[SOLVED] Fetchmail problem in PMG 6.1-5

A

Andres.Urzagasti

Renowned Member
Oct 22, 2015
43
3
73
Reconquista (SF, Argentina)
www.litoralnorte.com.ar
Hi!
I have sucessfully upgraded PMG from 5.1-4 to 6.1-5
The configuration is: Download mail from an external ISP that uses POP3 without SSL. Previous PMG was configured and works ok with this scenario, and Fetchmail.

In the migration, all of the fetchmail accounts was updated to "Use SSL", passing to 995 port, so I have to edit manually one by one, and unchecking box for activate 110-Port.
Actually cannot download none mail from the ISP server. In the syslog I cannot see anymore fetchmail reports.

Some ideas?
Thanks!
 
reconquista said:
In the migration, all of the fetchmail accounts was updated to "Use SSL",
Click to expand...
This is nothing that happens by default during an upgrade.
did you check the upgrade instructions in the wiki:
https://pmg.proxmox.com/wiki/index.php/Upgrade_from_5.x_to_6.0


* could you post your 'fetchmailrc.tt' template (check for both files '/etc/pmg/templates/fetchmailrc.tt' and '/var/lib/pmg/templates/fetchmailrc.tt'
* what's the output of `systemctl status fetchmail` ?
* anything relevant in the output of `journalctl -b` and/or `journalctl -u fetchmail`

Thanks!
 
Hello and thanks for your reply
Yes, the upgrade was donde with the instructions on wiki. I just start to install PMG 6.1 from zero, in other vm.

-----
cat: /etc/pmg/templates/fetchmailrc.tt: No such file or directory
root@proxmoxMG:~# cat /var/lib/pmg/templates/fetchmailrc.tt
# auto-generated using template fetchmailrc.tt

set daemon 300
set no bouncemail

defaults:
antispam -1
batchlimit 100

smtphost [% ipconfig.int_ip %]/[% pmg.mail.ext_port %]
# proxmox settings (Do not delete this marker!!)
[% FOREACH item IN fetchmail_users.list('values') %]
[% IF item.enable %]poll[% ELSE %]skip[% END -%]
[% item.id %] via "[% item.server %]"
protocol [% item.protocol %] port [% item.port %]
[% IF item.interval %] interval [% item.interval %]
[% END -%]
user "[% item.user %]" pass "[% item.pass %]"
to "[% item.target %]"
[% IF item.options %] [% item.options %]
[% END -%]
[% END %]
-----

Systemctl status fetchmail only. (lines can be truncated by column)
● fetchmail.service - LSB: init-Script for system wide fetchmail daemon
Loaded: loaded (/etc/init.d/fetchmail; generated; vendor preset: enabled)
Active: active (running) since Mon 2020-02-24 02:33:25 -03; 6h ago
Docs: man:systemd-sysv-generator(8)
Process: 850 ExecStart=/etc/init.d/fetchmail start (code=exited, status=0/SUCCESS)
Tasks: 1 (limit: 4915)
CGroup: /system.slice/fetchmail.service
└─872 /usr/bin/fetchmail -f /etc/fetchmailrc --pidfile /var/run/fetchmail/fetchmail.pid --syslog

Feb 24 09:27:32 proxmoxMG fetchmail[872]: Server certificate verification error: self signed certificate
Feb 24 09:27:32 proxmoxMG fetchmail[872]: Missing trust anchor certificate: /C=AR/ST=Buenos Aires/L=Capital Federal/O=IPV4/OU=pop3/CN=pop.ipv4n
Feb 24 09:27:32 proxmoxMG fetchmail[872]: This could mean that the root CA's signing certificate is not in the trusted CA certificate location,
Feb 24 09:27:32 proxmoxMG fetchmail[872]: Server certificate verification error: certificate has expired
Feb 24 09:27:32 proxmoxMG fetchmail[872]: Warning: the connection is insecure, continuing anyways. (Better use --sslcertck!)
Feb 24 09:27:32 proxmoxMG fetchmail[872]: Server certificate verification error: self signed certificate
Feb 24 09:27:32 proxmoxMG fetchmail[872]: Missing trust anchor certificate: /C=AR/ST=Buenos Aires/L=Capital Federal/O=IPV4/OU=pop3/CN=pop.ipv4n
Feb 24 09:27:32 proxmoxMG fetchmail[872]: This could mean that the root CA's signing certificate is not in the trusted CA certificate location,
Feb 24 09:27:32 proxmoxMG fetchmail[872]: Server certificate verification error: certificate has expired
Feb 24 09:27:32 proxmoxMG fetchmail[872]: Warning the connection is insecure, continuing anyways. (Better use --sslcertck!)

---

There is nothing relevant in journal output, only more fetchmail warnings.
Appears to be that the mail now is downloading. How I can set to "not use" SSL? The logs are bumped of server certificate errors.


Thanks!
 
could you please post an anonymized source of your '/etc/fetchmailrc'
Thanks!
 
Stoiko Ivanov said:
anonymized source of your '/etc/fetchmailrc'
Click to expand...
poll proxmox0016 via "servidorpop.com"
protocol pop3 port 995
interval 1
user "*********" pass "******"
to "********"
dropdelivered ssl

In the fetchmailrc, accounts are showed in SSL.
I guess that the last word "ssl" is the origin of the problems.
I have downloaded the fetchmailrc by SFTP, mass-erased the SSL and changed port 995 to 110, and uploaded the fetchmailrc to server again.
Works now without errors. Will monitoring in the next day.

Thanks.
 
You must log in or register to reply here.

About

The Proxmox community has been around for many years and offers help and support for Proxmox VE, Proxmox Backup Server, and Proxmox Mail Gateway.
We think our community is one of the best thanks to people like you!

Quick Navigation

Home Get Subscription Wiki Downloads Proxmox Customer Portal About

Get your subscription!

The Proxmox team works very hard to make sure you are running the best software and getting stable updates and security enhancements, as well as quick enterprise support. Tens of thousands of happy customers have a Proxmox subscription. Get yours easily in our online shop.

Buy now!
Community platform by XenForo® © 2010-2024 XenForo Ltd.
Top Bottom