lows commercial message solicitation but the messages are subject to to a 25 cent per
bit delivery fee and all mail users reserve the right to charge 25 cents per bit or
the amount agreed to in a settlement as a reader fee All standard mail services are f
or preauthorized emails private in nature If you do not agree to pay these fees
disconnect and do not send your messages) with SMTP id gA73e7d17507
for <[EMAIL PROTECTED]>; Wed, 6 Nov 2002 21:40:08 -0600
Message-ID: <023401c28618$b03efbd0$4b02a8c0@destroyer>
From: "James Nelson" <[EMAIL PROTECTED]>
To: "Subscribers of Qpopper" <[EMAIL PROTECTED]>
References: <[EMAIL PROTECTED]>
Subject: Re: qpopper and ipchains config
Date: Wed, 6 Nov 2002 22:46:08 -0600
MIME-Version: 1.0
Content-Type: text/plain; charset="iso-8859-1"
Content-Transfer-Encoding: 8bit
X-Priority: 3
X-MSMail-Priority: Normal
X-Mailer: Microsoft Outlook Express 6.00.2720.3000
Disposition-Notification-To: "James Nelson" <[EMAIL PROTECTED]>
X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000
my only tip is to ALWAY put a
ipchains -j DENY -A input -s 0/0 -d 0/0 -p all --log at the end of your
rules!!
The problem would show up in /var/log/messages immediately.
----- Original Message -----
From: "Phil Stubbington" <[EMAIL PROTECTED]>
To: "Subscribers of Qpopper" <[EMAIL PROTECTED]>
Sent: Thursday, October 31, 2002 1:56 AM
Subject: qpopper and ipchains config
> Hi,
>
> I've been trying to get qpopper configured for a few days now, and after
> lots of false starts (no thanks to M*cr*s*ft Outl**k or Outl**k Express) I
> think I've tracked the problem down to ipchains.
>
> When trying to connect using Express, I get the following errors:-
>
> The connection to the server has failed. Account: 'xxxxxx.com', Server:
> 'mail. xxxxxx.com', Protocol: SMTP, Port: 25, Secure(SSL): No, Socket
Error:
> 10061, Error Number: 0x800CCC0E
>
> The connection to the server has failed. Account: 'xxxxxx.com', Server:
> 'xxxxxx.com', Protocol: POP3, Port: 110, Secure(SSL): No, Socket Error:
> 10071, Error Number: 0x800CCC0E
>
> Now, na�ve me assumed that the comment about SSL meant it was trying to
use
> SSL to connect to the port.
>
> However, if I remove the following rule from ipchains:-
>
> REJECT tcp -y---- anywhere anywhere any ->
> any
>
> Then the pop3 connection works. I need to do the equivalent for SMTP also,
> as I understand it.
>
> Now, what I'm a little confused about is whether this is the correct &
> safest way to configure ipchains to allow qpopper to work?
>
> I need to allow any external client with a valid IP address to connect via
> pop3 and SMTP using using the appropriate ports. Presumably it's a good
> idea to reject invalid IP addresses and to reject connections that appear
to
> come from the internal network address. I guess there is more I can do to
> secure things by using APOP, SSL, etc. but first things first.
>
> I would be grateful for any help.
>
> Thanks,
> Phil
>
>
>
>
