==== 必填信息。没有填写将不予回复 ====
- iRedMail 版本号:0.8.5
- 使用哪个数据库存储用户帐号(OpenLDAP,MySQL,PostgreSQL):OpenLDAP
- 使用的 Linux/BSD 发行版名称及版本号:CentOs6.4
- 与您的问题相关的日志信息:
====
Hi ,張'R
1).我按照此處的文檔試作,不知是哪裡出錯, 無法成功:
http://iredmail.org/wiki/index.php?titl … aster.User

2).錯誤訊息 及其他設定:
dovecot.log如下:

Jul 18 18:05:41 auth: Debug: Loading modules from directory: /usr/lib64/dovecot/auth
Jul 18 18:05:41 auth: Debug: Module loaded: /usr/lib64/dovecot/auth/libauthdb_ldap.so
Jul 18 18:05:41 auth: Debug: Module loaded: /usr/lib64/dovecot/auth/libdriver_mysql.so
Jul 18 18:05:41 auth: Debug: Module loaded: /usr/lib64/dovecot/auth/libdriver_pgsql.so
Jul 18 18:05:41 auth: Debug: Module loaded: /usr/lib64/dovecot/auth/libdriver_sqlite.so
Jul 18 18:05:41 auth: Debug: Module loaded: /usr/lib64/dovecot/auth/libmech_gssapi.so
Jul 18 18:05:41 auth: Error: Error in configuration file /etc/dovecot/dovecot-ldap.conf line 21: Unknown setting: user_query
Jul 18 18:05:41 master: Error: service(auth): command startup failed, throttling
Jul 18 18:05:41 log: Error: service(auth): child 2371 returned error 89 (Fatal failure)

dovecot-ldap.conf 內容如下:
第21行

# add master can  accessing other's mailbox
user_query = mail=aaaaadmin

doveconf -n 的內容:

# 2.0.21: /etc/dovecot/dovecot.conf
# OS: Linux 2.6.32-358.el6.x86_64 x86_64 CentOS release 6.4 (Final)
auth_debug = yes
auth_debug_passwords = yes
auth_master_user_separator = *
auth_mechanisms = PLAIN LOGIN
auth_verbose = yes
dict {
  acl = mysql:/etc/dovecot/dovecot-share-folder.conf
  quotadict = mysql:/etc/dovecot/dovecot-used-quota.conf
}
first_valid_uid = 2000
last_valid_uid = 2000
listen = *
log_path = /var/log/dovecot.log
mail_debug = yes
mail_gid = 2000
mail_location = maildir:/%Lh/Maildir/:INDEX=/%Lh/Maildir/
mail_plugins = quota
mail_uid = 2000
managesieve_notify_capability = mailto
managesieve_sieve_capability = fileinto reject envelope encoded-character vacation subaddress comparator-i;ascii-numeric relational regex imap4flags copy include variables body enotify environment mailbox date ihave
namespace {
  inbox = yes
  location = maildir:/%Lh/Maildir/:INDEX=/%Lh/Maildir/
  prefix =
  separator = /
  subscriptions = yes
  type = private
}
namespace {
  list = children
  location = maildir:/%%Lh/Maildir/:INDEX=/%%Lh/Maildir/Shared/%%u
  prefix = Shared/%%u/
  separator = /
  type = shared
}
passdb {
  args = /etc/dovecot/dovecot-ldap.conf
  driver = ldap
}
passdb {
  args = /etc/dovecot/dovecot-master-user-password
  driver = passwd-file
  master = yes
}
plugin {
  acl = vfile
  acl_shared_dict = proxy::acl
  auth_socket_path = /var/run/dovecot/auth-master
  autocreate = INBOX
  autocreate2 = Sent
  autocreate3 = Trash
  autocreate4 = Drafts
  autocreate5 = Junk
  autosubscribe = INBOX
  autosubscribe2 = Sent
  autosubscribe3 = Trash
  autosubscribe4 = Drafts
  autosubscribe5 = Junk
  expire = Trash 7 Trash/* 7 Junk 30
  expire_dict = proxy::expire
  quota = dict:user::proxy::quotadict
  quota_rule = *:storage=1G
  quota_warning = storage=85%% quota-warning 85 %u
  quota_warning2 = storage=90%% quota-warning 90 %u
  quota_warning3 = storage=95%% quota-warning 95 %u
  sieve = /%Lh/sieve/dovecot.sieve
  sieve_dir = /%Lh/sieve
  sieve_global_dir = /var/vmail/sieve
  sieve_global_path = /var/vmail/sieve/dovecot.sieve
}
protocols = pop3 imap sieve
service auth {
  unix_listener /var/spool/postfix/dovecot-auth {
    group = postfix
    mode = 0666
    user = postfix
  }
  unix_listener auth-master {
    group = vmail
    mode = 0666
    user = vmail
  }
  unix_listener auth-userdb {
    group = vmail
    mode = 0660
    user = vmail
  }
}
service dict {
  unix_listener dict {
    group = vmail
    mode = 0660
    user = vmail
  }
}
service imap-login {
  process_limit = 500
  service_count = 1
}
service pop3-login {
  service_count = 1
}
service quota-warning {
  executable = script /usr/local/bin/dovecot-quota-warning.sh
  unix_listener quota-warning {
    group = vmail
    mode = 0660
    user = vmail
  }
}
ssl = required
ssl_cert = </etc/pki/tls/certs/iRedMail_CA.pem
ssl_key = </etc/pki/tls/private/iRedMail.key
userdb {
  args = /etc/dovecot/dovecot-ldap.conf
  driver = ldap
}
protocol lda {
  auth_socket_path = /var/run/dovecot/auth-master
  lda_mailbox_autocreate = yes
  log_path = /var/log/sieve.log
  mail_plugins = quota sieve autocreate acl
  postmaster_address = root
}
protocol imap {
  imap_client_workarounds = tb-extra-mailbox-sep
  mail_plugins = quota  imap_quota autocreate expire acl imap_acl
}
protocol pop3 {
  mail_plugins = quota
  pop3_client_workarounds = outlook-no-nuls oe-ns-eoh
  pop3_uidl_format = %08Xu%08Xv
}

3).Dovecot是有開起  share folder 功能, 故mail_plugins 加入acl 及imap_acl

4). 請 張'R 幫忙, 感恩!

177

(1 篇回复,发表在 iRedMail 技术支持)

==== 必填信息。没有填写将不予回复 ====
- iRedMail 版本号:0.8.5
- 使用哪个数据库存储用户帐号(OpenLDAP,MySQL,PostgreSQL):OpenLDAP
- 使用的 Linux/BSD 发行版名称及版本号:CentOs6.4
- 与您的问题相关的日志信息:
====
Hi  張'r:

1).重新安裝
按照網站教學文件:
# wget http://iredmail.googlecode.com/hg/extra … redmail.sh
# mv clear_iredmail.sh /path/to/iRedMail-x.y.z/tools/

/etc/openldap 會被整個刪除 ,我先重新再安裝openldap
yum reinstall openldap

2).cd  /iRedMail-x.y.z/
vi .status 內容全部刪除
再下 bash iRedMail.sh      #開始安裝

但會有此錯誤訊息:
cp: accessing `/etc/openldap/schema/amavisd-new.schema': Not a directory
ldap_sasl_bind(SIMPLE): Can't contact LDAP server (-1)

3).查看目錄底下有 /etc/openldap/schema 檔,
mv schema  amavisd-new.schema
mkdir schema
mv amavisd-new.schema schema/

4)./etc/init.d/slapd restart
仍有”could not stat config file "/etc/openldap/schema/core.schema": No such file or directory (2) “

a).請問要如何重新安裝?
b).執行 clear_iredmail.sh  , 會有刪除檔案確認, 要非常非常多次的 Y確認 , 有沒有更快的方法?

==== 必填信息。没有填写将不予回复 ====
- iRedMail 版本号:
- 使用哪个数据库存储用户帐号(OpenLDAP,MySQL,PostgreSQL):
- 使用的 Linux/BSD 发行版名称及版本号:
- 与您的问题相关的日志信息:
==== ==== 必填信息。没有填写将不予回复 ====
- iRedMail 版本号:0.8.4
- 使用哪个数据库存储用户帐号(OpenLDAP,MySQL,PostgreSQL):OplenLDAP
- 使用的 Linux/BSD 发行版名称及版本号:CentOs6.4
- 与您的问题相关的日志信息:
====

Hi ,張'R

此處的文章是否有問題?
Install iRedAPD for OpenLDAP backend

附圖為我比較 Install iRedAPD for MySQL backend 裡的文章,
裡面有我問題註解.

請幫我解惑 , 謝謝 .

==== 必填信息。没有填写将不予回复 ====
- iRedMail 版本号:iRedMail-0.8.3
- 使用哪个数据库存储用户帐号(OpenLDAP,MySQL,PostgreSQL):OpenLDAP
- 使用的 Linux/BSD 发行版名称及版本号:CentOS6.4
- 与您的问题相关的日志信息:
====
Hi ,張

a). iRedMail-0.8.3及iRedMail-0.8.4 ,經解壓縮後會出現奇怪的檔案;且每個目錄都有.
(我是把 0.8.0 到 0.8.4下載解壓縮, 0.7.4 則是先前下載備份 upload 到Server )

出現如下情形:

drwxr-xr-x. 9 root root    4096 2012-01-08 23:44 iRedMail-0.7.4
-rw-rw-r--. 1   aa    aa     99124 2012-02-06 11:55 iRedMail-0.7.4.tar.bz2
drwxr-xr-x. 9  501   games   4096 2012-05-10 11:41 iRedMail-0.8.0
-rw-r--r--. 1     root   root  114096 2012-05-10 11:52 iRedMail-0.8.0.tar.bz2
drwxr-xr-x. 9  501     games   4096 2012-06-13 14:05 iRedMail-0.8.1
-rw-r--r--. 1    root      root  115206 2012-06-13 14:06 iRedMail-0.8.1.tar.bz2
drwxr-xr-x. 9  501      games   4096 2012-09-19 08:15 iRedMail-0.8.2
-rw-r--r--. 1     root     root  119245 2012-09-19 08:15 iRedMail-0.8.2.tar.bz2
-rwxr-xr-x. 1    501      games    216 2012-10-22 08:24 ._iRedMail-0.8.3
drwxr-xr-x. 9   501      games   4096 2012-10-22 08:24 iRedMail-0.8.3
-rw-r--r--. 1      root      root  120989 2012-11-03 12:11 iRedMail-0.8.3.tar.bz2
-rwxr-xr-x. 1     501      games    216 2013-04-12 16:32 ._iRedMail-0.8.4
drwxr-xr-x. 9     501      games   4096 2013-07-05 13:14 iRedMail-0.8.4
-rw-r--r--. 1       root      root  123164 2013-04-12 16:33 iRedMail-0.8.4.tar.bz2

b). 查看內容如下:
vi ._iRedMail-0.8.3

^@^E^V^G^@^B^@^@Mac OS X        ^@^B^@^@^@      ^@^@^@2^@^@^@¦^@^@^@^B^@^@^@Ø^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@ATTR^@^@^@^@^@^@^@Ø^@^@^@<98>^@^@^@@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^A^@^@^@<98>^@^@^@@^@^@^Ucom.apple.quarantine^@q/0002;5167c680;Safari.app;B45B59AE-EBAA-4B2E-B9A1-11CC40363F66^@

c). 進入 iRedMail-0.8.3

 
[root@mail.aaaa.com /home/aa/iRedMail-0.8.3]# ll -la
總計 136
drwxr-xr-x. 9 501 games  4096 2012-10-22 08:24 .
drwx------. 8 aa  aa     4096 2013-07-05 14:38 ..
-rw-r--r--. 1 501 games 39294 2012-10-22 08:24 ChangeLog
-rw-r--r--. 1 501 games   216 2012-10-22 08:24 ._ChangeLog
drwxr-xr-x. 2 501 games  4096 2013-07-05 13:16 conf
-rwxr-xr-x. 1 501 games   216 2012-10-22 08:24 ._conf
drwxr-xr-x. 2 501 games  4096 2013-07-05 13:16 dialog
-rwxr-xr-x. 1 501 games   216 2012-10-22 08:24 ._dialog
-rw-r--r--. 1 501 games   990 2012-10-22 08:24 Documentations
-rw-r--r--. 1 501 games   216 2012-10-22 08:24 ._Documentations
drwxr-xr-x. 2 501 games  4096 2013-07-05 13:16 functions
-rwxr-xr-x. 1 501 games   216 2012-11-03 12:11 ._functions
-rw-r--r--. 1 501 games   216 2012-10-22 08:24 ._iRedMail.sh
-rw-r--r--. 1 501 games  5429 2012-10-22 08:24 iRedMail.sh
drwxr-xr-x. 4 501 games  4096 2013-07-05 13:16 patches
-rwxr-xr-x. 1 501 games   216 2012-10-22 08:24 ._patches
drwxr-xr-x. 2 501 games  4096 2013-07-05 13:16 pkgs
-rwxr-xr-x. 1 501 games   216 2012-10-22 08:24 ._pkgs
-rw-r--r--. 1 501 games  1245 2012-10-22 08:24 README
-rw-r--r--. 1 501 games   216 2012-10-22 08:24 ._README
drwxr-xr-x. 6 501 games  4096 2013-07-05 13:16 samples
-rwxr-xr-x. 1 501 games   216 2012-10-22 08:24 ._samples
drwxr-xr-x. 2 501 games  4096 2012-10-22 08:24 tools
-rwxr-xr-x. 1 501 games   216 2012-10-22 08:24 ._tools
[root@mail.aaaa.com /home/aa/iRedMail-0.8.3]#

d). 我是從https://bitbucket.org/zhb/iredmail/downloads
下載的.其它版本則不會:

==== 必填信息。没有填写将不予回复 ====
- iRedMail 版本:
- 使用的 Linux/BSD 发行版名称及版本号:
- 与您的问题相关的日志信息:
==== ==== 必填信息。没有填写将不予回复 ====
- iRedMail 版本: 0.8.1 -> iRedAdmin-Pro1.7.2
- 使用的 Linux/BSD 发行版名称及版本号: CentOS 6.3
- 与您的问题相关的日志信息:
====
張大:
請教一下
現安裝 iredmail 0.8.1 後,再安裝 iRedAdmin-Pro1.7.2 ,現下載 iRedAdmin-Pro1.8.1版本.
我是直接 Pro1.7.2 升級 1.8.1 ? 還是要先 iredmail 0.8.1 升級 0.8.2 ,再安裝 Pro 1.8.1 ?

181

(13 篇回复,发表在 iRedMail 技术支持)

Hi carlkyo:

1).Sorry , 我打錯了

carlkyo 写道:
rain6966 写道:

/etc/postfix/ldap/virtual_mailbox_domains.cf
/etc/init.d/ldap restart (CentOS 6是這樣 ,其他版本不知?)

/etc/init.d/slapd restart

2).

carlkyo 写道:

是不是我在iredadmin加的AC都可以用FTP啊

按張大 網上的教學文件, 應可做到.

用/iRedMail-0.8.1/tools/create_mail_user_OpenLDAP.sh 來建帳號 ,比較快 .
或是在phpLDAPadmin 參考剛建的帳號參數值來設定. 目前我沒設成功 ,所以不建議用此法.

182

(13 篇回复,发表在 iRedMail 技术支持)

Hi carlkyo:
以下為我的看法,請參考:

1).

carlkyo 写道:

---> Package pure-ftpd.i386 0:1.0.21-1.el5.rf will be installed

請檢查:
/etc/yum.repos.d/rpmforge.repo
[rpmforge]
name = RHEL $releasever - RPMforge.net - dag
baseurl = http://apt.sw.be/redhat/el6/en/$basearch/rpmforge
mirrorlist = http://apt.sw.be/redhat/el6/en/mirrors-rpmforge

您的OS應是CentOS 6非CentOS 5 ? rpm的版本正確 install ok才能try Pure-Ftpd ?
Pure-Ftpd從 CentOS 5升級CentOS 6 , 我不會 ! 請見諒!
也許yum remove 再 install pure-ftpd看看 .

2).

carlkyo 写道:

我直接用PURE-FTPD的RPM裝沒事
rpm -Uvh
http://apt.sw.be/redhat/el6/en/i386/rpmforge/RPMS/pure-ftpd-1.0.21-1.el6.rf.i686.rpm

您直接安裝 , 是先下載 “pure-ftpd-1.0.21-1.el6.rf.i686.rpm” 此為CentOS 6的版本 .
rpm –Uvh pure-ftpd-1.0.21-1.el6.rf.i686.rpm也許就可直接從el5升級為el6的版本 .(我沒試過)

3).

carlkyo 写道:

教學有問題
/etc/postfix/ldap_virtual_mailbox_domains.cf是/etc/postfix/ldap/virtual_mailbox_domains.cf
/etc/init.d/ldap restart是/etc/init.d/slapd restart INIT.D沒ldap文件夾

應請 張大 修正 為
/etc/postfix/ldap/virtual_mailbox_domains.cf
/etc/init.d/ldap restart (CentOS 6是這樣 ,其他版本不知?)


4).

carlkyo 写道:

ldap的FTP設置是自動的嗎

按照網站上的文件再視個人環境不同稍作修改應可成功.

除先前內容, 我的 /etc/pure-ftpd/pureftpd-ldap.conf是和網站有點不同:
LDAPDefaultUID 501  #cat /etc/passwd查vmail UID
LDAPDefaultGID 501  #cat /etc/group查vmail GID

183

(13 篇回复,发表在 iRedMail 技术支持)

ZhangHuangbin 写道:

这是很多大型邮件列表归档(archive)网站的做法,用于避免占用过多带宽(bandwidth)。但公司内部使用似乎没有太大必要?

Mailman 似乎可以实现这样的功能,Amavisd 自己使用的 mailman 邮件列表就有这样的功能。例如下面这个帖子,它将附件里的 patch 文件拆分了:
http://lists.amavis.org/pipermail/amavi … 01633.html

Hi  張大 :
謝謝指教, 內部的郵件 應該也要,謝謝!
至於Mailmain  以我目前程度,要再多學習了!

184

(13 篇回复,发表在 iRedMail 技术支持)

Hi 張大:
1).看有人po 文"  有人成功在CENTOS 6以上的版本安装PURE-FTP吗 "

其實我是只作本機測試; 自己測一下外部IP 連結,確實不行
我try 了一下, 做如下修正請參考:

a)./etc/pure-ftpd/pure-ftpd.conf
VerboseLog                  yes

# LDAPConfigFile   /etc/pure-ftpd/pureftpd-ldap.conf
#要移除# ,才可登入 不然會出現"登入錯誤: 530 Login authentication failed"
LDAPConfigFile      /etc/pure-ftpd/pureftpd-ldap.conf

PassivePortRange          30100 30200 # 開幾個port 給passive mode的外部IP, 才能連進來

CreateHomeDir               yes

b)./etc/sysconfig/iptables 
#防火牆 加開同樣的ports

-A INPUT -p tcp -m multiport --dport 21,20,30100:30200 -j ACCEPT

2). 其實在我實作 pure-ftpd 之前 , 是在try dovecot 2.0 的imap 目錄分享Share IMAP folder with Dovecot 1.2 and Roundcube webmail 0.5 .
在系統重安裝前,皆沒成功; 但這幾天兩者皆try ok 了.

3). 以下是我個人看法(也許有誤?)
a).fpt 及 imap 目錄郵件分享 ,好像皆要系統管理者設定後 ,才能使用.

b). imap 目錄郵件分享 , 倒像是"郵件列表"(群組分享)共同郵件,可複製到個人郵箱.

c). ftp 只能自己使用 ,與人分享,帳號密碼也要分享似乎不妥.
設個公司共用帳號,做檔案分享傳輸倒可以.

4.張大 ,我又有一想法, iRedMail 不知有此功能?
對外部的傳送的大郵件(幾百M)可經由 ftp 的功能 下載,而不實際由電子郵件來傳.
只發送通知連結路徑, 並提示 收件者 檔案期限內會自動刪除.

185

(13 篇回复,发表在 iRedMail 技术支持)

Hi 張大:
1).
我重新安裝 iRedMail 0.8.1 + CernOs 6.2 _x64
按照網站文章,再做一遍 ,不幸的還是不行 .

2) .
最後在Pure-FTPd的設定檔,稍作修改就可以了:
/etc/pure-ftpd/pure-ftpd.conf

# LDAP configuration file (see README.LDAP)
# LDAPConfigFile                /etc/pure-ftpd/pureftpd-ldap.conf

要移除# ,就不會出現"登入錯誤: 530 Login authentication failed"
LDAPConfigFile                /etc/pure-ftpd/pureftpd-ldap.conf

3). 連線log
# lftp localhost
lftp localhost:~> debug
lftp localhost:~> login user1@aaaa.com
密碼:

lftp user1@aaaa.com@localhost:~> ls
---- 連接至 localhost (127.0.0.1) 連接埠 21
<--- 220---------- Welcome to Pure-FTPd [privsep] [TLS] ----------
<--- 220-You are user number 1 of 50 allowed.
<--- 220-Local time is now 18:49. Server port: 21.
<--- 220-IPv6 connections are also welcome on this server.
<--- 220 You will be disconnected after 15 minutes of inactivity.
---> FEAT
<--- 211-Extensions supported:
<---  EPRT
<---  IDLE
<---  MDTM
<---  SIZE
<---  REST STREAM
<---  MLST type*;size*;sizd*;modify*;UNIX.mode*;UNIX.uid*;UNIX.gid*;unique*;
<---  MLSD
<---  AUTH TLS
<---  PBSZ
<---  PROT
<---  UTF8
<---  ESTA
<---  PASV
<---  EPSV
<---  SPSV
<---  ESTP
<--- 211 End.
---> AUTH TLS
<--- 500 This security scheme is not implemented
---> OPTS UTF8 ON
<--- 200 OK, UTF-8 enabled
---> OPTS MLST type;size;modify;UNIX.mode;UNIX.uid;UNIX.gid;
<--- 200  MLST OPTS type;size;sizd;modify;UNIX.mode;UNIX.uid;UNIX.gid;unique;
---> USER user1@aaaa.com
<--- 331 User user1@aaaa.com OK. Password required
---> PASS XXXX
<--- 230-Your bandwidth usage is restricted
<--- 230-You must respect a 1:5 (UL/DL) ratio
<--- 230-OK. Current restricted directory is /
<--- 230-2 files used (4%) - authorized: 50 files
<--- 230 0 Kbytes used (0%) - authorized: 10240 Kb
---> PWD
<--- 257 "/" is your current location
---> PASV
<--- 227 Entering Passive Mode (127,0,0,1,37,193)
---- 連接資料 socket 到 (127.0.0.1),埠號為 9665
---- 成功建立數據連線
---> LIST
<--- 150 Accepted data connection
---- Got EOF on data connection
---- 正在關閉資料 socket
<--- 226-Options: -a -l
<--- 226 5 matches total
drwx------    4 501        vmail            4096 Jun 29 18:02 .
drwx------    4 501        vmail            4096 Jun 29 18:02 ..
-rw-------    1 501        vmail               4 Jun 29 18:02 .ftpquota
drwx------   10 501        vmail            4096 Jun 29 17:54 Maildir
drwxr-xr-x    2 501        vmail            4096 Jun 29 18:02 user1

4).
張大 :
我又要問一個愚蠢的問題:
Pure-FTPd 在iRedMail 郵件伺服器上 , 我裝成功了, 它能作哪些應用?

186

(13 篇回复,发表在 iRedMail 技术支持)

==== 提供基本信息便于分析问题并得到快速回复 ====
- iRedMail 版本:iRedMail-0.8.1 ---> iRedAdmin-Pro-LDAP-1.7.2
- 使用的 Linux/BSD 发行版名称及版本号:CentOS 6.2 x64
- 与您的问题相关的日志信息:
====
Hi  張大:
我是依照 Integration/PureFTPd.iRedMail.with.OpenLDAP/CentOS安裝

1). lftp測試的訊息:

<--- 500 This security scheme is not implemented
<--- 200 OK, UTF-8 enabled
<--- 200  MLST OPTS type;size;sizd;modify;UNIX.mode;UNIX.uid;UNIX.gid;unique;
<--- 331 User user1@aaaa.com OK. Password required
<--- 530 Login authentication failed
ls: 登入錯誤: 530 Login authentication failed
<--- 530 You aren't logged in
<--- 221-Goodbye. You uploaded 0 and downloaded 0 kbytes.
<--- 221 Logout.

2). openldap log

Jun 26 18:37:06 mail1 slapd[19630]: conn=1065 fd=13 ACCEPT from IP=127.0.0.1:59433 (IP=0.0.0.0:389)
Jun 26 18:37:06 mail1 slapd[19630]: conn=1065 op=0 BIND dn="cn=vmailadmin,dc=aaaa,dc=com" method=128
Jun 26 18:37:06 mail1 slapd[19630]: conn=1065 op=0 BIND dn="cn=vmailadmin,dc=aaaa,dc=com" mech=SIMPLE ssf=0
Jun 26 18:37:06 mail1 slapd[19630]: conn=1065 op=0 RESULT tag=97 err=0 text=
Jun 26 18:37:06 mail1 slapd[19630]: conn=1065 op=1 SRCH base="mail=user1@aaaa.com,ou=Users,domainName=aaaa.com,o=domains,dc=aaaa,dc=com" scope=0 deref=0 filter="(&(objectClass=mailUser)(mail=user1@aaaa.com))"
Jun 26 18:37:06 mail1 slapd[19630]: conn=1065 op=1 SRCH attr=mail cn accountStatus mailQuota jpegPhoto enabledService memberOfGroup employeeNumber telephoneNumber userRecipientBccAddress userSenderBccAddress mailForwardingAddress mtaTransport storageBaseDirectory mailMessageStore mobile title shadowAddress shadowLastChange amavisWhitelistSender amavisBlacklistSender mailWhitelistRecipient mailBlacklistRecipient lastLoginDate lastLoginIP createTimestamp
Jun 26 18:37:06 mail1 slapd[19630]: conn=1065 op=1 SEARCH RESULT tag=101 err=0 nentries=1 text=
Jun 26 18:37:06 mail1 slapd[19630]: conn=1066 fd=37 ACCEPT from IP=127.0.0.1:59434 (IP=0.0.0.0:389)
Jun 26 18:37:06 mail1 slapd[19630]: conn=1066 op=0 BIND dn="cn=vmailadmin,dc=aaaa,dc=com" method=128
Jun 26 18:37:06 mail1 slapd[19630]: conn=1066 op=0 BIND dn="cn=vmailadmin,dc=aaaa,dc=com" mech=SIMPLE ssf=0
Jun 26 18:37:06 mail1 slapd[19630]: conn=1066 op=0 RESULT tag=97 err=0 text=
Jun 26 18:37:06 mail1 slapd[19630]: conn=1066 op=1 SRCH base="ou=Groups,domainName=aaaa.com,o=domains,dc=aaaa,dc=com" scope=2 deref=0 filter="(objectClass=mailList)"
Jun 26 18:37:06 mail1 slapd[19630]: conn=1066 op=1 SRCH attr=mail accountStatus cn description accessPolicy hasMember createTimestamp
Jun 26 18:37:06 mail1 slapd[19630]: conn=1066 op=1 SEARCH RESULT tag=101 err=0 nentries=14 text=
Jun 26 18:37:06 mail1 slapd[19630]: conn=1067 fd=38 ACCEPT from IP=127.0.0.1:59435 (IP=0.0.0.0:389)
Jun 26 18:37:06 mail1 slapd[19630]: conn=1067 op=0 BIND dn="cn=vmailadmin,dc=aaaa,dc=com" method=128
Jun 26 18:37:06 mail1 slapd[19630]: conn=1067 op=0 BIND dn="cn=vmailadmin,dc=aaaa,dc=com" mech=SIMPLE ssf=0
Jun 26 18:37:06 mail1 slapd[19630]: conn=1067 op=0 RESULT tag=97 err=0 text=
Jun 26 18:37:06 mail1 slapd[19630]: conn=1067 op=1 MOD dn="domainName=aaaa.com,o=domains,dc=aaaa,dc=com"
Jun 26 18:37:06 mail1 slapd[19630]: conn=1067 op=1 MOD attr=domainCurrentListNumber
Jun 26 18:37:06 mail1 slapd[19630]: conn=1067 op=1 RESULT tag=103 err=0 text=
Jun 26 18:37:06 mail1 slapd[19630]: conn=1067 op=2 UNBIND
Jun 26 18:37:06 mail1 slapd[19630]: conn=1067 fd=38 closed
Jun 26 18:37:06 mail1 slapd[19630]: conn=1068 fd=38 ACCEPT from IP=127.0.0.1:59436 (IP=0.0.0.0:389)
Jun 26 18:37:06 mail1 slapd[19630]: conn=1068 op=0 BIND dn="cn=vmailadmin,dc=aaaa,dc=com" method=128
Jun 26 18:37:06 mail1 slapd[19630]: conn=1068 op=0 BIND dn="cn=vmailadmin,dc=aaaa,dc=com" mech=SIMPLE ssf=0
Jun 26 18:37:06 mail1 slapd[19630]: conn=1068 op=0 RESULT tag=97 err=0 text=
Jun 26 18:37:06 mail1 slapd[19630]: conn=1068 op=1 SRCH base="domainName=aaaa.com,o=domains,dc=aaaa,dc=com" scope=0 deref=0 filter="(&(objectClass=mailDomain)(domainName=aaaa.com))"
Jun 26 18:37:06 mail1 slapd[19630]: conn=1068 op=1 SRCH attr=domainName domainAliasName
Jun 26 18:37:06 mail1 slapd[19630]: conn=1068 op=1 SEARCH RESULT tag=101 err=0 nentries=1 text=
Jun 26 18:37:06 mail1 slapd[19630]: conn=1069 fd=39 ACCEPT from IP=127.0.0.1:59437 (IP=0.0.0.0:389)
Jun 26 18:37:06 mail1 slapd[19630]: conn=1069 op=0 BIND dn="cn=vmailadmin,dc=aaaa,dc=com" method=128
Jun 26 18:37:06 mail1 slapd[19630]: conn=1069 op=0 BIND dn="cn=vmailadmin,dc=aaaa,dc=com" mech=SIMPLE ssf=0
Jun 26 18:37:06 mail1 slapd[19630]: conn=1069 op=0 RESULT tag=97 err=0 text=
Jun 26 18:37:06 mail1 slapd[19630]: conn=1069 op=1 SRCH base="ou=Aliases,domainName=aaaa.com,o=domains,dc=aaaa,dc=com" scope=2 deref=0 filter="(objectClass=mailAlias)"
Jun 26 18:37:06 mail1 slapd[19630]: conn=1069 op=1 SRCH attr=mail accountStatus cn description enabledService mailForwardingAddress createTimestamp
Jun 26 18:37:06 mail1 slapd[19630]: conn=1069 op=1 SEARCH RESULT tag=101 err=0 nentries=1 text=
Jun 26 18:37:06 mail1 slapd[19630]: conn=1070 fd=40 ACCEPT from IP=127.0.0.1:59438 (IP=0.0.0.0:389)
Jun 26 18:37:06 mail1 slapd[19630]: conn=1070 op=0 BIND dn="cn=vmailadmin,dc=aaaa,dc=com" method=128
Jun 26 18:37:06 mail1 slapd[19630]: conn=1070 op=0 BIND dn="cn=vmailadmin,dc=aaaa,dc=com" mech=SIMPLE ssf=0
Jun 26 18:37:06 mail1 slapd[19630]: conn=1070 op=0 RESULT tag=97 err=0 text=
Jun 26 18:37:06 mail1 slapd[19630]: conn=1070 op=1 MOD dn="domainName=aaaa.com,o=domains,dc=aaaa,dc=com"
Jun 26 18:37:06 mail1 slapd[19630]: conn=1070 op=1 MOD attr=domainCurrentAliasNumber
Jun 26 18:37:06 mail1 slapd[19630]: conn=1070 op=1 RESULT tag=103 err=0 text=
Jun 26 18:37:06 mail1 slapd[19630]: conn=1070 op=2 UNBIND
Jun 26 18:37:06 mail1 slapd[19630]: conn=1070 fd=40 closed
Jun 26 18:37:07 mail1 slapd[19630]: conn=1066 op=2 UNBIND
Jun 26 18:37:07 mail1 slapd[19630]: conn=1066 fd=37 closed
Jun 26 18:37:07 mail1 slapd[19630]: conn=1068 op=2 UNBIND
Jun 26 18:37:07 mail1 slapd[19630]: conn=1068 fd=38 closed
Jun 26 18:37:07 mail1 slapd[19630]: conn=1069 op=2 UNBIND
Jun 26 18:37:07 mail1 slapd[19630]: conn=1069 fd=39 closed
Jun 26 18:37:07 mail1 slapd[19630]: conn=1065 op=2 UNBIND
Jun 26 18:37:07 mail1 slapd[19630]: conn=1065 fd=13 closed
Jun 26 18:37:10 mail1 slapd[19630]: conn=1071 fd=13 ACCEPT from IP=127.0.0.1:59440 (IP=0.0.0.0:389)
Jun 26 18:37:10 mail1 slapd[19630]: conn=1071 op=0 BIND dn="cn=vmailadmin,dc=aaaa,dc=com" method=128
Jun 26 18:37:10 mail1 slapd[19630]: conn=1071 op=0 BIND dn="cn=vmailadmin,dc=aaaa,dc=com" mech=SIMPLE ssf=0
Jun 26 18:37:10 mail1 slapd[19630]: conn=1071 op=0 RESULT tag=97 err=0 text=
Jun 26 18:37:10 mail1 slapd[19630]: conn=1071 op=1 SRCH base="mail=user1@aaaa.com,ou=Users,domainName=aaaa.com,o=domains,dc=aaaa,dc=com" scope=0 deref=0 filter="(&(objectClass=mailUser)(mail=user1@aaaa.com))"
Jun 26 18:37:10 mail1 slapd[19630]: conn=1071 op=1 SRCH attr=mail cn accountStatus mailQuota jpegPhoto enabledService memberOfGroup employeeNumber telephoneNumber userRecipientBccAddress userSenderBccAddress mailForwardingAddress mtaTransport storageBaseDirectory mailMessageStore mobile title shadowAddress shadowLastChange amavisWhitelistSender amavisBlacklistSender mailWhitelistRecipient mailBlacklistRecipient lastLoginDate lastLoginIP createTimestamp
Jun 26 18:37:10 mail1 slapd[19630]: conn=1071 op=1 SEARCH RESULT tag=101 err=0 nentries=1 text=
Jun 26 18:37:10 mail1 slapd[19630]: conn=1072 fd=37 ACCEPT from IP=127.0.0.1:59441 (IP=0.0.0.0:389)
Jun 26 18:37:10 mail1 slapd[19630]: conn=1072 op=0 BIND dn="cn=vmailadmin,dc=aaaa,dc=com" method=128
Jun 26 18:37:10 mail1 slapd[19630]: conn=1072 op=0 BIND dn="cn=vmailadmin,dc=aaaa,dc=com" mech=SIMPLE ssf=0
Jun 26 18:37:10 mail1 slapd[19630]: conn=1072 op=0 RESULT tag=97 err=0 text=
Jun 26 18:37:10 mail1 slapd[19630]: conn=1072 op=1 SRCH base="o=domains,dc=aaaa,dc=com" scope=1 deref=0 filter="(&(objectClass=mailDomain)(domainName=aaaa.com))"
Jun 26 18:37:10 mail1 slapd[19630]: conn=1072 op=1 SRCH attr=domainName accountSetting
Jun 26 18:37:10 mail1 slapd[19630]: conn=1072 op=1 SEARCH RESULT tag=101 err=0 nentries=1 text=
Jun 26 18:37:10 mail1 slapd[19630]: conn=1071 op=2 UNBIND
Jun 26 18:37:10 mail1 slapd[19630]: conn=1071 fd=13 closed
Jun 26 18:37:10 mail1 slapd[19630]: conn=1072 op=2 UNBIND
Jun 26 18:37:10 mail1 slapd[19630]: conn=1072 fd=37 closed
Jun 26 18:37:17 mail1 slapd[19630]: conn=1073 fd=13 ACCEPT from IP=127.0.0.1:59443 (IP=0.0.0.0:389)
Jun 26 18:37:17 mail1 slapd[19630]: conn=1073 op=0 BIND dn="cn=vmailadmin,dc=aaaa,dc=com" method=128
Jun 26 18:37:17 mail1 slapd[19630]: conn=1073 op=0 BIND dn="cn=vmailadmin,dc=aaaa,dc=com" mech=SIMPLE ssf=0
Jun 26 18:37:17 mail1 slapd[19630]: conn=1073 op=0 RESULT tag=97 err=0 text=
Jun 26 18:37:17 mail1 slapd[19630]: conn=1074 fd=37 ACCEPT from IP=127.0.0.1:59444 (IP=0.0.0.0:389)
Jun 26 18:37:17 mail1 slapd[19630]: conn=1074 op=0 BIND dn="cn=vmailadmin,dc=aaaa,dc=com" method=128
Jun 26 18:37:17 mail1 slapd[19630]: conn=1074 op=0 BIND dn="cn=vmailadmin,dc=aaaa,dc=com" mech=SIMPLE ssf=0
Jun 26 18:37:17 mail1 slapd[19630]: conn=1074 op=0 RESULT tag=97 err=0 text=
Jun 26 18:37:17 mail1 slapd[19630]: conn=1075 fd=38 ACCEPT from IP=127.0.0.1:59445 (IP=0.0.0.0:389)
Jun 26 18:37:17 mail1 slapd[19630]: conn=1075 op=0 BIND dn="cn=vmailadmin,dc=aaaa,dc=com" method=128
Jun 26 18:37:17 mail1 slapd[19630]: conn=1075 op=0 BIND dn="cn=vmailadmin,dc=aaaa,dc=com" mech=SIMPLE ssf=0
Jun 26 18:37:17 mail1 slapd[19630]: conn=1075 op=0 RESULT tag=97 err=0 text=
Jun 26 18:37:17 mail1 slapd[19630]: conn=1075 op=1 SRCH base="o=domains,dc=aaaa,dc=com" scope=1 deref=0 filter="(&(objectClass=mailDomain)(domainName=aaaa.com))"
Jun 26 18:37:17 mail1 slapd[19630]: conn=1075 op=1 SRCH attr=domainName accountSetting
Jun 26 18:37:17 mail1 slapd[19630]: conn=1075 op=1 SEARCH RESULT tag=101 err=0 nentries=1 text=
Jun 26 18:37:17 mail1 slapd[19630]: conn=1073 op=1 MOD dn="mail=user1@aaaa.com,ou=Users,domainName=aaaa.com,o=domains,dc=aaaa,dc=com"
Jun 26 18:37:17 mail1 slapd[19630]: conn=1073 op=1 MOD attr=userPassword shadowLastChange
Jun 26 18:37:17 mail1 slapd[19630]: conn=1073 op=1 RESULT tag=103 err=0 text=
Jun 26 18:37:17 mail1 slapd[19630]: conn=1074 op=1 UNBIND
Jun 26 18:37:17 mail1 slapd[19630]: conn=1074 fd=37 closed
Jun 26 18:37:17 mail1 slapd[19630]: conn=1075 op=2 UNBIND
Jun 26 18:37:17 mail1 slapd[19630]: conn=1075 fd=38 closed
Jun 26 18:37:17 mail1 slapd[19630]: conn=1073 op=2 UNBIND
Jun 26 18:37:17 mail1 slapd[19630]: conn=1073 fd=13 closed
Jun 26 18:37:17 mail1 slapd[19630]: conn=1076 fd=13 ACCEPT from IP=127.0.0.1:59447 (IP=0.0.0.0:389)
Jun 26 18:37:17 mail1 slapd[19630]: conn=1076 op=0 BIND dn="cn=vmailadmin,dc=aaaa,dc=com" method=128
Jun 26 18:37:17 mail1 slapd[19630]: conn=1076 op=0 BIND dn="cn=vmailadmin,dc=aaaa,dc=com" mech=SIMPLE ssf=0
Jun 26 18:37:17 mail1 slapd[19630]: conn=1076 op=0 RESULT tag=97 err=0 text=
Jun 26 18:37:17 mail1 slapd[19630]: conn=1076 op=1 SRCH base="mail=user1@aaaa.com,ou=Users,domainName=aaaa.com,o=domains,dc=aaaa,dc=com" scope=0 deref=0 filter="(&(objectClass=mailUser)(mail=user1@aaaa.com))"
Jun 26 18:37:17 mail1 slapd[19630]: conn=1076 op=1 SRCH attr=mail cn accountStatus mailQuota jpegPhoto enabledService memberOfGroup employeeNumber telephoneNumber userRecipientBccAddress userSenderBccAddress mailForwardingAddress mtaTransport storageBaseDirectory mailMessageStore mobile title shadowAddress shadowLastChange amavisWhitelistSender amavisBlacklistSender mailWhitelistRecipient mailBlacklistRecipient lastLoginDate lastLoginIP createTimestamp
Jun 26 18:37:17 mail1 slapd[19630]: conn=1076 op=1 SEARCH RESULT tag=101 err=0 nentries=1 text=
Jun 26 18:37:17 mail1 slapd[19630]: conn=1077 fd=37 ACCEPT from IP=127.0.0.1:59448 (IP=0.0.0.0:389)
Jun 26 18:37:17 mail1 slapd[19630]: conn=1077 op=0 BIND dn="cn=vmailadmin,dc=aaaa,dc=com" method=128
Jun 26 18:37:17 mail1 slapd[19630]: conn=1077 op=0 BIND dn="cn=vmailadmin,dc=aaaa,dc=com" mech=SIMPLE ssf=0
Jun 26 18:37:17 mail1 slapd[19630]: conn=1077 op=0 RESULT tag=97 err=0 text=
Jun 26 18:37:17 mail1 slapd[19630]: conn=1077 op=1 SRCH base="o=domains,dc=aaaa,dc=com" scope=1 deref=0 filter="(&(objectClass=mailDomain)(domainName=aaaa.com))"
Jun 26 18:37:17 mail1 slapd[19630]: conn=1077 op=1 SRCH attr=domainName accountSetting
Jun 26 18:37:17 mail1 slapd[19630]: conn=1077 op=1 SEARCH RESULT tag=101 err=0 nentries=1 text=
Jun 26 18:37:18 mail1 slapd[19630]: conn=1076 op=2 UNBIND
Jun 26 18:37:18 mail1 slapd[19630]: conn=1076 fd=13 closed
Jun 26 18:37:18 mail1 slapd[19630]: conn=1077 op=2 UNBIND
Jun 26 18:37:18 mail1 slapd[19630]: conn=1077 fd=37 closed

2)./pureftpd.log為空白

3).  ls -dl /home/ftp
drwxr-xr-x 2 root root 4096 2012-06-26 13:13 /home/ftp

4).  netstat -tlnup |grep pure-ftpd

tcp        0      0 0.0.0.0:21                  0.0.0.0:*                   LISTEN      19449/pure-ftpd (SE
tcp        0      0 :::21                       :::*                        LISTEN      19449/pure-ftpd (SE

5). /iRedMail-0.8.1/tools/create_mail_user_OpenLDAP.sh檔案發現有如下問題:

a)內容:
FTPHomeDir: ${FTP_STORAGE_BASE_DIRECTORY}/${maildir}/ftp/

ftp前的 / 要去掉 ,因新增user時會產生問題路徑

b)在phpLDAPadmin :
FTPHomeDir : /home/ftp/aaaa.com/u/s/e/user1-2012.06.26.18.21.07//ftp/

c)在系統卻沒有建立資料:
# ls -la /home/ftp/
總計 8
drwxr-xr-x  2 root root 4096 2012-06-26 13:13 .
drwxr-xr-x. 7 root root 4096 2012-06-26 13:13 ..


d)另 匯出user1的ldif資料:也有1個問題
# LDIF Export for mail=user1@aaaa.com,ou=Users,domainName=aaaa.com,o=domains,dc=aaaa,dc=com
# 伺服器: My LDAP Server (127.0.0.1)
# 搜尋範圍: base
# 過濾搜尋: (objectClass=*)
# 全部的紀錄: 1
#
# Generated by phpLDAPadmin (http://phpldapadmin.sourceforge.net) on June 26, 2012 10:26 am
# Version: 1.2.2

version: 1

# 紀錄 1: mail=user1@aaaa.com,ou=Users,domainName=aaaa.com,o=do...
dn: mail=user1@aaaa.com,ou=Users,domainName=aaaa.com,o=domains,dc=aaaa,dc=com
accountstatus: active
cn: user1
createtimestamp: 20120626102107Z
creatorsname: cn=Manager,dc=aaaa,dc=com
enabledservice: internal
enabledservice: doveadm  #經由create_mail_user_OpenLDAP.sh才會產生,由iRedAdmin 產生的user無 ,why? Fresh install時是否要加入?
enabledservice: mail
enabledservice: pop3
enabledservice: pop3secured
enabledservice: imap
enabledservice: imapsecured
enabledservice: managesieve
enabledservice: managesievesecured
enabledservice: sieve
enabledservice: sievesecured
enabledservice: smtp
enabledservice: deliver
enabledservice: lda
enabledservice: forward
enabledservice: senderbcc
enabledservice: recipientbcc
enabledservice: shadowaddress
enabledservice: displayedInGlobalAddressBook
enabledservice: lib-storage
entrycsn: 20120626102107.412834Z#000000#000#000000
entrydn: mail=user1@aaaa.com,ou=Users,domainName=aaaa.com,o=domains,
dc=aaaa,dc=com
entryuuid: 630a2b5a-53c4-1031-89db-b3836d225131
ftpdownloadbandwidth: 50
ftpdownloadratio: 5
ftphomedir:
/home/ftp/aaaa.com/u/s/e/user1-2012.06.26.18.21.07/ftp/
ftpquotafiles: 50
ftpquotambytes: 10
ftpstatus: enabled
ftpuploadbandwidth: 50
ftpuploadratio: 1

givenname: user1
hassubordinates: FALSE
homedirectory: /var/vmail/vmail1/aaaa.com/u/s/e/user1-2012.06.26.18.21.07/
mail: user1@aaaa.com
mailmessagestore: vmail1/aaaa.com/u/s/e/user1-2012.06.26.18.21.07/
mailquota: 1048576000
modifiersname: cn=Manager,dc=aaaa,dc=com
modifytimestamp: 20120626102107Z
objectclass: inetOrgPerson
objectclass: shadowAccount
objectclass: amavisAccount
objectclass: mailUser
objectclass: top
objectclass: PureFTPdUser
sn: user1
storagebasedirectory: /var/vmail
structuralobjectclass: inetOrgPerson
subschemasubentry: cn=Subschema
uid: user1
userpassword: {SSHA}an536ym8MkKpM4AYUpwb6xHjjb3ZHyGO

請幫我查察,問題在哪?
謝謝!

Hi 張大:

下載的補丁,已把問題解決了。
謝謝!

==== 提供基本信息便于分析问题并得到快速回复 ====
- iRedMail 版本:iRedMail 0.8.1-->iRedAdmin-Pro-LDAP 1.7.2
- 使用的 Linux/BSD 发行版名称及版本号:CentOs 6.2x64
- 与您的问题相关的日志信息:
====

ZhangHuangbin 写道:
ZhangHuangbin 写道:
rain6966 写道:

2.但我又發現幾個問題 , 想再請 張大 幫忙.
(A)從 /郵件列表/ 刪除某一用戶會有 “錯誤: 303 See Other” 訊息.(詳附圖)

应是 iRedAdmin-Pro 的 bug,稍后给你回答。

经过测试,发现我这里不存在这样的问题(没有出现 303 See Other 信息)。

ZhangHuangbin 写道:
rain6966 写道:

(B)從 /用戶/ 刪除zz@aa.com其原隸屬pe@aa.com郵件列表裡 .
今再建立同一名稱帳號zz@aa.com , 其會自動加入pe@aa.com的群組裡 .

这是由于 LDAP 的邮件列表的实现方式决定的。

如果用户 zz@ 属于邮件列表 pe@,则用户 zz@ 的 LDAP 属性里会增加一个:memberOfGroup=pe@xxx。理想情况下,在 iRedAdmin-Pro 里删除列表 pe@ 时,应该同时删除 zz@ 的 memberOfGroup=pe@xx 属性。所以这可能是 iRedAdmin-Pro 的另一个 bug。

经过测试,这个问题在我这里也不存在。

Hi  張大:
我終於把系統重裝了!

在iRedMail 0.8.1 升級 iRedAdmin-Pro-LDAP 1.7.2 情況下

上述的問題, 皆不存在了! (“錯誤: 303 See Other” ,及删除列表 pe@ 时,应该同时删除 zz@ 的 memberOfGroup=pe@xx 属性)

iRedMail 0.8.0 升級 iRedAdmin-Pro-LDAP 1.7.2 情況下 ,可能還不行 ?
因為仍有人提出帖子
http://www.iredmail.org/forum/topic3518 … g-lis.html

juvix 写道:

I am receiving the following error whenever trying to "DELETE" members from a mailing list:

"Error: 303 See Other"

The entry (email alias) deletes from the mailing list but that error is displayed each time without fail. Is this a bug or am I the only one experiencing this issue?

張大 :
我發現一問題,請解惑 ?
Profile of domain: aaaa.com的Advanced 下的Default mail group(s) of new user :
例如 :test-1@aaaa.com  的maillist 預設打勾
當我刪除 該test-1@ 的maillist郵件列表 後 ; 再重建 test-1@ ,其會自動打勾 (繼承舊的設定)

189

(3 篇回复,发表在 iRedAdmin-Pro 技术支持)

kenny124 写道:

系统只删除了mailbox表里的用户对应记录,并没有同时删除used_quota表中的对应记录。
就会出现删掉并重建用户后,哦用户该会继承删除之前的邮件已使用容量的值。

iRedMail 版本除了有上面問題, " 通訊錄address book " 資料也會有繼承的現象 .

==== 提供基本信息便于分析问题并得到快速回复 ====
- iRedMail 版本:iRedAdmin v0.1.8 (LDAP)
- 使用的 Linux/BSD 发行版名称及版本号:CentOs6.2 X64
- 与您的问题相关的日志信息:
====

Hi  張大.

按照網上說明文件,作 ”使用者登錄時間紀錄”,無法成功,請幫忙分析 。

(因公司人員未超過100人,其loading應該還可以承擔; 雖然本公司已經有購買iRedAdmin-Pro LDAP 版本,但我想了解假如兩種版本皆可設定的話,要如何設定. 謝謝 !  )

[FAQ] How to track user last login data (ip, date, mail protocol).
http://www.iredmail.org/forum/topic379- … tocol.html

實作內容:
1). trackLastLogin.sh屬性
-rwxr-xr-x 1 root root 2738 2012-06-05 16:19 trackLastLogin.sh

2).vi /usr/bin/trackLastLogin.sh內容
LDAP_URI= 'ldap://127.0.0.1:389'
LDAP_BASEDN= 'o=domains,dc=aaaa,dc=com'
BIND_DN= 'cn=vmail,dc=aaaa,dc=com' #vmailadmin或vmail皆試過
BIND_PW='xxxxxxxxxxxxxxxxxx'
if [ X"${USER}" != X"dump-capability" ]; then
    ldapmodify -c -x \
        -H "${LDAP_URI}" \
        -D "${BIND_DN}" \
        -w "${BIND_PW}" >/dev/null 2>&1 <<EOF
dn: mail=${USER},ou=Users,domainName=$(echo ${USER} | awk -F'@' '{print $2}'),${LDAP_BASEDN}
changetype: modify
replace: lastLoginDate
lastLoginDate: $(date +%Y%m%d%H%M%SZ)

3).vi /etc/dovecot/dovecot.conf
protocol imap {
    mail_drop_priv_before_exec=yes
    mail_executable = /usr/bin/trackLastLogin.sh imp
   
}
protocol pop3 {
    mail_drop_priv_before_exec=yes
    mail_executable = /usr/bin/trackLastLogin.sh pop3
   
}

4). touch  pop3及imap兩檔
ll /var/run/dovecot/imap
-rwxrwxrwx 1 dovecot root 0 2012-06-15 13:56 /var/run/dovecot/imap
ll /var/run/dovecot/pop3
-rwxrwxrwx 1 dovecot root 0 2012-06-15 13:56 /var/run/dovecot/pop3


5).重新啟動Dovecot ,出現如下訊息

正在停止 Dovecot Imap:                                    [  確定  ]
正在啟動 Dovecot Imap:doveconf: Warning: NOTE: You can get a new clean config file with: doveconf -n > dovecot-new.conf
doveconf: Warning: Obsolete setting in /etc/dovecot/dovecot.conf:178: mail_drop_priv_before_exec has been replaced by service { drop_priv_before_exec }
doveconf: Warning: Obsolete setting in /etc/dovecot/dovecot.conf:179: mail_executable has been replaced by service { executable }
doveconf: Warning: Obsolete setting in /etc/dovecot/dovecot.conf:184: mail_drop_priv_before_exec has been replaced by service { drop_priv_before_exec }
doveconf: Warning: Obsolete setting in /etc/dovecot/dovecot.conf:185: mail_executable has been replaced by service { executable }
doveconf: Warning: NOTE: You can get a new clean config file with: doveconf -n > dovecot-new.conf
doveconf: Warning: Obsolete setting in /etc/dovecot/dovecot.conf:178: mail_drop_priv_before_exec has been replaced by service { drop_priv_before_exec }
doveconf: Warning: Obsolete setting in /etc/dovecot/dovecot.conf:179: mail_executable has been replaced by service { executable }
doveconf: Warning: Obsolete setting in /etc/dovecot/dovecot.conf:184: mail_drop_priv_before_exec has been replaced by service { drop_priv_before_exec }
doveconf: Warning: Obsolete setting in /etc/dovecot/dovecot.conf:185: mail_executable has been replaced by service { executable }
                                                           [  確定  ]

6).webmail登入時出現 ”登入失敗”  , pop3登入  出現重新打密碼
dovecot.log如下:

Jun 15 14:07:14 auth: Debug: Loading modules from directory: /usr/lib64/dovecot/auth
Jun 15 14:07:14 auth: Debug: Module loaded: /usr/lib64/dovecot/auth/libauthdb_ldap.so
Jun 15 14:07:14 auth: Debug: Module loaded: /usr/lib64/dovecot/auth/libdriver_mysql.so
Jun 15 14:07:14 auth: Debug: Module loaded: /usr/lib64/dovecot/auth/libdriver_pgsql.so
Jun 15 14:07:14 auth: Debug: Module loaded: /usr/lib64/dovecot/auth/libdriver_sqlite.so
Jun 15 14:07:14 auth: Debug: Module loaded: /usr/lib64/dovecot/auth/libmech_gssapi.so
Jun 15 14:07:14 auth: Debug: auth client connected (pid=2702)
Jun 15 14:07:16 auth: Debug: client in: AUTH    1       PLAIN   service=pop3    secured lip=10.xxx.xxx.xxx rip=203.xxx.xxx.xxx lport=110  rport=58138
Jun 15 14:07:16 auth: Debug: client out: CONT   1
Jun 15 14:07:16 auth: Debug: client in: CONT<hidden>
Jun 15 14:07:16 auth: Debug: ldap(test@aaaa.com,203.xxx.xxx.xxx): bind search: base=o=domains,dc=aaaa,dc=com filter=(&(objectClass=mailUser)(accountStatus=active)(enabledService=mail)(enabledService=pop3secured)(|(mail=test@aaaa.com)(&(enabledService=shadowaddress)(shadowAddress=test@aaaa.com))))
Jun 15 14:07:17 auth: Debug: ldap(test@aaaa.com,203.xxx.xxx.xxx): result: mail(user)=test@aaaa.com
Jun 15 14:07:17 auth: Debug: client out: OK     1       user=test@aaaa.com
Jun 15 14:07:17 auth: Debug: master in: REQUEST 2422603777      2702    1       d6e4f9f7213e3e85d9421dd9bbd0b030
Jun 15 14:07:17 auth: Debug: ldap(test@aaaa.com,203.xxx.xxx.xxx): user search: base=o=domains,dc=aaaa,dc=com scope=subtree filter=(&(objectClass=mailUser)(accountStatus=active)(enabledService=mail)(enabledService=pop3secured)(|(mail=test@aaaa.com)(&(enabledService=shadowaddress)(shadowAddress=test@aaaa.com)))) fields=mail,homeDirectory,mailQuota
Jun 15 14:07:17 auth: Debug: ldap(test@aaaa.com,203.xxx.xxx.xxx): result: mail(user)=test@aaaa.com homeDirectory(home)=/var/vmail/vmail1/aaaa.com/t/e/s/test-2012.06.11.00.19.18/ mailQuota(quota_rule=*:bytes=%$)=104857600000
Jun 15 14:07:17 auth: Debug: master out: USER   2422603777      test@aaaa.com       home=/var/vmail/vmail1/aaaa.com/t/e/s/test-2012.06.11.00.19.18/        quota_rule=*:bytes=104857600000 mail=maildir:~/Maildir/
Jun 15 14:07:17 pop3-login: Info: Login: user=<test@aaaa.com>, method=PLAIN, rip=203.xxx.xxx.xxx, lip=10.xxx.xxx.xxx, mpid=2705, TLS
Jun 15 14:07:18 pop3(test@aaaa.com): Error: net_connect_unix(/var/run/dovecot/pop3) failed: Connection refused
Jun 15 14:07:26 auth: Debug: auth client connected (pid=2711)
Jun 15 14:07:26 auth: Debug: client in: AUTH    1       PLAIN   service=imap    secured lip=127.0.0.1   rip=127.0.0.1   lport=143  rport=58195     resp=<hidden>
Jun 15 14:07:26 auth: Debug: ldap(zz@aaaa.com,127.0.0.1): bind search: base=o=domains,dc=aaaa,dc=com filter=(&(objectClass=mailUser)(accountStatus=active)(enabledService=mail)(enabledService=imapsecured)(|(mail=zz@aaaa.com)(&(enabledService=shadowaddress)(shadowAddress=zz@aaaa.com))))
Jun 15 14:07:26 auth: Debug: ldap(zz@aaaa.com,127.0.0.1): result: mail(user)=zz@aaaa.com
Jun 15 14:07:26 auth: Debug: client out: OK     1       user=zz@aaaa.com
Jun 15 14:07:26 auth: Debug: master in: REQUEST 2516713473      2711    1       bcb3595ac816082e3edf2791e4b834d7
Jun 15 14:07:26 auth: Debug: ldap(zz@aaaa.com,127.0.0.1): user search: base=o=domains,dc=aaaa,dc=com scope=subtree filter=(&(objectClass=mailUser)(accountStatus=active)(enabledService=mail)(enabledService=imapsecured)(|(mail=zz@aaaa.com)(&(enabledService=shadowaddress)(shadowAddress=zz@aaaa.com)))) fields=mail,homeDirectory,mailQuota
Jun 15 14:07:26 auth: Debug: ldap(zz@aaaa.com,127.0.0.1): result: mail(user)=zz@aaaa.com homeDirectory(home)=/var/vmail/vmail1/aaaa.com/z/z/z/zz-2012.06.11.01.49.51/ mailQuota(quota_rule=*:bytes=%$)=5242880000
Jun 15 14:07:26 auth: Debug: master out: USER   2516713473      zz@aaaa.com home=/var/vmail/vmail1/aaaa.com/z/z/z/zz-2012.06.11.01.49.51/  quota_rule=*:bytes=5242880000   mail=maildir:~/Maildir/
Jun 15 14:07:26 imap-login: Info: Login: user=<zz@aaaa.com>, method=PLAIN, rip=127.0.0.1, lip=127.0.0.1, mpid=2712, secured
Jun 15 14:07:27 imap(zz@aaaa.com): Error: net_connect_unix(/var/run/dovecot/imap) failed: Connection refused
rain6966 写道:

==== 提供基本信息便于分析问题并得到快速回复 ====
- iRedMail 版本:iRedMail 0.7.4-->iRedAdmin-Pro-1.7.0
- 使用的 Linux/BSD 发行版名称及版本号:CentOs6.2
- 与您的问题相关的日志信息:
====
Hi 張大:

A).發信管制總量最大值可更改?
作user發信管制:
Profile of user: aaaa@aaaa.com
Enable sender throttling
Quota size of all outgoing emails 4294967295  #Current value: 4095 MB

(此為iRedAdmin-Pro發信總量最大值4294967295,不可再大?)

log:
May 30 18:09:17 mail1 policyd: rcpt=19, throttle=update(a), host=127.0.0.1, from=aaaa@aaaa.com, to=admin@aaaa.com, size=101477519/204800000, quota=913294068/-1, count=9/60(70), rcpt=9/3600(70), threshold=18%|13%|0%

若使用預值 ”0 “ , 實際上會採用policyd的 default 值250,000,000 (更改/etc/policyd.conf其值無效) , 造成管制發信錯誤 .

(Time Unit我設定5分鐘;雖可縮短時間, 就是不能為default值”0”,
但系統有 ”Set value to 0 or leave it empty for unlimited” 的欄位定義,是否有誤?)

#更改 /etc/policyd.conf的SENDERQUOTALIMIT=2000000000 ,重新啟動policyd

#重起policyd

May 30 17:40:46 mail1 policyd: config: sender quotalimit> [color=red]2000000000[/color]
May 30 17:40:46 mail1 policyd: config: sender timelimit> 3600
May 30 17:40:46 mail1 policyd: config: sender msgsize> 102400000
#寄信測試

May 30 17:43:04 mail1 policyd: rcpt=1, throttle=clear(a), host=203.xx.xx.xx, from=aaaa@aaaa.com, to=zz@aaaa.com, size=101477382/204800000, quota=101477382/250000000, count=1/60(52), rcpt=1/3600(53), threshold=0%|0%|0%, sasl_username=aaaa@aaaa.com

#實際quota為250,000,000非上面的2,000,000,000



B). iRedAdmin-Pro有較快的方法,對同一網域各user設定一樣大小的發信管制 ?

在policyd.conf設定網域的統一管制大小,再從iRedAdmin-Pro對個別帳號作微調放大值?

Hi  張大:
Sorry! 此點為本人不察 .可在網域裡設定即可 .

==== 提供基本信息便于分析问题并得到快速回复 ====
- iRedMail 版本:iRedMail 0.7.4-->iRedAdmin-Pro-1.7.0
- 使用的 Linux/BSD 发行版名称及版本号:CentOs6.2
- 与您的问题相关的日志信息:
====
Hi 張大:

A).發信管制總量最大值可更改?
作user發信管制:
Profile of user: aaaa@aaaa.com
Enable sender throttling
Quota size of all outgoing emails 4294967295  #Current value: 4095 MB

(此為iRedAdmin-Pro發信總量最大值4294967295,不可再大?)

log:
May 30 18:09:17 mail1 policyd: rcpt=19, throttle=update(a), host=127.0.0.1, from=aaaa@aaaa.com, to=admin@aaaa.com, size=101477519/204800000, quota=913294068/-1, count=9/60(70), rcpt=9/3600(70), threshold=18%|13%|0%

若使用預值 ”0 “ , 實際上會採用policyd的 default 值250,000,000 (更改/etc/policyd.conf其值無效) , 造成管制發信錯誤 .

(Time Unit我設定5分鐘;雖可縮短時間, 就是不能為default值”0”,
但系統有 ”Set value to 0 or leave it empty for unlimited” 的欄位定義,是否有誤?)

#更改 /etc/policyd.conf的SENDERQUOTALIMIT=2000000000 ,重新啟動policyd

#重起policyd

May 30 17:40:46 mail1 policyd: config: sender quotalimit> [color=red]2000000000[/color]
May 30 17:40:46 mail1 policyd: config: sender timelimit> 3600
May 30 17:40:46 mail1 policyd: config: sender msgsize> 102400000
#寄信測試

May 30 17:43:04 mail1 policyd: rcpt=1, throttle=clear(a), host=203.xx.xx.xx, from=aaaa@aaaa.com, to=zz@aaaa.com, size=101477382/204800000, quota=101477382/250000000, count=1/60(52), rcpt=1/3600(53), threshold=0%|0%|0%, sasl_username=aaaa@aaaa.com

#實際quota為250,000,000非上面的2,000,000,000


B). iRedAdmin-Pro有較快的方法,對同一網域各user設定一樣大小的發信管制 ?

在policyd.conf設定網域的統一管制大小,再從iRedAdmin-Pro對個別帳號作微調放大值?

Hi 張大:

上面有關 phpMyAdmin 的問題 , 我已解決:

rpm -ivh http://download.fedoraproject.org/pub/e … noarch.rpm
yum update
yum repolist 看到套件庫清單中已經有一個新的套件庫,名稱為epel
yum install php-mcrypt 便可以透過 epel 套件庫來安裝
安裝mbstring然後重開httpd 就ok了
yum install php-mbstring
/etc/init.d/httpd restart

結果:
tail  /var/log/yum.log
May 30 13:59:30 Installed: php-mcrypt-5.3.3-1.el6.x86_64
May 30 14:12:54 Installed: php-mbstring-5.3.3-3.el6_2.8.x86_64

Hi 張大:
昨天按照回覆設定,且系統重開機.
Sent/Received Mails 的時間, 今早測試收發皆正常.
但卻變成Admin Log 提前8小時了?

ps:MySQL=5.1.61 ,phpMyAdmin=3.4.8
登入 phpMyAdmin 登入首頁底下有如下訊息:

phpMyAdmin 進階功能未全部設定,部分功能不可用。要查出原因請點這裏
缺少 mcrypt 外掛。請檢查 PHP 設定

沒有找到 PHP 外掛 mbstring,而您現在好像在使用多字元字集。沒有 mbstring 擴展的 phpMyAdmin 不能正確分割字元串,可能產生意想不到的結果

==== 提供基本信息便于分析问题并得到快速回复 ====
- iRedMail 版本:iRedAdmin-Pro-LDAP-1.7.0
- 使用的 Linux/BSD 发行版名称及版本号:CentOs6.2
- 与您的问题相关的日志信息:
====
Hi 張大:

Admin Log時間, 和Mail Server系統的時間一樣 ; client收發 及webmail收發的時件是正確的.為獨Sent Mails及Received Mails的log Date時間 慢8小時 .

Hi張大:
謝謝您及時回覆.

愚蠢的問一個問題,我要如何修正bug?

find / -name user.py
/var/www/iRedAdmin-Pro-LDAP-1.7.0/controllers/ldap/user.py
/var/www/iRedAdmin-Pro-LDAP-1.7.0/libs/ldaplib/user.py

直接編輯此兩檔案
+ 的兩行更正?

Ps: 因本人linux剛剛學習中 .

==== 提供基本信息便于分析问题并得到快速回复 ====
- iRedMail 版本:IredAdmin-Pro-LDAP-1.7.0
- 使用的 Linux/BSD 发行版名称及版本号:CentOS6.2
- 与您的问题相关的日志信息:
====
以下為我的提問(因標題不可太長):

更改其原先 users/Profile of user/advance/ 的smtp設定 , 會有homeDirectory(home)=/var /vmailvmail1/ 錯誤訊息,
並致使 以webmail登入該帳號, 進入 ”個人設定/篩選器 “會出現 “無法與伺服器連線”

Hi ! 張大.

A). 因在測試STRATTLS , 發現此問題,
雖可從PhpLDAPadmin的 ”homeDirectory” 去修正其錯誤, 但感覺怪怪 , 理論上新增帳號設定後,應不會再去動它; 但只要一更動它(如變更Sending mails via SMTP 或Sending mails via SMTP over TLS/SSL選項), 該帳號就要手動去更正,(vmail / vmail1少了一條斜線 / )


B).其就如我05/16建議的提問 “若能從網域裡設定,也許會更方便…….”  . 若在網域裡一更動smtp通訊協定 ,必會造成user的homeDirectory全被更改的錯誤現象? 而不採用我的提議?

ps:若以上問題解決後,也許可考慮把 users profile /advance 的 smtp,pop3,impa設定移至網域裡設定, (甚至把iRedAdmin Pro 預設為STARTTLS ,該選項不用?)
這又是我的一個狂想吧!  張大! 請勿見笑!!

C).以下為系統測試設定:

Postfix部分的設定 , vi /etc/postfix/main.cf

main.cf  (SMTP部分)

smtpd_tls_security_level = may

#smtpd_tls_security_level = encrypt   
#原本加此參數, 外網寄來會被退 強制STARTTLS

smtpd_use_tls = yes
smtpd_tls_auth_only =no   
#yes遠端telnet ,無法啟動auth plain驗證

smtpd_enforce_tls =yes
smtpd_tls_loglevel = 2

vi /etc/postfix/master.cf
Master.cf  (SMTP部分)

127.0.0.1:10025 inet n  -   -   -   -  smtpd
    -o smtpd_delay_reject=no
#force starttls  (amavisd  內網不使用TLS,可斟酌情況使用)
    -o smtpd_enforce_tls=no


Roundcubemail部分的設定 vi /var/www/roundcubemail/config/main.inc.php

main.inc.php    (Webmail部分)

# DEBUG用
$rcmail_config['debug_level'] = 8;
$rcmail_config['imap_debug'] = true;
$rcmail_config['ldap_debug'] = true;
$rcmail_config['smtp_debug'] = true;

$rcmail_config['smtp_server'] = " tls://127.0.0.1";
$rcmail_config['smtp_auth_type'] = " LOGIN";
$rcmail_config['force_https'] =  true ; #自動轉為https

Dovecot部分的設定:vi /etc/dovecot/dovecot.conf
dovecot.conf  (IMAP部分)

#DEBUG用
mail_debug = yes
auth_verbose =no
auth_debug =  yes
auth_debug_passwords = yes
auth_verbose_passwords = no

ssl =  required
disable_plaintext_auth = yes

D). log

Maillog 

May 28 08:50:18 mail1 roundcube: IMAP Error: Login failed for www@aaaa.com from 203.xx.xx.xx. AUTHENTICATE PLAIN: Authentication failed. in /var/www/roundcubemail-0.7/program/include/rcube_imap.php on line 205 (POST /mail/?_task=login&_action=login)   
#此為我打錯user的密碼log

May 28 08:50:31 mail1 roundcube: IMAP Error: Login failed for www@aaaa.com from 203.xx.xx.xx. AUTHENTICATE PLAIN: Authentication failed. in /var/www/roundcubemail-0.7/program/include/rcube_imap.php on line 205 (POST /mail/?_task=login&_action=login)

#更改users profile /advance的SMTP屬性, 改採兩項皆打勾 ,出現連接plugin.managesieve錯誤log
May 28 09:32:04 mail1 roundcube: Failed to read from socket ():
May 28 09:32:04 mail1 roundcube: PHP Error: Unable to connect to managesieve on 127.0.0.1:4190 in /var/www/roundcubemail-0.7/plugins/managesieve/managesieve.php on line 286 (GET /mail/?_task=settings&_action=plugin.managesieve)

May 28 09:32:04 mail1 roundcube: Not currently in AUTHORISATION state (1):
May 28 09:32:04 mail1 roundcube: Failed to write to socket: connection lost ():
May 28 09:32:15 mail1 roundcube: Failed to read from socket ():
May 28 09:32:15 mail1 roundcube: PHP Error: Unable to connect to managesieve on 127.0.0.1:4190 in /var/www/roundcubemail-0.7/plugins/managesieve/managesieve.php on line 286 (GET /mail/?_task=settings&_action=plugin.managesieve)


Dovecot.log

03:00 凌晨OK
May 28 03:21:04 auth: Debug: master in: USER    1       www@aaaa.com        service=lda
May 28 03:21:04 auth: Debug: ldap(www@aaaa.com): user search: base=o=domains,dc=aaaa,dc=com scope=subtree filter=(&(objectClass=mailUser)(accountStatus=active)(enabledService=mail)(enabledService=lda)(|(mail=www@aaaa.com)(&(enabledService=shadowaddress)(shadowAddress=www@aaaa.com)))) fields=mail,homeDirectory,mailMessageStore,mailQuota
May 28 03:21:04 auth: Debug: ldap(www@aaaa.com): result: mail(user)=www@aaaa.com mailQuota(quota_rule=*:bytes=%$)=5242880000 mailMessageStore(mail=maildir:/var/vmail/%$/Maildir/)=vmail1/aaaa.com/w/w/w/www-2012.04.27.10.21.01/homeDirectory(home)=/var/vmail/vmail1/ aaaa.com/w/w/w/www-2012.04.27.10.21.01/   # homeDirector正常訊息

May 28 03:21:04 auth: Debug: master out: USER   1       www@aaaa.com        quota_rule=*:bytes=5242880000mail=maildir:/var/vmail/vmail1/aaaa.com/w/w/w/www-2012.04.27.10.21.01//Maildir/      home=/var/vmail/vmail1/aaaa.com/w/w/w/www-2012.04.27.10.21.01/
May 28 03:21:04 dict: Info: mysql(127.0.0.1): Connected to database iredadmin

May 28 08:50:29 auth: Debug: auth client connected (pid=6753)
May 28 08:50:29 auth: Debug: client in: AUTH    1       PLAIN   service=imap    secured lip=127.0.0.1   rip=127.0.0.1   lport=143       rport=47407     resp=d3d3QHRlY2hsaW5zLmNvbQB3d3dAdGVjaGxpbnMuY29tAHFxcXFxcXFx  # Mail Server端, 未設成SSL

May 28 08:50:29 auth: Debug: ldap(www@aaaa.com,127.0.0.1): bind search: base=o=domains,dc=aaaa,dc=com filter=(&(objectClass=mailUser)(accountStatus=active)(enabledService=mail)(enabledService=imapsecured)(|(mail=www@aaaa.com)(&(enabledService=shadowaddress)(shadowAddress=www@aaaa.com))))
May 28 08:50:29 auth: Debug: ldap(www@aaaa.com,127.0.0.1): result: mail(user)=www@aaaa.com
May 28 08:50:29 auth: Info: ldap(www@aaaa.com,127.0.0.1): invalid credentials (given password: 12345678)
May 28 08:50:31 auth: Debug: client out: FAIL   1       user=www@aaaa.com
May 28 08:50:31 imap-login: Info: Aborted login (auth failed, 1 attempts): user=<www@aaaa.com>, method=PLAIN, rip=127.0.0.1, lip=127.0.0.1, secured
May 28 09:01:14 auth: Debug: Loading modules from directory: /usr/lib64/dovecot/auth

#更改users profile /advance的SMTP屬性, 改採兩項皆打勾 ,出現homeDirector被改
May 28 09:11:12 auth: Debug: auth client connected (pid=6961)
May 28 09:11:12 auth: Debug: client in: AUTH    1       PLAIN   service=imap    secured lip=127.0.0.1   rip=127.0.0.1 lport=143       rport=47411     resp=d3d3QHRlY2hsaW5zLmNvbQB3d3dAdGVjaGxpbnMuY29tAGFhYWFhYWFh
May 28 09:11:12 auth: Debug: ldap(www@aaaa.com,127.0.0.1): bind search: base=o=domains,dc=aaaa,dc=com filter=(&(objectClass=mailUser)(accountStatus=active)(enabledService=mail)(enabledService=imapsecured)(|(mail=www@aaaa.com)(&(enabledService=shadowaddress)(shadowAddress=www@aaaa.com))))
May 28 09:11:12 auth: Debug: ldap(www@aaaa.com,127.0.0.1): result: mail(user)=www@aaaa.com
May 28 09:11:12 auth: Debug: client out: OK     1       user=www@aaaa.com
May 28 09:11:12 auth: Debug: master in: REQUEST 1369440257      6961    1       b2fa381113bc2b9aa5bdf240fccfb5b1
May 28 09:11:12 auth: Debug: ldap(www@aaaa.com,127.0.0.1): user search: base=o=domains,dc=aaaa,dc=com scope=subtree filter=(&(objectClass=mailUser)(accountStatus=active)(enabledService=mail)(enabledService=imapsecured)(|(mail=www@aaaa.com)(&(enabledService=shadowaddress)(shadowAddress=www@aaaa.com)))) fields=mail,homeDirectory,mailMessageStore,mailQuota
May 28 09:11:12 auth: Debug: ldap(www@aaaa.com,127.0.0.1): result: mail(user)=www@aaaa.com mailQuota(quota_rule=*:bytes=%$)=5242880000 mailMessageStore(mail=maildir:/var/vmail/%$/Maildir/)=vmail1/aaaa.com/w/w/w/www-2012.04.27.10.21.01/ homeDirectory(home)=/var/vmailvmail1/aaaa.com/w/w/w/www-2012.04.27.10.21.01/
May 28 09:11:12 auth: Debug: master out: USER   1369440257      www@aaaa.com        quota_rule=*:bytes=5242880000 mail=maildir:/var/vmail/vmail1/aaaa.com/w/w/w/www-2012.04.27.10.21.01//Maildir/     home= /var/vmailvmail1/ aaaa.com/w/w/w/www-2012.04.27.10.21.01/   
# homeDirector錯誤訊息 少一斜線 /

May 28 09:11:12 imap-login: Info: Login: user=<www@aaaa.com>, method=PLAIN, rip=127.0.0.1, lip=127.0.0.1, mpid=6965, secured

張大 :
1.謝謝您的回覆,
我想我可能要重新安裝我的系統. (因我的問題,皆不存在)
2.直接iredmail 0.8.0 -->iRedAdmin-Pro-LDAP
(我目前 是從iredmail 0.7.4 -->iRedAdmin-Pro-LDAP)
0.7.4-->0.8.0 upgrade 我已做過,無解! , 經由升級後,0.7.4 並無法具有完整0.8.0的功能
.因敝人是個菜鳥.也許在某些文件並未能看懂所致罷?!
安裝後的結果,我會告知 張大.
3.最重要一點,重裝後,原先Pro 的license 會失效?(系統重安裝, 原先Pro的下載可用?)

dear 張大:
1.按照上文的回覆修改,結果是不行; 還是請張大check我的log.
防火牆 25 port 有開啟.
2.以下為修改後,系統重開機及測試的log
重開機:

A).結果不行
Sending mails via SMTP over TLS/SSL 打勾 ,詳如附圖

May 17 17:19:04 mail1 qpidd[1501]: 2012-05-17 17:19:04 notice Listening on TCP/TCP6 port 5672
May 17 17:19:04 mail1 qpidd[1501]: 2012-05-17 17:19:04 notice SSL plugin not enabled, you must set --ssl-cert-db to enable it. #這是否有關係?
May 17 17:19:04 mail1 qpidd[1501]: 2012-05-17 17:19:04 notice Broker running

==>maillog

May 17 19:36:17 mail1 postfix/smtpd[2322]: connect from web.aa.com[203.69.xx.xx]
May 17 19:36:17 mail1 postfix/smtpd[2322]: NOQUEUE: reject: RCPT from web.aa.com[203.69.xx.xx]: 553 5.7.1 <dd@aa.com>: Sender address rejected: not owned by user dd@aa.com; from=<dd@aa.com> to=<dd@aa.com> proto=ESMTP helo=<tlsb>
May 17 19:36:17 mail1 postfix/smtpd[2322]: disconnect from web.aa.com[203.69.xx.xx]
May 17 19:39:37 mail1 postfix/anvil[2325]: statistics: max connection rate 6/60s for (submission:203.69.xx.xx.)at May 17 19:36:17
May 17 19:39:37 mail1 postfix/anvil[2325]: statistics: max connection count 1 for (submission:203.69.xx.xx) at May 17 19:36:17

==> Dovecot.log

May 17 19:37:54 pop3-login: Info: Login: user=<dd@aa.com>, method=PLAIN, rip=203.69.xx.xx, lip=10.10.xx.xx, mpid=2346, TLS
May 17 19:37:54 pop3(dd@aa.com): Info: Disconnected: Logged out top=0/0, retr=0/0, del=0/7, size=12479
May 17 19:38:13 imap-login: Info: Login: user=<dd@aa.com>, method=PLAIN, rip=127.0.0.1, lip=127.0.0.1, mpid=2348, secured
May 17 19:38:13 imap(dd@aa.com): Info: Disconnected: Logged out bytes=316/1643
May 17 19:39:13 imap-login: Info: Login: user=<dd@aa.com>, method=PLAIN, rip=127.0.0.1, lip=127.0.0.1, mpid=2350, secured
May 17 19:39:13 imap(dd@aa.com): Info: Disconnected: Logged out bytes=316/1643


B).
Sending mails via SMTP
Sending mails via SMTP over TLS/SSL
兩者皆打勾 , 可收發 ,但是否為無意義 ?

系統log如下:

==> maillog

May 17 19:51:59 mail1 postfix/smtpd[2409]: connect from web.aa.com[203.69.xx.xx]
May 17 19:51:59 mail1 postfix/smtpd[2409]: 23FB82C005D: client=web.aa.com[203.69.xx.xx], sasl_method=LOGIN, sasl_username=dd@aa.com
May 17 19:51:59 mail1 postfix/cleanup[2414]: 23FB82C005D: message-id=<>
May 17 19:51:59 mail1 postfix/qmgr[1515]: 23FB82C005D: from=<dd@aa.com>, size=529, nrcpt=2 (queue active)
May 17 19:51:59 mail1 postfix/smtpd[2409]: disconnect from web.aa.com[203.69.xx.xx]
May 17 19:52:04 mail1 postfix/smtpd[2423]: connect from mail.aa.com[127.0.0.1]
May 17 19:52:04 mail1 postfix/smtpd[2423]: E22152C0074: client=mail.aa.com[127.0.0.1]
May 17 19:52:04 mail1 postfix/cleanup[2414]: E22152C0074: message-id=<20120517115204.E22152C0074@mail.aa.com>
May 17 19:52:04 mail1 postfix/smtpd[2424]: connect from mail.aa.com[127.0.0.1]
May 17 19:52:04 mail1 postfix/smtpd[2424]: EBAD72C007B: client=mail.aa.com[127.0.0.1]
May 17 19:52:04 mail1 postfix/cleanup[2425]: EBAD72C007B: message-id=<20120517115204.EBAD72C007B@mail.aa.com>
May 17 19:52:05 mail1 postfix/smtpd[2424]: disconnect from mail.aa.com[127.0.0.1]
May 17 19:52:05 mail1 postfix/qmgr[1515]: EBAD72C007B: from=<dd@aa.com>, size=1622, nrcpt=1 (queue active)
May 17 19:52:05 mail1 amavis[1685]: (01685-05) Passed BAD-HEADER, MYUSERS LOCAL [203.69.xx.xx] [203.69.xx.xx] <dd@aa.com> -> <admin@aa.com>, mail_id: yU7DPrTDoSIR, Hits: -7.374, size: 529, queued_as: EBAD72C007B, 5362 ms
May 17 19:52:05 mail1 postfix/qmgr[1515]: E22152C0074: from=<dd@aa.com>, size=1600, nrcpt=1 (queue active)
May 17 19:52:05 mail1 postfix/smtpd[2423]: disconnect from mail.aa.com[127.0.0.1]
May 17 19:52:05 mail1 amavis[1686]: (01686-05) Passed BAD-HEADER, MYUSERS LOCAL [203.69.xx.xx] [203.69.xx.xx] <dd@aa.com> -> <dd@aa.com>, mail_id: BRqPpNQ6qrcQ, Hits: -7.374, size: 529, queued_as: E22152C0074, 5380 ms
May 17 19:52:05 mail1 postfix/smtp[2416]: 23FB82C005D: to=<admin@aa.com>, relay=127.0.0.1[127.0.0.1]:10024, delay=6, delays=0.51/0.01/0/5.4, dsn=2.0.0, status=sent (250 2.0.0 from MTA([127.0.0.1]:10025): 250 2.0.0 Ok: queued as EBAD72C007B)
May 17 19:52:05 mail1 postfix/smtp[2415]: 23FB82C005D: to=<dd@aa.com>, relay=127.0.0.1[127.0.0.1]:10024, delay=6, delays=0.51/0.01/0/5.5, dsn=2.0.0, status=sent (250 2.0.0 from MTA([127.0.0.1]:10025): 250 2.0.0 Ok: queued as E22152C0074)
May 17 19:52:05 mail1 postfix/qmgr[1515]: 23FB82C005D: removed
May 17 19:52:05 mail1 postfix/pipe[2426]: EBAD72C007B: to=<admin@aa.com>, relay=dovecot, delay=0.39, delays=0.06/0.01/0/0.31, dsn=2.0.0, status=sent (delivered via dovecot service)
May 17 19:52:05 mail1 postfix/qmgr[1515]: EBAD72C007B: removed
May 17 19:52:05 mail1 postfix/pipe[2427]: E22152C0074: to=<dd@aa.com>, relay=dovecot, delay=0.49, delays=0.1/0.02/0/0.37, dsn=2.0.0, status=sent (delivered via dovecot service)
May 17 19:52:05 mail1 postfix/qmgr[1515]: E22152C0074: removed


==> dovecot.log

May 17 19:51:59 pop3-login: Info: Login: user=<dd@aa.com>, method=PLAIN, rip=203.69.xx.xx, lip=10.10.xx.xx, mpid=2421, TLS
May 17 19:51:59 pop3(dd@aa.com): Info: Disconnected: Logged out top=0/0, retr=0/0, del=0/7, size=12479
May 17 19:52:05 dict: Info: mysql(127.0.0.1): Connected to database iredadmin
May 17 19:52:05 dict: Info: mysql(127.0.0.1): Connected to database iredadmin

1.兩問題已解決, 感謝 張大 快速的幫忙 .

2.但我又發現幾個問題 , 想再請 張大 幫忙.
(A)從 /郵件列表/ 刪除某一用戶會有 “錯誤: 303 See Other” 訊息.(詳附圖)
(B)從 /用戶/ 刪除zz@aa.com其原隸屬pe@aa.com郵件列表裡 .
今再建立同一名稱帳號zz@aa.com , 其會自動加入pe@aa.com的群組裡 .
(我的問題是 : 先後 離職及新進 兩位員工使用相同帳戶名稱, 但工作業務不同,應有不同 郵件列表歸屬 ,然系統卻會自動把後建的zz@aa.com加到先前舊的郵件列表群組pe@aa.com裡 . 新員工也許會收到兩個群組的信件,或新員工未加入任何郵件列表群組卻會收到pe@的信件)
(C)

ZhangHuangbin  写道:

修正步骤已经在这里详细描述:
http://www.iredmail.org/wiki/index.php? … ice.3Dsmtp
.
.

Create new file virtual_group_members_maps.cf:
•    Copy sender_login_maps.cf to virtual_group_members_maps.cf.

按照說明動作,直接
copy  sender_login_maps.cf virtual_group_members_maps.cf會有錯誤訊息
需 chown root:postfix virtual_group_members_maps.cf
-rw-r--r--. 1 root root    651 2012-04-27 10:28 sender_login_maps.cf
-rw-r--r--  1 root postfix 630 2012-05-16 10:21 virtual_group_members_maps.cf
至於檔案的權限是否有誤? 須下
chmod 0640  virtual_group_members_maps.cf嗎?
下不下上面指令maillog倒沒看到錯誤訊息,postfix可正常運作.




3. 基於 張大 前文回覆:

ZhangHuangbin  写道:

只用 STARTTLS 来收取邮件很简单。在 dovecot.conf 里设置以下参数:
-
-
Postfix 里的设置不需要改动,只要使用 submission 587 (STARTTLS,而不是 SSL) 即可。

a.於是把dovecot.conf按照上文修改,postfix的 main.cf 及master.cf回復為作ssl/tls變更前內容

b.伺服器端iRedAdmin-Pro  /用戶屬性 /進階設定 /
通過 SMTP 協議發送郵件
通過 POP3 協議收取郵件(使用 TLS/SSL 加密傳輸)
通過 IMAP 協議收取郵件(使用 TLS/SSL 加密傳輸)
三項打勾 ,至於SMTPS採 張大建議不用 . (若能從網域裡設定,也許會更方便, 這是我個人臨時的想法 . 張大 此非本人給您出難題喔,也許您們有其他考量.)

Iptables把不用的port關掉 ,強迫client user使用 starttls

# http/https, smtp-starttls 587 , pop3s 995, imaps 933
-A INPUT -p tcp -m multiport --dport 80,443,587,995,993 -j ACCEPT

c.client 使用者outlook
pop3s 995  (SSL)(C)要打勾
smtp 587 , (SSL)(C)可不打勾

張大 以上為我的設定,不知對不對? 請再指導一下, 謝謝 !