Need help with ISPConfig Mail and Squirrelmail

Discussion in 'Installation/Configuration' started by m.xander, Dec 24, 2011.

Page 6 of 6
  1. cbj4074

    cbj4074 Member

    Is my test account still active? If so, I can't login either.

    If you look back through the posts in this thread, and you check the relevant logs, does anything obvious turn-up? In particular, look at /var/log/mail.log and /var/log/auth.log. Do you see failures logged for me?
     
    cbj4074, Jan 29, 2012
    #101
  2. m.xander

    m.xander New Member

    m.xander, Jan 30, 2012
    #102
  3. cbj4074

    cbj4074 Member

    Let's focus on figuring out why things "broke" seemingly all-of-a-sudden, and then we can focus on the rest ;).

    Attached is what Thunderbird displays while attempting to connect to IMAP (and POP) with the legit email account.

    This is a new message throughout this massive thread. There has to be something in the log that tells us more.
     

    Attached Files:

    cbj4074, Jan 31, 2012
    #103
  4. m.xander

    m.xander New Member

    from /var/log/mail.log
    Code:
    Jan 31 15:40:02 25612-21212 amavis[8118]: (08118-20) Passed CLEAN, <[email protected]> -> <[email protected]>, Message-ID: <20120131044001.7F47FC748380@25612-21212.vps.digitalpacific.com.au>, mail_id: iMtx2LobGP6N, Hits: -0.001, size: 729, queued_as: B87EFC74836C, 1217 ms
Jan 31 15:40:02 25612-21212 postfix/smtp[11992]: 7F47FC748380: to=<[email protected]>, orig_to=<root>, relay=127.0.0.1[127.0.0.1]:10024, delay=1.4, delays=0.13/0.01/0.01/1.2, dsn=2.0.0, status=sent (250 2.0.0 Ok, id=08118-20, from MTA([127.0.0.1]:10025): 250 2.0.0 Ok: queued as B87EFC74836C)
Jan 31 15:40:02 25612-21212 postfix/qmgr[3182]: 7F47FC748380: removed
Jan 31 15:40:02 25612-21212 postfix/pipe[12008]: B87EFC74836C: to=<[email protected]>, relay=dovecot, delay=0.04, delays=0.02/0.01/0/0.01, dsn=5.1.1, status=bounced (user unknown)
Jan 31 15:40:02 25612-21212 postfix/cleanup[11985]: C12C1C748DB7: message-id=<20120131044002.C12C1C748DB7@25612-21212.vps.digitalpacific.com.au>
Jan 31 15:40:02 25612-21212 postfix/qmgr[3182]: C12C1C748DB7: from=<>, size=3238, nrcpt=1 (queue active)
Jan 31 15:40:02 25612-21212 postfix/bounce[12010]: B87EFC74836C: sender non-delivery notification: C12C1C748DB7
Jan 31 15:40:02 25612-21212 postfix/qmgr[3182]: B87EFC74836C: removed
Jan 31 15:40:02 25612-21212 postfix/pipe[12008]: C12C1C748DB7: to=<[email protected]>, relay=dovecot, delay=0.05, delays=0.05/0/0/0.01, dsn=5.1.1, status=bounced (user unknown)
Jan 31 15:40:02 25612-21212 postfix/qmgr[3182]: C12C1C748DB7: removed
Jan 31 15:45:01 25612-21212 dovecot: pop3-login: Disconnected (no auth attempts): rip=127.0.0.1, lip=127.0.0.1, secured
Jan 31 15:45:01 25612-21212 dovecot: imap-login: Disconnected (no auth attempts): rip=127.0.0.1, lip=127.0.0.1, secured
Jan 31 15:45:01 25612-21212 postfix/smtpd[12084]: connect from localhost.localdomain[127.0.0.1]
Jan 31 15:45:01 25612-21212 postfix/smtpd[12084]: lost connection after CONNECT from localhost.localdomain[127.0.0.1]
Jan 31 15:45:01 25612-21212 postfix/smtpd[12084]: disconnect from localhost.localdomain[127.0.0.1]
Jan 31 15:46:51 25612-21212 postfix/qmgr[3182]: 5934DC7483C7: from=<[email protected]>, size=1219, nrcpt=1 (queue active)
Jan 31 15:46:51 25612-21212 dovecot: deliver([email protected]): chdir(/var/vmail/xanderit.com/cbj4074) failed: Permission denied
Jan 31 15:46:51 25612-21212 dovecot: deliver([email protected]): sieve: stat(/var/vmail/xanderit.com/cbj4074/.sieve) failed: Permission denied (using global script path in stead)
Jan 31 15:46:51 25612-21212 dovecot: deliver([email protected]): stat(/var/vmail/xanderit.com/cbj4074/Maildir) failed: Permission denied
Jan 31 15:46:51 25612-21212 dovecot: deliver([email protected]): stat(/var/vmail/xanderit.com/cbj4074/Maildir/tmp) failed: Permission denied (euid=5000(vmail) egid=5000(vmail) missing +x perm: /var/vmail/xanderit.com)
Jan 31 15:46:51 25612-21212 dovecot: deliver([email protected]): msgid=<20120130015002.0A6FDC7483CC@25612-21212.vps.digitalpacific.com.au>: save failed to INBOX: Internal error occurred. Refer to server log for more information. [2012-01-31 15:46:51]
Jan 31 15:46:51 25612-21212 postfix/pipe[12119]: 5934DC7483C7: to=<[email protected]>, relay=dovecot, delay=97010, delays=97010/0.02/0/0.01, dsn=4.3.0, status=deferred (temporary failure)
Jan 31 15:48:24 25612-21212 dovecot: dovecot: Fatal: chdir(/var/vmail/xanderit.com/admin/) failed: Permission denied (euid=5000(vmail) egid=5000(vmail) missing +x perm: /var/vmail/xanderit.com)
     
    m.xander, Jan 31, 2012
    #104
  5. m.xander

    m.xander New Member

    from /var/log/auth.log
    Code:
    Jan 31 16:21:01 25612-21212 CRON[13941]: pam_unix(cron:session): session closed for user root
Jan 31 16:22:01 25612-21212 CRON[13950]: pam_unix(cron:session): session opened for user root by (uid=0)
Jan 31 16:22:01 25612-21212 CRON[13950]: pam_unix(cron:session): session closed for user root
Jan 31 16:23:01 25612-21212 CRON[13958]: pam_unix(cron:session)Jan 31 17:31:01 25612-21212 CRON[17542]: pam_unix(cron:session): session closed for user root
Jan 31 17:32:01 25612-21212 CRON[17573]: pam_unix(cron:session): session opened for user root by (uid=0)
Jan 31 17:32:01 25612-21212 CRON[17573]: pam_unix(cron:session): session closed for user root
Jan 31 17:32:28 25612-21212 sshd[17579]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=node16.seo-host.com  user=root
Jan 31 17:32:30 25612-21212 sshd[17579]: Failed password for root from 66.154.45.220 port 19386 ssh2
Jan 31 17:32:32 25612-21212 sshd[17581]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=node16.seo-host.com  user=root
Jan 31 17:32:34 25612-21212 sshd[17581]: Failed password for root from 66.154.45.220 port 21192 ssh2
Jan 31 17:32:36 25612-21212 sshd[17583]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=node16.seo-host.com  user=root
Jan 31 17:32:37 25612-21212 sshd[17583]: Failed password for root from 66.154.45.220 port 22952 ssh2
Jan 31 17:32:39 25612-21212 sshd[17585]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=node16.seo-host.com  user=root
Jan 31 17:32:41 25612-21212 sshd[17585]: Failed password for root from 66.154.45.220 port 24575 ssh2
Jan 31 17:32:43 25612-21212 sshd[17587]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=node16.seo-host.com  user=root
Jan 31 17:32:44 25612-21212 sshd[17587]: Failed password for root from 66.154.45.220 port 26199 ssh2
Jan 31 17:32:49 25612-21212 sshd[17589]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=node16.seo-host.com  user=root: session opened for user root by (uid=0)
Jan 31 16:23:01 25612-21212 CRON[13958]: pam_unix(cron:session): session closed for user root
Jan 31 16:24:01 25612-21212 CRON[13964]: pam_unix(cron:session): session opened for user root by (uid=0)
Jan 31 16:24:01 25612-21212 CRON[13964]: pam_unix(cron:session): session closed for user root
Jan 31 16:25:01 25612-21212 CRON[13988]: pam_unix(cron:session): session opened for user getmail by (uid=0)
Jan 31 16:25:01 25612-21212 CRON[13990]: pam_unix(cron:session): session opened for user root by (uid=0)
Jan 31 16:25:01 25612-21212 CRON[13988]: pam_unix(cron:session): session closed for user getmail
     
    m.xander, Jan 31, 2012
    #105
  6. cbj4074

    cbj4074 Member

    Well, that was easy. :)

    So, it's a permissions problem. The relevant bits:

    Code:
    Jan 31 15:46:51 25612-21212 dovecot: deliver([email protected]): chdir(/var/vmail/xanderit.com/cbj4074) failed: Permission denied
Jan 31 15:46:51 25612-21212 dovecot: deliver([email protected]): sieve: stat(/var/vmail/xanderit.com/cbj4074/.sieve) failed: Permission denied (using global script path in stead)
Jan 31 15:46:51 25612-21212 dovecot: deliver([email protected]): stat(/var/vmail/xanderit.com/cbj4074/Maildir) failed: Permission denied
Jan 31 15:46:51 25612-21212 dovecot: deliver([email protected]): stat(/var/vmail/xanderit.com/cbj4074/Maildir/tmp) failed: Permission denied (euid=5000(vmail) egid=5000(vmail) missing +x perm: /var/vmail/xanderit.com)
Jan 31 15:46:51 25612-21212 dovecot: deliver([email protected]): msgid=<20120130015002.0A6FDC7483CC@25612-21212.vps.digitalpacific.com.au>: save failed to INBOX: Internal error occurred. Refer to server log for more information. [2012-01-31 15:46:51]
Jan 31 15:46:51 25612-21212 postfix/pipe[12119]: 5934DC7483C7: to=<[email protected]>, relay=dovecot, delay=97010, delays=97010/0.02/0/0.01, dsn=4.3.0, status=deferred (temporary failure)
Jan 31 15:48:24 25612-21212 dovecot: dovecot: Fatal: chdir(/var/vmail/xanderit.com/admin/) failed: Permission denied (euid=5000(vmail) egid=5000(vmail) missing +x perm: /var/vmail/xanderit.com)
    (Note that the /var/log/auth.log excerpt doesn't contain anything relevant; those root login failures are unrelated and most likely someone is attempting to brute-force his way into your box [which is inevitable]).

    Recall that the permissions on /var/vmail were set incorrectly on your system at some point in the past (we covered that in a previous post in this thread). Please look back over that discussion and ensure that the permissions are correct.

    Obviously, it these permissions keep being changed "for no reason", we need to isolate the cause.
     
    cbj4074, Jan 31, 2012
    #106
  7. m.xander

    m.xander New Member

    OK.. that's fixed it...

    note after we got it running the first time re-installing ISPConfig with Dovecot I went back to working on the website and was unable to connect using FileZilla, and had to change permissions for /var/www/clients/client2/web3/ to get FTP access.

    So after a new domain is added will I have to change vmail permissions for newdomain.com folder and /var/www/clients/client*/web*/ - I assumed that ISPConfig sets permissions when creating domains, mailbox's, FTP-user's, sites etc. so that the client has the relevant permissions..?
     
    m.xander, Feb 1, 2012
    #107
  8. cbj4074

    cbj4074 Member

    No, you should not have to change permissions on anything. ISPConfig may not set its own permissions, but at a minimum, files and directories that it creates will inherit the permissions of the parent directory. As long as the permissions for the relevant Web, FTP, and mail directories are configured properly from the beginning, they should never have to be changed.

    That said, if the software is changed (e.g., replaced, reinstalled, or reconfigured), there's no guarantee that the permissions will continue to be correct.

    Well, keep an eye on those logs if any problems arise and holler if this type of thing persists.

    As a final point of note, I would remove Postfix and Maildrop altogether, to ensure that they aren't messing with your permissions. If you remove the software, there is the risk of removing packages on which other software depends, so use caution. As long as all of your software was installed using your Linux distributions' packages, the dependencies should be handled automatically.
     
    cbj4074, Feb 1, 2012
    #108
  9. till

    till Super Moderator Staff Member ISPConfig Developer

    ISPConfig sets all permissions, so there should be need to adjust them manually. There was a bug in ISPConfig 3.0.4.1 which has been fixed in 3.0.4.2, so if the site was created with 3.0.4.1 or you dont run 2.0.4.2 already, then it might be that some permissions were not corect. You should update your server to the latest available ISPconfig version.
     
    till, Feb 1, 2012
    #109
  10. m.xander

    m.xander New Member

    I don't quite understand it at this stage but I think I know what caused the permissions thing. Because I mucked around with a previous ISPConfig installation setting up 3 clients' domains, emails and ftp users... after re-installing ISPConfig the original database records for clients 1 2 and 3 didn't have identical usernames and passwords to clients' 1 2 and 3 when I tried again after re-install...
    I haven't tried yet but I bet from client4 on there won't be any issues.
     
    m.xander, Feb 3, 2012
    #110
Page 6 of 6

Share This Page