Re: Skiplist causing DB problems?
Hi, -- Jason Williams [EMAIL PROTECTED] is rumored to have mumbled on Freitag, 16. Januar 2004 17:00 Uhr -0800 regarding Skiplist causing DB problems?: Here is the problem, shown in my logfiles: Jan 16 16:46:01 obsidian master[167]: process started Jan 16 16:46:01 obsidian ctl_cyrusdb[168]: recovering cyrus databases Jan 16 16:46:01 obsidian ctl_cyrusdb[168]: skiplist: recovered /var/imap/mailboxes.db (1 record, 320 bytes) in 0 seconds Jan 16 16:46:01 obsidian ctl_cyrusdb[168]: done recovering cyrus databases Jan 16 16:46:02 obsidian master[167]: ready for work Jan 16 16:46:02 obsidian ctl_cyrusdb[169]: checkpointing cyrus databases Jan 16 16:46:02 obsidian ctl_cyrusdb[169]: DBERROR: error listing log files: DB_NOTFOUND: No matching key/data pair found Jan 16 16:46:02 obsidian ctl_cyrusdb[169]: DBERROR: archive /var/imap/db: cyrusdb error Jan 16 16:46:02 obsidian ctl_cyrusdb[169]: done checkpointing cyrus databases Recovering works ok... But checkpointing has problems. check the permissions for /var/imap/db. I had a problem with that once. What's in /var/imap/db? Cheers, Sebastian -- Sebastian Hagedorn M.A. - RZKR-R1 (Flachbau), Zi. 18, Robert-Koch-Str. 10 Zentrum für angewandte Informatik - Universitätsweiter Service RRZK Universität zu Köln / Cologne University - Tel. +49-221-478-5587 pgp0.pgp Description: PGP signature
Re: LDAP ptloader Take2
On Fri, 16 Jan 2004, Tim Pushor wrote: Ok, after doing some hunting, I found out that my imapd was not being built with the experimental ldap pts module because: 1) For some reason my openldap wasn't installing the liblutil related header files, and It should not. These are openldap 'private' build files. ldap ptloader needs to be fixed... -Igor -- Igor
Problem With installing IMAPD
(Note: I'm not curretly on this list. Please CC any replies) I just installed cyrus-sasl-2.1.17 and did an ldconfig. When i went back to the cyrus-imapd-2.0.17 and did a ./configure i get: checking for dlopen... yes checking for sasl.h... no configure: error: Cannot continue without libsasl. Get it from ftp://ftp.andrew.cmu.edu:/pub/cyrus-mail/. [EMAIL PROTECTED]:~/operad/cyrus-imapd-2.0.17$ What's goin on here? Did i skip something? -- +--+-+ | Cody Harris | Signed with GnuPG signature | | KeyID: 610031E2A | vectec.net/~cody/key.asc| +--+---+-+ | New key issued Dec. 17th | +--+
Follow-Up: Unable to update seen flag for some mailboxes
Yesterday I posted a question to this list regarding a problem I was having with the mailboxes for some users on cyrus 2.1.15; namely previously read messages were being marked as unread every time the mailbox listing was refreshed by the IMAP server. One thing I didn't make clear was that this problem was independent of MUA: using pine directly on the mailhost was no better than using Thunderbird on a Windows client; as soon as pine was quit and restarted, the N would reappear on previously viewed messages. In any case, I tried several things including - restarting the cyrus master daemon - checking ownership and permissions on all the cyrus database files - running ctl_cyrusdb -r None of this worked, and all the permissions/ownership on the database files was correct. The only thing which worked was deleting this file: /var/lib/cyrus/user/t/this_user/this_user.seen Steps: 1. Stop cyrmaster 2. rm /var/lib/cyrus/user/t/this_user/this_user.seen 3. Start cyrmaster the this_user.seen db file was automatically recreated and read messages stayed read between restarts of the MUA. I suppose that a drawback of simply deleting the seen database file is that all information about which messages have been read is lost, but it's not at all clear at this point that there was any alternative.
Re: OT - Getting Sendmail to not rewrite the recipient (to) address
David W. Wormuth wrote: I haven't integrated sendmail and cyrus, hence the OT (off-topic) in the heading. My domains Y.org and Z.org are cnames for X.org Sendmail replaces CNAMEs by real names. Use A records insted of CNAMEs in DNS zone. Your sendmail can be instructed to skip CNAMEs replacement but you can not stop servers beyond your control from replacing CNAMEs by real names. P.S. You may try to get sendmail related help via news:comp.mail.sendmail -- Andrzej [plen: Andrew] Adam Filip http://anfi.freeshell.org/ [EMAIL PROTECTED] [EMAIL PROTECTED]
Re: Sendmail rules for delivering to user@domain1 local and user@doma in2 cyrus
Joe Thomas wrote: Running FreeBSD (4.7R) with Sendmail 8.12.9 and Cyrus 2.2.2 BETA... I have two domains on this box with a user that exists in both domains. I want email for [EMAIL PROTECTED] to be delivered via sendmail:local as if cyrus weren't around (which it does) and email for [EMAIL PROTECTED] to be delivered via cyrus to be picked up imap/pop. Currently, email to [EMAIL PROTECTED] gets delivered via sendmail:local because the rules have stripped off the domain. My sendmail rule writing is pretty rusty and I didn't find anything quite like what I want to do in searching the more recent (~last 6 months) of archives. Has anyone written the rules to forward the virtual domain 'domain2' to cyrus? BTW: If the user only exists on the domain2 side, or if I define cyrus to be the local mailer, then I can get the mail via imap/pop so I know everything works. It's just a matter of making the correct decision of which delivery app to use. Try modified advices from the following URL: http://anfi.freeshell.org/sendmail/localNalias.html Cyrus Aliases (sendmail) 1) In *.mc file add LOCAL_CONFIG CPLOCAL 2) Deliver messages to [EMAIL PROTECTED] using cyrus mailer [requires FEATURE(`mailertable')]. mailertable: LOCALlocal: 3) Do not accept messages to [EMAIL PROTECTED] via SMTP [requires FEATURE(`access_db') and FEATURE(`blacklist_recipients')] access: to:LOCAL REJECT -- Andrzej [plen: Andrew] Adam Filip http://anfi.freeshell.org/ [EMAIL PROTECTED] [EMAIL PROTECTED]
Re: Skiplist causing DB problems?
Hello and thanks for your reply... check the permissions for /var/imap/db. I had a problem with that once. What's in /var/imap/db? centralcore# ls -la /var/imap/ total 20 drwxr-xr-x 10 cyrus cyrus 512 Jan 17 22:23 . drwxr-xr-x 21 root wheel 512 Jan 17 22:23 .. drwxr-xr-x 2 cyrus cyrus 512 Jan 17 22:23 db drwxr-xr-x 2 cyrus cyrus 512 Jan 17 22:23 log drwxr-xr-x 2 cyrus cyrus 512 Jan 17 22:23 msg drwxr-xr-x 2 cyrus cyrus 512 Jan 17 22:23 proc drwxr-xr-x 28 cyrus cyrus 512 Jan 17 22:23 quota drwxr-xr-x 28 cyrus cyrus 512 Jan 17 22:23 sieve drwxr-xr-x 2 cyrus cyrus 512 Jan 17 22:23 socket drwxr-xr-x 28 cyrus cyrus 512 Jan 17 22:23 user Also, I just tried again, using skiplist. I am getting errors now when I try and add a user to the sasldb backend: centralcore# /usr/local/sbin/saslpasswd2 -c imapadmin Jan 17 22:27:34 centralcore saslpasswd2: setpass succeeded for imapadmin Jan 17 22:27:34 centralcore saslpasswd2: error deleting entry from sasldb: DB_NOTFOUND: No matching key/data pair found Jan 17 22:27:34 centralcore last message repeated 2 times I find this very odd and extremely frustrating... Anyone have any ideas what is going on and what the problem is? I appreciate the help. jason Here is the problem, shown in my logfiles: Jan 16 16:46:01 obsidian master[167]: process started Jan 16 16:46:01 obsidian ctl_cyrusdb[168]: recovering cyrus databases Jan 16 16:46:01 obsidian ctl_cyrusdb[168]: skiplist: recovered /var/imap/mailboxes.db (1 record, 320 bytes) in 0 seconds Jan 16 16:46:01 obsidian ctl_cyrusdb[168]: done recovering cyrus databases Jan 16 16:46:02 obsidian master[167]: ready for work Jan 16 16:46:02 obsidian ctl_cyrusdb[169]: checkpointing cyrus databases Jan 16 16:46:02 obsidian ctl_cyrusdb[169]: DBERROR: error listing log files: DB_NOTFOUND: No matching key/data pair found Jan 16 16:46:02 obsidian ctl_cyrusdb[169]: DBERROR: archive /var/imap/db: cyrusdb error Jan 16 16:46:02 obsidian ctl_cyrusdb[169]: done checkpointing cyrus databases Recovering works ok... But checkpointing has problems. mail2web - Check your email from the web at http://mail2web.com/ .
Re: nntp fiddling
Kevin P. Fleming wrote: Ken Murchison wrote: There is no overlap between the groups from the different servers, and grouping them is easy with wildcard matching: cups.* microsoft.* infragistics.* everything else OK, so you need the newspeer option to be a *list* of peers? But you *don't* need fetchnews to track the newsgroups by host? Forgive my inability to answer that at this point, I haven't studied the Cyrus NNTP support documentation yet. Here is what I like to do: (A) mirror about a dozen newsgroups from news.west.cox.net (my ISP, Usenet groups) (B) mirror about a dozen newsgroups from news.microsoft.com (public NNTP server) (C) mirror six newsgroups from news.easysw.com (public NNTP server) (D) mirror about ten newsgroups from news.infragistics.com (public NNTP server) I read _and_ post to most of these groups. No single group comes from more than one place, though, each group has only a single server that I will use to get and post messages for that group. Kevin, may I ask how you managed to get multiple groups using one fetchnews command ? I've been trying comma delimited group names (fetchnews -n -w nl.test,nl.someother news.myisp.nl) but for some reason no articles are fetched then. If I use space delimitations, only the first group works. fetchnews(8) isn't too clear about this, I'm afraid and when I look at example wildmats in imapd.conf(5) I see comma seperated grouplists (peer.example.com:*,!control.*,@local.*) Else I will be fetchnews-ing a complete feed (including binaries) while I really only need a few groups, right ? Gr, Nils. -- Simple guidelines to happiness: Work like you don't need the money, love like your heart has never been broken and dance like no one can see you.
PTS LDAP Take 3
I am assuming by the lack of response that no-one really cares (at least at this point) about LDAP group based authorization. I have determined that the way its currently setup (the ldap ptloader) won't do what I want, so I am in the process of rewriting it for my needs. I am wondring if there is any documentation about the pts backend system? I have managed to hack together something that works (sort of), but now I am noticing that when I try to assign group based ACL's in cyradmin that it passes the group name off to the pts backend. This screwes me up. I am not sure what I'm supposed to do with it. Theres also a good chance other things will pop up as I go, so some docs would be good (or someone who understands how the pts backend works ...) If anyone else is interested in this stuff, I may clean it up for general consumption .. Thanks, Tim
Re: PTS LDAP Take 3
On Sat, 17 Jan 2004, Tim Pushor wrote: I am assuming by the lack of response that no-one really cares (at least at this point) about LDAP group based authorization. Oh, I wouldn't go that far. I just think folks haven't gotten too deep into it yet. If you search the archive you'll see it was discussed just a short while ago. I have determined that the way its currently setup (the ldap ptloader) won't do what I want, so I am in the process of rewriting it for my needs. Interesting. Why is that? (Not using it myself right now, but would like to at some point.) -- Amos
Re: PTS LDAP Take 3
I have determined that the way its currently setup (the ldap ptloader) won't do what I want, so I am in the process of rewriting it for my needs. Interesting. Why is that? (Not using it myself right now, but would like to at some point.) Because it relies on a user having multiple memberof attributes to describe their group membership. This is OK if thats how you do group membersip, but I already protect various bits of the directory using OpenLDAP's group scheme - a seperate group object that contains multiple member attributes, each being the DN of the 'subscriber'. I don't want to support multiple group schemes if I can at all avoid it. I hope I didn't come off sounding like a jerk. I really don't mind doing the work. It'd be twice as nice if others were interested, but if not thats ok too ;-) I'd just like to see the API docs, or at least some notes, if they exist. This is one of the major things that I really wanted to see in Cyrus (external authorization). I'm excited! Tim
Re: PTS LDAP Take 3
On Sat, 17 Jan 2004, Tim Pushor wrote: I have determined that the way its currently setup (the ldap ptloader) won't do what I want, so I am in the process of rewriting it for my needs. Interesting. Why is that? (Not using it myself right now, but would like to at some point.) Because it relies on a user having multiple memberof attributes to describe their group membership. This is OK if thats how you do group membersip, but I already protect various bits of the directory using OpenLDAP's group scheme - a seperate group object that contains multiple member attributes, each being the DN of the 'subscriber'. I don't want to support multiple group schemes if I can at all avoid it. I do not see how this is going to work within cyrus context. You will need to change a lot more than just ptloader/ldap code for this to work. I hope I didn't come off sounding like a jerk. I really don't mind doing the work. It'd be twice as nice if others were interested, but if not thats ok too ;-) I'd just like to see the API docs, or at least some notes, if they exist. This is one of the major things that I really wanted to see in Cyrus (external authorization). I'm excited! I do not think such docs exist (except for the code itself). Basically, whenever a user logs in, cyrus fetches all groups the user is member of (ptloader/ldap does this in your case). This group list is later used for mailbox access (check lib/auth_pts.c). You'd be better of writing an ldap authorization module. Check lib/auth_unix.c for an example. -- Igor
