Problem after update to 1.8.7

@Hifihedgehog

Can not delete or create, you mentioned Cannot delete email account. I am aware of that password change issue, I will take care.

For some reason, the error message when changing passwords, when I attempt to use the “$” character, says this:

Cannot delete email account. Error message: Data supplied is not accepted.

My best guess is that it is probably an error message you intended for the delete email account section, and that you may have mistakenly placed that error message under the password change section as well. I don’t have any issues deleting emails.

@Hifihedgehog

Ok thank you. Will soon allow those characters in change password.

no im logging as admin, so it should not do anything wrong,
and im also not able to login with this account.

@Hifihedgehog

Ok thank you. Will soon allow those characters in change password.

Awesome! And thank you for your tremendous help over these last fast and furious few weeks.

By the way, I am trying to update my tutorial for adding the password changing plugin in Rainloop. I tried using this code but it doesn’t quite work. Could you take a look when you get a chance?

UPDATE :table SET password = ENCRYPT(:newpass) WHERE emailOwner_id = :domain AND email = :email AND password = ENCRYPT(:oldpass)

the bug is resolve for the account i was not able to login but still not able to delete account Cannot delete account. Error message: You are not authorized to access this resource.

the bug is resolve for the account i was not able to login but still not able to delete account Cannot delete account. Error message: You are not authorized to access this resource.

How did you resolve the bug that you can’t login to your mail accounts? This would help me too I guess

I have the same issue, how can I solve the Rainloop can´t login

and dovecot is not working

Guys every i click menu always shown this error

{“errorMessage”: “Session reuse detected, IPAddress logged.”, “error_message”: “Session reuse detected, IPAddress logged.”}

any idea?

https://< Server IP Address>:8090/email/changeEmailAccountPassword

i just did that.

after upgrading just change all the email password to a newpassword and that it it work here without problem.

https://< Server IP Address>:8090/email/changeEmailAccountPassword

i just did that.

after upgrading just change all the email password to a newpassword and that it it work here without problem.

I have changed the Email password several times and is not working, I make a clean installation

then i don’t know me it have work

@CyberPanel said:
@moneke I believe you have similar problem → Issues after upgrading to build 1.8 version 5 - Page 2 — CyberPanel - WebHosting Control Panel for OpenLiteSpeed

You can go through @Hifihedgehog posts, he explained well.

Thanks for your answer! I followed exactly the mentioned steps, but it didn’t worked

> @CyberPanel said:
> @moneke I believe you have similar problem -> https://forums.cyberpanel.net/discussion/comment/5012/#Comment_5012
>
> You can go through @Hifihedgehog posts, he explained well.

Thanks for your answer! I followed exactly the mentioned steps, but it didn’t worked

Did you upgrade from 1.8.5 or prior to 1.8.6. and from 1.8.6 to 1.8.7? If so, what happened was this. Originally, CyberPanel used to store email passwords in unencrypted, plain text format. With 1.8.6, old passwords were supposed to be migrated to CRYPT but due to an oversight, they were migrated with MD5 whereas any new accounts were properly created with CRYPT. With 1.8.7, if you had already migrated with 1.8.6, those MD5 were converted to CRYPT but since MD5 is already encrypted, the double encryption rendered all passwords unreadable since the system expects just one level of encryption.

As a result, as you might expect, all my email passwords are trashed. Fortunately for me, though, I do have an automatic inter-day incremental backup of my entire server which includes my MariaDB SQL database tables that goes back 30 days. As such, I have asked CyberPanel support to reapply the original passwords from that backup for the email users table (e_users) that I have restored from a recent backup. So the bottom line is, unless you have a backup of your old passwords like I do, you will have to reset them.

> @CyberPanel said:
> @moneke I believe you have similar problem -> https://forums.cyberpanel.net/discussion/comment/5012/#Comment_5012
>
> You can go through @Hifihedgehog posts, he explained well.

Thanks for your answer! I followed exactly the mentioned steps, but it didn’t worked

Did you upgrade from 1.8.5 or prior to 1.8.6. and from 1.8.6 to 1.8.7? If so, what happened was this. Originally, CyberPanel used to store email passwords in unencrypted, plain text format. With 1.8.6, old passwords were supposed to be migrated to CRYPT but due to an oversight, they were migrated with MD5 whereas any new accounts were properly created with CRYPT. With 1.8.7, if you had already migrated with 1.8.6, those MD5 were converted to CRYPT but since MD5 is already encrypted, the double encryption rendered all passwords unreadable since the system expects just one level of encryption.

As a result, as you might expect, all my email passwords are trashed. Fortunately for me, though, I do have an automatic inter-day incremental backup of my entire server which includes my MariaDB SQL database tables that goes back 30 days. As such, I have asked CyberPanel support to reapply the original passwords from that backup for the email users table (e_users) that I have restored from a recent backup. So the bottom line is, unless you have a backup of your old passwords like I do, you will have to reset them.

Thanks for answering!

I don’t care if I have to reset my passwords. The problem is, that even after following your instructions from the link, that I can’t access my mails when changing the account passwords and that I don’t know how to solve the problem without detailed instructions. I am running Version 1.8.7 currently.

Thanks for answering!

I don’t care if I have to reset my passwords. The problem is, that even after following your instructions from the link, that I can’t access my mails when changing the account passwords and that I don’t know how to solve the problem without detailed instructions. I am running Version 1.8.7 currently.

The issue is potentially the passwords got double encrypted, first in 1.8.6 with MD5 and then in 1.8.7 with CRYPT. That was a migration bug that CyberPanel introduced with these releases. You can only have one level of encryption at a time since Dovecot doesn’t know how to deal with multiple levels of encryption. And so if you happened to upgrade to 1.8.6 and then 1.8.7, your passwords are quite possibly trashed (you cannot reverse MD5 hashing), in which case you would need to reset them. After resetting them, though, you should be able to then access your emails.

I understand. But how do I really reset them, when just changing the password doesn’t have any effect?

I understand. But how do I really reset them, when just changing the password doesn't have any effect?

You should be able to change your passwords. The only reasons that I have encountered for not being able to reset passwords after this update are either (1) you did not clear your browser cache or (2) you are trying to use the ‘$’ character in a password (this is a bug). If you make sure to have cleared your browser’s cache for all time and you have also refrained from using the ‘$’ character in your passwords, the password changing page should work.

I understand. But how do I really reset them, when just changing the password doesn't have any effect?

You should be able to change your passwords. The only reasons that I have encountered for not being able to reset passwords after this update are either (1) you did not clear your browser cache or (2) you are trying to use the ‘$’ character in a password (this is a bug). If you make sure to have cleared your browser’s cache for all time and you have also refrained from using the ‘$’ character in your passwords, the password changing page should work.

Cache is cleared (tried with several browsers) and I don’t use “$”