qmail Digest 28 Aug 2000 10:00:01 -0000 Issue 1106

Mon, 28 Aug 2000 02:55:59 -0700 


qmail Digest 28 Aug 2000 10:00:01 -0000 Issue 1106

Topics (messages 47467 through 47488):

smtp-authorization vs pop3-authorisation
        47467 by: Fat Toolz

Re: ESMTP AUTH and qmail
        47468 by: Charles Cazabon
        47470 by: Chin Fang
        47471 by: Sean C Truman

Weird Problems.
        47469 by: Sean C Truman
        47474 by: Eric Cox

Reasonable soft limits
        47472 by: Michael T. Babcock

Clean up syslog for analog
        47473 by: Michael T. Babcock

Re: Off-Topic: Maildirs as folders
        47475 by: Len Budney

where LDAP server
        47476 by: David
        47477 by: Ricardo Cerqueira

header rewrite based on DNS MX record?
        47478 by: J!M
        47479 by: Alexander Pennace

memphis rpm users
        47480 by: Mate Wierdl

help forwarding !!?
        47481 by: Thomas Ackermann
        47482 by: Brett Randall

Problem with relaying.
        47483 by: Thomas Novin
        47486 by: Jamie Heilman

forwarding
        47484 by: Alan Chung
        47485 by: Alan Chung
        47487 by: sen_ml.eccosys.com
        47488 by: Brett Randall

Administrivia:

To unsubscribe from the digest, e-mail:
        [EMAIL PROTECTED]

To subscribe to the digest, e-mail:
        [EMAIL PROTECTED]

To bug my human owner, e-mail:
        [EMAIL PROTECTED]

To post to the list, e-mail:
        [EMAIL PROTECTED]


----------------------------------------------------------------------

 
Hi qmail,
 
I just found out that the authorizing delay is NOT caused by the POP3 daemon (or not longer, after disabling tcpserver ident-service 113) but during the sending of mails. POP3 is now as fast as it was before (over simple cross-link), but the qmail-smtpd takes that lot of time for the authorization. There must be a way to make it check as fast as POP3, isn't it?
 
 
Stef


Kris Kelley <[EMAIL PROTECTED]> wrote:
> 
> My original plan of using something like relay-ctrl for SMTP-after-IMAP fell
> through when I remembered the system I am putting together will use multiple
> load-shared machines, which means the machine handling a user's outgoing
> message may not be the same machine handling his/her IMAP connection.  So, I
> need something that works with SMTP directly, or otherwise doesn't require
> something that might break when multiple servers are involved.

You may still be able to do it.  The tcprules .cdb file is generated/updated
atomically, so why not share a single copy of it among your SMTP servers?
Have relay-ctrl share a directory across the POP3 servers, putting their
entries in a common directory, and updating the same .cdb file.  Then it should
work fine, no matter how the connections get distributed.  Of course, there's
slightly higher risk due to having the NFS server which hosts this
directory and .cdb file as a single point of failure.

Charles
-- 
--------------------------------------------------------------
Charles Cazabon                           <[EMAIL PROTECTED]>
QCC Communications Corporation                   Saskatoon, SK
My opinions do not necessarily represent those of my employer.
--------------------------------------------------------------



> You may still be able to do it.  The tcprules .cdb file is generated/updated
> atomically, so why not share a single copy of it among your SMTP servers?
> Have relay-ctrl share a directory across the POP3 servers, putting their
> entries in a common directory, and updating the same .cdb file.  Then it should
> work fine, no matter how the connections get distributed.  Of course, there's
> slightly higher risk due to having the NFS server which hosts this
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
> directory and .cdb file as a single point of failure.
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^

To avoid this potential trouble, rsync + openssh - NFS

Regards,

Chin Fang
[EMAIL PROTECTED]

> 
> Charles
> -- 
> --------------------------------------------------------------
> Charles Cazabon                           <[EMAIL PROTECTED]>
> QCC Communications Corporation                   Saskatoon, SK
> My opinions do not necessarily represent those of my employer.
> --------------------------------------------------------------
> 




If you are doing load sharing between machines. then your best bet is to use
the ucspi-mysql.patch That was released about 2 weeks ago.. This allows you
to look off a Mysql TABLE instead of using the CDB file.. (I have ran into
many problems with my machines.. Doing DNS load balancing for SMTP) I was
running into NFS file locking problems when I implemented the POP3 to SMTP
authenication.

Sean Truman
www.prodigysolutions.com
[EMAIL PROTECTED]
----- Original Message -----
From: Chin Fang <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Sunday, August 27, 2000 1:59 PM
Subject: Re: ESMTP AUTH and qmail


> > You may still be able to do it.  The tcprules .cdb file is
generated/updated
> > atomically, so why not share a single copy of it among your SMTP
servers?
> > Have relay-ctrl share a directory across the POP3 servers, putting their
> > entries in a common directory, and updating the same .cdb file.  Then it
should
> > work fine, no matter how the connections get distributed.  Of course,
there's
> > slightly higher risk due to having the NFS server which hosts this
> ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
> > directory and .cdb file as a single point of failure.
> ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
>
> To avoid this potential trouble, rsync + openssh - NFS
>
> Regards,
>
> Chin Fang
> [EMAIL PROTECTED]
>
> >
> > Charles
> > --
> > --------------------------------------------------------------
> > Charles Cazabon                           <[EMAIL PROTECTED]>
> > QCC Communications Corporation                   Saskatoon, SK
> > My opinions do not necessarily represent those of my employer.
> > --------------------------------------------------------------
> >


Hey guys,
 
    Ok I am to my wits end on a problem.
 
    1) tcpserver hangs for 2-4 min after 4-10 min of operations. Looking at the problem it looks like the TCPSERVER hangs and svscan restarts it after 2-4 mins. If I Kill the tcpserver processes ever 5 min I dont have any problems.. (This one is really killing me..) I know its not a DNS issue, I know its not equipment issues (After replacing a 2500 series Cisco with 2600 series, and replacing old BAY networks switch with new Cisco Castlyst 2900 series) This problem just started happening last week. (The machine has been processing mail fine for last 230 days) I also have tried to recompile tcpserver to no avail. And it is completely random, tcpserver locks up when there is a Heavy Load and when there is no load on the machine.
 
Any help is much appreciated.
 




> Sean C Truman wrote:
> 
> Hey guys,
> 
>     Ok I am to my wits end on a problem.
> 
>     1) tcpserver hangs for 2-4 min after 4-10 min of operations. Looking at
> the problem it looks like the TCPSERVER hangs and svscan restarts it after 2-4
> mins. If I Kill the tcpserver processes ever 5 min I dont have any problems..
> (This one is really killing me..) I know its not a DNS issue, I know its not
> equipment issues (After replacing a 2500 series Cisco with 2600 series, and
> replacing old BAY networks switch with new Cisco Castlyst 2900 series) This
> problem just started happening last week. (The machine has been processing
> mail fine for last 230 days) I also have tried to recompile tcpserver to no
> avail. And it is completely random, tcpserver locks up when there is a Heavy
> Load and when there is no load on the machine.


Chances are I'm not going to be the one answering this question, it's a bit out 
of my area of expertise.  But I do feel compelled to give some advice: you would 
be much more likely to actually get an answer if you provide some (any) info 
about your setup.  At this point we know there are a few Cisco switches on your 
network, but we don't even know which OS you're running.  Here are some 
questions:

What OS?  
What hardware?  (espesially network hardware)
How (exactly) is your machine connected to the internet?
What else is running on the machine?

Those are just the ones that popped into my head in a few seconds.  Something 
tells me the guru that answers this question is going to need alot more info 
than that...

Good Luck, 
Eric



Does anybody have suggested soft memory use, etc. limits to place on
smtpd and qmqpd on a machine with 48M RAM that typically has 10M free?

--
Michael T. Babcock (PGP: 0xBE6C1895)
http://www.fibrespeed.net/~mbabcock/






Just in case this is of any use to anyone else out there, I've been
using a quick little PERL program to clean up my tcpserver logs which
are output to syslog (no, I don't use multilog, because I send all my
logs to a remote server over our network and don't keep them locally for
long).

I use:

cat /var/log/maillog \
  | qmail-syslog-cleanup.pl \
  | matchup \
  > /tmp/qmail-log-matched.dat

... and then process that file with the various z* programs from
qmailanalog.

qmail-syslog-cleanup.pl:
#!/usr/bin/perl

while (<>)
{
 if (/tcpserver/) {
  s/(.*: )(\d*\.\d* .*)/$2/;
  print $_;
 }
}

Incidentally, if anyone has a better/faster version, feel free to tell
me.

--
Michael T. Babcock (PGP: 0xBE6C1895)
http://www.fibrespeed.net/~mbabcock/






"Robin S. Socha" <[EMAIL PROTECTED]> wrote:
> * Len Budney <[EMAIL PROTECTED]> [000825 20:30]:
> > 
> > The problems with that are (1) I *want* a command-line interface...
> > (2) I'd like to see the job done right, once...
> 
> I don't see the problem, really. Use Gnus http://www.gnus.org/ and
> you're there.

"There" meaning that I'd have an email CLI using maildirs as folders?
I was unaware that GNUS was a CLI; I thought it ran inside Emacs.

> Best MUA on earth, anyway.

Yes, I do like it.

> Supports maildir...(tentatively reaching beta status) as a native select
> method.

I can't find anything about this at the GNUS site. Can you give me a more
specific pointer? If GNUS supports maildir as a folder, then that makes three
such mailers (mutt and Pine being the other two).

Note, though, that I'm only interested in mailers which don't break
concurrency. I'm still evaluating the choices, but they do things which make
me nervous, like using collision-prone file names.

> It also speaks IMAP, MIME and basically everything else one needs...

Although I question the wisdom of mailreaders getting into the MTA/MDA
business.

Len.

--
Run two mailreaders; never lose messages!
<http://www.pobox.com/~lbudney/linux/mdmh.html>



Hello,everyone.

anybody can tell me where to find LDAP server which can 
worked with qmail.
Thanks.


David
08-28-2000





On Mon, Aug 28, 2000 at 09:11:05AM +0800, David wrote:
> Hello,everyone.
> 
> anybody can tell me where to find LDAP server which can 
> worked with qmail.

AFAIK, any LDAP server will do.
Also, qmail+LDAP is discussed in another mailing list:
send an empty e-mail to "[EMAIL PROTECTED]" to join
it. And look at http://www.nrg4u.com/ while you're at it.

RC

> Thanks.
> 
> 
> David
> 08-28-2000
> 
> 

-- 
+-------------------
| Ricardo Cerqueira  
| PGP Key fingerprint  -  B7 05 13 CE 48 0A BF 1E  87 21 83 DB 28 DE 03 42 
| Novis  -  Engenharia ISP / Rede T�cnica 
| P�. Duque Saldanha, 1, 7� E / 1050-094 Lisboa / Portugal
| Tel: +351 21 0100000 - Fax: +351 21 0100001

PGP signature



Hello,

I've just gotten qmail up and running, and I'm having an annoying 
problem with some mail sent from virtual domains. Apparently, 
some receiving mail servers check DNS MX records for the 
sender's domain, and rewrite the from: sender: and reply-to: 
headers based on the DNS response. 

Based on the DNS & BIND book, I've got the MX records for all of 
my virtual domains set to the FQDN of my mail server. Is it 
possible for me to replace the FQDN with the virtual domain in my 
DNS MX records and still have qmail recognize and accept 
incoming mail for these domains? I have these domains listed in 
my rcpthosts file.

Thanks for help/suggestions.
Jim



On Sun, Aug 27, 2000 at 09:43:46PM +0000, J!M wrote:
> I'm having an annoying 
> problem with some mail sent from virtual domains. Apparently, 
> some receiving mail servers check DNS MX records for the 
> sender's domain, and rewrite the from: sender: and reply-to: 
> headers based on the DNS response. 

Send a clue to postmaster@stupidserver. They shouldn't be doing that.

> Based on the DNS & BIND book, I've got the MX records for all of 
> my virtual domains set to the FQDN of my mail server. Is it 
> possible for me to replace the FQDN with the virtual domain in my 
> DNS MX records and still have qmail recognize and accept 
> incoming mail for these domains? I have these domains listed in 
> my rcpthosts file.

Yes, as long as the MX points to a canonical name (an A record vs a
CNAME record).

PGP signature



Curtis Doty kindly pointed out to me that there is a bad bug in the
functions rpm.   Indeed, in 00functions.sh, if the mktemp call fails,
possibly all files in the current directory get removed.  Ouch!

Please update to functions-4:

rpm -Uvh ftp://moni.msci.memphis.edu/pub/run/functions-4-2.noarch.rpm

Mate



can anyone tell me how to forward mail received for a specific domain ??
in example, if i am 
a.com 
i wanna forward all mail i recv for b.com to c.com
help???



Make sure b.com is in rcpthosts (you may or may not want it in locals,
depending on how you've set up your e-mail)

And in smtproutes, put the line b.com:c.com and you're done! Of course,
c.com has to be able to receive for b.com (ie have it in rcpthosts, and in
locals).

/BR


Manager
InterPlanetary Solutions
http://ipsware.com/


> -----Original Message-----
> From: Thomas Ackermann [mailto:[EMAIL PROTECTED]]
> Sent: Monday, August 28, 2000 5:44 PM
> To: qmail
> Subject: help forwarding !!?
>
>
> can anyone tell me how to forward mail received for a specific domain ??
> in example, if i am
> a.com
> i wanna forward all mail i recv for b.com to c.com
> help???




Hi.

I'm having a problem sending mail through my qmail server to outside 
servers. I think I've set up qmail to allow relaying just as described. 
Let's say my IP is 1.2.3.4 for the mail server and the client is 1.2.3.5. 
The mailhost's name is my.mailhost.com.

$ grep tcp-env hosts.allow
tcp-env: 127.0.0., 1.2.3. : setenv RELAYCLIENT

$ telnet my.mailhost.com
Connected to my.mailhost.com.
Escape character is '^]'.
220 my.mailhost.com ESMTP
EHLO
250-my.mailhost.com
250-PIPELINING
250 8BITMIME
MAIL FROM:[EMAIL PROTECTED]
250 ok
RCPT TO:[EMAIL PROTECTED]
553 sorry, that domain isn't in my list of allowed rcpthosts (#5.7.1)

$ cat /var/qmail/control/rcpthosts
localhost
my.mailhost.com

$ grep smtp inetd.conf
smtp stream tcp nowait qmaild /usr/sbin/tcpd /var/qmail/bin/tcp-env 
/var/qmail/bin/qmail-smtpd

Is the something that I have missed? Some additional info: Slackware 7.1, 
qmail 1.03, uses inetd. Since there is only < 10 users on the system I 
don't see any reason running tcpserver.




Thomas Novin wrote:

> $ grep tcp-env hosts.allow
> tcp-env: 127.0.0., 1.2.3. : setenv RELAYCLIENT

a) iirc, that isn't the correct syntax for using tcp-env and tcp_wrappers,
   I believe its "setenv=RELAYCLIENT"
b) make sure your tcp_wrappers were compiled with the extended syntax
 
> qmail 1.03, uses inetd. Since there is only < 10 users on the system I 
> don't see any reason running tcpserver.

the number of users you support has no bearing on inetd being easily DoS'd

-- 
Jamie Heilman                               http://wcug.wwu.edu/~jamie/
"You came all this way way without saying squat and now you're trying
 to tell me a '56 Chevy can beat a '47 Buick in a dead quarter mile?
 I liked you better when you weren't saying squat kid." -Buddy


Please give me some advice if anyone out there knows how to do this. I have two mail servers, pear.mydomain (in Office A) and papaya.mydomain (in Office B). They are both running qmail but located physically in different places. Pear is my MX. Basically, I want the people in Office B are able to receive and deliver mails from papaya instead of from MX pear. And the people in Office A still use pear as MX to receive and deliver mails. If I setup smtproutes, qmail will forward all mails to papaya. This is not what I want to do. Can I set up forwarding for each person individually and have qmail on MX (pear) to forward mails to papaya only for those people in Office B without leaving mails locally? Or is there any other better way of doing this? Thanks in advanced. Alan ************************************* $B%7%9%F%`%M%C%H%o!<%/%^%M!<%8%c!<(B $B%"%i%s!!%A%c%s(B ************************************* $B%7%k%P!<%(%C%0%F%/%N%m%8!<3t<02qhttp://www.silveregg.co.jp ************************************* 


Please give me some advice if anyone out there knows how to do this.

I have two mail servers, pear.mydomain (in Office A) and papaya.mydomain 
(in Office B).  They are both running qmail but located physically in 
different places.  Pear is my MX.  Basically, I want the people in Office B 
are able to receive and deliver mails from papaya instead of from MX 
pear.  And the people in Office A still use pear as MX to receive and 
deliver mails.  If I setup smtproutes, qmail will forward all mails to 
papaya.  This is not what I want to do.  Can I set up forwarding for each 
person individually and have qmail on MX (pear) to forward mails to papaya 
only for those people in Office B without leaving  mails locally?  Or is 
there any other better way of doing this?

Thanks in advanced.

Alan 



From: Alan Chung <[EMAIL PROTECTED]>
Subject: forwarding
Date: Mon, 28 Aug 2000 18:05:00 +0900
Message-ID: <[EMAIL PROTECTED]>

> Please give me some advice if anyone out there knows how to do this.

did you miss my reply last week?  
 
> I have two mail servers, pear.mydomain (in Office A) and papaya.mydomain 
> (in Office B).  They are both running qmail but located physically in 
> different places.  Pear is my MX.  Basically, I want the people in Office B 
> are able to receive and deliver mails from papaya instead of from MX 
> pear.  And the people in Office A still use pear as MX to receive and 
> deliver mails.  If I setup smtproutes, qmail will forward all mails to 
> papaya.  This is not what I want to do.  Can I set up forwarding for each 
> person individually and have qmail on MX (pear) to forward mails to papaya 
> only for those people in Office B without leaving  mails locally?  

yes -- again, depending on what you mean by "without leaving mail
locally".

you can set up .qmail files for each user you want to have mail
forwarded for.

here is one way:

for each such user of office b, place an appropriate .qmail file in
their home directory on pear that specifies where to forward mail to
(see the dot-qmail man page for details on what you can place in
.qmail files).

if you don't have home directories for people in office b on pear,
create appropriate .qmail files in /var/qmail/alias/ for each of them
(on pear) which forward mail to their respective papaya addresses.
see:

  http://www.qmail.org/man/misc/INSTALL.alias.txt

for more details.

you might find reading through:

  http://cr.yp.to/qmail/faq.html

to be helpful as well.

does this answer your question?



> you can set up .qmail files for each user you want to have mail
> forwarded for.

OR you can simply mount an NFS share from office B on the office A server,
use NIS so that the passwords, usernames, home folders, etc are the same on
both machines, and have all the office A machines say with home folders in
/home and all the office B users mounted via NFS in say /remote (with
/remote/user as the office B users' home folders). Not as complex as it
sounds. But then again... :>

This is what we have done, but we have had to provide for unlimited,
worldwide extensibility so ours is a little more complex and secure, but
internally this will work fine...

/BR


Manager
InterPlanetary Solutions
http://ipsware.com/

Reply via email to