Using fetchmail with yunohost to retrieve external mail box

FredFF · June 19, 2016, 4:26pm

Hello there,
Yunohost is a great piece of software, and today I would like to share my experience on how to make fetchmail work with yunohost.

fetchmail is a useful program that retrieves emails from external servers (pop3 or imap)

Unfortunately if you follow the official man page you’ll only get errors, basically because fetchmail service and daemon are launched by a fetchmail user, that has absolutely no right to use dovecot’s services. Adding user fetchmail in mail group does not solve the problem. It seems that only 2 users have rights to use yunohost’s dovecot : root and vmail

So after having imagined and tested several solutions, I will share with you the one I found that absolutely works, and doesn’t jeopardize yunohost config files.

The main idea is to get fetchmail launched by vmail user (who is entitled by yunohost to manage dovecot mda)

first setup fetchmail
sudo apt-get install fetchmail

then create your config file /home/vmail/fechcmdvmail
sudo -u vmail nano /home/vmail/fechcmdvmail

here’s an example which you’ll have to customize to suit your needs

your yunohost user is usernameonyunohost
your external email is emailaddress@external-domain.com
you retreive email over pop3 protocol on pop.external-domain.com
be careful : the nokeep parameter will erase messages from emailaddeess@external-domain.com inbox
you may retrieve several mailboxes from several servers, just add others poll statements
other examples
http://www.fetchmail.info/fetchmail-man.html
https://www.howtoforge.com/debian_etch_fetchmail

DO NOT FORGET the mda parameter, else you’ll destroy your local mailbox!!!

#/home/vmail/fechcmdvmail
set syslog
set postmaster root

poll pop.external-domain.com proto pop3 user "emailaddress@external-domain.com" password "your-email-password" is "usernameonyunohost" here
mda "/usr/lib/dovecot/deliver -d %T" nokeep

Important : chmod
sudo -u vmail chmod 0600 /home/vmail/fetchcmd

in order to test this config file
killall fetchmail sudo -u vmail fetchmail --daemon 0 -v -f /home/vmail/fechcmdvmail

Normally you should receive emails left on emailaddeess@external-domain.com on your usernameonyunohost mailbox

last step : setup a daemon which will get launched by a cron at boot time, and fetch mails every 1800 seconds

sudo -u vmail crontab -e
use nano when prompted
and add the following line
@reboot fetchmail --daemon 1800 -v -f /home/vmail/fetchcmdvmail
ctrl-X to save

then reboot, and enjoy!

you may verify that the cron is actually running
ps aux |grep fetchmail

If you have problems, don’t forget to watch the logs:
grep CRON /var/log/syslog
grep fetchmail /var/log/syslog
tail -n 200 /var/log/mail.log

guyou · February 17, 2019, 7:23pm

Concerning fetchmail, just to inform that recent versions directly support a server mode :

create a file /etc/fetchmailrc
change settings in /etc/default/fetchmail to allow the server
start the service service fetchmail start

guyou · February 17, 2019, 7:52pm

FredFF:

DO NOT FORGET the mda parameter, else you’ll destroy your local mailbox!!!

#/home/vmail/fechcmdvmail
set syslog
set postmaster root

poll pop.external-domain.com proto pop3 user "emailaddress@external-domain.com" password "your-email-password" is "usernameonyunohost" here
mda "/usr/lib/dovecot/deliver -d %T" nokeep

I tried to configure mda but dovecot complains about incorrect user/group permissions. So I tried without mda configuration: fetchmail tranfers to postfix which in turn fires procmail, but the later does not understand the /var/mail/user format and moved it away.

guyou · February 17, 2019, 9:25pm

I think I found an acceptable workaround: setting the smtpaddress field to the domain controlled by yunohost.
Example:

poll pop.external-domain.com proto pop3 user "emailaddress@external-domain.com" password "your-email-password" is "usernameonyunohost" here smtpaddress "mydomain.net"

strauch · September 9, 2019, 10:28pm

I changed two things: First i added ssl support, by simply adding the line ssl. Second i changed the MDA so rspamd will add its score so i can filter the spammails:

poll pop.external-domain.com proto pop3
user "emailaddress@external-domain.com" password "your-email-password" is "usernameonyunohost" here
ssl
mda '/usr/bin/rspamc --mime --exec "/usr/lib/dovecot/deliver -d %T"'
nokeep

guyou · March 29, 2020, 11:46am

I encounter difficulties with such settings.

When my local users send mail to other local users using the external address, the mail is no more delivered:

the mail is sent via the local SMTP
the mail is sent to the external SMTP
fetchmail detects the mail and tries to deliver it locally
the local MDA rejects the mail

Mar 28 18:00:28 home fetchmail[1943]: reading message
user1@pop.fai.com:16 of 16 (2571 octets) (log message incomplete)
Mar 28 18:00:28 home fetchmail[1943]: SMTP error: 553 5.7.1
<user2@mydomain.com>: Sender address rejected: not logged in

Is there a way to fix this? For example, rewriting the recipient to keep the mail delivered locally? Or letting fetchmail deliver without any check?

guyou · March 29, 2020, 3:30pm

In order to validate solution, I added a table in virtual_alias_maps with the corresponding aliases.

In /etc/postfix/virtual:

user1@fai.com user1
user2@fai.com user2

In /etc/postfix/main.cf:

virtual_alias_maps = ldap:/etc/postfix/ldap-aliases.cf hash:/etc/postfix/virtual

And the bug disappeared.

Qestion: why Yunohost does not let us to declare mail aliases using external domain?