iRedMail server no SMTP/IMAP connection

Hi all,

I have configured a iRedMail server with SSL certificates on my Ubuntu 18.04 machine, but I can't manage to connect my devices (via Outlook or Spark) via SMTP/IMAP protocols.

I have opened ports 593, 143, 993, 995 and still, devices cannot connect to the server.

**Logs from netstat**

Proto Recv-Q Send-Q Local Address Foreign Address State PID/Program name

tcp 0 0 127.0.0.53:53 0.0.0.0:\* LISTEN 644/systemd-resolve

tcp 0 0 0.0.0.0:22 0.0.0.0:\* LISTEN 907/sshd

tcp 0 0 127.0.0.1:24 0.0.0.0:\* LISTEN 804/dovecot

tcp 0 0 0.0.0.0:25 0.0.0.0:\* LISTEN 2352/master

tcp 0 0 0.0.0.0:443 0.0.0.0:\* LISTEN 969/nginx: master p

tcp 0 0 127.0.0.1:8125 0.0.0.0:\* LISTEN 2373/netdata

tcp 0 0 127.0.0.1:4190 0.0.0.0:\* LISTEN 804/dovecot

tcp 0 0 127.0.0.1:19999 0.0.0.0:\* LISTEN 2373/netdata

tcp 1 0 127.0.0.1:20000 0.0.0.0:\* LISTEN 1291/sogod

tcp 0 0 127.0.0.1:7777 0.0.0.0:\* LISTEN 1318/python2

tcp 0 0 0.0.0.0:993 0.0.0.0:\* LISTEN 804/dovecot

tcp 0 0 0.0.0.0:995 0.0.0.0:\* LISTEN 804/dovecot

tcp 0 0 127.0.0.1:10024 0.0.0.0:\* LISTEN 1871/amavisd-new (m

tcp 0 0 127.0.0.1:10025 0.0.0.0:\* LISTEN 2352/master

tcp 0 0 127.0.0.1:10026 0.0.0.0:\* LISTEN 1871/amavisd-new (m

tcp 0 0 127.0.0.1:3306 0.0.0.0:\* LISTEN 1145/mysqld

tcp 0 0 0.0.0.0:587 0.0.0.0:\* LISTEN 2352/master

tcp 0 0 127.0.0.1:10027 0.0.0.0:\* LISTEN 1871/amavisd-new (m

tcp 0 0 127.0.0.1:11211 0.0.0.0:\* LISTEN 844/memcached

tcp 0 0 127.0.0.1:10028 0.0.0.0:\* LISTEN 2352/master

tcp 0 0 127.0.0.1:9998 0.0.0.0:\* LISTEN 1871/amavisd-new (m

tcp 0 0 0.0.0.0:110 0.0.0.0:\* LISTEN 804/dovecot

tcp 0 0 127.0.0.1:7790 0.0.0.0:\* LISTEN 864/uwsgi

tcp 0 0 127.0.0.1:9999 0.0.0.0:\* LISTEN 836/php-fpm: master

tcp 0 0 0.0.0.0:143 0.0.0.0:\* LISTEN 804/dovecot

tcp 0 0 127.0.0.1:7791 0.0.0.0:\* LISTEN 866/uwsgi

tcp 0 0 0.0.0.0:80 0.0.0.0:\* LISTEN 969/nginx: master p

tcp 0 0 127.0.0.1:24242 0.0.0.0:\* LISTEN 804/dovecot

tcp 0 0 127.0.0.1:12340 0.0.0.0:\* LISTEN 804/dovecot

tcp6 0 0 :::21 :::\* LISTEN 5516/vsftpd

tcp6 0 0 :::22 :::\* LISTEN 907/sshd

tcp6 0 0 :::25 :::\* LISTEN 2352/master

tcp6 0 0 :::443 :::\* LISTEN 969/nginx: master p

tcp6 0 0 :::993 :::\* LISTEN 804/dovecot

tcp6 0 0 :::995 :::\* LISTEN 804/dovecot

tcp6 0 0 :::587 :::\* LISTEN 2352/master

tcp6 0 0 :::110 :::\* LISTEN 804/dovecot

tcp6 0 0 :::143 :::\* LISTEN 804/dovecot

tcp6 0 0 :::80 :::\* LISTEN 969/nginx: master p

**Logs from mail.log**

Feb 20 07:59:29 rod postfix/submission/smtpd\[7282\]: disconnect from unknown\[52.125.140.5\] ehlo=2 starttls=1 auth=1 quit=1 commands=5

Feb 20 07:59:29 rod postfix/submission/smtpd\[7287\]: disconnect from unknown\[52.125.140.5\] ehlo=2 starttls=1 auth=1 quit=1 commands=5

Feb 20 07:59:35 rod postfix/postscreen\[7283\]: PASS NEW \[52.125.140.5\]:57384

Feb 20 07:59:35 rod postfix/postscreen\[7283\]: PASS OLD \[52.125.140.5\]:57378

Feb 20 07:59:35 rod postfix/smtpd\[7297\]: connect from unknown\[52.125.140.5\]

Feb 20 07:59:35 rod postfix/smtpd\[7298\]: connect from unknown\[52.125.140.5\]

Feb 20 07:59:35 rod postfix/smtpd\[7298\]: Anonymous TLS connection established from unknown\[52.125.140.5\]: TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits)

Feb 20 07:59:35 rod postfix/smtpd\[7298\]: disconnect from unknown\[52.125.140.5\] ehlo=2 starttls=1 quit=1 commands=4

Feb 20 07:59:35 rod postfix/smtpd\[7297\]: Anonymous TLS connection established from unknown\[52.125.140.5\]: TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits)

Feb 20 07:59:35 rod postfix/smtpd\[7297\]: disconnect from unknown\[52.125.140.5\] ehlo=2 starttls=1 quit=1 commands=4

Feb 20 07:59:44 rod postfix/postscreen\[7283\]: CONNECT from \[52.125.141.115\]:38656 to \[165.22.193.58\]:25

Feb 20 07:59:44 rod postfix/postscreen\[7283\]: CONNECT from \[52.125.141.115\]:38660 to \[165.22.193.58\]:25

Feb 20 07:59:44 rod postfix/submission/smtpd\[7287\]: connect from unknown\[52.125.141.115\]

Feb 20 07:59:44 rod postfix/submission/smtpd\[7282\]: connect from unknown\[52.125.141.115\]

Feb 20 07:59:45 rod postfix/submissio

n/smtpd\[7282\]: Anonymous TLS connection established from unknown\[52.125.141.115\]: TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits)

Feb 20 07:59:45 rod postfix/submission/smtpd\[7287\]: Anonymous TLS connection established from unknown\[52.125.141.115\]: TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits)

Feb 20 07:59:45 rod postfix/submission/smtpd\[7282\]: disconnect from unknown\[52.125.141.115\] ehlo=2 starttls=1 auth=1 quit=1 commands=5

Feb 20 07:59:45 rod postfix/submission/smtpd\[7287\]: disconnect from unknown\[52.125.141.115\] ehlo=2 starttls=1 auth=1 quit=1 commands=5

Feb 20 07:59:50 rod postfix/postscreen\[7283\]: PASS NEW \[52.125.141.115\]:38656

Feb 20 07:59:50 rod postfix/postscreen\[7283\]: PASS OLD \[52.125.141.115\]:38660

Feb 20 07:59:50 rod postfix/smtpd\[7298\]: connect from unknown\[52.125.141.115\]

Feb 20 07:59:50 rod postfix/smtpd\[7297\]: connect from unknown\[52.125.141.115\]

Feb 20 07:59:50 rod postfix/smtpd\[7297\]: Anonymous TLS connection established from unknown\[52.125.141.115\]: TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits)

Feb 20 07:59:50 rod postfix/smtpd\[7298\]: Anonymous TLS connection established from unknown\[52.125.141.115\]: TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits)

Feb 20 07:59:50 rod postfix/smtpd\[7297\]: disconnect from unknown\[52.125.141.115\] ehlo=2 starttls=1 quit=1 commands=4

Feb 20 07:59:50 rod postfix/smtpd\[7298\]: disconnect from unknown\[52.125.141.115\] ehlo=2 starttls=1 quit=1 commands=4

Feb 20 08:03:10 rod postfix/anvil\[7234\]: statistics: max connection rate 2/60s for (submission:52.125.140.5) at Feb 20 07:59:29

Feb 20 08:03:10 rod postfix/anvil\[7234\]: statistics: max connection count 2 for (submission:52.125.140.5) at Feb 20 07:59:29

Feb 20 08:03:10 rod postfix/anvil\[7234\]: statistics: max cache size 4 at Feb 20 07:59:50

Feb 20 08:06:07 rod postfix/submission/smtpd\[7443\]: connect from unknown\[52.125.140.0\]

Feb 20 08:06:07 rod postfix/submission/smtpd\[7443\]: Anonymous TLS connection established from unknown\[52.125.140.0\]: TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)

Feb 20 08:06:07 rod postfix/submission/smtpd\[7443\]: lost connection after STARTTLS from unknown\[52.125.140.0\]

Feb 20 08:06:07 rod postfix/submission/smtpd\[7443\]: disconnect from unknown\[52.125.140.0\] ehlo=1 starttls=1 commands=2

Feb 20 08:07:13 rod postfix/submission/smtpd\[7443\]: connect from unknown\[52.125.140.0\]

Feb 20 08:07:13 rod postfix/submission/smtpd\[7443\]: Anonymous TLS connection established from unknown\[52.125.140.0\]: TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)

Feb 20 08:07:13 rod postfix/submission/smtpd\[7443\]: lost connection after STARTTLS from unknown\[52.125.140.0\]

Feb 20 08:07:13 rod postfix/submission/smtpd\[7443\]: disconnect from unknown\[52.125.140.0\] ehlo=1 starttls=1 commands=2

Feb 20 08:08:09 rod postfix/postscreen\[7485\]: CONNECT from \[45.143.223.14\]:53448 to \[165.22.193.58\]:25

Feb 20 08:08:09 rod postfix/dnsblog\[7487\]: addr 45.143.223.14 listed by domain zen.spamhaus.org as 127.0.0.3

Feb 20 08:08:09 rod postfix/dnsblog\[7487\]: addr 45.143.223.14 listed by domain zen.spamhaus.org as 127.0.0.11

Feb 20 08:08:09 rod postfix/dnsblog\[7487\]: addr 45.143.223.14 listed by domain zen.spamhaus.org as 127.0.0.4

Feb 20 08:08:15 rod postfix/postscreen\[7485\]: DNSBL rank 3 for \[45.143.223.14\]:53448

Feb 20 08:08:15 rod postfix/postscreen\[7485\]: DISCONNECT \[45.143.223.14\]:53448

Feb 20 08:10:33 rod postfix/anvil\[7447\]: statistics: max connection rate 1/60s for (submission:52.125.140.0) at Feb 20 08:06:07

Feb 20 08:10:33 rod postfix/anvil\[7447\]: statistics: max connection count 1 for (submission:52.125.140.0) at Feb 20 08:06:07

Feb 20 08:10:33 rod postfix/anvil\[7447\]: statistics: max cache size 1 at Feb 20 08:06:07

Feb 20 08:48:04 rod postfix/postscreen\[8591\]: CONNECT from \[218.1.18.154\]:54420 to \[165.22.193.58\]:25

Feb 20 08:48:04 rod postfix/dnsblog\[8592\]: addr 218.1.18.154 listed by domain zen.spamhaus.org as 127

.0.0.2

Feb 20 08:48:04 rod postfix/dnsblog\[8592\]: addr 218.1.18.154 listed by domain zen.spamhaus.org as 127.0.0.4

Feb 20 08:48:10 rod postfix/postscreen\[8591\]: DNSBL rank 3 for \[218.1.18.154\]:54420

Feb 20 08:48:10 rod postfix/postscreen\[8591\]: DISCONNECT \[218.1.18.154\]:54420

https://redd.it/f6qlff
@r_linux

Does Linux have any applications where you can run Windows 10 in virtual mode?

I might be running into some issues with tax sofware not supporting Windows 7 in the coming years. My older Windows 7 system isn't robust enough to run Windows 10 efficiently or effectively.

I was thinking if I can run Windows 10 in a virtual environment within Linux where installation of the virtual box would be virtually effortless?

https://redd.it/f6r31q
@r_linux

systemd-timesyncd is a (NTP client) daemon for synchronizing the system clock across the network.
https://wiki.archlinux.org/index.php/Systemd-timesyncd

https://redd.it/f5ckjt
@r_linux

Underused power features of file manager nnn
https://github.com/jarun/nnn/wiki/Power-features-1

https://redd.it/f6sbb3
@r_linux

Laptop usage tracking software

Hi linux users,

I recently thought that it would be great to start tracking how long I'm using my laptop. To be more mindfull how much time I spent at front of my computer so I created small soft that is tracking it.

[https://github.com/Migacz85/track-laptop-usage](https://github.com/Migacz85/track-laptop-usage)

I also implemented in this distro more handy way to suspend computer, - for example checking if the user is sitting at front of the computer before doing it.

If you are using arch/manajro It would be great to get some feedback with installation or general working of the noscript issues.

If somebody is on different distro than arch/manajro, and is willing to install this noscript - I would appreciate an simplified installation noscript :)

https://redd.it/f6t123
@r_linux

Why does Nvidia hate Linux so much?

It just never changes. Nvidia has always hated GNU/Linux for some reason. Never really understood why?

https://redd.it/f6ts6e
@r_linux

Joining Purism (blog post by Julian Sparber) | gnome.org
https://blogs.gnome.org/jsparber/2020/02/19/joining-purism/

https://redd.it/f6u28y
@r_linux

New Issue of Linux++ Just Released!
https://medium.com/linux-plus-plus/linux-february-16-2020-50cb232045ad

https://redd.it/f4zrhe
@r_linux

Gaming on Linux

Hello all!

I have been wanting to make the switch over to Linux full time. I have a Nvidia 1080ti and Ryzen 7 3700x. I mainly just play games, I play WoW, COD, and Minecraft. I will also play some AAA noscripts. I am wondering what is some practices that others have when switching to Linux and gaming. I would like to rice it out and use a window manager. I have only used Ubuntu server in the past for just operations. I don’t really have a lot of experience with desktop front ends. I love the idea of Arch but just lack some knowledge of it. Anyone have some sweet setups that they would like to discuss??

https://redd.it/f6wcho
@r_linux

Windows Subsystem

I am a new user to Linux, my goal is to start using Linux instead of windows for my future usage to the bioinformatics packages on debian, can I switch to linux using the Windows subsystem layer or it's not worth it?

The reason is dual booting is too much resesrching and I am not up for trial and error that may mess up my files as I have already exceeded maximum drive parition slots.

And VMs keep getting stuck at launching 20% which drove me crazy.

https://redd.it/f6w7nu
@r_linux

Command line - Documentation

Am wondering where I could find some authoritative documentation on what all the various command line arguments/flags etc mean. For example, what the "-i" in "sudo -i" or the "-vvv" in "pulseaudio -vvv" mean.

https://redd.it/f6y479
@r_linux

Borgbackup is amazing.

Hey there,
since many time borgbackup is getting a great place inside many env. Many user replaced their solution with borgbackup and not only on desktop but also on server side. Solution like bacula, bareos are removed due the great simplicity of borg. Other solution like noscripted rsync are always large used by thier creator.

The most important features are deduplication, encryption and compression that don't need a particular effort to be configured and used, simply create the repo and run "borg create" command and it works without configuration..simply amazing. Better, you don't need to open strange services ports you should use only ssh connection.

Many said that its security level is low due the fact that it uses push and not pull method, many criticized the "obscure" file format (this scares me on what to do when the client completely died and how to recover data using the key and the password), other avoid it because prefer that the server pull the data contacting the client and not viceversa, other don't like that the client (if hacked) could remove all backups when only the server should do this (and from my POV it is true. For this there are solution like borg append and ssh command on key to restrict path).

If you don't like how it works by default, like each client push data on a (logically separated) repository, you can use it like a central server (a similar pull method) with a net fs mounted like sshfs, nfs, samba if you like it. You lose some performances but it works.

Currently I'm using noscripted rsync but I'm starting to playing with it.

I don't know what are the next steps speaking of developing features (there is a place where to read what will be implemented in future release?) but it seems promising. I hope that some new features will be: a central server solution (more performant then sshfs), a file catalogue (if not already provided), the ability to see how many different version of a specific file is saved in a temporal arc. What do you like to have as feature in next borg version?

What do you think about it?

You switched from another solution for borg and in what environments? What do you like more on borg and what not?

I'm considering it seriously!

https://redd.it/f6ygve
@r_linux

What is Mobile PureOS? – Purism
https://puri.sm/posts/what-is-mobile-pureos/

https://redd.it/f6ywcx
@r_linux

Cockpit 213 — Cockpit Project
https://cockpit-project.org/blog/cockpit-213.html

https://redd.it/f6yn6e
@r_linux

GitHub - milabs/stamina: (Linux Kernel) Stack Monitoring Tool
https://github.com/milabs/stamina

https://redd.it/f6y0iu
@r_linux

What are the differences between Linux distributions?

I've just started an Ubuntu Linux course, I installed a virtual machine and run it there. While i was
investigating a little more i found tons of Linux distributions and I start wondering about what if I chose the wrong distribution, or if I wanna change from one to other?. Do they have stuff in common?. What are they used for?.

I would really appreciate if someone clear out my doubts! Thanks :)

https://redd.it/f72f43
@r_linux

As a Gentoo user I had to check what gcc flags are in Clear Linux. Here they are:

`CFLAGS="-g -O3 -feliminate-unused-debug-types  -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector --param=ssp-buffer-size=32 -Wformat -Wformat-security -m64  -fasynchronous-unwind-tables -Wp,-D_REENTRANT -ftree-loop-distribute-patterns -Wl,-z -Wl,now -Wl,-z -Wl,relro -fno-semantic-interposition -ffat-lto-objects  -fno-trapping-math -Wl,-sort-common -Wl,--enable-new-dtags -mtune=skylake  -Wa,-mbranches-within-32B-boundaries"FFLAGS="-g -O3 -feliminate-unused-debug-types  -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector --param=ssp-buffer-size=32 -m64 -fasynchronous-unwind-tables -Wp,-D_REENTRANT -ftree-loop-distribute-patterns -Wl,-z -Wl,now -Wl,-z -Wl,relro -malign-data=abi -fno-semantic-interposition -ftree-vectorize  -ftree-loop-vectorize -Wl,--enable-new-dtags  -Wa,-mbranches-within-32B-boundaries "CFFLAGS="-g -O3 -feliminate-unused-debug-types  -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector --param=ssp-buffer-size=32 -m64  -fasynchronous-unwind-tables -Wp,-D_REENTRANT -ftree-loop-distribute-patterns -Wl,-z -Wl,now -Wl,-z -Wl,relro -malign-data=abi -fno-semantic-interposition -ftree-vectorize  -ftree-loop-vectorize  -Wl,-sort-common -Wl,--enable-new-dtags "CXXFLAGS="$CFLAGS -fvisibility-inlines-hidden -Wl,--enable-new-dtags "`

​

\-mtune=skylake fascinates me. Why no other distro uses -mtune?

​

Of course it doesn't mean the whole system is compiled with these flags. It might or not but we can't be sure.

I share this as I know many people wonder what makes Clear Linux so fast and this file may give some ideas or to inspire for discussion.

https://redd.it/f72j7a
@r_linux

Snap Apps not opening after running a command

Hello! I am a very new Ubuntu/Linux user! Unfortunately, I was having an issue with discord, attempted to fix it, but ended up just breaking all of my Snap Apps. The command I ran was
sudo chown -R $USER:$USER \~/snap
How would I fix this? Should I just do a fresh install? Thank you!

https://redd.it/f7483w
@r_linux

The future of distributed shell commands.

Greetings, comrades.

I'd like to tap into the huge wealth of knowledge and experience contained within the Linux community, for some guidance. Now, I consider myself to be an experienced Linux user, but I've not had much exposure to large scale infrastructure, or real *sysadmin* tasks; I simply don't know your struggles, or the kind of workflow you have, and I want to learn.

I'm trying to take an old, stale, but still very useful tool called [omnissh](https://github.com/rykugur/omnissh), and design a more robust, concurrency-friendly version, which I've named [massh](https://github.com/DiscoRiver/massh). The idea is to be able to perform distributed shell commands to a vast number of hosts, concurrently, for the purpose of either executing tasks, or detecting inconsistencies in output.

The question I have for you, is, as an administrator of large distributed systems, what kind of feautres or behaviour would be useful for you, and what kind of information & feedback would be valuable when trying to run these kinds of commands?

Any information on what kind of things would be important to you when running something like omnissh, or massh, would be extremely useful to me. I appreciate anything you can offer.

Thanks!

https://redd.it/f6yk2w
@r_linux