<html>
<head>
<meta http-equiv="Content-Type" content="text/html; charset=UTF-8">
</head>
<body text="#000000" bgcolor="#FFFFFF">
<p>Das Problem scheint gelöst zu sein.<br>
Erst K9 deinstallieren und neu installieren brachte Ruhe ins Log,
wahrscheinlich wurde ein Zertifikat nicht sauber erneuert.<br>
Habe nichts gefunden, wo man (wie im Thunderbird) bei dem K9 Mail
die Zertifikate verwalten, ggf. alte löschen kann.<br>
Informativ: Bei dem Handy hat es sich um ein Galaxy S9+ mit
Android Oreo gehandelt.</p>
<p>lg Frank<br>
</p>
<div class="moz-cite-prefix">Am 10.05.2019 um 08:09 schrieb Frank
Kirschner:<br>
</div>
<blockquote type="cite"
cite="mid:5a274c12-98de-ddf8-e7e8-27f48d52695f@celebrate.de">
<meta http-equiv="content-type" content="text/html; charset=UTF-8">
<p>Hallo zusammen,</p>
<p>ich habe einen Mailserver mit Postfix und Dovecot aufgesetzt,
läuft soweit gut, nur mit einem Client gibt es Probleme.<br>
Es handelt sich um ein Android Handy mit K-9 Mail. Zyklisch
auftretend aus dem dovecot Logfile:</p>
<pre>May 10 06:41:56 imap-login: Info: Aborted login (no auth attempts in 0 secs): user=<>, rip=192.168.130.171, lip=192.168.130.191, session=<ypG/L4GICLzAqIKr>
May 10 06:42:56 imap-login: Info: Aborted login (no auth attempts in 0 secs): user=<>, rip=192.168.130.171, lip=192.168.130.191, session=<BVVQM4GIoMLAqIKr>
May 10 06:43:56 imap-login: Info: Aborted login (no auth attempts in 0 secs): user=<>, rip=192.168.130.171, lip=192.168.130.191, session=<HxPlNoGISMnAqIKr>
May 10 06:44:56 imap-login: Info: Aborted login (no auth attempts in 0 secs): user=<>, rip=192.168.130.171, lip=192.168.130.191, session=<+4l3OoGIxM/AqIKr>
May 10 06:45:10 imap-login: Info: Disconnected (no auth attempts in 3 secs): user=<>, rip=196.52.43.131, lip=192.168.130.191, TLS handshaking: Disconnected, session=<ZhxMO4GIOuzENCuD>
May 10 06:45:55 imap-login: Info: Aborted login (no auth attempts in 0 secs): user=<>, rip=192.168.130.171, lip=192.168.130.191, session=<xycBPoGIbtbAqIKr>
May 10 06:46:56 imap-login: Info: Aborted login (no auth attempts in 0 secs): user=<>, rip=192.168.130.171, lip=192.168.130.191, session=<EgafQYGIGN3AqIKr>
May 10 06:47:41 imap-login: Info: Login: user=<a class="moz-txt-link-rfc2396E" href="mailto:foo@bar.de" moz-do-not-send="true"><foo@bar.de></a>, method=PLAIN, rip=178.14.68.231, lip=192.168.130.191, mpid=24201, TLS, session=<O1tNRIGINMCyDkTn>
May 10 06:47:41 imap-login: Info: Login: user=<a class="moz-txt-link-rfc2396E" href="mailto:foo@bar.de" moz-do-not-send="true"><foo@bar.de></a>, method=PLAIN, rip=178.14.68.231, lip=192.168.130.191, mpid=24202, TLS, session=<4qNNRIGINsCyDkTn>
May 10 06:47:56 imap-login: Info: Aborted login (no auth attempts in 0 secs): user=<>, rip=192.168.130.171, lip=192.168.130.191, session=<BOAsRYGI1uPAqIKr>
May 10 06:48:23 imap-login: Info: Disconnected (no auth attempts in 0 secs): user=<>, rip=178.14.68.231, lip=192.168.130.191, TLS handshaking: SSL_accept() failed: error:14094416:SSL routines:ssl3_read_bytes:sslv3 alert certificate unknown: SSL alert number 46, session=<j5rSRoGIoOiyDkTn>
May 10 06:48:24 imap-login: Info: Disconnected (no auth attempts in 0 secs): user=<>, rip=178.14.68.231, lip=192.168.130.191, TLS handshaking: SSL_accept() failed: error:14094416:SSL routines:ssl3_read_bytes:sslv3 alert certificate unknown: SSL alert number 46, session=<DrrXRoGIouiyDkTn>
May 10 06:48:24 imap-login: Info: Disconnected (no auth attempts in 0 secs): user=<>, rip=178.14.68.231, lip=192.168.130.191, TLS handshaking: SSL_accept() failed: error:14094416:SSL routines:ssl3_read_bytes:sslv3 alert certificate unknown: SSL alert number 46, session=<fFPdRoGIpOiyDkTn>
May 10 06:48:24 imap-login: Info: Disconnected (no auth attempts in 0 secs): user=<>, rip=178.14.68.231, lip=192.168.130.191, TLS handshaking: SSL_accept() failed: error:14094416:SSL routines:ssl3_read_bytes:sslv3 alert certificate unknown: SSL alert number 46, session=<ffbiRoGIpuiyDkTn>
May 10 06:48:25 imap-login: Info: Disconnected (no auth attempts in 0 secs): user=<>, rip=178.14.68.231, lip=192.168.130.191, TLS handshaking: SSL_accept() failed: error:14094416:SSL routines:ssl3_read_bytes:sslv3 alert certificate unknown: SSL alert number 46, session=<PsPqRoGIqOiyDkTn>
May 10 06:48:25 imap-login: Info: Disconnected (no auth attempts in 0 secs): user=<>, rip=178.14.68.231, lip=192.168.130.191, TLS handshaking: SSL_accept() failed: error:14094416:SSL routines:ssl3_read_bytes:sslv3 alert certificate unknown: SSL alert number 46, session=<d5fvRoGIquiyDkTn>
May 10 06:48:26 imap-login: Info: Disconnected (no auth attempts in 1 secs): user=<>, rip=178.14.68.231, lip=192.168.130.191, TLS handshaking: SSL_accept() failed: error:14094416:SSL routines:ssl3_read_bytes:sslv3 alert certificate unknown: SSL alert number 46, session=<19/1RoGIrOiyDkTn>
May 10 06:48:26 imap-login: Info: Disconnected (no auth attempts in 0 secs): user=<>, rip=178.14.68.231, lip=192.168.130.191, TLS handshaking: SSL_accept() failed: error:14094416:SSL routines:ssl3_read_bytes:sslv3 alert certificate unknown: SSL alert number 46, session=<mtz7RoGIruiyDkTn>
May 10 06:48:27 imap-login: Info: Disconnected (no auth attempts in 1 secs): user=<>, rip=178.14.68.231, lip=192.168.130.191, TLS handshaking: SSL_accept() failed: error:14094416:SSL routines:ssl3_read_bytes:sslv3 alert certificate unknown: SSL alert number 46, session=<G8wDR4GIsOiyDkTn>
May 10 06:48:27 imap-login: Info: Disconnected (no auth attempts in 0 secs): user=<>, rip=178.14.68.231, lip=192.168.130.191, TLS handshaking: SSL_accept() failed: error:14094416:SSL routines:ssl3_read_bytes:sslv3 alert certificate unknown: SSL alert number 46, session=<u2kJR4GIsuiyDkTn>
May 10 06:48:27 imap-login: Info: Disconnected (no auth attempts in 0 secs): user=<>, rip=178.14.68.231, lip=192.168.130.191, TLS handshaking: SSL_accept() failed: error:14094416:SSL routines:ssl3_read_bytes:sslv3 alert certificate unknown: SSL alert number 46, session=<wGAOR4GItOiyDkTn>
May 10 06:48:28 imap-login: Info: Disconnected (no auth attempts in 1 secs): user=<>, rip=178.14.68.231, lip=192.168.130.191, TLS handshaking: SSL_accept() failed: error:14094416:SSL routines:ssl3_read_bytes:sslv3 alert certificate unknown: SSL alert number 46, session=<29gTR4GItuiyDkTn>
May 10 06:48:28 imap-login: Info: Disconnected (no auth attempts in 0 secs): user=<>, rip=178.14.68.231, lip=192.168.130.191, TLS handshaking: SSL_accept() failed: error:14094416:SSL routines:ssl3_read_bytes:sslv3 alert certificate unknown: SSL alert number 46, session=<RPseR4GIuOiyDkTn>
May 10 06:48:51 imap-login: Info: Login: user=<a class="moz-txt-link-rfc2396E" href="mailto:foo@bar.de" moz-do-not-send="true"><foo@bar.de></a>, method=PLAIN, rip=178.14.68.231, lip=192.168.130.191, mpid=24225, TLS, session=<V9x8SIGImMCyDkTn>
May 10 06:48:56 imap-login: Info: Aborted login (no auth attempts in 0 secs): user=<>, rip=192.168.130.171, lip=192.168.130.191, session=<hOjJSIGIfOrAqIKr>
May 10 06:49:56 imap-login: Info: Aborted login (no auth attempts in 0 secs): user=<>, rip=192.168.130.171, lip=192.168.130.191, session=<+bJQTIGIyoLAqIKr>
</pre>
<p>Zertifikate werden von Let's Encrypt verwendet, andere clients
(Thunderbird, Outlook und K-9 Mail auf anderen Handys)
funktionieren einwandfrei, nur bei diesem Nutzer taucht das
Problem auf und füllt das Logfile.</p>
<p># doveconf -n<br>
# 2.2.36 (1f10bfa63): /etc/dovecot/dovecot.conf<br>
# Pigeonhole version 0.4.24 (124e06aa)<br>
# OS: Linux 4.15.18-12-pve x86_64 CentOS Linux release 7.6.1810
(Core)<br>
# Hostname: xxxxx.xxx.de<br>
disable_plaintext_auth = no<br>
first_valid_uid = 1000<br>
lda_mailbox_autocreate = yes<br>
lda_mailbox_autosubscribe = yes<br>
log_path = /var/log/dovecot.log<br>
login_greeting = IMAP Cluster ready.<br>
mail_fsync = always<br>
mail_gid = 1000<br>
mail_home = /srv/mail/mail_storage/%d/%n<br>
mail_location = maildir:~<br>
mail_privileged_group = vpostfix<br>
mail_uid = 1000<br>
managesieve_notify_capability = mailto<br>
managesieve_sieve_capability = fileinto reject envelope
encoded-character vacation subaddress
comparator-i;ascii-numeric
relational regex imap4flags copy include variables body enotify
environment mailbox date index ihave duplicate mime
for
everypart extracttext vacation-seconds<br>
mbox_write_locks = fcntl<br>
mmap_disable = yes<br>
namespace inbox {<br>
inbox = yes<br>
location =<br>
mailbox Drafts {<br>
special_use = \Drafts<br>
}<br>
mailbox Sent {<br>
special_use = \Sent<br>
}<br>
mailbox "Sent Messages" {<br>
special_use = \Sent<br>
}<br>
mailbox Spam {<br>
auto = subscribe<br>
special_use = \Junk<br>
}<br>
mailbox Trash {<br>
special_use = \Trash<br>
}<br>
prefix =<br>
}<br>
passdb {<br>
args = scheme=CRYPT username_format=%u /etc/dovecot/users<br>
driver = passwd-file<br>
}<br>
plugin {<br>
sieve = <a class="moz-txt-link-freetext"
href="file:~/sieve;active=~/.dovecot.sieve"
moz-do-not-send="true">file:~/sieve;active=~/.dovecot.sieve</a><br>
sieve_before = /etc/dovecot/spam-global.sieve<br>
sieve_extensions = +vacation-seconds<br>
sieve_vacation_default_period = 1d<br>
sieve_vacation_max_period = 30d<br>
sieve_vacation_min_period = 0<br>
}<br>
postmaster_address = <a class="moz-txt-link-abbreviated"
href="mailto:xxx@xxxxxx.de" moz-do-not-send="true">xxx@xxxxxx.de</a><br>
protocols = imap pop3 lmtp sieve<br>
service auth {<br>
unix_listener /var/spool/postfix/private/auth {<br>
group = vpostfix<br>
mode = 0666<br>
user = vpostfix<br>
}<br>
unix_listener auth-userdb {<br>
group = vpostfix<br>
mode = 0600<br>
user = vpostfix<br>
}<br>
}<br>
service imap-login {<br>
process_min_avail = 1<br>
service_count = 1<br>
}<br>
service managesieve-login {<br>
inet_listener sieve {<br>
port = 4190<br>
}<br>
}<br>
ssl_cert = </etc/letsencrypt/live/xxxxxx.de/fullchain.pem<br>
ssl_key = # hidden, use -P to show it<br>
ssl_protocols = !SSLv2 !SSLv3<br>
userdb {<br>
args = username_format=%u /etc/dovecot/users<br>
driver = passwd-file<br>
}<br>
protocol lmtp {<br>
mail_plugins = " sieve"<br>
}<br>
protocol lda {<br>
mail_plugins = " sieve"<br>
}<br>
protocol imap {<br>
mail_max_userip_connections = 10<br>
}<br>
<br>
</p>
<p>-------------------------- ENDE doveconf
--------------------------------</p>
<p>Habe ich etwas falsch konfiguriert?</p>
<p>lg Frank<br>
</p>
</blockquote>
<br>
</body>
</html>