• We value your experience with Plesk during 2024
    Plesk strives to perform even better in 2025. To help us improve further, please answer a few questions about your experience with Plesk Obsidian 2024.
    Please take this short survey:
    https://pt-research.typeform.com/to/AmZvSXkx
  • The Horde webmail has been deprecated. Its complete removal is scheduled for April 2025. For details and recommended actions, see the Feature and Deprecation Plan.
  • We’re working on enhancing the Monitoring feature in Plesk, and we could really use your expertise! If you’re open to sharing your experiences with server and website monitoring or providing feedback, we’d love to have a one-hour online meeting with you.

Resolved Dovecot warnings

Franco

Franco

Regular Pleskian
Hello,
on Plesk 17.8#8 I have noticed a couple of warnings of the kind (not sure when they started to appear:

master: Dovecot v2.3.0.1 (ffd8a29) starting up for imap, pop3, sieve (core dumps disabled)
doveconf: Warning: NOTE: You can get a new clean config file with: doveconf -n > dovecot-new.conf
doveconf: Warning: Obsolete setting in /etc/dovecot/conf.d/11-plesk-security-ssl.conf:2: ssl_protocols has been replaced by ssl_min_protocol
doveconf: Warning: Obsolete setting in /etc/dovecot/conf.d/11-plesk-security-ssl.conf:4: ssl_dh_parameters_length is no longer needed
dovecot: config: Warning: NOTE: You can get a new clean config file with: doveconf -n > dovecot-new.conf
dovecot: config: Warning: Obsolete setting in /etc/dovecot/conf.d/11-plesk-security-ssl.conf:2: ssl_protocols has been replaced by ssl_min_protocol
dovecot: config: Warning: Obsolete setting in /etc/dovecot/conf.d/11-plesk-security-ssl.conf:4: ssl_dh_parameters_length is no longer needed


The file /etc/dovecot/conf.d/11-plesk-security-ssl.conf contains
ssl_cipher_list=HIGH:!aNULL:!MD5
ssl_protocols = TLSv1 TLSv1.1 TLSv1.2
ssl_dh=</usr/local/psa/etc/dhparams1024.pem
ssl_dh_parameters_length=1024
ssl_min_protocol=TLSv1

I am not actively using email services (disabled on all subscriptions), email is used just for the website contact forms.

What shall I do? Can you please help.
Franco
 
I experienced this too. I think Plesk may need to update their settings files when it finds the new version is installed. Here is what I did:

open /etc/dovecot/conf.d/11-plesk-security-ssl.conf
and change yours to this (commenting out the deprecated setttings):
Code: 
ssl_cipher_list=HIGH:!aNULL:!MD5
#ssl_protocols = TLSv1 TLSv1.1 TLSv1.2
ssl_dh=</usr/local/psa/etc/dhparams1024.pem
#ssl_dh_parameters_length=1024
ssl_min_protocol=TLSv1

Then restart Dovecot and you should notice the errors don't appear again.
 
same issue here.
Thanks for the workaround.
Plesks security module for dovecot definitely needs an update for the new dovecot settings.
 
You must log in or register to reply here.

Similar threads

J
Issue DEBIAN 12 OPENSSL 3.0 DOVECOT does not allow login
Replies
1
Views
674
Yaroslav_T
Yaroslav_T
K
Issue Dovecot too many SNI ssl certificate config files Max open files
Replies
19
Views
2K
kevinjansen
K
K
Issue Dovecot backup/sync to second server fails - Error: auth-master: userdb lookup
Replies
0
Views
2K
kassi
K
DieterWerner
Resolved Dovecot Config Error
Replies
5
Views
2K
learning_curve
learning_curve
A
Question Upgrade Almalinux 8 to 9 with Plesk installed
Replies
4
Views
2K
Joro
J
Back
Top