I am using Duplicati Canary (2.0.2.21_canary_2018-03-06) and all is working well so far. I have been trying to set up e-mail notifications without success however. The Linux server running Duplicati isn’t configured for sending mail, so I’ve tried setting all the parameters directly in Duplicati. I am sending to my Gmail address, using Google’s SMTP servers and my username and password to authenticate.
I’ve tried running the send-email command manually using the Command Line feature - when I try that I get return code 0 and no other messages, but no e-mail is sent.
Command line options for sending e-mail (sanitized for this post naturally) look like:
Thank you for the suggestions - I added both a from address and tried the verbose flag but no e-mail gets received. I made sure the from address was the same as the to (and a valid address that the GMail account can send from) but to no available. The best I’ve been able to achieve is to send mail to the local postfix server, which then relays it to Gmail. This deposits it in the SPAM folder but I can at least train the SPAM filter to accept these messages.
A workaround is good, but working would be better.
It may just be the forum doing this, but it looks to me like you have a non-standard dash in your -–send-mail-any-operation=true line - try retyping those two leading dashes so they end up like --send-mail-any-operation=true
You should end up with something like the following with extra info as to what’s going on.
Running commandline entry
Finished!
The operation SendMail has started
Starting - Running SendMail
Running SendMail took 0:00:00:00.019
Failed to send email: System.Security.Authentication.AuthenticationException: The remote certificate is invalid according to the validation procedure.
=> The remote certificate is invalid according to the validation procedure.
Failed to send email: System.Security.Authentication.AuthenticationException: The remote certificate is invalid according to the validation procedure.
=> The remote certificate is invalid according to the validation procedure.
Return code: 0
Alternatively, you could just follow this (which you probably already know). Try your Command Line feature again but use this (I know, it probably looks like what you’ve already done):
Click “Edit as text” next to “Advanced options” and delete everything in that text box.
Click the `Run “send-mail” command now" button
Lastly, did any of the topics below work for you? I know gmail works because I’m using it on one of my machines. Unfortunately that machine is not on-site so I can’t check my settings but I do recall having to fiddle with using smtps:// or not and adjusting the ports on --send-mail-url to get things working.
I still think the “not-really-a-dash” issue with your first parameter is what’s breaking it for you, but in case I’m wrong here’s what I’m using on one of my machines with gmail:
Thanks for this - sorry for the delay in replying - work kept me away from this for a few days.
It turns out the dash issue was a result of the copy and paste and it is correct in Duplicati. I have checked my settings against the above and am making some progress - in fact I have it working on my Raspberry Pi with Gmail!
However less luck on the Ubuntu (Intel) servers - I have the same configuration you listed above which is working on the Raspberry Pi, but on the Intel boxes I see the following results:
Failed to send email: System.IO.IOException: The authentication or decryption has failed.
--> System.IO.IOException: The authentication or decryption has failed.
--> Mono.Security.Protocol.Tls.TlsException: Invalid certificate received from server.
=> The authentication or decryption has failed.
Failed to send email: System.IO.IOException: The authentication or decryption has failed.
--> System.IO.IOException: The authentication or decryption has failed.
--> Mono.Security.Protocol.Tls.TlsException: Invalid certificate received from server.
=> The authentication or decryption has failed.
Return code: 0
Presumably I’ve not set up CA certs correctly for Mono or something similar? Getting closer…
Lots of useful stuff in that link - I’ll go through it in more detail over the weekend. As a quick test, I ran:
cert-sync /etc/ssl/certs/ca-certificates.crt
It reported:
Linux Cert Store Sync - version 4.2.1.0
Synchronize local certs with certs from local Linux trust store.
Copyright 2002, 2003 Motus Technologies. Copyright 2004-2008 Novell. BSD licensed.
I already trust 148, your new list has 148
Import process completed.
So initially it looks like no change. I think we’re on the right track - I was just expecting something really obvious (like a missing package) but perhaps this is will a bit more in-depth.
I had tried the mozroots command by itself but this didn’t fix the issue - it was running the certmgr command that fixed the issue.
If this is the accepted fix then that’s fine - however just wanted to ask - is this expected or had I failed to perform something that lead up to this as an issue. The reason I ask is that I had with working on Raspbian 9 first without having to perform any of this, so I wonder if I missed something fundamental when I installed mono on my U16 boxes?
It’s not expected, but it’s not exactly unheard of either.
Unfortunately, Duplicati relies on mono when running in MacOS and Linux environments - and depending on the mono installation (as well as what else has been installed on the machine) it may or may not have up-to-date (or any) certificates.
Ideally we should probably look at something like getting Duplicati to somehow figure out if the certs are stale (or missing) and let the user know, but that’s not something I know how to do (or if it’s even possible).
Thanks for all your help! It’s been ages since I’ve touched .NET, and I can’t really say I know how my early .NET experience relates to mono. If I get some time I’ll have a look and see if I can find out anything to help. In the meantime the problem is solved.
Thank you again I am loving Duplicati and the community here.
I already had problems with Gmail with several solutions of the type, for that reason I created a yahoo email that works perfectly with sendemail, duplicati, among other programs of the type that are considered insecure by Google.
I suddenly started having this problem this past week on a laptop that had been working perfectly well for several months. To make a very long story (and debugging effort) short, I found that the problem was cause by the anti-virus package on the laptop. I had just installed it recently (my son’s college requires that all student computers have A/V installed or they can’t connect to the campus network. And Windows Defender doesn’t count. Don’t get me started! )
The package he is using is AVG and it has built-in (and default) “email protection.” This “protection” must intercept SMTP traffic and mangle it somehow, enough that SLL certificate checks on some systems (like GMail) will fail and cause the downstream error I was seeing in Duplicati. After turning off this feature, like so:
Log in to your Gmail account through a web browser and enable access through less secure apps . Less secure apps can make your account more vulnerable, Google will automatically turn this setting off if it’s not being used. However, bypass this security setting with a configuration tweak within your Google Email Account .
How “more secure apps” help to protect your account?
Which level of access you’re giving the client before you connect your Account.
Client access only a relevant part of your Account, like your email or calendar.
Connect your Google Account to the client without exposing your password.
Disconnect your Google Account from the client at any time.
)