qmail Digest 1 Oct 2000 10:00:01 -0000 Issue 1140
Topics (messages 49695 through 49713):
sending/receiving mail from/to a local network through a mail gateway
49695 by: Tom Muller
49696 by: Brett Randall
incoming log /' domain
49697 by: reach_prashant.zeenext.com
49711 by: markd.bushwire.net
Re: Intercepting specific oputgoing messages
49698 by: Brian Reichert
49712 by: Al Sparks
Setting up an alias username
49699 by: Kevin Smith
49702 by: Magnus Bodin
pop3+ssl && virt. domains && relay control
49700 by: Thorsten Schroeder
identd/auth
49701 by: John Conover
49703 by: Alexander Jernejcic
Procmail and maildir format
49704 by: Subba Rao
49705 by: Charles Cazabon
49706 by: Timothy Legant
49707 by: Chris K. Young
Re: Best Winbloze Mail Client?
49708 by: Brett Randall
49710 by: Hubbard, David
Anyone used IPv6 patch?
49709 by: Brett Randall
Re: Users don't recieve mail...
49713 by: Chris K. Young
Administrivia:
To unsubscribe from the digest, e-mail:
[EMAIL PROTECTED]
To subscribe to the digest, e-mail:
[EMAIL PROTECTED]
To bug my human owner, e-mail:
[EMAIL PROTECTED]
To post to the list, e-mail:
[EMAIL PROTECTED]
----------------------------------------------------------------------
I've been using qmail for quite a while now (on my webserver), and
everything works as designed :)
Now I would like to send and receive mail on a few unix machines in a local
network (Solaris, Linux) through a single public 'mail gateway'. The setup
looks like the following (all machines are running qmail):
all hosts are in my.domain.com.
mailer.my.domain.com is MX for my.domain.com and can send and receive mail
to/from anywhere.
host1.my.domain.com can (right now) only send mail to other hosts in
my.domain.com (we've got an internal DNS for all hosts in my.domain.com,
and only mailer.my.domain.com is listed in the external DNS at our provider).
Sending mail from host1.my.domain.com through mailer.my.domain.com works,
but the from:-header still shows [EMAIL PROTECTED] as sender.
Receiving mail should work because even host1.my.domain.com isn't
resolvable from the internet, there's the MX-record for my.domain.com
pointing to mailer.my.domain.com. mailer.my.domain.com has to forward mail
to the other hosts depending on the receipient host.
But I'd like to have the outgoing from:-header rewritten by
mailer.my.domain.com. When it sends out a mail from
[EMAIL PROTECTED], the from:-line should be translated into
something like [EMAIL PROTECTED] or maybe
[EMAIL PROTECTED] (or something similar, it doesn't really
matter to me how the translated address looks like, as long as any user can
send mail this way). On the incoming side, a mail to
[EMAIL PROTECTED] should be forwarded to
[EMAIL PROTECTED]
I don't know how I should start - I could setup .qmail-files for every user
I want to forward mail from mailer.my.domain.com to another host in the
local network, but that's not a real solution because any user on any host
in my local network should be able to send mail. I guess it maybe could be
realized with virutal domains - but I haven't completly understood how to
set it up.
I'd really be grateful if someone could point me into the right direction
and give me some advice on how to setup this scenario.
Regards,
Tom
> Sending mail from host1.my.domain.com through mailer.my.domain.com works,
> but the from:-header still shows [EMAIL PROTECTED] as sender.
> Receiving mail should work because even host1.my.domain.com isn't
> resolvable from the internet, there's the MX-record for my.domain.com
> pointing to mailer.my.domain.com. mailer.my.domain.com has to
> forward mail
> to the other hosts depending on the receipient host.
Incorrect. If an external user attempts to send e-mail to
host1.my.domain.com, then their SMTP relay will lookup that FQDN and see
where e-mail should be delivered. If there is no A, CNAME or MX record for
it, it won't be delivered. Simple. MX records only work for [EMAIL PROTECTED],
not any hosts further down the tree.
> But I'd like to have the outgoing from:-header rewritten by
> mailer.my.domain.com. When it sends out a mail from
> [EMAIL PROTECTED], the from:-line should be translated into
> something like [EMAIL PROTECTED] or maybe
> [EMAIL PROTECTED] (or something similar, it doesn't really
> matter to me how the translated address looks like, as long as
> any user can
> send mail this way). On the incoming side, a mail to
> [EMAIL PROTECTED] should be forwarded to
> [EMAIL PROTECTED]
Get your users to change their From addresses in their mail clients, or edit
control/me in qmail to be the domain name not the hostname. Either that or
patch qmail yourself to rewrite headers, but no doubt that is breaking a few
RFCs...
> I don't know how I should start - I could setup .qmail-files for
> every user
> I want to forward mail from mailer.my.domain.com to another host in the
> local network, but that's not a real solution because any user on
> any host
> in my local network should be able to send mail. I guess it maybe
> could be
> realized with virutal domains - but I haven't completly understood how to
> set it up.
Well, fastforward would be more efficient and easier to manage than .qmail
files, but still what I do is have a master server, and all the other hosts
around the place export NFS shares. The master server mounts these shares,
and all mail to [EMAIL PROTECTED] ends up in their $HOME/Maildir/ (the home
directory simply read from passwd, of course). It doesn't matter where their
computer is. Since NFS is simply 'mounting' a remote directory, it appears
local. Then all other computers can simply route mail to the master server
to be delivered. I don't do this, because we have many servers around the
city and we try to be as efficient as possible (we don't want local mail to
be rerouted across the city, and back again). I have NIS in place and
various other things designed to make bandwidth usage as small and sane as
possible, but I've just described a simplistic but reasonable approach that
you can implement without too much trouble.
Hope this has helped.
/BR
Manager
InterPlanetary Solutions
http://ipsware.com/
hello friends
i am using qmail to send/receive mails for around 100 domains
now i want log of incoming mails on per domain basis
how can i do this ?
i am running qmail-smtpd under tcpserver , i also want to log
qmail-smtpd activity for outgoing mails on a perdomain basis ,
thanks & regards
Prashant Desai
On Sat, Sep 30, 2000 at 08:20:47AM +0300, [EMAIL PROTECTED] wrote:
>
> hello friends
>
> i am using qmail to send/receive mails for around 100 domains
> now i want log of incoming mails on per domain basis
Show us what your current logs show and tell us why that doesn't identify
the domains in question.
> how can i do this ?
> i am running qmail-smtpd under tcpserver , i also want to log
> qmail-smtpd activity for outgoing mails on a perdomain basis ,
Whaaat? That doesn't make sense. qmail-smtpd is *only* relevant for incoming
mails.
qmail-remote handles outgoing mails which are normally logged. Again, show us
a fragment of your log files and tell us why it doesn't provide the information
you need.
Regards.
On Fri, Sep 29, 2000 at 04:58:13PM -0700, Dan Mahoney wrote:
> One of my customers has concerns about an employee sending proprietary
> info to a competitor, and has asked me to find a way to block or
> intercept all e-mail destined for a specific address outside of our
> domain. I know how to redirect all mail for that domain, but I can't
> quite figure out how to do so for a single address within that domain.
>
> Can I put a filter in front of qmail-remote that would test outgoing
> addresses and decide whether to continue? If so, how would I insert this
>
> filter into the pipeline? Or for an easier approach, can I use any
> special characters in a .qmail-default file that would be replaced by
> the original "To:" address? I'm kind of at a loss here.
Said user could send mail directly to the competitor's email server
directly, bypassing any mail system you have.
A broad action: proxy all outgoing connections on your net to the
SMTP port to an internal mail server under your control. Any affort
to send mail out of your net will connect to your mailserver, where
all of your filtering rules can come into play.
Of course:
- the competitor can run a mail server on a nonstandard port.
- the employee could walk a diskette/cdrom home, and send mail from
there.
Think about how much work you want to do...
> D Mahoney
> [EMAIL PROTECTED]
--
Brian 'you Bastard' Reichert <[EMAIL PROTECTED]>
37 Crystal Ave. #303 Daytime number: (603) 434-6842
Derry NH 03038-1713 USA Intel architecture: the left-hand path
--- Brian Reichert <[EMAIL PROTECTED]> wrote:
>
> Said user could send mail directly to the competitor's email server
> directly, bypassing any mail system you have.
>
> A broad action: proxy all outgoing connections on your net to the
> SMTP port to an internal mail server under your control. Any affort
> to send mail out of your net will connect to your mailserver, where
> all of your filtering rules can come into play.
>
Where I work, we have a firewall and the only way to send mail out is
by relaying through our email server. Attempts to connect to any
SMTP port outside our firewall (from inside) will fail. All clients
are configured to send mail through our server.
No proxying necessary.
> Of course:
>
> - the competitor can run a mail server on a nonstandard port.
> - the employee could walk a diskette/cdrom home, and send mail from
> there.
>
> Think about how much work you want to do...
>
And that's what I'd tell my boss. Heck, while we limit restrict access to
SMTP ports outside our firewall, we don't restrict access to Hotmail,
Yahoo! mail, and their ilk (and we're not monitoring that).
=== Al
Do You Yahoo!?
Yahoo! Photos - 35mm Quality Prints, Now Get 15 Free!
Hi All,
I want have a domain which is owned by the user, lemon.
How do I set-up an alias of say, info, which is to be sent to the same
domain that, lemon, owns without setting-up a unix account?
Is it something to do with dropping a .qmail-info file into the qmail
directory of lemon? If so, exactly what commands do I use to create this
alias file?
Many thanks,
Kevin
On Sat, Sep 30, 2000 at 06:21:20PM +0100, Kevin Smith wrote:
> Hi All,
>
> I want have a domain which is owned by the user, lemon.
What does your virtualdomains file entry look like?
domain.com:lemon-domain
or
domain.com:lemon
?
> How do I set-up an alias of say, info, which is to be sent to the same
> domain that, lemon, owns without setting-up a unix account?
>
> Is it something to do with dropping a .qmail-info file into the qmail
> directory of lemon? If so, exactly what commands do I use to create this
> alias file?
Yes. If your virtualdomains-entry looks like "domain.com:lemon"
touch ~lemon/.qmail-info
/magnus
--
http://x42.com/qmail/
Hi everybody!
After i�ve set up my qmail box with encrypted smtp
(Frederik Vermeulen�s tls-patch), vpopmail (to handle virtual domains) etc,
and smtp relay control with pop3-before-smtp, i have a problem with setting up
encrypted pop3. I don�t know how... if i take a ssl-wrapper i�m not able to
control relaying because cdb(?) only notice the localhost ip-address ?!!
Most important is to control relaying and realize encrypted connections with
smtp and pop3.
Further it�s important, that clients who are not able to establish an encrypted
connection can connect conventionally unencrypted (sad but true)...
It�s NOT important to have an easy-to-administrate system - i will write some
scripts for that - but it�s important to handle many virtual domains with some
or many users per domain and possibillities to work on encrypted connections.
any hints?
thanks a lot!
greetings,
Thorsten
--
Thorsten Schroeder <[EMAIL PROTECTED]>
Achtung: $to =~ s/ths\@gosh\.in-berlin\.de/ths\@so36\.net/g;
http://www.so36.net - non-commercial web & mailhosting
:wq
Do mail servers use/require identd/auth? Is it permissible to
turn it off?
Thanks,
John
--
John Conover Tel. 408.370.2688 [EMAIL PROTECTED]
631 Lamont Ct. Cel. 408.772.7733 http://www.johncon.com/
Campbell, CA 95008 Fax. 408.379.9602
hi,
you may turn it off. but do not block it with a firewall - you will see immense
timeouts...
;) a
==============================================
Alexander Jernejcic
email:[EMAIL PROTECTED]
begin LOVE-LETTER-UND-NIX-DAZUGELERNT.txt.vbs
I am a Signature, not a Virus!
end
==============================================
> -----Original Message-----
> From: John Conover [mailto:[EMAIL PROTECTED]]
> Sent: Saturday, September 30, 2000 9:33 PM
> To: [EMAIL PROTECTED]
> Subject: identd/auth
>
>
> Do mail servers use/require identd/auth? Is it permissible to
> turn it off?
>
> Thanks,
>
> John
>
> --
>
> John Conover Tel. 408.370.2688 [EMAIL PROTECTED]
> 631 Lamont Ct. Cel. 408.772.7733 http://www.johncon.com/
> Campbell, CA 95008 Fax. 408.379.9602
>
>
I am in the process of moving from maildrop to procmail. The MTA on my
system is Qmail, therfore I chose to use Maildir format for my mail.
Procmail has been compiled to point to my spool at $HOME/Maildir
The fetchmailrc is invoking procmail fine, but it does not write to the
$HOME/Maildir/new directory. Instead it is dropping the mail in the literal
$HOME/Maildir/ directory. The LOGFILE too is written to $HOME/Maildir/
directory.
(0)subb3@caesar:~ => ll Maildir
total 105
drwx------ 5 subb3 users 1024 Sep 30 17:42 ./
drwx--x--x 36 subb3 users 5120 Sep 30 17:42 ../
drwx------ 2 subb3 users 54272 Sep 30 14:11 cur/
-rw------- 1 subb3 users 3364 Sep 30 17:42 msg.V9x
-rw------- 1 subb3 users 2966 Sep 30 17:42 msg.W9x
-rw------- 1 subb3 users 3917 Sep 30 17:42 msg.X9x
-rw------- 1 subb3 users 1956 Sep 30 17:42 msg.Y9x
drwx------ 2 subb3 users 28672 Sep 30 17:40 new/
-rw------- 1 subb3 users 1842 Sep 30 17:42 procmail.log
drwx------ 2 subb3 users 1024 Sep 30 17:40 tmp/
(0)subb3@caesar:~ =>
I suppose, I could change the drop location specifically to the "new" directory.
Then, the syntax of the mail file is different.
Procmail delivered file has - msg.V9x
Maildrop delivered file has - 970384606.32149_0.myhost,\=3331
How can I make Procmail deliver mail in maildir format? The version of
procmail on my system is v3.15
Procmail variables are as follows,
PATH=$HOME/bin:/usr/bin:/usr/ucb:/bin:/usr/local/bin:.
MAILDIR=$HOME/Maildir
DEFAULT=$MAILDIR
LOGFILE=procmail.log
LOCKFILE=$HOME/.lockmail
VERBOSE=yes
Thanks for any pointers or info.
Subba Rao
[EMAIL PROTECTED]
http://pws.prserv.net/truemax/
Subba Rao <[EMAIL PROTECTED]> wrote:
> I am in the process of moving from maildrop to procmail. The MTA on my
> system is Qmail, therfore I chose to use Maildir format for my mail.
> Procmail has been compiled to point to my spool at $HOME/Maildir
[...]
> The fetchmailrc is invoking procmail fine, but it does not write to the
> $HOME/Maildir/new directory. Instead it is dropping the mail in the literal
> $HOME/Maildir/ directory. The LOGFILE too is written to $HOME/Maildir/
> directory.
[...]
> Procmail variables are as follows,
>
> PATH=$HOME/bin:/usr/bin:/usr/ucb:/bin:/usr/local/bin:.
> MAILDIR=$HOME/Maildir
The MAILDIR variable doesn't mean q qmail-style Maildir. Instead, it's more
lie a chroot, which is what you're seeing.
Charles
--
-----------------------------------------------------------------------
Charles Cazabon <[EMAIL PROTECTED]>
GPL'ed software available at: http://www.qcc.sk.ca/~charlesc/software/
Any opinions expressed are just that -- my opinions.
-----------------------------------------------------------------------
On Sat, Sep 30, 2000 at 06:05:56PM +0000, Subba Rao wrote:
> I am in the process of moving from maildrop to procmail. The MTA on my
> system is Qmail, therfore I chose to use Maildir format for my mail.
> Procmail has been compiled to point to my spool at $HOME/Maildir
>
> The fetchmailrc is invoking procmail fine, but it does not write to the
> $HOME/Maildir/new directory. Instead it is dropping the mail in the literal
> $HOME/Maildir/ directory. The LOGFILE too is written to $HOME/Maildir/
> directory.
[snip...]
> How can I make Procmail deliver mail in maildir format? The version of
> procmail on my system is v3.15
You must specify a '/' at the end of the name of the maildir to alert
procmail that your desired delivery mailbox is, in fact, a maildir.
For example, my .procmailrc includes the following recipe to process
messages to this list:
:0
* ^TO_qmail
Qmail/
Qmail is the name of the maildir in MAILDIR ($HOME/Mail, in my case).
Procmail automatically delivers to the new/ directory within the
specified mailbox.
> Procmail variables are as follows,
>
> PATH=$HOME/bin:/usr/bin:/usr/ucb:/bin:/usr/local/bin:.
> MAILDIR=$HOME/Maildir
> DEFAULT=$MAILDIR
> LOGFILE=procmail.log
> LOCKFILE=$HOME/.lockmail
> VERBOSE=yes
You probably will need to change DEFAULT to say DEFAULT=$MAILDIR/ if you
plan on some mail falling off the end of your processing and getting
delivered to the default drop.
> Thanks for any pointers or info.
Hope this helped.
> Subba Rao
> [EMAIL PROTECTED]
> http://pws.prserv.net/truemax/
Tim
--
Timothy Legant
[EMAIL PROTECTED]
Quoted from Subba Rao:
> The MTA on my
> system is Qmail, therfore I chose to use Maildir format for my mail.
I've never heard of an MTA called Qmail. Perhaps you meant qmail?
(This distinction is noted in Dave Sill's ``life with qmail'', which
every qmail user is advised to read.)
> The fetchmailrc is invoking procmail fine, but it does not write to the
> $HOME/Maildir/new directory. Instead it is dropping the mail in the literal
> $HOME/Maildir/ directory. The LOGFILE too is written to $HOME/Maildir/
> directory.
[...]
> MAILDIR=$HOME/Maildir
> DEFAULT=$MAILDIR
As mentioned by someone else, MAILDIR in procmail actually specifies
the default directory to use when a relative (not starting with a
slash) filename is given as a folder.
You must, nonetheless, end the folder name with a slash to tell
procmail that you're delivering to a maildir.
Try ``DEFAULT=./'', if you have ``MAILDIR=$HOME/Maildir'' as you have.
Not tested, but should work.
Hope it helps,
---Chris K.
--
Chris, the Young One |_ If you can't afford a backup system, you can't
Auckland, New Zealand |_ afford to have important data on your computer.
http://cloud9.hedgee.com/ |_ ---Tracy R. Reed
OK...I've had enuf of Outlook.
What is the best, most extensible Winbloze mail client? Tried Eudora 5, it
sucked butt. Pegasus Mail 3 was pretty good as it was in the past, but a
little too unusual and ugly in operation. Outlook 2000 IMHO looks nice and
has an efficient point-and-click interface, but it handles IMAP4 like crap
and as we all know, screws up In-Reply-To lines among other things.
So...what is as nice as Outlook point-and-click wise, with good support for
IMAP4, and nice and extensible (macros would be nice, and keyboard shortcuts
a must). I'd prefer noone says 'get a real OS' since we all have our reasons
for what we do. But at last after many comments I want a new mail client in
the very least. One thing I like about Outlook is the way that each message
I open is a new window, not an MDI child. That is almost a must, but if need
be I can sacrifice this 'feature' (some may call it something else).
Thankyou for your comments, and (no doubt) unneeded flames.
Brett.
Manager
InterPlanetary Solutions
http://ipsware.com/
How about MS Outlook Express? Yeah yeah, Microsoft product,
but it does have extremely good support for the various
protocols. It will do POP3, IMAP, SSL encrypted POP3 & IMAP,
SSL encrypted SMTP if the mailserver supports it, directory
services, etc. Plus, the big thing for me; you can add in
as many mail accounts on as many different servers configured
in different ways as you want and they all show up in a nice
expandable list on the left side. As someone who runs an ISP,
I like it so I can easily check the postmaster accounts on
over 60 domains by just starting the program and hitting
"Send/Receive All" so it goes out and checks each domain's
account.
Dave
-----Original Message-----
From: Brett Randall [mailto:[EMAIL PROTECTED]]
Sent: Sunday, October 01, 2000 12:35 AM
To: qmail
Subject: OT: Best Winbloze Mail Client?
OK...I've had enuf of Outlook.
What is the best, most extensible Winbloze mail client? Tried Eudora 5, it
sucked butt. Pegasus Mail 3 was pretty good as it was in the past, but a
little too unusual and ugly in operation. Outlook 2000 IMHO looks nice and
has an efficient point-and-click interface, but it handles IMAP4 like crap
and as we all know, screws up In-Reply-To lines among other things.
So...what is as nice as Outlook point-and-click wise, with good support for
IMAP4, and nice and extensible (macros would be nice, and keyboard shortcuts
a must). I'd prefer noone says 'get a real OS' since we all have our reasons
for what we do. But at last after many comments I want a new mail client in
the very least. One thing I like about Outlook is the way that each message
I open is a new window, not an MDI child. That is almost a must, but if need
be I can sacrifice this 'feature' (some may call it something else).
Thankyou for your comments, and (no doubt) unneeded flames.
Brett.
Manager
InterPlanetary Solutions
http://ipsware.com/
Has anyone here used the qmail IPv6 patch?
(http://www.rcac.tdi.co.jp/fujiwara/) What kinds of things worked/didn't
work/needed a little help? Also did the ucspi-tcp tools handle it ok? Or is
there a patch available for them as well? (I can't see anything on the
homepage).
/BR
Manager
InterPlanetary Solutions
http://ipsware.com/
Quoted from Ronny Haryanto:
> On 21-Sep-2000, jim wrote:
> > I changed my user home dir mod to 755, it worked like a charm.
>
> Not a good idea unless you don't care that other users can enter your
> home directory and list the contents (and possibly read the files/dirs
> in it if you set them to be world readable).
Who cares? Online privacy is an illusion anyway. :-) Actually, I had an
account at university, that I thought was fun to booby-trap. Many nosy
types were deterred this way.
The idea was that Solaris 2.6's ls does not filter out control codes.
So I had some files whose names included a lot of fun control codes.
Gets 'em most days.
No one should read the above as an intention to keep others out of my
home directory. Like I said, privacy is an illusion (having worked as
a system administrator for a couple of years), and I've got used to it
long ago.
---Chris K.
--
Chris, the Young One |_ If you can't afford a backup system, you can't
Auckland, New Zealand |_ afford to have important data on your computer.
http://cloud9.hedgee.com/ |_ ---Tracy R. Reed
