Re: [vchkpw] MySql load causes bounced mail
On Oct 21, 2004, at 11:17 AM, Jason Wilkinson wrote: We're hitting a wall with our MySql install and our traffic is filling up all available MySql connections. I think I see one possible problem. vdelivermail calls _exit() when running a command in a .qmail file (exit codes 99, 100 and 111). It should really be calling vexit() to give the MySQL lib a chance to close its connections. We could also consider just using atexit() to register functions that will be automatically called at exit, then we don't have to worry about calling vexit instead (which calls vclose). I took a quick look at vchkpw, and it appears to close its database connections, but I can't be sure. Is it possible to have MySQL report which processes/programs opened connections but failed to close them? I know that I can increase my max_connections in MySql...it just seems as if vpopmail should respond with a 4xx response so that valid mail isn't bounced. I know that Tonio has worked on a new chkuser patch that, along with some extra code in vpopmail, will respond with 4xx. Is there a chance that the old chkusr patch had an execution path that resulted in it not closing its connection to MySQL? -- Tom Collins - [EMAIL PROTECTED] QmailAdmin: http://qmailadmin.sf.net/ Vpopmail: http://vpopmail.sf.net/ Info on the Sniffter hand-held Network Tester: http://sniffter.com/
Re: [vchkpw] Mailing list creating with qmailadmin
On Oct 20, 2004, at 4:12 PM, Alexandre Vieira wrote: I think this isn't the right ML to post this but i'm having some trouble with qmailadmin. Everythign work OK but when I try to create a mailing list and click ADD it just goes to the initial qmailadmin domain page and displays in the top No mailing lists to display and doesn't create any mailing list. Anyone experienced this problem? It sounds like ezmlm wasn't installed correctly, or you configured QmailAdmin incorrectly during installation. If the call to ezmlm-make fails, you'll see that sort of error. Take a look at your web server's error log to see if QmailAdmin is reporting any errors. -- Tom Collins - [EMAIL PROTECTED] QmailAdmin: http://qmailadmin.sf.net/ Vpopmail: http://vpopmail.sf.net/ Info on the Sniffter hand-held Network Tester: http://sniffter.com/
Re: [vchkpw] chkuser 2.0
On Oct 19, 2004, at 8:14 PM, Charles Sprickman wrote: The one thing that kind of grabbed people's interest was the flood of connection dropped messages that mysql will log if I enable the log warnings option. On other mysql installations I can leave this on and I just see the occasional error. If I point vpopmail at a db with the logging enabled, it just scrolls errors like mad. Is there any way to find out what program was responsible for creating the connection that was dropped? Can you add additional logging to find out what queries are made on the dropped connections before they get dropped? If there's a pattern, we might be able to track down the offending program and fix it. -- Tom Collins - [EMAIL PROTECTED] QmailAdmin: http://qmailadmin.sf.net/ Vpopmail: http://vpopmail.sf.net/ Info on the Sniffter hand-held Network Tester: http://sniffter.com/
Re: [vchkpw] about smtp auth and vpopmail: MD5 problem
On Oct 17, 2004, at 3:54 PM, Andrea Riela wrote: Now the smtp auth with pass in PLAIN text works fine, in CRAM-MD5 not. Vpopmail 5.4.0 or later? Do you have a clear password for that user in your vpasswd file or database? CRAM-MD5 only works if you have a cleartext password stored -- Tom Collins - [EMAIL PROTECTED] QmailAdmin: http://qmailadmin.sf.net/ Vpopmail: http://vpopmail.sf.net/ Info on the Sniffter hand-held Network Tester: http://sniffter.com/
Re: [vchkpw] about smtp auth
On Oct 15, 2004, at 8:40 AM, Andrea Riela wrote: 250-AUTH LOGIN CRAM-MD5 PLAIN 250-AUTH=LOGIN CRAM-MD5 PLAIN That's an old, outdated patch. Use the other patch mentioned (or the one included in the vpopmail contrib directory). -- Tom Collins - [EMAIL PROTECTED] QmailAdmin: http://qmailadmin.sf.net/ Vpopmail: http://vpopmail.sf.net/ Info on the Sniffter hand-held Network Tester: http://sniffter.com/
Re: [vchkpw] about smtp auth
On Oct 15, 2004, at 9:24 AM, Jeremy Kitchen wrote: /var/qmail/bin/qmail-smtpd nesys.it /usr/local/vpopmail/bin/vchkpw-noroaming /bin/true 21 Change qmail-smtpd to run as the vpopmail user and it should Just Work. But he's using the old patch (it requires a hostname as the first arg to qmail-smtpd) which isn't compatible with vpopmail 5.4.x. Use the fehcom patch. Either the latest version from Erwin's site, or the older one included in vpopmail's contrib directory. -- Tom Collins - [EMAIL PROTECTED] QmailAdmin: http://qmailadmin.sf.net/ Vpopmail: http://vpopmail.sf.net/ Info on the Sniffter hand-held Network Tester: http://sniffter.com/
Re: [vchkpw] vmysql: sql error[3]: No Database Selected
On Oct 15, 2004, at 10:12 AM, Rafael Felix Correa wrote: I use vpopmail 5.4.4. The mysql database that vpopmail connects in located outside this box. 5.4.5 and later should take care of that problem. -- Tom Collins - [EMAIL PROTECTED] QmailAdmin: http://qmailadmin.sf.net/ Vpopmail: http://vpopmail.sf.net/ Info on the Sniffter hand-held Network Tester: http://sniffter.com/
Re: [vchkpw] vpopmail 5.3.16 to 5.4.7
On Oct 13, 2004, at 11:18 AM, csere matyas wrote: my problem is: for example with the old setup i've made a domain, and added some users. with the new binarys i can see the domain, but it sais there are 0 users in it, which is just not true. it seems to be searching for the vpasswd files in the domains directory, which is pretty funny, becouse the older version isnt looking in there. Is the older version perhaps using MySQL? Do you have a copy of the source for 5.3.16? Can you look at config.h to determine how it was configured? Also. config.status should have a line in it (search for recheck) that lists all configuration options. In older versions, vmysql.h contained the login information for MySQL. That's been moved to ~vpopmail/etc/vpopmail.mysql. Also note that instead of --enable-mysql, you'd use --enable-auth-module=mysql. -- Tom Collins - [EMAIL PROTECTED] QmailAdmin: http://qmailadmin.sf.net/ Vpopmail: http://vpopmail.sf.net/ Info on the Sniffter hand-held Network Tester: http://sniffter.com/
Re: [vchkpw] vpopmail 5.3.16 to 5.4.7
On Oct 13, 2004, at 1:31 PM, csere matyas wrote: thanks for the quick reply. i've dug in the mysql db, and found a vpopmail db. (and with strace i see mysql librarys linked to the old binarys). but in the old version there isnt a vpopmail.mysql so thats why i thoght it was cdb. that vmysql.h you are talking about should be in the source tree of the old vpopmail? (which isnt available btw [[= ) Yes, it would be in the old source. Build the new vpopmail with --enable-auth-module=mysql, then edit ~vpopmail/etc/vpopmail.mysql to use the correct username, password and database name. You might be able to strace an old binary (like vuserinfo) to find out what username and password it's using to access the database. -- Tom Collins - [EMAIL PROTECTED] QmailAdmin: http://qmailadmin.sf.net/ Vpopmail: http://vpopmail.sf.net/ Info on the Sniffter hand-held Network Tester: http://sniffter.com/
Re: [vchkpw] a couple of (newbie?) questions
On Oct 11, 2004, at 1:51 AM, Nemir N wrote: Yes, fabulous common sense. Unfortunately, I am in a position where one of my system users needs to get her mail through her shell. It's possible to configure PINE to use IMAP to access a mailbox -- it might be possible to configure whatever email client she wants to use in the shell to connect to the IMAP server on localhost to work with email. -- Tom Collins - [EMAIL PROTECTED] QmailAdmin: http://qmailadmin.sf.net/ Vpopmail: http://vpopmail.sf.net/ Info on the Sniffter hand-held Network Tester: http://sniffter.com/
Re: [vchkpw] Forward not showing in qmailadmin 1.2.3
On Oct 10, 2004, at 3:11 AM, tonix (Antonio Nati) wrote: when you compile with valias enabled, qmail and vpopmail will anyway handle any existing .qmail-alias file. So it may be misleading not to show them. That's a good point. I guess I could have qmailadmin pull aliases from both sources. A question: with valias enabled, will ezmlm list secondary addresses will be created as mysql entry or standard .qmail-files? .qmail-list files associated with ezmlm lists are not stored in MySQL. We rely on ezmlm-make to manage those files (some of which are actually symlinks to files in the list directory). -- Tom Collins - [EMAIL PROTECTED] QmailAdmin: http://qmailadmin.sf.net/ Vpopmail: http://vpopmail.sf.net/ Info on the Sniffter hand-held Network Tester: http://sniffter.com/
Re: [vchkpw] Problem Accessing Domain details from mysql
On Oct 5, 2004, at 10:47 PM, Amit khatri wrote: I tried Adding --enable-mysql-limits to the list of options. But my vpopmail table is still empty. I am unable to see domain details. Any Idea ?? Did you try running vmoddomlimits to set limits into the table? If they don't go in the table, they end up in .qmailadmin-limits files in the domain directory (for the domain) or ~vpopmail/etc (default settings for any domain that doesn't have a .qmailadmin-limits file). -- Tom Collins - [EMAIL PROTECTED] QmailAdmin: http://qmailadmin.sf.net/ Vpopmail: http://vpopmail.sf.net/ Info on the Sniffter hand-held Network Tester: http://sniffter.com/
Re: [vchkpw] Help - Vpopmail users auto-create
On Oct 5, 2004, at 10:29 PM, Matias Lambert (( Osinet )) wrote: I can manual create the domains, I know that I can configure to learn password, but how can I create the account??? Any idea? It might be possible to modify code in vchkpw to create the users upon POP authentication. If you're using Courier-IMAP, it will be more difficult -- you'll have to modify the authvchkpw module. It might be possible to modify vpopmail.c, but you'd end up creating accounts on inbound messages as well. -- Tom Collins - [EMAIL PROTECTED] QmailAdmin: http://qmailadmin.sf.net/ Vpopmail: http://vpopmail.sf.net/ Info on the Sniffter hand-held Network Tester: http://sniffter.com/
Re: [vchkpw] vpopmail user needs a shell (was: Cannot add domain)
On Oct 4, 2004, at 2:44 PM, aichains wrote: As an aside, my understanding was that vpopmail user should have /sbin/nologin as shell (or your flavor's equivalent...). That's incorrect, it can cause problems with maildrop and other programs in .qmail (or .qmail-alias files) that use the SHELL environment variable. If the account doesn't have an encrypted password (!! in the password field of /etc/shadow), then no one will be able to log into it. -- Tom Collins - [EMAIL PROTECTED] QmailAdmin: http://qmailadmin.sf.net/ Vpopmail: http://vpopmail.sf.net/ Info on the Sniffter hand-held Network Tester: http://sniffter.com/
Re: [vchkpw] Problem Accessing Domain details from mysql
On Oct 5, 2004, at 1:49 AM, Amit khatri wrote: I suppose these domain level details should be stored in vpopmail table. But in my case it is showing vpopmail table empty. I don't know why this is happening. I configured vpopmail using following options. ./configure --enable-logging=p --enable-auth-module=mysql --disable-passwd --enable-clear-passwd --disable-many-domains --enable-auth-logging --enable-mysql-logging --enable-valias --enable-domainquotas Add --enable-mysql-limits to that list of options. -- Tom Collins - [EMAIL PROTECTED] QmailAdmin: http://qmailadmin.sf.net/ Vpopmail: http://vpopmail.sf.net/ Info on the Sniffter hand-held Network Tester: http://sniffter.com/
Re: [vchkpw] Qmailadmin return Error: Illegal username when changing password
On Oct 2, 2004, at 12:51 PM, michele wrote: Hi, i've my server with Qmail+Vpopmail+Qmailadmin, all works fine, but when i try to change the password of a vpopmail user via Qmailadmin, i receive the error: Error: Illegal username What's the username you're trying to change? -- Tom Collins - [EMAIL PROTECTED] QmailAdmin: http://qmailadmin.sf.net/ Vpopmail: http://vpopmail.sf.net/ Info on the Sniffter hand-held Network Tester: http://sniffter.com/
Re: [vchkpw] Problem using pw_gid, pw_uid
On Sep 30, 2004, at 1:06 AM, Amit khatri wrote: can anybody tell me that, is their exist any document which can tell me which digit in gid is used for what permission. Looking in the source code, you'll find the following in vpopmail.h /* gid flags */ #define NO_PASSWD_CHNG 0x01 #define NO_POP 0x02 #define NO_WEBMAIL 0x04 #define NO_IMAP0x08 #define BOUNCE_MAIL0x10 #define NO_RELAY 0x20 #define NO_DIALUP 0x40 #define V_USER0 0x080 #define V_USER1 0x100 #define V_USER2 0x200 #define V_USER3 0x400 #define NO_SMTP 0x800 #define QA_ADMIN 0x1000 #define V_OVERRIDE 0x2000 -- Tom Collins - [EMAIL PROTECTED] QmailAdmin: http://qmailadmin.sf.net/ Vpopmail: http://vpopmail.sf.net/ Info on the Sniffter hand-held Network Tester: http://sniffter.com/
Re: [vchkpw] qmail resending mails
Perhaps the list is a subscriber of itself, resulting in a mail loop? What do the headers look like in one of the later copies of the message? What does /var/log/qmail/current show -- any odd error messages? On Sep 30, 2004, at 12:52 AM, o k wrote: the contents of the .qmail-mailing_list_name |/usr/local/bin/ezmlm/ezmlm-reject -ST '/mail/vpopmail/domains/domain_name/mailing_list_name' |/usr/local/bin/ezmlm/ezmlm-send '/mail/vpopmail/domains/domain_name/mailing_list_name' |/usr/local/bin/ezmlm/ezmlm-warn '/mail/vpopmail/domains/domain_name/mailing_list_name' || exit 0 Thanks for help From: Jeremy Kitchen [EMAIL PROTECTED] Reply-To: [EMAIL PROTECTED] To: [EMAIL PROTECTED] Subject: Re: [vchkpw] qmail resending mails Date: Wed, 29 Sep 2004 09:31:51 -0500 On Wednesday 29 September 2004 03:25 am, o k wrote: Thank you very much for help But what do you mean by: .qmail-name, do you mean by name the mailing list name? If so the .qmail-name hasn't inside it the names of the users. Actually, the first line in your reply is not so clear. Many thanks for your help. show us the contents of the .qmail file that is handling this mailing list. -Jeremy -- Jeremy Kitchen ++ Systems Administrator ++ Inter7 Internet Technologies, Inc. [EMAIL PROTECTED] ++ www.inter7.com ++ 866.528.3530 ++ 815.776.9465 int'l kitchen @ #qmail #gentoo on EFnet ++ scriptkitchen.com/qmail GnuPG Key ID: 481BF7E2 ++ scriptkitchen.com/kitchen.asc attach3 _ MSN 8 with e-mail virus protection service: 2 months FREE* http://join.msn.com/?page=features/virus -- Tom Collins - [EMAIL PROTECTED] QmailAdmin: http://qmailadmin.sf.net/ Vpopmail: http://vpopmail.sf.net/ Info on the Sniffter hand-held Network Tester: http://sniffter.com/
Re: [vchkpw] CVS (5.5) version of vpopmail errors and missing files
On Sep 27, 2004, at 9:11 PM, Remo Mattei wrote: Hello guys I tried to install the version of the CVS but I notice a few things: I'm unsure of the stability of the CVS HEAD (5.5.x), but you should be able to pull from the stable-5_4 branch. If you're interested in features from 5.5, then I'd recommend downloading one of the 5.5 releases from SourceForge or check in with Rick Widmer and Ken Jones who have done most of the coding for 5.5. -- Tom Collins - [EMAIL PROTECTED] QmailAdmin: http://qmailadmin.sf.net/ Vpopmail: http://vpopmail.sf.net/ Info on the Sniffter hand-held Network Tester: http://sniffter.com/
Re: [vchkpw] CVS (5.5) version of vpopmail errors and missing files
On Sep 28, 2004, at 8:35 AM, Remo Mattei wrote: It was the 5.4 branch not the 5.5 so you know Remo I'm unsure of the stability of the CVS HEAD (5.5.x), but you should be able to pull from the stable-5_4 branch. --enable-spamassassin is only an option in 5.5.x, so if you have that option, you're not pulling from the stable-5_4 branch. -- Tom Collins - [EMAIL PROTECTED] QmailAdmin: http://qmailadmin.sf.net/ Vpopmail: http://vpopmail.sf.net/ Info on the Sniffter hand-held Network Tester: http://sniffter.com/
Re: [vchkpw] Vpopmail Randomly Ignoring Quotas?
On Sep 24, 2004, at 8:58 AM, [EMAIL PROTECTED] wrote: I've run into a strange situation with vpopmail 1.0.6, where it seems to be ingnoring virtual domain quota limits for some mailboxes. Domain quotas are broken, but user quotas should work fine. What version of vpopmail are you using? 1.0.6 sounds like a QmailAdmin version. Try running vpopmail 5.4.7 -- it improves greatly on the outdated version 5.2.1. -- Tom Collins - [EMAIL PROTECTED] QmailAdmin: http://qmailadmin.sf.net/ Vpopmail: http://vpopmail.sf.net/ Info on the Sniffter hand-held Network Tester: http://sniffter.com/
Re: [vchkpw] Fw: [Courier-imap] chdir username: No such file or directory
On Sep 25, 2004, at 4:41 PM, Jeremy Kister wrote: Even though I'm not convinced it's a vchkpw problem, I'm forwarding here; sorry for the double post for those subscribed to both lists.. courier-imap doesn't use vchkpw -- it has its own version of vchkpw as an auth module. Make sure that you're configuring it to use authvchkpw and nothing else. Perhaps take a look at Bill Shupp's toaster instructions http://shupp.org/toaster/ for installing Courier. -- Tom Collins - [EMAIL PROTECTED] QmailAdmin: http://qmailadmin.sf.net/ Vpopmail: http://vpopmail.sf.net/ Info on the Sniffter hand-held Network Tester: http://sniffter.com/
Re: [vchkpw] Fw: [Courier-imap] chdir username: No such file or directory
On Sep 25, 2004, at 9:00 PM, Jeremy Kister wrote: I've got a hunch that there is an incompatibility between the newer vpopmail and courier's authvchkpw To test your theory, try vpopmail 5.4.0. I know that Michael Bowe worked on the vpopmail code in courier-imap, so I don't see any reason for the latest builds to not work. -- Tom Collins - [EMAIL PROTECTED] QmailAdmin: http://qmailadmin.sf.net/ Vpopmail: http://vpopmail.sf.net/ Info on the Sniffter hand-held Network Tester: http://sniffter.com/
Re: [vchkpw] Quota
On Sep 24, 2004, at 6:02 AM, Edward Neville wrote: How can I limit the domain's quota to X bytes rather than limiting a user's disk as I would prefer to have our customers set up a large number of mail boxes but not letting the domain go over a given size. Vpopmail has domain quotas, but they're broken. Even if/when they do work, they add a lot of load since vdelivermail has to calculate the domain's disk usage every time a message is delivered. I didn't write the original implementation, I don't use them myself, and I'm not particularly interested in finding the problem and fixing it. -- Tom Collins - [EMAIL PROTECTED] QmailAdmin: http://qmailadmin.sf.net/ Vpopmail: http://vpopmail.sf.net/ Info on the Sniffter hand-held Network Tester: http://sniffter.com/
Re: [vchkpw] Patch for problems with valiases and PostgreSQL/MySQL
It should apply to 5.4.7 or 5.4.6. It might even work for any 5.4.x release. On Sep 23, 2004, at 10:20 PM, Remo Mattei wrote: so should I apply this to the 5.4.7 then? Remo - Original Message - From: Tom Collins To: vpopmail list Sent: Thursday, September 23, 2004 10:37 PM Subject: [vchkpw] Patch for problems with valiases and PostgreSQL/MySQL If you're using the valias table with PostgreSQL or MySQL, please take a look at the following patch: http://sourceforge.net/tracker/index.php? func=detailaid=1033801group_id=85937atid=577800 It should make valiases actually work for PostgreSQL (they didn't before now). Also, the old code didn't work if you had Maildir delivery lines in the valias table. If you fall into either of those categories, please try the patch and let me know whether it works for you. -- Tom Collins - [EMAIL PROTECTED] QmailAdmin: http://qmailadmin.sf.net/ Vpopmail: http://vpopmail.sf.net/ Info on the Sniffter hand-held Network Tester: http://sniffter.com/ -- Tom Collins - [EMAIL PROTECTED] QmailAdmin: http://qmailadmin.sf.net/ Vpopmail: http://vpopmail.sf.net/ Info on the Sniffter hand-held Network Tester: http://sniffter.com/
[vchkpw] Vpopmail 5.4.7 released
http://vpopmail.sf.net/ This release contains some minor fixes. I just wanted to push it out the door before I added some beta code related to valiases. ChangeLog: Michael Bowe - Mention in README.mysql that is is possible to create mailboxes by inserting entries directly into the MySQL table. Tom Collins - Don't try to delete dir-control for domain unless users-big-dir is enabled. - Verify user exists before trying to set quota in vsetuserquota(). [984698] - Update cdb/Makefile so you can 'make install' without doing 'make' first. - Fix size comparisons to MAX_PW_X (should be , not =). - Fix possible buffer overflows in vsybase.c. - Have vconvert reset dir_control and increment it for each user added when converting from cdb to MySQL. - If crypt() doesn't support MD5 passwords, fall back to using a valid, non-MD5 salt even if MD5 passwords are enabled. - Fix format string vuln. in vactivedir.c (thanks D4rk Eagle). - Added comment to vqmaillocal.c mentioning that it isn't maintained and probably doesn't work. Makefile no longer installs vqmaillocal.
Re: [vchkpw] Norwegian characters
On Sep 22, 2004, at 1:09 AM, Flavio Curti wrote: On Tue, 21 Sep 2004 11:47:24 -0700, Tom Collins [EMAIL PROTECTED] wrote: I think I kept the original email on this, so I'll take another look at it. Is there enough demand to have this added to vpopmail and QmailAdmin? Is anyone using simple command-line programs to convert from unicode (or 8-bit) domain names to their punycode equivalents? It would certainly make sense for the authentication code (in libvpopmail?) as the end user could use their normal domain name then. As for the ISP, we have to work with the punycode domain anyway (domain register, dns entries, ...) , so it may not be needed... Wouldn't the email client be responsible for converting to punycode before sending an authentication request? I was under the impression that in order to properly convert to punycode, you needed to know the charset the data was sent in. In an authentication context, you won't have that information. I think that it makes sense for QmailAdmin (I'm pretty sure the http client tells the server what charset it used) though. -- Tom Collins - [EMAIL PROTECTED] QmailAdmin: http://qmailadmin.sf.net/ Vpopmail: http://vpopmail.sf.net/ Info on the Sniffter hand-held Network Tester: http://sniffter.com/
Re: [vchkpw] What's vdeloldusers ?
On Sep 22, 2004, at 1:22 AM, Rainer Duffner wrote: vqmaillocal is an abandoned attemtp at creating a qmail-local program that understands Maildir++ quotas. If it's abandoned, it should perhaps be moved out of the install-target, shouldn't it ? In CVS, I've added a ChangeLog entry, removed it from the Makefile and added a comment to the source for the program. The next release won't include that program in the install process. -- Tom Collins - [EMAIL PROTECTED] QmailAdmin: http://qmailadmin.sf.net/ Vpopmail: http://vpopmail.sf.net/ Info on the Sniffter hand-held Network Tester: http://sniffter.com/
Re: [vchkpw] Norwegian characters
On Sep 21, 2004, at 12:41 AM, Andreas H wrote: I have problem with adding domains(or email-addresses) with the Norwegian character æ,ø,å . When I try to add a domain with one of this character I get a Invalid domain name in Vpopmail. Is there any solution to this problem? What should I change to make it verify my characters? This came up on the list about a year ago. Basically, we (the developers) need to make significant changes to vpopmail and qmailadmin to support those extended characters. It isn't an easy task, even with some of the code libraries out there for converting such domains. The problem is that we have to decide on how domain names and email addresses will be stored internally, and then make sure that they're converted to the correct format when used in filenames or displayed to the end user. It would not be a minor undertaking. To get around this, you will have to manually convert the characters (per whatever RFC explains it) and use the 7-bit ASCII version of the domain name when working with vpopmail and qmailadmin. -- Tom Collins - [EMAIL PROTECTED] QmailAdmin: http://qmailadmin.sf.net/ Vpopmail: http://vpopmail.sf.net/ Info on the Sniffter hand-held Network Tester: http://sniffter.com/
Re: [vchkpw] Norwegian characters
On Sep 21, 2004, at 8:38 AM, Flavio Curti wrote: Maybe it would be possible for vpopmail to do this conversion in vpopmail if special characters are detected? I guess that at a basic level, we could start by converting any user inputted domains into their 7-bit punycode format at the beginning of each program, and then using that format from then on. Converting back for display would be a hit or miss type of thing, perhaps done on the fly (so we always use the 7-bit version internally). I think I kept the original email on this, so I'll take another look at it. Is there enough demand to have this added to vpopmail and QmailAdmin? Is anyone using simple command-line programs to convert from unicode (or 8-bit) domain names to their punycode equivalents? -- Tom Collins - [EMAIL PROTECTED] QmailAdmin: http://qmailadmin.sf.net/ Vpopmail: http://vpopmail.sf.net/ Info on the Sniffter hand-held Network Tester: http://sniffter.com/
Re: [vchkpw] Mail delivered to postmaster account
On Sep 14, 2004, at 9:44 PM, Jeremy Kitchen wrote: I apologize for my first statement, I wasn't aware that vpopmail was actually adding delivered-to headers now. It has for some time, it's only recently (within the past year) that it was updated to rewrite the header to simply show the email address (instead of [EMAIL PROTECTED]). -- Tom Collins - [EMAIL PROTECTED] QmailAdmin: http://qmailadmin.sf.net/ Vpopmail: http://vpopmail.sf.net/ Info on the Sniffter hand-held Network Tester: http://sniffter.com/
Re: [vchkpw] retrieve assign file from vpasswd
On Sep 10, 2004, at 3:49 PM, lists wrote: Hello everyone. I am using qmail 1.03 and vpopmail 5.2. I have a lot of virtual domains created and I am having quite a problem. I tried to add a new domain and mismatch a few times the password... for some reason the /var/qmail/users/assign file was emptied. The rcpthosts and morercpthosts are fine though. How can I retrieve all the accounts and domains information from the domain/vpasswd file or the domain/vpasswd.cdb file to the /var/qmail/users/assign file? Is there a script or something I can use for that? Just restore it from a backup. If you don't backup your server (especially /var/qmail/control and /var/qmail/users), then you should start doing so. It will be difficult to recreate it manually. You could go through all directories in ~vpopmail/domains and at least get those inserted, but I can't think of an easy way to recover alias domains. If you still have the users/cdb file, you might be able to extract the data from there to recreate the assign file. Or, take a look at this: On Sep 3, 2004, at 12:55 PM, Kim Gosselin wrote: I have found a script @ http://www.root0.net/script/index.html ( http://www.root0.net/script/assign_cpeator.sh ) It rebuild the assign file if it was damaged. I have use it here and it works fine. -- Tom Collins - [EMAIL PROTECTED] QmailAdmin: http://qmailadmin.sf.net/ Vpopmail: http://vpopmail.sf.net/ Info on the Sniffter hand-held Network Tester: http://sniffter.com/
Re: [vchkpw] Quota Question
On Sep 9, 2004, at 8:42 AM, Matthew Walker wrote: Some of my users have a rather odd quota setting, while others have what looks right. Normal: 1 Odd: 3000,1000C What's up with the second one? I can't find any documentation about that syntax anywhere. Is it valid? And if so, what does it mean. The second one should be 3000S,1000C. S=size, C=count. So the limit is 30,000,000 bytes or 1000 messages, whichever comes first. -- Tom Collins - [EMAIL PROTECTED] QmailAdmin: http://qmailadmin.sf.net/ Vpopmail: http://vpopmail.sf.net/ Info on the Sniffter hand-held Network Tester: http://sniffter.com/
Re: [vchkpw] Quota Question
On Sep 9, 2004, at 10:42 AM, Matthew Walker wrote: QmailAdmin doesn't seem to handle Message Count quotas. At least, my version doesn't, and I'm pretty sure it's got everything turned on. ;) Correct. You might be able to enter 100S,1000C in the quota field and have it processed correctly, but there isn't any native support. I did have one more question. Does vpopmail+mysql properly support per-domain quotas? No, it's broken. It used to cause crashes, now it just doesn't work. -- Tom Collins - [EMAIL PROTECTED] QmailAdmin: http://qmailadmin.sf.net/ Vpopmail: http://vpopmail.sf.net/ Info on the Sniffter hand-held Network Tester: http://sniffter.com/
Re: [vchkpw] Quota Question
On Sep 9, 2004, at 5:50 PM, Matthew Walker wrote: Darn. Any chance of it being supported in the future, or has it just been decided to let that be handled by OS quotas? If you really want it, and can't code it yourself, you'll have to wait until someone else (who can code it) really wants it and has the time to code it. Of, if you have a serious need for it, you could sponsor the feature's development. -- Tom Collins - [EMAIL PROTECTED] QmailAdmin: http://qmailadmin.sf.net/ Vpopmail: http://vpopmail.sf.net/ Info on the Sniffter hand-held Network Tester: http://sniffter.com/
Re: [vchkpw] Silly Qmail (Queue) Syndrome and Spamcontrol Patch
On Sep 7, 2004, at 11:54 PM, Devendra Singh wrote: c) what Anti-Virus and Anti-Spam tools are you using AntiVirus is clamav-0.75.1 and AntiSpam is SpamAssassin-2.63 with patched version of qmail-scanner Qmail-Scanner-1.23st (st patch) from http://xoomer.virgilio.it/j.toribio/qmail-scanner/. This patched version of qmail-scanner has been used to selectively enable only 20% of the domains to have AntiVirus/AntiSpam enabled. I am also using the --sa-reject option to have spam messages with a score higher than sa-delete (score of 16 in my case) to be rejected before the smtp session is closed. I'd probably point the finger at qmail-scanner. It's a major resource hog and starts a perl instance every time a message comes in. I use clamav and SpamAssassin as well, but use qscanq (google for it) and qmail-spamc (included with SpamAssassin) to block viruses and score spam on messages at the qmail-queue stage. Unfortunately, without patching, you won't be able to selectively enable it per domain or have an sa-reject option. You could look at some of the patches Ken Jones of Inter7 has put together to add SpamAssassin integration to vdelivermail. This would offload the spam processing from qmail-smptd, and can be enabled on a per-domain basis. You could then replace qmail-scanner with qscanq to block viruses (for all domains) at the smtpd level. Some hints: - It might me worthwilhe to reduce the incoming-concurrency. Drop it to 30. Any figures less than 80 would cause lot many Servers not to get smtp connect to our Server during peak time of 0100 to 0500 hrs EDT. Maybe not. You need to determine whether a lower concurrency will reduce the amount of time spent on each message and ultimately allow more connections per hour. Once you start hitting virtual memory, all of the current connections will get bogged down. Take a look at how many messages are processed per hour at 100, and then at 80. If the queue is growing and messages aren't getting delivered, there's not much benefit to queueing the message instead of just not accepting the connection. -- Tom Collins - [EMAIL PROTECTED] QmailAdmin: http://qmailadmin.sf.net/ Vpopmail: http://vpopmail.sf.net/ Info on the Sniffter hand-held Network Tester: http://sniffter.com/
Re: [vchkpw] vpopmail/qmail doublebounce issue
On Sep 8, 2004, at 10:24 AM, Tom Harrison wrote: * locals: Messages for mail.ts5.com are delivered locally. * That resulted in error messages of the form: * @4000413decc0152edbf4 starting delivery 24: msg 3794106 to local [EMAIL PROTECTED] @4000413decc015300ca4 status: local 1/10 remote 1/20 @4000413decc015d08a94 delivery 24: failure: user_does_not_exist,_but_will_deliver_to_/home/vpopmail/domains/ ts5.com/postmaster/Maildir// can_not_open_new_email_file_errno=13_file=/home/vpopmail/domains/ ts5.com/postmaster/Maildir/tmp/1094577334.16404.mail.ts5.com,S=3103/ system_error/ @4000413decc015d0b1a4 status: local 0/10 remote 1/20 @4000413decc015d0b974 triple bounce: discarding bounce/3794106 * What does /var/qmail/alias/.qmail-postmaster (or .qmail-default) look like? If mail.ts5.com is in locals, then qmail looks at the files in /var/qmail/alias if there isn't a system account with the name 'postmaster'. You could avoid a lot of this mess by putting ts5.com in /var/qmail/control/doublebouncehost. Or, do what I do and set doublebounceto to 'doublebounce' and set /var/qmail/alias/.qmail-doublebounce to '#'. In other words, ignore double bounces. IMHO, they are 99.999% spam-related and not worth reading. So, delivery of normal mail still works just fine. It is only the internal mail generated as a double-bounce that fails. I stand confused, still. Thanks in advance for helping me see the light on this. Remove mail.ts5.com from virtualdomains (and /var/qmail/users/assign if it's in there). Run ~vpopmail/bin/vaddaliasdomain ts5.com mail.ts5.com. I think that vdelivermail has trouble decoding [EMAIL PROTECTED]. Having mail.ts5.com as an alias domain to ts5.com should solve that problem (making it [EMAIL PROTECTED]). In a typical vpopmail installation, all of the pairs in virtualdomains are identical. By the way, I still have the open question regarding a recommendation for a construct similar to the realrcptto patch, to operate with vpopmail and bounce all this crud BEFORE it crawls into the sytem. Take a look at the chkusr patch http://www.interazioni.it/qmail/. It only works with domains that have catchall set to bounce, but it will block messages at the smtpd level. -- Tom Collins - [EMAIL PROTECTED] QmailAdmin: http://qmailadmin.sf.net/ Vpopmail: http://vpopmail.sf.net/ Info on the Sniffter hand-held Network Tester: http://sniffter.com/
Re: [vchkpw] chaning passwords
On Sep 8, 2004, at 9:01 PM, Alexandre Vieira wrote: Thanks for your input but I wasn't explicit enough. We use a non-browsing services, it's just simple smtp/pop3 with no panels. However, this users have shell access to the server and I was thinking that maybe there were a way to modify passwords with the bin/vchangepw but when i use it as a regular user it gives me the following error (and yes the user exists): Read the notes in the source to the program to learn how to set it up correctly: * Usage Note: * The binary vchangepw is added. I set up another * user account with this binary as shell and uid/gid * identical to vpopmail. Now users can ssh to the box * as this user and change the password remote without * asking me. It's as secure as everything else when the * login is only allowed with ssh, so everything is * crypted. * * If you don't create an account as above, you will need to change * permissions and ownership on vchangepw to suid vpopmail. It should be safe to use -- setuid doesn't work when run under strace, so there's no chance that a user could trace the process to learn a user's password (or, worse yet, the MySQL user/pass). -- Tom Collins - [EMAIL PROTECTED] QmailAdmin: http://qmailadmin.sf.net/ Vpopmail: http://vpopmail.sf.net/ Info on the Sniffter hand-held Network Tester: http://sniffter.com/
Re: [vchkpw] vpopmail netbsd error
On Aug 31, 2004, at 1:30 PM, [EMAIL PROTECTED] wrote: running make install give the error: Try running 'make' first, and then 'make install'. uint32.h should automatically be created during the build process. -- Tom Collins - [EMAIL PROTECTED] QmailAdmin: http://qmailadmin.sf.net/ Vpopmail: http://vpopmail.sf.net/ Info on the Sniffter hand-held Network Tester: http://sniffter.com/
Re: [vchkpw] Crypt incompatibility
On Aug 27, 2004, at 10:11 AM, Jeremy Kister wrote: From the Solaris box: max ./vchkpw.pl Email Address: [EMAIL PROTECTED] Password: asdf test: $1VUyx7YfKO2w - crypt: $1VUyx7YfKO2w Correct Password From the FreeBSD box: penny ./vchkpw.pl Email Address: [EMAIL PROTECTED] Password: asdf test: $125a08DVKgFI - crypt: $1VUyx7YfKO2w Incorrect Password According to my docs for crypt(), '$' is not a valid salt character -- 0-9a-zA-Z./ are the only ones allowed, so using an invalid salt will have unpredictable results. What was used to generate the $1 salt for the original crypted passwords? -- Tom Collins - [EMAIL PROTECTED] QmailAdmin: http://qmailadmin.sf.net/ Vpopmail: http://vpopmail.sf.net/ Info on the Sniffter hand-held Network Tester: http://sniffter.com/
Re: [vchkpw] Crypt incompatibility
On Aug 27, 2004, at 10:33 AM, Jeremy Kister wrote: What was used to generate the $1 salt for the original crypted passwords? your software. ~vpopmail/bin/vadduser [EMAIL PROTECTED] asdf, on Solaris 2.7 sparc vpopmail 5.4.6 Your server's crypt() doesn't support MD5 passwords. You will need to rebuild vpopmail with the --disable-md5-passwords option. If you compiled with clear password support, you might want to use your Perl skills to go through each vpasswd file and replace the current encrypted password with a new one (using a valid salt). If you delete the vpasswd.cdb file afterward, it should get regenerated automatically (try doing a vuserinfo on the postmaster account to see if that triggers regeneration). Sorry about the bug. Thanks for pointing it out to us though. Here's a patch I'm adding to vpopmail to fall back to using a non-MD5 salt if the host's crypt() doesn't handle MD5. --- vpopmail.c 19 Aug 2004 05:42:35 - 1.28.2.7 +++ vpopmail.c 27 Aug 2004 17:55:49 - @@ -606,6 +606,19 @@ tmpstr = crypt(clearpass,salt); if ( tmpstr == NULL ) return(VA_CRYPT_FAILED); +#ifdef MD5_PASSWORDS + /* Make sure this host's crypt supports MD5 passwords. If not, + * fall back on old-style crypt + */ + if (tmpstr[2] != '$') { +salt[0] = randltr(); +salt[1] = randltr(); +salt[2] = 0; +tmpstr = crypt(clearpass,salt); +if ( tmpstr == NULL ) return(VA_CRYPT_FAILED); + } +#endif + strncpy(crypted,tmpstr, ssize); return(VA_SUCCESS); } -- Tom Collins - [EMAIL PROTECTED] QmailAdmin: http://qmailadmin.sf.net/ Vpopmail: http://vpopmail.sf.net/ Info on the Sniffter hand-held Network Tester: http://sniffter.com/
Re: [vchkpw] Crypt incompatibility
On Aug 27, 2004, at 2:29 PM, Jeremy Kister wrote: Here's a patch I'm adding to vpopmail to fall back to using a non-MD5 salt if the host's crypt() doesn't handle MD5. [..] + if (tmpstr[2] != '$') { I know less than nothing about C, but shouldnt that be: 'if (tmpstr[0] == '$') {' ? In an MD5-encrypted password, the salt will start with $1$. If you push that salt into a DES-encrypted password, it will only use the first two characters (and the third will become something other than $). So, the test tells you that what you thought would be an MD5-encrypted password was actually DES-encrypted. A compile-time test is a good idea though -- I'll try to add it as a Feature Request on SourceForge so we don't forget about it. If you have a SF account, feel free to make the request yourself. -- Tom Collins - [EMAIL PROTECTED] QmailAdmin: http://qmailadmin.sf.net/ Vpopmail: http://vpopmail.sf.net/ Info on the Sniffter hand-held Network Tester: http://sniffter.com/
Re: [vchkpw] vchkpw with mysql
On Aug 26, 2004, at 1:02 PM, Brian wrote: I use the smtp-auth patch 0.31 release from http://members.elysium.pl/brush/qmail-smtpd-auth/ it's the newest one and the project is stopped. what can I do ? Use the 0.42 patch from the contrib directory in the vpopmail source. -- Tom Collins - [EMAIL PROTECTED] QmailAdmin: http://qmailadmin.sf.net/ Vpopmail: http://vpopmail.sf.net/ Info on the Sniffter hand-held Network Tester: http://sniffter.com/
Re: [vchkpw] vchkpw with mysql
On Aug 25, 2004, at 4:40 AM, Brian wrote: the request try to create the database .. ?? Upgrade to 5.4.5 or later (it would be best to go to 5.4.6 due to a security fix in that release). At some point in the 5.3.x series, the MySQL code to connect to the database got changed around in a way that could result in the errors you see when MySQL was heavily loaded. The change introduced in 5.4.5 (by Françoi Wautier) uses an improved method. -- Tom Collins - [EMAIL PROTECTED] QmailAdmin: http://qmailadmin.sf.net/ Vpopmail: http://vpopmail.sf.net/ Info on the Sniffter hand-held Network Tester: http://sniffter.com/
Re: [vchkpw] Vpopmail with Clamd
On Aug 25, 2004, at 8:57 AM, Juan Enciso Condeña wrote: Is there a software able of use .qmail-default file for scanning viruses using clamd? I don't want use qmail-scanner. Take a look at qscanq http://www.qscanq.org/. It goes in front of qmail-queue and will block incoming messages that contain viruses. Saves a lot of processing time (since it doesn't queue, scan, and generate a bounce). -- Tom Collins - [EMAIL PROTECTED] QmailAdmin: http://qmailadmin.sf.net/ Vpopmail: http://vpopmail.sf.net/ Info on the Sniffter hand-held Network Tester: http://sniffter.com/
Re: [vchkpw] Re: MySQL logging
On Aug 24, 2004, at 6:19 AM, Maurice Snellen wrote: Have you thought of writing a script in perl and run it in the crontab? I have (although not specifically in perl), but that would require directly interfacing with MySQL and thus exposing the user/password combination in yet another place. If the script is owned by vpopmail (or root), and run in the vpopmail (or root) crontab, then it would have permissions to read the ~vpopmail/etc/vpopmail.mysql file to get the password information. Even if you embedded it in the script, you could make the file readable only by root. -- Tom Collins - [EMAIL PROTECTED] QmailAdmin: http://qmailadmin.sf.net/ Vpopmail: http://vpopmail.sf.net/ Info on the Sniffter hand-held Network Tester: http://sniffter.com/
Re: [vchkpw] smtp-submit support version and patch
On Aug 23, 2004, at 5:26 PM, Dave wrote: Give that the mail systems on these machines are rock solid from a stability perspective, and have had multiple tweaks and other patches made to accompanying packages since installation, not to mention the database format changes for some of the older versions that would be required in the case of an upgrade, I would prefer a diff or patch to insert this functionality into the existing vchkpw code. I can then manually create a patch, or edit the appropriate files and recompile. Here's what you're looking for: http://cvs.sourceforge.net/viewcvs.py/vpopmail/vpopmail/vchkpw.c? r1=1.6r2=1.8 or, a simpler patch from an earlier release that just covers the port 587 stuff: http://cvs.sourceforge.net/viewcvs.py/vpopmail/vpopmail/vchkpw.c? r1=1.3r2=1.4 The CVS interface on SourceForge should help you craft custom patches and be selective with what to include and not include. If your CRAM-MD5 auth isn't working properly, be sure to apply the vchkpw patch from between 1.9 and 1.10. It makes vchkpw's CRAM-MD5 compatible with the latest SMTP AUTH patches (which follow a standard protocol for passing information between qmail-smtpd and vchkpw). If you're using MySQL as a backend though, I highly recommend you go through the painful process of upgrading to 5.4.6 as it has numerous bug fixes over the 5.3.x releases, and closes an SQL-injection vulnerability. It should be an easy upgrade from the 5.3.x servers, I got involved with vpopmail well after 4.9.10, so I don't know much about that release. -- Tom Collins - [EMAIL PROTECTED] QmailAdmin: http://qmailadmin.sf.net/ Vpopmail: http://vpopmail.sf.net/ Info on the Sniffter hand-held Network Tester: http://sniffter.com/
Re: [vchkpw] can login on LDAP / can NOT login on pop3
On Aug 21, 2004, at 6:44 PM, [EMAIL PROTECTED] wrote: in the file /etc/pop3d it reads: AUTHMODULES=authshadow POP3AUTH=LOGIN CRAM-MD5 CRAM-SHA1 POP3AUTH_TLS=LOGIN PLAIN POP3DSTART=YES If you change the first line to say authvchkpw instead of authshadow, that should do the trick. -- Tom Collins - [EMAIL PROTECTED] QmailAdmin: http://qmailadmin.sf.net/ Vpopmail: http://vpopmail.sf.net/ Info on the Sniffter hand-held Network Tester: http://sniffter.com/
Re: [vchkpw] can login on LDAP / can NOT login on pop3
On Aug 21, 2004, at 4:21 PM, [EMAIL PROTECTED] wrote: I had a new server installed with Qmail and I added Vpopmail. Everything works BUT not pop3. With regular Linux user accounts all pop3 works well, IMAP even works for the VirtualPopMail but the POP3 said: Aug 22 01:05:39 mail pop3d: Connection, ip=[:::xx.xx.xx.xx] Aug 22 01:05:39 mail pop3d: Connection, ip=[::: xx.xx.xx.xx] Aug 22 01:05:39 mail pop3d: LOGIN: DEBUG: ip=[::: xx.xx.xx.xx], command=USER Aug 22 01:05:39 mail pop3d: LOGIN: DEBUG: ip=[::: xx.xx.xx.xx], command=PASS Aug 22 01:05:39 mail pop3d: LOGIN: DEBUG: ip=[::: xx.xx.xx.xx], [EMAIL PROTECTED] Aug 22 01:05:39 mail pop3d: authshadow: starting client module Aug 22 01:05:39 mail pop3d: authshadow: REJECT Aug 22 01:05:44 mail pop3d: LOGIN FAILED, ip=[::: xx.xx.xx.xx] I've spend 3 days getting here, but now I'm stuck. Please help I am getting desperate. What did I miss? Are you using Courier-IMAP for IMAP access and qmail-popup for POP access? Are you using vckpw instead of chkpasswd in the run file for qmail-popup? `netstat -lnp | grep 110` to find the process that's listening for POP connections. -- Tom Collins - [EMAIL PROTECTED] QmailAdmin: http://qmailadmin.sf.net/ Vpopmail: http://vpopmail.sf.net/ Info on the Sniffter hand-held Network Tester: http://sniffter.com/
Re: [vchkpw] questions on implementing/converting
On Aug 19, 2004, at 10:47 PM, James Whitt wrote: Second question. We have a lot of domains that resided on our server and due to directory limitations, can not have all the domains reside in ~path/vpopmail/domains. Is there any good solutions that people know of? The only one that we have come up with is to modify the code to add the domain directories into sublevels (ie ~path/vpopmail/domains/a-e/, ~path/vpopmail/domains/f-n, etc). After considering this, I realized that this probably would require a lot of changes in the code which is possible but we're hoping for a shorter time frame to get it up and going. After adding 100 domains, vpopmail will create a directory called 0 in the vpopmail/domains directory and place the next 100 domains in it. You might be able to get away with just mounting different partitions at those directory points. If 100 is too many, you could change MAX_USERS_PER_LEVEL (defined in vauth.h) to a lower number. -- Tom Collins - [EMAIL PROTECTED] QmailAdmin: http://qmailadmin.sf.net/ Vpopmail: http://vpopmail.sf.net/ Info on the Sniffter hand-held Network Tester: http://sniffter.com/
Re: [vchkpw] vpopmail = 5.4.2 (sybase vulnerability) (fwd)
On Aug 19, 2004, at 7:37 AM, Chris Ess wrote: I don't know if this is even relevant anymore (i.e. has been fixed) but this showed up on bugtraq yesterday. Figured I should pass it along, just in case. Sincerely, Chris Ess System Administrator / CDTT (Certified Duct Tape Technician) -- Forwarded message -- Date: 17 Aug 2004 10:44:52 - From: Jérôme ATHIAS [EMAIL PROTECTED] To: [EMAIL PROTECTED] Subject: vpopmail = 5.4.2 (sybase vulnerability) Bug: format string and buffer overflow (sybase) Product: vpopmail = 5.4.2 (sybase vulnerability) Author: Werro [EMAIL PROTECTED] Realease Date : 12/08/04 Risk: Low Vendor status: Vendor is in a big shit :) Reference: http://web-hack.ru/unl0ck/advisories/ Overview: vpopmail is a set of programs for creating and managing multiple virtual domains on a qmail server. Details: Bugs were founded in SyBase. In vsybase.c file. Thanks for sending this. I started addressing the SQL injection vulnerabilities last March with code that made it into the 5.5.0 development release. That code flowed into the 5.4.6 release on June 30th. I had marked that release as development instead of stable, but it's in use by many sites in production, so I'll switch it over to stable today. Vpopmail sites using any SQL backend (i.e., non-cdb sites) should upgrade to the 5.4.6 release to close off the SQL injection vulnerabilities in previous releases. The vulnerabilities made it possible for a remote attacker to insert additional SQL commands into data passed into POP/IMAP login, SMTP AUTH, or a QmailAdmin login. The possible buffer overflow is in the code for adding a user, so it would only be exploitable by an admin. Even so, I've fixed the problem in CVS and the change will be in the next stable release. I've also contacted the publisher of the original report (but have not posted a followup to bugtraq since I'm not a subscriber). -- Tom Collins - [EMAIL PROTECTED] QmailAdmin: http://qmailadmin.sf.net/ Vpopmail: http://vpopmail.sf.net/ Info on the Sniffter hand-held Network Tester: http://sniffter.com/
Re: [vchkpw] Qmail SMTP AUTH + vchkpw on 64 bit...
Could someone with this problem use strace (or ptrace?) to get a trace of what happens when vchkpw is called? It should be as easy as adding: /usr/bin/strace -ff -o /tmp/vchkpw.dump right before /home/vpopmail/bin/vchkpw in the qmail-smtpd/run file. Attempt a SMTP AUTH connection, and then send me a copy of the /tmp/vchkpw.dump file and I'll try to isolate the source of the problem. -- Tom Collins - [EMAIL PROTECTED] QmailAdmin: http://qmailadmin.sf.net/ Vpopmail: http://vpopmail.sf.net/ Info on the Sniffter hand-held Network Tester: http://sniffter.com/
Re: [vchkpw] POP Error: 'vpopmail.users' doesn't exist
On Aug 19, 2004, at 2:09 PM, Fred Colclough wrote: Indeed there is NO vpopmail.users table, since I've set '--disable-many-domains' in vpopmail. So it should be looking in the vpopmail MySql database, which looks like this: Is that a recent change? Did you recompile/install courier-imap after compiling vpopmail with that option? If not, then you should. -- Tom Collins - [EMAIL PROTECTED] QmailAdmin: http://qmailadmin.sf.net/ Vpopmail: http://vpopmail.sf.net/ Info on the Sniffter hand-held Network Tester: http://sniffter.com/
Re: [vchkpw] Is developement still happening?
On Aug 19, 2004, at 12:32 PM, Nicholas Harring wrote: I saw a message earlier today from Tom Collins about 5.4.6, and it got me thinking that things seem to have slowed a lot with development. I see that the last SF update is 5 months ago for 5.5.0. I'd sent some patches in that you mentioned you were interested in, and I'd really, really like to see the features make it out since its a huge hassle saver (the libvpopmail.so stuff), and I'd be more than happy to rework the patches if there was something about them you didn't like. There're also several other interesting looking patches hanging out there unassigned with no updates. Development is still happening, but very slowly. I'm focused on the 5.4 series, and Rick Widmer and Ken Jones have been doing work in 5.5. Check CVS for the current 5.5 version -- it's focused on a vpopmail daemon that PHP scripts can call. I am interested in the dynamically-linked libvpopmail, and spent some time working on changes to the build files to make it happen. Unfortunately, I never got it into the current build. Please let me know what other patches you'd like to see make it into 5.4 and I'll either get them in or comment on why I haven't added them. -- Tom Collins - [EMAIL PROTECTED] QmailAdmin: http://qmailadmin.sf.net/ Vpopmail: http://vpopmail.sf.net/ Info on the Sniffter hand-held Network Tester: http://sniffter.com/
Re: [vchkpw] vpopmail 5.4.5 + spamassassin 2.64 sql user prefrences
On Aug 18, 2004, at 12:30 PM, Nick Bright wrote: and my .qmail-default file contains: | /usr/bin/spamc -U /var/run/spamd.socket | /usr/local/vpopmail/bin/vdelivermail '' bounce-no-mailbox What if you add -u [EMAIL PROTECTED] to the spamc options? -- Tom Collins - [EMAIL PROTECTED] QmailAdmin: http://qmailadmin.sf.net/ Vpopmail: http://vpopmail.sf.net/ Info on the Sniffter hand-held Network Tester: http://sniffter.com/
Re: [vchkpw] Problems migrating to mysql
On Aug 5, 2004, at 5:13 AM, Mark Richardson wrote: The problem is this: After converting vdominfo says that there are 0 users in the domain, the users are in fact in the database but it appears that the field cur_users in the dir_control table isn't updated by vconvert. Can you (or someone else) test this patch and report back? It should increment the count just like vadduser does. I did a quick test with a 5-user domain and it worked. It should also help with getting the other fields of dir_control set right (so a domain with 1000's of users hashes properly). I'm going to add code to properly update dir_control for MySQL-CDB as well. I'll check the changes into CVS and they will be in the next release. diff -u -r1.2.2.1 vconvert.c --- vconvert.c 10 Mar 2004 15:18:50 - 1.2.2.1 +++ vconvert.c 18 Aug 2004 05:01:38 - @@ -188,6 +188,8 @@ int i, colon_count, dir_count; int bFoundDomain = 0; char assign_file[MAX_BUFF]; + uid_t uid; + gid_t gid; snprintf(assign_file, sizeof(assign_file), %s/users/assign, QMAILDIR); if ( (assign_fs=fopen(assign_file, r))==NULL ) { @@ -227,9 +229,13 @@ fclose(assign_fs); vauth_deldomain(domain); +vdel_dir_control(domain); vauth_adddomain(domain); -vget_assign(domain, Dir, sizeof(Dir), NULL, NULL ); +vget_assign(domain, Dir, sizeof(Dir), uid, gid ); +#ifdef USERS_BIG_DIR +open_big_dir (domain, uid, gid); +#endif snprintf(tmpbuf, sizeof(tmpbuf), %s/vpasswd, Dir); fs = fopen(tmpbuf,r); if ( fs == NULL ) return(-1); @@ -241,8 +247,14 @@ continue; } vauth_setpw(pw, domain); +#ifdef USERS_BIG_DIR + next_big_dir (uid, gid); /* increment user count */ +#endif } fclose(fs); +#ifdef USERS_BIG_DIR +close_big_dir (domain, uid, gid); +#endif #endif /* USE_SQL */ return(0); } -- Tom Collins - [EMAIL PROTECTED] QmailAdmin: http://qmailadmin.sf.net/ Vpopmail: http://vpopmail.sf.net/ Info on the Sniffter hand-held Network Tester: http://sniffter.com/
Re: [vchkpw] Problems migrating to mysql
On Aug 17, 2004, at 10:08 PM, Tom Collins wrote: I'm going to add code to properly update dir_control for MySQL-CDB as well. I'll check the changes into CVS and they will be in the next release. Maybe not that easy. It looks like I might have to copy the functions to read/write dir_control for CDB into vconvert. Then I can do a straight conversion (read the old format, write the new format). -- Tom Collins - [EMAIL PROTECTED] QmailAdmin: http://qmailadmin.sf.net/ Vpopmail: http://vpopmail.sf.net/ Info on the Sniffter hand-held Network Tester: http://sniffter.com/
[vchkpw] Re: [toaster] qmailadmin / vpopmail / autorespond 2.0.4 issue, mail loses
On Aug 10, 2004, at 3:40 AM, Eero Volotinen wrote: Looks like that if using qmailadmin with autorespond 2.0.4, if and email that received too many messages with vacation / autoresponder on , is losing mail due to wrong exit level? (99 - stop processing .qmail file) Can you confirm this? I noticed that today. Steve Fulton patched vdelivermail.c to get around this problem. Fixing autorespond is probably a better solution. I can't recall whether this problem is at all related to the larger problem of trying to use a single program to act both as an autoresponder and as a vacation program. I'll hold the patch and try to put it into the version of autorespond in the QmailAdmin SourceForge project. I'm cc'ing this to the vpopmail list to see if anyone would like to comment. my patch: http://www.jlug.fi/~eero/autorespond-2.0.4.vpopmail: diff -u autorespond-2.0.4/autorespond.c autorespond-2.0.4.new/autorespond.c --- autorespond-2.0.4/autorespond.c 2003-08-18 11:34:07.0 +0300 +++ autorespond-2.0.4.new/autorespond.c 2004-08-10 13:28:49.0 +0300 @@ -6,6 +6,7 @@ Patched 2000 by Matthias Henze [EMAIL PROTECTED] Patched 2001 by Brad Dameron [EMAIL PROTECTED] + Patched 2004 by Eero Volotinen [EMAIL PROTECTED] Usage: @@ -32,9 +33,11 @@ the new commandline options are optional by now BD 06/2001 2.0.0 Removed excess code, cleaned up some code +EV 08/2004 Fixed bug with vpopmail MH - Matthias Henze [EMAIL PROTECTED] BD - Brad Dameron [EMAIL PROTECTED] + EV - Eero Volotinen TODO: @@ -694,7 +697,8 @@ } if(countnum) { fprintf(stderr,AUTORESPOND: too many received from [%s]\n,sender); - _exit(99); + // EV: exit with 0, else mail autoresponder loses mail in vpopmail systems. + _exit(0); } sprintf(filename,tmp%u.%u,getpid(),timer); -- Tom Collins - [EMAIL PROTECTED] QmailAdmin: http://qmailadmin.sf.net/ Vpopmail: http://vpopmail.sf.net/ Info on the Sniffter hand-held Network Tester: http://sniffter.com/
Re: [vchkpw] Authentication Problem/Login problem
On Aug 9, 2004, at 5:28 PM, Mattias Björk wrote: Im using thunderbird as my MUA. My user name is kladd Try using the full email address as the user name. -- Tom Collins - [EMAIL PROTECTED] QmailAdmin: http://qmailadmin.sf.net/ Vpopmail: http://vpopmail.sf.net/ Info on the Sniffter hand-held Network Tester: http://sniffter.com/
Re: [vchkpw] SMTP-AUTH fails, POP3 auth works. Mysql, Linux
On Aug 7, 2004, at 5:39 AM, ISP Lists wrote: OK, I've found that it was a client software error where CRAM-MD5 login is advertised first. Pegasus mail wouldn't keep trying to get to plain LOGIN, but The BAT! would fail back from CRAM-MD5 to plain LOGIN and roaming SMTP relay works fine. If you're using an older SMTP AUTH patch, CRAM-MD5 won't work properly. Use the patch that's in the contrib directory of vpopmail 5.4.x instead (and note that you may need to update your qmail-smtpd/run file as well). You really should have CRAM-MD5, since it's the only SMTP AUTH protocol that encrypts the password when sending. Note that you'll also need to enable cleartext passwords in vpopmail for it to work properly. If you can't use CRAM-MD5 for some reason, edit the source to qmail-smtpd and remove it from the text sent to the SMTP client (just search for CRAM-MD5 and it should be easy to find). -- Tom Collins - [EMAIL PROTECTED] QmailAdmin: http://qmailadmin.sf.net/ Vpopmail: http://vpopmail.sf.net/ Info on the Sniffter hand-held Network Tester: http://sniffter.com/
Re: [vchkpw] Bounce Mails Problem [solved]
On Aug 3, 2004, at 11:54 PM, knom wrote: So.. After all.. I found the problem.. I changed the qmail-queue program for the use with spamassassin to a bash script calling spamc and afterwards the original queue. I saw the method at http://sylvestre.ledru.info/howto/howto_qmail_spamassassin.php How do you guys start spamassassin ? via qmail-scanner.. or are there any other ways ? Take a look at qmail-spamc from the SpamAssassin distribution. You might want to check out my modified version: http://tomlogic.com/qmail/qmail-spamc.c Here are my notes on what's different: /* modified version of qmail-spamc.c from SpamAssassin 2.60 * changes made by Tom Collins [EMAIL PROTECTED] - version 2004-06-25 * * Uses hard-coded paths to avoid problems with incorrect PATH environment. * Doesn't scan mail if RELAYCLIENT is set (indicates local, trusted user). * Adds more error reporting to aid in diagnosing configuration problems. * Allows for alternate path for qmail-queue (useful when using in * conjunction with qscanq for ClamAV virus scanning). */ -- Tom Collins - [EMAIL PROTECTED] QmailAdmin: http://qmailadmin.sf.net/ Vpopmail: http://vpopmail.sf.net/ Info on the Sniffter hand-held Network Tester: http://sniffter.com/
Re: [vchkpw] vpopmail pop3 unable to scan $HOME/Maildir
On Jul 28, 2004, at 7:49 PM, Andras Kende wrote: I found a deserted email account with over 70.000 messages (few months of spam) in my vpopmail 5.4.3 mail server on FreeBSD If I try to pop3 these (Outlook, Outlook Express, Mozilla Thudnerbird) The problem is its responding like : Mail Sever responded: unable to scan $HOME/Maildir Pop3 workaround is to not to have more than 1500 messages in the Maildir Same problem happened after a week vacation, had to keep moving messages in and out of the maildir. This would be your pop3 server, not vpopmail. For pop3 pickup, vpopmail is only responsible for authenticating the user. -- Tom Collins - [EMAIL PROTECTED] QmailAdmin: http://qmailadmin.sf.net/ Vpopmail: http://vpopmail.sf.net/ Info on the Sniffter hand-held Network Tester: http://sniffter.com/
Re: [vchkpw] vqregister / send password
On Jul 22, 2004, at 10:54 AM, Rick Romero wrote: phpMember Just does: $result=mysql_fetch_array(mysql_db_query($db_name, SELECT * FROM $tbl_member WHERE login = '$login' )); But that doesn't seem safe to me. What if I enter this for login: fred'; DELETE * FROM vpopmail WHERE username != 'fred Ouch. Be sure to escape the data they provide. Perl provides a nice interface where you use ? in the query, and pass the parameter separately and it automatically escapes it. As for multiple lines in the table, add a timestamp and then use ORDER BY stamp DESC to get the latest. -- Tom Collins - [EMAIL PROTECTED] QmailAdmin: http://qmailadmin.sf.net/ Vpopmail: http://vpopmail.sf.net/ Info on the Sniffter hand-held Network Tester: http://sniffter.com/
Re: [vchkpw] sending/receiving messages to/from Selective Domains
On Jul 22, 2004, at 5:07 PM, Edilmar Alves - Lista wrote: I said about /etc/tcp.smtp and control/rcpthosts because when I had to used non smtp-auth schema, I saved into control/rcpthosts the domains abled to communicate with internal users. Now, with smtp-auth, the users can send/receive to/from anyone. Why not turn off SMTP AUTH? -- Tom Collins - [EMAIL PROTECTED] QmailAdmin: http://qmailadmin.sf.net/ Vpopmail: http://vpopmail.sf.net/ Info on the Sniffter hand-held Network Tester: http://sniffter.com/
Re: [vchkpw] sending/receiving messages to/from Selective Domains
On Jul 22, 2004, at 5:36 PM, Edilmar Alves - Lista wrote: Tom Collins escreveu: On Jul 22, 2004, at 5:07 PM, Edilmar Alves - Lista wrote: I said about /etc/tcp.smtp and control/rcpthosts because when I had to used non smtp-auth schema, I saved into control/rcpthosts the domains abled to communicate with internal users. Now, with smtp-auth, the users can send/receive to/from anyone. Why not turn off SMTP AUTH? Because I have users that connect from other internet providers in many cities, and I don't want to allow open relay or maintain the /etc/tcp.smtp. Sometimes, there are users using dial-up connections, and to maintain /etc/tcp.smtp is hard. I guess I don't understand your original email. It sounded like you were saying: I only want to accept mail for domains in rcpthosts. If that's the case, turn of relaying entirely. You would only have to worry about external users sending email to other external users (@x.com sends to @y.com). I can't think of an easy way to tell qmail: 1) Accept mail for local users [but only from a limited list of external domains?]. 2) Accept mail for this limited list of external domains if a user authenticates with SMTP AUTH. Do I understand correctly that that is what you're trying to do? -- Tom Collins - [EMAIL PROTECTED] QmailAdmin: http://qmailadmin.sf.net/ Vpopmail: http://vpopmail.sf.net/ Info on the Sniffter hand-held Network Tester: http://sniffter.com/
Re: [vchkpw] Encrypted Password
On Jul 21, 2004, at 11:49 AM, Jeremy Kitchen wrote: On Wednesday 21 July 2004 01:02 pm, Joshua Leong wrote: I am using vpopmail-4.9.10, is there any method to change the encrypted password to clear text password? no, it's a one way hash. man crypt You could upgrade to 5.2.2 or 5.4.x and turn on clear passwords and learn passwords. I'm pretty sure that 5.4.x was updated to authenticate the encrypted password, and store the clear-text version if it was good. Otherwise, you'd have to delete all passwords and rely on the first POP session to set the user's password (with the learn passwords feature). -- Tom Collins - [EMAIL PROTECTED] QmailAdmin: http://qmailadmin.sf.net/ Vpopmail: http://vpopmail.sf.net/ Info on the Sniffter hand-held Network Tester: http://sniffter.com/
Re: [vchkpw] good howto
On Jul 15, 2004, at 2:38 AM, Michiels Tom ((Uptime)) wrote: Can somebody point me to a good howto for installing and configuring vpopmail together with squirrelmail/qmail/antispam/antivirus on a Debian machine ? http://shupp.org/toaster/ http://www.pipeline.com.au/staff/mbowe/isp/webmail-server.htm -- Tom Collins - [EMAIL PROTECTED] QmailAdmin: http://qmailadmin.sf.net/ Vpopmail: http://vpopmail.sf.net/ Info on the Sniffter hand-held Network Tester: http://sniffter.com/
Re: [vchkpw] [semi-OT] which is more portable?
On Jul 15, 2004, at 11:31 AM, Jeremy Kitchen wrote: grep vpopmail /etc/passwd | awk -F : '{print $6}' or grep vpopmail /etc/passwd | cut -d':' -f6 How portable is this: X=`cd ~vpopmail; pwd` -- Tom Collins - [EMAIL PROTECTED] QmailAdmin: http://qmailadmin.sf.net/ Vpopmail: http://vpopmail.sf.net/ Info on the Sniffter hand-held Network Tester: http://sniffter.com/
Re: [vchkpw] Strange problem with SMTP AUTH
On Jul 14, 2004, at 5:50 AM, Christian Lerrahn wrote: Can anybody tell me what is happening here? Is it a problem with permissions? If yes, permissions of what file? Make sure your SMTP server is running as the vpopmail user. Make sure qmail-smtpd has the correct SMTP AUTH patch to match your vpopmail installation. At some point leading up to the 5.4 release, we fixed a bug in vchkpw related to CRAM-MD5 SMTP AUTH. But, you need to use the correct (bug-fixed) SMTP AUTH patch to qmail-smtpd to go with it. -- Tom Collins - [EMAIL PROTECTED] QmailAdmin: http://qmailadmin.sf.net/ Vpopmail: http://vpopmail.sf.net/ Info on the Sniffter hand-held Network Tester: http://sniffter.com/
Re: [vchkpw] Mail isnt delivered by vdelivermail!
On Jul 12, 2004, at 5:54 AM, WebKommerz wrote: The setup: In my first tries, i placed the pipe-Filter in the Userdir-.qmail-file (.qmail) which turned into a loop since vdelivermail reprocessed the .qmail ... :) = WRONG PLACE for my filterprogram! Of course i changed it. The filter is now called in the .qmail-user-file (e.g. .qmail-robot) stored in the Domain Dir: /usr/local/vpopmail/domains/flenschat.de/.qmail-robot Contents of the .qmail-robot: |/usr/home/webkommerz.de/cgi-bin/cone/mod_recycle_mail.pl /usr/local/vpopmail/domains/flenschat.de/robot/Maildir/ The Programm filters the incoming Mail (STDIN) and passes it to vdelivermail, if it isnt Spam (perl-snippet): open(XXX,|/usr/local/vpopmail/bin/vdelivermail '' $xMAILDIR) or die $!; print XXX STDIN; close(XXX); That's not the proper way to call vdelivermail. You may think you're saying, Put this email in that Maildir, but what you're really saying is, if you can't find a place to deliver this email, put it in that Maildir. It would be much simpler to look at the exit codes that qmail-local checks for, and redo your .qmail-robot as follows: |/usr/home/webkommerz.de/cgi-bin/cone/mod_recycle_mail.pl /usr/local/vpopmail/domains/flenschat.de/robot/Maildir/ Then, have mod_recycle_mail.pl exit with the code for don't deliver mail if it's spam, and exit with the code for continue processing .qmail file if it's not spam. -- Tom Collins - [EMAIL PROTECTED] QmailAdmin: http://qmailadmin.sf.net/ Vpopmail: http://vpopmail.sf.net/ Info on the Sniffter hand-held Network Tester: http://sniffter.com/
Re: [vchkpw] upgrading 5.3.30 to 5.4.x
On Jul 9, 2004, at 12:08 PM, Charles Sprickman wrote: Out of curiousity, what has changed? My current super-patch-pack for qmail was quite difficult to put together, so I'm a litle hesitant to try and get the newer smtp-auth patches into that mess. Is there any way to continue with the old patch? What exactly has changed on the vpopmail side that breaks the old patch? The method of passing the CRAM-MD5 challenge and response from qmail-smtpd to vchkpw has varied in different releases of the SMTP AUTH patch to qmail-smtpd and the code if vchkpw. Someone, somewhere determined the proper order (based on documentation, perhaps related to the chkpasswd(?) program used on non-vpopmail systems) and the latest (0.42) SMTP AUTH patch and the code in vpopmail 5.4.0 were both fixed. You should be able to apply your super-patch-pack, then unpatch (patch -r?) your original SMTP AUTH patch and then apply the latest patch. And is there anything else I should be aware of when upgrading? Like I said, I didn't see anything major in the changelogs, but I'd still like to get some feedback from anyone who's made the jump to 5.4.x from 5.3.30. Hard to say. We started using an external file (~vpopmail/etc/vpopmail.mysql) to store MySQL settings instead of having them hard-coded in vmysql.h. If you've read through the ChangeLog entries, you should have seen any critical issues. We started supporting valiases in MySQL fully in vpopmail and qmailadmin (so you can replace aliases, forwards and autoresponders in .qmail-alias files with MySQL table entries). -- Tom Collins - [EMAIL PROTECTED] QmailAdmin: http://qmailadmin.sf.net/ Vpopmail: http://vpopmail.sf.net/ Info on the Sniffter hand-held Network Tester: http://sniffter.com/
Re: [vchkpw] chkuser patch
On Jul 7, 2004, at 7:22 PM, Rick Widmer wrote: Should I make a patch with just this feature against 5.4.5? Will someone merge it - or can I? If you can isolate that change, I'll make sure it gets into the 5.4 series. We can make it available for testing first, and then roll it into a release. -- Tom Collins - [EMAIL PROTECTED] QmailAdmin: http://qmailadmin.sf.net/ Vpopmail: http://vpopmail.sf.net/ Info on the Sniffter hand-held Network Tester: http://sniffter.com/
Re: [vchkpw] vpopmail / postgres config issues
On Jul 1, 2004, at 6:50 PM, Darius Wei wrote: Mike Bowe's quick guide to vpop/pg seems fine, although I can fine noplace in the ./configure help or documentation about how to authenticate to the database (the postgres user has a password that I'm never prompted for, nor do I see anything asking for a config file). The vpopmail db exists in the database. Try editing vpgsql.h to set the connection info for the database. -- Tom Collins - [EMAIL PROTECTED] QmailAdmin: http://qmailadmin.sf.net/ Vpopmail: http://vpopmail.sf.net/ Info on the Sniffter hand-held Network Tester: http://sniffter.com/
Re: [vchkpw] Failing logins - mysql issue?
On Jul 1, 2004, at 7:56 PM, Charles Sprickman wrote: Just to add a bit, it certainly looks mysql related. But one thing that's really got me stumped is that my db is showing almost as many update and replace queries as select queries, which seems kind of odd. I'm not creating new users, and the mysql logging is disabled. As far as I can recall, vpopmail is just doing select's right? If you have roaming users (POP before SMTP) enabled, it stores the IP information in a table. Every POP auth will generate an update or replace into that table. I think it also updates a last login timestamp for each user when they authenticate (vuserinfo reports this information). -- Tom Collins - [EMAIL PROTECTED] QmailAdmin: http://qmailadmin.sf.net/ Vpopmail: http://vpopmail.sf.net/ Info on the Sniffter hand-held Network Tester: http://sniffter.com/
Re: [vchkpw] vpopmail installation on Mandrake 10
On Jul 1, 2004, at 5:27 AM, Kaan Ertürk wrote: I fixed this problem by installing newer versions of automake and autoconf. Now I can add/remove domains/pop accounts with vpopmail. But, another problem occurs as qmailadmin doesn't log in! I think this is a serious problem that lots of people got as they wrote on the mail list. Did you compile and install qmailadmin after installing vpopmail? You'll need to in order for it to work. Is the partition that qmailadmin is installed on mounted with the nosuid option (look at /etc/fstab for the word nosuid)? It has to be on a partition that allows suid binaries. -- Tom Collins - [EMAIL PROTECTED] QmailAdmin: http://qmailadmin.sf.net/ Vpopmail: http://vpopmail.sf.net/ Info on the Sniffter hand-held Network Tester: http://sniffter.com/
Re: [vchkpw] Incorrect Time
On Jul 1, 2004, at 6:32 AM, Lucas G. Obredor wrote: he date of the outgoing mail is ok, but the time is totally incorrect, when my clients check for mails on their outlook/eudora,etc, the date of the mail is ok but the time is incorrect, the server time is ok, anyone knows why ??? The 'Date' header is inserted by the sender's email client. If the sender's computer has the wrong time (or the right time and the wrong time zone), then the Date header will be wrong. Other than emailing the person that sent the mail and asking them to fix their computer, there's nothing you can do. -- Tom Collins - [EMAIL PROTECTED] QmailAdmin: http://qmailadmin.sf.net/ Vpopmail: http://vpopmail.sf.net/ Info on the Sniffter hand-held Network Tester: http://sniffter.com/
Re: [vchkpw] vpopmail installation on Mandrake 10
On Jul 1, 2004, at 7:56 AM, Kaan Ertürk wrote: I changed the permissions of qmailadmin to root (I am logged in as root) but no way. Qmailadmin should be owned by vpopmail:vchkpw and have the suid bit set. -- Tom Collins - [EMAIL PROTECTED] QmailAdmin: http://qmailadmin.sf.net/ Vpopmail: http://vpopmail.sf.net/ Info on the Sniffter hand-held Network Tester: http://sniffter.com/
Re: [vchkpw] vpopmail installation on Mandrake 10
On Jun 29, 2004, at 10:53 PM, Kaan Ertürk wrote: I also typed 'libtoolize --force' and the result is: [EMAIL PROTECTED] vpopmail-5.4.5]# libtoolize --force Remember to add `AC_PROG_LIBTOOL' to `configure.in'. Using `AC_PROG_RANLIB' is rendered obsolete by `AC_PROG_LIBTOOL' You should update your `aclocal.m4' by running aclocal. So, what does all this mean? At this point, run aclocal to update the aclocal.m4 file. You should then be able to ./configure make make install. If you don't have automake and autoconf installed, then you could have problems during the build process. If you're going to compile software on that box, you really need to have those tools installed. -- Tom Collins - [EMAIL PROTECTED] QmailAdmin: http://qmailadmin.sf.net/ Vpopmail: http://vpopmail.sf.net/ Info on the Sniffter hand-held Network Tester: http://sniffter.com/
Re: [vchkpw] Question about Dir Control (.dir-control)
On Jun 30, 2004, at 4:13 PM, Brian Feeny wrote: Thanks for answering. I did see that disable-users-big-dir option, so I configured with it. It seems to still do the following though: 1. create .dir-control in the domains directory. 2. complain when removing a domain that it can't delete the dir control. [EMAIL PROTECTED] bin]$ ./vadddomain test.com testcom [EMAIL PROTECTED] bin]$ ./vdeldomain test.com Warning: Failed to delete dir_control for test.com Even though /home/cust/vpopmail/domains/test.com is gone, there is a .dir-control file in /home/cust/vpopmail/domains. I manually deleted this file, but every time I add a new domain it creates this file again. Not sure why ./vdeldomain would be complaining when there wasnt a .dir-control in the first place associated with the domain I was deleting. What version of vpopmail? I thought we took care of that error message (Warning: Failed to delete dir_control for test.com) during the development cycle leading up to 5.4.0. It was due to the domain's directory getting deleted before the dir_control file (for user directories) inside of it. Perhaps someone could look into making a patch to add a --disable-domains-big-dir (or would that be enable?) to disable hashing when creating new domains. It shouldn't be too hard to ifdef out the code responsible for hashing. -- Tom Collins - [EMAIL PROTECTED] QmailAdmin: http://qmailadmin.sf.net/ Vpopmail: http://vpopmail.sf.net/ Info on the Sniffter hand-held Network Tester: http://sniffter.com/
[vchkpw] Vpopmail 5.4.6 released
http://vpopmail.sf.net/ Release Notes: This release is identical to 5.4.5, but with the addition of all patches included in 5.5.0. These patches, related to the database backends, include code to protect against SQL exploits (where user-entered data isn't escaped before placing it in a query). All queries are built with a modified version of sprintf that escapes dangerous characters from strings. 5.5.0 has been out for over 3 months with some people using it in production environments without any reports of problems. Even so, this will be a devel release until others can do more production testing. ChangeLog: Tom Collins - Consolidate table creation code in vmysql.c and vpgsql.c. - Increase SQL_BUF_SIZE from 600 to 2048 for Oracle, Postgres and Sybase. - Add qnprintf() to vpopmail.c for escaping strings in SQL queries. - Use qnprintf() when building queries in vmysql.c, vpgsql.c, voracle.pc, and vsybase.c. - Multiple fixes to vpgsql.c related to freeing PGresults and attempting to access NULL PGresults when reporting errors.
Re: [vchkpw] Question about Dir Control (.dir-control)
On Jun 30, 2004, at 4:18 PM, Ken Jones wrote: Yep. Looks like whoever added the Warning message code needed to ifdef it with the big user dir define. Added to CVS and scheduled for 5.4.7. --- vpopmail.c 26 Jun 2004 02:20:56 - 1.28.2.4 +++ vpopmail.c 1 Jul 2004 05:29:45 - 1.28.2.5 @@ -262,9 +262,11 @@ fprintf(stderr, Failed while attempting to delete domain from the qmail control files\n); } +#ifdef USERS_BIG_DIR if (vdel_dir_control(domain) != 0) { - fprintf (stderr, Failed while attempting to delete domain from dir_control\n); + fprintf (stderr, Warning: Failed to delete dir_control for %s\n, domain); } +#endif /* send a HUP signal to qmail-send process to reread control files */ signal_process(qmail-send, SIGHUP); @@ -379,10 +381,12 @@ */ vdel_limits(domain); +#ifdef USERS_BIG_DIR /* delete the dir control info for this domain */ if (vdel_dir_control(domain) != 0) { fprintf (stderr, Warning: Failed to delete dir_control for %s\n, domain); } +#endif /* Now remove domain from filesystem */ /* if it's a symbolic link just remove the link */ -- Tom Collins - [EMAIL PROTECTED] QmailAdmin: http://qmailadmin.sf.net/ Vpopmail: http://vpopmail.sf.net/ Info on the Sniffter hand-held Network Tester: http://sniffter.com/
Re: [vchkpw] vpopmail installation on Mandrake 10
On Jun 29, 2004, at 4:20 AM, Kaan Ertürk wrote: [EMAIL PROTECTED] vpopmail-5.4.5]# make cd . \ /bin/sh /home/vpopmail-5.4.5/missing --run automake --foreign Makefile configure.in: 89: required file `./_AM_File,.in' not found configure.in: 89: required file `./[$2],.in' not found configure.in: 89: required file `./[$3])].in' not found make: *** [Makefile.in] Error 1 I have no idea, and I am new to Mandrake. Any ideas? Thanks a lot... Type 'libtoolize' in a fresh vpopmail source directory and try again. It sounds like your version of the libtools isn't working properly with the files built by the developer's version. -- Tom Collins - [EMAIL PROTECTED] QmailAdmin: http://qmailadmin.sf.net/ Vpopmail: http://vpopmail.sf.net/ Info on the Sniffter hand-held Network Tester: http://sniffter.com/
Re: [vchkpw] Authentication
On Jun 29, 2004, at 3:58 AM, Anuradha Kalyan wrote: when i tried telnet to the local host as follows, i get the following message. - [EMAIL PROTECTED] root]# telnet 192.168.1.9 25 Trying 192.168.1.9... Connected to 192.168.1.9. Escape character is '^]'. 220 eriva.erivaind.com ESMTP user [EMAIL PROTECTED] 502 unimplemented (#5.5.1) - any idea what has gone wrong ? That's not the way to do SMTP AUTH. Check out this very useful tutorial by Erwin Hoffmann, which includes instructions on testing an SMTP AUTH setup. http://www.fehcom.de/qmail/smtpauth.html Does LWQ include SMTP AUTH patches to qmail-smtpd? Stock qmail doesn't include that feature. -- Tom Collins - [EMAIL PROTECTED] QmailAdmin: http://qmailadmin.sf.net/ Vpopmail: http://vpopmail.sf.net/ Info on the Sniffter hand-held Network Tester: http://sniffter.com/
Re: [vchkpw] vdelivermail traversing all maildirs on server before delivering mail
On Jun 29, 2004, at 5:09 PM, Nick Bright wrote: I will try this, but could you elaborate on why that is/would cause this? Is this 'by design' for a setup with domain limits turned on? It's a poor design that requires vdelivermail to traverse the entire domain to determine whether it's over quota or not. -- Tom Collins - [EMAIL PROTECTED] QmailAdmin: http://qmailadmin.sf.net/ Vpopmail: http://vpopmail.sf.net/ Info on the Sniffter hand-held Network Tester: http://sniffter.com/
Re: [vchkpw] Migration from MySQL to CDB Files
On Jun 25, 2004, at 8:53 AM, Jorge Valdes wrote: I have been having problems with resouce utilization with one of my qmail servers, which basically boils down to reaching the concurrencylimit of tcpserver for my pop3 connections (60) and this brings the server to its knees. The only recourse I have left is to reboot, since even console is not responsive. What happens if you set concurrencylimit to 30? Are people checking their email too often? Is the problem that the POP3 users take a long time to download their email (on dialup)? I have checked my logs, and basically, for each pop3 connection, an instance of mysql is generated to check password for a virtual domain user, this generates swapping. The load average shoots up to 300 and I have seen this go as high as 500. Are you sure there isn't something else happening on the machine that pushes the load up? The server is running Linux RedHat 7.3 and has 512MB RAM and 1GB SWAP, for about 4000 users in 70 virtual domains. It also runs Apache for qmailadmin. Since there are not that many users per domain, less than 100 average, will CDB Files be a better solution to this problem? Can this machine work with more memory? You could add another 512M or even 1G of RAM and alleviate the problem. I'm sorry, but I don't know whether switching to CDB will help with your problem. -- Tom Collins - [EMAIL PROTECTED] QmailAdmin: http://qmailadmin.sf.net/ Vpopmail: http://vpopmail.sf.net/ Info on the Sniffter hand-held Network Tester: http://sniffter.com/
Re: [vchkpw] ack, major problem! numbered subdir incremented too high
On Jun 25, 2004, at 9:23 AM, Paul Theodoropoulos wrote: sooo - nobody knows where the directory 'incrementer' lives? Tom? i have no fix? i'm stuck with going from /u1/domains/0/abc.com to /u1/domains/5/def.com ?? no way to get the system to resume creating new domains under the more logical /u1/domains/1/def.com? i mean, yeah - i can live with it. it's not affecting actual functionality. That's one area of code that I haven't looked at. I really don't know how vpopmail decides where to put new domains. -- Tom Collins - [EMAIL PROTECTED] QmailAdmin: http://qmailadmin.sf.net/ Vpopmail: http://vpopmail.sf.net/ Info on the Sniffter hand-held Network Tester: http://sniffter.com/
Re: [vchkpw] Migration from MySQL to CDB Files
On Jun 25, 2004, at 11:54 AM, Jorge Valdes wrote: I am running qmail-scanner 1.21, spamassassin 2.63(spamd), clamav 0.70, File::Scan 1.15, also I have patched tcpserver to deny connections if the load average is greater than 12 or more than 5 connections from the same IP address. This alleviated the problem temporarily. I would replace qmail-scanner 1.21 with qmail-spamc (for SpamAssassin processing) and qscanq (for ClamAV virus filtering). You would eliminate the Perl overhead of Qmail-Scanner and block incoming viruses at the qmail-smtpd level (cuts down on bounce message generation). I have been extremely happy with the results. My knowledge of process accounting is limited, otherwise I'd try to recommend something that could report on how much processor time and swapping was caused by different programs. If you don't have a lot of account adds/deletes/password-changes, then I'd think that going to CDB would be a good solution. You'll cut down on the memory overhead of MySQL connections, and looking up users in the CDB file should have a lower overhead. What's the maximum number of users you have in a domain? -- Tom Collins - [EMAIL PROTECTED] QmailAdmin: http://qmailadmin.sf.net/ Vpopmail: http://vpopmail.sf.net/ Info on the Sniffter hand-held Network Tester: http://sniffter.com/
Re: [vchkpw] Migration from MySQL to CDB Files
On Jun 25, 2004, at 12:26 PM, Rick Macdougall wrote: How are you running both qscanq and qmail-spamc ? I modified qmail-spamc.c to run qmail-queue-real instead of qmail-queue. It's also modified to not run spamc if RELAYCLIENT is set -- this way, mail sent by my users is not scanned. I renamed /var/qmail/bin/qmail-queue to qmail-queue-real. I built qscanq, but I don't think I installed it. I have QMAILQUEUE set in my qmail-smtpd/run script: export QMAILQUEUE='/package/mail/qscanq/command/qscanq' So, qmail-smtpd runs qscanq (since QMAILQUEUE is set), qscanq runs /var/qmail/bin/qmail-queue (which is actually my qmail-spamc) which in turn runs spamc and the real qmail-queue. You can download my modified qmail-spamc.c here: http://tomlogic.com/qmail/qmail-spamc.c -- Tom Collins - [EMAIL PROTECTED] QmailAdmin: http://qmailadmin.sf.net/ Vpopmail: http://vpopmail.sf.net/ Info on the Sniffter hand-held Network Tester: http://sniffter.com/
[vchkpw] Vpopmail 5.4.5 released
http://vpopmail.sf.net Release Notes: There are significant changes in here for MySQL and Postgres backends. If you had problems with Postgres and roaming users, you should definitely upgrade. If you've had errors stating couldn't create table/database because it already exists with MySQL, you should definitely upgrade. ChangeLog: fernando (at) telemacro (dot) com (dot) br - Patch for vpgsql.c fixes bug with Postgres and roaming users (POP before SMTP). [895501] Françoi Wautier - Fix method used to open database in vauth_open_update of vmysql.c. [967994, 946983] Pit Palme - Show 'delete' as valid option to vdelivermail in docs. [951245] rstml - Hide error message during POP3 auth with Postgres. [915485] Tom Collins - Fix `vuserinfo -l` output, based on Bill Shupp's patch (moved code to a single function call). [961742]
Re: [vchkpw] Missing .qmail-alias files?
On Jun 21, 2004, at 2:49 PM, Charles M. Gerungan wrote: On one server I have domain/.qmail-alias files and on another I only have the .qmail-default file. What did I do differently? The reason I'm asking is, on the server with the .qmail-alias files I have modified the files to allow for maildrop and I'd like to do the same on the other server. If you're using MySQL and enable the 'valias' feature, aliases will be stored in the MySQL database. You'll need to use QmailAdmin 1.2.1 or later to properly access those aliases by the way. -- Tom Collins - [EMAIL PROTECTED] QmailAdmin: http://qmailadmin.sf.net/ Vpopmail: http://vpopmail.sf.net/ Info on the Sniffter hand-held Network Tester: http://sniffter.com/
Re: [vchkpw] Vpopmail + Mysql, can't add domains
On Jun 16, 2004, at 1:26 AM, Charles M. Gerungan wrote: I really don't see why you would have to recompile qmail, and especially qmail-smtpd. qmail-smtp uses an external password checker like vchkpw. qmail-send bounces the message if it can't find a match. The start of the thread indicated that he was having trouble with the chkusr patch to qmail-smtpd -- it was only working for domains with a vpasswd file, even though he was now using the MySQL backend. Based on his description, I indicated that qmail-smtpd (with chkusr) needed to be re-linked to the libvpopmail built with MySQL support. -- Tom Collins - [EMAIL PROTECTED] QmailAdmin: http://qmailadmin.sf.net/ Vpopmail: http://vpopmail.sf.net/ Info on the Sniffter hand-held Network Tester: http://sniffter.com/
Re: [vchkpw] Vpopmail + Mysql, can't add domains
On Jun 15, 2004, at 2:41 PM, James Taylor wrote: Looking though the other directories of domains that DO work, I'm noticing they have a file called vpasswd. I've had trouble getting MySQL to completely work, I thought I had it before but now it's acting funky again with this issue. I think what's happening is Vpopmail is using MySQL to store the information, but then it's not using MySQL to retrieve. It sounds like you originally compiled vpopmail for CDB, then compiled qmail-smtpd with the chkusr patch, and then reconfigured/installed vpopmail for MySQL. You need to rebuild qmail-smtpd so it links to the new libvpopmail that's built for MySQL instead of CDB. -- Tom Collins - [EMAIL PROTECTED] QmailAdmin: http://qmailadmin.sf.net/ Vpopmail: http://vpopmail.sf.net/ Info on the Sniffter hand-held Network Tester: http://sniffter.com/
Re: [vchkpw] vlimit not working
On Jun 13, 2004, at 10:08 AM, ro0ot wrote: Hmm...can the enable-romaing-users log the IP address with the domain name together as one line? So, this will prevent the user coming from same IP with different domain name to be able to send email via the POP-before-SMTP. No. This is a limitation of POP-before-SMTP. Once an IP has been opened up by a POP3 authentication, it stays open for the duration of your settings. The From address of emails aren't cross referenced in any way. -- Tom Collins - [EMAIL PROTECTED] QmailAdmin: http://qmailadmin.sf.net/ Vpopmail: http://vpopmail.sf.net/ Info on the Sniffter hand-held Network Tester: http://sniffter.com/
Re: [vchkpw] off topic qmailadmin suggestion
On Jun 12, 2004, at 9:32 PM, Remo Mattei wrote: Tom I open it with dreamweaer and it work fine now By work fine, do you mean that you were just able to apply the patch, or that that the patch also solved your problem? -- Tom Collins - [EMAIL PROTECTED] QmailAdmin: http://qmailadmin.sf.net/ Vpopmail: http://vpopmail.sf.net/ Info on the Sniffter hand-held Network Tester: http://sniffter.com/
Re: [vchkpw] Problems migrating servers
On Jun 14, 2004, at 11:04 AM, Mark Richardson wrote: [EMAIL PROTECTED] # scp /var/qmail/users/{assign,cdb} new-qmail:/var/qmail/users/ [EMAIL PROTECTED] # scp ~vpopmail/users/vpasswd* new-qmail:/home/vpopmail/users/ You missed some key files in /var/qmail/control. Make sure you've got rcpthosts, morercpthosts, morercpthosts.cdb and virtualdomains. -- Tom Collins - [EMAIL PROTECTED] QmailAdmin: http://qmailadmin.sf.net/ Vpopmail: http://vpopmail.sf.net/ Info on the Sniffter hand-held Network Tester: http://sniffter.com/
Re: [vchkpw] dot qmail processing
On Jun 12, 2004, at 12:55 PM, X-Istence wrote: I don't know where you get your info, but qmailadmin certainly does. Breached# cat .qmail |/usr/bin/true delete Breached# pwd /usr/storage/mail/x-istence.com/blackhole/ Yes, you can blackhole a POP/IMAP account. Note that we had to do it this way, as older versions of vdelivermail couldn't handle comments in .qmail files. I'm updating user.c in qmailadmin 1.2.x to use # delete instead. We keep the delete in there, as that's what qmailadmin uses later to determine that it's a blackhole (code that should be updated as well). Note that in the unreleased 1.2.2, I've added an undocumented feature to the create new forward page. If you enter # as the forwarding address, it will create a blackhole alias. I'll try to get 1.2.2 out soon... -- Tom Collins - [EMAIL PROTECTED] QmailAdmin: http://qmailadmin.sf.net/ Vpopmail: http://vpopmail.sf.net/ Info on the Sniffter hand-held Network Tester: http://sniffter.com/
Re: [vchkpw] dot qmail processing
On Jun 9, 2004, at 5:46 PM, Paul Oehler wrote: Out of curiosity, is this a documented feature? I don't remember ever reading this anywhere. It's in the qmail docs. man dot-qmail It isn't in there explicitly, but it says that lines starting with # are ignored, and that qmail-local will only process .qmail files that aren't empty. -- Tom Collins - [EMAIL PROTECTED] QmailAdmin: http://qmailadmin.sf.net/ Vpopmail: http://vpopmail.sf.net/ Info on the Sniffter hand-held Network Tester: http://sniffter.com/
Re: [vchkpw] problems after upgrading vpomail 5.2.2 to vpopmail 5.4.0
On Jun 9, 2004, at 4:12 PM, Mario Vazquez wrote: I got a patch for horde-passwd to enable crypt-md5 http://article.gmane.org/gmane.comp.horde.sork/1114/ match=passwd+vpopmail If it links to libvpopmail, you need to recompile it after installing vpopmail 5.4.0. If it still doesn't work, post a bug report on vpopmail.sf.net, and (hopefully) one of the developers will find time to look into it. -- Tom Collins - [EMAIL PROTECTED] QmailAdmin: http://qmailadmin.sf.net/ Vpopmail: http://vpopmail.sf.net/ Info on the Sniffter hand-held Network Tester: http://sniffter.com/
[vchkpw] Anyone using 5.5.x in production?
Can anyone report on performance of the MySQL and/or Postgres backends in 5.5.0 or later on a production machine? I made some significant changes related to building SQL queries which should make them more secure. I also fixed some outstanding bugs in Postgres code and consolidated some code in MySQL and Postgres. I'd like to be sure that the new code works before I push it into the 5.4 series. -- Tom Collins - [EMAIL PROTECTED] QmailAdmin: http://qmailadmin.sf.net/ Vpopmail: http://vpopmail.sf.net/ Info on the Sniffter hand-held Network Tester: http://sniffter.com/
Re: [vchkpw] Problem adjusting vpopmail.c in 5.4.4
On Jun 9, 2004, at 8:24 AM, Christopher Tarricone wrote: What I was hoping for was: foo/ Maildir/ courierimapsubscribed new/ cur/ tmp/ .JunkMail/ new/ cur/ tmp/ I have included the source for what I am doing currently and have done in the past. Any help would be appreciated. It's even easier now. Look in the source for this: const char *dirnames[] = {Maildir, Maildir/new, Maildir/cur, Maildir/tmp}; And update it like so: const char *dirnames[] = {Maildir, Maildir/new, Maildir/cur, Maildir/tmp, .JunkMail, .JunkMail/new, .JunkMail/cur, .JunkMail/tmp}; The courierimapsubscribed code should work as included -- consider removing the chdir though so you don't mess up the rest of the code. Also take a look at http://vpopmail.sf.net/. in the patches section I think there's code to copy a skeleton directory for new users. -- Tom Collins - [EMAIL PROTECTED] QmailAdmin: http://qmailadmin.sf.net/ Vpopmail: http://vpopmail.sf.net/ Info on the Sniffter hand-held Network Tester: http://sniffter.com/