Squirrel Mail Unknown user or password incorrect. Dovecot-Postfix with MySQL Support

[dpicella]

Having troubl;e getting Dovecot and Postfix with MySQL support to work on CentOS 5.5

I followed the instructions at:
http://www.howtoforge.com/perfect-se...ispconfig-3-p4

Situation:
I can send and recieve mail just fine from the shell using mutt

I can't receive mail in any of my hosted domains in the Maildir folders. I get an error message like so:

Code:

Aug 17 09:42:57 jpre postfix/smtpd[20812]: warning: cannot get certificate from file /etc/postfix/smtpd.cert
Aug 17 09:42:57 jpre postfix/smtpd[20812]: warning: TLS library problem: 20812:error:02001002:system library:fopen:No such file or directory:bss_file.c:352:fopen('/etc/postfix/smtpd.cert','r'):
Aug 17 09:42:57 jpre postfix/smtpd[20812]: warning: TLS library problem: 20812:error:20074002:BIO routines:FILE_CTRL:system lib:bss_file.c:354:
Aug 17 09:42:57 jpre postfix/smtpd[20812]: warning: TLS library problem: 20812:error:140DC002:SSL routines:SSL_CTX_use_certificate_chain_file:system lib:ssl_rsa.c:720:
Aug 17 09:42:57 jpre postfix/smtpd[20812]: cannot load RSA certificate and key data
Aug 17 09:42:57 jpre postfix/smtpd[20812]: connect from mail-ey0-f177.google.com[209.85.215.177]
Aug 17 09:42:58 jpre postfix/smtpd[20812]: 6C7DF2928099: client=mail-ey0-f177.google.com[209.85.215.177]
Aug 17 09:42:58 jpre postfix/cleanup[20824]: 6C7DF2928099: message-id=<AANLkTinQUki+oEKOnkRFnaq4Md6=To646js0-4EUj4zf@mail.gmail.com>
Aug 17 09:42:58 jpre postfix/qmgr[26713]: 6C7DF2928099: from=<dpicella@gmail.com>, size=1901, nrcpt=1 (queue active)
Aug 17 09:42:58 jpre maildrop[20827]: Unable to open mailbox.
Aug 17 09:42:58 jpre postfix/pipe[20826]: 6C7DF2928099: to=<davidp@pcmgdoc.com>, relay=maildrop, delay=0.53, delays=0.51/0.01/0/0.02, dsn=4.3.0, status=deferred (temporary failure. Command output: /usr/bin/maildrop: Unable to open mailbox. )
Aug 17 09:43:28 jpre postfix/smtpd[20812]: disconnect from mail-ey0-f177.google.com[209.85.215.177]

When I try to log in with Squirrelmail I get these errors:

Quote:

Unknown user or password incorrect.

Code:

Aug 17 09:45:01 jpre postfix/smtpd[20812]: connect from localhost.localdomain[127.0.0.1]
Aug 17 09:45:01 jpre postfix/smtpd[20812]: lost connection after CONNECT from localhost.localdomain[127.0.0.1]
Aug 17 09:45:01 jpre postfix/smtpd[20812]: disconnect from localhost.localdomain[127.0.0.1]
Aug 17 09:45:01 jpre dovecot: pop3-login: Disconnected (no auth attempts): rip=127.0.0.1, lip=127.0.0.1, mpid=0, secured
Aug 17 09:45:01 jpre dovecot: imap-login: Disconnected (no auth attempts): rip=127.0.0.1, lip=127.0.0.1, mpid=0, secured
Aug 17 09:46:40 jpre dovecot: imap-login: Aborted login (auth failed, 1 attempts): user=<davidp@pcmgdoc.com>, method=PLAIN, rip=127.0.0.1, lip=127.0.0.1, mpid=0, secured

Here is what I have in /etc/main.cf

Code:

queue_directory = /var/spool/postfix
command_directory = /usr/sbin
daemon_directory = /usr/libexec/postfix
mail_owner = postfix
inet_interfaces = all
mydestination = jpre.net, localhost, localhost.localdomain
unknown_local_recipient_reject_code = 550
alias_maps = hash:/etc/aliases
alias_database = hash:/etc/aliases
debug_peer_level = 2
debugger_command =
	 PATH=/bin:/usr/bin:/usr/local/bin:/usr/X11R6/bin
	 xxgdb $daemon_directory/$process_name $process_id & sleep 5
sendmail_path = /usr/sbin/sendmail.postfix
newaliases_path = /usr/bin/newaliases.postfix
mailq_path = /usr/bin/mailq.postfix
setgid_group = postdrop
html_directory = no
manpage_directory = /usr/share/man
sample_directory = /usr/share/doc/postfix-2.3.3/samples
readme_directory = /usr/share/doc/postfix-2.3.3/README_FILES
myhostname = jpre.net
mynetworks = 127.0.0.0/8 [::1]/128
virtual_alias_domains = 
virtual_alias_maps = proxy:mysql:/etc/postfix/mysql-virtual_forwardings.cf, mysql:/etc/postfix/mysql-virtual_email2email.cf
virtual_mailbox_domains = proxy:mysql:/etc/postfix/mysql-virtual_domains.cf
virtual_mailbox_maps = proxy:mysql:/etc/postfix/mysql-virtual_mailboxes.cf
virtual_mailbox_base = /var/vmail
virtual_uid_maps = static:5000
virtual_gid_maps = static:5000
smtpd_sasl_auth_enable = yes
broken_sasl_auth_clients = yes
smtpd_sasl_authenticated_header = yes
smtpd_recipient_restrictions = permit_mynetworks, permit_sasl_authenticated, check_recipient_access mysql:/etc/postfix/mysql-virtual_recipient.cf, reject_unauth_destination
smtpd_use_tls = yes
smtpd_tls_security_level = may
smtpd_tls_cert_file = /etc/postfix/smtpd.cert
smtpd_tls_key_file = /etc/postfix/smtpd.key
transport_maps = proxy:mysql:/etc/postfix/mysql-virtual_transports.cf
relay_domains = mysql:/etc/postfix/mysql-virtual_relaydomains.cf
relay_recipient_maps = mysql:/etc/postfix/mysql-virtual_relayrecipientmaps.cf
virtual_create_maildirsize = yes
virtual_maildir_extended = yes
virtual_mailbox_limit_maps = proxy:mysql:/etc/postfix/mysql-virtual_mailbox_limit_maps.cf
virtual_mailbox_limit_override = yes
virtual_maildir_limit_message = "The user you are trying to reach is over quota."
virtual_overquota_bounce = yes
proxy_read_maps = $local_recipient_maps $mydestination $virtual_alias_maps $virtual_alias_domains $virtual_mailbox_maps $virtual_mailbox_domains $relay_recipient_maps $relay_domains $canonical_maps $sender_canonical_maps $recipient_canonical_maps $relocated_maps $transport_maps $mynetworks $virtual_mailbox_limit_maps
smtpd_sender_restrictions = check_sender_access mysql:/etc/postfix/mysql-virtual_sender.cf
smtpd_client_restrictions = check_client_access mysql:/etc/postfix/mysql-virtual_client.cf
maildrop_destination_concurrency_limit = 1
maildrop_destination_recipient_limit = 1
virtual_transport = maildrop
header_checks = regexp:/etc/postfix/header_checks
mime_header_checks = regexp:/etc/postfix/mime_header_checks
nested_header_checks = regexp:/etc/postfix/nested_header_checks
body_checks = regexp:/etc/postfix/body_checks

Here is what I have in /etc/master.cf

Code:

smtp      inet  n       -       n       -       -       smtpd
pickup    fifo  n       -       n       60      1       pickup
cleanup   unix  n       -       n       -       0       cleanup
qmgr      fifo  n       -       n       300     1       qmgr
tlsmgr    unix  -       -       n       1000?   1       tlsmgr
rewrite   unix  -       -       n       -       -       trivial-rewrite
bounce    unix  -       -       n       -       0       bounce
defer     unix  -       -       n       -       0       bounce
trace     unix  -       -       n       -       0       bounce
verify    unix  -       -       n       -       1       verify
flush     unix  n       -       n       1000?   0       flush
proxymap  unix  -       -       n       -       -       proxymap
smtp      unix  -       -       n       -       -       smtp
relay     unix  -       -       n       -       -       smtp
	-o fallback_relay=
showq     unix  n       -       n       -       -       showq
error     unix  -       -       n       -       -       error
discard   unix  -       -       n       -       -       discard
local     unix  -       n       n       -       -       local
virtual   unix  -       n       n       -       -       virtual
lmtp      unix  -       -       n       -       -       lmtp
anvil     unix  -       -       n       -       1       anvil
scache	  unix	-	-	n	-	1	scache
maildrop  unix  -       n       n       -       -       pipe
  flags=DRhu user=vmail argv=/usr/bin/maildrop -d vmail ${extension} ${recipient} ${user} ${nexthop} ${sender}
old-cyrus unix  -       n       n       -       -       pipe
  flags=R user=cyrus argv=/usr/lib/cyrus-imapd/deliver -e -m ${extension} ${user}
cyrus     unix  -       n       n       -       -       pipe
  user=cyrus argv=/usr/lib/cyrus-imapd/deliver -e -r ${sender} -m ${extension} ${user}
uucp      unix  -       n       n       -       -       pipe
  flags=Fqhu user=uucp argv=uux -r -n -z -a$sender - $nexthop!rmail ($recipient)
ifmail    unix  -       n       n       -       -       pipe
  flags=F user=ftn argv=/usr/lib/ifmail/ifmail -r $nexthop ($recipient)
bsmtp     unix  -       n       n       -       -       pipe
  flags=Fq. user=foo argv=/usr/local/sbin/bsmtp -f $sender $nexthop $recipient
dovecot   unix  -       n       n       -       -       pipe
  flags=DRhu user=vmail:vmail argv=/usr/libexec/dovecot/deliver -f ${sender} -d ${user}@${nexthop}
amavis unix - - - - 2 smtp
        -o smtp_data_done_timeout=1200
        -o smtp_send_xforward_command=yes
127.0.0.1:10025 inet n - - - - smtpd
        -o content_filter=
        -o local_recipient_maps=
        -o relay_recipient_maps=
        -o smtpd_restriction_classes=
        -o smtpd_client_restrictions=
        -o smtpd_helo_restrictions=
        -o smtpd_sender_restrictions=
        -o smtpd_recipient_restrictions=permit_mynetworks,reject
        -o mynetworks=127.0.0.0/8
        -o strict_rfc821_envelopes=yes
        -o receive_override_options=no_unknown_recipient_checks,no_header_body_checks
        -o smtpd_bind_address=127.0.0.1

Not sure if it matters but just in case. My nameservers point to my hostname where I am running bind. Everything is resolving OK. Just in case. Here is the out put of dig for the email domain I am setting up in ISP Config 3:

# dig -mx pcmgdoc.com

Code:

; <<>> DiG 9.3.6-P1-RedHat-9.3.6-4.P1.el5_4.2 <<>> mx pcmgdoc.com
;; global options:  printcmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 12407
;; flags: qr rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 0

;; QUESTION SECTION:
;pcmgdoc.com.			IN	MX

;; ANSWER SECTION:
pcmgdoc.com.		86400	IN	MX	10 mail.pcmgdoc.com.

;; Query time: 67 msec
;; SERVER: 208.67.220.220#53(208.67.220.220)
;; WHEN: Tue Aug 17 10:02:22 2010
;; MSG SIZE  rcvd: 50

Thanks in advance!

[falko]

Quote:

Aug 17 09:42:58 jpre maildrop[20827]: Unable to open mailbox.
Aug 17 09:42:58 jpre postfix/pipe[20826]: 6C7DF2928099: to=<davidp@pcmgdoc.com>, relay=maildrop, delay=0.53, delays=0.51/0.01/0/0.02, dsn=4.3.0, status=deferred (temporary failure. Command output: /usr/bin/maildrop: Unable to open mailbox. )

Does this happen for all email accounts? Maybe something is wrong with the Maildir permissions?

[dpicella]

Yes ... it does happen on all other accounts. The exact same error from squirrelmail. I just created a new mailbox for user: test and it is the same.

Here is the folder permission:

Code:

# pwd
/var/vmail/pcmgdoc.com

# ls -la
total 20
drwx------ 5 vmail vmail 4096 Aug 18 07:38 .
drwx------ 6 vmail vmail 4096 Aug 16 22:02 ..
drwx------ 5 vmail vmail 4096 Aug 16 23:13 david
drwx------ 3 vmail vmail 4096 Aug 18 00:53 davidp
drwx------ 6 vmail vmail 4096 Aug 18 07:39 test

# ls -la test
total 28
drwx------ 6 vmail vmail 4096 Aug 18 07:39 .
drwx------ 5 vmail vmail 4096 Aug 18 07:38 ..
drwx------ 2 vmail vmail 4096 Aug 18 07:38 cur
-rw-rw---- 1 vmail vmail    4 Aug 18 07:38 ispconfig_mailsize
drwx------ 9 vmail vmail 4096 Aug 18 07:39 Maildir
drwx------ 2 vmail vmail 4096 Aug 18 07:38 new
drwx------ 2 vmail vmail 4096 Aug 18 07:38 tmp

[falko]

Please take a look here:
http://www.howtoforge.com/forums/showthread.php?t=37773
http://www.howtoforge.com/forums/showthread.php?t=42935

[dpicella]

Went through these links.

1. Checked and set all folder permissions and they are all correct.
2. All /var/vmail directors are there as expected with the proper missions and ownerships.
3. Removed and reinstalled maildrop.
4. Changed /etc/postfix/master.cf maildrop stanza as follows:

Code:

maildrop  unix  -       n       n       -       -       pipe
  flags=R user=vmail argv=/usr/bin/maildrop -d ${recipient} ${extension} ${recipient} ${user} ${nexthop} ${sender}

... as in the examples. I don't believe this is an issues to downgrade maildrop.

Sorry ... but I am confused about how this all works. Remember, I am using Dovecot and not courier-imap

in master.cf ... I also have:

Code:

dovecot   unix  -       n       n       -       -       pipe
  flags=DRhu user=vmail:vmail argv=/usr/libexec/dovecot/deliver -f ${sender} -d ${user}@${nexthop}

Same problem exists. Thanks for your post.

[falko]

AFAIK, maildrop is only needed if you use Courier. Till might be able to confirm this when he's back from holidays.

[dpicella]

Quote:

Originally Posted by falko

AFAIK, maildrop is only needed if you use Courier. Till might be able to confirm this when he's back from holidays.

Right... but I don't think it will make any difference if I remove it. Maybe it would. Where does the mail system define the delivery agent? I believe the problem is with Dovecot delivery perhaps not being used because I screwed up the config somewhere. Something like that.

I hate writing posts that sound stupid to other people who know a lot more about this. You can't know it all. Thanks for any help here - still stumped.