Docker-mailserver: migrate v1 to v2

Anyone could help please ?

Postfix configurations
postconf: fatal: -e, -X, or -# accepts no comment input
postconf: fatal: missing attribute name: ""
postconf: fatal: missing attribute name: ""
postconf: fatal: -e, -X, or -# accepts no comment input
postconf: fatal: missing attribute name: ""
postconf: fatal: -e, -X, or -# accepts no comment input
postconf: fatal: -e, -X, or -# accepts no comment input
postconf: fatal: -e, -X, or -# accepts no comment input
postconf: fatal: missing attribute name: ""
postconf: fatal: -e, -X, or -# accepts no comment input
postconf: fatal: missing '=' after attribute name: "reject_unauth_pipelining, reject_invalid_helo_hostname, reject_non_fqdn_helo_hostname, reject_unknown_recipient_domain,"
postconf: fatal: missing '=' after attribute name: "reject_rbl_client zen.spamhaus.org, reject_rbl_client bl.spamcop.net"
postconf: fatal: missing attribute name: ""
postconf: fatal: -e, -X, or -# accepts no comment input
postconf: fatal: missing attribute name: ""
postconf: fatal: missing attribute name: ""
postconf: fatal: -e, -X, or -# accepts no comment input
postconf: fatal: -e, -X, or -# accepts no comment input
postconf: fatal: missing attribute name: ""
postconf: fatal: -e, -X, or -# accepts no comment input
postconf: fatal: missing attribute name: ""
postconf: fatal: -e, -X, or -# accepts no comment input

These errors appear when postconf -e "$line" is executed and can be ignored.

It seems there is an error in the custom certs configuration, it is not recommended to mix the certs and the key in the same file.

I have edited the start-mailserver.sh file to use the $(hostname)-key.pem in place of the key. (See PR #224)

I also added some explanation on how to use self-signed and custom certs.

I will add LDAP in a futur PR.

Regarding password mismatch, the accounts file has now encrypted passwords. Have a look to README and the wiki.

You can also send a gist and we'll try to have a look.

@kopax how are you? What about this issue?
Let me know.

=> https://github.com/tomav/docker-mailserver/pull/224

@kopax, there are lot of things reported here:

• postconf issue
• password mismatch
• self-signed and custom certs changes
• LDAP is another topic.

How can we help?
Did you manage to fix your issues?

I'm interested in this project and started reading some issues. Most issues clearly say what they do or what's the problem.

But, sorry, what task shall this issue do? It's better to create a (mostly) detailed issue for every migration-problem and add to that tickets a tag f.e. 'v1_to_v2' or smth.

Just my two cents....

• postconf issue

The -e, -X, or -# accepts no comment input occur when using postconf command.
Previous postfix configuration file was just copied in /etc/postfix and use has it was.

Solution was to remove comment and just use value that I needed to overwrite.

• password missmatch

I wasn't able to correct that one. It seems that the previous account file containings mail and password wasn't working anymore. As I switch to ldap, this issn't an issue for me anymore

• self-signed and signed certs

I guess @tomav don't use signed-certs, and the signed certs parts wasn't tested by anyone.
I prefer to have two separate file for the key and the certs. I made some minor change to the code to reflect this (https://github.com/tomav/docker-mailserver/pull/251/commits/2d06c0c43049ff4b47f5d81ce5beb741108cfa05#diff-62fede8c21437c1625639aa79b0a97acR153)

• LDAP is another topic.

Ldap became prioritary to me has I didn't find the help on time to solve the password missmatch issue.

I also had to move the dovecot configuration part from the start-mailserver.sh has it was testing the presence of /tmp/docker-mailserver/postfix-accounts.cf file while it should not.

I have implemented everything in the PR so you can see how I solved each issue. It is serve has it is and hope it can help people who face the same issues.

I know it is the wrong way to contribute to the code and I apologize in advance for that.

Ok, I will close this issue because:

• LDAP has its own issue #187
• Changes regarding user management is explained in the Wiki

Regarding self-signed certs, you're right I don't use them, I'm using LetsEncrypt.
Perhaps @emazzotta or @00angus may help.
Otherwise, feel free to PR your fix with tests. I know that we don't cover 100% of this image scope and if you have experienced with this, it will help other users.

And thanks for your work regarding LDAP. Let's see if the other LDAP voters may help.

Hi - by reading the comments it seems that the user has something working now.
Anyway, as for the password mismatch issue - as you @tomav suggest - the problem is quite certainly with the account file: from v1 to v2 that file has important changes in its content => you cannot simply copy/move it.
The main change is with the passwords that cannot be written anymore in clear text.

By simply changing passwords from clear text to encrypted (look at readme for that) authentication should be working with v2 too.

HTH.