qmail Digest 22 Apr 2001 10:00:01 -0000 Issue 1342
Topics (messages 61056 through 61080):
aliases issue !!!
61056 by: nissim_p.netvision.net.il
61060 by: Mike Jackson
61064 by: David Young
61070 by: Mike Jackson
Re: incorrect_user@correct_domain accepted
61057 by: Ketan Bajaj
61058 by: Chris Johnson
61065 by: Ketan Bajaj
61068 by: Chris Johnson
61079 by: Greg White
How to re-direct mail based on target domain
61059 by: David Means
61061 by: Mike Jackson
61062 by: Chris Johnson
61063 by: David Means
61071 by: Marco Calistri
61072 by: davidu
61077 by: Marco Calistri
61078 by: davidu
qmail-smtp install problem
61066 by: Tim Holzmann
61067 by: Chris Johnson
Re: store and forward incoming e-mail
61069 by: Henning Brauer
put a whole domain 'on hold'
61073 by: Mike K
61074 by: Sean Chittenden
61075 by: Jordan Krushen
61076 by: Wagner Teixeira
Qmail Authentication
61080 by: Sajjad Ahmad
Administrivia:
To unsubscribe from the digest, e-mail:
[EMAIL PROTECTED]
To subscribe to the digest, e-mail:
[EMAIL PROTECTED]
To bug my human owner, e-mail:
[EMAIL PROTECTED]
To post to the list, e-mail:
[EMAIL PROTECTED]
----------------------------------------------------------------------
|
Hello all ,
I still didn't get an answer for my
question about aliases defined in /etc/aliases regarding their vulnrabilty to
outside world .
I am not intersted in letting people use
certain aliases in /etc/aliases from the outside and maby even restrict the
access to these aliases to certain users only .
How can I do cause now everyone
can use these aliases like [EMAIL PROTECTED]
which is a spam hole .
Thanks ,
Nissim .
|
> [EMAIL PROTECTED] wrote:
>
> Hello all ,
>
> I still didn't get an answer for my question about aliases defined in
> /etc/aliases regarding their vulnrabilty to outside world .
>
> I am not intersted in letting people use certain aliases in
> /etc/aliases from the outside and maby even restrict the access to
> these aliases to certain users only .
>
> How can I do cause now everyone can use these aliases like
> [EMAIL PROTECTED] which is a spam hole .
>
> Thanks ,
> Nissim .
You can't restrict who can use aliases. Anyone who can send mail to your
system can send mail to all aliases that exist on the system. If you
convert the aliases to Ezmlm lists, you can restrict posting to
subscribers and even moderate lists.
Mike
Could he do something like use a .qmail file to pipe the message into a
script that would examine headers and then only deliver if the message was
from the local domain? I guess that the headers could be forged easily
enough to get around this, but at least if could be a plausible attempt.
> From: Mike Jackson <[EMAIL PROTECTED]>
> Date: Sat, 21 Apr 2001 22:01:10 +0300
> To: [EMAIL PROTECTED]
> Cc: [EMAIL PROTECTED]
> Subject: Re: aliases issue !!!
>
> You can't restrict who can use aliases. Anyone who can send mail to your
> system can send mail to all aliases that exist on the system. If you
> convert the aliases to Ezmlm lists, you can restrict posting to
> subscribers and even moderate lists.
>
> Mike
David Young wrote:
>
> Could he do something like use a .qmail file to pipe the message into a
> script that would examine headers and then only deliver if the message was
> from the local domain? I guess that the headers could be forged easily
> enough to get around this, but at least if could be a plausible attempt.
Sure, it might reduce the number of unwanted messages, but there is no
guarantee it will stop everything. It's not much more difficult to set
up ezmlm and do it the right way. Aliases are low tech and should not be
used for more than 2-3 recipients, imho. ;-)
Mike
No i don't think so ( why would the exchange server in my domain store
another domain's email)
-ketan
----- Original Message -----
From: "Jesse Reynolds" <[EMAIL PROTECTED]>
To: "Ketan Bajaj" <[EMAIL PROTECTED]>; <[EMAIL PROTECTED]>
Sent: Saturday, April 21, 2001 12:05 AM
Subject: Re: incorrect_user@correct_domain accepted
> Does the exchange server you're sending through store mail for the
> schwab.com domain?
>
> if so, then this explains why.
>
> -jesse
>
> At 22:01 -0700 20/4/2001, Ketan Bajaj wrote:
> >I have been seeing a problem:
> >when i sent an email to an incorrect user at a correct domain, the qmail
> >logs show that the message has been accepted.
> >But if i send the same email, incorrect_user@correct_domain through
outlook
> >(microsoft exchange), the email bounces back immediately, with error
message
> >shown below:
> >************
> >----- Transcript of session follows -----
> >550 [EMAIL PROTECTED] User unknown
> >************
> >
> >Any idea why email does not bounce when sent through qmail.
> >thanks,
> >Ketan
>
> --
>
> Jesse Reynolds - Virtual Artists Pty Ltd - http://www.va.com.au
> jesse (at) va.com.au
On Fri, Apr 20, 2001 at 10:01:45PM -0700, Ketan Bajaj wrote:
> I have been seeing a problem:
> when i sent an email to an incorrect user at a correct domain, the qmail
> logs show that the message has been accepted.
> But if i send the same email, incorrect_user@correct_domain through outlook
> (microsoft exchange), the email bounces back immediately, with error message
> shown below:
> ************
> ----- Transcript of session follows -----
> 550 [EMAIL PROTECTED] User unknown
> ************
>
> Any idea why email does not bounce when sent through qmail.
qmail-smtpd doesn't know anything about users or local addresses; it knows only
what domains it should accept mail for. Once a message has been queued and
processed, it'll be bounced if there is no such address.
Are you questioning why qmail-smtpd doesn't reject the message right away,
during the SMTP dialog, rather than accepting the message at first and then
later bouncing it? Or are you saying that the message is never bounced? If the
former, the answer is that that's how qmail works. If the latter, then you have
a .qmail-default file that will catch any address rather than bounce mail sent
to non-existent addresses.
Chris
i think i haven't been clear enough in explaining the problem...
again,
A (local smtp server) B (remote smtp server)
B is at domain schwab.com, about which i do not know anything, whether it
has qmail, sendmail, exchange or anything else.
1. when A is setup as qmail, and remote address is incorrect@B there is no
bounce from B and the message is accepted at B. I see this at the qmail logs
on A.
2. when A is Microsoft exchange (with MUA as Outlook / outlook express), the
email sent to incorrect@B bounces back immediately.
so my rephrased question is why the behaviour of B is not consistent,
whatever A is.
I just checked this: sent an email from hotmail (which also uses qmail) to
incorrect@B, and the email bounced back from B!
so could it be that i have set up qmail at A incorrectly (case1 above), it
don't think it should matter how the .qmail-default is set up at A.
or maybe i should go back on Monday and check the qmail logs at A again, and
see again if there's bounce message appearing now.....!
thanks,
Ketan
----- Original Message -----
From: "Chris Johnson" <[EMAIL PROTECTED]>
To: "Ketan Bajaj" <[EMAIL PROTECTED]>
Cc: <[EMAIL PROTECTED]>
Sent: Saturday, April 21, 2001 11:41 AM
Subject: Re: incorrect_user@correct_domain accepted
> On Fri, Apr 20, 2001 at 10:01:45PM -0700, Ketan Bajaj wrote:
> > I have been seeing a problem:
> > when i sent an email to an incorrect user at a correct domain, the qmail
> > logs show that the message has been accepted.
> > But if i send the same email, incorrect_user@correct_domain through
outlook
> > (microsoft exchange), the email bounces back immediately, with error
message
> > shown below:
> > ************
> > ----- Transcript of session follows -----
> > 550 [EMAIL PROTECTED] User unknown
> > ************
> >
> > Any idea why email does not bounce when sent through qmail.
>
> qmail-smtpd doesn't know anything about users or local addresses; it knows
only
> what domains it should accept mail for. Once a message has been queued and
> processed, it'll be bounced if there is no such address.
>
> Are you questioning why qmail-smtpd doesn't reject the message right away,
> during the SMTP dialog, rather than accepting the message at first and
then
> later bouncing it? Or are you saying that the message is never bounced? If
the
> former, the answer is that that's how qmail works. If the latter, then you
have
> a .qmail-default file that will catch any address rather than bounce mail
sent
> to non-existent addresses.
>
> Chris
On Sat, Apr 21, 2001 at 01:52:54PM -0700, Ketan Bajaj wrote:
> i think i haven't been clear enough in explaining the problem...
> again,
> A (local smtp server) B (remote smtp server)
>
> B is at domain schwab.com, about which i do not know anything, whether it
> has qmail, sendmail, exchange or anything else.
>
> 1. when A is setup as qmail, and remote address is incorrect@B there is no
> bounce from B and the message is accepted at B. I see this at the qmail logs
> on A.
> 2. when A is Microsoft exchange (with MUA as Outlook / outlook express), the
> email sent to incorrect@B bounces back immediately.
I'd have to see this to believe it.
Chris
PGP signature
On Sat, Apr 21, 2001 at 01:52:54PM -0700, Ketan Bajaj wrote:
> i think i haven't been clear enough in explaining the problem...
> again,
> A (local smtp server) B (remote smtp server)
>
> B is at domain schwab.com, about which i do not know anything, whether it
> has qmail, sendmail, exchange or anything else.
>
> 1. when A is setup as qmail, and remote address is incorrect@B there is no
> bounce from B and the message is accepted at B. I see this at the qmail logs
> on A.
In sending them a test message, I too see the remote host accept the
message, but it promptly bounces it with '550 User Unknown'. Your qmail
server is likely configured incorrectly -- you should be seeing the
bounces. Please send a message, _headers and all_, that you sent to
[EMAIL PROTECTED] from your qmail server...
GW
AOL will not accept mail from my server because I have a dynamic
IP address. How do I configure qmail to send messages destined for
AOL to my ISP?
Thanks,
David
David Means wrote:
>
> AOL will not accept mail from my server because I have a dynamic
> IP address. How do I configure qmail to send messages destined for
> AOL to my ISP?
>
> Thanks,
>
> David
man qmail-remote. Set up an smtproute something like:
aol.com:your-isps-smtp-server
Mike
On Sat, Apr 21, 2001 at 02:48:28PM -0400, David Means wrote:
> AOL will not accept mail from my server because I have a dynamic
> IP address. How do I configure qmail to send messages destined for
> AOL to my ISP?
echo aol.com:mailserver.yourisp.com >> /var/qmail/control/smtproutes
You might consider routing all of your mail to your ISP's mail server; AOL
isn't the only ISP blocking mail injected directly from dialups. For example,
you wouldn't be able to send mail directly to my server. (I realize that you're
on an ADSL line, not a dialup line, but your ISP has listed you as such with
mail-abuse.org. See http://mail-abuse.org/dul/.)
Chris
PGP signature
Thank you for the information!
David
Chris Johnson wrote:
> On Sat, Apr 21, 2001 at 02:48:28PM -0400, David Means wrote:
> > AOL will not accept mail from my server because I have a dynamic
> > IP address. How do I configure qmail to send messages destined for
> > AOL to my ISP?
>
> echo aol.com:mailserver.yourisp.com >> /var/qmail/control/smtproutes
>
> You might consider routing all of your mail to your ISP's mail server; AOL
> isn't the only ISP blocking mail injected directly from dialups. For example,
> you wouldn't be able to send mail directly to my server. (I realize that you're
> on an ADSL line, not a dialup line, but your ISP has listed you as such with
> mail-abuse.org. See http://mail-abuse.org/dul/.)
>
> Chris
>
> ------------------------------------------------------------------------
> Part 1.2Type: application/pgp-signature
--
A Panagram
To be or not to be: that is the question, whether tis nobler in the mind to suffer the
slings and arrows of outrageous fortune.
In one of the Bard's best-thought-of tragedies, our insistent hero, Hamlet, queries on
two fronts about how life turns rotten.
On 21-Apr-2001 Chris Johnson wrote:
> On Sat, Apr 21, 2001 at 02:48:28PM -0400, David Means wrote:
>> AOL will not accept mail from my server because I have a dynamic
>> IP address. How do I configure qmail to send messages destined for
>> AOL to my ISP?
>
> echo aol.com:mailserver.yourisp.com >> /var/qmail/control/smtproutes
>
> You might consider routing all of your mail to your ISP's mail server; AOL
> isn't the only ISP blocking mail injected directly from dialups. For example,
> you wouldn't be able to send mail directly to my server. (I realize that
> you're
> on an ADSL line, not a dialup line, but your ISP has listed you as such with
> mail-abuse.org. See http://mail-abuse.org/dul/.)
>
> Chris
Chris,you gave me a very interesting suggestion for a similar problem
I had using /var/qmail/control/defaulthost/<qmail-hostname>.
Attempting to send mail toward some SMTP servers I get refuses
and or mail-abuse.org notifications.
qmail machine name is linux.ik5bcu.ampr.org (this is a unknown name)
but to overcome the above problems I changed the ../defaulthost
from this name to ik5bcu.ampr.org (my AMPRNET hostname=valid)
*note*:I changed *only* ../defaulthost and now I can send
mail to every server but I have some doubt that this is not
the right procedure,expecially looking to the changed return-path
and possible MAILER-DAEMON messages now addressed to ik5bcu.ampr.org
instead to linux.ik5bcu...
Well I think that the better thing be to restore ../defaulthost
with proper qmail name,but then I don't know how to set *all*
mail toward my ISP...is it wildcard accepted on this case:
echo *:mailserver.yourisp.com >> /var/qmail/control/smtproutes
And if I'd send mail using my second ISP (spare)?
--
Regards,: Marco Calistri <[EMAIL PROTECTED]>
gpg key available on http://www.qsl.net/ik5bcu
Xfmail 1.4.7p2 on linux RedHat 6.2
Marco wrote:
> Well I think that the better thing be to restore ../defaulthost
> with proper qmail name,but then I don't know how to set *all*
> mail toward my ISP...is it wildcard accepted on this case:
>
> echo *:mailserver.yourisp.com >> /var/qmail/control/smtproutes
No "*"
Just do:
echo ":smtp.yourisp.com" > /var/qmail/control/smtproutes
Note: this will overwrite whatever you have and make smtp.yourisp.com the
DEFAULT and ONLY route for all your mail.
-davidu
On 21-Apr-2001 davidu wrote:
>
> Marco wrote:
>> Well I think that the better thing be to restore ../defaulthost
>> with proper qmail name,but then I don't know how to set *all*
>> mail toward my ISP...is it wildcard accepted on this case:
>>
>> echo *:mailserver.yourisp.com >> /var/qmail/control/smtproutes
>
> No "*"
>
> Just do:
> echo ":smtp.yourisp.com" > /var/qmail/control/smtproutes
>
> Note: this will overwrite whatever you have and make smtp.yourisp.com the
> DEFAULT and ONLY route for all your mail.
>
> -davidu
Hi davidu,very clear but now I've a problem:
actually my smtproutes contains the name/ip of a local (LAN)
machine who receives mail from qmail machine...
I guess I can't use 2 different rules into smtproutes.
LAN machine can't get mail directly from ISP
*only* from qmail :-(
Marco
Marco writes:
> Hi davidu,very clear but now I've a problem:
> actually my smtproutes contains the name/ip of a local (LAN)
> machine who receives mail from qmail machine...
And for whom does this machine recieve mail from? Is it to employees or
something on the lan? Do they all have a common domain? (Read on)
> I guess I can't use 2 different rules into smtproutes.
> LAN machine can't get mail directly from ISP
> *only* from qmail :-(
You can do this:
1) Lets say you have office.company.com and you want all mail to go from the
server out to smtp.isp.com except for mail destined for employees on the
"office.company.com" mail server.
you could do this in your /var/qmail/control/smtproutes
>>>>> office.company.com:smtp.office.company.com
>>>>> :smtp.isp.com
This would make all mail destined for "office.company.com" go to a mail
server at "smtp.office.company.com" and ALL other mail to "smtp.isp.com"
Hopefully this makes sense and helps,
please someone correct me if I am wrong. ;-)
-davidu
I'm getting a '_' appended to the remote
destination domain name for ex. [EMAIL PROTECTED], the '.com' is '.com_',
this only happens when I try to send mail from a host other than the local mail
server, from the mail server the domain name is fine and the mail is sent, any
suggestions, here's a log snippet..
WORKS..
@400000003ae09a3926feb444 new msg
389935
@400000003ae09a3926fefe7c info msg 389935: bytes 199 from <[EMAIL PROTECTED]> qp 2484 uid
0
@400000003ae09a392a1eff44 starting delivery 23: msg 389935 to remote [EMAIL PROTECTED]
@400000003ae09a392a1f3dc4
status: local 0/10 remote 1/20
@400000003ae09a3b3867d3b4 delivery 23:
success:
209.150.200.6_accepted_message./Remote_host_said:_250_<3AE0904F00000FDC>_Mail_accepted/
@400000003ae09a3b38683174
status: local 0/10 remote 0/20
@400000003ae09a3b38684ccc end msg
389935
FAILS..
@400000003ae09b2306eb2bec new msg
389935
@400000003ae09b2306eb723c info msg 389935: bytes 1320 from <[EMAIL PROTECTED]> qp 2492 uid
507
@400000003ae09b230a7bebfc starting delivery 24: msg 389935 to remote [EMAIL PROTECTED]
@400000003ae09b230a7c1ec4
status: local 0/10 remote 1/20
@400000003ae09b230d26d81c delivery 24:
failure:
Sorry,_I_couldn't_find_any_host_named_aromasys.com?._(#5.1.2)/
@400000003ae09b230d27169c
status: local 0/10 remote 0/20
@400000003ae09b2310af6e54 bounce msg 389935 qp
2494
@400000003ae09b2310b1b45c end msg 389935
Any suggestions?
|
On Sat, Apr 21, 2001 at 04:12:22PM -0500, Tim Holzmann wrote:
> I'm getting a '_' appended to the remote destination domain name for ex.
> [EMAIL PROTECTED], the '.com' is '.com_', this only happens when I try to
> send mail from a host other than the local mail server, from the mail server
> the domain name is fine and the mail is sent, any suggestions, here's a log
> snippet..
Are you using tcpserver? If so, are you setting RELAYCLIENT=" " instead of
RELAYCLIENT="" (note that the first one has a space between the quotation
marks)?
Chris
PGP signature
On Fri, Apr 20, 2001 at 01:30:48PM -0400, alexus wrote:
> there is nothing wrong with that..
there is.
> people asking even more stupidest question then i am..
if they do then only once and learn their lesson then.
> if you feel so busy then don't read e-mail, ignore it, unsubscribe from the
> list READ subject (thats what they are for) and you won't have to read
Leave this list and get a life.
--
Henning Brauer | BS Web Services
Hostmaster BSWS | Roedingsmarkt 14
[EMAIL PROTECTED] | 20459 Hamburg
http://www.bsws.de | Germany
|
Hi all,
I did a search from the archive to find no info on
this...
I run a webhosting company. When a client
doesn't pay, we simply move their public_html directory and put an ad for our
services in its place. However, many times, I have noticed that for the
month of 'on hold' status, these people continue to utilize their
e-mail.
We've got vpopmail running right now.
My initial thoughts were to simply change the pop3
account passwords, but I honestly can't sit here changing 200 passwords.
Plus, changing them back would be a b..... would be not fun.
Is there a way that I could set a whole domain to a
'hold' status, so all of the mail waits for them, until the hold is
removed?
If so, will this method also prevent people who
have their mail simply forwarded to another address from getting their mail (it
should)?
Thanks for your time.
-Mike
|
Write a small script that'll add a '*' to the first character
of their password and then add something to the path of their home
directory to something broken like '/foo'. -sc
On Sat, Apr 21, 2001 at 05:59:34PM -0700, Mike K wrote:
> Delivered-To: [EMAIL PROTECTED]
> Mailing-List: contact [EMAIL PROTECTED]; run by ezmlm
> Precedence: bulk
> Delivered-To: mailing list [EMAIL PROTECTED]
> From: "Mike K" <[EMAIL PROTECTED]>
> To: <[EMAIL PROTECTED]>
> Subject: put a whole domain 'on hold'
> Date: Sat, 21 Apr 2001 17:59:34 -0700
> X-Priority: 3
> X-MSMail-Priority: Normal
> X-Mailer: Microsoft Outlook Express 5.50.4133.2400
> X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4133.2400
>
> Hi all,
>
> I did a search from the archive to find no info on this...
>
> I run a webhosting company. When a client doesn't pay, we simply move their
>public_html directory and put an ad for our services in its place. However, many
>times, I have noticed that for the month of 'on hold' status, these people continue
>to utilize their e-mail.
>
> We've got vpopmail running right now.
>
> My initial thoughts were to simply change the pop3 account passwords, but I honestly
>can't sit here changing 200 passwords. Plus, changing them back would be a b.....
>would be not fun.
>
> Is there a way that I could set a whole domain to a 'hold' status, so all of the
>mail waits for them, until the hold is removed?
>
> If so, will this method also prevent people who have their mail simply forwarded to
>another address from getting their mail (it should)?
>
> Thanks for your time.
>
> -Mike
--
Sean Chittenden
PGP signature
man dot-qmail:
SAFE QMAIL EDITING
Incoming messages can arrive at any moment. If you want to
safely edit your .qmail file, first set the sticky bit on
your home directory:
chmod +t $HOME
qmail-local will temporarily defer delivery of any message
to you if your home directory is sticky (or group-writable
or other-writable, which should never happen). Make sure to
chmod -t $HOME
when you are done! It's a good idea to test your new .qmail
file as follows:
qmail-local -n $USER ~ $USER '' '' '' '' ./Mailbox
I have no idea if mail will follow the usual timeout schedule if it's being
deferred because of this.
HTH,
J.
From: "Mike K" <[EMAIL PROTECTED]>
> Is there a way that I could set a whole domain to a 'hold' status,
> so all of the mail waits for them, until the hold is removed?
|
Mike,
if you
use large site support in vpopmail (ie, one table for each virtual domain), 1)
rename the table or 2) back it up and change all passwords to something
improbable. You can use step 2 even if all the virtual domains are hold in one
single table. This will avoid users from logging but the messages will still be
hold on theyr mailboxes.
I
suppose your vpopmail configuration authenticate using a
RDBMS...
Back
up and remove all mailing list subscriptions, keep hold the last message number
distributed, so you can make a script that restores the mailing list queue as if
they were delayed.
Don't
touch theyr directories, so the messages keep arriving.
You
can build a simple Perl or PHP script to that (like: holdondomain.pl
{domainname}) and undo later without missing one single
message.
Cheers,
Wagner.
Hi all,
I did a search from the archive to find no info
on this...
I run a webhosting company. When a client
doesn't pay, we simply move their public_html directory and put an ad for our
services in its place. However, many times, I have noticed that for the
month of 'on hold' status, these people continue to utilize their
e-mail.
We've got vpopmail running right
now.
My initial thoughts were to simply change the
pop3 account passwords, but I honestly can't sit here changing 200
passwords. Plus, changing them back would be a b..... would be not
fun.
Is there a way that I could set a whole domain to
a 'hold' status, so all of the mail waits for them, until the hold is
removed?
If so, will this method also prevent people who
have their mail simply forwarded to another address from getting their mail
(it should)?
Thanks for your time.
-Mike
|
Dear All,
I have Qmail server in my LAN. It is currently getting authentication from
Microsoft SQL Server on NT. Now I want it authenticate the users from local
Linux ( Redhat) Passwd file . Can some body help me in this regard,
Sajjad Ahmad
.
------------------------------------------------------------------
This electronic transmission is strictly confidential
and intended solely for the addressee. If you are
not the intended addressee, you must not disclose,
copy or take any action in reliance of this transmission.
If you have received this transmission in error it
would be helpful if you could notify us as soon as
possible.
Under Bill s.1618 Title III passed by the 105th
U. S. Congress this mail can not be considered
SPAM
