Solved

Sendmail/Cyrus-imapd/lmtp problem

Posted on 2009-04-05
10
1,105 Views
Last Modified: 2013-12-17
I have (had) a working email environment withe Sendmail 8.13.8 and cyrus-imapd 2.3.7. System is CentOS 5.2

Local mail is not being delivered:
Running /var/spool/mqueue/n352XCtg004074 (sequence 1 of 1)
<smurphy@domain.net>... Connecting to /var/imap/socket/lmtp via cyrusv2...
Could not connect to socket /var/imap/socket/lmtp: Connection refused by localhost
<smurphy@domain.net>... Deferred: Connection refused by localhost

from maillog:
Apr  5 14:21:28 europa sendmail[3626]: n352XCtg004074: to=<smurphy@domain.net>, delay=15:48:16, xdelay=00:00:00, mailer=cyrusv2, pri=309                      3798, relay=localhost, dsn=4.4.1, stat=Deferred: Connection refused by localhost

0
Comment
Question by:MoonsOfJupiter
  • 7
  • 3
10 Comments
 

Author Comment

by:MoonsOfJupiter
ID: 24072658
/etc/cyrus.conf
# standard standalone server implementation
 

START {

  # do not delete this entry!

  recover       cmd="ctl_cyrusdb -r"
 

  # this is only necessary if using idled for IMAP IDLE

  idled         cmd="idled"

}
 

# UNIX sockets start with a slash and are put into /var/lib/imap/sockets

SERVICES {

  # add or remove based on preferences

  imap          cmd="imapd" listen="imap" prefork=5

  imaps         cmd="imapd -s" listen="imaps" prefork=1

  pop3          cmd="pop3d" listen="pop3" prefork=3

  pop3s         cmd="pop3d -s" listen="pop3s" prefork=1

  sieve         cmd="timsieved" listen="sieve" prefork=0
 

  # these are only necessary if receiving/exporting usenet via NNTP

#  nntp         cmd="nntpd" listen="nntp" prefork=3

#  nntps                cmd="nntpd -s" listen="nntps" prefork=1
 

  # at least one LMTP is required for delivery

#  lmtp         cmd="lmtpd" listen="lmtp" prefork=0

  lmtpunix      cmd="lmtpd" listen="/var/imap/socket/lmtp" prefork=1
 

  # this is only necessary if using notifications

#  notify       cmd="notifyd" listen="/var/lib/imap/socket/notify" proto="udp" prefork=1

}
 

EVENTS {

  # this is required

  checkpoint    cmd="ctl_cyrusdb -c" period=30
 

  # this is only necessary if using duplicate delivery suppression,

  # Sieve or NNTP

  delprune      cmd="cyr_expire -E 3" at=0400
 

  # this is only necessary if caching TLS sessions

  tlsprune      cmd="tls_prune" at=0400

}

Open in new window

0
 

Author Comment

by:MoonsOfJupiter
ID: 24072665
/etc/mail/sendmail.mc
divert(-1)dnl

dnl #

dnl # This is the sendmail macro config file for m4. If you make changes to

dnl # /etc/mail/sendmail.mc, you will need to regenerate the

dnl # /etc/mail/sendmail.cf file by confirming that the sendmail-cf package is

dnl # installed and then performing a

dnl #

dnl #     make -C /etc/mail

dnl #

include(`/usr/share/sendmail-cf/m4/cf.m4')dnl

VERSIONID(`setup for linux')dnl

OSTYPE(`linux')dnl

dnl #

dnl # Do not advertize sendmail version.

dnl #

dnl define(`confSMTP_LOGIN_MSG', `$j Sendmail; $b')dnl

dnl #

dnl # default logging level is 9, you might want to set it higher to

dnl # debug the configuration

dnl #

dnl define(`confLOG_LEVEL', `9')dnl

dnl #

dnl # Uncomment and edit the following line if your outgoing mail needs to

dnl # be sent out through an external mail server:

dnl #

dnl define(`SMART_HOST', `smtp.your.provider')dnl

dnl #

define(`confDEF_USER_ID', ``8:12'')dnl

define(`confTRUSTED_USER', `cyrus')dnl

define(`confLOCAL_MAILER', `cyrusv2')dnl

dnl define(`confAUTO_REBUILD')dnl

define(`confTO_CONNECT', `1m')dnl

define(`confTRY_NULL_MX_LIST', `True')dnl

define(`confDONT_PROBE_INTERFACES', `True')dnl

define(`PROCMAIL_MAILER_PATH', `/usr/bin/procmail')dnl

define(`ALIAS_FILE', `/etc/aliases')dnl

define(`STATUS_FILE', `/var/log/mail/statistics')dnl

define(`UUCP_MAILER_MAX', `2000000')dnl

define(`confUSERDB_SPEC', `/etc/mail/userdb.db')dnl

define(`confPRIVACY_FLAGS', `authwarnings,novrfy,noexpn,restrictqrun')dnl

define(`confAUTH_OPTIONS', `A')dnl

dnl #

dnl # The following allows relaying if the user authenticates, and disallows

dnl # plaintext authentication (PLAIN/LOGIN) on non-TLS links

dnl #

dnl define(`confAUTH_OPTIONS', `A p')dnl

dnl #

dnl # PLAIN is the preferred plaintext authentication method and used by

dnl # Mozilla Mail and Evolution, though Outlook Express and other MUAs do

dnl # use LOGIN. Other mechanisms should be used if the connection is not

dnl # guaranteed secure.

dnl # Please remember that saslauthd needs to be running for AUTH.

dnl #

dnl TRUST_AUTH_MECH(`EXTERNAL DIGEST-MD5 CRAM-MD5 LOGIN PLAIN')dnl

dnl define(`confAUTH_MECHANISMS', `EXTERNAL GSSAPI DIGEST-MD5 CRAM-MD5 LOGIN PLAIN')dnl

dnl #

dnl # Rudimentary information on creating certificates for sendmail TLS:

dnl #     cd /usr/share/ssl/certs; make sendmail.pem

dnl # Complete usage:

dnl #     make -C /usr/share/ssl/certs usage

dnl #

dnl define(`confCACERT_PATH', `/etc/pki/tls/certs')dnl

dnl define(`confCACERT', `/etc/pki/tls/certs/ca-bundle.crt')dnl

dnl define(`confSERVER_CERT', `/etc/pki/tls/certs/sendmail.pem')dnl

dnl define(`confSERVER_KEY', `/etc/pki/tls/certs/sendmail.pem')dnl

dnl #

dnl # This allows sendmail to use a keyfile that is shared with OpenLDAP's

dnl # slapd, which requires the file to be readble by group ldap

dnl #

dnl define(`confDONT_BLAME_SENDMAIL', `groupreadablekeyfile')dnl

dnl #

dnl define(`confTO_QUEUEWARN', `4h')dnl

dnl define(`confTO_QUEUERETURN', `5d')dnl

dnl define(`confQUEUE_LA', `12')dnl

dnl define(`confREFUSE_LA', `18')dnl

define(`confTO_IDENT', `0')dnl

dnl FEATURE(delay_checks)dnl

FEATURE(`no_default_msa', `dnl')dnl

FEATURE(`smrsh', `/usr/sbin/smrsh')dnl

FEATURE(`mailertable', `hash -o /etc/mail/mailertable.db')dnl

FEATURE(`virtusertable', `hash -o /etc/mail/virtusertable.db')dnl

FEATURE(redirect)dnl

FEATURE(always_add_domain)dnl

FEATURE(use_cw_file)dnl

FEATURE(use_ct_file)dnl

dnl #

dnl # The following limits the number of processes sendmail can fork to accept

dnl # incoming messages or process its message queues to 20.) sendmail refuses

dnl # to accept connections once it has reached its quota of child processes.

dnl #

dnl define(`confMAX_DAEMON_CHILDREN', `20')dnl

dnl #

dnl # Limits the number of new connections per second. This caps the overhead

dnl # incurred due to forking new sendmail processes. May be useful against

dnl # DoS attacks or barrages of spam. (As mentioned below, a per-IP address

dnl # limit would be useful but is not available as an option at this writing.)

dnl #

dnl define(`confCONNECTION_RATE_THROTTLE', `3')dnl

dnl #

dnl # The -t option will retry delivery if e.g. the user runs over his quota.

dnl #

dnl FEATURE(local_procmail, `', `procmail -t -Y -a $h -d $u')dnl

FEATURE(`access_db', `hash -T<TMPF> -o /etc/mail/access.db')dnl

FEATURE(`blacklist_recipients')dnl

EXPOSED_USER(`root')dnl

dnl #

dnl # For using Cyrus-IMAPd as POP3/IMAP server through LMTP delivery uncomment

dnl # the following 2 definitions and activate below in the MAILER section the

dnl # cyrusv2 mailer.

dnl #

dnl define(`confLOCAL_MAILER', `cyrusv2')dnl

dnl undefine(`CYRUSV2_MAILER_ARGS')

dnl FEATURE(`local_lmtp')dnl

dnl FEATURE(`preserve_local_plus_detail')dnl

dnl #

dnl # The following causes sendmail to only listen on the IPv4 loopback address

dnl # 127.0.0.1 and not on any other network devices. Remove the loopback

dnl # address restriction to accept email from the internet or intranet.

dnl #

dnl DAEMON_OPTIONS(`Port=smtp,Addr=127.0.0.1, Name=MTA')dnl

dnl #

dnl # The following causes sendmail to additionally listen to port 587 for

dnl # mail from MUAs that authenticate. Roaming users who can't reach their

dnl # preferred sendmail daemon due to port 25 being blocked or redirected find

dnl # this useful.

dnl #

dnl DAEMON_OPTIONS(`Port=submission, Name=MSA, M=Ea')dnl

dnl #

dnl # The following causes sendmail to additionally listen to port 465, but

dnl # starting immediately in TLS mode upon connecting. Port 25 or 587 followed

dnl # by STARTTLS is preferred, but roaming clients using Outlook Express can't

dnl # do STARTTLS on ports other than 25. Mozilla Mail can ONLY use STARTTLS

dnl # and doesn't support the deprecated smtps; Evolution <1.1.1 uses smtps

dnl # when SSL is enabled-- STARTTLS support is available in version 1.1.1.

dnl #

dnl # For this to work your OpenSSL certificates must be configured.

dnl #

dnl DAEMON_OPTIONS(`Port=smtps, Name=TLSMTA, M=s')dnl

dnl #

dnl # The following causes sendmail to additionally listen on the IPv6 loopback

dnl # device. Remove the loopback address restriction listen to the network.

dnl #

dnl DAEMON_OPTIONS(`port=smtp,Addr=::1, Name=MTA-v6, Family=inet6')dnl

dnl #

dnl # enable both ipv6 and ipv4 in sendmail:

dnl #

dnl DAEMON_OPTIONS(`Name=MTA-v4, Family=inet, Name=MTA-v6, Family=inet6')

dnl #

dnl # We strongly recommend not accepting unresolvable domains if you want to

dnl # protect yourself from spam. However, the laptop and users on computers

dnl # that do not have 24x7 DNS do need this.

dnl #

FEATURE(`accept_unresolvable_domains')dnl

dnl #

dnl FEATURE(`relay_based_on_MX')dnl

dnl #

dnl # Also accept email sent to "localhost.localdomain" as local email.

dnl #

LOCAL_DOMAIN(`localhost.localdomain')dnl

dnl #

dnl # The following example makes mail from this host and any additional

dnl # specified domains appear to be sent from mydomain.com

dnl #

dnl MASQUERADE_AS(`mydomain.com')dnl

dnl #

dnl # masquerade not just the headers, but the envelope as well

dnl #

dnl FEATURE(masquerade_envelope)dnl

dnl #

dnl # masquerade not just @mydomainalias.com, but @*.mydomainalias.com as well

dnl #

dnl FEATURE(masquerade_entire_domain)dnl

dnl #

dnl MASQUERADE_DOMAIN(localhost)dnl

dnl MASQUERADE_DOMAIN(localhost.localdomain)dnl

dnl MASQUERADE_DOMAIN(mydomainalias.com)dnl

dnl MASQUERADE_DOMAIN(mydomain.lan)dnl

MAILER(smtp)dnl

dnl MAILER(procmail)dnl

MAILER(cyrusv2)dnl

MAILER(local)dnl

dnl FEATURE(`local_lmtp')dnl

dnl FEATURE(`preserve_local_plus_detail')dnl

dnl define(`CYRUSV2_MAILER_FLAGS', `uA@/:|m')dnl

Open in new window

0
 

Author Comment

by:MoonsOfJupiter
ID: 24072668
/etc/imap.conf
configdirectory: /var/lib/imap

partition-default: /var/spool/imap

admins: cyrus

sievedir: /var/lib/imap/sieve

sendmail: /usr/sbin/sendmail

hashimapspool: true

sasl_pwcheck_method: saslauthd

sasl_mech_list: PLAIN

tls_cert_file: /etc/pki/cyrus-imapd/cyrus-imapd.pem

tls_key_file: /etc/pki/cyrus-imapd/cyrus-imapd.pem

tls_ca_file: /etc/pki/tls/certs/ca-bundle.crt

servername: localhost.localdomain

Open in new window

0
 

Author Comment

by:MoonsOfJupiter
ID: 24072669
[root@europa ~]# ls -l /var/imap/socket/
total 4
-rwxr-xr-x 1 cyrus mail 0 Apr  5 13:32 lmtp
0
 
LVL 13

Accepted Solution

by:
WizRd-Linux earned 500 total points
ID: 24073219
Out of curiosity, try the command : "file /var/imap/socket/lmtp"  This should return lmtp: socket, if it doesn't this indicates that the socket setup is broken.  If it doesn't say it is a socket, stop everything, remove the file if it still exists and start everything up again.

Other than that I can't see anything that is blatently obvious.
0
PRTG Network Monitor: Intuitive Network Monitoring

Network Monitoring is essential to ensure that computer systems and network devices are running. Use PRTG to monitor LANs, servers, websites, applications and devices, bandwidth, virtual environments, remote systems, IoT, and many more. PRTG is easy to set up & use.

 

Author Comment

by:MoonsOfJupiter
ID: 24073251
No its not a socket -- i deleted it once and it didn;t come back. The lmtp file that's there now is because I did a created it manually.

If I delete and restart sednmail and cyrus-imapd, it doesn't get created automatically.
0
 

Author Comment

by:MoonsOfJupiter
ID: 24073378
Ok the socket is here:

/var/lib/imap/socket/lmtp

which I guess is the default location. When I set everything up I found several instances of note that this should be changed to /var/imap/socket. I bunch of updates ran last night and maybe something caused the switch back to the defualt location. Once I updated the /etc/cyrus.conf and athe sendmail.mc files to reflect that everything started working again.

???
0
 
LVL 13

Expert Comment

by:WizRd-Linux
ID: 24073429
As you are using Centos, the easiest way to check is rpm -ql postfix (postfix normally owns the lmtp file.

An upgrade may have caused this if the package maintainer has "moved" the location of the file.
0
 
LVL 13

Expert Comment

by:WizRd-Linux
ID: 24073499
Sorry, through habit I typed postfix, it should have been sendmail.

If it doesn't display anything relating to the lmtp file, use rpm -qf /var/imap/socket/lmtp.

If this is from one of the updates then you know this was the cause.
0
 

Author Comment

by:MoonsOfJupiter
ID: 24076725
Nope -- I get nothing with any of those queries.

I'm going to leave the socket where it wants to be: /var/lib/imap/socket/lmtp.
0

Featured Post

Is Your Active Directory as Secure as You Think?

More than 75% of all records are compromised because of the loss or theft of a privileged credential. Experts have been exploring Active Directory infrastructure to identify key threats and establish best practices for keeping data safe. Attend this month’s webinar to learn more.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Shell script to extract rar files in severa directories 7 73
AWS CLI issues with Tags 3 62
Multiple Send Connectors - Exchange (SBS 2008) 10 48
GMAIL ISSUE 4 26
Microsoft has released various new features which are capable of handling various tasks. One of these tasks is ‘Migration from pop3 to Exchange Server’. Pop3 data stores various data along mailboxes like contacts, tasks, etc. So, it becomes the need…
I. Introduction There's an interesting discussion going on now in an Experts Exchange Group — Attachments with no extension (http://www.experts-exchange.com/discussions/210281/Attachments-with-no-extension.html). This reminded me of questions tha…
In this video we show how to create an email address policy in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.:  First we need to log into the Exchange Admin Center. Navigate to the Mail Flow…
In this Micro Video tutorial you will learn the basics about Database Availability Groups and How to configure one using a live Exchange Server Environment. The video tutorial explains the basics of the Exchange server Database Availability grou…

947 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

18 Experts available now in Live!

Get 1:1 Help Now