Jun 21 23:42:50 srv-b postfix/smtpd[23329]: connect from unknown[91.224.92.110] Jun 21 23:42:55 srv-b postfix/qmgr[1311]: warning: problem talking to service rewrite: Connection timed out Jun 21 23:42:56 srv-b postfix/smtpd[23329]: warning: unknown[91.224.92.110]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 21 23:42:56 srv-b postfix/smtpd[23329]: disconnect from unknown[91.224.92.110] ehlo=1 auth=0/1 quit=1 commands=2/3 J
You have a problem in the setup of your certificate files. You probably need to add $sender_dependent_relayhost_maps to proxy_read_maps. That should be done for you when you reconfigure services, do you have a custom proxy_read_maps setting which needs updated (eg. in a file under /usr/local/ispconfig/server/conf-custom/install)? Or maybe something went wrong in configuring services on your system.
Hi @Jesse Norell I just have : Code: /usr/local/ispconfig/server/conf-custom/install# ls -l total 4 -rwxr-x--- 1 root root 45 Jun 21 23:00 empty.dir What you mean with :
Hi, found a new problem after upgrade. How can I fix this ? MariaDb password is correct but : Code: 2022-06-22 11:26:51 13091 [Warning] Aborted connection 13091 to db: 'dbispconfig' user: 'ispconfig' host: 'localhost' (Got an error reading communication packets) Connexion to phpmyadmin is still ok
in main.cf you should have something like: Code: proxy_read_maps = $local_recipient_maps $mydestination $virtual_alias_maps $virtual_alias_domains $sender_bcc_maps $virtual_mailbox_maps $virtual_mailbox_domains $relay_recipient_maps $relay_domains $canonical_maps $sender_canonical_maps $recipient_canonical_maps $relocated_maps $transport_maps $mynetworks $smtpd_sender_login_maps $virtual_uid_maps $virtual_gid_maps $smtpd_client_restrictions $smtpd_sender_restrictions $smtpd_recipient_restrictions $smtp_sasl_password_maps $sender_dependent_relayhost_maps Not sure what's going on there, do you see any errors in logs from the mysql server shutting down or crashing, or anything else helpful around that time?