Re: common question - dot in email prefix
unixsephierarchy = yes then just create the mailboxes with the period. On Tue, Oct 26, 2004 at 11:11:17PM -0500, Fred Blaise wrote: Hello all I am sure this question has been asked zillions of time.. I have gone over the wiki (very quickly I must say) and googled a bit... but please show indulgence towards the newbie at Cyrus :) Is there any way at all to create mailboxes such as user.fname.lname ? ending up as [EMAIL PROTECTED] ? I kinda read that with the Unix path separator, it would work, so I tried / and \ before the dot, but nothing. I must have misunderstood. Thank you for your patience :) fred --- Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html -- Joe Rhett Senior Geek Meer.net --- Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Don't allow login for users without mailbox
Hi, I have installed Cyrus IMAP 2.2.3 on a Debian GNU/Linux 3.0r2 (Woody). Cyrus authentication is based on cyrus-sasl (2.1.18). Cyrus-sasl authentication is based on pam. And pam authentication is based on LDAP + unix accounts. When I do a login with a LDAP or unix user which not have cyrus mailbox, to the webmail horde/imp or with a telnet on the port 143, it works. And I would like that only users with cyrus mailbox can do a login. Is it possible to not allow imap authentication/login for LDAP or unix users which not have cyrus mailbox ? Thanks a lot! Hélène ___ Toute la bourse en direct sur http://www.boursorama.com Boursorama en temps reel par telephone au 0892 69 24 24 (0.337 E/mn) --- Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: Don't allow login for users without mailbox
sol luna wrote: Hi, I have installed Cyrus IMAP 2.2.3 on a Debian GNU/Linux 3.0r2 (Woody). Cyrus authentication is based on cyrus-sasl (2.1.18). Cyrus-sasl authentication is based on pam. And pam authentication is based on LDAP + unix accounts. When I do a login with a LDAP or unix user which not have cyrus mailbox, to the webmail horde/imp or with a telnet on the port 143, it works. And I would like that only users with cyrus mailbox can do a login. Is it possible to not allow imap authentication/login for LDAP or unix users which not have cyrus mailbox ? Thanks a lot! Hélène I'm still new to this but I believe you need to change your cyrus-sasl authentication method. If it's using PAM, which is using ldap+unix, it will allow any ldap or unix user to log in. For example, I use: sasl_pwcheck_method: auxprop sasl_auxprop_plugin: sasldb sasl_sasldb_path: /etc/sasldb2 Then add users to the SASL database with saslpasswd2. For example, saslpasswd2 -c -u domain.tld joeuser --Mike --- Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
bugs in spool_copy_message()
I have just found two flaws in the code which takes a message into cyrus (typically during the DATA phase of LMTP. I am amazed that one has existed for so long. It means that messages with a line longer that 8190 bytes will be rejected with the error Message contains NUL characters. (Confirmed in testing.) The code is in spool_copy_message() in spool.c (used to be in copy_message() in lmtpengine.c. The problems are in the loop: while(prot_fgets(...)). The code after else if (p[0] == '\r') ignores the case of a long line which contains \r\0 within it when it is the \0 which fills the buffer. The code will fail to notice the \0. More importantly, a line longer than 8190 characters will be picked up by the else statement (else if (p[0] != '\n') and treated as if it has a \0 in it even though it does not! I am about to work out a fix but, given the importance of this code, I need to spend a lot of time making sure I do not introduce a new bug. As I said, I find it hard to believe that cyrus has been unable to handle long lines for so long! Phil. --- Phil Chambers ([EMAIL PROTECTED]) University of Exeter --- Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: Global sieve script
On Mon, Oct 25, 2004 at 12:32:26PM -0500 or thereabouts, Adi Linden wrote: Is it possible to have a global sieve script, like /etc/procmailrc, which is run before any users sieve scripts? If so, where does it live? Hi, sorry that I can't answer this question I only wanted to mention that I am very interested in this, too. One very important example would be this: placing emails' subject: or to: matching a couple of rules into one shared folder. I hope somebody can lighten this darkness :-) cu Sascha -- GNU Linux | Opinions are like assholes, everyone's got one, but nobody 2.6.7 | wants to look at the other guy's. -- Hal Hickman on a | i586 | | | --- Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: frequency of running squatter
Lem Tomas wrote: quick question what is a reasonable frequency to run the squatter? assume all mailboxes have the squatter flag set and squatter -a will be run. every hour ok? thanks, ---lem I also just run mine once per day. Also, consider using the -s flag, there's no point rebuilding the index if the mailbox hasn't changed, IMHO. -- Jules Agee System Administrator Pacific Coast Feather Co. [EMAIL PROTECTED] x284 --- Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: Global sieve script
On Wed, Oct 27, 2004 at 06:55:01PM +0200, Sascha Wuestemann wrote: On Mon, Oct 25, 2004 at 12:32:26PM -0500 or thereabouts, Adi Linden wrote: Is it possible to have a global sieve script, like /etc/procmailrc, which is run before any users sieve scripts? If so, where does it live? sorry that I can't answer this question I only wanted to mention that I am very interested in this, too. Search the archives. Rob has documented this a few times. There's no easy way for users to edit it, but you can do this manually yourself. -- Joe Rhett Senior Geek Meer.net --- Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: bugs in spool_copy_message()
On Wed, 27 Oct 2004, Philip Chambers wrote: I have just found two flaws in the code which takes a message into cyrus (typically during the DATA phase of LMTP. I am amazed that one has existed for so long. It means that messages with a line longer that 8190 bytes will be rejected with the error Message contains NUL characters. (Confirmed in testing.) I've had some of our users report the Message contains NUL characters bounce message, but I could never figure out why. If you come up with a patch for this, I'd be very interested in applying it here. Note: We are still running cyrus-imapd 2.1.16 here... Andy --- Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: bugs in spool_copy_message()
Actually, I will look at this this afternoon; I have a couple other bugs I need to look at first. On Wed, 27 Oct 2004, Philip Chambers wrote: I have just found two flaws in the code which takes a message into cyrus (typically during the DATA phase of LMTP. I am amazed that one has existed for so long. It means that messages with a line longer that 8190 bytes will be rejected with the error Message contains NUL characters. (Confirmed in testing.) The code is in spool_copy_message() in spool.c (used to be in copy_message() in lmtpengine.c. The problems are in the loop: while(prot_fgets(...)). The code after else if (p[0] == '\r') ignores the case of a long line which contains \r\0 within it when it is the \0 which fills the buffer. The code will fail to notice the \0. More importantly, a line longer than 8190 characters will be picked up by the else statement (else if (p[0] != '\n') and treated as if it has a \0 in it even though it does not! I am about to work out a fix but, given the importance of this code, I need to spend a lot of time making sure I do not introduce a new bug. As I said, I find it hard to believe that cyrus has been unable to handle long lines for so long! Phil. --- Phil Chambers ([EMAIL PROTECTED]) University of Exeter --- Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html --- Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
IMAP works, POP doesn't. Why?
Hi List- First, thanks to whomever fixed anonymous access to the info-cyrus IMAP archive folder. I can now access the archive in my imap client (whereas I counldn't just a couple of days ago) and it's So much more convenient to review the archives this way than by a web page. Many thanks for that. My question is pretty much what I've written in the subject line. I'm using all the latest software (cyrus-imapd, cyrus-sasl, openldap) and I've used ldapdb.c distributed with OpenLDAP to implement a LDAP auxprop plugin for use with Cyrus. When I make a new account in the LDAP directory, then make a new cyrus imap account with cyradm, then use an IMAP client to authenticate (using DIGEST-MD5) to the LDAP directory and check mail in the cyrus imap account, everything works just fine---as expected. I can watch the authentication process taking place in the logs (with lots of LDAP activity), and authentication succeeds and I'm granted access to the imap folder (this is a virtual domain account created with cyradm cm [EMAIL PROTECTED]). However, when I remove the account parameters from the client configuration (I'm using Ximian Evolution) list (iow, delete the account from Evolution, leaving the server side untouched), then recreate the account (again in Evolution) with all the same settings except for using the POP protocol vice IMAP as the receive mail server type, I don't seem to be able to access the account. As with the Evolution IMAP account (which worked), I can watch the authentication process taking place in the LDAP logs, and apparently, according to slapd log entries, authentication succeeds, but then there is a final log entry: Oct 27 14:40:05 tombstone pop3[5760]: badlogin: localhost [127.0.0.1] DIGEST-MD5 authentication failure I also tried (and failed with same log entry) accessing the pop3 port using the other network interfaces, but ultimately, I'd like to have the pop3d listen only on the loopback interface. Thanks to Henrique's suggestion on Monday, I'm trying to use otrs (http://www.otrs.org) and all I'm really trying to do is be able to POP messages out of the account's imap folder into the otrs ticket queue using otrs's PostMasterPOP3.pl, but maybe I'm being silly thinking that one can POP any mail out of an IMAP account. It seems otrs is most well-suited to getting incoming mail into the ticket queue via the pop protocol. Does the pop3d in Cyrus look for a mbox style mail folder in /var/spool/mail or something (as opposed to the /var/spool/imap location)? Or is this not possible with virtual IMAP mailboxes? Perhaps I need to create a unix alias account (from postfix docs on virtual accounts) to use here? I've tried testing with pop3test and get the same results as with Evolution, except the output on the command line is simply: S: -ERR [AUTH] authenticating: authentication failure Authentication failed. generic failure Security strength factor: 128 Any tips would be most welcome. TIA. -- Kevin http://www.gnosys.us --- Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: bugs in spool_copy_message()
On Wed, 27 Oct 2004, Derrick J Brashear wrote: Actually, I will look at this this afternoon; I have a couple other bugs I need to look at first. It should be this simple: --- spool.c 16 Sep 2004 17:58:54 - 1.6 +++ spool.c 27 Oct 2004 20:36:00 - @@ -451,7 +451,7 @@ p[1] = '\n'; p[2] = '\0'; } - else if (p[0] != '\n') { + else if (p[0] != '\n' (strlen(buf) sizeof(buf)-2)) { /* line contained a \0 not at the end */ r = IMAP_MESSAGE_CONTAINSNULL; continue; if the line is too long and there's a NULL further down, the next pass(es) through the loop will get it. --- Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: IMAP works, POP doesn't. Why?
Nevermind... I was doing something really silly... -- Kevin http://www.gnosys.us --- Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Setting ACL and deleting multiple users?
I can use cyradm and delete multiple users just like this: localhost.localdomain setacl [EMAIL PROTECTED] cyrus d localhost.localdomain dm [EMAIL PROTECTED] However, I cannot do the same thing when I connect to the imap port: telnet localhost imap Trying 127.0.0.1... Connected to localhost.localdomain. Escape character is '^]'. * OK host.example.org Cyrus IMAP4 v2.2.8 server ready a login cyrus testing a OK User logged in a setacl [EMAIL PROTECTED] cyrus d a NO Mailbox does not exist So how can I delete all mailboxes that match a particular domain in one shot? Thanks, Adi --- Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html