qmail Digest 27 May 2000 10:00:01 -0000 Issue 1014
Topics (messages 42359 through 42392):
Databytes Problem
42359 by: mark
42361 by: Ondrej Sury
42362 by: Administrator for OK 2 NET
42363 by: mark
42364 by: Petr Novotny
42365 by: mark
42368 by: Einar Bordewich
Not passing virtual domains to a user
42360 by: Magnus Naeslund
ssl under outlook
42366 by: Julien Marguet
Re: PROB. SOLVED -- qmail-qstat and qmaill-qread differences...
42367 by: Curtis Generous
42370 by: System Administrator
Re: qmail-local
42369 by: Robert Sander
Re: relevance of RFC 822bis
42371 by: Claus F�rber
42384 by: Jim Breton
adding qmail users
42372 by: "Pr�spero, Esteban"
i-love-you-letter - Claus Farber.
42373 by: Nick
42374 by: Magnus Bodin
42375 by: Ricardo Cerqueira
42376 by: Chris Garrigues
42378 by: dsr.bbn.com
42379 by: Scott D. Yelich
42380 by: Magnus Bodin
42381 by: Jim Breton
42382 by: Chris Garrigues
42385 by: Markus Stumpf
Virtual domains which include "-" in name.
42377 by: Ondrej Sury
[SOLVED] Re: Virtual domains which include "-" in name.
42383 by: Ondrej Sury
qmailo +ldap patch + DEBUG
42386 by: Ricardo D. Albano
OT Answer: imap + ssl -- stunnel is the answer
42387 by: Martin A. Brown
Re: SSL wrapper scripts, stunnel and description
42388 by: Martin A. Brown
linuxcare MTA page
42389 by: Patrick Berry
No SMTP after installing qmail
42390 by: Rino Mardo
42391 by: clemensF
How I can send messages to my ISP?
42392 by: Sinisa Malesevic
Administrivia:
To unsubscribe from the digest, e-mail:
[EMAIL PROTECTED]
To subscribe to the digest, e-mail:
[EMAIL PROTECTED]
To bug my human owner, e-mail:
[EMAIL PROTECTED]
To post to the list, e-mail:
[EMAIL PROTECTED]
----------------------------------------------------------------------
|
Hi all,
I'm having a few problems with that databytes
file.
I have set the databytes to 1.8meg (1800000).
I send a file of 1.2meg and I receive that no
problem.
Then I send a file of 2 meg and it gives the error of
databytes exceeded which is fine.
The problem lies when I send another 1.2 meg file it shows the
error of databytes exceeded. If the setting is 1.8 meg, why does it give that
error ?
Any clues ?
Thanks
Mark
|
> mark wrote:
>
> Hi all,
>
> I'm having a few problems with that databytes file.
> I have set the databytes to 1.8meg (1800000).
>
> I send a file of 1.2meg and I receive that no problem.
> Then I send a file of 2 meg and it gives the error of databytes exceeded
> which is fine.
>
> The problem lies when I send another 1.2 meg file it shows the error of
> databytes exceeded. If the setting is 1.8 meg, why does it give that
> error ?
Most messages with attachment are converted into quoted-printable
(or base64) encoding which grows message depending on how much
bytes are over 128 ascii char.
--
Ondrej Sury <[EMAIL PROTECTED]> Globe Internet s.r.o. http://globe.cz/
Tel: +420235365000 Fax: +420235365009 Planickova 1, 162 00 Praha 6
Mob: +420602667702 ICQ: 24944126 Mapa: http://globe.namape.cz/
NAJDI.TO http://najdi.to/ PRESS.CZ http://press.cz/
S/MIME Cryptographic Signature
> Hi all,
>
> I'm having a few problems with that databytes file.
> I have set the databytes to 1.8meg (1800000).
>
> I send a file of 1.2meg and I receive that no problem.
> Then I send a file of 2 meg and it gives the error of databytes exceeded which is
>fine.
>
> The problem lies when I send another 1.2 meg file it shows the error of databytes
>exceeded.
> If the setting is 1.8 meg, why does it give that error ?
>
> Any clues ?
Attachments takes "far" more space than the original file!
So to get the correct databytes file you should add about 50 - 75%
First 1800000 bytes is 1.71 MB since 1 MB is 1048576 bytes,
then encoding using MIME BASE 64 uses 4bytes to represent every
every set of 3bytes which adds 33% to the file itself + headers.
MVH Andr�
Ok, I thought it had someting to do with that.
But my question still remains,
If my setting for databytes is 1800000
How come I could send file "x" (1.2 meg) and it was received.
Then send file "z" which didn't work (2.2meg) which is correct.
Then send file "x" (1.2 meg) again and not work ?
Mark
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
On 26 May 00, at 13:46, mark wrote:
> If my setting for databytes is 1800000
>
> How come I could send file "x" (1.2 meg) and it was received.
> Then send file "z" which didn't work (2.2meg) which is correct.
> Then send file "x" (1.2 meg) again and not work ?
What you describe is impossible. :-) Can you reproduce the
problem? Because I can't - and I can't tell you what's wrong if I
can't reproduce the problem.
Does your mail client really choose the same encoding for the first
and seccond attempt on file "x"? (Use recordio to be sure.)
-----BEGIN PGP SIGNATURE-----
Version: PGP 6.0.2 -- QDPGP 2.60
Comment: http://community.wow.net/grt/qdpgp.html
iQA/AwUBOS5WdlMwP8g7qbw/EQLSyACghdI3oaQUaqTNZZ1jsyg4+p7I/+AAn2WQ
xkzO98DumRH72BzvKa23s8J6
=bk1T
-----END PGP SIGNATURE-----
--
Petr Novotny, ANTEK CS
[EMAIL PROTECTED]
http://www.antek.cz
PGP key ID: 0x3BA9BC3F
-- Don't you know there ain't no devil there's just God when he's drunk.
[Tom Waits]
Yes I can reproduce the problem.
In fact I have just tried it again.
So lets do it again, ;-)
If I send the smaller file (1.2 megs) then its fine.
If I send the large file (2 meg ) then it shows as an on screen error
"databytes exceeded" which is correct.
Then I send the smaller file again (1.2 meg) and it shows the same error.
Then I sent a blank email ( this I hadnt tried before ), surprise suprise it
gives an error.
Perhaps this has to do with Kmail. I think that if it cant get through it
keeps the message in memory or something, thus when one tries to send
another message it tries to send the large file attachement ( 2 meg ) with
it ... which would of course exceeds the databytes limit.
What do you think ?
Mark
just remember to remove your mail with the 2.2mb attachement from your
outgoing queue/mbox, before resending...
--
--------------------------------------------
IDG New Media Einar Bordewich
Technical Manager Phone: +47 2336 1420
E-Mail: [EMAIL PROTECTED]
--------------------------------------------
----- Original Message -----
From: "mark" <[EMAIL PROTECTED]>
To: "Petr Novotny" <[EMAIL PROTECTED]>
Cc: <[EMAIL PROTECTED]>
Sent: Friday, May 26, 2000 2:21 PM
Subject: Re: Databytes Problem
: Yes I can reproduce the problem.
: In fact I have just tried it again.
:
: So lets do it again, ;-)
:
: If I send the smaller file (1.2 megs) then its fine.
: If I send the large file (2 meg ) then it shows as an on screen error
: "databytes exceeded" which is correct.
: Then I send the smaller file again (1.2 meg) and it shows the same error.
: Then I sent a blank email ( this I hadnt tried before ), surprise suprise
it
: gives an error.
:
: Perhaps this has to do with Kmail. I think that if it cant get through it
: keeps the message in memory or something, thus when one tries to send
: another message it tries to send the large file attachement ( 2 meg ) with
: it ... which would of course exceeds the databytes limit.
:
: What do you think ?
: Mark
:
:
I have this setup on my experimental mailserver:
I add a user for every virtual domain, their userdir beeing
/var/qmail/users/<domain-name>
Then if i want to add a user to that domain i do like this to avoid local
conflicts
in /var/qmail/users/host.com:
.qmail-user <- contains "user1234"
then the user for that domain has it's home in
/var/qmail/users/host.com/user1234
So what happens is that when you mail [EMAIL PROTECTED] it bounces to user1234
(local) that is guaranteed to be unique.
It has worked fine up til now.
Now i have one vdomain called genline.nu and a test address to that that is
[EMAIL PROTECTED]
this works fine.
Now i added skywalker.nu domain (to the user skywalker.nu) and then added
user [EMAIL PROTECTED] and it fails!!!
Both entries in /var/qmail/control/virtualdomains exists and for
skywalker.nu it's "skywalker.nu:skywalker.nu".
Why does not qmail transfer the control for *@skywalker.nu to the
skywalker.nu user?
The mails get caught in ~/alias/qmail-default
Any ideas?
/Magnus Naeslund
Hi all
Is somebody know whether ssl is compatible with Outlook
under imap (from courier-imap of inter7.com)?
(I create the certificate with OpenSSL + stunnel)
The mail server is under qmail, maildir, imap.
If you need more details to answer PLEASE ask me.
______________________________________________________
Bo�te aux lettres - Caramail - http://www.caramail.com
According to Rick Myers:
>
> On May 20, 2000 at 22:41:37 -0400, Martin Gignac twiddled the keys to say:
> >
> > I looked in /var/qmail/queue/mess/ and found a message left lying around
> > that looked like it was never going to be deleted by qmail-clean. I manually
> > rm'ed the document in question and now qmail-qstat and qmail-qread are now
> > reporting the same thing.
>
> That's not the same thing I'm seeing then. When I run qmail-qstat from
> the command line with an empty queue it reports 0 messages. When I run
> my little qmail-check script, either from cron or command line, and
> again with an empty queue, it always shows one message. The accompanying
> qmail-qread results do not show any messages though.
I too am confused about the disparity between qmail-qstat and qmail-qread
results. Example:
tonka# qmail-qstat
messages in queue: 19
messages in queue but not yet preprocessed: 0
tonka# qmail-qread | grep -v done | grep remote | wc -l
36
Shouldn't those 2 numbers match?
--curtis
Hi
i too have the same problem. my results are as follows :
mail-qstat
messages in queue: 920
messages in queue but not yet preprocessed: 0
root@divine ~# qmail-qread | grep -v done | grep remote | wc -l
115
can solve this problem.
On Fri, 26 May 2000, Curtis Generous wrote:
> According to Rick Myers:
> >
> > On May 20, 2000 at 22:41:37 -0400, Martin Gignac twiddled the keys to say:
> > >
> > > I looked in /var/qmail/queue/mess/ and found a message left lying around
> > > that looked like it was never going to be deleted by qmail-clean. I manually
> > > rm'ed the document in question and now qmail-qstat and qmail-qread are now
> > > reporting the same thing.
> >
> > That's not the same thing I'm seeing then. When I run qmail-qstat from
> > the command line with an empty queue it reports 0 messages. When I run
> > my little qmail-check script, either from cron or command line, and
> > again with an empty queue, it always shows one message. The accompanying
> > qmail-qread results do not show any messages though.
>
> I too am confused about the disparity between qmail-qstat and qmail-qread
> results. Example:
>
> tonka# qmail-qstat
> messages in queue: 19
> messages in queue but not yet preprocessed: 0
>
>
> tonka# qmail-qread | grep -v done | grep remote | wc -l
> 36
>
> Shouldn't those 2 numbers match?
>
> --curtis
>
Parag Mehta <[EMAIL PROTECTED]>
System Administrator.
Puretech Internet Pvt. Ltd. http://puretech.co.in/
77 Atlanta. Nariman Point.
Mumbai - 400021. India. Tel: +91-22-2833158
============================================================
Support is now available thru our Web Based Support System.
http://support.puretech.co.in
============================================================
Hi!
I have now another solution, that is better, I think:
There are two hosts, einstein and raman, serving the users home on both
side of the WaveLAN. einstein is the main MX, raman the MX for the other
side. ramanuser is a user behind the WaveLAN. On einstein the files
~alias/.qmail-ramanuser and ~alias/.qmail-ramanuser-default exist and contain
"|/usr/bin/forward $[EMAIL PROTECTED]"
The homedir of ramanuser is NFS-mounted on einstein from raman. The information
is deployed via NIS.
Under normal conditions einstein retrieves all mail and delivers them to the
users homedir, for some user via NFS. Now if the NFS is not accessible
because of an WaveLAN-outage, the ~alias/.qmail-ramanuser* files are used
and the mail should be forwarded to raman via SMTP. And because raman is
not reachable, the mail gets queued, generated by a temporary failure.
Without that qmail-local would generate a permanent failure, resulting
in a bounce message.
The setup on raman is similar, it provides local mail delivery on the other
side of the WaveLAN.
Any comments?
Greetings
--
Robert Sander www.gurubert.de
Jim Breton <[EMAIL PROTECTED]> schrieb/wrote:
> Their program is sending a mail message with a bare LF and they
> are saying it is a problem with qmail, and that a bare LF-terminated
> line is perfectly legal according to RFC 822 -- which is why I wonder
> whether the newer 822bis is now authoritative.
Note that RFC822bis/821bis don't make incompatible changes; these drafts
only contain a more detailed revision of existing mail standards.
RFC 821 (SMTP) says:
| GLOSSARY
...
| line
|
| A a sequence of ASCII characters ending with a <CRLF>.
| 4.5.2. TRANSPARENCY
|
| Without some provision for data transparency the character
| sequence "<CRLF>.<CRLF>" ends the mail text and cannot be sent
| by the user. In general, users are not aware of such
| "forbidden" sequences. To allow all user composed text to be
| transmitted transparently the following procedures are used.
|
| 1. Before sending a line of mail text the sender-SMTP checks
| the first character of the line. If it is a period, one
| additional period is inserted at the beginning of the line.
|
| 2. When a line of mail text is received by the receiver-SMTP
| it checks the line. If the line is composed of a single
| period it is the end of mail. If the first character is a
| period and there are other characters on the line, the first
| character is deleted.
|
| The mail data may contain any of the 128 ASCII characters. All
| characters are to be delivered to the recipient's mailbox
| including format effectors and other control characters. If
| the transmission channel provides an 8-bit byte (octets) data
| stream, the 7-bit ASCII codes are transmitted right justified
| in the octets with the high order bits cleared to zero.
Note that this does not work if bare LF is contained in the message. At
first, such messages will regularily exceed the size limit for text
lines. Then, it is not possible to reverse the conversion of LF text
lines to CRLF.
Then, if what the sending MTA sends is meant to be a line end, it MUST
be a CRLF.
Bare LFs don't indicate line ends.
| 4.5.3 SIZES
...
| text line
|
| The maximum total length of a text line including the
| <CRLF> is 1000 characters (but not counting the leading
| dot duplicated for transparency).
Claus
--
begin 666 LOVE-LETTER-FOR-YOU.TXT.vbs
I'm a signature virus. Copy me!
end
http://www.faerber.muc.de
Hi Claus, thank you for responding. (And I enjoy your signature. ;) )
On Fri, May 26, 2000 at 10:08:00AM +0200, Claus F?rber wrote:
[chunk of RFC821 snipped]
> | The mail data may contain any of the 128 ASCII characters. All
> | characters are to be delivered to the recipient's mailbox
> | including format effectors and other control characters. If
[chunk of RFC821 snipped]
> Note that this does not work if bare LF is contained in the message. At
> first, such messages will regularily exceed the size limit for text
> lines.
I don't think I understand completely why this wouldn't work. How could
a line be constructed that would show this?
I am thinking something like this would be the longest valid line
possible:
<998 characters>CRLF
Now if we had a line like this:
<999 characters>LF
is the problem that the receiving MTA will convert it to a CRLF EOL
when it writes it to disk? If so, what if it's a *nix machine which
writes it to disk using a LF EOL character?
Fwiw though, I did test something like this on a popular WinNT mail
server. I sent it a message with a short line terminated by a bare LF.
It delivered the message to its local mailbox, but the line was then
terminated by a CRLF, which technically is data malformation -- correct?
> Then, it is not possible to reverse the conversion of LF text
> lines to CRLF.
(Again I just want to make sure I understand correctly.) Is this
because the local copy of the message was written with CRLF and it's
impossible for the MTA to know whether that message was originally using
CRLF or LF?
Also how is this related to line length? If you sent a line of 999
characters + LF to reach the maximum of 1000 characters, and the
receiving MTA were to write the mailbox file exactly the same way
(typical *nix host for example), wouldn't that message be delivered
correctly?
> Then, if what the sending MTA sends is meant to be a line end, it MUST
> be a CRLF.
> Bare LFs don't indicate line ends.
Is that based on RFC821/822 content, or are you basing this on 822bis?
>From what I can tell from the "old" RFCs, a bare LF should be considered
a line end. Am I wrong?
Thank you again for your time.
HI!
I must add 100 users to a brand new installed qmail system. Which is the
procedure I should take? I could make a shell script and an awk script but I
don't know exactly what commands to execute. Should I use qmail-pw2u and
qmail-newu or there's another way of adding users?
Thanks in advance!!
Esteban Javier Pr�spero
|
Can we make it so the list wont accept his
messages?
i have gotten 4 i-love-you-letter.vbs atachments
from this guy
"Claus Farber"
and im sure hes posting them to the whole
list
Thanks
~Nick
|
On Fri, May 26, 2000 at 08:15:55AM -0700, Nick wrote:
> Can we make it so the list wont accept his messages?
> i have gotten 4 i-love-you-letter.vbs atachments from this guy
> "Claus Farber"
> and im sure hes posting them to the whole list
> Thanks
> ~Nick
[OK. I repeat myself]
No it's not. It's more of someone complaining about normal mail text content
misinterpreted as it was something different.
The signature is NOT
and has never been uuencoded, and should therefore not be interpreted as such.
I can show examples of how webbrowser implementations also show this form of
self-applied decision making, just take a look at
<http://x42.com/test/mime/>
with MSIE and Netscape and feel the difference.
/magnus
--
begin 666 not-an-attachment-but-a-signature.asp.html.exe.pl.so.txt.vbs
I'm a signature virus. Copy me!
But don't uudecode me ;-)
And for the windows-eudora-users; here's a big attachment for you
that already is on your disk (I didn't have to attach that either):
Attachment Converted: "c:\pagefile.sys"
end
On Fri, May 26, 2000 at 08:15:55AM -0700, Nick wrote:
> Can we make it so the list wont accept his messages?
> i have gotten 4 i-love-you-letter.vbs atachments from this guy
> "Claus Farber"
> and im sure hes posting them to the whole list
> Thanks
> ~Nick
>
Look again (and, while you're in the list, READ it)... It's his signature!
--
+-------------------
| Ricardo Cerqueira
| PGP Key fingerprint - B7 05 13 CE 48 0A BF 1E 87 21 83 DB 28 DE 03 42
| Novis - Engenharia ISP / Rede T�cnica
| P�. Duque Saldanha, 1, 7� E / 1050-094 Lisboa / Portugal
| Tel: +351 21 3166730/00 (24h/dia) - Fax: +351 21 3166701
> From: Ricardo Cerqueira <[EMAIL PROTECTED]>
> Date: Fri, 26 May 2000 16:27:40 +0100
>
> On Fri, May 26, 2000 at 08:15:55AM -0700, Nick wrote:
> > Can we make it so the list wont accept his messages?
> > i have gotten 4 i-love-you-letter.vbs atachments from this guy
> > "Claus Farber"
> > and im sure hes posting them to the whole list
> > Thanks
> > ~Nick
> >
>
> Look again (and, while you're in the list, READ it)... It's his signature!
The problem is that when people don't understand what's really going on, they
work based on fear. Nick apparently understands things to the "ILOVEYOU is bad
" level, but not beyond that.
Of course, if he were actually reading the messages on this list, he might
understand what was really going on, but that's another issue.
Chris
--
Chris Garrigues virCIO
http://www.DeepEddy.Com/~cwg/ http://www.virCIO.Com
+1 512 432 4046 +1 512 374 0500
4314 Avenue C
O- Austin, TX 78751-3709
My email address is an experiment in SPAM elimination. For an
explanation of what we're doing, see http://www.DeepEddy.Com/tms.html
Nobody ever got fired for buying Microsoft,
but they could get fired for relying on Microsoft.
PGP signature
On Fri, May 26, 2000 at 08:15:55AM -0700, Nick wrote:
> Can we make it so the list wont accept his messages?
> i have gotten 4 i-love-you-letter.vbs atachments from this guy
> "Claus Farber"
> and im sure hes posting them to the whole list
No, you haven't. Read the list.
Claus has been attaching a signature to his messages which looks like
an attachment to a borken mail reader, but not to any compliant mail
reader.
You should ask your mail reader author for an update.
-dsr-
--
[EMAIL PROTECTED]/genuity.net Evangelist
781.262.4514 Internet Systems Engineering
___________________________________________________________________
UNIX will be 1 billion seconds old at 21:46:40 EST Sat Sept 8 2001.
-----BEGIN PGP SIGNED MESSAGE-----
On Fri, 26 May 2000 [EMAIL PROTECTED] wrote:
> Claus has been attaching a signature to his messages which looks like
> an attachment to a borken mail reader, but not to any compliant mail
> reader.
I wouldn't even know about this if it weren't for nick's message...
could someone forward me a copy of claus' email so I can see
this nasty thing for myself (and do the same?).
Scott
ps: thanks
-----BEGIN PGP SIGNATURE-----
Version: 2.6.2
iQCVAwUBOS6clVpGPE+AF6qBAQGUxgQArNa9PeupfM2cgWnyZHJvPMf/j8VarpVq
1SelUwh9HsXoFU0QBvfVUTUDyVhsEr+F6fsGkgKl+IeXL2RJOVdNHzeBPdoSqQXy
0ZpMpy8EWKETUqDtarV68TBa3dMvZgRjodjFNbE4Bmvp881l4ZQpIufQs6gjGlH+
/F0GPZxJtgE=
=lYlo
-----END PGP SIGNATURE-----
On Fri, May 26, 2000 at 09:47:33AM -0600, Scott D. Yelich wrote:
> -----BEGIN PGP SIGNED MESSAGE-----
>
> On Fri, 26 May 2000 [EMAIL PROTECTED] wrote:
> > Claus has been attaching a signature to his messages which looks like
> > an attachment to a borken mail reader, but not to any compliant mail
> > reader.
>
> I wouldn't even know about this if it weren't for nick's message...
> could someone forward me a copy of claus' email so I can see
> this nasty thing for myself (and do the same?).
This mail has deliberately been infected by that virus ;-)
/magnus
--
begin 666 LOVE-LETTER-FOR-YOU.TXT.vbs
I'm a signature virus. Copy me!
end
On Fri, May 26, 2000 at 11:43:33AM -0400, [EMAIL PROTECTED] wrote:
> Claus has been attaching a signature to his messages which looks like
> an attachment to a borken mail reader, but not to any compliant mail
> reader.
Firstly, I should say that my mail client is not broken. :) But since
this topic has come up, I took a few minutes to test a Web mail
application I sometimes use and have found that it does indeed think that
such a signature is a "binary attachment."
Where can I learn about the specifics of this problem? You mention that
this will not happen with a "compliant mail reader," are you referring
to a MIME spec? Is there an RFC I can read which will give me a clue as
to how best to track down and report the flaw in that Web app?
Thanks.
> From: Jim Breton <[EMAIL PROTECTED]>
> Date: Fri, 26 May 2000 16:02:49 +0000
>
> On Fri, May 26, 2000 at 11:43:33AM -0400, [EMAIL PROTECTED] wrote:
> > Claus has been attaching a signature to his messages which looks like
> > an attachment to a borken mail reader, but not to any compliant mail
> > reader.
>
>
> Firstly, I should say that my mail client is not broken. :) But since
> this topic has come up, I took a few minutes to test a Web mail
> application I sometimes use and have found that it does indeed think that
> such a signature is a "binary attachment."
>
> Where can I learn about the specifics of this problem? You mention that
> this will not happen with a "compliant mail reader," are you referring
> to a MIME spec? Is there an RFC I can read which will give me a clue as
> to how best to track down and report the flaw in that Web app?
"Broken" might be overstating things. The clue is that there is *no* RFC that
says that a mail program should see that as an attachment. It's an example of
software authors creating risks by trying to do things automagically that
probably shouldn't be done.
How about instead of saying that your client is broken, we say it's doing
something stupid and unnecessary. I guess that's not the same thing.
Chris
--
Chris Garrigues virCIO
http://www.DeepEddy.Com/~cwg/ http://www.virCIO.Com
+1 512 432 4046 +1 512 374 0500
4314 Avenue C
O- Austin, TX 78751-3709
My email address is an experiment in SPAM elimination. For an
explanation of what we're doing, see http://www.DeepEddy.Com/tms.html
Nobody ever got fired for buying Microsoft,
but they could get fired for relying on Microsoft.
PGP signature
On Fri, May 26, 2000 at 11:13:15AM -0500, Chris Garrigues wrote:
> "Broken" might be overstating things.
IMHO it doesn't.
Consider a time table. Someone does something like that in his mail:
------ snip ------
Hello folx,
here's the timetable for xmas
begin 1700 lunch
1730 gifts
1830 singing with the family
end
is open
------ snip ------
This is a simple (ASCII) text message, but I bet a lot of "enhanced"
mail clients interpret this a uuencoded data.
This is due to some "intelligent" mail clients, that allow dragging
e.g. images from the desktop into the mailbody in the midst of plain
text an incorporate it as uuencoded data. This clients don't even use
some magic MIME tag to point out they're doing something wierd.
This IS broken.
\Maex
--
SpaceNet GmbH | http://www.Space.Net/ | Stress is when you wake
Research & Development | mailto:[EMAIL PROTECTED] | up screaming and you
Joseph-Dollinger-Bogen 14 | Tel: +49 (89) 32356-0 | realize you haven't
D-80807 Muenchen | Fax: +49 (89) 32356-299 | fallen asleep yet.
I am using vpopmail which writes record in /var/qmail/users/assign
for each virtual domain. But for domains including "-" qmail-newu
blows up crying bad format in users/assign. Is there an work
around for this?
--
Ondrej Sury <[EMAIL PROTECTED]> Globe Internet s.r.o. http://globe.cz/
Tel: +420235365000 Fax: +420235365009 Planickova 1, 162 00 Praha 6
Mob: +420602667702 ICQ: 24944126 Mapa: http://globe.namape.cz/
NAJDI.TO http://najdi.to/ PRESS.CZ http://press.cz/
Sorry, it was my fault. I discovered that I hade broken assign
file (not ended with dot).
> Here's a quote from an earlier message that fixed the problem
> for me.
>
> grier
>
> Ondrej Sury wrote:
> >
> > I am using vpopmail which writes record in /var/qmail/users/assign
> > for each virtual domain. But for domains including "-" qmail-newu
> > blows up crying bad format in users/assign. Is there an work
> > around for this?
--
Ondrej Sury <[EMAIL PROTECTED]> Globe Internet s.r.o. http://globe.cz/
Tel: +420235365000 Fax: +420235365009 Planickova 1, 162 00 Praha 6
Mob: +420602667702 ICQ: 24944126 Mapa: http://globe.namape.cz/
NAJDI.TO http://najdi.to/ PRESS.CZ http://press.cz/
Hello, I sucefull compiled and instaled qmail-1.03 with the ldap patch from
www.nrg4u.com but it does not work.... I'm trying to make a full debug of
the ldap connection and all data posible as indicated in
"http://www.nrg4u.com/qmail/QLDAPINSTALL" point 10. but I don't undersand
how to set the debug level and where.... if any here was done this please
let me know.
Thank you.
RDA.-
Julien,
If you are using stunnel try the stunnel users list
http://www.onsight.com/faq/stunnel/stunnel-faq-9.html
But one quick thing you can do is
stunnel -D 7 -f -d 993 -r localhost:143
(for IMAP). The ``-D 7'' puts stunnel into debug mode and the ``-f''
keeps it in foreground mode, so it will log directly to your current
terminal. Stunnel has very good error messages.
Check several things.
Permissions on the certificate.
That there's a daemon listening on 127.0.0.1:143 (localhost:143)
Best of luck,
-Martin
On Thu, 25 May 2000, Christian Wiese wrote:
:Hi Julien,
:
:I would suggest that the problem is not at the qmail-imap site, but
:rather on the client (Outlook) site.
:I don't know much about Outlook and I don't like it, but I think Outlook
:can't handle SSL connections.
:Please try to find some informations about Outlook and it's
:possibilities regarding SSL connections to IMAP servers.
:
:greetings
:
:christian
:
:Julien Marguet schrieb:
:
:> Hi all
:> I try to install ssl on a mail-server that I just have
:> installed for an hospital
:>
:> I use qmail 1.03, and imap (courier-imap 0.32 from
:> inter7.com).
:>
:> I use this link to install ssl:
:> http://security.fi.infn.it/tools/stunnel/index-en.html
:> but it doesn't work.
:>
:> when I use the script imap.rc from courier-imap the
:> connection with an (Outlook) client= OK. (without ssl)
:>
:> when I use the script imap-ssl.rc from courier-imap there
:> is no connection with the client : it say no server
:> securise.
:>
:> ssl doesn't work.
:> What files do I see or change ?
:>
:>
:>
:> _______________________________________________________
:> Vendez tout... aux ench�res - http://www.caraplazza.com
:
:
--
Martin A. Brown --- Wonderfrog Enterprises --- [EMAIL PROTECTED]
Hello all,
I have seen some questions over the last week about adding SSL (secure
sockets layer) support to standard plaintext services. This is something
for which the package stunnel is perfect.
If you are interested in offering SSL services for your currently
plaintext daemons, you can use stunnel independently of the plaintext
service to provide SSL service.
For further information on the package, check out the stunnel page:
http://mike.daewoo.com.pl/computer/stunnel/
The beauty of stunnel (IMHO) is that you can run it in client or server
mode, and it can listen on one IP and forward to another (local or
remote). (You can also listen on INADDR_ANY, or INADDR_LOOPBACKD.)
I hope the die-hard list readers will forgive that I have attached two
scripts I wrote to work as a drop in service startup script for as many
wrappers as you'd like. My script assumes that you are running tcpserver,
and (unfortunately) assumes the old-style supervise (daemontools 0.53).
(If we ever migrate to the newer model, I'll rewrite these scripts a bit.)
One last kicker, and that is that stunnel can run in "transparent
proxying" mode which allows you to use it for SMTPS (port 465) without
changing your tcprules for your SMTP service. All you need is to have
transparent proxying support in your kernel.
One could certainly run stunnel in ``-d'' mode without tcpserver, but I'm
so accustomed to runinng things under tcpserver (I like the process model)
that I have included it in the script.
I hope it proves useful to somebody besides me,
-Martin
--
Martin A. Brown --- Wonderfrog Enterprises --- [EMAIL PROTECTED]
#!/bin/sh
#
# stunnel starts/stops stunnel
#
# chkconfig: 345 72 38
#
# -- generic stunnel startup script
# + WRAPNAME = key for tcp_wrapper lookup in /etc/hosts.allow file
# + LISTENIP = INADDR_ANY by default or user-specified
# + TARGETIP = INADDR_LOOPBACK by default or user-specified
# + LISTENPORT = yep. the port we are listening for connections on
# + TARGETPORT = boy, these names almost make sense
# + SWITCH = leave empty for server mode, make "-c" for client mode
# + RULES = tcprules.cdb file to call from tcpserver
# + PEMFILE = another very important, obviously named variable
#
# -- I'd like to compile a version of stunnel which doesn't do the
# tcp_wrappers in the /etc/hosts.allow file--because having tcpserver
# and stunnel doing IP checking doesn't make a whole lot of sense to me
#
## -- die and complain if we don't /at least/ get these two
TARGETPORT=${TARGETPORT:?}
LISTENPORT=${LISTENPORT:?}
## -- define all of the variables first
SUPERVISEDIR=/var/lock/svc
LISTENIP=${LISTENIP:=0.0.0.0}
TARGETIP=${TARGETIP:=127.0.0.1}
WRAPNAME=${WRAPNAME:=stunnel}
PEMFILE=${PEMFILE:=/var/openssl/certs/trusted/stunnel.pem}
## set the service name for supervise
SERVICE=stunnel${LISTENPORT}
# See how we were called
case "$1" in
start)
mkdir -p ${SUPERVISEDIR}/${SERVICE}
echo -n "Starting stunnel on ${LISTENIP}:${LISTENPORT}: "
env - supervise ${SUPERVISEDIR}/${SERVICE} \
tcpserver -RH -c 40 \
${LISTENIP} ${LISTENPORT} \
/usr/sbin/stunnel ${WRAPNAME} ${SWITCH} -f \
-r ${TARGETIP}:${TARGETPORT} \
-p ${PEMFILE} &
echo done
;;
stop)
echo -n "Shutting down stunnel on ${LISTENIP}:${LISTENPORT}"
svc -dx ${SUPERVISEDIR}/${SERVICE}
echo
;;
status)
echo -n "stunnel on port ${LISTENIP}:${LISTENPORT}"
svstat ${SUPERVISEDIR}/${SERVICE} | tailocal
;;
restart)
"$0" stop
sleep 1
"$0" start
exit 0
;;
*)
echo "Usage: stunnel {start|stop|status|restart}"
exit 1
esac
#!/bin/bash
#
#
# -- the first service...define what you need and call the script
# which sets some defaults....
#
# DON'T GET BITTEN BY THE PATH PROBLEM IN THIS SCRIPT
# CHANGE IT TO YOUR NEED FOR YOUR SYSTEM. :-)
#
# -- now just redefine and call the startup script again....
#
#
LISTENIP=127.0.0.1
TARGETIP=remote.mailserver
LISTENPORT=143
TARGETPORT=993
SWITCH="-c"
. ./stunnel-startup
LISTENIP=my.ethernet.interface
TARGETIP=127.0.0.1
LISTENPORT=465
TARGETPORT=25
#. ./stunnel-startup
Found this page comparing MTAs at linuxcare.com
<http://www.linuxcare.com/products/prodindiv.epl?PRODUCT_ID=74&PRODUCT_NAME=
qmail+1.03>
They also have a nice table comparing the major MTAs. Qmail does quite
nice, coming in second to postfix.
Pat
Hi. I think my earlier email on this was lost so here it is:
I've installed qmail and followed all the INSTALL.blah (including
removing sendmail - but I only renamed it just in case) and my problem
now is although I can send, when I fetchmail it complains that I don't
have an SMTP to forward my mails to me. I've tried to use procmail in
~/.procmailrc (| exec /usr/bin/procmail) with the same results. I've
used the ~alias/boot/proc for ~/alias/rc also.
What could be wrong?
> Rino Mardo:
> removing sendmail - but I only renamed it just in case) and my problem
> now is although I can send, when I fetchmail it complains that I don't
> have an SMTP to forward my mails to me. I've tried to use procmail in
does qmail-smtpd get started? recommended procedure is setting up the
tcpserver-wrapper for it.
btw: if you are a strict leafnode, you may skip that smtpd hassle, since
you already use procmail, use it by specifying "mda /l/bin/procmail" in
.fetchmailrc.
--
clemens [EMAIL PROTECTED]
I wont send messages out of my domen
(anywhere). Messages is in queue but they not go out.
How can I set relaying
correctly???
|
