qmail Digest 5 Apr 1999 10:00:01 -0000 Issue 601
Topics (messages 23906 through 23921):
AOL Cname lookup failure???
23906 by: xs <[EMAIL PROTECTED]>
23908 by: Keith Burdis <[EMAIL PROTECTED]>
23909 by: Bill Parker <[EMAIL PROTECTED]>
23910 by: Keith Burdis <[EMAIL PROTECTED]>
23911 by: Russell Nelson <[EMAIL PROTECTED]>
MD5 in djb-c?
23907 by: Andre Oppermann <[EMAIL PROTECTED]>
qmail-uce & procmail-fromfilter & stderr
23912 by: "Roland Schneider" <[EMAIL PROTECTED]>
23913 by: "Sam" <[EMAIL PROTECTED]>
IMAP & checkpasswd
23914 by: Jeffrey Meltzer <[EMAIL PROTECTED]>
CNAME problem solved, I think, but another ???
23915 by: Bill Parker <[EMAIL PROTECTED]>
23917 by: Chris Johnson <[EMAIL PROTECTED]>
23919 by: "Reid Sutherland" <[EMAIL PROTECTED]>
Forwarding messages to a unknown host to a pre determinated mail server.
23916 by: Gustavo Zambon Rozatti <[EMAIL PROTECTED]>
23918 by: Chris Johnson <[EMAIL PROTECTED]>
can't find tcpmakectl
23920 by: [EMAIL PROTECTED] (Ed Weinberg)
DNS-induced delay in tcpserver (not normal DNS weenie query...)
23921 by: Jason Haar <[EMAIL PROTECTED]>
Administrivia:
To subscribe to the digest, e-mail:
[EMAIL PROTECTED]
To unsubscribe from the digest, e-mail:
[EMAIL PROTECTED]
To bug my human owner, e-mail:
[EMAIL PROTECTED]
To post to the list, e-mail:
[EMAIL PROTECTED]
----------------------------------------------------------------------
one question tho, is it possible to have more than one route for something
in smtproutes, ie:
aol.com:la-me.mx.aol.com
aol.com:du-mb.mx.aol.com
...
?
end
+-------------------------------------+
|Greg Albrecht KF4MKT [EMAIL PROTECTED]|
|Safari Internet Fort Lauderdale, FL|
|www.safari.net 888-537-9550|
+------L-O-W-E-R--D-O-T--O-R-G--------+
On Sun, 4 Apr 1999, Keith Burdis wrote:
>On Sat 1999-04-03 (14:41), Bill Parker wrote:
>> >
>> >There are a couple of things you can do. One is to patch qmail with one of
>> the
>> >large DNS packet patches, which you'll find on the qmail web site. The other,
>> >easier thing to do is to look up the mail exchangers for aol.com and stick
>> one
>> >of them in your smtproutes file, like so:
>> >
>> >aol.com:yc.mx.aol.com
>> >
>>
>> Ummmm, i looked in controls (and I don't have a smtproutes file), is this
>> where it goes (we need O'Reilly to publish a qmail book which covers all
>> this neat stuff in simple plain english)...<IMO>
>
>Well you're in luck. Russell Nelson is busy with one at the moment. Should be
>out in a few months.
>
>> -Bill
>>
>> p.s. - will smtproutes cause any problems with std mail delivery?
>
>Yes, smtproutes goes in the control directory (man qmail-control). Basically,
>as I understand it, if you list a host or domain in smtproutes qmail will not
>do a DNS lookup to find out where to deliver the mail, it will use the host
>that you specify instead.
>
>So, to get around the fact that AOL returns large DNS packets when qmail does
>an MX lookup, the suggestion was to hardcode one of AOL's mail servers as the
>destination for all aol mail and thereby avoid doing the DNS lookups.
>
>> >Chris
>
> - Keith
>
>--
>Keith Burdis - MSc (Com Sci) - Rhodes University, South Africa
>Email : [EMAIL PROTECTED]
>WWW : http://www.rucus.ru.ac.za/~keith/
>IRC : Panthras JAPH
>
>"Any technology sufficiently advanced is indistinguishable from a perl script"
>
>Standard disclaimer.
>---
>
On Sun 1999-04-04 (11:13), xs wrote:
>
> one question tho, is it possible to have more than one route for something
> in smtproutes, ie:
>
> aol.com:la-me.mx.aol.com
> aol.com:du-mb.mx.aol.com
> ...
> ?
I don't think so. From looking at qmail-remote.c, it appears to stop once it
finds a matching entry.
- Keith
--
Keith Burdis - MSc (Com Sci) - Rhodes University, South Africa
Email : [EMAIL PROTECTED]
WWW : http://www.rucus.ru.ac.za/~keith/
IRC : Panthras JAPH
"Any technology sufficiently advanced is indistinguishable from a perl script"
Standard disclaimer.
---
At 05:32 PM 4/3/99 -0500, you wrote:
>On Sat, Apr 03, 1999 at 02:21:31PM -0800, Bill Parker wrote:
>> Hello All,
>>
>> Apr 3 13:36:19 odie qmail: 923175379.711394 starting delivery 1798:
>> msg 356449 to remote [EMAIL PROTECTED]
>> Apr 3 13:36:19 odie qmail: 923175379.711795 status: local 0/10 remote 1/20
>> Apr 3 13:36:19 odie qmail: 923175379.969619 delivery 1798: deferral:
>> CNAME_look up_failed_temporarily._(#4.4.3)/
>>
>> Is there any way to correct this problem w/o taxing myself to death?
>
>There are a couple of things you can do. One is to patch qmail with one of
the
>large DNS packet patches, which you'll find on the qmail web site. The other,
>easier thing to do is to look up the mail exchangers for aol.com and stick
one
>of them in your smtproutes file, like so:
>
>aol.com:yc.mx.aol.com
>
>From what I see when I issue the following command:
nslookup -query=mx aol.com
I get the following back:
nslookup -query=mx aol.com | more
Server: cache01.ns.uu.net
Address: 198.6.1.2
Non-authoritative answer:
aol.com preference = 15, mail exchanger = ya.mx.aol.com
aol.com preference = 15, mail exchanger = yb.mx.aol.com
aol.com preference = 15, mail exchanger = yc.mx.aol.com
aol.com preference = 15, mail exchanger = yd.mx.aol.com
aol.com preference = 15, mail exchanger = za.mx.aol.com
aol.com preference = 15, mail exchanger = zb.mx.aol.com
aol.com preference = 15, mail exchanger = zc.mx.aol.com
aol.com preference = 15, mail exchanger = zd.mx.aol.com
Authoritative answers can be found from:
aol.com nameserver = DNS-01.NS.aol.com
aol.com nameserver = DNS-02.NS.aol.com
ya.mx.aol.com internet address = 205.188.156.4
ya.mx.aol.com internet address = 205.188.156.5
ya.mx.aol.com internet address = 205.188.156.1
ya.mx.aol.com internet address = 205.188.156.2
ya.mx.aol.com internet address = 205.188.156.3
yb.mx.aol.com internet address = 205.188.156.100
Now, which entry is preferred for the smtproutes file here (or can I just
pick one I like)?
-Bill
On Sun 1999-04-04 (08:55), Bill Parker wrote:
>
> Non-authoritative answer:
> aol.com preference = 15, mail exchanger = ya.mx.aol.com
> aol.com preference = 15, mail exchanger = yb.mx.aol.com
> aol.com preference = 15, mail exchanger = yc.mx.aol.com
> aol.com preference = 15, mail exchanger = yd.mx.aol.com
> aol.com preference = 15, mail exchanger = za.mx.aol.com
> aol.com preference = 15, mail exchanger = zb.mx.aol.com
> aol.com preference = 15, mail exchanger = zc.mx.aol.com
> aol.com preference = 15, mail exchanger = zd.mx.aol.com
>
> Authoritative answers can be found from:
> aol.com nameserver = DNS-01.NS.aol.com
> aol.com nameserver = DNS-02.NS.aol.com
> ya.mx.aol.com internet address = 205.188.156.4
> ya.mx.aol.com internet address = 205.188.156.5
> ya.mx.aol.com internet address = 205.188.156.1
> ya.mx.aol.com internet address = 205.188.156.2
> ya.mx.aol.com internet address = 205.188.156.3
> yb.mx.aol.com internet address = 205.188.156.100
>
> Now, which entry is preferred for the smtproutes file here (or can I just
> pick one I like)?
They all have the same preference so you can just pick one.
- Keith
> -Bill
--
Keith Burdis - MSc (Com Sci) - Rhodes University, South Africa
Email : [EMAIL PROTECTED]
WWW : http://www.rucus.ru.ac.za/~keith/
IRC : Panthras JAPH
"Any technology sufficiently advanced is indistinguishable from a perl script"
Standard disclaimer.
---
xs writes:
>
> one question tho, is it possible to have more than one route for something
> in smtproutes, ie:
>
> aol.com:la-me.mx.aol.com
> aol.com:du-mb.mx.aol.com
Yes. In smtproutes, put:
aol.com:aol.com.example.com
and in the DNS zone for example.com, put:
aol.com IN A [ ip address of la-me.mx.aol.com ]
aol.com IN A [ ip address of du-mb.mx.aol.com ]
--
-russ nelson <[EMAIL PROTECTED]> http://crynwr.com/~nelson
Crynwr supports Open Source(tm) Software| PGPok | There is good evidence
521 Pleasant Valley Rd. | +1 315 268 1925 voice | that freedom is the
Potsdam, NY 13676-3213 | +1 315 268 9201 FAX | cause of world peace.
Russell Nelson wrote:
>
> Russell Nelson wrote:
>
> > Has anyone coded MD5 (message digest 5) in djb-style C?
>
> Coincidentally, Dan published http://pobox.com/~djb/hash127.html a few
> hours before I sent that message.
>
> hash127 is nice, but unless it interoperates with other devices that
> do an MD5 (in particular, Cisco's tacacs protocol, or less particular,
> pop3's APOP), it doesn't do me any good.
Hmm... We have an MD5 in the qmail-ldap patch but it's basically
copied from Open- or FreeBSD, so not in DJB style. But it might
help...
--
Andre
qmail 1.03 + Sam's consolidated antispam-patches on FreeBSD 3.1
I am using this patches now a long time, couple of months ago it
worked fine but after an upgrade (to qmail 1.03 *or* FreeBSD 3 ?)
it wont return any text back when rejecting with procmail-filters.
Since I am now using 4 differen RBL's (rbl,dul,orbs,imrss) this is
confusing and I want to give back the correct explanations.
RBL makes no sense if the customer dont know his provider is listed...
My procmail-fromfilter:
LOGFILE=fromfilter.log
# testing-recipe follows, snipped some lines between
:0
*
{
EXITCODE=100
:0 Wi
| /bin/echo "500 This should be sent back as response (#0.0.0)" >&2
}
Instead of sending this string back to the remote side, it
just gets logged in the procmail.log:
500 This should be sent back as response (#0.0.0)
and the remote-side always gets a 'service unavailable',
same if I dont use the redirect to stderr with '>&2'.
----- Transcript of session follows -----
... while talking to mx.serv.ch.:
>>> MAIL From:<[EMAIL PROTECTED]>
<<< 550 Service unavailable.
554 [EMAIL PROTECTED] Service unavailable
same in the maillog:
Apr 4 19:22:18 <mail.info> zh32 qmail-smtpd: 923246538.918103 4926: DENYMAIL: F
ilter.FROM:_Service_unavailable. relay snipped.com [999.999.9.9]
Tried to find the reason for this by myself in the source but
had no luck (and dont know enough C and Unix-internals too...)
thanks for any pointers.
Roland
On Sun, 4 Apr 1999, Roland Schneider wrote:
> Instead of sending this string back to the remote side, it
> just gets logged in the procmail.log:
==========================
Obviously procmail's doing that. You'll need to check procmail's doc.
Try sending the error message to stdout. Procmails up to 3.11pre7
discarded stdout, and only left stderr alone. I haven't looked at
procmail in a long time, but perhaps the current version handles stderr
differently.
Has anybody been able to modify an imap server to work with checkpasswd
yet? I've been struggling with it, but haven't gotten very far...
Any assistance would be appreciated!
Thanks!
JEFFREY MELTZER Support Manager &
http://icsnet.com Unix Administrator
http://villagenet.com +1 516 218 9090 x103
http://solarisguide.com [EMAIL PROTECTED]
Hello,
I believe I have my CNAME problem with AOL solved, but it will take
a day or two to be certain. On a more difficult note, I have the following
script to stop, start, restart, and status qmail (which was furnished by
inter7.com, good commercial support for qmail IMO):
[billp@odie billp]$ cat /etc/rc.d/init.d/qmail
#!/bin/sh
# Qmail Startup
PROG=qmail # what program are we playing with?
COMMAND=$PROG # command to start $PROG
DIR=/var/lock/$PROG # a directory for supervise to use
LOGDIR=/var/log/$PROG # directory for logs
# Source function library.
INITDIR=/etc/rc.d/init.d # location of initscripts
. $INITDIR/daemontools.functions
# See how we were called.
case "$1" in
start)
echo -n "Starting: "
env - PATH="/var/qmail/bin:/usr/local/bin" \
qmail-start ./Maildir/ splogger qmail &
echo -n "qmail "
env - PATH="/var/qmail/bin:/usr/local/bin" \
tcpserver -H -R -x /etc/tcp.smtp.cdb -c20 -u7791 -g2108 0 smtp \
/var/qmail/bin/qmail-smtpd 2>&1 > /dev/null &
echo -n "smtp "
env - PATH="/var/qmail/bin:/usr/local/bin" \
tcpserver -H -R -b30 -c10 0 pop3 \
/var/qmail/bin/qmail-popup odie.donbest.com \
/bin/checkpassword /var/qmail/bin/qmail-pop3d Maildir &
echo "pop3d"
;;
stop)
echo -n "Stopping: "
killproc qmail-send
echo -n "qmail "
killproc tcpserver
echo "smtp pop"
;;
restart)
$0 stop
$0 start
;;
status)
status qmail
;;
*)
echo "Usage: qmail {start|stop|restart|status}"
exit 1
esac
exit 0
Now the problem I have is when I want to stop or restart qmail, it
calls a procedure called killproc (or a command?!?!). I can kill
qmail-send with a kill <pid of qmail-send>, but can someone suggest
where to get killproc, or a cleaner way of handling this strip?
-Bill
On Sun, Apr 04, 1999 at 03:50:31PM -0700, Bill Parker wrote:
> Hello,
>
> I believe I have my CNAME problem with AOL solved, but it will take
> a day or two to be certain. On a more difficult note, I have the following
> script to stop, start, restart, and status qmail (which was furnished by
> inter7.com, good commercial support for qmail IMO):
>
> [billp@odie billp]$ cat /etc/rc.d/init.d/qmail
> #!/bin/sh
>
> # Qmail Startup
>
> PROG=qmail # what program are we playing with?
> COMMAND=$PROG # command to start $PROG
> DIR=/var/lock/$PROG # a directory for supervise to use
> LOGDIR=/var/log/$PROG # directory for logs
>
> # Source function library.
> INITDIR=/etc/rc.d/init.d # location of initscripts
> . $INITDIR/daemontools.functions
^^^^^^^^^^^^^^^^^^^^^
On my Redhat box, this file is called "functions," not "daemontools.functions."
This is the file that killproc is defined in. You might try changing this line
to:
. $INITDIR/functions
if that's the name of the file on your system.
Chris
Or if you're using a linux distrobution, try changing killproc to killall
Reid Sutherland
Network Administrator
ISYS Technology Inc.
http://www.isys.ca
Fingerprint: 1683 001F A573 B6DF A074 0C96 DBE0 A070 28BE EEA5
-----Original Message-----
From: Chris Johnson <[EMAIL PROTECTED]>
To: Bill Parker <[EMAIL PROTECTED]>
Cc: [EMAIL PROTECTED] <[EMAIL PROTECTED]>
Date: Sunday, April 04, 1999 7:23 PM
Subject: Re: CNAME problem solved, I think, but another ???
>On Sun, Apr 04, 1999 at 03:50:31PM -0700, Bill Parker wrote:
>> Hello,
>>
>> I believe I have my CNAME problem with AOL solved, but it will take
>> a day or two to be certain. On a more difficult note, I have the
following
>> script to stop, start, restart, and status qmail (which was furnished by
>> inter7.com, good commercial support for qmail IMO):
>>
>> [billp@odie billp]$ cat /etc/rc.d/init.d/qmail
>> #!/bin/sh
>>
>> # Qmail Startup
>>
>> PROG=qmail # what program are we playing with?
>> COMMAND=$PROG # command to start $PROG
>> DIR=/var/lock/$PROG # a directory for supervise to use
>> LOGDIR=/var/log/$PROG # directory for logs
>>
>> # Source function library.
>> INITDIR=/etc/rc.d/init.d # location of initscripts
>> . $INITDIR/daemontools.functions
> ^^^^^^^^^^^^^^^^^^^^^
>
>On my Redhat box, this file is called "functions," not
"daemontools.functions."
>This is the file that killproc is defined in. You might try changing this
line
>to:
>
>. $INITDIR/functions
>
>if that's the name of the file on your system.
>
>Chris
Hi, I had just installed a qmail server (couple days) but I need to make it
works by the end of this week, so I would appreciate any help to solve one question I
have.
The server is just working fine in the intranet (it will attend one office of
the company I work for), but the people at this office will also send e-mail to
internet.
All the internet mail is sent by a Lotus Notes server at the HQ of the
company, so my question is: How do I make qmail forward all e-mails to any domain
except my domain to the notes server?
When qmail receives a message to a domain out off mine it tries to look for it
at DNS, but the DNS of this machine doesn't "knows" anything out off my intranet, so I
woul like qmail just forward the message to the Notes server.
Thanks in advance for any help.
P.S. I use fastforward and /etc/aliases.
And sorry for the size of this message and for my poor english :)
On Sun, Apr 04, 1999 at 08:14:01PM -0300, Gustavo Zambon Rozatti wrote:
> Hi, I had just installed a qmail server (couple days) but I need to make it
> works by the end of this week, so I would appreciate any help to solve one
> question I have. The server is just working fine in the intranet (it will
> attend one office of the company I work for), but the people at this office
> will also send e-mail to internet. All the internet mail is sent by a Lotus
> Notes server at the HQ of the company, so my question is: How do I make qmail
> forward all e-mails to any domain except my domain to the notes server? When
> qmail receives a message to a domain out off mine it tries to look for it at
> DNS, but the DNS of this machine doesn't "knows" anything out off my
> intranet, so I woul like qmail just forward the message to the Notes server.
> Thanks in advance for any help.
In control/smtproutes, put:
:name.or.address.of.notes.server
(using the actual name or address of the Notes server).
This will cause qmail-remote to skip any DNS lookups and send anything that
isn't handled locally to your Notes server.
See the qmail-remote man page for more details.
Chris
I am installing open-smtp. I create /etc/smtp.filter.newer and
.older, but I do not seem to set up rules.
When I run age-smtp, the error messages sayes:
./age-smtp: /usr/local/bin/tcpmakectl: No such file or directory
I installed ucspi-tcp-0.84.tar.gz, and open-smtp3.tar.gz, but, that
file does not seem to be on my server.
Did I miss something?
-- Ed Weinberg,
Detel, Inc., An Internet Presence Provider
[EMAIL PROTECTED]
[No siree - this is (probably) some other abnormal DNS weenie query ;-)]
We're behind a firewall and our parent company had their primary DNS server
fail.
Our DNS servers have forwarder entries pointing to theirs, and appear to be
functioning perfectly - except when it comes to sendmail and tcpserver
(hooked into qmail of course)
SMTP connections to our sendmail and qmail servers take over 80sec to return
a banner when connected to _from_ machines on our own LAN (i.e. whose info
is in our DNS - not the downed forwarder). Telnet/FTP/whatever from the same
hosts works fine as always with immediate DNS lookups being reported VIA
TCPD in syslog. All our LAN hosts just have our DNS servers in their
/etc/resolv.conf files.
Once the initial delay is over, sendmail and qmail acts as normal.
Any ideas why this is happening? Using strace I can see sendmail receiving
timeouts from DNS lookups - although I can't see what it's looking up. Being
on the client and doing a DNS lookup (PTR,A,MX) returns successfully
immediately - I can't work out why the downed forwarder DNS server is having
such a hit on these SMTP servers...
Do tcpserver and sendmail do some "special" DNS query that tcpd
(tcpwrappers) doesn't? I don't feel comfortable that an outage on a server
out of my control has affect my network...
[Final note: Their DNS server was just restarted and immediately the delay
disappeared - so this was definitely a DNS problem caused by an interaction
between their DNS server and ours].
Any ideas?
Sendmail-8.9.1a and Qmail-1.03 under RedHat-5.x/Linux-2.0.36.
--
Cheers
Jason Haar
Unix/Network Specialist, Trimble NZ
Phone: +64 3 3391 377 Fax: +64 3 3391 417
