Bienvenido(a) a Alcance Libre 31/01/2023, 05:26

Alcance Libre Foros

 Índice del foro > Todo acerca de Linux > Redes y Servidores New Topic Post Reply
 Problemas al validar usuarios dovecot en thunderbird
Tópico anterior Tópico siguiente
   
flamacore
 11/14/12 12:17PM (Leído 10,869 veces)  

Nuevo

Estado: desconectado
Forum User

Identificado: 11/14/12
Mensajes: 7
Hlaamigos, antes que nada quiero felicitarlos por su excelente pagina, me ha sido de mucha ayuda en esta mision de levantar un servidor de correo sendmail con dovecot, he instalado ademas webmin 1.560 , les cuento que desde webmin puedo enviar y recibir correo de difernetes dominios, pero al autenticar a los usuarios con sus clientes thunderbird me arroja un problema de autenticacion, tengo configurado el servidor para que envie la pwd de manera insegura con plaintext, pero cada vez que intento con un nuevo usuario me arroja el error: se produjo un error al enviar la contraseña, el servidor respondio: + . peor al enviar desde ese mismo cliente un correo a un dominio como gmail por ej. lo envia sin problemas.
Vamos amigos , se que ustedes me pueden ayudar, haganme la consulta que sea para recopilar mas informacion , pues yo soy bastante nuevo en esto de linux pero soy bueno para seguir consejos y explorar, y como ya no se que mas explorar acudo a ustedes, estare clavado frente a l apantalla esperando sus respuestas
 
Profile Email
 Quote
moy
 11/14/12 04:55PM  

Miembro Activo

Estado: desconectado
Forum User

Identificado: 11/29/08
Mensajes: 263
que te muesta el log, maillog y messages para ver por donde es el error y que tienes en tu configuracion en el archivo de access
 
Profile Email
 Quote
flamacore
 11/15/12 09:24AM  

Nuevo

Estado: desconectado
Forum User

Identificado: 11/14/12
Mensajes: 7
Gracias MOY por tu rapida respuesta, te cuento y te publico la informacion solicitada:
el maillog me arroja esta infomacion:
PHP Formatted Code
Nov 14 15:31:47 localhost sendmail[4263]: qAEIDwUi004263: lost input channel from [172.16.20.228] to MTA after rcpt
Nov 14 15:31:47 localhost sendmail[4263]: qAEIDwUi004263: from=<bounce-56552-15043412-2696-248@maildirecto.cl>, size=5990, class=0, nrcpts=1, proto=ESMTP, daemon=MTA, relay=[172.16.20.228]
Nov 14 16:58:27 localhost dovecot: master: Warning: Killed with signal 15 (by pid=5111 uid=0 code=kill)
Nov 14 16:58:28 localhost dovecot: master: Dovecot v2.0.9 starting up (core dumps disabled)
Nov 14 17:04:39 localhost dovecot: master: Warning: Killed with signal 15 (by pid=5277 uid=0 code=kill)
Nov 14 17:04:40 localhost dovecot: master: Dovecot v2.0.9 starting up (core dumps disabled)
Nov 14 17:04:50 localhost sendmail[5317]: starting daemon (8.14.4): SMTP+queueing@01:00:00
Nov 14 17:04:50 localhost sm-msp-queue[5326]: starting daemon (8.14.4): queueing@01:00:00
Nov 14 17:49:54 localhost sendmail[4709]: qAEJnscl004709: timeout waiting for input from [192.91.0.161] during server cmd read
Nov 14 17:49:54 localhost sendmail[4709]: qAEJnscl004709: [192.91.0.161] did not issue MAIL/EXPN/VRFY/ETRN during connection to MTA


El fichero access esta configuradopo de esta forma:
PHP Formatted Code
Connect:localhost.localdomain           RELAY
Connect:localhost                       RELAY
Connect:127.0.0.1                       RELAY
connect:192.91.0.7                      RELAY
connect:172.16.20.227                   RELAY
connect:192.168.9.1                     RELAY
200.xx.xx.0                             RELAY
192.168.9.0/24                          RELAY
192.91.0.197                            RELAY
192.91.0.0/24                           RELAY
midominio.cl                            RELAY
10.0.0.2                                REJECT
10.0.0.1                                REJECT
james@xxxxxxxxxxxxxxxxxxxx.cl           REJECT
james@museoxxxxx.cl                     REJECT
65.54.251.150                           REJECT
202.66.155.33                           REJECT
200.72.161.114                          REJECT
195.36.162.10                           REJECT
212.18.238.36                           REJECT
62.39.122.17                            REJECT


y por ultimo , messages me arroja esto :
PHP Formatted Code
root@dns /# tail -f /var/log/messages
Nov 15 08:27:37 localhost avahi-daemon[1765]: Invalid query packet.
Nov 15 08:32:52 localhost avahi-daemon[1765]: Invalid query packet.
Nov 15 08:32:53 localhost avahi-daemon[1765]: Invalid query packet.
Nov 15 08:32:53 localhost avahi-daemon[1765]: Invalid query packet.
Nov 15 08:32:53 localhost avahi-daemon[1765]: Invalid query packet.
Nov 15 08:32:53 localhost avahi-daemon[1765]: Invalid query packet.
Nov 15 08:32:53 localhost avahi-daemon[1765]: Invalid query packet.
Nov 15 08:32:56 localhost avahi-daemon[1765]: Invalid query packet.
Nov 15 08:33:05 localhost avahi-daemon[1765]: Invalid query packet.
Nov 15 08:33:33 localhost avahi-daemon[1765]: Invalid query packet


espero sirva de algo esta informacion y puedas ayudarme, me quedo pegado a la pantalla esperando tu respuesta
 
Profile Email
 Quote
Joel Barrios Dueñas
 11/16/12 10:06AM  

Admin

Estado: desconectado
Site Admin

Identificado: 02/17/07
Mensajes: 1761
Localización:Mexico
Necesitas publicar que modificaste en la configuración de dovecot (10-mail.conf y 10-ssl.conf) y el contenido sendmail.mc para que podamos hacer un diagnóstico más preciso. ¿Generaste certificados para Dovecot y Sendmail? ¿Modificaste algo más además de 10-mail.conf y 10-ssl.conf en dovecot? ¿Está arriba el servicio saslauthd?
 
Profile Email Website
 Quote
flamacore
 11/16/12 10:11AM  

Nuevo

Estado: desconectado
Forum User

Identificado: 11/14/12
Mensajes: 7
No he modificado 10-ssl.conf , es necesario ? porque no use ssl , pero en seguida te publico los ficheros citados.
 
Profile Email
 Quote
flamacore
 11/16/12 10:21AM  

Nuevo

Estado: desconectado
Forum User

Identificado: 11/14/12
Mensajes: 7
aqui esta la configuracion de 10-mail.conf

PHP Formatted Code
## Mailbox locations and namespaces
##

# Location for users' mailboxes. The default is empty, which means that Dovecot
# tries to find the mailboxes automatically. This won't work if the user
# doesn't yet have any mail, so you should explicitly tell Dovecot the full
# location.
#
# If you're using mbox, giving a path to the INBOX file (eg. /var/mail/%u)
# isn't enough. You'll also need to tell Dovecot where the other mailboxes are
# kept. This is called the "root mail directory", and it must be the first
# path given in the mail_location setting.
#
# There are a few special variables you can use, eg.:
#
#   %u - username
#   %n - user part in user@domain, same as %u if there's no domain
#   %d - domain part in user@domain, empty if there's no domain
#   %h - home directory
#
# See doc/wiki/Variables.txt for full list. Some examples:
#
#   mail_location = maildir:~/Maildir
#   mail_location = mbox:~/mail:INBOX=/var/mail/%u
#   mail_location = mbox:/var/mail/%d/%1n/%n:INDEX=/var/indexes/%d/%1n/%n
#
# <doc/wiki/MailLocation.txt>
#
#mail_location =

# If you need to set multiple mailbox locations or want to change default
# namespace settings, you can do it by defining namespace sections.
#
# You can have private, shared and public namespaces. Private namespaces
# are for user's personal mails. Shared namespaces are for accessing other
# users' mailboxes that have been shared. Public namespaces are for shared
# mailboxes that are managed by sysadmin. If you create any shared or public
# namespaces you'll typically want to enable ACL plugin also, otherwise all
# users can access all the shared mailboxes, assuming they have permissions
# on filesystem level to do so.
#
# REMEMBER: If you add any namespaces, the default namespace must be added
# explicitly, ie. mail_location does nothing unless you have a namespace
# without a location setting. Default namespace is simply done by having a
# namespace with empty prefix.
#namespace {
 # Namespace type: private, shared or public
 #type = private

  # Hierarchy separator to use. You should use the same separator for all
 # namespaces or some clients get confused. '/' is usually a good one.
 # The default however depends on the underlying mail storage format.
 #separator =

  # Prefix required to access this namespace. This needs to be different for
 # all namespaces. For example "Public/".
 #prefix =

  # Physical location of the mailbox. This is in same format as
 # mail_location, which is also the default for it.
 #location =

  # There can be only one INBOX, and this setting defines which namespace
 # has it.
 #inbox = no

  # If namespace is hidden, it's not advertised to clients via NAMESPACE
 # extension. You'll most likely also want to set list=no. This is mostly
 # useful when converting from another server with different namespaces which
 # you want to deprecate but still keep working. For example you can create
 # hidden namespaces with prefixes "~/mail/", "~%u/mail/" and "mail/".
 #hidden = no

  # Show the mailboxes under this namespace with LIST command. This makes the
 # namespace visible for clients that don't support NAMESPACE extension.
 # "children" value lists child mailboxes, but hides the namespace prefix.
 #list = yes

  # Namespace handles its own subscriptions. If set to "no", the parent
 # namespace handles them (empty prefix should always have this as "yes")
 #subscriptions = yes
#}

# Example shared namespace configuration
#namespace {
 #type = shared
 #separator = /

  # Mailboxes are visible under "shared/user@domain/"
 # %%n, %%d and %%u are expanded to the destination user.
 #prefix = shared/%%u/

  # Mail location for other users' mailboxes. Note that %variables and ~/
 # expands to the logged in user's data. %%n, %%d, %%u and %%h expand to the
 # destination user's data.
 #location = maildir:%%h/Maildir:INDEX=~/Maildir/shared/%%u

  # Use the default namespace for saving subscriptions.
 #subscriptions = no

  # List the shared/ namespace only if there are visible shared mailboxes.
 #list = children
#}

# System user and group used to access mails. If you use multiple, userdb
# can override these by returning uid or gid fields. You can use either numbers
# or names. <doc/wiki/UserIds.txt>
#mail_uid =
#mail_gid =

# Group to enable temporarily for privileged operations. Currently this is
# used only with INBOX when either its initial creation or dotlocking fails.
# Typically this is set to "mail" to give access to /var/mail.
#mail_privileged_group =

# Grant access to these supplementary groups for mail processes. Typically
# these are used to set up access to shared mailboxes. Note that it may be
# dangerous to set these if users can create symlinks (e.g. if "mail" group is
# set here, ln -s /var/mail ~/mail/var could allow a user to delete others'
# mailboxes, or ln -s /secret/shared/box ~/mail/mybox would allow reading it).
#mail_access_groups =

# Allow full filesystem access to clients. There's no access checks other than
# what the operating system does for the active UID/GID. It works with both
# maildir and mboxes, allowing you to prefix mailboxes names with eg. /path/
# or ~user/.
#mail_full_filesystem_access = no

##
## Mail processes
##

# Don't use mmap() at all. This is required if you store indexes to shared
# filesystems (NFS or clustered filesystem).
#mmap_disable = no

# Rely on O_EXCL to work when creating dotlock files. NFS supports O_EXCL
# since version 3, so this should be safe to use nowadays by default.
#dotlock_use_excl = yes

# When to use fsync() or fdatasync() calls:
#   optimized (default): Whenever necessary to avoid losing important data
#   always: Useful with e.g. NFS when write()s are delayed
#   never: Never use it (best performance, but crashes can lose data)
#mail_fsync = optimized

# Mail storage exists in NFS. Set this to yes to make Dovecot flush NFS caches
# whenever needed. If you're using only a single mail server this isn't needed.
#mail_nfs_storage = no
# Mail index files also exist in NFS. Setting this to yes requires
# mmap_disable=yes and fsync_disable=no.
#mail_nfs_index = no

# Locking method for index files. Alternatives are fcntl, flock and dotlock.
# Dotlocking uses some tricks which may create more disk I/O than other locking
# methods. NFS users: flock doesn't work, remember to change mmap_disable.
#lock_method = fcntl

# Directory in which LDA/LMTP temporarily stores incoming mails >128 kB.
#mail_temp_dir = /tmp

# Valid UID range for users, defaults to 500 and above. This is mostly
# to make sure that users can't log in as daemons or other system users.
# Note that denying root logins is hardcoded to dovecot binary and can't
# be done even if first_valid_uid is set to 0.
#first_valid_uid = 500
#last_valid_uid = 0

# Valid GID range for users, defaults to non-root/wheel. Users having
# non-valid GID as primary group ID aren't allowed to log in. If user
# belongs to supplementary groups with non-valid GIDs, those groups are
# not set.
#first_valid_gid = 1
#last_valid_gid = 0

# Maximum allowed length for mail keyword name. It's only forced when trying
# to create new keywords.
#mail_max_keyword_length = 50

# ':' separated list of directories under which chrooting is allowed for mail
# processes (ie. /var/mail will allow chrooting to /var/mail/foo/bar too).
# This setting doesn't affect login_chroot, mail_chroot or auth chroot
# settings. If this setting is empty, "/./" in home dirs are ignored.
# WARNING: Never add directories here which local users can modify, that
# may lead to root exploit. Usually this should be done only if you don't
# allow shell access for users. <doc/wiki/Chrooting.txt>
#valid_chroot_dirs =

# Default chroot directory for mail processes. This can be overridden for
# specific users in user database by giving /./ in user's home directory
# (eg. /home/./user chroots into /home). Note that usually there is no real
# need to do chrooting, Dovecot doesn't allow users to access files outside
# their mail directory anyway. If your home directories are prefixed with
# the chroot directory, append "/." to mail_chroot. <doc/wiki/Chrooting.txt>
#mail_chroot =

# UNIX socket path to master authentication server to find users.
# This is used by imap (for shared users) and lda.
#auth_socket_path = /var/run/dovecot/auth-userdb

# Directory where to look up mail plugins.
#mail_plugin_dir = /usr/lib/dovecot

# Space separated list of plugins to load for all services. Plugins specific to
# IMAP, LDA, etc. are added to this list in their own .conf files.
#mail_plugins =

##
## Mailbox handling optimizations
##

# The minimum number of mails in a mailbox before updates are done to cache
# file. This allows optimizing Dovecot's behavior to do less disk writes at
# the cost of more disk reads.
#mail_cache_min_mail_count = 0

# When IDLE command is running, mailbox is checked once in a while to see if
# there are any new mails or other changes. This setting defines the minimum
# time to wait between those checks. Dovecot can also use dnotify, inotify and
# kqueue to find out immediately when changes occur.
#mailbox_idle_check_interval = 30 secs

# Save mails with CR+LF instead of plain LF. This makes sending those mails
# take less CPU, especially with sendfile() syscall with Linux and FreeBSD.
# But it also creates a bit more disk I/O which may just make it slower.
# Also note that if other software reads the mboxes/maildirs, they may handle
# the extra CRs wrong and cause problems.
#mail_save_crlf = no

##
## Maildir-specific settings
##

# By default LIST command returns all entries in maildir beginning with a dot.
# Enabling this option makes Dovecot return only entries which are directories.
# This is done by stat()ing each entry, so it causes more disk I/O.
# (For systems setting struct dirent->d_type, this check is free and it's
# done always regardless of this setting)
#maildir_stat_dirs = no

# When copying a message, do it with hard links whenever possible. This makes
# the performance much better, and it's unlikely to have any side effects.
#maildir_copy_with_hardlinks = yes

# Assume Dovecot is the only MUA accessing Maildir: Scan cur/ directory only
# when its mtime changes unexpectedly or when we can't find the mail otherwise.
#maildir_very_dirty_syncs = no

##
## mbox-specific settings
##

# Which locking methods to use for locking mbox. There are four available:
#  dotlock: Create <mailbox>.lock file. This is the oldest and most NFS-safe
#           solution. If you want to use /var/mail/ like directory, the users
#           will need write access to that directory.
#  dotlock_try: Same as dotlock, but if it fails because of permissions or
#               because there isn't enough disk space, just skip it.
#  fcntl  : Use this if possible. Works with NFS too if lockd is used.
#  flock  : May not exist in all systems. Doesn't work with NFS.
#  lockf  : May not exist in all systems. Doesn't work with NFS.
#
# You can use multiple locking methods; if you do the order they're declared
# in is important to avoid deadlocks if other MTAs/MUAs are using multiple
# locking methods as well. Some operating systems don't allow using some of
# them simultaneously.
#mbox_read_locks = fcntl
#mbox_write_locks = dotlock fcntl
mbox_write_locks = fcntl

# Maximum time to wait for lock (all of them) before aborting.
#mbox_lock_timeout = 5 mins

# If dotlock exists but the mailbox isn't modified in any way, override the
# lock file after this much time.
#mbox_dotlock_change_timeout = 2 mins

# When mbox changes unexpectedly we have to fully read it to find out what
# changed. If the mbox is large this can take a long time. Since the change
# is usually just a newly appended mail, it'd be faster to simply read the
# new mails. If this setting is enabled, Dovecot does this but still safely
# fallbacks to re-reading the whole mbox file whenever something in mbox isn't
# how it's expected to be. The only real downside to this setting is that if
# some other MUA changes message flags, Dovecot doesn't notice it immediately.
# Note that a full sync is done with SELECT, EXAMINE, EXPUNGE and CHECK
# commands.
#mbox_dirty_syncs = yes

# Like mbox_dirty_syncs, but don't do full syncs even with SELECT, EXAMINE,
# EXPUNGE or CHECK commands. If this is set, mbox_dirty_syncs is ignored.
#mbox_very_dirty_syncs = no

# Delay writing mbox headers until doing a full write sync (EXPUNGE and CHECK
# commands and when closing the mailbox). This is especially useful for POP3
# where clients often delete all mails. The downside is that our changes
# aren't immediately visible to other MUAs.
#mbox_lazy_writes = yes

# If mbox size is smaller than this (e.g. 100k), don't write index files.
# If an index file already exists it's still read, just not updated.
#mbox_min_index_size = 0

##
## mdbox-specific settings
##

# Maximum dbox file size until it's rotated.
#mdbox_rotate_size = 2M

# Maximum dbox file age until it's rotated. Typically in days. Day begins
# from midnight, so 1d = today, 2d = yesterday, etc. 0 = check disabled.
#mdbox_rotate_interval = 1d

# When creating new mdbox files, immediately preallocate their size to
# mdbox_rotate_size. This setting currently works only in Linux with some
# filesystems (ext4, xfs).
#mdbox_preallocate_space = no

##
## Mail attachments
##

# sdbox and mdbox support saving mail attachments to external files, which
# also allows single instance storage for them. Other backends don't support
# this for now.

# WARNING: This feature hasn't been tested much yet. Use at your own risk.

# Directory root where to store mail attachments. Disabled, if empty.
#mail_attachment_dir =

# Attachments smaller than this aren't saved externally. It's also possible to
# write a plugin to disable saving specific attachments externally.
#mail_attachment_min_size = 128k

# Filesystem backend to use for saving attachments:
#  posix : No SiS done by Dovecot (but this might help FS's own deduplication)
#  sis posix : SiS with immediate byte-by-byte comparison during saving
#  sis-queue posix : SiS with delayed comparison and deduplication
#mail_attachment_fs = sis posix

# Hash format to use in attachment filenames. You can add any text and
# variables: %{md4}, %{md5}, %{sha1}, %{sha256}, %{sha512}, %{size}.
# Variables can be truncated, e.g. %{sha256:80} returns only first 80 bits
#mail_attachment_hash = %{sha1}


al parecer me falta asignar los directorios de entrewga de mensajes, me percate de esteo leyendo algo hace poco creo que por ahi va el problema, pero esta genial ser guiado por ti.
 
Profile Email
 Quote
flamacore
 11/16/12 10:26AM  

Nuevo

Estado: desconectado
Forum User

Identificado: 11/14/12
Mensajes: 7
Esto es lo que tengo en sendmail.mc

PHP Formatted Code
divert(-1)dnl
dnl #
dnl # This is the sendmail macro config file for m4. If you make changes to
dnl # /etc/mail/sendmail.mc, you will need to regenerate the
dnl # /etc/mail/sendmail.cf file by confirming that the sendmail-cf package is
dnl # installed and then performing a
dnl #
dnl #     /etc/mail/make
dnl #
include(`/usr/share/sendmail-cf/m4/cf.m4')dnl
VERSIONID(`setup for linux'
)dnl
OSTYPE(`linux')dnl
dnl #
dnl # Do not advertize sendmail version.
dnl #
dnl define(`confSMTP_LOGIN_MSG'
, `$j Sendmail; $b')dnl
dnl #
dnl # default logging level is 9, you might want to set it higher to
dnl # debug the configuration
dnl #
dnl define(`confLOG_LEVEL'
, `9')dnl
dnl #
dnl # Uncomment and edit the following line if your outgoing mail needs to
dnl # be sent out through an external mail server:
dnl #
dnl define(`SMART_HOST'
, `smtp.your.provider')dnl
dnl #
define(`confDEF_USER_ID'
, ``8:12'')dnl
dnl define(`confAUTO_REBUILD')dnl
define(`confTO_CONNECT'
, `1m')dnl
define(`confTRY_NULL_MX_LIST'
, `True')dnl
define(`confDONT_PROBE_INTERFACES'
, `True')dnl
define(`PROCMAIL_MAILER_PATH'
, `/usr/bin/procmail')dnl
define(`ALIAS_FILE'
, `/etc/aliases')dnl
define(`STATUS_FILE'
, `/var/log/mail/statistics')dnl
define(`UUCP_MAILER_MAX'
, `2000000')dnl
define(`confUSERDB_SPEC'
, `/etc/mail/userdb.db')dnl
define(`confPRIVACY_FLAGS'
, `authwarnings,novrfy,noexpn,restrictqrun')dnl
define(`confAUTH_OPTIONS'
, `A')dnl
dnl #
dnl # The following allows relaying if the user authenticates, and disallows
dnl # plaintext authentication (PLAIN/LOGIN) on non-TLS links
dnl #
dnl define(`confAUTH_OPTIONS'
, `A p')dnl
dnl #
dnl # PLAIN is the preferred plaintext authentication method and used by
dnl # Mozilla Mail and Evolution, though Outlook Express and other MUAs do
dnl # use LOGIN. Other mechanisms should be used if the connection is not
dnl # guaranteed secure.
dnl # Please remember that saslauthd needs to be running for AUTH.
dnl #
dnl TRUST_AUTH_MECH(`EXTERNAL DIGEST-MD5 CRAM-MD5 LOGIN PLAIN'
)dnl
dnl define(`confAUTH_MECHANISMS', `EXTERNAL GSSAPI DIGEST-MD5 CRAM-MD5 LOGIN PLAIN')dnl
dnl #
dnl # Rudimentary information on creating certificates for sendmail TLS:
dnl #     cd /etc/pki/tls/certs; make sendmail.pem
dnl # Complete usage:
dnl #     make -C /etc/pki/tls/certs usage
dnl #
dnl define(`confCACERT_PATH', `/etc/pki/tls/certs')dnl
dnl define(`confCACERT', `/etc/pki/tls/certs/ca-bundle.crt')dnl
dnl define(`confSERVER_CERT', `/etc/pki/tls/certs/sendmail.pem')dnl
dnl define(`confSERVER_KEY', `/etc/pki/tls/certs/sendmail.pem')dnl
dnl #
dnl # This allows sendmail to use a keyfile that is shared with OpenLDAP's
dnl # slapd, which requires the file to be readble by group ldap
dnl #
dnl define(`confDONT_BLAME_SENDMAIL', `groupreadablekeyfile')dnl
dnl #
dnl define(`confTO_QUEUEWARN', `4h')dnl
dnl define(`confTO_QUEUERETURN', `5d')dnl
dnl define(`confQUEUE_LA', `12')dnl
dnl define(`confREFUSE_LA', `18')dnl
define(`confTO_IDENT', `0')dnl
dnl FEATURE(delay_checks)dnl
FEATURE(`no_default_msa', `dnl')dnl
FEATURE(`smrsh', `/usr/sbin/smrsh')dnl
FEATURE(`mailertable', `hash -o /etc/mail/mailertable.db')dnl
FEATURE(`virtusertable', `hash -o /etc/mail/virtusertable.db')dnl
FEATURE(redirect)dnl
FEATURE(always_add_domain)dnl
FEATURE(use_cw_file)dnl
FEATURE(use_ct_file)dnl
dnl #
dnl # The following limits the number of processes sendmail can fork to accept
dnl # incoming messages or process its message queues to 20.) sendmail refuses
dnl # to accept connections once it has reached its quota of child processes.
dnl #
dnl define(`confMAX_DAEMON_CHILDREN', `20')dnl
dnl #
dnl # Limits the number of new connections per second. This caps the overhead
dnl # incurred due to forking new sendmail processes. May be useful against
dnl # DoS attacks or barrages of spam. (As mentioned below, a per-IP address
dnl # limit would be useful but is not available as an option at this writing.)
dnl #
dnl define(`confCONNECTION_RATE_THROTTLE', `3')dnl
dnl #
dnl # The -t option will retry delivery if e.g. the user runs over his quota.
dnl #
FEATURE(local_procmail, `', `procmail -t -Y -a $h -d $u')dnl
FEATURE(`access_db', `hash -T<TMPF> -o /etc/mail/access.db')dnl
FEATURE(`blacklist_recipients')dnl
EXPOSED_USER(`root'
)dnl
dnl #
dnl # For using Cyrus-IMAPd as POP3/IMAP server through LMTP delivery uncomment
dnl # the following 2 definitions and activate below in the MAILER section the
dnl # cyrusv2 mailer.
dnl #
dnl define(`confLOCAL_MAILER', `cyrusv2')dnl
dnl define(`CYRUSV2_MAILER_ARGS', `FILE /var/lib/imap/socket/lmtp')dnl
dnl #
dnl # The following causes sendmail to only listen on the IPv4 loopback address
dnl # 127.0.0.1 and not on any other network devices. Remove the loopback
dnl # address restriction to accept email from the internet or intranet.
dnl #
DAEMON_OPTIONS(`Port=smtp, Name=MTA')dnl
dnl #
dnl # The following causes sendmail to additionally listen to port 587 for
dnl # mail from MUAs that authenticate. Roaming users who can'
t reach their
dnl # preferred sendmail daemon due to port 25 being blocked or redirected find
dnl # this useful.
dnl #
dnl DAEMON_OPTIONS(`Port=submission, Name=MSA, M=Ea')dnl
dnl #
dnl # The following causes sendmail to additionally listen to port 465, but
dnl # starting immediately in TLS mode upon connecting. Port 25 or 587 followed
dnl # by STARTTLS is preferred, but roaming clients using Outlook Express can'
t
dnl # do STARTTLS on ports other than 25. Mozilla Mail can ONLY use STARTTLS
dnl # and doesn't support the deprecated smtps; Evolution <1.1.1 uses smtps
dnl # when SSL is enabled-- STARTTLS support is available in version 1.1.1.
dnl #
dnl # For this to work your OpenSSL certificates must be configured.
dnl #
dnl DAEMON_OPTIONS(`Port=smtps, Name=TLSMTA, M=s')dnl
dnl #
dnl # The following causes sendmail to additionally listen on the IPv6 loopback
dnl # device. Remove the loopback address restriction listen to the network.
dnl #
dnl DAEMON_OPTIONS(`port=smtp,Addr=::1, Name=MTA-v6, Family=inet6'
)dnl
dnl #
dnl # enable both ipv6 and ipv4 in sendmail:
dnl #
dnl DAEMON_OPTIONS(`Name=MTA-v4, Family=inet, Name=MTA-v6, Family=inet6')
dnl #
dnl # We strongly recommend not accepting unresolvable domains if you want to
dnl # protect yourself from spam. However, the laptop and users on computers
dnl # that do not have 24x7 DNS do need this.
dnl #
FEATURE(`accept_unresolvable_domains'
)dnl
dnl #
dnl FEATURE(`relay_based_on_MX')dnl
dnl #
dnl # Also accept email sent to "localhost.localdomain" as local email.
dnl #
LOCAL_DOMAIN(`localhost.localdomain'
)dnl
dnl #
dnl # The following example makes mail from this host and any additional
dnl # specified domains appear to be sent from mydomain.com
dnl #
dnl MASQUERADE_AS(municipalidadchillan.cl)dnl
dnl #
dnl # masquerade not just the headers, but the envelope as well
dnl #
dnl FEATURE(masquerade_envelope)dnl
dnl #
dnl # masquerade not just @mydomainalias.com, but @*.mydomainalias.com as well
dnl #
dnl FEATURE(masquerade_entire_domain)dnl
dnl #
dnl MASQUERADE_DOMAIN(localhost)dnl
dnl MASQUERADE_DOMAIN(localhost.localdomain)dnl
dnl MASQUERADE_DOMAIN(mydomainalias.com)dnl
dnl MASQUERADE_DOMAIN(mydomain.lan)dnl
MAILER(smtp)dnl
MAILER(procmail)dnl
dnl MAILER(cyrusv2)dnl
Cwmunicipalidadchillan.cl
 
Profile Email
 Quote
flamacore
 11/16/12 10:29AM  

Nuevo

Estado: desconectado
Forum User

Identificado: 11/14/12
Mensajes: 7
Aunque no he modificado este fichero de todas formas lo agrego.

PHP Formatted Code
##
## SSL settings
##

# SSL/TLS support: yes, no, required. <doc/wiki/SSL.txt>
#ssl = yes

# PEM encoded X.509 SSL/TLS certificate and private key. They're opened before
# dropping root privileges, so keep the key file unreadable by anyone but
# root. Included doc/mkcert.sh can be used to easily generate self-signed
# certificate, just make sure to update the domains in dovecot-openssl.cnf
ssl_cert = </etc/pki/dovecot/certs/dovecot.pem
ssl_key = </etc/pki/dovecot/private/dovecot.pem

# If key file is password protected, give the password here. Alternatively
# give it when starting dovecot with -p parameter. Since this file is often
# world-readable, you may want to place this setting instead to a different
# root owned 0600 file by using ssl_key_password = <path.
#ssl_key_password =

# PEM encoded trusted certificate authority. Set this only if you intend to use
# ssl_verify_client_cert=yes. The file should contain the CA certificate(s)
# followed by the matching CRL(s). (e.g. ssl_ca = </etc/pki/dovecot/certs/ca.pem)
#ssl_ca =

# Request client to send a certificate. If you also want to require it, set
# auth_ssl_require_client_cert=yes in auth section.
#ssl_verify_client_cert = no

# Which field from certificate to use for username. commonName and
# x500UniqueIdentifier are the usual choices. You'll also need to set
# auth_ssl_username_from_cert=yes.
#ssl_cert_username_field = commonName

# How often to regenerate the SSL parameters file. Generation is quite CPU
# intensive operation. The value is in hours, 0 disables regeneration
# entirely.
#ssl_parameters_regenerate = 168

# SSL ciphers to use
#ssl_cipher_list = ALL:!LOW:!SSLv2:!EXP:!aNULL
 
Profile Email
 Quote
Joel Barrios Dueñas
 11/16/12 01:19PM  

Admin

Estado: desconectado
Site Admin

Identificado: 02/17/07
Mensajes: 1761
Localización:Mexico
Obligadamente debes definir el valor para mail_location en 10-mail.conf. Revisa a detalle http://www.alcancelibre.org/staticpages/index.php/15-como-sendmail-apendice-01 para detalles de qué es lo qué hay que hacer, porque de otro modo, pasa lo que te está ocurriendo.

Sugiero pongas certificados porque usar un servicio de correo electrónico sin SSL/TLS hoy en día es casi un suicidio por todos los robots y crackers que se pasan las 24 horas de día con sniffers para intentar conseguir usuarios y claves de acceso de donde sea para enviar spam.

http://www.alcancelibre.org/staticpages/index.php/como-sendmail-dovecot-tls-ssl

 
Profile Email Website
 Quote
flamacore
 11/16/12 01:56PM  

Nuevo

Estado: desconectado
Forum User

Identificado: 11/14/12
Mensajes: 7
Disculpando mi ignorancia nuevamente, si yo creo los certificados no es necesario que active el soporte ssl/tls o es imprescindible??? .
 
Profile Email
 Quote
Joel Barrios Dueñas
 11/16/12 05:04PM  

Admin

Estado: desconectado
Site Admin

Identificado: 02/17/07
Mensajes: 1761
Localización:Mexico
Si haces los certificados y no activas SSL/TLS, son irrelevantes. Si usas el servicio de correo sin SSL/TLS muy probablemente te crackeen una o más cuentas de correo en poco tiempo.
 
Profile Email Website
 Quote
Contenido generado en: 0.61 segundos New Topic Post Reply
 Todas las horas son CST. Hora actual 05:26 AM.
Tópico normal Tópico normal
Tópico Pegado Tópico Pegado
Tópico bloqueado Tópico bloqueado
Mensaje Nuevo Mensaje Nuevo
Tópico pegado con nuevo mensaje Tópico pegado con nuevo mensaje
Tópico bloqueado con nuevo mensaje Tópico bloqueado con nuevo mensaje
Ver mensajes anónimos 
Los usuarios anónimos pueden enviar 
Se permite HTML Filtrado 
Contenido censurado