1 (edited by LuizC 2022-05-17 01:14:03)

Topic: [SOLVED] Round Cube stopped working

==== REQUIRED BASIC INFO OF YOUR IREDMAIL SERVER ====
- iRedMail version (check /etc/iredmail-release): 1.52
- Deployed with iRedMail Easy or the downloadable installer? Installer
- Linux/BSD distribution name and version: Ubuntu 20.04
- Store mail accounts in which backend (LDAP/MySQL/PGSQL): PGSQL
- Web server (Apache or Nginx): Nginx
- Manage mail accounts with iRedAdmin-Pro? No
- [IMPORTANT] Related original log or error message is required if you're experiencing an issue.
====

Dear iRedMail fellows,

My Roundcube instance stoped working... As you can see in the image, the main view is showing a error message ("botboutique.com.br refuses to stablish connection").

Using:

tail -f /var/log/mail.log

Shows:

May  1 15:20:13 vps23593 postfix/smtps/smtpd[6087]: warning: unknown[20.219.140.106]: SASL LOGIN authentication failed: UGFzc3dvcmQ6
May  1 15:20:13 vps23593 postfix/smtps/smtpd[6087]: disconnect from unknown[20.219.140.106] ehlo=1 auth=0/1 quit=1 commands=2/3
May  1 15:20:38 vps23593 postfix/submission/smtpd[5741]: connect from unknown[141.98.10.24]
May  1 15:20:42 vps23593 postfix/submission/smtpd[5741]: Anonymous TLS connection established from unknown[141.98.10.24]: TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)
May  1 15:20:45 vps23593 postfix/submission/smtpd[5741]: warning: unknown[141.98.10.24]: SASL LOGIN authentication failed: UGFzc3dvcmQ6
May  1 15:20:45 vps23593 postfix/submission/smtpd[5741]: disconnect from unknown[141.98.10.24] ehlo=2 starttls=1 auth=0/1 quit=1 commands=4/5
May  1 15:21:11 vps23593 postfix/submission/smtpd[4871]: connect from unknown[193.56.29.237]
May  1 15:21:12 vps23593 postfix/submission/smtpd[4871]: disconnect from unknown[193.56.29.237] ehlo=1 auth=0/1 rset=0/1 quit=1 commands=2/4
May  1 15:22:15 vps23593 postfix/submission/smtpd[5741]: connect from unknown[193.56.29.237]
May  1 15:22:16 vps23593 postfix/submission/smtpd[5741]: disconnect from unknown[193.56.29.237] ehlo=1 auth=0/1 rset=0/1 quit=1 commands=2/4

In fact, the service isn't down: I can send emails (and it is delivered) and I can answer it and the log shows that is processing it normally:


May  1 15:25:12 vps23593 roundcube: <k5nv8uuv> Successful login for postmaster@botboutique.com.br (ID: 1) from 201.87.70.104 in session k5nv8uuv0d2iaaam
May  1 15:25:24 vps23593 postfix/submission/smtpd[5741]: connect from unknown[193.56.29.237]
May  1 15:25:25 vps23593 postfix/submission/smtpd[6331]: connect from localhost[127.0.0.1]
May  1 15:25:25 vps23593 postfix/submission/smtpd[6331]: Anonymous TLS connection established from localhost[127.0.0.1]: TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256
May  1 15:25:25 vps23593 postfix/submission/smtpd[6331]: 4KrqmP1pjyz61vp: client=localhost[127.0.0.1], sasl_method=LOGIN, sasl_username=postmaster@botboutique.com.br
May  1 15:25:25 vps23593 postfix/cleanup[6530]: 4KrqmP1pjyz61vp: message-id=<8a059d9b1d735a1e3b129db332c03d7c@botboutique.com.br>
May  1 15:25:25 vps23593 postfix/qmgr[3157]: 4KrqmP1pjyz61vp: from=<postmaster@botboutique.com.br>, size=630, nrcpt=1 (queue active)
May  1 15:25:25 vps23593 roundcube: <k5nv8uuv> User postmaster@botboutique.com.br [201.87.70.104]; Message <8a059d9b1d735a1e3b129db332c03d7c@botboutique.com.br> for luiz.cesar@techandsoul.com.br; 250: 2.0.0 Ok: queued as 4KrqmP1pjyz61vp
May  1 15:25:25 vps23593 postfix/submission/smtpd[6331]: disconnect from localhost[127.0.0.1] ehlo=2 starttls=1 auth=1 mail=1 rcpt=1 data=1 quit=1 commands=8
May  1 15:25:25 vps23593 postfix/submission/smtpd[5741]: disconnect from unknown[193.56.29.237] ehlo=1 auth=0/1 rset=0/1 quit=1 commands=2/4
May  1 15:25:25 vps23593 postfix/10025/smtpd[6543]: connect from localhost[127.0.0.1]
May  1 15:25:25 vps23593 postfix/10025/smtpd[6543]: 4KrqmP5ZZFz61wF: client=localhost[127.0.0.1]
May  1 15:25:25 vps23593 postfix/cleanup[6530]: 4KrqmP5ZZFz61wF: message-id=<8a059d9b1d735a1e3b129db332c03d7c@botboutique.com.br>
May  1 15:25:25 vps23593 postfix/qmgr[3157]: 4KrqmP5ZZFz61wF: from=<postmaster@botboutique.com.br>, size=1969, nrcpt=1 (queue active)
May  1 15:25:25 vps23593 postfix/10025/smtpd[6543]: disconnect from localhost[127.0.0.1] ehlo=1 mail=1 rcpt=1 data=1 quit=1 commands=5
May  1 15:25:25 vps23593 amavis[2853]: (02853-01) Passed CLEAN {RelayedInternal}, ORIGINATING/MYNETS LOCAL [127.0.0.1]:40130 ESMTP/ESMTP <postmaster@botboutique.com.br> -> <luiz.cesar@techandsoul.com.br>, (), Queue-ID: 4KrqmP1pjyz61vp, Message-ID: <8a059d9b1d735a1e3b129db332c03d7c@botboutique.com.br>, mail_id: cymANDL2VQ5e, b: HtPwkify2, Hits: -0.909, size: 630, queued_as: 4KrqmP5ZZFz61wF, Subject: "Teste@123", From: <postmaster@botboutique.com.br>, User-Agent: Roundcube_Webmail, helo=localhost, Tests: [ALL_TRUSTED=-1,TRACKER_ID=0.1,TVD_SPACE_RATIO=0.001,T_SCC_BODY_TEXT_LINE=-0.01], autolearn=ham autolearn_force=no, autolearnscore=0.091, dkim_new=dkim:botboutique.com.br, 472 ms
May  1 15:25:25 vps23593 postfix/amavis/smtp[6535]: 4KrqmP1pjyz61vp: to=<luiz.cesar@techandsoul.com.br>, relay=127.0.0.1[127.0.0.1]:10026, delay=0.68, delays=0.18/0.01/0.01/0.48, dsn=2.0.0, status=sent (250 2.0.0 from MTA(smtp:[127.0.0.1]:10025): 250 2.0.0 Ok: queued as 4KrqmP5ZZFz61wF)
May  1 15:25:25 vps23593 postfix/qmgr[3157]: 4KrqmP1pjyz61vp: removed
May  1 15:25:26 vps23593 postfix/smtp[6544]: Trusted TLS connection established to smtp.sendgrid.net[167.89.123.53]:587: TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)
May  1 15:25:27 vps23593 postfix/smtp[6544]: 4KrqmP5ZZFz61wF: to=<luiz.cesar@techandsoul.com.br>, relay=smtp.sendgrid.net[167.89.123.53]:587, delay=1.4, delays=0.01/0.03/1.1/0.28, dsn=2.0.0, status=sent (250 Ok: queued as uoHvacDZTVinTpfJazXPJA)
May  1 15:25:27 vps23593 postfix/qmgr[3157]: 4KrqmP5ZZFz61wF: removed
May  1 15:25:29 vps23593 postfix/smtps/smtpd[6549]: connect from unknown[20.219.140.106]
May  1 15:25:29 vps23593 postfix/smtps/smtpd[6549]: Anonymous TLS connection established from unknown[20.219.140.106]: TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256
May  1 15:25:33 vps23593 postfix/smtps/smtpd[6549]: warning: unknown[20.219.140.106]: SASL LOGIN authentication failed: UGFzc3dvcmQ6
May  1 15:25:33 vps23593 postfix/smtps/smtpd[6549]: disconnect from unknown[20.219.140.106] ehlo=1 auth=0/1 quit=1 commands=2/3

May  1 15:26:08 vps23593 postfix/postscreen[6614]: CONNECT from [209.85.222.52]:46671 to [191.252.120.13]:25
May  1 15:26:08 vps23593 postfix/postscreen[6614]: PASS OLD [209.85.222.52]:46671
May  1 15:26:08 vps23593 postfix/smtpd[6617]: connect from mail-ua1-f52.google.com[209.85.222.52]
May  1 15:26:09 vps23593 postfix/smtpd[6617]: Anonymous TLS connection established from mail-ua1-f52.google.com[209.85.222.52]: TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256
May  1 15:26:09 vps23593 postfix/smtpd[6617]: 4KrqnF3P3kz61vp: client=mail-ua1-f52.google.com[209.85.222.52]
May  1 15:26:09 vps23593 postfix/cleanup[6530]: 4KrqnF3P3kz61vp: message-id=<CACYQ_XGkuSAMjqw+iYwbO6Ej5xzRrffVLKLPNAizNY=frUAwdw@mail.gmail.com>
May  1 15:26:09 vps23593 postfix/qmgr[3157]: 4KrqnF3P3kz61vp: from=<luiz.cesar@techandsoul.com.br>, size=5700, nrcpt=1 (queue active)
May  1 15:26:09 vps23593 postfix/smtpd[6617]: disconnect from mail-ua1-f52.google.com[209.85.222.52] ehlo=2 starttls=1 mail=1 rcpt=1 bdat=1 quit=1 commands=7
May  1 15:26:11 vps23593 postfix/10025/smtpd[6543]: connect from localhost[127.0.0.1]
May  1 15:26:11 vps23593 postfix/10025/smtpd[6543]: 4KrqnH15tyz61ww: client=localhost[127.0.0.1]
May  1 15:26:11 vps23593 postfix/cleanup[6530]: 4KrqnH15tyz61ww: message-id=<CACYQ_XGkuSAMjqw+iYwbO6Ej5xzRrffVLKLPNAizNY=frUAwdw@mail.gmail.com>
May  1 15:26:11 vps23593 postfix/qmgr[3157]: 4KrqnH15tyz61ww: from=<luiz.cesar@techandsoul.com.br>, size=6374, nrcpt=1 (queue active)
May  1 15:26:11 vps23593 postfix/10025/smtpd[6543]: disconnect from localhost[127.0.0.1] ehlo=1 mail=1 rcpt=1 data=1 quit=1 commands=5
May  1 15:26:11 vps23593 amavis[2854]: (02854-01) Passed CLEAN {RelayedInbound}, [209.85.222.52]:46671 [209.85.222.52] ESMTP/ESMTP <luiz.cesar@techandsoul.com.br> -> <postmaster@botboutique.com.br>, (ESMTPS://[209.85.222.52]:46671), Queue-ID: 4KrqnF3P3kz61vp, Message-ID: <CACYQ_XGkuSAMjqw+iYwbO6Ej5xzRrffVLKLPNAizNY=frUAwdw@mail.gmail.com>, mail_id: rWR61OTwp3QC, b: osItvFgj4, Hits: -0.109, size: 5700, queued_as: 4KrqnH15tyz61ww, Subject: "Re: Teste@123", From: <luiz.cesar@techandsoul.com.br> (dkim:AUTHOR), helo=mail-ua1-f52.google.com, Tests: [DKIM_SIGNED=0.1,DKIM_VALID=-0.1,DKIM_VALID_AU=-0.1,DKIM_VALID_EF=-0.1,HTML_MESSAGE=0.001,RCVD_IN_DNSWL_NONE=-0.0001,RCVD_IN_MSPIKE_H2=-0.001,SPF_HELO_NONE=0.001,SPF_PASS=-0.001,TRACKER_ID=0.1,T_SCC_BODY_TEXT_LINE=-0.01,URIBL_BLOCKED=0.001], autolearn=ham autolearn_force=no, autolearnscore=-0.109, dkim_i=@techandsoul.com.br, dkim_sd=google:techandsoul.com.br, 1684 ms
May  1 15:26:11 vps23593 postfix/amavis/smtp[6535]: 4KrqnF3P3kz61vp: to=<postmaster@botboutique.com.br>, relay=127.0.0.1[127.0.0.1]:10024, delay=1.8, delays=0.11/0/0.01/1.7, dsn=2.0.0, status=sent (250 2.0.0 from MTA(smtp:[127.0.0.1]:10025): 250 2.0.0 Ok: queued as 4KrqnH15tyz61ww)
May  1 15:26:11 vps23593 postfix/qmgr[3157]: 4KrqnF3P3kz61vp: removed
May  1 15:26:11 vps23593 postfix/pipe[6624]: 4KrqnH15tyz61ww: to=<postmaster@botboutique.com.br>, relay=dovecot, delay=0.07, delays=0.01/0.02/0/0.04, dsn=2.0.0, status=sent (delivered via dovecot service)
May  1 15:26:11 vps23593 postfix/qmgr[3157]: 4KrqnH15tyz61ww: removed
May  1 15:26:28 vps23593 postfix/submission/smtpd[6331]: connect from unknown[193.56.29.237]
May  1 15:26:29 vps23593 postfix/submission/smtpd[6331]: disconnect from unknown[193.56.29.237] ehlo=1 auth=0/1 rset=0/1 quit=1 commands=2/4

Any clues how to fix it?

Thanks a lot!

Post's attachments

Sem Título-1.png 133.88 kb, file has never been downloaded. 

Sem Título-2.png 133.88 kb, file has never been downloaded. 

You don't have the permssions to download the attachments of this post.

----

Spider Email Archiver: On-Premises, lightweight email archiving software developed by iRedMail team.

2 (edited by Cthulhu 2022-05-02 00:40:30)

Re: [SOLVED] Round Cube stopped working

it shows that roundcube login worked, but normal login without useing roundcube fails the sasl auth, so i guess your MUA settings in the client are wrong, or someone who is not premitted trys to login with wrong login credentials or even tryr to send mail unauthenticated


do you have "Header always append X-Frame-Options DENY" ?

3

Re: [SOLVED] Round Cube stopped working

look into the headers.conf of nginx and check what setting X-Frame-Options is set to

4

Re: [SOLVED] Round Cube stopped working

Hi Cthulhu, thanks for your prompt response...

I didn't get whats "MUA" means, sorry my ignorance...

And there's no mail clients configured, the accesses are made in the webmail directly, if I understand properlly. More than that, the only two users (postmaster@ and marketing@) can login in the Roundcube page, with the result I showed in the image.

Cthulhu wrote:

do you have "Header always append X-Frame-Options DENY" ?

I'm not sure, where can I check this?

5

Re: [SOLVED] Round Cube stopped working

Cthulhu wrote:

look into the headers.conf of nginx and check what setting X-Frame-Options is set to

Here's the content of headers.conf:

add_header X-Frame-Options sameorigin;
add_header X-Content-Type-Options nosniff;
add_header X-XSS-Protection '1; mode=block';
add_header X-Download-Options noopen;
add_header X-Permitted-Cross-Domain-Policies none;
add_header Content-Security-Policy "default-src https: data: 'unsafe-inline' 'unsafe-eval'";
add_header Referrer-Policy strict-origin;

6

Re: [SOLVED] Round Cube stopped working

Cthulhu wrote:

look into the headers.conf of nginx and check what setting X-Frame-Options is set to

I changed this line to

add_header X-Frame-Options deny;

and it didn't worked :-(

7 (edited by Cthulhu 2022-05-02 02:22:27)

Re: [SOLVED] Round Cube stopped working

No, thats exactly what it should not be.
change back to add_header X-Frame-Options sameorigin;

and comment this header out completely

your browser is blocking something out, it is not a failure of roundcube itself, you need to find out what is causing this

8 (edited by LuizC 2022-05-02 02:31:56)

Re: [SOLVED] Round Cube stopped working

Cthulhu wrote:

and comment this header out completely

I commented the line and the entire headers.conf and both mods didn't worked...

Cthulhu wrote:

your browser is blocking something out, it is not a failure of roundcube itself, you need to find out what is causing this

This is really strange indeed, because it was working flawlesslly and suddenly stops...

9

Re: [SOLVED] Round Cube stopped working

Cthulhu wrote:

you need to find out what is causing this

I made a screeshot of the brower's console and pu it on the main post. Bellow is the text output:

chromewebdata/:1 
        
       Refused to display 'https://botboutique.com.br/' in a frame because it set multiple 'X-Frame-Options' headers with conflicting values ('deny, ALLOWALL'). Falling back to 'deny'.
(índice):2762 
        
       crbug/1173575, non-JS module files deprecated.
(anônimo) @ (índice):2762
jquery.min.js?s=1640817055:36 
        
       Uncaught DOMException: Blocked a frame with origin "https://botboutique.com.br" from accessing a cross-origin frame.
    at rcube_webmail.show_contentframe (https://botboutique.com.br/mail/program/js/app.min.js?s=1640816963:35:48675)
    at rcube_webmail.clear_message_list (https://botboutique.com.br/mail/program/js/app.min.js?s=1640816963:35:51256)
    at rcube_webmail.list_mailbox (https://botboutique.com.br/mail/program/js/app.min.js?s=1640816963:35:50774)
    at rcube_webmail.command_handler (https://botboutique.com.br/mail/program/js/app.min.js?s=1640816963:35:19103)
    at rcube_webmail.command (https://botboutique.com.br/mail/program/js/app.min.js?s=1640816963:35:17339)
    at rcube_webmail.init (https://botboutique.com.br/mail/program/js/app.min.js?s=1640816963:35:4810)
    at HTMLDocument.<anonymous> (https://botboutique.com.br/mail/?_task=mail&_token=mbG2zdnxwMsUHQtsicfHKOIlcV0NvkXj:453:8)
    at e (https://botboutique.com.br/mail/program/js/jquery.min.js?s=1640817055:36:30005)
    at t (https://botboutique.com.br/mail/program/js/jquery.min.js?s=1640817055:36:30307)

10 (edited by Cthulhu 2022-05-02 02:54:39)

Re: [SOLVED] Round Cube stopped working

then search all config files for X-Frame-Options and find out, where the different headers are set


i guess it is conflicting with your main page which sends different headers than /mail,

because /mail is treated as the same domain but as a subdirectory, but nginx itself sends different headers for this subdirectory which leads to those conflicts,

11

Re: [SOLVED] Round Cube stopped working

Cthulhu wrote:

then search all config files for X-Frame-Options and find out,

I made a search in the /etc folder and all files are ok:

webmaster@site:/etc$ sudo grep -nRsH "X-Frame-Options"

nginx/conf-enabled/headers.conf:1:add_header X-Frame-Options "ALLOWALL";
nginx/conf-available/headers.conf:1:add_header X-Frame-Options "ALLOWALL";
nginx/nginx.conf:20:        add_header X-Frame-Options "ALLOWALL";

Now I'm running this search in all folders. Time to have a coffee :-)

12

Re: [SOLVED] Round Cube stopped working

I Changed every X-Frame-Options directive that I found to "sameorigin"

LuizC wrote:
LuizC wrote:

Now I'm running this search in all folders. Time to have a coffee :-)

The other file that had X-Frame-Options directives was web.xml, from Tomcat conf. I added

 500     <filter>
 501         <filter-name>httpHeaderSecurity</filter-name>
 502         <filter-class>org.apache.catalina.filters.HttpHeaderSecurityFilter</filter-class>
 503         <async-supported>true</async-supported>
 504         <init-param>
 505              <param-name>antiClickJackingOption</param-name>
 506              <param-value>SAMEORIGIN</param-value>
 507         </init-param>
 508     </filter>

but my RoundMail is still unable to show my mails...

Is there another place that X-Frame-Options can be setted?

13

Re: [SOLVED] Round Cube stopped working

Interesting: using mobile web browsers like Chrome or Samsung, there is no problem and the Round Cube interface is fine.

This problem only occurs in a desktop browser...

14

Re: [SOLVED] Round Cube stopped working

depends on how the security headers are respected or not

15

Re: [SOLVED] Round Cube stopped working

LuizC wrote:

May  1 15:20:13 vps23593 postfix/smtps/smtpd[6087]: warning: unknown[20.219.140.106]: SASL LOGIN authentication failed: UGFzc3dvcmQ6

>> UGFzc3dvcmQ6 :

$ printf "%s\n" $(printf "%s\n" UGFzc3dvcmQ6 | openssl base64 -d)
Password:

maybe user password is wrong

16 (edited by LuizC 2022-05-06 06:33:51)

Re: [SOLVED] Round Cube stopped working

rain6966 wrote:

maybe user password is wrong

I don't think that is the problem, mate: as I said, the whole email system is working, I tryed in cel browers and it's working fine.

17 (edited by LuizC 2022-05-06 06:31:18)

Re: [SOLVED] Round Cube stopped working

Firefox desktop didn't show any problems in the browser console too and Roundcube is working fine on it, just like in mobile browsers.

Cthulhu wrote:

depends on how the security headers are respected or not

Could you develop this argument? Is there some workaround to discover why ROundcube is working in Firefix/mobile browsers and not in Chrome/Edge o desktop?

18

Re: [SOLVED] Round Cube stopped working

Refused to display 'https://botboutique.com.br/' in a frame because it set multiple 'X-Frame-Options' headers with conflicting values ('deny, ALLOWALL'). Falling back to 'deny'.

chrome seems to fallback to DENY when it sees conflicting headers

but the strange thing is: the header should be sameorigin, neither deny nor ALLOWALL, so you need to find the code where those headers are set, maybe its even in roundcube code, it is aswell possible to send headers trough PHP code

19

Re: [SOLVED] Round Cube stopped working

https://chrome.google.com/webstore/deta … mkohkpodhe


use this and it wont bother you anymore

20

Re: [SOLVED] Round Cube stopped working

Cthulhu wrote:

use this and it wont bother you anymore

I fix it reinstalling eveything :-)

Thanks for the support, @Cthulhu !