Squirrel Mail Unknown user or password incorrect. Dovecot-Postfix with MySQL Support

Having troubl;e getting Dovecot and Postfix with MySQL support to work on CentOS 5.5

I followed the instructions at:
http://www.howtoforge.com/perfect-server-centos-5.5-x86_64-ispconfig-3-p4

Situation:
I can send and recieve mail just fine from the shell using mutt

I can't receive mail in any of my hosted domains in the Maildir folders. I get an error message like so:

Code:

Aug 17 09:42:57 jpre postfix/smtpd[20812]: warning: cannot get certificate from file /etc/postfix/smtpd.cert
Aug 17 09:42:57 jpre postfix/smtpd[20812]: warning: TLS library problem: 20812:error:02001002:system library:fopen:No such file or directory:bss_file.c:352:fopen('/etc/postfix/smtpd.cert','r'):
Aug 17 09:42:57 jpre postfix/smtpd[20812]: warning: TLS library problem: 20812:error:20074002:BIO routines:FILE_CTRL:system lib:bss_file.c:354:
Aug 17 09:42:57 jpre postfix/smtpd[20812]: warning: TLS library problem: 20812:error:140DC002:SSL routines:SSL_CTX_use_certificate_chain_file:system lib:ssl_rsa.c:720:
Aug 17 09:42:57 jpre postfix/smtpd[20812]: cannot load RSA certificate and key data
Aug 17 09:42:57 jpre postfix/smtpd[20812]: connect from mail-ey0-f177.google.com[209.85.215.177]
Aug 17 09:42:58 jpre postfix/smtpd[20812]: 6C7DF2928099: client=mail-ey0-f177.google.com[209.85.215.177]
Aug 17 09:42:58 jpre postfix/cleanup[20824]: 6C7DF2928099: message-id=<[email protected]>
Aug 17 09:42:58 jpre postfix/qmgr[26713]: 6C7DF2928099: from=<[email protected]>, size=1901, nrcpt=1 (queue active)
Aug 17 09:42:58 jpre maildrop[20827]: Unable to open mailbox.
Aug 17 09:42:58 jpre postfix/pipe[20826]: 6C7DF2928099: to=<[email protected]>, relay=maildrop, delay=0.53, delays=0.51/0.01/0/0.02, dsn=4.3.0, status=deferred (temporary failure. Command output: /usr/bin/maildrop: Unable to open mailbox. )
Aug 17 09:43:28 jpre postfix/smtpd[20812]: disconnect from mail-ey0-f177.google.com[209.85.215.177]

When I try to log in with Squirrelmail I get these errors:

Code:

Aug 17 09:45:01 jpre postfix/smtpd[20812]: connect from localhost.localdomain[127.0.0.1]
Aug 17 09:45:01 jpre postfix/smtpd[20812]: lost connection after CONNECT from localhost.localdomain[127.0.0.1]
Aug 17 09:45:01 jpre postfix/smtpd[20812]: disconnect from localhost.localdomain[127.0.0.1]
Aug 17 09:45:01 jpre dovecot: pop3-login: Disconnected (no auth attempts): rip=127.0.0.1, lip=127.0.0.1, mpid=0, secured
Aug 17 09:45:01 jpre dovecot: imap-login: Disconnected (no auth attempts): rip=127.0.0.1, lip=127.0.0.1, mpid=0, secured
Aug 17 09:46:40 jpre dovecot: imap-login: Aborted login (auth failed, 1 attempts): user=<[email protected]>, method=PLAIN, rip=127.0.0.1, lip=127.0.0.1, mpid=0, secured

Here is what I have in /etc/main.cf

Code:

queue_directory = /var/spool/postfix
command_directory = /usr/sbin
daemon_directory = /usr/libexec/postfix
mail_owner = postfix
inet_interfaces = all
mydestination = jpre.net, localhost, localhost.localdomain
unknown_local_recipient_reject_code = 550
alias_maps = hash:/etc/aliases
alias_database = hash:/etc/aliases
debug_peer_level = 2
debugger_command =
	 PATH=/bin:/usr/bin:/usr/local/bin:/usr/X11R6/bin
	 xxgdb $daemon_directory/$process_name $process_id & sleep 5
sendmail_path = /usr/sbin/sendmail.postfix
newaliases_path = /usr/bin/newaliases.postfix
mailq_path = /usr/bin/mailq.postfix
setgid_group = postdrop
html_directory = no
manpage_directory = /usr/share/man
sample_directory = /usr/share/doc/postfix-2.3.3/samples
readme_directory = /usr/share/doc/postfix-2.3.3/README_FILES
myhostname = jpre.net
mynetworks = 127.0.0.0/8 [::1]/128
virtual_alias_domains = 
virtual_alias_maps = proxy:mysql:/etc/postfix/mysql-virtual_forwardings.cf, mysql:/etc/postfix/mysql-virtual_email2email.cf
virtual_mailbox_domains = proxy:mysql:/etc/postfix/mysql-virtual_domains.cf
virtual_mailbox_maps = proxy:mysql:/etc/postfix/mysql-virtual_mailboxes.cf
virtual_mailbox_base = /var/vmail
virtual_uid_maps = static:5000
virtual_gid_maps = static:5000
smtpd_sasl_auth_enable = yes
broken_sasl_auth_clients = yes
smtpd_sasl_authenticated_header = yes
smtpd_recipient_restrictions = permit_mynetworks, permit_sasl_authenticated, check_recipient_access mysql:/etc/postfix/mysql-virtual_recipient.cf, reject_unauth_destination
smtpd_use_tls = yes
smtpd_tls_security_level = may
smtpd_tls_cert_file = /etc/postfix/smtpd.cert
smtpd_tls_key_file = /etc/postfix/smtpd.key
transport_maps = proxy:mysql:/etc/postfix/mysql-virtual_transports.cf
relay_domains = mysql:/etc/postfix/mysql-virtual_relaydomains.cf
relay_recipient_maps = mysql:/etc/postfix/mysql-virtual_relayrecipientmaps.cf
virtual_create_maildirsize = yes
virtual_maildir_extended = yes
virtual_mailbox_limit_maps = proxy:mysql:/etc/postfix/mysql-virtual_mailbox_limit_maps.cf
virtual_mailbox_limit_override = yes
virtual_maildir_limit_message = "The user you are trying to reach is over quota."
virtual_overquota_bounce = yes
proxy_read_maps = $local_recipient_maps $mydestination $virtual_alias_maps $virtual_alias_domains $virtual_mailbox_maps $virtual_mailbox_domains $relay_recipient_maps $relay_domains $canonical_maps $sender_canonical_maps $recipient_canonical_maps $relocated_maps $transport_maps $mynetworks $virtual_mailbox_limit_maps
smtpd_sender_restrictions = check_sender_access mysql:/etc/postfix/mysql-virtual_sender.cf
smtpd_client_restrictions = check_client_access mysql:/etc/postfix/mysql-virtual_client.cf
maildrop_destination_concurrency_limit = 1
maildrop_destination_recipient_limit = 1
virtual_transport = maildrop
header_checks = regexp:/etc/postfix/header_checks
mime_header_checks = regexp:/etc/postfix/mime_header_checks
nested_header_checks = regexp:/etc/postfix/nested_header_checks
body_checks = regexp:/etc/postfix/body_checks

Here is what I have in /etc/master.cf

Code:

smtp      inet  n       -       n       -       -       smtpd
pickup    fifo  n       -       n       60      1       pickup
cleanup   unix  n       -       n       -       0       cleanup
qmgr      fifo  n       -       n       300     1       qmgr
tlsmgr    unix  -       -       n       1000?   1       tlsmgr
rewrite   unix  -       -       n       -       -       trivial-rewrite
bounce    unix  -       -       n       -       0       bounce
defer     unix  -       -       n       -       0       bounce
trace     unix  -       -       n       -       0       bounce
verify    unix  -       -       n       -       1       verify
flush     unix  n       -       n       1000?   0       flush
proxymap  unix  -       -       n       -       -       proxymap
smtp      unix  -       -       n       -       -       smtp
relay     unix  -       -       n       -       -       smtp
	-o fallback_relay=
showq     unix  n       -       n       -       -       showq
error     unix  -       -       n       -       -       error
discard   unix  -       -       n       -       -       discard
local     unix  -       n       n       -       -       local
virtual   unix  -       n       n       -       -       virtual
lmtp      unix  -       -       n       -       -       lmtp
anvil     unix  -       -       n       -       1       anvil
scache	  unix	-	-	n	-	1	scache
maildrop  unix  -       n       n       -       -       pipe
  flags=DRhu user=vmail argv=/usr/bin/maildrop -d vmail ${extension} ${recipient} ${user} ${nexthop} ${sender}
old-cyrus unix  -       n       n       -       -       pipe
  flags=R user=cyrus argv=/usr/lib/cyrus-imapd/deliver -e -m ${extension} ${user}
cyrus     unix  -       n       n       -       -       pipe
  user=cyrus argv=/usr/lib/cyrus-imapd/deliver -e -r ${sender} -m ${extension} ${user}
uucp      unix  -       n       n       -       -       pipe
  flags=Fqhu user=uucp argv=uux -r -n -z -a$sender - $nexthop!rmail ($recipient)
ifmail    unix  -       n       n       -       -       pipe
  flags=F user=ftn argv=/usr/lib/ifmail/ifmail -r $nexthop ($recipient)
bsmtp     unix  -       n       n       -       -       pipe
  flags=Fq. user=foo argv=/usr/local/sbin/bsmtp -f $sender $nexthop $recipient
dovecot   unix  -       n       n       -       -       pipe
  flags=DRhu user=vmail:vmail argv=/usr/libexec/dovecot/deliver -f ${sender} -d ${user}@${nexthop}
amavis unix - - - - 2 smtp
        -o smtp_data_done_timeout=1200
        -o smtp_send_xforward_command=yes
127.0.0.1:10025 inet n - - - - smtpd
        -o content_filter=
        -o local_recipient_maps=
        -o relay_recipient_maps=
        -o smtpd_restriction_classes=
        -o smtpd_client_restrictions=
        -o smtpd_helo_restrictions=
        -o smtpd_sender_restrictions=
        -o smtpd_recipient_restrictions=permit_mynetworks,reject
        -o mynetworks=127.0.0.0/8
        -o strict_rfc821_envelopes=yes
        -o receive_override_options=no_unknown_recipient_checks,no_header_body_checks
        -o smtpd_bind_address=127.0.0.1

Not sure if it matters but just in case. My nameservers point to my hostname where I am running bind. Everything is resolving OK. Just in case. Here is the out put of dig for the email domain I am setting up in ISP Config 3:

# dig -mx pcmgdoc.com

Code:

; <<>> DiG 9.3.6-P1-RedHat-9.3.6-4.P1.el5_4.2 <<>> mx pcmgdoc.com
;; global options:  printcmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 12407
;; flags: qr rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 0

;; QUESTION SECTION:
;pcmgdoc.com.			IN	MX

;; ANSWER SECTION:
pcmgdoc.com.		86400	IN	MX	10 mail.pcmgdoc.com.

;; Query time: 67 msec
;; SERVER: 208.67.220.220#53(208.67.220.220)
;; WHEN: Tue Aug 17 10:02:22 2010
;; MSG SIZE  rcvd: 50

Thanks in advance!

 

Does this happen for all email accounts? Maybe something is wrong with the Maildir permissions?

 

Yes ... it does happen on all other accounts. The exact same error from squirrelmail. I just created a new mailbox for user: test and it is the same.

Here is the folder permission:

Code:

# pwd
/var/vmail/pcmgdoc.com

# ls -la
total 20
drwx------ 5 vmail vmail 4096 Aug 18 07:38 .
drwx------ 6 vmail vmail 4096 Aug 16 22:02 ..
drwx------ 5 vmail vmail 4096 Aug 16 23:13 david
drwx------ 3 vmail vmail 4096 Aug 18 00:53 davidp
drwx------ 6 vmail vmail 4096 Aug 18 07:39 test

# ls -la test
total 28
drwx------ 6 vmail vmail 4096 Aug 18 07:39 .
drwx------ 5 vmail vmail 4096 Aug 18 07:38 ..
drwx------ 2 vmail vmail 4096 Aug 18 07:38 cur
-rw-rw---- 1 vmail vmail    4 Aug 18 07:38 ispconfig_mailsize
drwx------ 9 vmail vmail 4096 Aug 18 07:39 Maildir
drwx------ 2 vmail vmail 4096 Aug 18 07:38 new
drwx------ 2 vmail vmail 4096 Aug 18 07:38 tmp

 

Please take a look here:
http://www.howtoforge.com/forums/showthread.php?t=37773
http://www.howtoforge.com/forums/showthread.php?t=42935

 

Went through these links.

1. Checked and set all folder permissions and they are all correct.
2. All /var/vmail directors are there as expected with the proper missions and ownerships.
3. Removed and reinstalled maildrop.
4. Changed /etc/postfix/master.cf maildrop stanza as follows:

Code:

maildrop  unix  -       n       n       -       -       pipe
  flags=R user=vmail argv=/usr/bin/maildrop -d ${recipient} ${extension} ${recipient} ${user} ${nexthop} ${sender}

... as in the examples. I don't believe this is an issues to downgrade maildrop.

Sorry ... but I am confused about how this all works. Remember, I am using Dovecot and not courier-imap

in master.cf ... I also have:

Code:

dovecot   unix  -       n       n       -       -       pipe
  flags=DRhu user=vmail:vmail argv=/usr/libexec/dovecot/deliver -f ${sender} -d ${user}@${nexthop}

Same problem exists. Thanks for your post.

 

AFAIK, maildrop is only needed if you use Courier. Till might be able to confirm this when he's back from holidays.

 

Right... but I don't think it will make any difference if I remove it. Maybe it would. Where does the mail system define the delivery agent? I believe the problem is with Dovecot delivery perhaps not being used because I screwed up the config somewhere. Something like that.

I hate writing posts that sound stupid to other people who know a lot more about this. You can't know it all. Thanks for any help here - still stumped.