Re: Pam_smb authentication
On Sun, 16 May 2004, Michael Menefee wrote: I know this question has probably been asked in many forms and flavors, but I have yet to find a concise answer. I am trying to run Cyrus-Imap with OpenLDAP (part of the Bynari Site Server installation (www.bynari.net)) and Samba. The goal is to replace Exchange Server, without replacing the underlying NT Domain architecture (configuring samba as a member server only). I know this is possible, and have seen some documentation about saslauthd and openldap, but have yet to see a clear-cut answer to this question. Maybe someone has a better alternative using Cyrus-IMAP, OpenLDAP and authenticating users against NT in some other manner. Any suggestions are greatly appreciated You need to read up the new samba book. It really is amazing. http://www.samba.org/samba/docs/Samba-Guide.pdf as well you must read the latest cvs copy of the smbldap-tools from ideals. http://www.idealx.org/prj/samba/index.en.html Both of these documents explain using ldap with samba on almost every level. Also Lauzly Price has started an integration of samba-domain controlled into ispman(www.ispman.org), which is a cpanel type of admin tool that configures ldap,cyrus,postfix,pure-ftpd,apache,bind . The cyrus list may not provide the information you need, but the previous links will get you going. --- Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: Cyradm under 2.2.3 and mailboxes with spaces SOLVED
--On Montag, 17. Mai 2004 11:01 Uhr +1200 Roland Pope [EMAIL PROTECTED] wrote: I have created a directory for the admin user in the telemetry logs directory, but the cyradm command is not getting to the point where it passes it to IMAP. It is syntax-ing before then because it appears to be ignoring the quotes. It appears to be a problem related to the LANG variable, as RedHat by default uses 'en_US.UTF-8', which is a UNICODE language. If I set LANG='C', the problem goes away. If I run a strace of cyradm, I can see that it is calling /usr/lib/perl5/5.8.0/unicore/lib/SpacePer.pl which is doesn't do when LANG='C'?? I don't know the details, but I've read that Perl 5.8.x, where x 3, has issues with Unicode. Chances are that it'll work fine if you upgrade your Perl installation to 5.8.3. We still have Perl 5.6.1 and don't yet use UTF-8, so I don't know for sure. Greetings, Sebastian Hagedorn -- Sebastian Hagedorn M.A. - RZKR-R1 (Gebäude 52), Zimmer 18 Zentrum für angewandte Informatik - Universitätsweiter Service RRZK Universität zu Köln / Cologne University - Tel. +49-221-478-5587 pgpBtgCCILrli.pgp Description: PGP signature
IMAP/LMTP/Quota locking problem
Hi, sorry, this is quite long ... I'm looking for the updated status of the problem discussed in the threads stuck lmtpd processes: http://asg.web.cmu.edu/archive/message.php?mailbox=archive.info-cyrusmsg=24927 and followup: stuck lmtpd processes: http://asg.web.cmu.edu/archive/message.php?mailbox=archive.info-cyrussearchterm=stuck%20lmtpdmsg=24934 AFAICT Cyrus IMAP 2.1.x hasn't been updated since. Could anyone comment on whether this is fixed in 2.2.3 and if we *have* to update in order to get that fix? In the last two weeks we've had this (or a very similar) problem twice with 2.1.16 und Red Hat AS 2.1. For some reason in both cases tons of sendmail processes were building up. We have configured sendmail to deliver in interactive mode, so each instance tries to connect to lmtpd. I would've expected those attempts to time out relatively quickly. I'm not sure why they don't. Anyway, that's somewhat off-topic ... The first time it happened I was around and collected some info while it was happening. I'd noticed that mail was no longer being delivered. We have maxprocs set to 30 for lmtpd: [EMAIL PROTECTED] root]# ps -aef|grep lmtp cyrus 1383 2095 0 10:10 ?00:00:18 lmtpd cyrus 1974 2095 0 10:11 ?00:00:00 lmtpd cyrus10631 2095 0 10:36 ?00:00:00 lmtpd cyrus17162 2095 0 10:52 ?00:00:00 lmtpd cyrus17262 2095 0 10:52 ?00:00:06 lmtpd cyrus25687 2095 0 11:17 ?00:00:00 lmtpd cyrus28377 2095 0 11:23 ?00:00:09 lmtpd cyrus31251 2095 0 11:32 ?00:00:00 lmtpd cyrus 3824 2095 0 11:46 ?00:00:07 lmtpd cyrus 7534 2095 0 11:56 ?00:00:00 lmtpd cyrus 8248 2095 0 11:58 ?00:00:08 lmtpd cyrus22103 2095 0 12:35 ?00:00:00 lmtpd cyrus23725 2095 0 12:39 ?00:00:01 lmtpd cyrus25366 2095 0 12:45 ?00:00:00 lmtpd cyrus 6108 2095 0 13:23 ?00:00:00 lmtpd cyrus10832 2095 0 13:37 ?00:00:00 lmtpd cyrus12972 2095 0 13:42 ?00:00:00 lmtpd cyrus16114 2095 0 13:53 ?00:00:00 lmtpd cyrus21377 2095 0 14:07 ?00:00:09 lmtpd cyrus24581 2095 0 14:16 ?00:00:00 lmtpd cyrus26200 2095 0 14:21 ?00:00:14 lmtpd cyrus26577 2095 0 14:22 ?00:00:00 lmtpd cyrus31893 2095 0 14:35 ?00:00:03 lmtpd cyrus32575 2095 0 14:36 ?00:00:07 lmtpd cyrus32659 2095 0 14:37 ?00:00:01 lmtpd cyrus14146 2095 0 15:16 ?00:00:00 lmtpd cyrus21049 2095 0 15:36 ?00:00:00 lmtpd cyrus26969 2095 0 15:56 ?00:00:11 lmtpd cyrus13275 2095 0 15:15 ?00:00:04 lmtpd cyrus17679 2095 0 13:57 ?00:00:00 lmtpd Obviously something was wrong. [EMAIL PROTECTED] root]# lsof -p 26969 COMMAND PID USER FD TYPE DEVICE SIZE NODE NAME lmtpd 26969 cyrus cwdDIR9,0 4096393296 /root snip lmtpd 26969 cyrus memREG 8,73 384157630 /var/lib/imap/mailboxes.db lmtpd 26969 cyrus memREG 8,49 194 145326099 /var/spool/imap/M/user/therbst/cyrus.header snip lmtpd 26969 cyrus9u REG 8,49 3130 56013510 /var/spool/imap/stage./26969-1083938870 lmtpd 26969 cyrus 10u unix 0xef1ce040 614472274 socket lmtpd 26969 cyrus 11u REG 8,49 194 145326099 /var/spool/imap/M/user/therbst/cyrus.header I gathered that /var/spool/imap/M/user/therbst/cyrus.header was causing the problems.Its node number (is that the inode??) is 145326099: [EMAIL PROTECTED] root]# grep 145326099 /proc/locks 1162: POSIX ADVISORY WRITE 1974 08:31:145326099 0 EOF e9b58d54 e9b587f4 cd5a7964 d1c324c0 1162: - POSIX ADVISORY WRITE 1383 08:31:145326099 0 EOF d1c324b4 c7fd745c f3bd0964 e9b58d54 c7fd7464 1162: - POSIX ADVISORY WRITE 10631 08:31:145326099 0 EOF c7fd7458 d1c3245c d1c324b8 e9b58d54 d1c32464 1162: - POSIX ADVISORY WRITE 17162 08:31:145326099 0 EOF d1c32458 d6989400 c7fd745c e9b58d54 d6989408 1162: - POSIX ADVISORY WRITE 17262 08:31:145326099 0 EOF d69893fc dfb2eca0 d1c3245c e9b58d54 dfb2eca8 1162: - POSIX ADVISORY WRITE 25687 08:31:145326099 0 EOF dfb2ec9c f3972be8 d6989400 e9b58d54 f3972bf0 1162: - POSIX ADVISORY WRITE 28377 08:31:145326099 0 EOF f3972be4 c47d96e0 dfb2eca0 e9b58d54 c47d96e8 1162: - POSIX ADVISORY WRITE 31251 08:31:145326099 0 EOF c47d96dc cd5a7d58 f3972be8 e9b58d54 cd5a7d60 1162: - POSIX ADVISORY WRITE 7534 08:31:145326099 0 EOF cd5a7d54 c47d98ac c47d96e0 e9b58d54 c47d98b4 1162: - POSIX ADVISORY WRITE 3824 08:31:145326099 0 EOF c47d98a8 c7fd7400 cd5a7d58 e9b58d54 c7fd7408 1162: - POSIX ADVISORY WRITE 8248 08:31:145326099 0 EOF c7fd73fc c8733be8 c47d98ac e9b58d54 c8733bf0 1162: - POSIX ADVISORY WRITE 22103 08:31:145326099 0 EOF c8733be4 cd197f24 c7fd7400 e9b58d54 cd197f2c 1162: - POSIX ADVISORY WRITE 25366 08:31:145326099 0 EOF cd197f20 d1c32290
Re: IMAP/LMTP/Quota locking problem
I do know that as of 2.2.1, the problem still exists. I find it impossible to trigger the bug on my own in our test environment, and we won't be doing an upgrade to 2.2.3 (or whatever happens to be out) until the summer time frame. Currently, we manage the problem by watching the sendmail syslog file for System I/O errors on the Cyrus mailer (grep for 'mailer=cyrus.*System.I.O') and when we see some, we run another script that tells us which cyrus proc has the write lock on their quota file and we kill that process. The problem occurs regularly, with some users more reliably triggering the problem than others. For those who are curious, our Cyrus server runs on a cluster of 3 machines running with Alpha Tru64 5.2. Scott --On Monday, May 17, 2004 2:47 PM +0200 Sebastian Hagedorn [EMAIL PROTECTED] wrote: Hi, sorry, this is quite long ... I'm looking for the updated status of the problem discussed in the threads stuck lmtpd processes: http://asg.web.cmu.edu/archive/message.php?mailbox=archive.info-cyrusms g=24927 and followup: stuck lmtpd processes: http://asg.web.cmu.edu/archive/message.php?mailbox=archive.info-cyrusse archterm=stuck%20lmtpdmsg=24934 AFAICT Cyrus IMAP 2.1.x hasn't been updated since. Could anyone comment on whether this is fixed in 2.2.3 and if we *have* to update in order to get that fix? In the last two weeks we've had this (or a very similar) problem twice with 2.1.16 und Red Hat AS 2.1. For some reason in both cases tons of sendmail processes were building up. We have configured sendmail to deliver in interactive mode, so each instance tries to connect to lmtpd. I would've expected those attempts to time out relatively quickly. I'm not sure why they don't. Anyway, that's somewhat off-topic ... The first time it happened I was around and collected some info while it was happening. I'd noticed that mail was no longer being delivered. We have maxprocs set to 30 for lmtpd: [EMAIL PROTECTED] root]# ps -aef|grep lmtp cyrus 1383 2095 0 10:10 ?00:00:18 lmtpd cyrus 1974 2095 0 10:11 ?00:00:00 lmtpd cyrus10631 2095 0 10:36 ?00:00:00 lmtpd cyrus17162 2095 0 10:52 ?00:00:00 lmtpd cyrus17262 2095 0 10:52 ?00:00:06 lmtpd cyrus25687 2095 0 11:17 ?00:00:00 lmtpd cyrus28377 2095 0 11:23 ?00:00:09 lmtpd cyrus31251 2095 0 11:32 ?00:00:00 lmtpd cyrus 3824 2095 0 11:46 ?00:00:07 lmtpd cyrus 7534 2095 0 11:56 ?00:00:00 lmtpd cyrus 8248 2095 0 11:58 ?00:00:08 lmtpd cyrus22103 2095 0 12:35 ?00:00:00 lmtpd cyrus23725 2095 0 12:39 ?00:00:01 lmtpd cyrus25366 2095 0 12:45 ?00:00:00 lmtpd cyrus 6108 2095 0 13:23 ?00:00:00 lmtpd cyrus10832 2095 0 13:37 ?00:00:00 lmtpd cyrus12972 2095 0 13:42 ?00:00:00 lmtpd cyrus16114 2095 0 13:53 ?00:00:00 lmtpd cyrus21377 2095 0 14:07 ?00:00:09 lmtpd cyrus24581 2095 0 14:16 ?00:00:00 lmtpd cyrus26200 2095 0 14:21 ?00:00:14 lmtpd cyrus26577 2095 0 14:22 ?00:00:00 lmtpd cyrus31893 2095 0 14:35 ?00:00:03 lmtpd cyrus32575 2095 0 14:36 ?00:00:07 lmtpd cyrus32659 2095 0 14:37 ?00:00:01 lmtpd cyrus14146 2095 0 15:16 ?00:00:00 lmtpd cyrus21049 2095 0 15:36 ?00:00:00 lmtpd cyrus26969 2095 0 15:56 ?00:00:11 lmtpd cyrus13275 2095 0 15:15 ?00:00:04 lmtpd cyrus17679 2095 0 13:57 ?00:00:00 lmtpd Obviously something was wrong. [EMAIL PROTECTED] root]# lsof -p 26969 COMMAND PID USER FD TYPE DEVICE SIZE NODE NAME lmtpd 26969 cyrus cwdDIR9,0 4096393296 /root snip lmtpd 26969 cyrus memREG 8,73 384157630 /var/lib/imap/mailboxes.db lmtpd 26969 cyrus memREG 8,49 194 145326099 /var/spool/imap/M/user/therbst/cyrus.header snip lmtpd 26969 cyrus9u REG 8,49 3130 56013510 /var/spool/imap/stage./26969-1083938870 lmtpd 26969 cyrus 10u unix 0xef1ce040 614472274 socket lmtpd 26969 cyrus 11u REG 8,49 194 145326099 /var/spool/imap/M/user/therbst/cyrus.header I gathered that /var/spool/imap/M/user/therbst/cyrus.header was causing the problems.Its node number (is that the inode??) is 145326099: [EMAIL PROTECTED] root]# grep 145326099 /proc/locks 1162: POSIX ADVISORY WRITE 1974 08:31:145326099 0 EOF e9b58d54 e9b587f4 cd5a7964 d1c324c0 1162: - POSIX ADVISORY WRITE 1383 08:31:145326099 0 EOF d1c324b4 c7fd745c f3bd0964 e9b58d54 c7fd7464 1162: - POSIX ADVISORY WRITE 10631 08:31:145326099 0 EOF c7fd7458 d1c3245c d1c324b8 e9b58d54 d1c32464 1162: - POSIX ADVISORY WRITE 17162 08:31:145326099 0 EOF d1c32458 d6989400 c7fd745c e9b58d54 d6989408 1162: - POSIX ADVISORY WRITE 17262 08:31:145326099 0 EOF d69893fc dfb2eca0 d1c3245c e9b58d54 dfb2eca8 1162: - POSIX
Re: sendmail hooks for pre-checking of over-quota imap users?
Sergey wrote: On Sunday 16 May 2004 23:27, Andrzej Filip wrote: But I have new question. The reason: 550 5.1.1 [EMAIL PROTECTED]... User unknown is return both for unreal and real but overquoted users. Is real cyrus reason's sending possible ? Please send what cyrus map lookups returned in both cases. # echo '/map cyrus [EMAIL PROTECTED]' | sendmail -bt ADDRESS TEST MODE (ruleset 3 NOT automatically invoked) Enter ruleset address map_lookup: cyrus ([EMAIL PROTECTED]) no match (69) # # echo '/map cyrus [EMAIL PROTECTED]' | sendmail -bt ADDRESS TEST MODE (ruleset 3 NOT automatically invoked) Enter ruleset address map_lookup: cyrus ([EMAIL PROTECTED]) no match (68) 1) Could you post definition of cyrus map you use ? grep Kcyrus /etc/mail/sendmail.cf 2) Cpuld you post exact link of solution you have used ? [there are a few versions] I read in sendmail's documentation about possibility arbitrary test in some replyes : The status indicator is one of the following upper case words: OK the key was found, result contains the looked up value NOTFOUND the key was not found, the result is empty TEMP a temporary failure occured TIMEOUT a timeout occured on the server side PERM a permanent failure occured In case of errors (status TEMP, TIMEOUT or PERM) the result field may contain an explanatory message. Or is cyrus send NOTFOUND (and not TEMP or PERM) in both cases ? *.cf file sees TEMP as NOTFOUND unless the map is defined with -T... BTW I can see no way to make explanation send by cyrus with TEMP reply avaialbale in *.cf file (All TEMP land in one rubber bag). -- Andrzej [en:Andrew] Adam Filip [EMAIL PROTECTED] [EMAIL PROTECTED] http://anfi.homeunix.net/ http://slashdot.org/~anfi --- Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: sendmail hooks for pre-checking of over-quota imap users?
Andrzej Filip wrote: Sergey wrote: On Sunday 16 May 2004 23:27, Andrzej Filip wrote: But I have new question. The reason: 550 5.1.1 [EMAIL PROTECTED]... User unknown is return both for unreal and real but overquoted users. Is real cyrus reason's sending possible ? Please send what cyrus map lookups returned in both cases. # echo '/map cyrus [EMAIL PROTECTED]' | sendmail -bt ADDRESS TEST MODE (ruleset 3 NOT automatically invoked) Enter ruleset address map_lookup: cyrus ([EMAIL PROTECTED]) no match (69) # # echo '/map cyrus [EMAIL PROTECTED]' | sendmail -bt ADDRESS TEST MODE (ruleset 3 NOT automatically invoked) Enter ruleset address map_lookup: cyrus ([EMAIL PROTECTED]) no match (68) 1) Could you post definition of cyrus map you use ? grep Kcyrus /etc/mail/sendmail.cf 2) Cpuld you post exact link of solution you have used ? [there are a few versions] I read in sendmail's documentation about possibility arbitrary test in some replyes : The status indicator is one of the following upper case words: OK the key was found, result contains the looked up value NOTFOUND the key was not found, the result is empty TEMP a temporary failure occured TIMEOUT a timeout occured on the server side PERM a permanent failure occured In case of errors (status TEMP, TIMEOUT or PERM) the result field may contain an explanatory message. Or is cyrus send NOTFOUND (and not TEMP or PERM) in both cases ? *.cf file sees TEMP as NOTFOUND unless the map is defined with -T... BTW I can see no way to make explanation send by cyrus with TEMP reply avaialbale in *.cf file (All TEMP land in one rubber bag). FYI, smmapd does the correct thing for over quota (at least the CVS version does): [EMAIL PROTECTED] temp]# ./socketmapClient.pl unix:/var/imap/socket/smmap cyrus test test = TEMP Over quota -- Kenneth Murchison Oceana Matrix Ltd. Software Engineer 21 Princeton Place 716-662-8973 x26 Orchard Park, NY 14127 --PGP Public Key--http://www.oceana.com/~ken/ksm.pgp --- Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: sendmail hooks for pre-checking of over-quota imap users?
Ken Murchison wrote: [...] FYI, smmapd does the correct thing for over quota (at least the CVS version does): [EMAIL PROTECTED] temp]# ./socketmapClient.pl unix:/var/imap/socket/smmap cyrus test test = TEMP Over quota I have seen 2.2.3 code which appears to do the right thing. FYI I have asked on news:comp.mail.sendmail how to make temp explanation string available in sendmail.cf (so e.g. sendmail.cf can send 5?? replies in over quota situations - some postmaster *want* 5?? for over quota). -- Andrzej [en:Andrew] Adam Filip [EMAIL PROTECTED] [EMAIL PROTECTED] http://anfi.homeunix.net/ http://slashdot.org/~anfi --- Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: sendmail hooks for pre-checking of over-quota imap users?
Andrzej Filip wrote: Ken Murchison wrote: [...] FYI, smmapd does the correct thing for over quota (at least the CVS version does): [EMAIL PROTECTED] temp]# ./socketmapClient.pl unix:/var/imap/socket/smmap cyrus test test = TEMP Over quota I have seen 2.2.3 code which appears to do the right thing. FYI I have asked on news:comp.mail.sendmail how to make temp explanation string available in sendmail.cf (so e.g. sendmail.cf can send 5?? replies in over quota situations - some postmaster *want* 5?? for over quota). I have read the sources (sendmail-8.13.0.Beta2/sendmail/map.c) and it seems that current implementation of socket map in *sendmail* does not pass explanation strings to sendmail.cf [no fault at cyrus side] All current version of my cyrus sendmail integration should be capable to handle TEMP replies from smmapd of cyrus. AFAIR some early version did not do it. -- Andrzej [en:Andrew] Adam Filip [EMAIL PROTECTED] [EMAIL PROTECTED] http://anfi.homeunix.net/ http://slashdot.org/~anfi --- Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html