Re: Web mail for not local domains.
On 28 November 2010 20:56, Grant Peel gp...@thenetnow.com wrote: Openwebmail 1.53 -Grant -Original Message- From: Jim Pazarena Sent: Sunday, November 28, 2010 2:42 PM To: freebsd-questions@freebsd.org Subject: Re: Web mail for not local domains. On 2010-11-28 9:36 AM, Jorge Biquez wrote: Hello all. I was wondering if you can suggest the best application you consider for the following. roundcube -- Jim Pazarena fqu...@paz.bz ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org all of the above will do it fine. Just make sure you set them up to do it via imap not pop3. Google mail should work fine as well as that can hook into imap accounts ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Web mail for not local domains.
Hello all. I was wondering if you can suggest the best application you consider for the following. I am supporting a non profit organization, so the budget is less than zero. They already have a freebsd server (8.1) and are using sendmail for about 20 accounts, not big traffic. In their pc's (windows xp) they are using eudora (free version) as a client without problems (POP). I would like to install them a webmail that let them access the local accounts in the server BUT that also let them access some other accounts with another providers. No gmail, hotmail or so, but POP3 accounts that are hosted under other domains with other ISP's . Actually no problem under they eudora mail client, but the idea is that when they out in conference or so they also can have access to the accounts under the freebsd server and the other provider. Thanks in advance for your comments. Jorge Biquez ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Web mail for not local domains.
On 28/11/10 18:36, Jorge Biquez wrote: Hello all. I was wondering if you can suggest the best application you consider for the following. I am supporting a non profit organization, so the budget is less than zero. They already have a freebsd server (8.1) and are using sendmail for about 20 accounts, not big traffic. In their pc's (windows xp) they are using eudora (free version) as a client without problems (POP). I would like to install them a webmail that let them access the local accounts in the server BUT that also let them access some other accounts with another providers. No gmail, hotmail or so, but POP3 accounts that are hosted under other domains with other ISP's . Actually no problem under they eudora mail client, but the idea is that when they out in conference or so they also can have access to the accounts under the freebsd server and the other provider. Thanks in advance for your comments. Jorge Biquez Hi, I *think* (not 100% sure and I don't have one to test right now) Horde IMP can do that Firas ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Web mail for not local domains.
On 11/29/10 03:36, Jorge Biquez wrote: Hello all. I was wondering if you can suggest the best application you consider for the following. I am supporting a non profit organization, so the budget is less than zero. They already have a freebsd server (8.1) and are using sendmail for about 20 accounts, not big traffic. In their pc's (windows xp) they are using eudora (free version) as a client without problems (POP). I would like to install them a webmail that let them access the local accounts in the server BUT that also let them access some other accounts with another providers. No gmail, hotmail or so, but POP3 accounts that are hosted under other domains with other ISP's . Actually no problem under they eudora mail client, but the idea is that when they out in conference or so they also can have access to the accounts under the freebsd server and the other provider. Thanks in advance for your comments. Jorge Biquez mail/atmail no question. A little annoying for me (as I don't specifically want those features) but perfect for what you want. HTH ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Web mail for not local domains.
On 2010-11-28 9:36 AM, Jorge Biquez wrote: Hello all. I was wondering if you can suggest the best application you consider for the following. roundcube -- Jim Pazarena fqu...@paz.bz ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Web mail for not local domains.
Openwebmail 1.53 -Grant -Original Message- From: Jim Pazarena Sent: Sunday, November 28, 2010 2:42 PM To: freebsd-questions@freebsd.org Subject: Re: Web mail for not local domains. On 2010-11-28 9:36 AM, Jorge Biquez wrote: Hello all. I was wondering if you can suggest the best application you consider for the following. roundcube -- Jim Pazarena fqu...@paz.bz ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Sendmail to Relay different domains to different hosts
I am using Sendmail on a FreeBSD7.0 server as a mail relay for some of our servers. These servers relay messages to both internal recipients and external customers. I need to be able to relay mail destined to our internal domain recipients to our corporate mail servers but relay everything else out to our usual smart host. So basically, I am looking to relay emails destined for a certain domain to one host and the rest of the mail to another. Does anyone know how I could configure sendmail to accomplish this? Thanks in advance for your help. Greg ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Sendmail to Relay different domains to different hosts
On Fri, 6 Feb 2009 13:15:02 -0500, greg.st...@sungard.com wrote: I am using Sendmail on a FreeBSD7.0 server as a mail relay for some of our servers. These servers relay messages to both internal recipients and external customers. I need to be able to relay mail destined to our internal domain recipients to our corporate mail servers but relay everything else out to our usual smart host. So basically, I am looking to relay emails destined for a certain domain to one host and the rest of the mail to another. Does anyone know how I could configure sendmail to accomplish this? That's what `mailertable' is for. Enable in your `sendmail.mc' file the mailertable feature: FEATURE(`mailertable', `hash /etc/mail/mailertable') Then create an `/etc/mail/mailertable' map with something like: @internal.domainesmtp:[internal.relay.host] Generate the `mailertable.db' map with makemap: # cd /etc/mail # makemap hash mailertable mailertable and you're done. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Sendmail to Relay different domains to different hosts
In the last episode (Feb 06), greg.st...@sungard.com said: I am using Sendmail on a FreeBSD7.0 server as a mail relay for some of our servers. These servers relay messages to both internal recipients and external customers. I need to be able to relay mail destined to our internal domain recipients to our corporate mail servers but relay everything else out to our usual smart host. So basically, I am looking to relay emails destined for a certain domain to one host and the rest of the mail to another. Does anyone know how I could configure sendmail to accomplish this? You want to use the /etc/mail/mailertable file: http://www.sendmail.org/m4/mailertables.html -- Dan Nelson dnel...@allantgroup.com ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Sendmail to Relay different domains to different hosts
greg.st...@sungard.com wrote: I am using Sendmail on a FreeBSD7.0 server as a mail relay for some of our servers. These servers relay messages to both internal recipients and external customers. I need to be able to relay mail destined to our internal domain recipients to our corporate mail servers but relay everything else out to our usual smart host. So basically, I am looking to relay emails destined for a certain domain to one host and the rest of the mail to another. Does anyone know how I could configure sendmail to accomplish this? Yes. Take a look at the `mailertable.sample' file. Create an empty 'mailertable' file in /etc/mail, and add the domain-to-server maps to it: corporate.com smtp:relay.corporate.com other.com smtp:some.other.server.com ...and then IIRC: # cd /etc/mail # makemap hash mailertable mailertable Steve ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
RE: Sendmail to Relay different domains to different hosts
Great! I will give this a try. If I put a single entry into the mailertable for the corporate domain would everything else default to the smarthost defined in sendmail.cf? Thanks, Greg -Original Message- From: Steve Bertrand [mailto:st...@ibctech.ca] Sent: Friday, February 06, 2009 2:03 PM To: Stark, Greg Cc: freebsd-questions@freebsd.org Subject: Re: Sendmail to Relay different domains to different hosts greg.st...@sungard.com wrote: I am using Sendmail on a FreeBSD7.0 server as a mail relay for some of our servers. These servers relay messages to both internal recipients and external customers. I need to be able to relay mail destined to our internal domain recipients to our corporate mail servers but relay everything else out to our usual smart host. So basically, I am looking to relay emails destined for a certain domain to one host and the rest of the mail to another. Does anyone know how I could configure sendmail to accomplish this? Yes. Take a look at the `mailertable.sample' file. Create an empty 'mailertable' file in /etc/mail, and add the domain-to-server maps to it: corporate.com smtp:relay.corporate.com other.com smtp:some.other.server.com ...and then IIRC: # cd /etc/mail # makemap hash mailertable mailertable Steve ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
RE: Sendmail to Relay different domains to different hosts
Just did some testing. A single entry for the corporate domain as described below and the smarthost set for everything else seems to work. Thanks very much everyone! Greg -Original Message- From: owner-freebsd-questi...@freebsd.org [mailto:owner-freebsd-questi...@freebsd.org] On Behalf Of greg.st...@sungard.com Sent: Friday, February 06, 2009 2:10 PM To: st...@ibctech.ca Cc: freebsd-questions@freebsd.org Subject: RE: Sendmail to Relay different domains to different hosts Great! I will give this a try. If I put a single entry into the mailertable for the corporate domain would everything else default to the smarthost defined in sendmail.cf? Thanks, Greg -Original Message- From: Steve Bertrand [mailto:st...@ibctech.ca] Sent: Friday, February 06, 2009 2:03 PM To: Stark, Greg Cc: freebsd-questions@freebsd.org Subject: Re: Sendmail to Relay different domains to different hosts greg.st...@sungard.com wrote: I am using Sendmail on a FreeBSD7.0 server as a mail relay for some of our servers. These servers relay messages to both internal recipients and external customers. I need to be able to relay mail destined to our internal domain recipients to our corporate mail servers but relay everything else out to our usual smart host. So basically, I am looking to relay emails destined for a certain domain to one host and the rest of the mail to another. Does anyone know how I could configure sendmail to accomplish this? Yes. Take a look at the `mailertable.sample' file. Create an empty 'mailertable' file in /etc/mail, and add the domain-to-server maps to it: corporate.com smtp:relay.corporate.com other.com smtp:some.other.server.com ...and then IIRC: # cd /etc/mail # makemap hash mailertable mailertable Steve ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Sendmail to Relay different domains to different hosts
On Fri, 6 Feb 2009 14:09:49 -0500, greg.st...@sungard.com wrote: Great! I will give this a try. If I put a single entry into the mailertable for the corporate domain would everything else default to the smarthost defined in sendmail.cf? Yes. If you want *everything* to be handled through mailertable you have to explicitly configure it to include a . left hand entry: corporate.domain esmtp:[internal.mail.server] .esmtp:[override.stp.relay] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Best way to achive email hosting for several domains
Please, any thoughts here? Best regards. Robi. Roberto Nunnari wrote: Hi. I'd like to know what are the best practices for implementing email hosting for several domains. The service is accessible via pop/imap/webmail Apart from that, I'd like to ask for comments on the actual comfiguration.. The system is already configured and running as follows: # uname -rms FreeBSD 6.1-RELEASE-p23 i386 MTA:sendmail imap/pop:mail/imap-uw webmail:horde from ports Every mailbox as a local unix account, ie: [EMAIL PROTECTED] -- a1 [EMAIL PROTECTED] -- a2 [EMAIL PROTECTED] -- b1 [EMAIL PROTECTED] -- b2 etc.. Now, everything works fine, but I'm a bit concerned with the webmail login.. I'd like [EMAIL PROTECTED] to login with a username equal to the email, but as the authentication in horde is handled by imp, I'm not sure how to proceed with that.. Any hints/suggestions are welcome. Thank you and best regards. Robi. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Best way to achive email hosting for several domains
On Tue, 18 Mar 2008 15:29:29 +0100
Roberto Nunnari [EMAIL PROTECTED] wrote:
Now, everything works fine, but I'm a bit concerned with the
webmail login.. I'd like [EMAIL PROTECTED] to login with a
username equal to the email, but as the authentication in
horde is handled by imp, I'm not sure how to proceed with that..
Hi Roberto,
I try to avoid that beast of horde...but most webmail products that I've seen
(including Horde, if memory doesn't fail me), simply make an imap connection to
your server and pass on whatever auth you give to it IOW, whatever works
for imap works with webmail.
anyway, it wouldn't be too hard to test, right?
B
_
{Beto|Norberto|Numard} Meijome
Unix is very simple, but it takes a genius to understand the simplicity.
Dennis Ritchie
I speak for myself, not my employer. Contents may be hot. Slippery when wet.
Reading disclaimers makes you go blind. Writing them is worse. You have been
Warned.
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Best way to achive email hosting for several domains
--- Norberto Meijome [EMAIL PROTECTED] wrote: On Tue, 18 Mar 2008 15:29:29 +0100 Roberto Nunnari [EMAIL PROTECTED] wrote: Now, everything works fine, but I'm a bit concerned with the webmail login.. I'd like [EMAIL PROTECTED] to login with a username equal to the email, but as the authentication in horde is handled by imp, I'm not sure how to proceed with that.. Hi Roberto, I try to avoid that beast of horde...but most webmail products that I've seen (including Horde, if memory doesn't fail me), simply make an imap connection to your server and pass on whatever auth you give to it IOW, whatever works for imap works with webmail. anyway, it wouldn't be too hard to test, right? B This is indeed how squirrelmail works, and I've found it to be incredibly easy to roll squirrelmail out. Since people will be sending authentication credentials, you may want to set it up on an SSL-enabled web host so that they are not sent in the clear. Generally, I use dovecot which allows me to listen on all IPs for imap/ssl connections, and localhost only for imap non-ssl (for squirrelmail's benefit), then have squirrelmail installed under an ssl vhost, so that users can't send their credentials over the internet in the clear. Take care, mdh Be a better friend, newshound, and know-it-all with Yahoo! Mobile. Try it now. http://mobile.yahoo.com/;_ylt=Ahu06i62sR8HDtDypao8Wcj9tAcJ ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Best way to achive email hosting for several domains
This is indeed how squirrelmail works, and I've found it to be incredibly easy to roll squirrelmail out. sqwebmail is excellent webmail software Since people will be sending authentication credentials, you may want to set it up on an SSL-enabled web host so that they are not sent in the clear. Generally, I use dovecot which allows me to listen on all IPs for imap/ssl connections, and localhost only for imap non-ssl (for squirrelmail's benefit), then have squirrelmail installed under an ssl vhost, so that users can't send their credentials over the internet in the clear. Take care, mdh Be a better friend, newshound, and know-it-all with Yahoo! Mobile. Try it now. http://mobile.yahoo.com/;_ylt=Ahu06i62sR8HDtDypao8Wcj9tAcJ ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Best way to achive email hosting for several domains
Hi Norberto.
Norberto Meijome wrote:
On Tue, 18 Mar 2008 15:29:29 +0100
Roberto Nunnari [EMAIL PROTECTED] wrote:
Now, everything works fine, but I'm a bit concerned with the
webmail login.. I'd like [EMAIL PROTECTED] to login with a
username equal to the email, but as the authentication in
horde is handled by imp, I'm not sure how to proceed with that..
Hi Roberto,
I try to avoid that beast of horde...but most webmail products that I've seen
(including Horde, if memory doesn't fail me), simply make an imap connection to
your server and pass on whatever auth you give to it IOW, whatever works
for imap works with webmail.
Yes.. That's how it works now.. horde simply delegates to imp that
does the authentication to the imap server.. what I mean is that
as users unix accounts are named like aaa01, aaa02, aab01, but
they are mapped to email addresses like [EMAIL PROTECTED],
[EMAIL PROTECTED] and [EMAIL PROTECTED], I'd like to let
the user authenticate to the webmail using the email address,
and then have some piece of software map the email address to
the local unix account before attempting the auth process..
I found out that imp provides hook points to do this kind
of things and maybe I'll go that direction, but I just
would like to hear what other people are doing.. maybe
have aliases in /etc/passwd (ie different usernames, same UID/GID)?
Best regards.
Robi.
anyway, it wouldn't be too hard to test, right?
B
_
{Beto|Norberto|Numard} Meijome
Unix is very simple, but it takes a genius to understand the simplicity.
Dennis Ritchie
I speak for myself, not my employer. Contents may be hot. Slippery when wet.
Reading disclaimers makes you go blind. Writing them is worse. You have been
Warned.
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Best way to achive email hosting for several domains
You could have your imapd authenticate against
something other than /etc/passwd, and map the
usernames in said other authentication mechanism to
the appropriate mail boxes. There's no real reason
nowadays to have a system user for every email user.
Generally speaking, what you want likely doesn't
concern your webmail app at all so much as it does
your imapd. I use dovecot and have found its
configuration to be extremely flexible while not
overwhelmingly complex. You may want to check it out.
I'm using it with a mysql backend as well as exim,
and they have no problem authenticating against the
same mysql tables very easily.
Take care, mdh
--- Roberto Nunnari [EMAIL PROTECTED] wrote:
Hi Norberto.
Norberto Meijome wrote:
On Tue, 18 Mar 2008 15:29:29 +0100
Roberto Nunnari [EMAIL PROTECTED] wrote:
Now, everything works fine, but I'm a bit
concerned with the
webmail login.. I'd like [EMAIL PROTECTED] to
login with a
username equal to the email, but as the
authentication in
horde is handled by imp, I'm not sure how to
proceed with that..
Hi Roberto,
I try to avoid that beast of horde...but most
webmail products that I've seen
(including Horde, if memory doesn't fail me),
simply make an imap connection to
your server and pass on whatever auth you give to
it IOW, whatever works
for imap works with webmail.
Yes.. That's how it works now.. horde simply
delegates to imp that
does the authentication to the imap server.. what I
mean is that
as users unix accounts are named like aaa01, aaa02,
aab01, but
they are mapped to email addresses like
[EMAIL PROTECTED],
[EMAIL PROTECTED] and [EMAIL PROTECTED], I'd
like to let
the user authenticate to the webmail using the email
address,
and then have some piece of software map the email
address to
the local unix account before attempting the auth
process..
I found out that imp provides hook points to do this
kind
of things and maybe I'll go that direction, but I
just
would like to hear what other people are doing..
maybe
have aliases in /etc/passwd (ie different usernames,
same UID/GID)?
Best regards.
Robi.
anyway, it wouldn't be too hard to test, right?
B
_
{Beto|Norberto|Numard} Meijome
Unix is very simple, but it takes a genius to
understand the simplicity.
Dennis Ritchie
I speak for myself, not my employer. Contents may
be hot. Slippery when wet.
Reading disclaimers makes you go blind. Writing
them is worse. You have been
Warned.
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to
[EMAIL PROTECTED]
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to
[EMAIL PROTECTED]
Never miss a thing. Make Yahoo your home page.
http://www.yahoo.com/r/hs
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]
Best way to achive email hosting for several domains
Hi. I'd like to know what are the best practices for implementing email hosting for several domains. The service is accessible via pop/imap/webmail Apart from that, I'd like to ask for comments on the actual comfiguration.. The system is already configured and running as follows: # uname -rms FreeBSD 6.1-RELEASE-p23 i386 MTA:sendmail imap/pop: mail/imap-uw webmail:horde from ports Every mailbox as a local unix account, ie: [EMAIL PROTECTED] -- a1 [EMAIL PROTECTED] -- a2 [EMAIL PROTECTED] -- b1 [EMAIL PROTECTED] -- b2 etc.. Now, everything works fine, but I'm a bit concerned with the webmail login.. I'd like [EMAIL PROTECTED] to login with a username equal to the email, but as the authentication in horde is handled by imp, I'm not sure how to proceed with that.. Any hints/suggestions are welcome. Thank you and best regards. Robi. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Blocking undesirable domains using BIND
Hi, Maxim Khitrov wrote: On Dec 30, 2007 12:31 PM, Darren Spruell [EMAIL PROTECTED] wrote: On Dec 30, 2007 9:52 AM, Maxim Khitrov [EMAIL PROTECTED] wrote: I then installed dnsmasq, which is able to read domain info from the hosts file. Just for the fun of it, I loaded domains from all the sources I've gathered into a separate hosts file - a total of 155,150 entries. Dnsmasq loaded that file and has been running for several minutes now. It's currently taking up a total of 17MB! Now granted, it doesn't need to deal with whole zone files, but this still goes to show the level of efficiency that can be achieved in theory even with this many entries. this sounds like a perfect solution for me too. I will have to try this next year. Erich ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Blocking undesirable domains using BIND
Darren Spruell wrote: On Dec 28, 2007 8:49 AM, Kevin Kinsey [EMAIL PROTECTED] wrote: In the absence of egress filtering on the firewall, that would definitely be an advantage. Does anyone use BIND for filtering in a small to medium business environment then? How does it perform? Performs fine. # rndc status number of zones: 17210 ... snip Thanks, Darren. -- Pity the meek, for they shall inherit the earth. -- Don Marquis ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Blocking undesirable domains using BIND
On Dec 28, 2007 11:28 AM, Rob [EMAIL PROTECTED] wrote: Kevin Kinsey wrote: Just a question, and I'm not trying to cast doubt on your plan; I'm curious why using BIND for this purpose instead of a proxy, which is a more typical application as I understand it? I was trying to do something similar. I didn't research too hard, but figured the only way to use Bind would be to make my server authoritative for all those domains, which meant a huge config file and potential overhead, as well as possibly breaking access to desirable servers in the domains. So hosts seemed easier, but apparently Bind never looks at hosts. I did find that Squid (which I already had installed and in limited use) has its own DNS resolver, and it does look at hosts first before going to the nameserver. Then I found this site: http://everythingisnt.com/hosts.html and put their list in hosts, and now client PCs get a squid error in place of ad junk. Works ok for me ;) -Rob Well... you were right about overhead. In the last two days I wrote a script that would fetch a list of domains from several different sites, and output a valid BIND configuration file that could be included in the main config. I just ran the second test and the results are extremely poor. With only 27,885 blocked domains the server is now consuming 208 MB of ram. The first time I tried reloading the full list of domains (91,137 of them) and that nearly crashed my server. Had to kill bind, remove two of the largest sources, and try a second time. Honestly, I can't figure out what BIND could possibly be using so much memory for. It's taking up about 7 KB for each zone. The zone file itself is not even 1 KB, and given that all the records are pointing to the exact same thing it seems to be needlessly wasting memory. In addition to that, if I comment out the blacklist config file and run rndc reload, it only frees up about 16 MB. So it doesn't even release memory when it is no longer needed. It looks like my plan of using BIND for filtering purposes will not work. Given how poorly it performed on this test I'm actually inclined to try another name server to see if something else would be more memory-efficient. If I can't find anything then I'll need to put some other piece of software to intercept BIND's recursive queries and block the domains that way. - Max ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Blocking undesirable domains using BIND
On Dec 30, 2007 9:52 AM, Maxim Khitrov [EMAIL PROTECTED] wrote: I was trying to do something similar. I didn't research too hard, but figured the only way to use Bind would be to make my server authoritative for all those domains, which meant a huge config file and potential overhead, as well as possibly breaking access to desirable servers in the domains. So hosts seemed easier, but apparently Bind never looks at hosts. I did find that Squid (which I already had installed and in limited use) has its own DNS resolver, and it does look at hosts first before going to the nameserver. Then I found this site: http://everythingisnt.com/hosts.html and put their list in hosts, and now client PCs get a squid error in place of ad junk. Works ok for me ;) Well... you were right about overhead. In the last two days I wrote a script that would fetch a list of domains from several different sites, and output a valid BIND configuration file that could be included in the main config. I just ran the second test and the results are extremely poor. With only 27,885 blocked domains the server is now consuming 208 MB of ram. The first time I tried reloading the full list of domains (91,137 of them) and that nearly crashed my server. Had to kill bind, remove two of the largest sources, and try a second time. Nearly 100,000 zones on that server is a fairly impressive amount. Give it credit for what you're trying to do. :) Nonetheless, crashing is unacceptable. Honestly, I can't figure out what BIND could possibly be using so much memory for. It's taking up about 7 KB for each zone. The zone file itself is not even 1 KB, and given that all the records are pointing to the exact same thing it seems to be needlessly wasting memory. In addition to that, if I comment out the blacklist config file and run rndc reload, it only frees up about 16 MB. So it doesn't even release memory when it is no longer needed. My experience, albeit with a smaller number of zones, is a bit different. First you need to account for main program memory and memory utilized by the nameserver's cache, if any. You may also be running your own authoritative zones which will add memory utilization outside of that. You can't account for all of the utilized memory in your additional blocking zones. Without my blocking zones loaded, I have 6 native zones on my nameserver and the resident memory size of named is 2.2 MB. After a fresh server startup, I expect minimum memory for cached records, so that comes out to be about 375 KB/zone, unscientifically. If I restart named (kill and start server fresh) with my blocking zones in the config, I come out with 17239 zones and a resident process memory size of 59 MB. (Unscientifically again,) this breaks down to about 3.5 KB/zone. In my configuration, each of these blocking zones points to a simple zone file 244B in size on disk: $TTL 86400 @ IN SOA ns.local. admin.local. ( 1 ; serial 1h ; refresh 30m ; retry 7d ; expiration 1h ); minimum IN NS ns.local. IN A 127.0.0.1 * IN A 127.0.0.1 So all told, I seem to notice somewhat slimmer utilization than you (roughly half the memory utilization per zone, and though I have 61% as many zones loaded my named takes only 28% of the memory yours does.) It looks like my plan of using BIND for filtering purposes will not work. Given how poorly it performed on this test I'm actually inclined to try another name server to see if something else would be more memory-efficient. You will almost certainly find most of the popular alternatives to be much more resource efficient. djbdns in particular would be my next choice if memory efficiency and stability are concerns. DS ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Blocking undesirable domains using BIND
On Dec 30, 2007 12:31 PM, Darren Spruell [EMAIL PROTECTED] wrote: On Dec 30, 2007 9:52 AM, Maxim Khitrov [EMAIL PROTECTED] wrote: I was trying to do something similar. I didn't research too hard, but figured the only way to use Bind would be to make my server authoritative for all those domains, which meant a huge config file and potential overhead, as well as possibly breaking access to desirable servers in the domains. So hosts seemed easier, but apparently Bind never looks at hosts. I did find that Squid (which I already had installed and in limited use) has its own DNS resolver, and it does look at hosts first before going to the nameserver. Then I found this site: http://everythingisnt.com/hosts.html and put their list in hosts, and now client PCs get a squid error in place of ad junk. Works ok for me ;) Well... you were right about overhead. In the last two days I wrote a script that would fetch a list of domains from several different sites, and output a valid BIND configuration file that could be included in the main config. I just ran the second test and the results are extremely poor. With only 27,885 blocked domains the server is now consuming 208 MB of ram. The first time I tried reloading the full list of domains (91,137 of them) and that nearly crashed my server. Had to kill bind, remove two of the largest sources, and try a second time. Nearly 100,000 zones on that server is a fairly impressive amount. Give it credit for what you're trying to do. :) Nonetheless, crashing is unacceptable. Honestly, I can't figure out what BIND could possibly be using so much memory for. It's taking up about 7 KB for each zone. The zone file itself is not even 1 KB, and given that all the records are pointing to the exact same thing it seems to be needlessly wasting memory. In addition to that, if I comment out the blacklist config file and run rndc reload, it only frees up about 16 MB. So it doesn't even release memory when it is no longer needed. My experience, albeit with a smaller number of zones, is a bit different. First you need to account for main program memory and memory utilized by the nameserver's cache, if any. You may also be running your own authoritative zones which will add memory utilization outside of that. You can't account for all of the utilized memory in your additional blocking zones. Without my blocking zones loaded, I have 6 native zones on my nameserver and the resident memory size of named is 2.2 MB. After a fresh server startup, I expect minimum memory for cached records, so that comes out to be about 375 KB/zone, unscientifically. If I restart named (kill and start server fresh) with my blocking zones in the config, I come out with 17239 zones and a resident process memory size of 59 MB. (Unscientifically again,) this breaks down to about 3.5 KB/zone. In my configuration, each of these blocking zones points to a simple zone file 244B in size on disk: $TTL 86400 @ IN SOA ns.local. admin.local. ( 1 ; serial 1h ; refresh 30m ; retry 7d ; expiration 1h ); minimum IN NS ns.local. IN A 127.0.0.1 * IN A 127.0.0.1 So all told, I seem to notice somewhat slimmer utilization than you (roughly half the memory utilization per zone, and though I have 61% as many zones loaded my named takes only 28% of the memory yours does.) It looks like my plan of using BIND for filtering purposes will not work. Given how poorly it performed on this test I'm actually inclined to try another name server to see if something else would be more memory-efficient. You will almost certainly find most of the popular alternatives to be much more resource efficient. djbdns in particular would be my next choice if memory efficiency and stability are concerns. DS I was using the exact same zone file as you, one real master zone, and the three slave root zones from the default config. Not sure why it reacted as it did to the blacklist config, but I think I now found a perfect solution. This morning I played around with MaraDNS, which is actually a pretty good DNS server. One problem with it was that it didn't allow includes in the main config. That means that everything has to be in a single file and that's a bit messy. It did a lot better with memory usage, taking up about 70MB for 27 or 28 thousand domains, but still not great. I then installed dnsmasq, which is able to read domain info from the hosts file. Just for the fun of it, I loaded domains from all the sources I've gathered into a separate hosts file - a total of 155,150 entries. Dnsmasq loaded that file and has been running
Re: Blocking undesirable domains using BIND
Olivier Nicole wrote: Again, I'm not trying to convince you otherwise or say that using BIND is a bad idea. It's just that I'm curious because we use Squid for this sort of thing, and I was wondering why BIND instead? I think another issue is that Squid will only filter HTTP/FTP connections, while DNS would allow to filter any type of traffic that would try to go to places with a bad name. Olivier In the absence of egress filtering on the firewall, that would definitely be an advantage. Does anyone use BIND for filtering in a small to medium business environment then? How does it perform? Kevin Kinsey -- I trust the first lion he meets will do his duty. -- J. P. Morgan on Teddy Roosevelt's safari ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Blocking undesirable domains using BIND
On Dec 28, 2007 8:49 AM, Kevin Kinsey [EMAIL PROTECTED] wrote: Olivier Nicole wrote: Again, I'm not trying to convince you otherwise or say that using BIND is a bad idea. It's just that I'm curious because we use Squid for this sort of thing, and I was wondering why BIND instead? I think another issue is that Squid will only filter HTTP/FTP connections, while DNS would allow to filter any type of traffic that would try to go to places with a bad name. Olivier In the absence of egress filtering on the firewall, that would definitely be an advantage. Does anyone use BIND for filtering in a small to medium business environment then? How does it perform? Performs fine. # rndc status number of zones: 17210 ... My 17000+ zones are loaded from the DNS-BH project and increase the startup time of named to about 10 seconds and bump the resident memory size up to about 55M. (AMD Duron 750MHz). There's no real performance hit per se by DNS blackholing, other than the resource utilization increase needed for handling additional zones; your name server would normally be handling these DNS lookups anyway.You're just overriding the response locally rather than recursing for it. The zones themselves typically end up being very small, like a single wildcard record pointing to 127.0.0.1 or a honeypot or whatever. DS ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Blocking undesirable domains using BIND
Kevin Kinsey wrote: Just a question, and I'm not trying to cast doubt on your plan; I'm curious why using BIND for this purpose instead of a proxy, which is a more typical application as I understand it? I was trying to do something similar. I didn't research too hard, but figured the only way to use Bind would be to make my server authoritative for all those domains, which meant a huge config file and potential overhead, as well as possibly breaking access to desirable servers in the domains. So hosts seemed easier, but apparently Bind never looks at hosts. I did find that Squid (which I already had installed and in limited use) has its own DNS resolver, and it does look at hosts first before going to the nameserver. Then I found this site: http://everythingisnt.com/hosts.html and put their list in hosts, and now client PCs get a squid error in place of ad junk. Works ok for me ;) -Rob ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Blocking undesirable domains using BIND
Hi, the guys seem to have some humour: Linux/Unix/Mac OSX Remove the extension and save this to your /etc directory. Considering unix is a server-based OS with a complex permission structure you'll probably want to just append your hosts file instead of overwriting it. OSX can use the hosts file, but copying it to /etc isn't enough. When finished please empty out your cache and restart your browser or reboot your computer. Erich Rob wrote: Then I found this site: http://everythingisnt.com/hosts.html and put their list in hosts, and now client PCs get a squid error in place of ad junk. Works ok for me ;) -Rob ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Blocking undesirable domains using BIND
Hello, I'm currently setting up a new firewall for my home network using FreeBSD 7. The firewall will also act as our local name server (authoritative for the local domain, and caching for everything else). One of the things I'd like to do with it is use BIND to block various undesirable domains (ad servers, malicious sites, etc.). The plan is to have a separate BIND config file which is included in the main one. In that file I map all the blocked domains to either the empty zone or perhaps my local web server that's just serving a blank page for any request. Haven't decided which way is better yet. This file is updated periodically (once a week maybe) and BIND is then told to reload the config. That's the plan as it stands now, eventually I hope to add a web interface to the system for adding and removing blocked domains. My question for you guys is if know any _reliable_ sources for getting that list of domains in the first place? I currently use the hosts file on all my machines, which is about 2MB in size and hasn't been updated in several years. I'll definitely import all of those entries myself, but it would be good if I could periodically pull an updated list from somewhere else. The following site has a pretty decent collection of ad servers, though it's a bit short compared to what I already have: http://pgl.yoyo.org/adservers/. It even provides the list in a BIND format, meaning that I don't need to do any additional processing with it. Just fetch the page and reload BIND. This, however, is not one of my requirements. I'm perfectly happy getting just a list of the domains (in any format), and then processing them into a BIND config file myself. Just need good sources. What are your recommendations? - Max ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Blocking undesirable domains using BIND
On Dec 27, 2007 3:46 PM, Maxim Khitrov [EMAIL PROTECTED] wrote: Hello, I'm currently setting up a new firewall for my home network using FreeBSD 7. The firewall will also act as our local name server (authoritative for the local domain, and caching for everything else). One of the things I'd like to do with it is use BIND to block various undesirable domains (ad servers, malicious sites, etc.). The plan is to have a separate BIND config file which is included in the main one. In that file I map all the blocked domains to either the empty zone or perhaps my local web server that's just serving a blank page for any request. Haven't decided which way is better yet. This file is updated periodically (once a week maybe) and BIND is then told to reload the config. That's the plan as it stands now, eventually I hope to add a web interface to the system for adding and removing blocked domains. My question for you guys is if know any _reliable_ sources for getting that list of domains in the first place? I currently use the hosts file on all my machines, which is about 2MB in size and hasn't been updated in several years. I'll definitely import all of those entries myself, but it would be good if I could periodically pull an updated list from somewhere else. The following site has a pretty decent collection of ad servers, though it's a bit short compared to what I already have: http://pgl.yoyo.org/adservers/. It even provides the list in a BIND format, meaning that I don't need to do any additional processing with it. Just fetch the page and reload BIND. This, however, is not one of my requirements. I'm perfectly happy getting just a list of the domains (in any format), and then processing them into a BIND config file myself. Just need good sources. What are your recommendations? - Max ___ You could always try one of those ad-blocking databases for firefox. The Ad-Block Plus plugin, I was thinking of specifically. http://easylist.adblockplus.org You could grab that file, then parse it and grab the domains out of it to block. I know this isn't what you want, but it may come in useful anyway: http://www.okean.com/asianspamblocks.html ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Blocking undesirable domains using BIND
On Dec 27, 2007 1:46 PM, Maxim Khitrov [EMAIL PROTECTED] wrote: Hello, I'm currently setting up a new firewall for my home network using FreeBSD 7. The firewall will also act as our local name server (authoritative for the local domain, and caching for everything else). One of the things I'd like to do with it is use BIND to block various undesirable domains (ad servers, malicious sites, etc.). The plan is to have a separate BIND config file which is included in the main one. In that file I map all the blocked domains to either the empty zone or perhaps my local web server that's just serving a blank page for any request. Haven't decided which way is better yet. This file is updated periodically (once a week maybe) and BIND is then told to reload the config. That's the plan as it stands now, eventually I hope to add a web interface to the system for adding and removing blocked domains. My question for you guys is if know any _reliable_ sources for getting that list of domains in the first place? I currently use the hosts file on all my machines, which is about 2MB in size and hasn't been updated in several years. I'll definitely import all of those entries myself, but it would be good if I could periodically pull an updated list from somewhere else. The following site has a pretty decent collection of ad servers, though it's a bit short compared to what I already have: http://pgl.yoyo.org/adservers/. It even provides the list in a BIND format, meaning that I don't need to do any additional processing with it. Just fetch the page and reload BIND. This, however, is not one of my requirements. I'm perfectly happy getting just a list of the domains (in any format), and then processing them into a BIND config file myself. Just need good sources. What are your recommendations? Look into the Blackhole-DNS project, formerly one of the BleedingThreats projects hosted at http://www.bleedingsnort.com/blackhole-dns/. This project tracks many hostile domains and produces BIND format files for this very purpose. It's not a great resource for ad blocking, as it focuses mainly on security threats (spyware, other malware, etc.) Since there has been some shuffling and reorganization happening around the BleedingThreats project, it's in a state of flux right now. The current home of the DNS-BH project is at http://malwaredomains.com/. -- Darren Spruell [EMAIL PROTECTED] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Blocking undesirable domains using BIND
Maxim Khitrov wrote: into a BIND config file myself. Just need good sources. What are your recommendations? I keep a small but potent list of undesirables as described here... http://mark.foster.cc/wiki/index.php/Trackers -- Said one park ranger, 'There is considerable overlap between the intelligence of the smartest bears and the dumbest tourists.' Mark D. Foster, CISSP [EMAIL PROTECTED] http://mark.foster.cc/ ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Blocking undesirable domains using BIND
Maxim Khitrov wrote: Hello, I'm currently setting up a new firewall for my home network using FreeBSD 7. The firewall will also act as our local name server (authoritative for the local domain, and caching for everything else). One of the things I'd like to do with it is use BIND to block various undesirable domains (ad servers, malicious sites, etc.). The plan is to have a separate BIND config file which is included in the main one. Just a question, and I'm not trying to cast doubt on your plan; I'm curious why using BIND for this purpose instead of a proxy, which is a more typical application as I understand it? Again, I'm not trying to convince you otherwise or say that using BIND is a bad idea. It's just that I'm curious because we use Squid for this sort of thing, and I was wondering why BIND instead? Kevin Kinsey In that file I map all the blocked domains to either the empty zone or perhaps my local web server that's just serving a blank page for any request. Haven't decided which way is better yet. This file is updated periodically (once a week maybe) and BIND is then told to reload the config. That's the plan as it stands now, eventually I hope to add a web interface to the system for adding and removing blocked domains. My question for you guys is if know any _reliable_ sources for getting that list of domains in the first place? I currently use the hosts file on all my machines, which is about 2MB in size and hasn't been updated in several years. I'll definitely import all of those entries myself, but it would be good if I could periodically pull an updated list from somewhere else. The following site has a pretty decent collection of ad servers, though it's a bit short compared to what I already have: http://pgl.yoyo.org/adservers/. It even provides the list in a BIND format, meaning that I don't need to do any additional processing with it. Just fetch the page and reload BIND. This, however, is not one of my requirements. I'm perfectly happy getting just a list of the domains (in any format), and then processing them into a BIND config file myself. Just need good sources. What are your recommendations? - Max -- QOTD: A child of 5 could understand this! Fetch me a child of 5. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Blocking undesirable domains using BIND
Hi, I use hosts to block unwanted content but on per machine base. I use currentlu this as a starting point and add private preferences to hosts. http://www.mvps.org/winhelp2002/hosts.txt Has bind a visible advantage in the response time? Erich Maxim Khitrov wrote: Hello, I'm currently setting up a new firewall for my home network using FreeBSD 7. The firewall will also act as our local name server (authoritative for the local domain, and caching for everything else). One of the things I'd like to do with it is use BIND to block various undesirable domains (ad servers, malicious sites, etc.). The plan is to have a separate BIND config file which is included in the main one. In that file I map all the blocked domains to either the empty zone or perhaps my local web server that's just serving a blank page for any request. Haven't decided which way is better yet. This file is updated periodically (once a week maybe) and BIND is then told to reload the config. That's the plan as it stands now, eventually I hope to add a web interface to the system for adding and removing blocked domains. My question for you guys is if know any _reliable_ sources for getting that list of domains in the first place? I currently use the hosts file on all my machines, which is about 2MB in size and hasn't been updated in several years. I'll definitely import all of those entries myself, but it would be good if I could periodically pull an updated list from somewhere else. The following site has a pretty decent collection of ad servers, though it's a bit short compared to what I already have: http://pgl.yoyo.org/adservers/. It even provides the list in a BIND format, meaning that I don't need to do any additional processing with it. Just fetch the page and reload BIND. This, however, is not one of my requirements. I'm perfectly happy getting just a list of the domains (in any format), and then processing them into a BIND config file myself. Just need good sources. What are your recommendations? - Max ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Blocking undesirable domains using BIND
Has bind a visible advantage in the response time? Maybe not in response time, but certainly in centralisation: you only maintain one DNS instead of every machine. Olivier ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Blocking undesirable domains using BIND
Hi, Olivier Nicole wrote: Has bind a visible advantage in the response time? Maybe not in response time, but certainly in centralisation: you only maintain one DNS instead of every machine. this is obvious to me too. I would not like to use bind for filtering except in larger organisations. Erich ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Blocking undesirable domains using BIND
On Dec 27, 2007 7:16 PM, Kevin Kinsey [EMAIL PROTECTED] wrote: Maxim Khitrov wrote: Hello, I'm currently setting up a new firewall for my home network using FreeBSD 7. The firewall will also act as our local name server (authoritative for the local domain, and caching for everything else). One of the things I'd like to do with it is use BIND to block various undesirable domains (ad servers, malicious sites, etc.). The plan is to have a separate BIND config file which is included in the main one. Just a question, and I'm not trying to cast doubt on your plan; I'm curious why using BIND for this purpose instead of a proxy, which is a more typical application as I understand it? Again, I'm not trying to convince you otherwise or say that using BIND is a bad idea. It's just that I'm curious because we use Squid for this sort of thing, and I was wondering why BIND instead? Kevin Kinsey I also need a local name server for my domain. That's the primary function, and this filtering stuff is just an added bonus. It'll also be nice to bypass the ISP name servers, which haven't been very reliable lately. - Max ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Blocking undesirable domains using BIND
On Dec 27, 2007 4:27 PM, Schiz0 [EMAIL PROTECTED] wrote: On Dec 27, 2007 3:46 PM, Maxim Khitrov [EMAIL PROTECTED] wrote: Hello, I'm currently setting up a new firewall for my home network using FreeBSD 7. The firewall will also act as our local name server (authoritative for the local domain, and caching for everything else). One of the things I'd like to do with it is use BIND to block various undesirable domains (ad servers, malicious sites, etc.). The plan is to have a separate BIND config file which is included in the main one. In that file I map all the blocked domains to either the empty zone or perhaps my local web server that's just serving a blank page for any request. Haven't decided which way is better yet. This file is updated periodically (once a week maybe) and BIND is then told to reload the config. That's the plan as it stands now, eventually I hope to add a web interface to the system for adding and removing blocked domains. My question for you guys is if know any _reliable_ sources for getting that list of domains in the first place? I currently use the hosts file on all my machines, which is about 2MB in size and hasn't been updated in several years. I'll definitely import all of those entries myself, but it would be good if I could periodically pull an updated list from somewhere else. The following site has a pretty decent collection of ad servers, though it's a bit short compared to what I already have: http://pgl.yoyo.org/adservers/. It even provides the list in a BIND format, meaning that I don't need to do any additional processing with it. Just fetch the page and reload BIND. This, however, is not one of my requirements. I'm perfectly happy getting just a list of the domains (in any format), and then processing them into a BIND config file myself. Just need good sources. What are your recommendations? - Max ___ You could always try one of those ad-blocking databases for firefox. The Ad-Block Plus plugin, I was thinking of specifically. http://easylist.adblockplus.org You could grab that file, then parse it and grab the domains out of it to block. I know this isn't what you want, but it may come in useful anyway: http://www.okean.com/asianspamblocks.html The problem with adblock is that it uses regular expressions in its file format. No easy way of pulling out all the domains. That IP block info will come in handy when setting up pf, so thanks for that. - Max ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Blocking undesirable domains using BIND
Again, I'm not trying to convince you otherwise or say that using BIND is a bad idea. It's just that I'm curious because we use Squid for this sort of thing, and I was wondering why BIND instead? I think another issue is that Squid will only filter HTTP/FTP connections, while DNS would allow to filter any type of traffic that would try to go to places with a bad name. Olivier ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
OT: UltraDNS and dor org domains.
We just put our replacement DNS servers online, djbdns replacing Bind. In testing with the few domains we have moved to the new servers we began getting intermittent failures for some clients. It is only dot org domains, checking deeper it ain't us. If I do a domain query from dnsstuff for any org, I sometimes get nothing but name server records. This happens when the root servers refer the query to TLSx.Ultradns.net. I see ultradns failing to return A records for slashdot.org and openoffice.org as well others. Is anyone else seeing this? DAve -- Three years now I've asked Google why they don't have a logo change for Memorial Day. Why do they choose to do logos for other non-international holidays, but nothing for Veterans? Maybe they forgot who made that choice possible. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: OT: UltraDNS and dor org domains.
On Oct 22, 2007, at 11:43 AM, DAve wrote: It is only dot org domains, checking deeper it ain't us. If I do a domain query from dnsstuff for any org, I sometimes get nothing but name server records. This happens when the root servers refer the query to TLSx.Ultradns.net. I see ultradns failing to return A records for slashdot.org and openoffice.org as well others. Is anyone else seeing this? No, but I use dig, not dnsstuff. Are the missing records visible by: dig slashdot.org @ns1.ostg.com dig openoffice.org @ns1.collab.net ...? I don't see why ultradns.net would be involved...? -- -Chuck ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: OT: UltraDNS and dor org domains.
On Mon, 22 Oct 2007 13:43:06 -0500 DAve [EMAIL PROTECTED] wrote: We just put our replacement DNS servers online, djbdns replacing Bind. In testing with the few domains we have moved to the new servers we began getting intermittent failures for some clients. It is only dot org domains, checking deeper it ain't us. If I do a domain query from dnsstuff for any org, I sometimes get nothing but name server records. This happens when the root servers refer the query to TLSx.Ultradns.net. I see ultradns failing to return A records for slashdot.org and openoffice.org as well others. I don't see what you are getting at here, why would Ultradns return A-records for slashdot.org when they don't provide that domains DNS? ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: OT: UltraDNS and dor org domains.
On Tue, 23 Oct 2007 01:10:49 +0100 RW [EMAIL PROTECTED] wrote: On Mon, 22 Oct 2007 13:43:06 -0500 DAve [EMAIL PROTECTED] wrote: We just put our replacement DNS servers online, djbdns replacing Bind. In testing with the few domains we have moved to the new servers we began getting intermittent failures for some clients. It is only dot org domains, checking deeper it ain't us. If I do a domain query from dnsstuff for any org, I sometimes get nothing but name server records. This happens when the root servers refer the query to TLSx.Ultradns.net. I see ultradns failing to return A records for slashdot.org and openoffice.org as well others. I don't see what you are getting at here, why would Ultradns return A-records for slashdot.org when they don't provide that domains DNS? but if you're asking why it doesn't provide A-records for the domain's nameservers, then presumably it's because the nameservers themselves are using a different TLD. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: OT: UltraDNS and dor org domains.
Chuck Swiger wrote: On Oct 22, 2007, at 11:43 AM, DAve wrote: It is only dot org domains, checking deeper it ain't us. If I do a domain query from dnsstuff for any org, I sometimes get nothing but name server records. This happens when the root servers refer the query to TLSx.Ultradns.net. I see ultradns failing to return A records for slashdot.org and openoffice.org as well others. Is anyone else seeing this? No, but I use dig, not dnsstuff. Are the missing records visible by: dig slashdot.org @ns1.ostg.com dig openoffice.org @ns1.collab.net Dig works here as to be expected. Not a problem. ...? I don't see why ultradns.net would be involved...? Because dnsstuff is the only service where I can see the full path of the query. Dig does not show me how/where it queries, it simply provides the answer. I cannot see the output of the +trace command due to my network. I think it is an ultradns issue because they are the only TLD server that doesn't return a SOA record. I am thinking, maybe dangerous, that our client's AD install doesn't handle a query response properly for that reason. One look at my DNS logs tells me AD is rarely configured properly. DAve -- Three years now I've asked Google why they don't have a logo change for Memorial Day. Why do they choose to do logos for other non-international holidays, but nothing for Veterans? Maybe they forgot who made that choice possible. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
How to answer mails to me@all my domains?
Hello! A silly question probably. How do I get FreeBSD, or Postfix, to give me all e-mails sent to me@all the domains in my nameserver? Can /etc/aliases do this, or something else? Thanks guys, Kyrre ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: How to answer mails to me@all my domains?
look at /usr/local/etc/postfix/virtual and man 5 virtual it will explain how to handle virtual domains and direct anything to any mail account you want Kyrre Nygård wrote: Hello! A silly question probably. How do I get FreeBSD, or Postfix, to give me all e-mails sent to me@all the domains in my nameserver? Can /etc/aliases do this, or something else? Thanks guys, Kyrre ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: How to answer mails to me@all my domains?
Eric wrote: look at /usr/local/etc/postfix/virtual and man 5 virtual it will explain how to handle virtual domains and direct anything to any mail account you want I really appreciate it man, thanks a lot! -- Kyrre ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: How to answer mails to me@all my domains?
Eric wrote: look at /usr/local/etc/postfix/virtual and man 5 virtual it will explain how to handle virtual domains and direct anything to any mail account you want All I had to do was to add the domain to mydestinations! Thanks again! ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
setfacl(1) - Can FreeBSD's ACLs contain groups from NT/AD domains ?
Hi all, I have FreeBSD 7.0-CURRENT #1: Wed Jul 25 authenticating successfully against active directory via samba's winbindd(8). I need to manage samba shares via FreeBSD ACLs and CIFS ACLs. From my reading of setfacl(1) I should be able to set group permissions using the syntax of DOMAIN\group-name. For example: #setfacl -d -m g:MYDOMAIN\mygroupname:rwx test However, when I do this on FreeBSD -CURRENT I get the following error: #setfacl -d -m g:MYDOMAIN\mygroupname:rwx test setfacl: g:MYDOMAIN\mygroupname: Invalid argument From a quick Google it looks like Linux ACLs can do the aforementioned [http://www.techtutorials.net/blogs/index.php?mode=viewuseruser_id=7]. Does anyone know ? -aW IMPORTANT: This email remains the property of the Australian Defence Organisation and is subject to the jurisdiction of section 70 of the CRIMES ACT 1914. If you have received this email in error, you are requested to contact the sender and delete the email. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
RE: setfacl(1) - Can FreeBSD's ACLs contain groups from NT/AD domains ?
Hi all, I have FreeBSD 7.0-CURRENT #1: Wed Jul 25 authenticating successfully against active directory via samba's winbindd(8). I need to manage samba shares via FreeBSD ACLs and CIFS ACLs. From my reading of setfacl(1) I should be able to set group permissions using the syntax of DOMAIN\group-name. For example: #setfacl -d -m g:MYDOMAIN\mygroupname:rwx test However, when I do this on FreeBSD -CURRENT I get the following error: #setfacl -d -m g:MYDOMAIN\mygroupname:rwx test setfacl: g:MYDOMAIN\mygroupname: Invalid argument From a quick Google it looks like Linux ACLs can do the aforementioned [http://www.techtutorials.net/blogs/index.php?mode=viewuseruser_id=7]. Does anyone know ? As far as i know and the way i do it is leaving the Domain part out just the group name. Wbinfo -g shows the groups if all is ok. Regards, Johan No virus found in this outgoing message. Checked by AVG Free Edition. Version: 7.5.476 / Virus Database: 269.11.6/938 - Release Date: 5-8-2007 16:16 ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: exim with 3 domains
On Jan 6, 2006, at 1:42 PM, Ceri Davies wrote: On 6 Jan 2006, at 14:02, Playnet wrote: Hello freebsd-questions, I have 3 domains, e.g. dom1.spb.ru, dom2.spb.ru, dom3.spb.ru and 1 external (inet) IP. How i can setup this? As database i use LDAP.. Read the exim specification available under the Documentation section at exim.org and the sample configurations provided with the exim installation. It's really very simple. There is also a mail list for exim users in case you get stuck. Look at exim.org for the mail list info. But what you need is very simple. Set them all to have the same MX host and set local_hosts in your config to your 3 domains. That is more or less what you need. Do what Ceri says with what I gave as a place to start in it. Chad Ceri ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions- [EMAIL PROTECTED] --- Chad Leigh -- Shire.Net LLC Your Web App and Email hosting provider chad at shire.net ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
exim with 3 domains
Hello freebsd-questions, I have 3 domains, e.g. dom1.spb.ru, dom2.spb.ru, dom3.spb.ru and 1 external (inet) IP. How i can setup this? As database i use LDAP.. -- Best regards, Playnet mailto:[EMAIL PROTECTED] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: exim with 3 domains
On 6 Jan 2006, at 14:02, Playnet wrote: Hello freebsd-questions, I have 3 domains, e.g. dom1.spb.ru, dom2.spb.ru, dom3.spb.ru and 1 external (inet) IP. How i can setup this? As database i use LDAP.. Read the exim specification available under the Documentation section at exim.org and the sample configurations provided with the exim installation. It's really very simple. Ceri ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
RE: resolve appends domain section of hostname to non-existent domains
It is, combined with a wildcard in dns. Thanks for the input. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Lowell Gilbert Sent: December 12, 2005 3:47 PM To: [EMAIL PROTECTED] Cc: freebsd-questions@freebsd.org Subject: Re: resolve appends domain section of hostname to non-existent domains Ruben Bloemgarten [EMAIL PROTECTED] writes: Hi all, Could anyone let me know what's misconfigured here: When I ping from say server2 # ping jkhdsfkhdsafhjsahfdhksa.com I get the following reply : PING jkhdsfkhdsafhjsahfdhksa.com.mydomain2.com (ip.of.server.1): 56 data bytes 64 bytes from ip.of.server.1: icmp_seq=0 ttl=64 time=0.594 ms 64 bytes from ip.of.server.1: icmp_seq=1 ttl=64 time=0.427 ms The same happens from server1; it appends it's domain name to the incorrect domain # ping jkhdsfkhdsafhjsahfdhksa.com PING jkhdsfkhdsafhjsahfdhksa.com.mydomain1.com (ip.of.server.1): 56 data bytes 64 bytes from ip.of.server.1: icmp_seq=0 ttl=64 time=0.594 ms 64 bytes from ip.of.server.1: icmp_seq=1 ttl=64 time=0.427 ms Server2 is running multiple jails behind ipf/ipnat on 5.4-Release. Server1 is not running jails or ipf/nat. on 5.2.1-Current Server1 responds on both systems, which are in the same subnet at the same colo. A dig from both systems does reply correctly, stating that jkhdsfkhdsafhjsahfdhksa.com does not exist. Which leads me to feel that it would most probably be hosts file related. As the hosts file on both systems are not doing anything weird i.e.: Server2: ip.natted.lan server2 server2.mydomain2.com server2.mydomain2.com. Server1: ip.static.wan server1 server1.mydomain1.com server2.mydomain2.com. Although, as dns has already taken place (on existing domains it does resolve correctly), it would seem that something is happening after hosts-dns- (not using nis). Isn't this just the search parameter for resolv.conf(5)? -- No virus found in this incoming message. Checked by AVG Free Edition. Version: 7.1.371 / Virus Database: 267.13.13/197 - Release Date: 12/09/2005 -- No virus found in this incoming message. Checked by AVG Free Edition. Version: 7.1.371 / Virus Database: 267.13.13/197 - Release Date: 12/09/2005 ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: resolve appends domain section of hostname to non-existent domains
Ruben Bloemgarten [EMAIL PROTECTED] writes: Hi all, Could anyone let me know what's misconfigured here: When I ping from say server2 # ping jkhdsfkhdsafhjsahfdhksa.com I get the following reply : PING jkhdsfkhdsafhjsahfdhksa.com.mydomain2.com (ip.of.server.1): 56 data bytes 64 bytes from ip.of.server.1: icmp_seq=0 ttl=64 time=0.594 ms 64 bytes from ip.of.server.1: icmp_seq=1 ttl=64 time=0.427 ms The same happens from server1; it appends it's domain name to the incorrect domain # ping jkhdsfkhdsafhjsahfdhksa.com PING jkhdsfkhdsafhjsahfdhksa.com.mydomain1.com (ip.of.server.1): 56 data bytes 64 bytes from ip.of.server.1: icmp_seq=0 ttl=64 time=0.594 ms 64 bytes from ip.of.server.1: icmp_seq=1 ttl=64 time=0.427 ms Server2 is running multiple jails behind ipf/ipnat on 5.4-Release. Server1 is not running jails or ipf/nat. on 5.2.1-Current Server1 responds on both systems, which are in the same subnet at the same colo. A dig from both systems does reply correctly, stating that jkhdsfkhdsafhjsahfdhksa.com does not exist. Which leads me to feel that it would most probably be hosts file related. As the hosts file on both systems are not doing anything weird i.e.: Server2: ip.natted.lan server2 server2.mydomain2.com server2.mydomain2.com. Server1: ip.static.wan server1 server1.mydomain1.com server2.mydomain2.com. Although, as dns has already taken place (on existing domains it does resolve correctly), it would seem that something is happening after hosts-dns- (not using nis). Isn't this just the search parameter for resolv.conf(5)? ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
resolve appends domain section of hostname to non-existent domains
Hi all, Could anyone let me know what's misconfigured here: When I ping from say server2 # ping jkhdsfkhdsafhjsahfdhksa.com I get the following reply : PING jkhdsfkhdsafhjsahfdhksa.com.mydomain2.com (ip.of.server.1): 56 data bytes 64 bytes from ip.of.server.1: icmp_seq=0 ttl=64 time=0.594 ms 64 bytes from ip.of.server.1: icmp_seq=1 ttl=64 time=0.427 ms The same happens from server1; it appends it's domain name to the incorrect domain # ping jkhdsfkhdsafhjsahfdhksa.com PING jkhdsfkhdsafhjsahfdhksa.com.mydomain1.com (ip.of.server.1): 56 data bytes 64 bytes from ip.of.server.1: icmp_seq=0 ttl=64 time=0.594 ms 64 bytes from ip.of.server.1: icmp_seq=1 ttl=64 time=0.427 ms Server2 is running multiple jails behind ipf/ipnat on 5.4-Release. Server1 is not running jails or ipf/nat. on 5.2.1-Current Server1 responds on both systems, which are in the same subnet at the same colo. A dig from both systems does reply correctly, stating that jkhdsfkhdsafhjsahfdhksa.com does not exist. Which leads me to feel that it would most probably be hosts file related. As the hosts file on both systems are not doing anything weird i.e.: Server2: ip.natted.lan server2 server2.mydomain2.com server2.mydomain2.com. Server1: ip.static.wan server1 server1.mydomain1.com server2.mydomain2.com. Although, as dns has already taken place (on existing domains it does resolve correctly), it would seem that something is happening after hosts-dns- (not using nis). So I'm pretty much at a loss here. Any help is very much appriciated. Regards, Ruben ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Masquerading Virtual domains in sendmail
On 11/9/05, Gayn Winters [EMAIL PROTECTED] wrote: I'm installing sendmail.8.13.3 on FBSD 5.4 on node.domain1.com. I've configured /etc/mail/local-host-names to accept mail for domain1.com and domain2.com. My user names look like bob.domain1.com and (a different Bob) bob.domain2.com. Inside /etc/mail/virtusertable I map [EMAIL PROTECTED] bob.domain1.com [EMAIL PROTECTED] bob.domain2.com Inbound all is well. BUT, What I can't figure out is how to masquerade mail from bob.domain1.com as being from [EMAIL PROTECTED] AND ALSO HAVE bob.domain2.com masqueraded as being from [EMAIL PROTECTED] One test of this working is to be able to register both Bob's in the FreeBSD mailing lists as [EMAIL PROTECTED] and [EMAIL PROTECTED] Ideas? References? Thanks, -gayn Bristol Systems Inc. 714/532-6776 www.bristolsystems.com ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] Try a google search on genericstable. I'm not sure if this is exactly what you are looking for as you are trying to send mail via the same username but it is what I use to specify sender domain for different users. Understanding this may not be how you want to solve the issue, you could send as bobA@ and bobB@ and genericstable could translate that to whatever you would like. Ahnjoan ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Masquerading Virtual domains in sendmail
I'm installing sendmail.8.13.3 on FBSD 5.4 on node.domain1.com. I've configured /etc/mail/local-host-names to accept mail for domain1.com and domain2.com. My user names look like bob.domain1.com and (a different Bob) bob.domain2.com. Inside /etc/mail/virtusertable I map [EMAIL PROTECTED] bob.domain1.com [EMAIL PROTECTED] bob.domain2.com Inbound all is well. BUT, What I can't figure out is how to masquerade mail from bob.domain1.com as being from [EMAIL PROTECTED] AND ALSO HAVE bob.domain2.com masqueraded as being from [EMAIL PROTECTED] One test of this working is to be able to register both Bob's in the FreeBSD mailing lists as [EMAIL PROTECTED] and [EMAIL PROTECTED] Ideas? References? Thanks, -gayn Bristol Systems Inc. 714/532-6776 www.bristolsystems.com ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
RE: Masquerading Virtual domains in sendmail
-Original Message- From: Ahnjoan Amous [mailto:[EMAIL PROTECTED] Sent: Wednesday, November 09, 2005 6:27 PM To: [EMAIL PROTECTED] Cc: freebsd-questions@freebsd.org Subject: Re: Masquerading Virtual domains in sendmail On 11/9/05, Gayn Winters [EMAIL PROTECTED] wrote: I'm installing sendmail.8.13.3 on FBSD 5.4 on node.domain1.com. I've configured /etc/mail/local-host-names to accept mail for domain1.com and domain2.com. My user names look like bob.domain1.com and (a different Bob) bob.domain2.com. Inside /etc/mail/virtusertable I map [EMAIL PROTECTED] bob.domain1.com [EMAIL PROTECTED] bob.domain2.com Inbound all is well. BUT, What I can't figure out is how to masquerade mail from bob.domain1.com as being from [EMAIL PROTECTED] AND ALSO HAVE bob.domain2.com masqueraded as being from [EMAIL PROTECTED] One test of this working is to be able to register both Bob's in the FreeBSD mailing lists as [EMAIL PROTECTED] and [EMAIL PROTECTED] Ideas? References? Thanks, -gayn Bristol Systems Inc. 714/532-6776 www.bristolsystems.com Try a Google search on genericstable. I'm not sure if this is exactly what you are looking for as you are trying to send mail via the same username but it is what I use to specify sender domain for different users. Understanding this may not be how you want to solve the issue, you could send as bobA@ and bobB@ and genericstable could translate that to whatever you would like. Ahnjoan Thank you Ahnjoan. It looks like reversing the two columns of virtusertable to get genericstable gets me part of what I need; namely, the mail headers should translate correctly. Unfortunately, digging through the bat book and googling, it doesn't seem like the envelopes will get masqueraded, when I actually need them to be masqueraded on a per domain basis. The macro MASQUERADE_AS seems to be a global operation, which I don't want. Does anyone know if FEATURE(`masquerade_envelope') will work without MASQUERADE_AS? Somehow to me it seems like most ISP's have this problem. Thanks again, -gayn ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
how to setup DNS server and making sub-domains in DSL server
Hi, I need your help please. On my personal FreeBSD server connected to an ISP with static IP address, I'm planning to setup several websites with their own sub-domains from my main domain as shown below. I just want to know some answers to my questions before I start. Main domain: www.exampledomain.ph http://www.exampledomain.ph Sub-domains: sub1.exampledomain.ph http://sub1.exampledomain.ph sub2.exampledomain.ph http://sub2.exampledomain.ph sub3.exampledomain.ph http://sub3.exampledomain.ph I want to use BIND together with my Apache virtual hosting in one single FreeBSD machine. These are my questions: 1) Is it correct that I only need to register or pay for the main domain? 2) Is it correct that through my local DNS server, I can add sub hosts (sub1 to sub3) without anymore registering those sub domains and pay for them in my main domain provider? 3) Provided that I already have successfully setup my local DNS server, Apache virtual hosting and main domain activated, is it straightforward that I can already access the sub domains (i.e., websites) from the Internet? 4) Do I need to register sub1, sub2 and sub3 in any external domain provider? 5) Can you provide some sample configs if you are already doing this setup? Thank you in advance! - Misoy ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: how to setup DNS server and making sub-domains in DSL server
On 11/6/05, Edwin D. Vinas [EMAIL PROTECTED] wrote: Hi, I need your help please. On my personal FreeBSD server connected to an ISP with static IP address, I'm planning to setup several websites with their own sub-domains from my main domain as shown below. I just want to know some answers to my questions before I start. Main domain: www.exampledomain.ph http://www.exampledomain.ph Sub-domains: sub1.exampledomain.ph http://sub1.exampledomain.ph sub2.exampledomain.ph http://sub2.exampledomain.ph sub3.exampledomain.ph http://sub3.exampledomain.ph I want to use BIND together with my Apache virtual hosting in one single FreeBSD machine. These are my questions: 1) Is it correct that I only need to register or pay for the main domain? Yep. 2) Is it correct that through my local DNS server, I can add sub hosts (sub1 to sub3) without anymore registering those sub domains and pay for them in my main domain provider? It's kinda the same as the first one. Yep. 3) Provided that I already have successfully setup my local DNS server, Apache virtual hosting and main domain activated, is it straightforward that I can already access the sub domains (i.e., websites) from the Internet? It's pretty straightforward, but not implicit. You need to explicitly setup a wildcard subdomain. 4) Do I need to register sub1, sub2 and sub3 in any external domain provider? Not if you want to. 5) Can you provide some sample configs if you are already doing this setup? Here's a dump from my xname.org account: csme.ru.26 IN SOA ns0.xname.org. infofarmer.mail.ru. 2005072201 261000 261000 604800 300 csme.ru.26 IN NS ns0.xname.org. csme.ru.26 IN NS ns1.xname.org. csme.ru.26 IN A 193.233.5.13 csme.ru.26 IN MX 10 csme.ru. *.csme.ru. 26 IN CNAME csme.ru. cs.csme.ru. 26 IN CNAME csme.ru. css.csme.ru.26 IN CNAME csme.ru. mx.csme.ru. 26 IN CNAME csme.ru. old.csme.ru.26 IN CNAME killme.ru. sat.csme.ru.26 IN CNAME infofarmer.dyndns.org. source.csme.ru. 26 IN CNAME csme.ru. www.csme.ru.26 IN CNAME csme.ru. zone.csme.ru. 26 IN NS infofarmer.dyndns.org. csme.ru.26 IN SOA ns0.xname.org. infofarmer.mail.ru. 2005072201 261000 261000 604800 300 ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: how to setup DNS server and making sub-domains in DSL server
On Sun, Nov 06, 2005 at 11:38:59AM -0800, Edwin D. Vinas wrote: 1) Is it correct that I only need to register or pay for the main domain? Yes, provided you choose a registrar who will allow you to change the namservers on the daomin - i.e. they don't force you to use their nameservers in conjunction with a web hosting package or something (123-reg.co.uk will definitely work as I use them for a similar setup to the one you describe). 2) Is it correct that through my local DNS server, I can add sub hosts (sub1 to sub3) without anymore registering those sub domains and pay for them in my main domain provider? That's correct. Adding a subdomain is generally a case of adding one line to the zone file for that particular domain (assuming you're just adding a simple subdomain that isn't going to be delegated or receive mail or anything comlicated like that) and telling Bind to reload the zone file (/etc/rc.d/named reload will usually work, although I find I often have to use restart instead of reload for some reason). 3) Provided that I already have successfully setup my local DNS server, Apache virtual hosting and main domain activated, is it straightforward that I can already access the sub domains (i.e., websites) from the Internet? Assuming you're not behind a firewall of any type (or you setup the relevant rules), then it should be fairly simple to make everything accessible from the rest of the Internet. If your main domain works, then any subdomains on the same machine should do as well. 4) Do I need to register sub1, sub2 and sub3 in any external domain provider? No, you'd just tell your registrar to change the nameservers to whatever your local DNS servers are. Most will have a control panel allowing you to do this easily. 5) Can you provide some sample configs if you are already doing this setup? Thank you in advance! What kind of sample config? If you're not doing anything special, any tutorial on DNS/Bind will show you how to setup subdomains. Paul -- Rogue Tory http://www.roguetory.org.uk ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: how to setup DNS server and making sub-domains in DSL server
Edwin D. Vinas wrote: Hi, I need your help please. On my personal FreeBSD server connected to an ISP with static IP address, I'm planning to setup several websites with their own sub-domains from my main domain as shown below. I just want to know some answers to my questions before I start. Main domain: www.exampledomain.ph http://www.exampledomain.ph Sub-domains: sub1.exampledomain.ph http://sub1.exampledomain.ph sub2.exampledomain.ph http://sub2.exampledomain.ph sub3.exampledomain.ph http://sub3.exampledomain.ph I want to use BIND together with my Apache virtual hosting in one single FreeBSD machine. These are my questions: 1) Is it correct that I only need to register or pay for the main domain? 2) Is it correct that through my local DNS server, I can add sub hosts (sub1 to sub3) without anymore registering those sub domains and pay for them in my main domain provider? 3) Provided that I already have successfully setup my local DNS server, Apache virtual hosting and main domain activated, is it straightforward that I can already access the sub domains (i.e., websites) from the Internet? 4) Do I need to register sub1, sub2 and sub3 in any external domain provider? 5) Can you provide some sample configs if you are already doing this setup? Thank you in advance! - Misoy Your fisrt and hardest roadblock will be getting your provider to allow YOU to be authoritive for the IP or IP's you use. Many will not allow that - meaning, you will get reolution one way, but not reverse - meaning again, 123.123.123.123 = yourname.com = 123.123.123.123 Once you get past that - the rest is easy.. Im willing to bet tho - your provider will not allow you or will have to do that for you. -- Best regards, Chris Never attribute to malice that which is adequately explained by stupidity. signature.asc Description: OpenPGP digital signature
Re: how to setup DNS server and making sub-domains in DSL server
On Sun, Nov 06, 2005 at 02:01:00PM -0600, Chris wrote: Your fisrt and hardest roadblock will be getting your provider to allow YOU to be authoritive for the IP or IP's you use. That's not necessary - I host the DNS, web sites and mail for a dozen different domains off an IP address for which I don't control the DNS (in fact it doesn't even have a DNS record). Reverse DNS control is always useful, but not a requirement for what he wants to do. Paul -- Rogue Tory http://www.roguetory.org.uk ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: how to setup DNS server and making sub-domains in DSL server
Paul Waring wrote: On Sun, Nov 06, 2005 at 02:01:00PM -0600, Chris wrote: Your fisrt and hardest roadblock will be getting your provider to allow YOU to be authoritive for the IP or IP's you use. That's not necessary - I host the DNS, web sites and mail for a dozen different domains off an IP address for which I don't control the DNS (in fact it doesn't even have a DNS record). Reverse DNS control is always useful, but not a requirement for what he wants to do. Paul It may not be necessary - but to do it right... I for one like to have mu IP's resolve both forward and reverse. It's just professional looking as a whole. But - to each thier own I suppose. -- Best regards, Chris If you don't say it, they can't repeat it. signature.asc Description: OpenPGP digital signature
Re: how to setup DNS server and making sub-domains in DSL server
On Sun, Nov 06, 2005 at 04:41:06PM -0600, Chris wrote: It may not be necessary - but to do it right... I for one like to have mu IP's resolve both forward and reverse. It's just professional looking as a whole. I like to have my IPs resolve both ways too, but try finding an ISP who will either give you that sort of control through delegation or is willing to setup the required reverse DNS records on their side. If you're lucky you'll get customer114324.myisp.net to play with. I don't know of any residential ISPs, at least not in the UK, who will do that sort of thing. Having said that, there's nothing particularly wrong about not having reverse DNS records for IPs, or having ones that don't match. It only really matters if you're sending out email to people with overly aggressive spam filters that check for that sort of thing. Paul -- Rogue Tory http://www.roguetory.org.uk ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: how to setup DNS server and making sub-domains in DSL server
On Nov 6, 2005, at 4:45 PM, Paul Waring wrote: On Sun, Nov 06, 2005 at 04:41:06PM -0600, Chris wrote: It may not be necessary - but to do it right... I for one like to have mu IP's resolve both forward and reverse. It's just professional looking as a whole. I like to have my IPs resolve both ways too, but try finding an ISP who will either give you that sort of control through delegation or is willing to setup the required reverse DNS records on their side. If you're lucky you'll get customer114324.myisp.net to play with. I don't know of any residential ISPs, at least not in the UK, who will do that sort of thing. Having said that, there's nothing particularly wrong about not having reverse DNS records for IPs, or having ones that don't match. It only really matters if you're sending out email to people with overly aggressive spam filters that check for that sort of thing. Paul Actually, my ISP, ipHouse.net is one who's willing to configure reverse DNS for you. Qwest Communications is another one who'll setup DNS for you, and they're HUGE. If you choose to go with ipHouse, tell them I sent you -- then I get free DSL for a month! - Eric F Crist Secure Computing Networks http://www.secure-computing.net ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: how to setup DNS server and making sub-domains in DSL server
On Sun, Nov 06, 2005 at 06:22:58PM -0600, Eric F Crist wrote: Actually, my ISP, ipHouse.net is one who's willing to configure reverse DNS for you. Qwest Communications is another one who'll setup DNS for you, and they're HUGE. If you choose to go with ipHouse, tell them I sent you -- then I get free DSL for a month! If you read my post, you'll see I said at least not in the UK. Neither Qwest nor ipHouse have operations outside the USA as far as I can tell. Paul -- Rogue Tory http://www.roguetory.org.uk ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: POP server that supports virtual users/domains (other than dovecot)?
Personally my favourite is vpopmail (you can find it in ports) and you can manage it with qmailadmin (also in ports). Ivailo Tanusheff Senior System administrator ProCredit Bank (Bulgaria) AD Philip Hallstrom [EMAIL PROTECTED] Sent by: [EMAIL PROTECTED] 09/28/2005 10:06 PM To freebsd-questions@freebsd.org cc Subject POP server that supports virtual users/domains (other than dovecot)? Hi all - Looking for recommendations for a POP server that supportts virtual users and domains and preferably hooks into PostgreSQL. dovecot does this and I'm looking at it now, but it's got a lot of IMAP stuff that I will never ever use (really I won't). Anyone have recommendations for other packages? I've searched, but would like some actual user experiences... Thanks! -philip ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
POP server that supports virtual users/domains (other than dovecot)?
Hi all - Looking for recommendations for a POP server that supportts virtual users and domains and preferably hooks into PostgreSQL. dovecot does this and I'm looking at it now, but it's got a lot of IMAP stuff that I will never ever use (really I won't). Anyone have recommendations for other packages? I've searched, but would like some actual user experiences... Thanks! -philip ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Internal vs. External domains and e-mail
Just reroute mail to [EMAIL PROTECTED] This must do the job for you :) Ivailo Tanusheff Senior System administrator ProCredit Bank (Bulgaria) AD tel. +359 2 921 7161 fax +359 2 921 7110 http://www.procreditbank.bg Disclaimer: The information contained in this message is intended solely for the use of individual or entity to whom it is addressed and other authorized to receive it. It may contain confidential or legally privileged information. If you are not the intended recipient you are hereby notified that any disclosure, copying, distribution or taking any action in reliance on the contents of this message is strictly prohibited and may be unlawful. If you have received this communication in error, please notify us immediately by responding to this email and then delete it from your system. ProCredit Bank is neither liable for the proper and complete transmission of the information contained in this message nor for any delay in its receipt. DH [EMAIL PROTECTED] Sent by: [EMAIL PROTECTED] 07/11/2005 06:25 PM To freebsd-questions@freebsd.org cc Subject Internal vs. External domains and e-mail Hello; We are going to migrate to an Interal Windows 2003 AD structure which will also entail changing our Internal DNS to a non-routeable domain. Currently we are using qmail qmail-scanner to relay mail to an Internal Exchange Server. mydomain.com | |---| I-Net - FBSD4.11/qmail/qmail-scanner - MS Exchange I am looking for a way to rewrite the From header on mail originating from the Exchange box to change the non-routeable domain name to that of our External domain. mydomain.com newdomain.local | | I-Net - FBSD4.11/qmail/qmail-scanner - MS Exchange Any mail originating from the Exchange Server and going to the I-Net should have its From header rewritten: From: [EMAIL PROTECTED] to From: [EMAIL PROTECTED] I've seen a number of postings at various sites ( qmail.org etc) and very little in the way of answers vis a vie qmail. If anyone has experience with this problem I'd sure appriciate some guidance. If I have to migrate to another e-mail packack such as ProcMail I'm willing to do so but would rather not ( a lot of effort spent on my qmail-attachments.txt file ). Thank you for your time - Please CC any response to my address - I am not a member of this group. David Hutchens III Network Technician DRS Surveillance Support Systems - A division of DRS Technologies. __ Do You Yahoo!? Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Internal vs. External domains and e-mail
Actually I thought of rerouting the mail to /dev/null but our IT Manager didn't think much of that idea I've run across http://untroubled.org/qmail-qfilter/ which may fit the bill. --- Ivailo Tanusheff [EMAIL PROTECTED] wrote: Just reroute mail to [EMAIL PROTECTED] This must do the job for you :) Ivailo Tanusheff Senior System administrator ProCredit Bank (Bulgaria) AD tel. +359 2 921 7161 fax +359 2 921 7110 http://www.procreditbank.bg Disclaimer: The information contained in this message is intended solely for the use of individual or entity to whom it is addressed and other authorized to receive it. It may contain confidential or legally privileged information. If you are not the intended recipient you are hereby notified that any disclosure, copying, distribution or taking any action in reliance on the contents of this message is strictly prohibited and may be unlawful. If you have received this communication in error, please notify us immediately by responding to this email and then delete it from your system. ProCredit Bank is neither liable for the proper and complete transmission of the information contained in this message nor for any delay in its receipt. DH [EMAIL PROTECTED] Sent by: [EMAIL PROTECTED] 07/11/2005 06:25 PM To freebsd-questions@freebsd.org cc Subject Internal vs. External domains and e-mail Hello; We are going to migrate to an Interal Windows 2003 AD structure which will also entail changing our Internal DNS to a non-routeable domain. Currently we are using qmail qmail-scanner to relay mail to an Internal Exchange Server. mydomain.com | |---| I-Net - FBSD4.11/qmail/qmail-scanner - MS Exchange I am looking for a way to rewrite the From header on mail originating from the Exchange box to change the non-routeable domain name to that of our External domain. mydomain.com newdomain.local | | I-Net - FBSD4.11/qmail/qmail-scanner - MS Exchange Any mail originating from the Exchange Server and going to the I-Net should have its From header rewritten: From: [EMAIL PROTECTED] to From: [EMAIL PROTECTED] I've seen a number of postings at various sites ( qmail.org etc) and very little in the way of answers vis a vie qmail. If anyone has experience with this problem I'd sure appriciate some guidance. If I have to migrate to another e-mail packack such as ProcMail I'm willing to do so but would rather not ( a lot of effort spent on my qmail-attachments.txt file ). Thank you for your time - Please CC any response to my address - I am not a member of this group. David Hutchens III Network Technician DRS Surveillance Support Systems - A division of DRS Technologies. __ Do You Yahoo!? Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] David Hutchens III Network Technician DRS Surveillance Support Systems - A division of DRS Technologies. Sell on Yahoo! Auctions no fees. Bid on great items. http://auctions.yahoo.com/ ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Internal vs. External domains and e-mail
Hello; We are going to migrate to an Interal Windows 2003 AD structure which will also entail changing our Internal DNS to a non-routeable domain. Currently we are using qmail qmail-scanner to relay mail to an Internal Exchange Server. mydomain.com | |---| I-Net - FBSD4.11/qmail/qmail-scanner - MS Exchange I am looking for a way to rewrite the From header on mail originating from the Exchange box to change the non-routeable domain name to that of our External domain. mydomain.com newdomain.local | | I-Net - FBSD4.11/qmail/qmail-scanner - MS Exchange Any mail originating from the Exchange Server and going to the I-Net should have its From header rewritten: From: [EMAIL PROTECTED] to From: [EMAIL PROTECTED] I've seen a number of postings at various sites ( qmail.org etc) and very little in the way of answers vis a vie qmail. If anyone has experience with this problem I'd sure appriciate some guidance. If I have to migrate to another e-mail packack such as ProcMail I'm willing to do so but would rather not ( a lot of effort spent on my qmail-attachments.txt file ). Thank you for your time - Please CC any response to my address - I am not a member of this group. David Hutchens III Network Technician DRS Surveillance Support Systems - A division of DRS Technologies. __ Do You Yahoo!? Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Sendmail relaying from remote domains?
I realize this question is probably best served by the sendmail mailing list, but whereas I've added the Spam Assassin filter, I'm hoping to find a larger community here that is running FreeBSD + sendmail + SpamAssassin who have handled this, so I don't have to ask the question in 3 places :) The issue I seem to be having is that messages are coming in, forged from my domain, but sent to a valid user within my domain (e.g. from [EMAIL PROTECTED] to [EMAIL PROTECTED]) containing a virus attachment. I had assumed that sendmail would be smart enough to look at the fqdn portion, and see that the sender is not in fact from that domain at all (a quick reverse/forward DNS lookup of the inbound socket should prove this), and trash this. Is there an easy way to shut this down? An example mail log entry (for reference)... Jun 14 09:16:47 spoon sm-mta[26398]: j5EDGgha026398: from=[EMAIL PROTECTED], size=79449, class=0, nrcpts=1, msgid=[EMAIL PROTECTED], proto=ESMTP, daemon=IPv4, relay=255-115.users.forrester.com [63.76.255.115] (may be forged) Jun 14 09:16:47 spoon spamd[697]: connection from localhost.beta.com [127.0.0.1] at port 64931 Jun 14 09:16:47 spoon spamd[697]: info: setuid to root succeeded Jun 14 09:16:47 spoon spamd[697]: Still running as root: user not specified with -u, not found, or set to root. Fall back to nobody. Jun 14 09:16:47 spoon spamd[697]: processing message (unknown) for root:65534. Jun 14 09:16:49 spoon spamd[697]: clean message (-0.0/5.0) for root:65534 in 2.2 seconds, 80647 bytes. Jun 14 09:16:49 spoon spamd[697]: result: . 0 - ALL_TRUSTED,HTML_10_20,HTML_MESSAGE,MIME_HTML_ONLY,MISSING_MIMEOLE,NO_REAL_NAME,PRIORITY_NO_NAME scantime=2.2,size=80647,mid=(unknown),autolearn=failed Jun 14 09:16:49 spoon sm-mta[26398]: j5EDGgha026398: Milter add: header: X-Spam-Status: No, score=-0.0 required=5.0 tests=ALL_TRUSTED,HTML_10_20,\n\tHTML_MESSAGE,MIME_HTML_ONLY,MISSING_MIMEOLE,NO_REAL_NAME,\n\tPRIORITY_NO_NAME autolearn=failed version=3.0.2 Jun 14 09:16:49 spoon sm-mta[26398]: j5EDGgha026398: Milter add: header: X-Spam-Checker-Version: SpamAssassin 3.0.2 (2004-11-16) on spoon.beta.com Jun 14 09:16:49 spoon sm-mta[26402]: j5EDGgha026398: to=[EMAIL PROTECTED], delay=00:00:07, xdelay=00:00:00, mailer=local, pri=110031, relay=local, dsn=2.0.0, stat=Sent -Brian ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: hostname and domains
Kevin Kinsey wrote: -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Behalf Of bazzoola Sent: Tuesday, May 24, 2005 5:55 PM To: freebsd-questions@freebsd.org Subject: hostname and domains Greetings, I have Three workstations all of them are pretty much setup the same way. All of them use DHCP and all of them connect to the same server (I do not know what is it running as of now) The first workstation is Windows XP. It receives its IP and hostname correct basically I get 10.0.0.201 and winxp.mydomain.com as a hostname both host and IP resolve to each other correctly The second workstation is Mac OS X. It receives similar enough 10.0.0.202 and macosx.mydomain.com as a hostname both IP and hostname resolve to each other correctly. The third which is a FreeBSD 5.4-Release receives an IP address 10.0.0.203 but does not get a hostname. Well the hostname is setup in rc.conf as bsd01 but the DNS in the domain is not aware of it for some reason. The NS can resolve macosx and winxp but it cannot resolve the hostname for bsd01. Any thoughts what is going here? Thanks in advance, bazzoola There is some magic you must perform on the dhcp server and to dhclient.conf; see dhclient.conf(5) for details. HTH, Kevin Kinsey Thanks for the suggestion Kevin To fix the problem I added the following to dhclient.conf # -- send host-name mbsd01.mydomain.com; request subnet-mask, broadcast-address, time-offset, routers, domain-name, domain-name-servers, host-name; require subnet-mask, domain-name-servers, domain-name; # -- bazzoola ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
hostname and domains
Greetings, I have Three workstations all of them are pretty much setup the same way. All of them use DHCP and all of them connect to the same server (I do not know what is it running as of now) The first workstation is Windows XP. It receives its IP and hostname correct basically I get 10.0.0.201 and winxp.mydomain.com as a hostname both host and IP resolve to each other correctly The second workstation is Mac OS X. It receives similar enough 10.0.0.202 and macosx.mydomain.com as a hostname both IP and hostname resolve to each other correctly. The third which is a FreeBSD 5.4-Release receives an IP address 10.0.0.203 but does not get a hostname. Well the hostname is setup in rc.conf as bsd01 but the DNS in the domain is not aware of it for some reason. The NS can resolve macosx and winxp but it cannot resolve the hostname for bsd01. Any thoughts what is going here? Thanks in advance, bazzoola ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: hostname and domains
fbsd_user wrote: What does the hostname command on the FreeBSD box return when you enter it on the command line? -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Behalf Of bazzoola Sent: Tuesday, May 24, 2005 5:55 PM To: freebsd-questions@freebsd.org Subject: hostname and domains Greetings, I have Three workstations all of them are pretty much setup the same way. All of them use DHCP and all of them connect to the same server (I do not know what is it running as of now) The first workstation is Windows XP. It receives its IP and hostname correct basically I get 10.0.0.201 and winxp.mydomain.com as a hostname both host and IP resolve to each other correctly The second workstation is Mac OS X. It receives similar enough 10.0.0.202 and macosx.mydomain.com as a hostname both IP and hostname resolve to each other correctly. The third which is a FreeBSD 5.4-Release receives an IP address 10.0.0.203 but does not get a hostname. Well the hostname is setup in rc.conf as bsd01 but the DNS in the domain is not aware of it for some reason. The NS can resolve macosx and winxp but it cannot resolve the hostname for bsd01. Any thoughts what is going here? Thanks in advance, bazzoola ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] hostname command returns bsd01.mydomain.com which is the same value I have in rc.conf but the command host bsd01 ... gives % host bsd01.mydomain.com Host bsd01.mydomain.com not found: 3(NXDOMAIN) unlike winxp and macosx. bsd01 does not return the IP :( bazzoola ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: hostname and domains
-Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Behalf Of bazzoola Sent: Tuesday, May 24, 2005 5:55 PM To: freebsd-questions@freebsd.org Subject: hostname and domains Greetings, I have Three workstations all of them are pretty much setup the same way. All of them use DHCP and all of them connect to the same server (I do not know what is it running as of now) The first workstation is Windows XP. It receives its IP and hostname correct basically I get 10.0.0.201 and winxp.mydomain.com as a hostname both host and IP resolve to each other correctly The second workstation is Mac OS X. It receives similar enough 10.0.0.202 and macosx.mydomain.com as a hostname both IP and hostname resolve to each other correctly. The third which is a FreeBSD 5.4-Release receives an IP address 10.0.0.203 but does not get a hostname. Well the hostname is setup in rc.conf as bsd01 but the DNS in the domain is not aware of it for some reason. The NS can resolve macosx and winxp but it cannot resolve the hostname for bsd01. Any thoughts what is going here? Thanks in advance, bazzoola There is some magic you must perform on the dhcp server and to dhclient.conf; see dhclient.conf(5) for details. HTH, Kevin Kinsey ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Virtual Hosting multiple domains
Is there an easy way to run multiple domains off of one sendmail client without using jails? We're thinking about replacing mailsite from rockliffe with a unix solution instead. The problem is we need an easy way to run independent mail domains that each have their own accounts and can access them with imap and pop3 as well as web mail. The mail server should be able to determine the correct domain from name-based or ip-based virtual hosting. In other words, we don't want customers to have to uses usernames that include the domain like user%example.com. The pop3/imap server should determine that from the source ip or domain name used. -- I sense much NT in you. NT leads to Bluescreen. Bluescreen leads to downtime. Downtime leads to suffering. NT is the path to the darkside. Powerful Unix is. Public Key: ftp://ftp.tallye.com/pub/lorenl_pubkey.asc Fingerprint: B3B9 D669 69C9 09EC 1BCD 835A FAF3 7A46 E4A3 280C ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Virtual Hosting multiple domains
Loren M. Lang wrote: Is there an easy way to run multiple domains off of one sendmail client without using jails? Of course, start here: http://www.sendmail.org/virtual-hosting.html You can do fancier things if you use a smarter LDA, such as procmail. In other words, we don't want customers to have to uses usernames that include the domain like user%example.com. The pop3/imap server should determine that from the source ip or domain name used. Yes, your POP or IMAP software also needs to be vhost aware. -- -Chuck ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Postfix can't deliver mail to virtual domains - cannot create file exclusively
Hi Pat, Feb 4 19:57:59 cantona postfix/virtual[579]: CA35333C1D: to=[EMAIL PROTECTED], relay=virtual, delay=0, status=deferred (mailbox /var/mail/vhosts/javaspot.net/pergesu: cannot create file exclusively: No such file or directory) Shouldn't PostFix create the vhosts/javaspot.net directory and pergesu file automatically when it delivers the mail? Not sure what the problem is here. I can send mail to local users just fine, so I don't think it's a permissions problem. please post your main.cf and the files with the virtual entries. -volker ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Postfix can't deliver mail to virtual domains - cannot create file exclusively
I got it working, and managed to get courier-imap working as well. The only problem (big problem?) is that I had to chmod 777 /var/mail to get it all working together. I'm trying to figure out what permissions I can give it to ensure that postfix and courier-imap can work together...but neither one seems to work with regular permissions. I think I've got them in the correct groups and everything, but I'm not sure. It's not a HUGE deal at this point, because I'm the only user on the system, and don't intend to let anyone else have shell access. Still, I'd like to have things set up correctly. I would have figured that the way FreeBSD installed it would have worked...apparently not. On Sat, 05 Feb 2005 09:24:19 +0100, Volker Kindermann [EMAIL PROTECTED] wrote: Hi Pat, Feb 4 19:57:59 cantona postfix/virtual[579]: CA35333C1D: to=[EMAIL PROTECTED], relay=virtual, delay=0, status=deferred (mailbox /var/mail/vhosts/javaspot.net/pergesu: cannot create file exclusively: No such file or directory) Shouldn't PostFix create the vhosts/javaspot.net directory and pergesu file automatically when it delivers the mail? Not sure what the problem is here. I can send mail to local users just fine, so I don't think it's a permissions problem. please post your main.cf and the files with the virtual entries. -volker ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Postfix can't deliver mail to virtual domains - cannot create file exclusively
By the way, the problem appears to be solely permissions-based. When I've got normal-looking permissions on /var/mail, postfix gives that error, cannot create file. Courier-IMAP says, imapd: chdir javaspot.net/pergesu: No such file or directory chmod 777 /var/mail and they both work fine. But that's of course not the permissions I want on it. On Sat, 5 Feb 2005 01:48:30 -0700, Pat Maddox [EMAIL PROTECTED] wrote: I got it working, and managed to get courier-imap working as well. The only problem (big problem?) is that I had to chmod 777 /var/mail to get it all working together. I'm trying to figure out what permissions I can give it to ensure that postfix and courier-imap can work together...but neither one seems to work with regular permissions. I think I've got them in the correct groups and everything, but I'm not sure. It's not a HUGE deal at this point, because I'm the only user on the system, and don't intend to let anyone else have shell access. Still, I'd like to have things set up correctly. I would have figured that the way FreeBSD installed it would have worked...apparently not. On Sat, 05 Feb 2005 09:24:19 +0100, Volker Kindermann [EMAIL PROTECTED] wrote: Hi Pat, Feb 4 19:57:59 cantona postfix/virtual[579]: CA35333C1D: to=[EMAIL PROTECTED], relay=virtual, delay=0, status=deferred (mailbox /var/mail/vhosts/javaspot.net/pergesu: cannot create file exclusively: No such file or directory) Shouldn't PostFix create the vhosts/javaspot.net directory and pergesu file automatically when it delivers the mail? Not sure what the problem is here. I can send mail to local users just fine, so I don't think it's a permissions problem. please post your main.cf and the files with the virtual entries. -volker ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Postfix can't deliver mail to virtual domains - cannot create file exclusively
Hi Pat, Pat Maddox wrote: By the way, the problem appears to be solely permissions-based. When I've got normal-looking permissions on /var/mail, postfix gives that error, cannot create file. Courier-IMAP says, imapd: chdir javaspot.net/pergesu: No such file or directory chmod 777 /var/mail and they both work fine. But that's of course not the permissions I want on it. I have postfix with virtual Maildirs and courier imap set up, too. Here's the relevant part of my main.cf: virtual_mailbox_base = /home/vmail virtual_uid_maps = static:600 virtual_gid_maps = static:600 The directory /home/vmail is owned by the vmail user (id 600). With the virtual_uid_maps setting postfix uses this user for writing to the directories. In courier, you are also able to define this user: /usr/local/courier-imap/sbin/userdb domain/user@domain set home=/home/vmail mail=/home/vmail/domain/user uid=600 gid=600 With these settings everything works well. -volker ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
[RESOLVED] Postfix can't deliver mail to virtual domains - cannot create file exclusively
Volker, thanks for all your help. I got everything running smoothly. For courier-imap, I set the uid and gid in the authmysqlrc file. But I needed to set the uid and gid in both postfix and courier...so your instructions helped greatly. Thanks a lot! Pat On Sat, 05 Feb 2005 14:36:19 +0100, Volker Kindermann [EMAIL PROTECTED] wrote: Hi Pat, Pat Maddox wrote: By the way, the problem appears to be solely permissions-based. When I've got normal-looking permissions on /var/mail, postfix gives that error, cannot create file. Courier-IMAP says, imapd: chdir javaspot.net/pergesu: No such file or directory chmod 777 /var/mail and they both work fine. But that's of course not the permissions I want on it. I have postfix with virtual Maildirs and courier imap set up, too. Here's the relevant part of my main.cf: virtual_mailbox_base = /home/vmail virtual_uid_maps = static:600 virtual_gid_maps = static:600 The directory /home/vmail is owned by the vmail user (id 600). With the virtual_uid_maps setting postfix uses this user for writing to the directories. In courier, you are also able to define this user: /usr/local/courier-imap/sbin/userdb domain/user@domain set home=/home/vmail mail=/home/vmail/domain/user uid=600 gid=600 With these settings everything works well. -volker ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Postfix can't deliver mail to virtual domains - cannot create file exclusively
Pat Maddox wrote: By the way, the problem appears to be solely permissions-based. When I've got normal-looking permissions on /var/mail, postfix gives that error, cannot create file. Courier-IMAP says, imapd: chdir javaspot.net/pergesu: No such file or directory chmod 777 /var/mail and they both work fine. But that's of course not the permissions I want on it. You very probably want 1777 permissions (ie, using the sticky bit like /tmp to prevent people from playing games with other people's mboxes), or else you'll need to make your LDA run setuid-root, in which case 755 is right. [ Or on a few SysV systems, the LDA is setgid-mail, using 775. ] -- -Chuck ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Postfix can't deliver mail to virtual domains - cannot create file exclusively
I'm trying to set up postfix for virtual domains. Apparently the config is mostly correct, because it looks like PostFix is trying to complete delivery of the mail. I get this in my /var/log/maillog file: Feb 4 19:57:59 cantona postfix/virtual[579]: CA35333C1D: to=[EMAIL PROTECTED], relay=virtual, delay=0, status=deferred (mailbox /var/mail/vhosts/javaspot.net/pergesu: cannot create file exclusively: No such file or directory) Shouldn't PostFix create the vhosts/javaspot.net directory and pergesu file automatically when it delivers the mail? Not sure what the problem is here. I can send mail to local users just fine, so I don't think it's a permissions problem. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Mail server questions (SMTP Auth, Imap and virtual domains)
From: Wayne Pascoe [EMAIL PROTECTED] 2. Setup a webmail solution. I'm currently using Squirrelmail for users that exist in /etc/passwd (not very many!), and am considering a migration to Horde/IMP. Near as I can tell though it's not the webmail client that matters, but the imap server. Does anyone know of an imap server that will do 'virtual mailboxes' like vm-pop3d does ? I'm using Cyrus IMAPD as IMAP backend for my Horde/IMP installation. Cyrus has its own userbase so you don't need to create UNIX users for all the mail users. I guess that's what vm-pop3d means by 'virtual mailboxes'. It's been working mostly fine since 2001. Only thing to watch out for is upgrades of the db3 package if you use sasldb authentication (one of many possible authentication methods in Cyrus). I've been bitten a couple of times when db3 got portupgraded as a dependency of 'something' and Cyrus was unable to read it's authentication database which was created with previous version of db3. -- Toomas Aas | [EMAIL PROTECTED] | http://www.raad.tartu.ee/~toomas/ * RUNTIME ERROR 6D at 417A:32CF : Incompetent user ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Mail server questions (SMTP Auth, Imap and virtual domains)
Hi all, I've got a mail setup doing virtualhosts as described at http://www.penguinpowered.org/documentation/exim_virtualhosting.html My users can pull their mail down with POP, but have to use their ISP's SMTP server for outgoing mail. I'd like to do two things at this stage, and I'd appreciate any advice on pointers to help me achieve these: 1. Setup SMTP Auth with Exim so that they can use my boxes for outgoing SMTP. This would allow me to setup SPF on their domains as well, which would be a plus. 2. Setup a webmail solution. I'm currently using Squirrelmail for users that exist in /etc/passwd (not very many!), and am considering a migration to Horde/IMP. Near as I can tell though it's not the webmail client that matters, but the imap server. Does anyone know of an imap server that will do 'virtual mailboxes' like vm-pop3d does ? Thanks in advance, -- Wayne Pascoe(gpg --keyserver www.co.uk.pgp.net --recv-keys 79A7C870) A good sysadmin always carries around a few feet of fiber. If he gets lost, he simply drops the fiber on the ground, waits 10 minutes and asks the backhoe operator for directions - Bill Bradford ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
bind 8 slow when resolving new domains!
I am having a big problem with slow internal DNS (bind 8 on FreeBSD 4.9).
If we do a query against a local domain (our DNS server is authoratative)
then the response is fast. If we do a query against anything in bind's
cache the resp. is fast. If we do a query for a new non-local domain then
the resp is SLOW or times-out. FYI, we are behind a NetScreen firewall at
a colo. The colo promises it is not them. Also, we are using their two DNS
servers as forwarders.
The colo promises it's not them, but frankly I can't see how it's us.
# tcpdump -n host ns2 and \( icmp or udp \)
10:07:37.832611 192.168.42.78.53 isp-dns1.53: 4240+ [1au] A?
www.altavista.com. (46)
10:07:51.013213 192.168.42.78.53 isp-dns2.53: 4240+ [1au] A?
www.altavista.com. (46)
10:07:51.074160 isp-dns2.53 192.168.42.78.53: 4240 2/9/10
CNAME[|domain] (DF)
10:07:51.074476 192.168.42.78.53 isp-dns1.53: 17509+ [1au] A?
avatw.search.yahoo2.akadns.net. (59)
10:07:51.131568 isp-dns1.53 192.168.42.78.53: 17509 1/9/10 (393) (DF)
That's a query for www.altavista.com. That took around 13 seconds. I'm
surprised it didn't time-out!
Here is my options {} (more to follow after this):
options {
directory /etc/namedb;
listen-on { 192.168.42.78; };
forward only; // added while troubleshooting
forward first; // added while troubleshooting
forwarders {
isp-dns1;
isp-dns2;
};
allow-transfer {
127.0.0.1;
192.168.42.0/24;
};
fetch-glue no;
// we have a firewall between us and the Internet, so let's
// go ahead and define our query source port
query-source address 192.168.42.78 port 53;
named-xfer /usr/libexec/named-xfer;
};
Okay, so what happens if I try to disable my forwarders?
I now have:
...
// forward only;
// forward first;
//forwarders {
//isp-dns1;
//isp-dns2;
//};
...
So let's try a random domain name:
ns2# nslookup www.looser.com
Server: ns2
Address: 192.168.42.78
*** ns2 can't find www.looser.com: Non-existent host/domain
ns2# nslookup www.looser.com
Server: ns2
Address: 192.168.42.78
Name:www.looser.com
Address: 217.8.158.117
# tcpdump -n host ns2 and \( icmp or udp \)
tcpdump: listening on rl0
10:13:50.515557 192.168.42.78.53 192.33.4.12.53: 21568 [1au] A?
www.looser.com. (43)
10:13:50.562594 192.33.4.12.53 192.168.42.78.53: 21568- 0/13/14 (475)
10:13:50.563816 192.168.42.78.53 192.33.14.30.53: 39445 [1au] A?
www.looser.com. (43)
10:13:50.619570 192.33.14.30.53 192.168.42.78.53: 39445 FormErr- [0q]
0/0/0 (12) (DF)
10:13:50.619641 192.168.42.78.53 192.33.14.30.53: 39445 A?
www.looser.com. (32)
10:13:58.018699 192.168.42.78.53 192.55.83.30.53: 39445 [1au] A?
www.looser.com. (43)
10:13:58.249039 192.55.83.30.53 192.168.42.78.53: 39445 FormErr- [0q]
0/0/0 (12) (DF)
10:13:58.249153 192.168.42.78.53 192.55.83.30.53: 39445 A?
www.looser.com. (32)
10:14:06.018825 192.168.42.78.53 192.41.162.30.53: 39445 [1au] A?
www.looser.com. (43)
10:14:06.051960 192.41.162.30.53 192.168.42.78.53: 39445 FormErr- [0q]
0/0/0 (12) (DF)
10:14:06.052112 192.168.42.78.53 192.41.162.30.53: 39445 A?
www.looser.com. (32)
10:14:09.431353 192.168.42.78.53 192.33.14.30.53: 7462 A?
www.looser.com. (32)
10:14:09.489141 192.33.14.30.53 192.168.42.78.53: 7462- 0/2/2 (109) (DF)
10:14:09.489528 192.168.42.78.53 64.247.9.98.53: 56483 [1au] A?
www.looser.com. (43)
10:14:09.544852 64.247.9.98.53 192.168.42.78.53: 56483*- 1/2/1 A
217.8.158.117 (104) (DF)
10:14:14.018941 192.168.42.78.53 192.43.172.30.53: 39445 [1au] A?
www.looser.com. (43)
10:14:14.160251 192.43.172.30.53 192.168.42.78.53: 39445 FormErr- [0q]
0/0/0 (12) (DF)
10:14:14.160333 192.168.42.78.53 192.43.172.30.53: 39445 A?
www.looser.com. (32)
10:14:22.019082 192.168.42.78.53 192.54.112.30.53: 39445 [1au] A?
www.looser.com. (43)
10:14:22.147459 192.54.112.30.53 192.168.42.78.53: 39445 FormErr- [0q]
0/0/0 (12) (DF)
10:14:22.147543 192.168.42.78.53 192.54.112.30.53: 39445 A?
www.looser.com. (32)
10:14:30.019186 192.168.42.78.53 192.42.93.30.53: 39445 [1au] A?
www.looser.com. (43)
10:14:30.071152 192.42.93.30.53 192.168.42.78.53: 39445 FormErr- [0q]
0/0/0 (12) (DF)
10:14:30.071232 192.168.42.78.53 192.42.93.30.53: 39445 A?
www.looser.com. (32)
10:14:38.019329 192.168.42.78.53 192.31.80.30.53: 39445 [1au] A?
www.looser.com. (43)
10:14:38.052275 192.31.80.30.53 192.168.42.78.53: 39445 FormErr- [0q]
0/0/0 (12) (DF)
10:14:38.052367 192.168.42.78.53 192.31.80.30.53: 39445 A?
www.looser.com. (32)
10:14:46.019458 192.168.42.78.53 192.52.178.30.53: 39445 [1au] A?
www.looser.com. (43)
10:14:46.155902 192.52.178.30.53 192.168.42.78.53: 39445 FormErr- [0q]
0/0/0 (12) (DF)
10:14:46.156056 192.168.42.78.53 192.52.178.30.53: 39445 A?
www.looser.com. (32)
10:14:54.019582 192.168.42.78.53 192.12.94.30.53: 39445 [1au] A?
www.looser.com.
I receive mail, I can send local mail, but I can't send mail to other domains.
Here is a part of maillog: Mar 11 16:53:42 sokol sendmail[245]: i2BBrgV00245: ruleset=check_rcpt, arg1=[EMAIL PROTECTED], relay=vabra [192.168.1.66], reject=550 5.7.1 [EMAIL PROTECTED]... Relaying denied Mar 11 16:53:42 sokol sendmail[245]: i2BBrgV00245: from=[EMAIL PROTECTED], size=541, class=0, nrcpts=0, proto=ESMTP, daemon=MTA, relay=vabra [192.168.1.66] mailto:[EMAIL PROTECTED] ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: I receive mail, I can send local mail, but I can't send mail to other domains.
reject=550 5.7.1 [EMAIL PROTECTED]... Relaying denied see /etc/mail/access.sample, read the README, read the handbook, read the FAQ at http://www.sendmail.org/faq/. ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Domains
HI, i want to have my personal domain not for buisness but for educational use. I am not that familiar with freebsd but i know somethings. I need my own doamin such as www.chetcuti.mt . can i set up my freebsd to do this so when they look up chetcuti.mt they see my ip without registering for a doamin could it be possibil. i know i have to use dns server and bind but could you clarify what i have to do? Thank you You will have to register the chetcuti.my domain with the appropriate registering agency. Then you can make a www.chetcuti.my or a fred.chetcuti.mt or whatever you want. FreeBSD would be a very good choice for a server once you have the domain registered. jerry ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Domains
HI, i want to have my personal domain not for buisness but for educational use. I am not that familiar with freebsd but i know somethings. I need my own doamin such as www.chetcuti.mt . can i set up my freebsd to do this so when they look up chetcuti.mt they see my ip without registering for a doamin could it be possibil. i know i have to use dns server and bind but could you clarify what i have to do? Thank you ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Domains
On Wednesday 07 January 2004 06:06 pm, Aeden wrote: HI, i want to have my personal domain not for buisness but for educational use. I am not that familiar with freebsd but i know somethings. I need my own doamin such as www.chetcuti.mt . can i set up my freebsd to do this so when they look up chetcuti.mt they see my ip without registering for a doamin could it be possibil. i know i have to use dns server and bind but could you clarify what i have to do? Thank you Aeden, In order to use a domain such as www.chetcuti.mt, you need to register it with the registrar for the TLD .mt. Some places can do this for as low as 5.99/year. From there, you choose who does the DNS hosting, or you can do it yourself, provided you have static IP addresses, unless you use one of a dozen different dynamic dns services. I hope this helps clarify things. -- Eric F Crist AdTech Integrated Systems, Inc (612) 998-3588 ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Anyone know of a good way to handle mail for multiple domains (my own _and_ not my own)?
Hey all- this is something I've looked for a good solution for for some time, and I'm sure someone else has already worked out. Any ideas appreciated. The scenario: I have entirely too many email addresses, several of which from domains that are mine, but others that are not mine, but am unable to get rid of entirely. My freeBSD system is going to become a mail server among other things, to handle mail for several of my own domains. Not a big deal there, have done that enough times...however: I'd like to also pull email from the mail accounts which are _not_ mine, so I can simply use IMAP to my mail server to access all of my different accounts email. In the past, I've used fetchmail to accomplish this somewhat, but that was on a per user basis via user cron jobs. I'd rather avoid adding user accounts (at the shell/system level) for each email account I have. Does anyone know of an alternative way to do this, that would work well for say, a dozen accounts for multiple domains of my own, and perhaps another dozen accounts from domains that are not my own? Thanks in advance, Scott ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
awstats and multi-domains....
Hi, I am having a problem with awstats I am currently using 5.9, I have set up the following dir /etc/awstats/ I have six domainsand I have tried to set up the conf from the model like the in instruction awstats.mysite1.conf awstats.mysite2.conf awstats.mysite3.conf awstats.mysite4.conf awstats.mysite5.conf awstats.mysite6.conf But when I try to run awstats.pl from the command line get this error /usr/local/httpd/cgi-bin/awstats.pl -config=/etc/awstats/awstats.mysite1.conf Error: Couldn't open config file awstats./etc/awstats/awstats.mysite1.conf nor awstats.conf after searching in path /usr/local/httpd/cgi-bin/,/etc/awstats,/etc/opt/awstats,/etc,/usr/local/etc/awstats: No such file or directory Setup (Config file, web server or permissions) may be wrong. See AWStats documentation in 'docs' directory for informations on how to setup awstats. I have check permissions on the files...and they are all set to 755. I have tried to set a file called awstats.conf and it works. So I have tried set up dir ... /etc/awstats/mysites1.com/ Under this dir I have place awstat.conf but I get the same error above. What do I need to do to set up for multi-domains? I have read the FAQ and docs and there is nothing about multi-domains. Payne ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Mail client (Virtual users/domains)
Hello everybody, Iam on FreeBSD 4.8-R, I have ubimiaw Web mail client installed, but its usless, It cannot take virtual Users and read the Mail inbox/dir for it plus diffrent bad effects. I want to have installed a web mail client which can read the virtual domains/users. what should i do in steps please? If i install postfix? it replace sendmail rite? okay. what i should do next ? for enabling virtual users mails? shall i install vpop? If yes, so what Web Mail client i should install ? (other than SqWebmail) ? If there a need for any athentication daemon? Is this in order? postfix - vpop - WebMail client - Athentication daemon? Is there any Web Admin, for postfix? such (QmailAdmin) ? Iam lil bit missed by the steps, and what should go first. Sorry for such long questions, and sorry if this not a rite list. But Iam looking for advises. Marwan. _ Add photos to your messages with MSN 8. Get 2 months FREE*. http://join.msn.com/?page=features/featuredemail ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
RE: Mail client (Virtual users/domains)
Hey, I am running a virtual users setup using exim (http://www.exim.org) and vm-pop3d. Works like a dream. For a webmail client, im using imp (http://www.horde.org). Works very nicely aswell, with lots of nice addons. If you use a different MTA then it will replace Sendmail. I dont know about a Web Admin package for exim (?), but its easy enought to configure using command line. I never touch my exim.conf file. I only edit a pop3-domains file, which contains domains that i pop for, and an aliases file for each domain that i host for mail forwarding etc. The way it would work on my system would be: remote pc -- exim -- mailbox -- vm-pop3d -- client (using virtual login) Your pop3 daemon should do the authentication for you, if you are not using virtual users, then it will look at any users you have added to your system, if you have virtual users, it will look into how you have set it up for usernames and passwords. HTH. Ian -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Behalf Of Dead Line Sent: 08 August 2003 11:12 PM To: [EMAIL PROTECTED] Subject: Mail client (Virtual users/domains) Hello everybody, Iam on FreeBSD 4.8-R, I have ubimiaw Web mail client installed, but its usless, It cannot take virtual Users and read the Mail inbox/dir for it plus diffrent bad effects. I want to have installed a web mail client which can read the virtual domains/users. what should i do in steps please? If i install postfix? it replace sendmail rite? okay. what i should do next ? for enabling virtual users mails? shall i install vpop? If yes, so what Web Mail client i should install ? (other than SqWebmail) ? If there a need for any athentication daemon? Is this in order? postfix - vpop - WebMail client - Athentication daemon? Is there any Web Admin, for postfix? such (QmailAdmin) ? Iam lil bit missed by the steps, and what should go first. Sorry for such long questions, and sorry if this not a rite list. But Iam looking for advises. Marwan. _ Add photos to your messages with MSN 8. Get 2 months FREE*. http://join.msn.com/?page=features/featuredemail ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
