Re: [courier-users] mta hanging reading smtpaccess.dat
Sam Varshavchik wrote: Marcus Pereira writes: The problem occour in all servers. I already reinstall some them. Some run Debian 32bits, Some Debian 64bits. Some are fresh install, some are old install. But the problem happens in all them. Sounds like a corrupted smtpaccess.dat file. A simple reinstall won't make a difference. Run 'makesmtpaccess' to rebuild the smtpaccess.dat file. That should take care of it. Its not a corrupted smtpaccess.dat. I already changed it and rebuild it lot of times. Last week I made a cleanup and only left arround 40 lines on the smtpaccess file. Just rebuild it today and I already face the problem again. For some reason the hangs become more frequenty this month. Except that it's been happening for more than a year, and occurs randomly. My guess is a db library bug. I'd try a different library (probably gdbm). I could do that, but how? I am using libgdbm 1.8.3 Marcus Pereira -- SF.Net email is Sponsored by MIX09, March 18-20, 2009 in Las Vegas, Nevada. The future of the web can't happen without you. Join us at MIX09 to help pave the way to the Next Web now. Learn more and register at http://ad.doubleclick.net/clk;208669438;13503038;i?http://2009.visitmix.com/ ___ courier-users mailing list courier-users@lists.sourceforge.net Unsubscribe: https://lists.sourceforge.net/lists/listinfo/courier-users
Re: [courier-users] mta hanging reading smtpaccess.dat
Marcus Pereira pisze: Sam Varshavchik wrote: [...] Except that it's been happening for more than a year, and occurs randomly. My guess is a db library bug. I'd try a different library (probably gdbm). I could do that, but how? I am using libgdbm 1.8.3 Hello Marcus, We also noticed that problem with smtpaccess.dat file many times. We are using libgdbm 1.8.3 (from Ubuntu package libgdbm3 1.8.3-3) like you. It's the most recently version of libgdbm for Debian and Ubuntu. My best regards, Pawel -- SF.Net email is Sponsored by MIX09, March 18-20, 2009 in Las Vegas, Nevada. The future of the web can't happen without you. Join us at MIX09 to help pave the way to the Next Web now. Learn more and register at http://ad.doubleclick.net/clk;208669438;13503038;i?http://2009.visitmix.com/ ___ courier-users mailing list courier-users@lists.sourceforge.net Unsubscribe: https://lists.sourceforge.net/lists/listinfo/courier-users
Re: [courier-users] mta hanging reading smtpaccess.dat
At a random time (may be hours, days or weeks) the main couriertcpd
keeps running and accepting connections (until the max clients are
reached) but the childs processess never ends.
[...]
2) strace for a child couriertcpd process while on start of the lock
[...]
17:46:43.758570 read(4, ..., 2446) = 0
17:46:43.758654 read(4, ..., 2446) = 0
17:46:43.758762 read(4,
\1\0\0\0\0\0\0\0\216\t\0\0\0\0\0\0r6\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0...,
2446) = 2446
17:46:43.759082 getsockname(5, {sa_family=AF_INET6, sin6_port=htons(25),
If that is called before getsockname, it means it is in bdbobj_open,
right? Are processes starving because of some locking mechanism?
I think at this point the db (smtpaccess.dat) is already open, the hang is
when
the process makes querys.
As I could trace:
. tcpd/tcpd.c:
function accepted calls allowaccess
function allowaccess calls doallowaccess
function doallowaccess calls chkaccess
. tcpd/tcpdaccess.c:
function chkacess calls dbobj_fetch
. bdbobj/bdbobj.c:
function dbobj_fetch calls doquery
** The process get locked on a infinity loop at doquery function (
for (;;) )
function doquery calls dofetch
function dofetch calls (*obj-dbf-get)
From here I could not trace anymore, but I guess it is a call for the
gdbm library.
The fetch is never returning successfully. So the function get locked on
the loop.
May be its some lock at the file or a bug at the library, but since I
could not trace more
I send the message to the list.
Is it bdb4? Is it NFS mounted?
(http://www.oracle.com/technology/documentation/berkeley-db/db/ref/env/remote.html)
No, all smtpaccess.dat files are local.
Some mailboxes are NFS mounted, but at the point of the hang no NFS mounted
file is accessed.
Marcus
--
SF.Net email is Sponsored by MIX09, March 18-20, 2009 in Las Vegas, Nevada.
The future of the web can't happen without you. Join us at MIX09 to help
pave the way to the Next Web now. Learn more and register at
http://ad.doubleclick.net/clk;208669438;13503038;i?http://2009.visitmix.com/
___
courier-users mailing list
courier-users@lists.sourceforge.net
Unsubscribe: https://lists.sourceforge.net/lists/listinfo/courier-users
[courier-users] CRL Check with courier-imap
Hello, With the last version of Courier-imap I successfully configured user certificate authentication. It works well with the SASL external method. However, certificate authentication is valuable only if there is a CRL check to detect revoked certificate. It doesn't seem that this feature is yet implemented in Courier-imap. Has someone an idea in order to set up this CRL check? by adding an external software? Thank you, Henri -- SF.Net email is Sponsored by MIX09, March 18-20, 2009 in Las Vegas, Nevada. The future of the web can't happen without you. Join us at MIX09 to help pave the way to the Next Web now. Learn more and register at http://ad.doubleclick.net/clk;208669438;13503038;i?http://2009.visitmix.com/ ___ courier-users mailing list courier-users@lists.sourceforge.net Unsubscribe: https://lists.sourceforge.net/lists/listinfo/courier-users
Re: [courier-users] Corrupted Pythonfilter greylist_NotPassed database
Paweł Tęcza pisze: Paweł Tęcza pisze: [...] I've read about PostgreSQL support for Pythonfilter, but supposedly it's experimental. Also I don't have PostgreSQL database right now. Hello Folks, Does someone here use Pythonfilter with PostgreSQL? Gordon, What Python module for PostgreSQL support do you use? I've installed PostgreSQL 8.3 server successfully, but I still can't start your Pythonfilter, because of the following error: Dec 15 13:29:34 xxx courierfilter: File /usr/lib/python2.5/site-packages/pythonfilter/TtlDb.py, line 59, in __init__ Dec 15 13:29:34 xxx courierfilter: import pgsql Dec 15 13:29:34 xxx courierfilter: ImportError: No module named pgsql I have installed Ubuntu package named python-pgsql, but it doesn't contain pgsql module. It includes only PgSQL module. There are the same modules? Sorry for stupid questions for you, but I don't have any Python experiences. Have a nice day, P. -- SF.Net email is Sponsored by MIX09, March 18-20, 2009 in Las Vegas, Nevada. The future of the web can't happen without you. Join us at MIX09 to help pave the way to the Next Web now. Learn more and register at http://ad.doubleclick.net/clk;208669438;13503038;i?http://2009.visitmix.com/ ___ courier-users mailing list courier-users@lists.sourceforge.net Unsubscribe: https://lists.sourceforge.net/lists/listinfo/courier-users
Re: [courier-users] mta hanging reading smtpaccess.dat
Except that it's been happening for more than a year, and occurs randomly. My guess is a db library bug. I'd try a different library (probably gdbm). I could do that, but how? I am using libgdbm 1.8.3 Hello Marcus, We also noticed that problem with smtpaccess.dat file many times. We are using libgdbm 1.8.3 (from Ubuntu package libgdbm3 1.8.3-3) like you. It's the most recently version of libgdbm for Debian and Ubuntu. My best regards, Pawel Hi Pawel, I have servers using Debian libdbdm3 1.8.3-3 and 1.8.3-4. Studing libdbm3 package on Debian I found this bug report: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=274417 I feel suspecious about the fix they made. I removed the patch and rebuild the package. Its now running on 4 of my servers, no problem at all but still too early to say this is the problem. If you want to try my package: http://dl.task.net.br/libgdbm3_1.8.3-4.1_amd64.deb for Debian 64. http://dl.task.net.br/libgdbm3_1.8.3-4.1_i386.deb for Debian 32. Marcus Pereira -- SF.Net email is Sponsored by MIX09, March 18-20, 2009 in Las Vegas, Nevada. The future of the web can't happen without you. Join us at MIX09 to help pave the way to the Next Web now. Learn more and register at http://ad.doubleclick.net/clk;208669438;13503038;i?http://2009.visitmix.com/ ___ courier-users mailing list courier-users@lists.sourceforge.net Unsubscribe: https://lists.sourceforge.net/lists/listinfo/courier-users
Re: [courier-users] mta hanging reading smtpaccess.dat
Marcus Pereira wrote: Studing libdbm3 package on Debian I found this bug report: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=274417 I feel suspecious about the fix they made. I removed the patch and rebuild the package. Its now running on 4 of my servers, no problem at all but still too early to say this is the problem. That's pretty odd. Are your dat files also on Reiser filesystems? -- SF.Net email is Sponsored by MIX09, March 18-20, 2009 in Las Vegas, Nevada. The future of the web can't happen without you. Join us at MIX09 to help pave the way to the Next Web now. Learn more and register at http://ad.doubleclick.net/clk;208669438;13503038;i?http://2009.visitmix.com/ ___ courier-users mailing list courier-users@lists.sourceforge.net Unsubscribe: https://lists.sourceforge.net/lists/listinfo/courier-users
Re: [courier-users] mta hanging reading smtpaccess.dat
Studing libdbm3 package on Debian I found this bug report: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=274417 I feel suspecious about the fix they made. I removed the patch and rebuild the package. Its now running on 4 of my servers, no problem at all but still too early to say this is the problem. That's pretty odd. Are your dat files also on Reiser filesystems? No, its on ext3. -- SF.Net email is Sponsored by MIX09, March 18-20, 2009 in Las Vegas, Nevada. The future of the web can't happen without you. Join us at MIX09 to help pave the way to the Next Web now. Learn more and register at http://ad.doubleclick.net/clk;208669438;13503038;i?http://2009.visitmix.com/ ___ courier-users mailing list courier-users@lists.sourceforge.net Unsubscribe: https://lists.sourceforge.net/lists/listinfo/courier-users
Re: [courier-users] mta hanging reading smtpaccess.dat
Studing libdbm3 package on Debian I found this bug report: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=274417 I feel suspecious about the fix they made. I removed the patch and rebuild the package. Its now running on 4 of my servers, no problem at all but still too early to say this is the problem. That's pretty odd. Are your dat files also on Reiser filesystems? No, its on ext3. -- SF.Net email is Sponsored by MIX09, March 18-20, 2009 in Las Vegas, Nevada. The future of the web can't happen without you. Join us at MIX09 to help pave the way to the Next Web now. Learn more and register at http://ad.doubleclick.net/clk;208669438;13503038;i?http://2009.visitmix.com/ ___ courier-users mailing list courier-users@lists.sourceforge.net Unsubscribe: https://lists.sourceforge.net/lists/listinfo/courier-users
Re: [courier-users] mta hanging reading smtpaccess.dat
Marcus Pereira pisze: Hi Pawel, I have servers using Debian libdbdm3 1.8.3-3 and 1.8.3-4. Studing libdbm3 package on Debian I found this bug report: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=274417 I feel suspecious about the fix they made. I removed the patch and rebuild the package. Its now running on 4 of my servers, no problem at all but still too early to say this is the problem. If you want to try my package: http://dl.task.net.br/libgdbm3_1.8.3-4.1_amd64.deb for Debian 64. http://dl.task.net.br/libgdbm3_1.8.3-4.1_i386.deb for Debian 32. Thanks for the tip, Marcus! I can take a look at your packages, but I don't know when the problem will occur again, of course. BTW, we also have ext3 filesystem :) Good night, P. PS. Here in Poland we have TASK too. It's Polish acronym for Tri-City Academic Computer Network :D -- SF.Net email is Sponsored by MIX09, March 18-20, 2009 in Las Vegas, Nevada. The future of the web can't happen without you. Join us at MIX09 to help pave the way to the Next Web now. Learn more and register at http://ad.doubleclick.net/clk;208669438;13503038;i?http://2009.visitmix.com/ ___ courier-users mailing list courier-users@lists.sourceforge.net Unsubscribe: https://lists.sourceforge.net/lists/listinfo/courier-users
Re: [courier-users] CRL Check with courier-imap
Henri writes: Hello, With the last version of Courier-imap I successfully configured user certificate authentication. It works well with the SASL external method. However, certificate authentication is valuable only if there is a CRL check to detect revoked certificate. It doesn't seem that this feature is yet implemented in Courier-imap. Has someone an idea in order to set up this CRL check? by adding an external software? I do not know of any external library for this. The only support that exists for CRL checking in GnuTLS (and probably OpenSSL), is to check a given cert against a given CRL. There is no support in either GnuTLS (or probably OpenSSL) to automatically download CRLs. You need an entire infrastructure for this, to download and cache CRLs. pgpTTIuTWSePP.pgp Description: PGP signature -- SF.Net email is Sponsored by MIX09, March 18-20, 2009 in Las Vegas, Nevada. The future of the web can't happen without you. Join us at MIX09 to help pave the way to the Next Web now. Learn more and register at http://ad.doubleclick.net/clk;208669438;13503038;i?http://2009.visitmix.com/___ courier-users mailing list courier-users@lists.sourceforge.net Unsubscribe: https://lists.sourceforge.net/lists/listinfo/courier-users
Re: [courier-users] CRL Check with courier-imap
Henri wrote: With the last version of Courier-imap I successfully configured user certificate authentication. It works well with the SASL external method. However, certificate authentication is valuable only if there is a CRL check to detect revoked certificate. It doesn't seem that this feature is yet implemented in Courier-imap. Has someone an idea in order to set up this CRL check? by adding an external software? You should look at OCSP to achieve what you are looking for, it is not dependent on a CA issuing a CRL at some vague policy based frequency and gives you the result you are looking for. There are a number of open source implementations to choose from. HTH, -Enda. -- SF.Net email is Sponsored by MIX09, March 18-20, 2009 in Las Vegas, Nevada. The future of the web can't happen without you. Join us at MIX09 to help pave the way to the Next Web now. Learn more and register at http://ad.doubleclick.net/clk;208669438;13503038;i?http://2009.visitmix.com/ ___ courier-users mailing list courier-users@lists.sourceforge.net Unsubscribe: https://lists.sourceforge.net/lists/listinfo/courier-users
