• Our team is looking to connect with folks who use email services provided by Plesk, or a premium service. If you'd like to be part of the discovery process and share your experiences, we invite you to complete this short screening survey. If your responses match the persona we are looking for, you'll receive a link to schedule a call at your convenience. We look forward to hearing from you!
  • We are looking for U.S.-based freelancer or agency working with SEO or WordPress for a quick 30-min interviews to gather feedback on XOVI, a successful German SEO tool we’re looking to launch in the U.S.
    If you qualify and participate, you’ll receive a $30 Amazon gift card as a thank-you. Please apply here. Thanks for helping shape a better SEO product for agencies!
  • The BIND DNS server has already been deprecated and removed from Plesk for Windows.
    If a Plesk for Windows server is still using BIND, the upgrade to Plesk Obsidian 18.0.70 will be unavailable until the administrator switches the DNS server to Microsoft DNS. We strongly recommend transitioning to Microsoft DNS within the next 6 weeks, before the Plesk 18.0.70 release.
  • The Horde component is removed from Plesk Installer. We recommend switching to another webmail software supported in Plesk.

Resolved Dovecot warnings

Franco

Franco

Regular Pleskian
Hello,
on Plesk 17.8#8 I have noticed a couple of warnings of the kind (not sure when they started to appear:

master: Dovecot v2.3.0.1 (ffd8a29) starting up for imap, pop3, sieve (core dumps disabled)
doveconf: Warning: NOTE: You can get a new clean config file with: doveconf -n > dovecot-new.conf
doveconf: Warning: Obsolete setting in /etc/dovecot/conf.d/11-plesk-security-ssl.conf:2: ssl_protocols has been replaced by ssl_min_protocol
doveconf: Warning: Obsolete setting in /etc/dovecot/conf.d/11-plesk-security-ssl.conf:4: ssl_dh_parameters_length is no longer needed
dovecot: config: Warning: NOTE: You can get a new clean config file with: doveconf -n > dovecot-new.conf
dovecot: config: Warning: Obsolete setting in /etc/dovecot/conf.d/11-plesk-security-ssl.conf:2: ssl_protocols has been replaced by ssl_min_protocol
dovecot: config: Warning: Obsolete setting in /etc/dovecot/conf.d/11-plesk-security-ssl.conf:4: ssl_dh_parameters_length is no longer needed


The file /etc/dovecot/conf.d/11-plesk-security-ssl.conf contains
ssl_cipher_list=HIGH:!aNULL:!MD5
ssl_protocols = TLSv1 TLSv1.1 TLSv1.2
ssl_dh=</usr/local/psa/etc/dhparams1024.pem
ssl_dh_parameters_length=1024
ssl_min_protocol=TLSv1

I am not actively using email services (disabled on all subscriptions), email is used just for the website contact forms.

What shall I do? Can you please help.
Franco
 
I experienced this too. I think Plesk may need to update their settings files when it finds the new version is installed. Here is what I did:

open /etc/dovecot/conf.d/11-plesk-security-ssl.conf
and change yours to this (commenting out the deprecated setttings):
Code: 
ssl_cipher_list=HIGH:!aNULL:!MD5
#ssl_protocols = TLSv1 TLSv1.1 TLSv1.2
ssl_dh=</usr/local/psa/etc/dhparams1024.pem
#ssl_dh_parameters_length=1024
ssl_min_protocol=TLSv1

Then restart Dovecot and you should notice the errors don't appear again.
 
same issue here.
Thanks for the workaround.
Plesks security module for dovecot definitely needs an update for the new dovecot settings.
 
You must log in or register to reply here.

Similar threads

J
Issue DEBIAN 12 OPENSSL 3.0 DOVECOT does not allow login
Replies
1
Views
1K
Yaroslav_T
Yaroslav_T
S
Resolved Dovecot Broken After Latest Update
Replies
4
Views
2K
scpcomp
S
B
Resolved How do I enable FTPS?
Replies
10
Views
1K
Kaspar
K
K
Issue Dovecot too many SNI ssl certificate config files Max open files
Replies
19
Views
3K
kevinjansen
K
K
Issue Dovecot backup/sync to second server fails - Error: auth-master: userdb lookup
Replies
0
Views
2K
kassi
K
Back
Top