RE: Lost the Battle

[Stefaan A Eeckels]

On 28-Feb-2001 dennis wrote:
  My qmail project, only 1 week away from implementation, was canned, we are
  now moving to Lotus Notes.

Condolences. A company I used to work with also replaced the qmail
I installed (and which had worked flawlessly for 18 months) with
Notes (they wanted shared calendars :-). Two months later, they
had to be rescued by their ISP because they were being used as
a SPAM relay. 

Stefaan
-- 
How's it supposed to get the respect of management if you've got just
one guy working on the project?  It's much more impressive to have a
battery of programmers slaving away. -- Jeffrey Hobbs (comp.lang.tcl)

Re: Lost the Battle

[Jason Radford]

I must say being someone who's installed NOTES (R5) that it's all up
to who installed/configured it and their level of understanding of
the product.  Trouble with groupware products like Notes and Exchange
is companies figure they dont need moderate/highly priced people who
actually understand what they are doing (it's GUI, so it's easy, right?)

This is the downfall of today's reality in alot of companies, they
trade experienced employees for 'turn key' and 'easily maintainable'
products which seemly dont need an experienced staff to administer.  Or
at least that's the crap managers are being sold on.

I must say if I hear another Lotus rep extoll the virtues of 
"knowledgeware" one more time I'll shoot them! :)

Sorry, my rant for the month.

-Jason

On Thu, 01 Mar 2001 09:41:56 +0100 (MET)
Stefaan A Eeckels [EMAIL PROTECTED] wrote:

 
 On 28-Feb-2001 dennis wrote:
   My qmail project, only 1 week away from implementation, was canned, we are
   now moving to Lotus Notes.
 
 Condolences. A company I used to work with also replaced the qmail
 I installed (and which had worked flawlessly for 18 months) with
 Notes (they wanted shared calendars :-). Two months later, they
 had to be rescued by their ISP because they were being used as
 a SPAM relay. 
 
 Stefaan
 -- 
 How's it supposed to get the respect of management if you've got just
 one guy working on the project?  It's much more impressive to have a
 battery of programmers slaving away. -- Jeffrey Hobbs (comp.lang.tcl)
 

logging alternatives to qmail-pop3d and checkpassword

[Jörgen Persson]

Can someone help me to find logging alternatives to qmail-pop3d and
checkpassword?

Jrgen

NOVICE no mailbox here by tht name...

[Ken Corey]

Hi All,

Newbie alert: if you're busy, don't read.

I'm hoping you can point out where I went wrong here...

I started with a Suse6.3 machine.
I removed the sendmail.rpm.
I followed the life-with-qmail directions to install a Mailbox+df version of 
qmail, almost to the letter, with two exceptions:  
1) The two times it said to start 'qmail' with '/usr/local/sbin/qmail' I 
started it with '/usr/bin/qmail'.
2) I have a list of domains that resolve to my local machine that I wanted to 
receive mail for, so I put them in both locals and rcpthosts.

So, then I tried to send local email:
mail kcorey
testing
.

The errors I get in the log are:
The 'kcorey' mailbox doesn't exist, so qmail tries to bounce this to 
'postmaster'.
The 'postmaster' mailbox doesn't exist, so it bounces to 'root'.
The 'root' mailbox doesn't exist, so it gives up as a triple-bounce 
undeliverable.

Both the 'kcorey' and 'root' accounts exist in /etc/passwd, and I made the 
symlinks back to /var/spool/mail. (Postmaster doesn't exist, so I'd expect an 
error of some kind there.)

Why does qmail think those two mailboxes do not exist? (Note: I get this 
error with /var/spool/mail chmodded to 1777, and with or without the symlinks 
being there for the mail files in /var/spool/mail.

The FAQ doesn't seem to answer this specifically, and when I looked through 
the archives, all I saw were replies about upper case or dotted usernames.

Ideas anyone?

-- 
Ken Corey, CTOAtomic Interactive, Ltd.

Re: Scalable Mail Solution

[Adam Jacob]

On Thu, Mar 01, 2001 at 04:56:43PM +1100, Brett Randall wrote:
  Well, my users are all in one domain, so I cannot split the domains
  across several HDD's.
 
 RAID???

RAID + Fibre Channel.

  Secondly, what if 2 1/2 million users
  simultaneously hit the server, would the server handle it?
 
 What with? A baseball bat? Unlikely. Logging in? Perhaps. Calculate
 how many MBs each instance of your web server take up, multiply it
 by 2.5million, and tell me that your server can handle both that
 amount of RAM and that number of processes. Uh huh.

Yeah.. no way that you can get that kind of traffic to one server.  Not
going to happen.

  Well, how does hotmail or yahoo do it? I am sure they load blanace
  across multiple servers, but how?
 
 If you're looking at a *nix solution, look into Coda filesystems,
 Intermezzo, GFS, etc. Then look at a network-based clustering
 solution, such as the Linux Virtual Server.

There are several common solutions for this sort of problem (although I have
never seen it on this scale, really)..

1. Use something like Qmail-LDAP, which has a "mailHost" feature.  This lets
   you have users distributed across multiple servers, and the qmail boxes
   are smart enough to forward the message to the proper server via QMTP.
   POP3 can get forwarded to the appropriate host as well.

2. Use something like a series of Network Appliance NAS devices to store
   users mail; then you can have each server access the entire data store
   regardless of where the connection is (via NFS).  

3. Use something like GFS, which is a shared filesystem used on Fibre Channel
   Arrays.  This has great potential, as the bandwidth of FC and the overhead
   of SCIS is much lower than an NFS based solution.  However, there are other
   limitations here; GFS hasn't really ever been tested on a scale like that, 
   to my knowledge.  Not to mention the number of machines and arrays you
   would need to have.

#1 is the simplest method, but it also has the most administrative overhead
and the least amount of redundancy.  Loose server32, and all the users on
server32 loose thier mail.  

#2 works really well if you design the networks properly; but at the volume
your talking about, you'll probably really wind up with a hybrid of #1 and 
#2... a small cluster of machines attached to a Netapp for small groups of
users.

#3 is the holy grail; of course, I've never seen anybody actually deploy
it, since GFS is such a new thing. :)

  I know all about load balancing with dns, etc. across multiple web
  servers for example, but with mail, a specific user has to login to
  the same box that hosts his mailbox everytime, and mail arriving from
  outside world to this user has to arrive to the same box also.
 
 You're thinking inside the box.

Yeah, he is.  Stop thinking about each machine as the source; start
thinking of the entire infrastructure as one machine.  Check out
http://www.infrastructures.org for more information on how to get your
head around building things like this.

  If anyone out there has gone through something like this, I would
  appreciate it a lot if you hint me with a clue :) P.S. Please cc me
  your reply, as I am not subscribed to the list. Best Regards,
 
 You might want to subscribe. Just a hint.

Definetly subscribe.

Check out Qmail-LDAP, too.  You won't be sorry.

Adam

--
[EMAIL PROTECTED] - (http://sysadminsith.org)
Evil Lord of the Sysadmin Sith Darth Rmdashrf

Re: NOVICE no mailbox here by tht name...

[Olivier M.]

On Thu, Mar 01, 2001 at 10:20:21AM +, Ken Corey wrote:

 Ideas anyone ?

have you _really_ followed all the steps of the LWQ ? 
if yes, root would have a mailbox in /var/qmail/alias/Mailbox.
Does this directory exists ? 
  
Please show us the qmail users from /etc/passwd. 
Good luck :)

Olivier

PS: if you followed the INSTALL file of the qmail-1.03 tar.gz,
it would work... :)
-- 
_
 Olivier Mueller - [EMAIL PROTECTED] - PGPkeyID: 0E84D2EA - Switzerland
qmail projects: http://omail.omnis.ch  -  http://webmail.omnis.ch

 PGP signature

qmail Digest 1 Mar 2001 11:00:00 -0000 Issue 1290

[qmail-digest-help]

qmail Digest 1 Mar 2001 11:00:00 - Issue 1290

Topics (messages 58042 through 58126):

Re: QMail log: is human DATE/TIME available
58042 by: japc.co.sapo.pt

Re: qmail-send progress with large queue/todo
58043 by: Peter van Dijk
58045 by: Manvendra Bhangui
58064 by: David Dyer-Bennet
58065 by: Charles Cazabon

Re: nfs mounting /var/qmail/alias
58044 by: Peter van Dijk

Re: [Qmail-scanner-general]amavis or qmail-scanner ?
58046 by: Bruno Wolff III
58049 by: Michael Peppard
58051 by: marcth
58106 by: Brett Randall

Re: How to create two mailboxes for one user
58047 by: Sean Swehla

Re: Relay-ctrl and qmail
58048 by: Charles Cazabon
58054 by: Bruce Guenter
58058 by: Enrique Vadillo
58087 by: inter7.mail.delanet.com

How can I test the capability of my qmail server?
58050 by: root

help for smtp-server on MAPS DULed IP
58052 by: Christoph Hertel
58053 by: Charles Cazabon

Re: tcpserver for pop3 and telnet
58055 by: Dave Sill
58056 by: Charles Cazabon
58059 by: Tim Hunter

tls.patch causing qmail-remote to crash
58057 by: John McCoy, Jr

amavis or qmail-scanner ?
58060 by: Jérémy Cluzel
58063 by: Olivier M.
58067 by: schoon.amgt.com
58079 by: Jason Haar

Re: About qmail  sendmail.
58061 by: David Dyer-Bennet

Re: Return address for autoresponder
58062 by: David Dyer-Bennet

Announcing cr.yp.to-update list
58066 by: Dave Sill

qmail-0.0.0.0.patch not found
58068 by: Claudio Nieder
58107 by: Scott Gifford

Re: mailserver buffering
58069 by: Andy Bradford
58113 by: Markus Stumpf

Relay-ctrl and qmail: problem more fundamental, I think
58070 by: Bill Isaacs
58071 by: Charles Cazabon
58072 by: Bill Isaacs
58074 by: Charles Cazabon
58084 by: Bill Isaacs
58088 by: Chris Johnson
58090 by: Charles Cazabon
58109 by: Bill Isaacs

Re: Can Qmail send out 2 million mails in 12 hour window?
58073 by: inter7.mail.delanet.com
58111 by: Markus Stumpf

pop3 acct name
58075 by: Dean Browett
58091 by: Chris Johnson

Duplicate mails on mailing list.
58076 by: Andy Bradford

What does this mean.
58077 by: inter7.mail.delanet.com
58078 by: Charles Cazabon
58081 by: denis

Attachment Limit
58080 by: Cristopher Daniluk
58082 by: Charles Cazabon

unsubcribe
58083 by: inter7.mail.delanet.com

List Mirroring
58085 by: David Coley

Time::HiRes for Qmail-Scanner on RH7 ?
58086 by: inter7.mail.delanet.com
58089 by: Olivier M.

Re: checkpassword (pop3d) problem
58092 by: inter7.mail.delanet.com

qmail+system accounts+virt. dom. POPs
58093 by: inter7.mail.delanet.com

Using Virtual Consoles with multilog
58094 by: Roger Waterhouse
58095 by: Peter van Dijk
58096 by: Charles Cazabon

Re: warning: trouble opening remote/4/r
58097 by: inter7.mail.delanet.com

Re: Cannot receive mail from some sites
58098 by: inter7.mail.delanet.com

Useful Unix Networking/Programming site
58099 by: Bruce Dang

Partition swap broke qmail
58100 by: Stewart Vardaman
58101 by: schoon.amgt.com
58102 by: Sean Reifschneider
58103 by: Chris Johnson

Lost the Battle
58104 by: dennis
58120 by: Stefaan A Eeckels
58121 by: Jason Radford

procmail problems (RH6.2)
58105 by: Joe Janitor

qmail vulnerability
58108 by: D. J. Bernstein
58118 by: Andy Bradford

qmail 2.0 exploit
58110 by: Peter Cavender
58112 by: Ian Lance Taylor
58117 by: Vince Vielhaber

Scalable Mail Solution
58114 by: Tim Hassan
58115 by: Brett Randall
58116 by: Hubbard, David
58124 by: Adam Jacob

SSL Support
58119 by: Green Onyx

logging alternatives to qmail-pop3d and checkpassword
58122 by: Jörgen Persson

NOVICE no mailbox here by tht name...
58123 by: Ken Corey
58125 by: Olivier M.

Qmail - to slow?
58126 by: Thomas König

Administrivia:

To unsubscribe from the digest, e-mail:
[EMAIL PROTECTED]

To subscribe to the digest, e-mail:
[EMAIL PROTECTED]

To bug my human owner, e-mail:
[EMAIL PROTECTED]

To post to the list, e-mail:
[EMAIL PROTECTED]


--



Pipe the logs files through tai64nlocal (man tai64nlocal), for instance

cat current | /usr/local/bin/tai64nlocal

.

On Wed, Feb 28, 2001 at 01:06:26PM +0300, Alexander Cherepanov wrote:
 I couldn't found anywhere how can I get human-readable date and time stamps
 in qmail logs. Can anybody do that?
 
 Thanks for you help,
 Alexander
 

-- 
Jose AP Celestino
[EMAIL PROTECTED]

Re: logging alternatives to qmail-pop3d and checkpassword

[Gjermund Sorseth]

  Can someone help me to find logging alternatives to qmail-pop3d and
  checkpassword?
   
  Jrgen


On my system, I've added some code to qmail-pop3d.c to make it log
the clients username and IP address to syslog every time a user quits.
Here is the extra code:


/* Add syslog logging
 */
static void log_summary()
{
#include syslog.h

extern char **environ;
char **p;
char *user, *ip;

/* TCPREMOTEIP is inherited from tcpserver.
 */
for (p = environ; *p  strncmp(*p, "TCPREMOTEIP=", 12) != 0; ++p);
ip = (*p) ? (*p + 12) : "0.0.0.0";

/* USER is inherited from checkpassword.
 * Make sure that USER is not already set when tcpserver starts.
 */
for (p = environ; *p  strncmp(*p, "USER=", 5) != 0; ++p);
user = (*p) ? (*p + 5) : "unknown";

openlog("qmail-pop3d", 0, LOG_MAIL);
syslog(LOG_INFO, "%s   %s", ip, user);
closelog();
}

static void log_and_die() { log_summary(); die(); }


Then substitute log_and_die() for die() in the pop3_quit() function.

-- 
Gjermund Sorseth

messages staying in the queue...

[Frédéric Beléteau]

Hi ...

i'm quite novice with qmail, i have set up a qmail server with vpopmail
i worked on my qmail server yesterday, and some messages went in the queue
when my system wasn't well configured to deliver them ...
now i can send and receive messages correctly but these messages stay in the
queue !

1) how could i do, a recursive touch ?
i tried find . * -print -exec touch , that's wrong... what's the missing
magic word for giving the found file as argument ? $ ? ... ???

2) an other dark point i missunderstand is the relaycontrol, i defined a
rcpthosts file, when qmail run with it, it can't deliver messages locally
even if local virtualdomains are defined in it, answering theses domains are
not in my rcpthosts when i try to send msg! it would mean my qmail-send
reads the rcpthosts file ? i had a look on the big qmail picture and that's
not working the same ... when i delete this rcpthosts file, everything work
well then but i get troubles with spammers then !

many thanks for answers !
Fred.

Re: logging alternatives to qmail-pop3d and checkpassword

[OHIRA, Shinya]

J gen_Persson [EMAIL PROTECTED]$B!!(Bwrote:
 Can someone help me to find logging alternatives to qmail-pop3d and
 checkpassword?
 
 J gen

http://www.ornl.gov/its/archives/mailing-lists/qmail/1998/08/msg00896.html

--Shinya

Re: amavis or qmail-scanner ?

[Rainer Link]

Jrmy Cluzel wrote:

 1) as virus-scanner ? amavis or qmail-scanner ? both seem to work
 fine...
I've replied to you directly and added Jason Haar into CC, so he can
correct me if I made a wrong assumption. :-) Hopefully I do not need a
dozen of bodyguards ;-)))

 2) as antivirus ? H+BEDV AntiVir, AVP, Sophos Sweep,or McAfee
 ViruScan ? I used avp for a while (and I find it very efficient), but
 doesn't know the other ones...
Well, Kaspersky Labs ships Kaspersky AntiVirus (AVP) for qmail. For a
product comparison please visit www.av-test.org - they do comparisons of
Linux products, too.

HTH

best regards,
Rainer Link

-- 
Rainer Link  | Member of Virus Help Munich (www.vhm.haitec.de)   
[EMAIL PROTECTED] | Member of AMaViS Development Team (amavis.org) 
rainer.w3.to | OpenAntiVirus Project (www.openantivirus.org)

Re: Qmail - to slow?

[Peter van Dijk]

On Thu, Mar 01, 2001 at 11:33:29AM +0100, Thomas Knig wrote:
[snip]
 qmail (standard tgz file with only the qmail-date-localtime patch) is
 compiled with:  
 conf-split = 300

That conf-split is ridiculous. It is way higher than necessary, *and*
it is not prime.

 conf-spawn = 255
 
 /var/qmail/bin:
 concurrencylocal  = 30
 concurrencyremote = 100

You might want to up concurrencyremote a lot :)

 Now I has tried to send a Newsletter to 180.000 subscribers. The system
 needs 5 1/2 hours
 for delivery( 9 mails per second), but I mean it's to long?!
 The average bandwich during the delivery is 70k-100k it's to slightly for an
 100mbit Connection.
 
 If I look for qmail processes, ther are only 3-5 qmail-remote processes.
 netstat -an show me 100-200 socket connections to smpt servers on port 25.
 vmstat shows an average idle time between 65%-78%.
 memory use is ca. 200 MB, swap is untouched.
 
 What can I do, for higher performance?

Apply the big-concurrency patch, use ezmlm for your mailinglist.

 Have I errors in my configuration?

Yes, your conf-split is broken.

Greetz, Peter.

Re: Qmail - to slow?

[Thomas König]

Hi,

thanks for your answer.

Which values are right for my problem?

--
tom

Re: Qmail - to slow?

[Peter van Dijk]

On Thu, Mar 01, 2001 at 02:30:37PM +0100, Thomas Knig wrote:
 Hi,
 
 thanks for your answer.
 
 Which values are right for my problem?

conf-split should be 23 unless you have *really* good reasons to
change it.

Greetz, Peter.

Where do I find the logs

[Andrew Wafula]

Hi,

I did a migration from Sendmail to Qmail and now I don't know where to find
the logs. previously they were in /var/log/maillog but now it seems they are
split up under the /var/log/qmail directory (or so I think).
I need to look at the logs from time to time but i just cant seem to find
them.

Andrew

Re: Scalable Mail Solution

[Rob Hines Jr.]

In short, yes, there are Terrabyte solutions, they start in the several
hundred thousand range, and go up according to what you need. Many
companies that do that sort of volume use load balancers (layer 7
usually), and several machines clustered together. I don't see any
reason qmail couldn't handle that volume of users, but you're talking
about some serious equipment costs, at least in the very high hundreds
of thousands of dollars.

The short answer to the question about what would happen if 2.5 million
users hit your PIII server at once. In a word: *poof*

Check out: 

http://www.f5.com
(f5 Load balancers are cool, Foundry also makes some good gear, I forget
the URL)

http://www.nthgencomp.com/
(Terabyte arrays)

http://www.sun.com/
(Servers that won't blow up under that load and Terabyte arrays)

Hope that helps.

Rob

Tim Hassan wrote:
 
 Hi,
 
 I have used Qmail for over 3 years now and I love it. Now I have came across
 one project, building a Mail server to handle around 5-6 million users with
 a 10 meg mailbox each (I use vpopmail www.inter7.com for the pop server and
 virtual domain part). Now multiplying 10MB x 500 users = 50million megs,
 which is about 50,000 gigs. Is their such a thing as a 50 terrabyte hard
 drive? Well, my users are all in one domain, so I cannot split the domains
 across several HDD's. Secondly, what if 2 1/2 million users simultaneously
 hit the server, would the server handle it? with a quad p-III Xeon 1ghz and
 4 GB or ram and a OC connection.
 Well, how does hotmail or yahoo do it? I am sure they load blanace across
 multiple servers, but how?
 I know all about load balancing with dns, etc. across multiple web servers
 for example, but with mail, a specific user has to login to the same box
 that hosts his mailbox everytime, and mail arriving from outside world to
 this user has to arrive to the same box also.
 If anyone out there has gone through something like this, I would appreciate
 it a lot if you hint me with a clue :)
 
 P.S. Please cc me your reply, as I am not subscribed to the list.
 
 Best Regards,
 Tim

-- 
Rob Hines Jr.
System Administrator

Re: Scalable Mail Solution

[william f guyton jr]

Rob Hines Jr. wrote:

 In short, yes, there are Terrabyte solutions, they start in the several
 hundred thousand range, and go up according to what you need. Many
 companies that do that sort of volume use load balancers (layer 7
 usually), and several machines clustered together. I don't see any
 reason qmail couldn't handle that volume of users, but you're talking
 about some serious equipment costs, at least in the very high hundreds
 of thousands of dollars.
 
 The short answer to the question about what would happen if 2.5 million
 users hit your PIII server at once. In a word: *poof*
 
 Check out: 
 
 http://www.f5.com
 (f5 Load balancers are cool, Foundry also makes some good gear, I forget
 the URL)
 
 http://www.nthgencomp.com/
 (Terabyte arrays)
 
 http://www.sun.com/
 (Servers that won't blow up under that load and Terabyte arrays)
 
 Hope that helps.
 
 Rob
 
 Tim Hassan wrote:
 
 Hi,
 
 I have used Qmail for over 3 years now and I love it. Now I have came across
 one project, building a Mail server to handle around 5-6 million users with
 a 10 meg mailbox each (I use vpopmail www.inter7.com for the pop server and
 virtual domain part). Now multiplying 10MB x 500 users = 50million megs,
 which is about 50,000 gigs. Is their such a thing as a 50 terrabyte hard
 drive? Well, my users are all in one domain, so I cannot split the domains
 across several HDD's. Secondly, what if 2 1/2 million users simultaneously
 hit the server, would the server handle it? with a quad p-III Xeon 1ghz and
 4 GB or ram and a OC connection.
 Well, how does hotmail or yahoo do it? I am sure they load blanace across
 multiple servers, but how?
 I know all about load balancing with dns, etc. across multiple web servers
 for example, but with mail, a specific user has to login to the same box
 that hosts his mailbox everytime, and mail arriving from outside world to
 this user has to arrive to the same box also.
 If anyone out there has gone through something like this, I would appreciate
 it a lot if you hint me with a clue :)
 
 P.S. Please cc me your reply, as I am not subscribed to the list.
 
 Best Regards,
 Tim
 
www.foundrynetworks.net, I am using the serveriron XL 16

Re: Qmail - to slow?

[Federico Edelman Anaya]

Do you have installed the daemontools? how do you logging? syslog? multilog?

Bye!


Thomas Knig wrote:

 Hi,

 I have been setup a linux-box PII/450, 256MB RAM, 4 GB IDE HDD, 100mbit
 bandwitch
 with RehHat 6.2, qmail 1.03 + ezmlm-idx with MySQL + vpopmail.

 qmail (standard tgz file with only the qmail-date-localtime patch) is
 compiled with:
 conf-split = 300
 conf-spawn = 255

 /var/qmail/bin:
 concurrencylocal  = 30
 concurrencyremote = 100

 Now I has tried to send a Newsletter to 180.000 subscribers. The system
 needs 5 1/2 hours
 for delivery( 9 mails per second), but I mean it's to long?!
 The average bandwich during the delivery is 70k-100k it's to slightly for an
 100mbit Connection.

 If I look for qmail processes, ther are only 3-5 qmail-remote processes.
 netstat -an show me 100-200 socket connections to smpt servers on port 25.
 vmstat shows an average idle time between 65%-78%.
 memory use is ca. 200 MB, swap is untouched.

 What can I do, for higher performance?
 Have I errors in my configuration?

 --
 thomas koenig

Re: Qmail - to slow?

[Thomas König]

Yes, I have installed daemontools-0.53. I use tcpserver, logging via cyclog.

/etc/rc.d/init.d/qmail:
echo -n "Starting: "
env - PATH="/var/qmail/bin:/usr/local/bin" \
qmail-start ./Maildir/ /usr/local/bin/accustamp \
| /usr/local/bin/setuser qmaill /usr/local/bin/cyclog /var/log/qmail 
echo -n "qmail "

env - PATH="/var/qmail/bin:/usr/local/bin" \
tcpserver -H -R -l$HOSTNAME -c30 0 pop-3 /var/qmail/bin/qmail-popup
\
$HOSTNAME \
/home/vpopmail/bin/vchkpw /var/qmail/bin/qmail-pop3d Maildir 
echo -n "pop "

env - PATH="/var/qmail/bin:/usr/local/bin" \
tcpserver -H -R -l$HOSTNAME -x /home/vpopmail/etc/tcp.smtp.cdb -c30
\
-u503 -g502 0 smtp \
/var/qmail/bin/qmail-smtpd 21  /dev/null 
echo "smtp"

--
tom

Redirect e-mails to 'root'

[John P]

I need to redirect e-mail to root to another e-mail address (local).

I created a /var/qmail/alias/.qmail-root containing ' john ' but qmail still
attempts to deliver messages to root.

The reason I need to do this is as follows: (I may be doing something
wrong?)

- Our server handles mail for office.domain.com (this value is in 'me')
- However all our public e-mail addresses are [EMAIL PROTECTED] and the
machine at domain.com forwards selected e-mail addresses onto
[EMAIL PROTECTED] for users to get (with the rest being picked up by
pop3 from domain.com as a general 'customer service' address)
- To ensure that our local users can send to [EMAIL PROTECTED] I removed
'domain.com' from 'locals' and 'rcpthosts' (otherwise they were being
bounced)
- This works OK, but messages to root (cron et al) get delivered to
[EMAIL PROTECTED] which isn't under our control (domain.com is our webserver)
so I don't get to see them. This is why I want to forward them.

Any suggestions?

Thanks

John

Re: Redirect e-mails to 'root'

[Frank Tegtmeyer]

 I created a /var/qmail/alias/.qmail-root containing ' john ' but qmail still
 attempts to deliver messages to root.

Put 
john

into the file (without the spaces).

Frank

Re: Redirect e-mails to 'root'

[Frank Tegtmeyer]

 - Our server handles mail for office.domain.com (this value is in 'me')

 - This works OK, but messages to root (cron et al) get delivered to
 [EMAIL PROTECTED] which isn't under our control (domain.com is our webserver)
 so I don't get to see them. This is why I want to forward them.

Hm. This doesn't fit. Please pove the output of qmail-showctl.

Regards, Frank 

Re: procmail problems (RH6.2) SOLVED (?)

[Joe Janitor]

I made some modifications to the homedir files:

$HOME/.qmail now has
| preline /usr/bin/procmail -m /home/joe/.procmailrc

(the -m file was previously mis-named)

and $HOME/.procmailrc has 
PATH=/bin:/usr/bin:/usr/bin:$PATH
ORGMAIL=$HOME/Mailbox
MAILDIR=$HOME/mail
DEFAULT=$HOME/Mailbox   #completely optional
LOGFILE=$MAILDIR/procmail.log

Does this mean I have to have these two files in 
every home directory!? And does it also mean that any
user can screw his mail up by accidentally deleting
these files? I have to say, though this works, I'm not
particularly comfortable with it...

Joe

--- Joe Janitor [EMAIL PROTECTED] wrote:
 I'm having trouble with qmail and procmail. I've
 read
 the FAQ and the list archives, but am still unsure
 what 
 to do. I'm using a Linux RedHat 6.2 system.
 
 installed qmail.
 outgoing mail works.
 incoming mail (from outside) bounces (unknown user)
 local mail won't be delivered, i.e
 when I try (from the machine in question):
 $ mail joe
 Subject: testing
 testing
 .
 Cc:
 $
 
 I end up with /var/spool/mail/joe (a symlink to
 /home/joe/Mailbox) being
 renamed as BOGUS.joe.1jLB and a new FILE called
 /var/spool/mail/joe
 containing the "testing" message.
 
 I read in INSTALL.mbox the following:
 A few mail programs are unable to handle symbolic
 links, so you will
 have to configure them to look at ~user/Mailbox
 directly:
* procmail: Change SYSTEM_MBOX in config.h and
 recompile; or, with
  recent versions, define MAILSPOOLHOME in
 src/authenticate.c.
 
 but I don't know where to find config.h or
 authenticate.c... do I have to download the procmail
 source and recompile after these edits? (There has
 to
 be an easier way!)
 
 I tried adding ~joe/.qmail-test1 containing:
 |preline procmail -m /home/awilber/.procmailrc
 and ~joe/.procmail containing
 PATH=/bin:/usr/bin:/usr/bin:$PATH
 ORGMAIL=$HOME/Mailbox
 MAILDIR=$HOME/mail
 DEFAULT=$HOME/Mailbox   #completely optional
 LOGFILE=$MAILDIR/procmail.log
 
 this didn't work.
 
 I'm lost.
 
 Thanks,
 Joe
 
 __
 Do You Yahoo!?
 Get email at your own domain with Yahoo! Mail. 
 http://personal.mail.yahoo.com/


__
Do You Yahoo!?
Get email at your own domain with Yahoo! Mail. 
http://personal.mail.yahoo.com/

Re: Fwd: Re: Relay-ctrl and qmail: problem more fundamental, I think

[Charles Cazabon]

Bill Isaacs [EMAIL PROTECTED] wrote:
 
 At the risk of sounding really stupid, do I need to invoke BOTH the 
 corrected script (minus the qmail-smtpd part) AND the old one (pop-3, etc.)? 
   In other words, will I have two tcpserver scripts, one invoking the pop-3 
 and the other the qmail smtpd?

If I remember your setup, yes.  Think of tcpserver as a meta-daemon --
it binds to one TCP port on your machine and accepts connections.  For each
connection, it spawns a specified program which reads and writes data from
and to that connection.  Therefore, if you want to use it for two different
ports (different services, like SMTP and POP3), you need to run two 
different instances of tcpserver.

 As I said, I am a complete newbie with email and no great shakes with much 
 of this stuff to begin with.  I hope you folks aren't getting to tired of 
 answering these dumb questions.

This list generally doesn't tire of questions from people who are willing
to do some work, experiment, and report honest results.  If you want to
help yourself further, I would recommend reading everything at cr.yp.to,
especially concerning ucspi-tcp, daemontools, and qmail, as well as
everything linked to from www.qmail.org.

Charles
-- 
---
Charles Cazabon[EMAIL PROTECTED]
GPL'ed software available at:  http://www.qcc.sk.ca/~charlesc/software/
Any opinions expressed are just that -- my opinions.
---

Re: Redirect e-mails to 'root'

[Frank Tegtmeyer]

  Please pove the output of qmail-showctl.

Oh I'm a silly-billy. I guess I need some sleep :)
I meant "give" or "post".

Frank 

Re: Where do I find the logs

[Charles Cazabon]

Andrew Wafula [EMAIL PROTECTED] wrote:
 
 I did a migration from Sendmail to Qmail and now I don't know where to find
 the logs. previously they were in /var/log/maillog but now it seems they are
 split up under the /var/log/qmail directory (or so I think).
 I need to look at the logs from time to time but i just cant seem to find
 them.

It depends how you installed qmail.  Check how you're calling qmail-start.

Charles
-- 
---
Charles Cazabon[EMAIL PROTECTED]
GPL'ed software available at:  http://www.qcc.sk.ca/~charlesc/software/
Any opinions expressed are just that -- my opinions.
---

Re: Lost the Battle

[Dave Sill]

My qmail project, only 1 week away from implementation, was canned, we are
now moving to Lotus Notes.

Well, it's not a total loss. At least you learned something about
qmail.

-Dave

Re: Lost the Battle

[Mark Delany]

On Thu, Mar 01, 2001 at 10:19:34AM -0500, Dave Sill wrote:
 My qmail project, only 1 week away from implementation, was canned, we are
 now moving to Lotus Notes.
 
 Well, it's not a total loss. At least you learned something about
 qmail.

And maybe you can convince your company to use qmail as your email
relay server on the firewall. Use Notes internally in a protected
environment and only expose qmail to that nasty world out there.

Sure you could expose your Notes server to the Internet, but do you
really want to with all that company data so close at hand?

Sure you could also buy a seperate Notes server and license just as a
firewall box, but is that cost effective and is it the most secure
choice?


Regards.

Re: Redirect e-mails to 'root'

[John P]

  - Our server handles mail for office.domain.com (this value is in 'me')

  - This works OK, but messages to root (cron et al) get delivered to
  [EMAIL PROTECTED] which isn't under our control (domain.com is our
webserver)
  so I don't get to see them. This is why I want to forward them.

 Hm. This doesn't fit. Please pove the output of qmail-showctl.


And I've just realised that any messing about with root@ forwards won't
work.. as it's not delivering to local root anyway.

Here's qmail-showctl (a very useful feature isn't it!) May as well give up
on the domain hiding, I trust you all :-)
(plus I probably posted it before somewhere!)

The machine 'office.internal' is portfowarded to (SMTP/POP-3) from our
firewall which has the external name 'office.mobiletones.com' hence the
different names in there. BIND is set up to map all office.internal
addresses correctly.

qmail home directory: /var/qmail.
user-ext delimiter: -.
paternalism (in decimal): 2.
silent concurrency limit: 120.
subdirectory split: 23.
user ids: 501, 502, 503, 0, 504, 505, 506, 507.
group ids: 501, 502.

badmailfrom: (Default.) Any MAIL FROM is allowed.

bouncefrom: (Default.) Bounce user name is MAILER-DAEMON.

bouncehost: (Default.) Bounce host name is office.mobiletones.com.

concurrencylocal: (Default.) Local concurrency is 10.

concurrencyremote: (Default.) Remote concurrency is 20.

databytes: (Default.) SMTP DATA limit is 0 bytes.

defaultdomain: Default domain name is office.internal.

defaulthost: Default host name is mobiletones.com.

doublebouncehost: (Default.) 2B recipient host: office.mobiletones.com.

doublebounceto: (Default.) 2B recipient user: postmaster.

envnoathost: (Default.) Presumed domain name is office.mobiletones.com.

helohost: (Default.) SMTP client HELO host name is office.mobiletones.com.

idhost: (Default.) Message-ID host name is office.mobiletones.com.

localiphost: (Default.) Local IP address becomes office.mobiletones.com.

locals:
Messages for pluto.office.internal are delivered locally.
Messages for office.mobiletones.com are delivered locally.
Messages for localhost are delivered locally.

me: My name is office.mobiletones.com.

percenthack: (Default.) The percent hack is not allowed.

plusdomain: Plus domain name is office.internal.

qmqpservers: (Default.) No QMQP servers.

queuelifetime: (Default.) Message lifetime in the queue is 604800 seconds.

rcpthosts:
SMTP clients may send messages to recipients at pluto.office.internal.
SMTP clients may send messages to recipients at office.mobiletones.com.
SMTP clients may send messages to recipients at localhost.

morercpthosts: (Default.) No effect.

morercpthosts.cdb: (Default.) No effect.

smtpgreeting: (Default.) SMTP greeting: 220 office.mobiletones.com.

smtproutes: (Default.) No artificial SMTP routes.

timeoutconnect: (Default.) SMTP client connection timeout is 60 seconds.

timeoutremote: (Default.) SMTP client data timeout is 1200 seconds.

timeoutsmtpd: (Default.) SMTP server data timeout is 1200 seconds.

virtualdomains: (Default.) No virtual domains.

defaultdelivery: I have no idea what this file does.

default: I have no idea what this file does.

controlbackup: I have no idea what this file does.

tain64local: I have no idea what this file does.

Re: procmail problems (RH6.2) SOLVED (?)

[Dave Sill]

Joe Janitor [EMAIL PROTECTED] wrote:

I made some modifications to the homedir files:

$HOME/.qmail now has
| preline /usr/bin/procmail -m /home/joe/.procmailrc

(the -m file was previously mis-named)

and $HOME/.procmailrc has 
PATH=/bin:/usr/bin:/usr/bin:$PATH
ORGMAIL=$HOME/Mailbox
MAILDIR=$HOME/mail
DEFAULT=$HOME/Mailbox   #completely optional
LOGFILE=$MAILDIR/procmail.log

Does this mean I have to have these two files in 
every home directory!?

No. First, procmail doesn't need the -m flag. See the procmail section
in LWQ:

  http://www.lifewithqmail.org/lwq.html#procmail

Also, if you want delivery via procmail to be the default, specify
that on the qmail-start command line, or in the
control/defaultdelivery file if you installed using LWQ.

Finally, you can specify a systemwide default procmailrc in
/etc/procmailrc.

And does it also mean that any
user can screw his mail up by accidentally deleting
these files? I have to say, though this works, I'm not
particularly comfortable with it...

You can't really save your users from themselves...

-Dave

Re: messages staying in the queue...

[Greg White]

On Thu, Mar 01, 2001 at 12:14:11PM +0100, Frdric Belteau wrote:
 Hi ...
 
SNIP
 1) how could i do, a recursive touch ?
 i tried find . * -print -exec touch , that's wrong... what's the missing
 magic word for giving the found file as argument ? $ ? ... ???

This has nothing to do with qmail, but try, um, 'man find'? It's there,
honest. 'find . -type f -exec touch {} \; '


 
 2) an other dark point i missunderstand is the relaycontrol, i defined a
 rcpthosts file, when qmail run with it, it can't deliver messages locally
SNIP

Possibly the most FAQ in the FAQ... If using Dan's docs, included in the
distro, read the FAQ on relay. If using Life with qmail, read LWQ again,
more carefully. 

 many thanks for answers !
 Fred.
 
HTH,

-- 
Greg White
Those who make peaceful revolution impossible will make violent
revolution inevitable.
-- John F. Kennedy

Re: procmail problems (RH6.2) SOLVED (?)

[Joe Janitor]

--- Dave Sill [EMAIL PROTECTED] wrote:
 Joe Janitor [EMAIL PROTECTED] wrote:
 
 I made some modifications to the homedir files:
 
 $HOME/.qmail now has
 | preline /usr/bin/procmail -m
 /home/joe/.procmailrc
 
 (the -m file was previously mis-named)
 
 and $HOME/.procmailrc has 
 PATH=/bin:/usr/bin:/usr/bin:$PATH
 ORGMAIL=$HOME/Mailbox
 MAILDIR=$HOME/mail
 DEFAULT=$HOME/Mailbox   #completely optional
 LOGFILE=$MAILDIR/procmail.log
 
 Does this mean I have to have these two files in 
 every home directory!?
 
 No. First, procmail doesn't need the -m flag. See
 the procmail section
 in LWQ:
 
   http://www.lifewithqmail.org/lwq.html#procmail
 
 Also, if you want delivery via procmail to be the
 default, specify
 that on the qmail-start command line, or in the
 control/defaultdelivery file if you installed using
 LWQ.

I think I was already doing this, my
/etc/rc.d/init.d/qmail script called qmail-start
'|preline procmail' splogger qmail 

 Finally, you can specify a systemwide default
 procmailrc in
 /etc/procmailrc.

I read about that, but since that file didn't already
exist on my system, I wondered if it would be looked
for at all (if I created it). I never got around to
testing it.
 
 And does it also mean that any
 user can screw his mail up by accidentally deleting
 these files? I have to say, though this works, I'm
 not
 particularly comfortable with it...
 
 You can't really save your users from themselves...

But you can make it harder for them to auto-hank...

In any case, I've since downloaded the procmail
source, edited src/authenticate.c to include
#define MAILSPOOLHOME "/Mailbox" 
and recompiled.

Now it works great without any $HOME/.qmail or
$HOME/.procmailrc or /etc/procmailrc

Thanks for writing.

Joe


__
Do You Yahoo!?
Get email at your own domain with Yahoo! Mail. 
http://personal.mail.yahoo.com/

Re: Scalable Mail Solution

[Jonathan J. Smith]

"Rob Hines Jr." wrote:
 
 In short, yes, there are Terrabyte solutions, they start in the several
 hundred thousand range, and go up according to what you need. Many
 companies that do that sort of volume use load balancers (layer 7
 usually), and several machines clustered together. I don't see any
 reason qmail couldn't handle that volume of users, but you're talking
 about some serious equipment costs, at least in the very high hundreds
 of thousands of dollars.
 
 The short answer to the question about what would happen if 2.5 million
 users hit your PIII server at once. In a word: *poof*
 
 Check out:
 
 http://www.f5.com
 (f5 Load balancers are cool, Foundry also makes some good gear, I forget
 the URL)


Foundry Networks is:

http://www.foundrynetworks.com/

Some very good solid equipment.


 http://www.nthgencomp.com/
 (Terabyte arrays)
 
 http://www.sun.com/
 (Servers that won't blow up under that load and Terabyte arrays)
 
 Hope that helps.
 
 Rob


Jonathan Smith

Re: Relay test

[Russell Nelson]

Paco Martinez writes:
  Relay test result
  Hmmn, at first glance, host appeared to accept a message for relay. 
  THIS MAY OR MAY NOT MEAN THAT IT'S AN OPEN RELAY.
  
  
  As you see "Test 9" shows that my PC has a security hole 

Hello, Paco.  Could you please translate "THIS MAY OR MAY NOT MEAN THAT
IT'S AN OPEN RELAY" into your native language?  Obviously it's not
sufficient to say it in English with capital letters.

-- 
-russ nelson [EMAIL PROTECTED]  http://russnelson.com
Crynwr sells support for free software  | PGPok | "This is Unix...
521 Pleasant Valley Rd. | +1 315 268 1925 voice | Stop acting so helpless."
Potsdam, NY 13676-3213  | +1 315 268 9201 FAX   | --Daniel J. Bernstein

Re: unsubcribe

[Russell Nelson]

[EMAIL PROTECTED] writes:
  unsubcribe

If I wrote "unsubcribe" to the qmail mailing list, would it
unsubscribe me any better than if I wrote "unsubscribe"?

Hint: Try sending requests for a LIST running on a HOST to
LIST-request@HOST.  This is never the wrong thing to do.

-- 
-russ nelson [EMAIL PROTECTED]  http://russnelson.com
Crynwr sells support for free software  | PGPok | "This is Unix...
521 Pleasant Valley Rd. | +1 315 268 1925 voice | Stop acting so helpless."
Potsdam, NY 13676-3213  | +1 315 268 9201 FAX   | --Daniel J. Bernstein

Some newbies issue

[Jason Benedict Low]

Hi,

Kindly excuse me if my problem is stupid or if it's not related. I'm
first-timer setting up a Mail server and i choose qmail instead of
Sendmail as qmail have the add-on i luv.

Hope you pple out here can help me and THANKS in Advance.

My system: Linux (Turbolinux ver 6.1) (no sendmail installed) (installed
qmail-1.03)

I don't have own DNS and Static IP. I subscribe to hn.org. i'm using
Maildir format.

qmail running:-

Following TEST.deliver
(test using qmail-inject)

1) tested local to localSUCCESSFULL.
2) tested local to errorSUCCESSFULL.
3) tested local to remote   SUCCESSFULL.
4) tested local to POSTmaster   SUCCESSFULL.
5) tested Double-bounce SUCCESSFULL.

Following TEST.recieve
(via SMTP)

1) tested local to localSUCCESSFULL.
2) tested local to remote   SUCCESSFULL.
3) tested remote to local   NOT SUCCESSFULL.

Due to i'm first time setting up such server i do not know what when
wrong. i try sending [EMAIL PROTECTED] and [EMAIL PROTECTED]
from my pacific.net.sg (ISP) account both mails bounced back to my
pacific.net.sg pop account.

I do understand that i need to set MX in DNS under Netphuture.com Zone
file, but i do not know i do it rightly or not. I want to have my
SMTP/POP3 known as mail.netphuture.com and user email address as ie.
[EMAIL PROTECTED]

Here my hn.org Dynamic service setting:-
===
Rec FQDN Rec TypeRec Value  DynDNS MX Pref
===
  
netphuture.com  NS  ns1.hn.org 0 0

netphuture.com  NS  aux1.hn.org0 0

www.netphuture.com CNAME   netphuture.com  0 0

netphuture.com   Anetphuture.hn.org1 0

mail.netphuture.comCNAME  netphuture.com   0 0

netphuture.com   MX mail.netphuture.com010


Please help me. I've installed qmail twice to figure out and read
through lots of FAQ and mailing archive this whole months Feb'01. No
doubt i found lots of other knowlegde but i still can't get the Remote
to local (TEST.recieve) to work. That's why i suspect my setting of MX
could be the core issue of it.

Sorry for the long message here.

Regards.

Jason Benedict Low

***One's success is not because of oneself but is given by others

Re: Some newbies issue

[Claudio Nieder]

Hi,

 Due to i'm first time setting up such server i do not know what when
 wrong. i try sending [EMAIL PROTECTED] and [EMAIL PROTECTED]
 from my pacific.net.sg (ISP) account both mails bounced back to my

The bounce messages could help in determine what was the problem.

 netphuture.com   MX mail.netphuture.com010

$ dnsmx netphuture.com
10 mail.netphuture.com

$ dnsip mail.netphuture.com
202.156.122.40 

$ telnet 202.156.122.40 25
Trying 202.156.122.40...

Here I don't get any response. If you want to receive mail, your host
needs to be permanently connected to the Internet and listening to
port 25 for incoming mail. Is qmail-smtpd running ?

claudio
-- 
Claudio Nieder, Kanalweg 1, CH-8610 Uster, Tel +41 79 357 6743
yahoo messenger: claudionieder aim: claudionieder icq:42315212
mailto:[EMAIL PROTECTED]http://www.claudio.ch

Re: Some newbies issue

[Matthew Patterson]

On Thu, 01 Mar 2001, Jason Benedict Low wrote:
Hi,

Kindly excuse me if my problem is stupid or if it's not related. I'm
first-timer setting up a Mail server and i choose qmail instead of
Sendmail as qmail have the add-on i luv.

Hope you pple out here can help me and THANKS in Advance.

My system: Linux (Turbolinux ver 6.1) (no sendmail installed) (installed
qmail-1.03)

I don't have own DNS and Static IP. I subscribe to hn.org. i'm using
Maildir format.

qmail running:-

Following TEST.deliver
(test using qmail-inject)

1) tested local to local   SUCCESSFULL.
2) tested local to error   SUCCESSFULL.
3) tested local to remote  SUCCESSFULL.
4) tested local to POSTmaster  SUCCESSFULL.
5) tested Double-bounceSUCCESSFULL.

Following TEST.recieve
(via SMTP)

1) tested local to local   SUCCESSFULL.
2) tested local to remote  SUCCESSFULL.
3) tested remote to local  NOT SUCCESSFULL.

Due to i'm first time setting up such server i do not know what when
wrong. i try sending [EMAIL PROTECTED] and [EMAIL PROTECTED]
from my pacific.net.sg (ISP) account both mails bounced back to my
pacific.net.sg pop account.

I do understand that i need to set MX in DNS under Netphuture.com Zone
file, but i do not know i do it rightly or not. I want to have my
SMTP/POP3 known as mail.netphuture.com and user email address as ie.
[EMAIL PROTECTED]

Here my hn.org Dynamic service setting:-
===
Rec FQDN Rec TypeRec Value  DynDNS MX Pref
===   
   
netphuture.com  NS  ns1.hn.org 0 0

netphuture.com  NS  aux1.hn.org0 0

www.netphuture.com CNAME   netphuture.com  0 0

netphuture.com   Anetphuture.hn.org1 0

mail.netphuture.comCNAME  netphuture.com   0 0

netphuture.com   MX mail.netphuture.com010


Please help me. I've installed qmail twice to figure out and read
through lots of FAQ and mailing archive this whole months Feb'01. No
doubt i found lots of other knowlegde but i still can't get the Remote
to local (TEST.recieve) to work. That's why i suspect my setting of MX
could be the core issue of it.

Sorry for the long message here.

Regards.

Jason Benedict Low

***One's success is not because of oneself but is given by others

change the mail.netphuture.com record to an a record and point it to either an ip 
address or something like mail.netphuture.hn.org

-- 
***
Matthew H Patterson
Unix Systems Administrator
National Support Center, LLC
Naperville, Illinois, USA
***

Re: Where do I find the logs

[David Dyer-Bennet]

"Andrew Wafula" [EMAIL PROTECTED] writes:

 Hi,
 
 I did a migration from Sendmail to Qmail and now I don't know where to find
 the logs. previously they were in /var/log/maillog but now it seems they are
 split up under the /var/log/qmail directory (or so I think).
 I need to look at the logs from time to time but i just cant seem to find
 them.

Are you logging via multilog?  If so, there's a directory somewhere
with the file "current" in it that contains the current log (the one
being written to right now) and probably (if you've had it up long
enough to roll to additional log files) files with names rather like 

@40003a8bf1aa33d789ac.s
@40003a8c1ee106d5040c.s
@40003a8cb8c72584e19c.s
@40003a8d8c130207ff24.s
@40003a8ee3b217506fec.s
@40003a90ad7a24735644.u
@40003a90c3cd0b5ae604.u

which represent old log files.  

"Somewhere" is controlled by how you start things.  Are you running
qmail-send supervised under svscan?  Then the log directory is
described in the supervise directory.
-- 
David Dyer-Bennet  /  Welcome to the future!  /  [EMAIL PROTECTED]
SF: http://www.dd-b.net/dd-b/  Minicon: http://www.mnstf.org/minicon/
Photos: http://dd-b.lighthunters.net/

Re: Scalable Mail Solution

[Sean Chittenden]

 The short answer to the question about what would happen if 2.5 million
 users hit your PIII server at once. In a word: *poof*

Bad things happen, little gremlins come out of the wood work and data
starts to disappear.

 Check out: 
 
 http://www.f5.com
 (f5 Load balancers are cool, Foundry also makes some good gear, I forget
 the URL)

I highly recommend this!  ArrowPoint looks really neat, but
I've never used it (http://www.arrowpoint.com/).

 http://www.nthgencomp.com/
 (Terabyte arrays)

Very expensive, same with EMC, and Network Appliances.  If you
haven't budgeted for $1M (or some large portion thereof), then you may
want to look at setting something close to the following up:

Internet
  -
 BIG-IP
   -
  First row of MX servers that forward to a large number 2nd
level mail servers using fastforward.  All cdb files synced across the
front row servers, built on a regular time interval (once a minute)
from a database.
-   (use qmtp, qmqp if possible)
   Second row of MX servers w/ IMAP, pop3, web access,
etc. that get user data off of an NFS server (use Maildir) format.
Use a quasi-dynamic DNS setup (recommend TinyDNS) to figure out where
to look for user Maildirs (username-host.mail.domain.com), and set the
TTLs to 5 seconds.
 -
 NFS servers - work horses that do nothing but serve Maildir data 
via NFS w/ big raid drives.

 http://www.sun.com/
 (Servers that won't blow up under that load and Terabyte arrays)

http://www.freebsd.org/
Not to start anything, really, but I've run FreeBSD servers w/
an average load of 80-120 for years w/o them crashing or giving me
problems (where a Solaris E450 box folded, put its tails between its
legs, and walked away sniveling after days of configuration tweaks).
Linux: nice.  Sun: better.  FreeBSD: arrived at Mecca.

Motto: Design distributed with large numbers to scale quickly
and cheaply.  BIG-IP and FreeBSD are your friends.

-sc

-- 
Sean Chittenden[EMAIL PROTECTED]
C665 A17F 9A56 286C 5CFB  1DEA 9F4F 5CEF 1EDD FAAD

 PGP signature

_lots_ of repeat messages

[dan kelley]

hi all-

we've been having a rather bizzare problem recently:  certain emails sent
from hotmail arrive every 5 minutes or so.  some unfortunate users are
receiving up to 200 copies of certain pieces of mail.  originally, i
thought this to be a problem with our primary mailserver (or our internet
connection), as some of the dups would come directly to our primary
mailserver, and some would arrive form the backup (lower preference MX).
there was a problem with the primary:  tcpserver was consigured to refuse
certain remote connections, so it makes perfect sense that lots of mail
would bounce to the backup. but that problem was resolved serveral days
ago, and now we're still getting flooded from certain hotmail accounts.

checklist:

1. these aren't attacks of any sort:  every originating address is valis
and recognized by the users here.
2. the dns records appear to be correct.
3. output of qmail-showctl(shown below)

If there's no obvious reason why this is happening, is there at least an
easy way to prevent it on an individual basis?

TIA-

Dan

[dkelley@mx1]$ /var/qmail/bin/qmail-showctl
qmail home directory: /var/qmail.
user-ext delimiter: -.
paternalism (in decimal): 2.
silent concurrency limit: 120.
subdirectory split: 23.
user ids: 500, 501, 502, 0, 503, 504, 505, 506.
group ids: 500, 501.

badmailfrom: (Default.) Any MAIL FROM is allowed.

bouncefrom: (Default.) Bounce user name is MAILER-DAEMON.

bouncehost: (Default.) Bounce host name is mx1.ny.otec.com.

concurrencylocal: Local concurrency is 30.

concurrencyremote: Remote concurrency is 120.

databytes: (Default.) SMTP DATA limit is 0 bytes.

defaultdomain: Default domain name is ny.otec.com.

defaulthost: (Default.) Default host name is mx1.ny.otec.com.

doublebouncehost: (Default.) 2B recipient host: mx1.ny.otec.com.

doublebounceto: (Default.) 2B recipient user: postmaster.

envnoathost: (Default.) Presumed domain name is mx1.ny.otec.com.

helohost: (Default.) SMTP client HELO host name is mx1.ny.otec.com.

idhost: (Default.) Message-ID host name is mx1.ny.otec.com.

localiphost: (Default.) Local IP address becomes mx1.ny.otec.com.

locals:
Messages for mx1.ny.otec.com are delivered locally.
Messages for localhost are delivered locally.
Messages for mailhost are delivered locally.
Messages for mailhost.otec.com are delivered locally.
Messages for mailhost.ny.otec.com are delivered locally.
Messages for otec.com are delivered locally.
Messages for rbl.com are delivered locally.
Messages for mailhost.rbl.com are delivered locally.
Messages for ca.otec.com are delivered locally.
Messages for ny.otec.com are delivered locally.
Messages for cio.genx.net are delivered locally.
Messages for analogue.net are delivered locally.
Messages for orb.analogue.net are delivered locally.
Messages for www.analogue.net are delivered locally.
Messages for microgravity.analogue.net are delivered locally.

me: My name is mx1.ny.otec.com.

percenthack: (Default.) The percent hack is not allowed.

plusdomain: Plus domain name is otec.com.

qmqpservers: (Default.) No QMQP servers.

queuelifetime: (Default.) Message lifetime in the queue is 604800 seconds.

rcpthosts:
SMTP clients may send messages to recipients at gc.ny.otec.com.
SMTP clients may send messages to recipients at gc.ny.otec.net.
SMTP clients may send messages to recipients at bos.otec.net.
SMTP clients may send messages to recipients at bos.otec.com.
SMTP clients may send messages to recipients at mx1.bos.otec.net.
SMTP clients may send messages to recipients at mx1.bos.otec.com.
SMTP clients may send messages to recipients at mailhost.bos.otec.net.
SMTP clients may send messages to recipients at mailhost.bos.otec.com.
SMTP clients may send messages to recipients at otec.com.
SMTP clients may send messages to recipients at mailhost.otec.com.
SMTP clients may send messages to recipients at mx1.ny.otec.com.
SMTP clients may send messages to recipients at db1.gc.ny.otec.com.
SMTP clients may send messages to recipients at mx2.ny.genx.net.
SMTP clients may send messages to recipients at localhost.
SMTP clients may send messages to recipients at mailhost.ca.otec.com.
SMTP clients may send messages to recipients at mailhost.ny.otec.com.
SMTP clients may send messages to recipients at mailhost.rbl.com.
SMTP clients may send messages to recipients at mailhost2.ca.otec.com.
SMTP clients may send messages to recipients at mailhost2.ny.otec.com.
SMTP clients may send messages to recipients at mailhost2.otec.com.
SMTP clients may send messages to recipients at mailhost2.rbl.com.
SMTP clients may send messages to recipients at ny.otec.com.
SMTP clients may send messages to recipients at otec.com.
SMTP clients may send messages to recipients at rbl.com.

morercpthosts: (Default.) No effect.

morercpthosts.cdb: (Default.) No effect.

smtpgreeting: (Default.) SMTP greeting: 220 mx1.ny.otec.com.

smtproutes: (Default.) No artificial SMTP routes.

timeoutconnect: (Default.) SMTP client connection timeout is 60 seconds.

Re: Solved! NOVICE no mailbox here by that name...Feh

[Ken Corey]

On Thursday 01 March 2001 10:27 am, Olivier M. wrote:
 have you _really_ followed all the steps of the LWQ ?
 if yes, root would have a mailbox in /var/qmail/alias/Mailbox.
 Does this directory exists ?

The directory /var/qmail/alias exists, with a file called 'Mailbox'.  

Actually, I found two problems with my setup: 

1) I hadn't installed dot-forward, so the attempt to deliver to any mail box 
died with the mail box didn't exist (it was really that it couldn't find 
dot-forward).  I found the proper error message by trying a '.qmail-default' 
mailbox.

Compiling and then installing dot-forward into /usr/bin/dot-forward fixed it.

2) my links were (naively) pointing the wrong direction from the 
~user/Mailbox file to /var/spool/mail/$user, rather than the other direction. 
 Duh.

 Please show us the qmail users from /etc/passwd.

They're in there:
alias:x:508:101::/var/qmail/alias:/bin/bash
qmaild:x:509:101::/var/qmail:/bin/bash
qmaill:x:510:101::/var/qmail:/bin/bash
qmailp:x:511:101::/var/qmail:/bin/bash
qmailq:x:512:102::/var/qmail:/bin/bash
qmailr:x:513:102::/var/qmail:/bin/bash
qmails:x:514:102::/var/qmail:/bin/bash

 Good luck :)

Actually, it must be said that this is coming together in less than 12 hours. 
Remarkable for a full internet capable mail client!  Kudos all around!

 PS: if you followed the INSTALL file of the qmail-1.03 tar.gz,
 it would work... :)

Ah, I followed the wrong document, then...but it never explicitly states that 
you should install the dot-forward.  It only refers to it in the FAQ, and the 
error message isn't illuminating in this case.

Also, the wording of the link text confused me.  Not that that takes a great 
deal of effort these days...;^)

Now "all" I need to do is get pop3 working, and I'm set...

-- 
Ken Corey, CTOAtomic Interactive, Ltd.

Re: Where do I find the logs

[John P]

From: David Dyer-Bennet [EMAIL PROTECTED]
 Are you logging via multilog?  If so, there's a directory somewhere
 with the file "current" in it that contains the current log (the one
 being written to right now) and probably (if you've had it up long
 enough to roll to additional log files) files with names rather like

 @40003a8bf1aa33d789ac.s
 @40003a8c1ee106d5040c.s
 @40003a8cb8c72584e19c.s
 @40003a8d8c130207ff24.s
 @40003a8ee3b217506fec.s
 @40003a90ad7a24735644.u
 @40003a90c3cd0b5ae604.u
 which represent old log files.

Is there an easy way to convert these filenames to dates etc. (or any
sequential coding eg. messages.0, messages.1 etc) for past reference?
Manually typing each filename doesn't sound fun. Why does multilog store it
this way?

Thanks
John

Password options

[Richard Lyon]

I work for a company that had a mail server operating prior to
my starting. It is a Slackware system running qmail-1.03. It is
configured with /home/maildir for the users. The rest of the network is
NT controlled. Most users are running Eudora Pro for a client. There is
limited use of Outlook at the same time. The password request uses the
shadow password for authentication. My CTO recently started asking about
switching to APOP instead of POP for logins. He started a packet sniffer
and pulled the user name and password for the mail transfer. As a result
of this he wants a more secure method used. From what I have been finding
the only program that works with qmail is checkpw. The drawback I see is
that the users password is stored in cleartext in the home directory.
Since the CTO does not want either of us to know these due to company
policy (currently when a password is changed I activate passwd and have
the user enter the new one). Is there a way to use the shadow password,
or a program that does not use a cleartext file? I do have a password
generator program that can be run to give me an encoded password. I use
this to generate a UNIX compatible code to activate the CVS program in
the NT environment for development.

Thanks in advance,


Richard Lyon
Network Administrator

AbsoluteFuture, Inc.
NE 8th Street, Suite 1414
Bellevue, WA 98004

Re: Where do I find the logs

[Claudio Nieder]

Hi,

 Is there an easy way to convert these filenames to dates etc. (or any

$ ls @* | awk '{ print $1" "$1 }' | tai64nlocal 
2001-03-01 01:37:43.797816500.s @40003a9d99f72f8db6b4.s
2001-03-01 12:23:38.729794500.s @40003a9e315a2b7fc7c4.s
2001-03-01 12:40:21.697936500.s @40003a9e35452999aa74.s
2001-03-01 15:01:18.184211500.s @40003a9e564e0afad82c.s
2001-03-01 16:16:05.419022500.s @40003a9e67d518f9c6a4.s
2001-03-01 16:57:46.746902500.s @40003a9e719a2c84d3e4.s
2001-03-01 17:45:59.996518500.u @40003a9e7ce73b65aa64.u
2001-03-01 20:06:52.296409500.s @40003a9e9dec11aad99c.s
2001-03-01 20:09:49.077417500.s @40003a9e9e9d049d4c1c.s

The name is the creation time of the file, so in the above case 
the first file will contain logs older than 2001-03-01 01:37:43

claudio
-- 
Claudio Nieder, Kanalweg 1, CH-8610 Uster, Tel +41 79 357 6743
yahoo messenger: claudionieder aim: claudionieder icq:42315212
mailto:[EMAIL PROTECTED]http://www.claudio.ch

Qmail and time zone

[Kari Suomela]

How do I get Qmail to include the proper time zone info in the 
messages? My sendmail machines have it, but anything coming from Qmail 
has -. The machines are otherwise identical RH 7.0 boxes.


 KS

   KARICO Business Services
   Toronto, ON Canada
   http://www.ksbase.com

... Don't ask me; I was hired for my looks.

Re: POP accounts??

[Matthew Patterson]

On Thu, 01 Mar 2001, [EMAIL PROTECTED] wrote:
Hi all!
I have been trying to setup pop accounts with no success :( so maybe can help
me!

I followed this: http://www.whirlycott.com/phil/pop3.html
step by step a lot of times, when i send a mail from hotmail to the account
that I created I got this:


Hi. This is the qmail-send program at siso.com.
I'm afraid I wasn't able to deliver your message to the following addresses.
This is a permanent error; I've given up. Sorry it didn't work out.

[EMAIL PROTECTED]:
Sorry. Although I'm listed as a best-preference MX or A for that host,
it isn't in my control/locals file, so I don't treat it as local. (#5.4.6)

--- Below this line is a copy of the message.




also I put as my gid  uid 110 because I saw that i some file of my 
RH6.2 box, how I can verify that this ids are correct?

I don't know what to do or where I can found more info solve this trouble,

Thank you in advance,
Rocael.


Get free email and a permanent address at http://www.netaddress.com/?N=1

`echo 'e-macro.com'  /var/qmail/control/locals`
`echo 'e-macro.com'  /var/qmail/control/locals`

-- 
***
Matthew H Patterson
Unix Systems Administrator
National Support Center, LLC
Naperville, Illinois, USA
***

Re: Password options

[Matthew Patterson]

On Thu, 01 Mar 2001, Richard Lyon wrote:


I work for a company that had a mail server operating prior to my starting. 
It is a Slackware system running qmail-1.03. It is configured with 
/home/maildir for the users. The rest of the network is NT controlled. Most 
users are running Eudora Pro for a client. There is limited use of Outlook 
at the same time. The password request uses the shadow password for 
authentication. My CTO recently started asking about switching to APOP 
instead of POP for logins. He started a packet sniffer and pulled the user 
name and password for the mail transfer. As a result of this he wants a 
more secure method used. From what I have been finding the only program 
that works with qmail is checkpw. The drawback I see is that the users 
password is stored in cleartext in the home directory. Since the CTO does 
not want either of us to know these due to company policy (currently when a 
password is changed I activate passwd and have the user enter the new one). 
Is there a way to use the shadow password, or a program that does not use a 
cleartext file? I do have a password generator program that can be run to 
give me an encoded password. I use this to generate a UNIX compatible code 
to activate the CVS program in the NT environment for development.

Thanks in advance,
Richard Lyon
Network Administrator

AbsoluteFuture, Inc.
NE 8th Street, Suite 1414
Bellevue, WA  98004

Go to www.qmail.org and search through the document for apop. You should find 2 items, 
the second of which sounds like what you want.

-- 
***
Matthew H Patterson
Unix Systems Administrator
National Support Center, LLC
Naperville, Illinois, USA
***

various timeouts

[Michael Boyiazis]

Greetings,
   Occasionally our inbound mail servers need a reboot after patching
and sometimes there is lots of mail that needs to find its way home to
the sender due to bounces.  Sometimes those remote sites are either
having difficulties or are so swamped that nothing much gets to them.
I'd like to cut down on the time the server spends waiting on them.

There seems to be 3 control files to do this:
timeoutsmtpd which is amt of time for each new *buffer* of data from
   a remote SMTP client.  (default 20 minutes)
timeoutconnect which is how long qmail-remote waits for a connection
   (default 1 minute)
timeoutremote which appears to be like timeoutsmtpd but for each
  response, not each buffer (also 20minute default).

Seems like a non-responsive server is fine at 1 minute, but 20 minutes
seems to be an excessive amount of time to hold up one of my concurrent
connects for a buffer of data or just a reply.  Would it be safe to lower
this
value to say also 1 minute?  I don't want to mess with the defaults if this
would be a bad thing to do, but I cannot think of why it would be.

Thanks,
--
Michael Boyiazis
[EMAIL PROTECTED]
Mail Architect, NetZero, Inc.

Re: Where do I find the logs

[Dave Sill]

"John P" [EMAIL PROTECTED] wrote:

Manually typing each filename doesn't sound fun.

Use a shell that implements filename completion.

Why does multilog store it this way?

Guaranteed unique and self documenting.

-Dave

Re: POP accounts??

[Claudio Nieder]

Hi,

 `echo 'e-macro.com'  /var/qmail/control/locals`
 `echo 'e-macro.com'  /var/qmail/control/locals`

I suppose one of these two lines should read

echo 'e-macro.com'  /var/qmail/control/rcpthosts

claudio
-- 
Claudio Nieder, Kanalweg 1, CH-8610 Uster, Tel +41 79 357 6743
yahoo messenger: claudionieder aim: claudionieder icq:42315212
mailto:[EMAIL PROTECTED]http://www.claudio.ch

Re: Lost the Battle

[Einar Bordewich]

Dennis,

I'm strongly advice you to keep fighting for your qmail as a frontend out to
internet. IDG use notes all over the world, and of course from time to time
there is problems related to third-party relaying. This is with R5 peace of
cake to take care of, but it has to be done since it's not enabled as
default.

At IDG in norway, we use qmail as a frontend. One of the reasons is that IDG
New Media is an ISP, and we do need the flexibility that qmail and it's
modularity offers.

Using qmail as the frontend, relaying for the notes server works flawlessly
through the firewall only allowing the qmailservers through the fw.

hope this gives you new fighting spirit ;-)

regards
--

IDG New MediaEinar Bordewich
Development Manager  Phone: +47 2336 1420
E-Mail:  eibo(at)newmedia.no
Lat: 59.91144 N  Lon: 10.76097 E


- Original Message -
From: "dennis" [EMAIL PROTECTED]
To: [EMAIL PROTECTED]
Sent: Thursday, March 01, 2001 12:44 AM
Subject: Lost the Battle


 Hi all...

 For the past 3 weeks I have been fighting the battle to move our dieing
 email server from a proprietary solution to qmail. I had devoted 3 months
of
 research and development (with a lot of help from this list) to making
sure
 that the qmail server has all the features required by our organization.

 My nightmare began when management announced a new business development
 manager.

 My qmail project, only 1 week away from implementation, was canned, we are
 now moving to Lotus Notes.

 I'd like to thank everyone for there help over the 3 months, without you
 guys, I don't think I could have even taken the project this far.

 Regards
 Dennis

procmail fix (or replacement?)

[Chris Kurtz]

Running qmail-1.03 and procmail 3.15.1 under Solaris 2.6 Sparc.

When I try to manually run the qmail-procmail script (which calls preline
procmail) I get a
preline error:

preline: usage: preline cmd [ arg ... ]

The reason I'm trying this manually is to diagnose why it isn't working from
.qmail.

I've tried various iterations of cat'ing a real qmail message and just text,
but this
doesn't appear to help (i.e.  cat message | preline procmail gives the same
thing).

Anyone have an idea on this, or a replacement for procmail?

...Chris

Qmail and time zone

[Kari Suomela]

Thursday March 01 2001 15:15, Matthew Patterson wrote to Kari Suomela:

  How do I get Qmail to include the proper time zone info in the
  messages? My sendmail machines have it, but anything coming from
  Qmail has -.

 MP Is your machine's system time set on GMT or local time? If it is 
 MP on
 MP GMT, it shouldn't show an offset. If they are on local time, make 
 MP sure

Makes no difference. I've tried setting it to GMT and local time, as 
well as numerous time zone options. They all work fine with sendmail, 
but qmail ignores them.

 MP that your machine knows that by checking the output of date and
 MP seeing if there is a timezone listed.

Yes, it's there.

 KS

Re: Qmail and time zone

[Peter van Dijk]

On Thu, Mar 01, 2001 at 03:21:43PM -0500, Kari Suomela wrote:
 How do I get Qmail to include the proper time zone info in the 
 messages? My sendmail machines have it, but anything coming from Qmail 
 has -. The machines are otherwise identical RH 7.0 boxes.

Are you talking about the Received: or the Date: header?

Greetz, Peter.

Re: Qmail and time zone

[David Dyer-Bennet]

[EMAIL PROTECTED] (Kari Suomela) writes:

 How do I get Qmail to include the proper time zone info in the 
 messages? My sendmail machines have it, but anything coming from Qmail 
 has -. The machines are otherwise identical RH 7.0 boxes.

Basically, you won't.  Qmail is putting in the time correctly, but
it's stating it in GMT.  This is actually more useful; mail often
crosses timezone boundaries, and having the received headers *all* use
GMT would make it much easier to follow. 

The timezone information is only available in rather system-dependent
ways through the standard C library, and Dan has chosen to completely
avoid the standard C library for security and performance reasons. 
-- 
David Dyer-Bennet  /  Welcome to the future!  /  [EMAIL PROTECTED]
SF: http://www.dd-b.net/dd-b/  Minicon: http://www.mnstf.org/minicon/
Photos: http://dd-b.lighthunters.net/

Re: Password options

[Peter van Dijk]

On Thu, Mar 01, 2001 at 12:37:37PM -0800, Richard Lyon wrote:
[snip]
 cleartext file? I do have a password generator program that can be run to 
 give me an encoded password. I use this to generate a UNIX compatible code 
 to activate the CVS program in the NT environment for development.

Well, the choice is cleartext over the network, or cleartext on the
server. Plain POP3 offers no other choices.

What you probably want is pop3 with normal authentication (from
shadow), over SSL. www.qmail.org can help you out here.

Greetz, Peter.

Re: Qmail and time zone

[Martin Akesson]

On Thu, Mar 01, 2001 at 03:57:32PM -0600, David Dyer-Bennet mumbled:
 [EMAIL PROTECTED] (Kari Suomela) writes:
 
  How do I get Qmail to include the proper time zone info in the 
  messages? My sendmail machines have it, but anything coming from Qmail 
  has -. The machines are otherwise identical RH 7.0 boxes.
 
 Basically, you won't.  Qmail is putting in the time correctly, but
 it's stating it in GMT.  This is actually more useful; mail often

Actually that's not quit true.  On my OpenBSD system I set my timezone
in the kernel configuration.  If you look in the headers of this mail
you will see I have GMT+1 (MET).

Not sure how, if possible, you set the timezone with a "hard" value on a
Linux system.

/Martin

Re: Qmail and time zone

[Martin Akesson]

Aargh!  Nevermind, I just realized why I did set a hardvalue in the
kernel config.  I did this so that qmail would show the time as GMT and
not MET  ie. qmail used the MET time which is GMT+1 but it still wrote
it as -.  When setting a hard value of -60 in the kernel the error
was fixed.

Sorry about confusing things a bit...

/M

On Thu, Mar 01, 2001 at 11:44:50PM +0100, Martin Akesson mumbled:
 On Thu, Mar 01, 2001 at 03:57:32PM -0600, David Dyer-Bennet mumbled:
  [EMAIL PROTECTED] (Kari Suomela) writes:
  
   How do I get Qmail to include the proper time zone info in the 
   messages? My sendmail machines have it, but anything coming from Qmail 
   has -. The machines are otherwise identical RH 7.0 boxes.
  
  Basically, you won't.  Qmail is putting in the time correctly, but
  it's stating it in GMT.  This is actually more useful; mail often
 
 Actually that's not quit true.  On my OpenBSD system I set my timezone
 in the kernel configuration.  If you look in the headers of this mail
 you will see I have GMT+1 (MET).
 
 Not sure how, if possible, you set the timezone with a "hard" value on a
 Linux system.
 
 /Martin

Re: Qmail and time zone

[Peter van Dijk]

On Thu, Mar 01, 2001 at 11:44:50PM +0100, Martin Akesson wrote:
[snip]
 
 Actually that's not quit true.  On my OpenBSD system I set my timezone
 in the kernel configuration.  If you look in the headers of this mail
 you will see I have GMT+1 (MET).

That's not the kernel configuration.

And you are confusing stuff: the Date header can very well be in your
own timezone.

Any machine writing Received headers in something not GMT is confused,
however. Any user requesting so is confused, too.

 Not sure how, if possible, you set the timezone with a "hard" value on a
 Linux system.

Same as on OpenBSD. It's in the libc.

Greetz, Peter.

Qmail and time zone

[Kari Suomela]

Thursday March 01 2001 15:57, David Dyer-Bennet wrote to All:


  How do I get Qmail to include the proper time zone info in the
  messages? My sendmail machines have it, but anything coming from
  Qmail has -. The machines are otherwise identical RH 7.0 boxes.

 DB Basically, you won't.  Qmail is putting in the time correctly, but
 DB it's stating it in GMT.  This is actually more useful; mail often
 DB crosses timezone boundaries, and having the received headers *all* 
 DB use

This is very annoying! I've spent lots of time training the users to 
configure their clients properly, and now my qmail server sends out 
garbage, which defeats the purpose. :(

 DB The timezone information is only available in rather 
 DB system-dependent
 DB ways through the standard C library, and Dan has chosen to 
 DB completely
 DB avoid the standard C library for security and performance reasons.

Whatever that means. Sendmail is doing it ok, so it can't be that hard 
to implement.

 KS

Re: Qmail and time zone

[Martin Akesson]

On Thu, Mar 01, 2001 at 05:08:43PM -0500, Kari Suomela mumbled:
  DB Basically, you won't.  Qmail is putting in the time correctly, but
  DB it's stating it in GMT.  This is actually more useful; mail often
  DB crosses timezone boundaries, and having the received headers *all* 
  DB use
 
 This is very annoying! I've spent lots of time training the users to 
 configure their clients properly, and now my qmail server sends out 
 garbage, which defeats the purpose. :(
 

I dont see where the problem is.  The client can only set the 'Date:'
headers anyway.  The 'Received:' headers on the other hand are set by
the MDA and should all use the same timezone, GMT.  The users will never
see these headers anyway and most ISPs will only be happy with this
configuration, atleast I know I would be.

/M

Re: Qmail and time zone

[Greg White]

On Thu, Mar 01, 2001 at 05:08:43PM -0500, Kari Suomela wrote:
 
 Thursday March 01 2001 15:57, David Dyer-Bennet wrote to All:
 
 
   How do I get Qmail to include the proper time zone info in the
   messages? My sendmail machines have it, but anything coming from
   Qmail has -. The machines are otherwise identical RH 7.0 boxes.
 
  DB Basically, you won't.  Qmail is putting in the time correctly, but
  DB it's stating it in GMT.  This is actually more useful; mail often
  DB crosses timezone boundaries, and having the received headers *all* 
  DB use
 
 This is very annoying! I've spent lots of time training the users to 
 configure their clients properly, and now my qmail server sends out 
 garbage, which defeats the purpose. :(
 

You have users who read Recieved: headers regularly? Why? At any rate, it
really ticks me off when SMTP servers use local timezone values in
Recieved: headers -- try tracing a message that got to you from Finland
across a good five or six servers that _all_ use local timezones, doing
the GMT math by hand, to see how long the message took to get to you. No
fscking fun at _all_. Using GMT in Recieved: headers means that it's
_very_ easy to find out exactly how long it took to get to you, and
where any delays might have been (and what else is the date in the
Recieved: header for?). Doing the simple math to convert it all to your
local timezone should be trivial, you only need to do it once.  


  DB The timezone information is only available in rather 
  DB system-dependent
  DB ways through the standard C library, and Dan has chosen to 
  DB completely
  DB avoid the standard C library for security and performance reasons.
 
 Whatever that means. Sendmail is doing it ok, so it can't be that hard 
 to implement.
 
  KS
 
 

I imagine that it's trickier than you think if you're avoiding standard
C libraries, and most sysadmins (which is who I thought Recieved:
headers were for) seem to prefer GMT anyway

Is your problem actually with the Recieved: headers, or 'Date:'?

-- 
Greg White
Those who make peaceful revolution impossible will make violent
revolution inevitable.
-- John F. Kennedy

Thanks Mailing List Problems!

[schoon]

Thanks to the list, I've built my first SMTP server So far things
are looking good. I do have one problem with receiving mail from any
mailing list. It simply bounces!! Not sure where to look on this one.
The setup here is qmail configured as an SMTP gateway for an entire
domain, pullmail running on NT to inject mail from gateway. While
looking at the headers, all emails from the different mailing lists have
the To: field  - not too surprised about that. What I need to know is,
which field should I set pullmail to look for to handle mailing lists??
Am I thinking correctly?? Thanks again! qmail is awesome...

.mark
"Windows 95/98 /n./ 32 bit extensions and a graphical shell for a 16 bit
patch to an 8 bit operating system originally coded for a 4 bit
microprocessor, written by a 2 bit company that can't stand 1 bit of
competition."

use Disclaimer;
my $opinion_only;

Re: Qmail and time zone

[Andy Bradford]

On Thu, 01 Mar 2001 17:08:43 EST,  wrote:

 This is very annoying! I've spent lots of time training the users to 
 configure their clients properly, and now my qmail server sends out 
 garbage, which defeats the purpose. :(

What did you train your users to do?  They should be putting in a 
correct Date header with the right timezone information---if they 
aren't retrain them.  Most users won't ever look at the rest of the 
headers such as Received and it is more appropriate that they are in 
UTC/GMT.

Andy

Re: relay-ctrl and qmail (it's finally working!)

[Bill]

Thanks guys and gals(?)!

This is making my life much easier.  

Qmail and time zone

[Kari Suomela]

Friday March 02 2001 00:22, Martin Akesson wrote to All:

 
  This is very annoying! I've spent lots of time training the users 
  to
  configure their clients properly, and now my qmail server sends out
  garbage, which defeats the purpose. :(
 

 MA I dont see where the problem is.  The client can only set the 
 MA 'Date:'
 MA headers anyway.  The 'Received:' headers on the other hand are set 
 MA by

Well, something isn't right. If a message arrives directly from my 
sendmail server, the time shows the local time correctly, even though 
the hardware clcok is in GMT. From a qmail server, the time zone shows 
-, which makes no sense.

This does not apply to user to user mail, since those messages get the 
time zone (mis)configuration from the users' clients. However, 
sqwebmail and others, which send messages directly from the server, are 
affected. Also all notification messages from various utilities to 
myself (admin) have the - time zone and get sorted whoknowswhere in 
my inbox.

 MA the MDA and should all use the same timezone, GMT.  The users will
 MA never see these headers anyway and most ISPs will only be happy 
 MA with

The headers may now show, but when you "reply" the quote header shows 
the time and TZ of the original message - wrong in these cases.

 KS

   KARICO Business Services
   Toronto, ON Canada
   http://www.ksbase.com

... I demand that you ignore that man behind the curtain!

[vmailmgr] email to virtual user bounces

[Joe Janitor]

Qmail is installed, and properly receives email to
users with full accounts and Mailbox files in their
$HOME. 

I installed vmailmgr and want to run virtualdomains
(multiple domains, multiple IPs, multiple virtual
users per domain).

PROBLEM:
Outside mail to virtual aliases bounces saying "Sorry,
no mailbox here by that name."

INFO:
I created /var/qmail/control/virtualdomains with:
.mydomain.com:aw

I did the following:
useradd aw
su - aw
vsetup
vadduser herman
edit /etc/inetd.conf and add
pop-3 stream tcp nowait root
/var/qmail/bin/qmail-popup qmail-popup mydomain.com
/usr/local/bin/checkvpw /var/qmail/bin/qmail-pop3d
Mailbox

restart inetd (using init.d script)
restart qmail (using init.d script)



__
Do You Yahoo!?
Get email at your own domain with Yahoo! Mail. 
http://personal.mail.yahoo.com/

(no subject)

[Dan Hobbs]

unsubscribe

Re: qmail 2.0 exploit

[Jason Brooke]

I get the feeling this would've already been well and truly covered on this
list, but just out of curiosity I tried it anyway.

On slackware 7.1 installed in vmware under win2k pro and slackware 7.1 on 2
other 'real' machines, all it did was chew cpu and cause qmail-smtpd to chew
some cpu as well. 'top' showed about 48 in the %CPU column for both. I let
it run for about 15 minutes - as far as I could tell from the output of
'free', swap wasn't affected in the slightest. Mail still worked fine - both
'real' machines host around 800 vhosts, each with their own virtual mail
domains. It's a free hosting setup for computer gamers in Australia - they
are generally very quick to complain when something goes wrong  ;)  but not
a peep from them while I was doing those quick tests


 What is this qmail version 2.0 that securityfocus.com claims there is an
 explot for?  Am I missing something, or are they?

 Being that I have better things to do than to try to screw up my mail
 server, has anyone tried this claimed explot?  What really happens?

 --Pete

Re: qmail 2.0 exploit

[Jason Brooke]

actually for what it's worth, if you follow the directions in INSTALL you
should generally hit the 'read FAQ' before getting down to the section of
INSTALL that says to use inetd (for upgrading from sendmail):)

FAQ pretty much points you at tcpserver


- Original Message -
From: "Ian Lance Taylor" [EMAIL PROTECTED]
To: [EMAIL PROTECTED]
Sent: Thursday, March 01, 2001 2:59 PM
Subject: Re: qmail 2.0 exploit


 Peter Cavender [EMAIL PROTECTED] writes:

  What is this qmail version 2.0 that securityfocus.com claims there is an
  explot for?  Am I missing something, or are they?
 
  Being that I have better things to do than to try to screw up my mail
  server, has anyone tried this claimed explot?  What really happens?

 It depends upon how you run qmail-smtpd.  There are several variables.

 If you run qmail-smtpd directly from inetd.conf, as suggested in the
 INSTALL file distributed with qmail-1.03, then there is a pretty good
 chance that the instance of qmail-smtpd being attacked will grow to
 eat of all of memory.  What happens then depends upon your OS.  On
 GNU/Linux, a random process will be killed; there is a pretty good
 chance that the random process will be the large qmail-smtpd.
 Alternatively, a careful attacker who really understands your system
 can create several fairly large qmail-smtpd processes and
 significantly increase the chance that the random process which is
 killed will be something other than qmail-smtpd.  In this scenario
 this attack can indeed be a denial of service.

 If you run qmail-smtpd as suggested in Life With Qmail, then you are
 not vulnerable to this attack, because qmail-smtpd is run under the
 softlimit program to limit the amount of memory it will allocate.
 (This does not affect the size of the mail messages it can accept, as
 qmail-smtpd does not store mail messages in memory.)

 Ian

Re: [vmailmgr] virtual alias can't receive mail SOLVED

[Joe Janitor]

Ah, after creating virtualdomains, I needed to remove
the domain from control/locals now it's working.

--- Joe Janitor [EMAIL PROTECTED] wrote:
 Qmail is installed, and properly receives email to
 users with full accounts and Mailbox files in their
 $HOME. 
 
 I installed vmailmgr and want to run virtualdomains
 (multiple domains, multiple IPs, multiple virtual
 users per domain).
 
 PROBLEM:
 Outside mail to virtual aliases bounces saying
 "Sorry,
 no mailbox here by that name."
 
 INFO:
 I created /var/qmail/control/virtualdomains with:
 .mydomain.com:aw
 
 I did the following:
 useradd aw
 su - aw
 vsetup
 vadduser herman
 edit /etc/inetd.conf and add
 pop-3 stream tcp nowait root
 /var/qmail/bin/qmail-popup qmail-popup mydomain.com
 /usr/local/bin/checkvpw /var/qmail/bin/qmail-pop3d
 Mailbox
 
 restart inetd (using init.d script)
 restart qmail (using init.d script)
 
 
 
 __
 Do You Yahoo!?
 Get email at your own domain with Yahoo! Mail. 
 http://personal.mail.yahoo.com/


__
Do You Yahoo!?
Get email at your own domain with Yahoo! Mail. 
http://personal.mail.yahoo.com/

Qmail and time zone

[Kari Suomela]

Friday March 02 2001 00:22, Martin Akesson wrote to All:


 MA I dont see where the problem is.  The client can only set the
 MA 'Date:'
 MA headers anyway.  The 'Received:' headers on the other hand are set
 MA by

So, pls explain this, and tell me, how I can get the received messages
to display the correct time:

1. Message from a qmail server:
=== Cut ===
.INTL 1:140/22 1:140/22
.REPLYADDR [EMAIL PROTECTED]
.REPLYTO 1:140/22.10 UUCP
.MSGID: [EMAIL PROTECTED] 95ee3556
.PID: SoupGate-OS/2 v1.05
.Return-Path: [EMAIL PROTECTED]
.Delivered-To: [EMAIL PROTECTED]
.Received: (qmail 3425 invoked by uid 520); 2 Mar 2001 01:03:16 -
.Delivered-To: [EMAIL PROTECTED]
.Received: (qmail 3423 invoked by uid 0); 2 Mar 2001 01:03:16 -
.Date: 2 Mar 2001 01:03:16 -
.Message-ID: [EMAIL PROTECTED]
.From: [EMAIL PROTECTED]
.To: [EMAIL PROTECTED]
.FMPT 10
wtmp begins Thu Mar  1 12:06:49 2001
=== Cut ===

2. Message from a sendmail server:
Ä
.INTL 1:140/22 1:140/22
.REPLYADDR [EMAIL PROTECTED]
.REPLYTO 1:140/22.10 UUCP
.MSGID: [EMAIL PROTECTED] 4f1d8db8
.PID: SoupGate-OS/2 v1.05
.Return-Path: [EMAIL PROTECTED]
.Delivered-To: [EMAIL PROTECTED]
.Received: (qmail 3415 invoked by uid 520); 2 Mar 2001 01:02:57 -
.Delivered-To: [EMAIL PROTECTED]
.Received: (qmail 3413 invoked from network); 2 Mar 2001 01:02:57 -
.Received: from kb1.ksbase.com ([EMAIL PROTECTED]) by kb3.ksbase.com
with
.  SMTP; 2 Mar 2001 01:02:57 -
.Received: (from root@localhost) by kb1.ksbase.com (8.9.3/8.8.7) id
UAA01101
.  for [EMAIL PROTECTED]; Thu, 1 Mar 2001 20:02:56 -0500
.Date: Thu, 1 Mar 2001 20:02:56 -0500
.From: root [EMAIL PROTECTED]
.Message-Id: [EMAIL PROTECTED]
.To: [EMAIL PROTECTED]
.FMPT 10
From: [EMAIL PROTECTED]
wtmp begins Thu Mar  1 09:08:51 2001
=== Cut ===

Sendmail inserts the correct TZ on the "Date" line, but qmail does not!

 KS

Qmail and time zone

[Kari Suomela]

Thursday March 01 2001 15:37, Greg White wrote to All:

 GW it really ticks me off when SMTP servers use local timezone values 
 GW in
 GW Recieved: headers -- try tracing a message that got to you from

I've only seen "Received" headers. :)

The sender's and recipient's local times are important. If the mail 
server ignores the time zone and time stamps everything in GMT, you 
really have to do some calculating! If there is a proper Date header, a 
proper email client will convert the time to local time accordingly.

 KS

Re: Qmail and time zone

[David Dyer-Bennet]

Martin Akesson [EMAIL PROTECTED] writes on 1 March 2001 at 23:44:50 +0100
  On Thu, Mar 01, 2001 at 03:57:32PM -0600, David Dyer-Bennet mumbled:
   [EMAIL PROTECTED] (Kari Suomela) writes:
   
How do I get Qmail to include the proper time zone info in the 
messages? My sendmail machines have it, but anything coming from Qmail 
has -. The machines are otherwise identical RH 7.0 boxes.
   
   Basically, you won't.  Qmail is putting in the time correctly, but
   it's stating it in GMT.  This is actually more useful; mail often
  
  Actually that's not quit true.  On my OpenBSD system I set my timezone
  in the kernel configuration.  If you look in the headers of this mail
  you will see I have GMT+1 (MET).
  
  Not sure how, if possible, you set the timezone with a "hard" value on a
  Linux system.

The date line is zone +1, but the received line is zone 0, which is
exactly what I'd expect (the date line being put in by the MUA, not
qmail).  Just like in my headers (except it's be -6 here).
-- 
David Dyer-Bennet  /  Welcome to the future!  /  [EMAIL PROTECTED]
SF: http://www.dd-b.net/dd-b/  Minicon: http://www.mnstf.org/minicon/
Photos: http://dd-b.lighthunters.net/

Re: Qmail and time zone

[Charles Cazabon]

Kari Suomela [EMAIL PROTECTED] wrote:
 How do I get Qmail to include the proper time zone info in the 
 messages? My sendmail machines have it, but anything coming from Qmail 
 has -. The machines are otherwise identical RH 7.0 boxes.

In Received: headers?  - is the proper time zone.
In the Date: field?  Have your MUA insert the date field.  qmail won't
touch it then.

BTW, it's "qmail", not "Qmail".

Charles
-- 
---
Charles Cazabon[EMAIL PROTECTED]
GPL'ed software available at:  http://www.qcc.sk.ca/~charlesc/software/
Any opinions expressed are just that -- my opinions.
---

OpenBSD 2.8 and sqwebmail

[Chris]

Hi,

I'm using vpopmail with qmail and sqwebmail on 
OpenBSD 2.8. I've configured everything according to the scripts on http://www.inter7.com/vpopmail/Qmail-FreeBSD.txtand
http://matt.simerson.net/computing/qmail.toaster.shtml.

Sqwebmail seems to run properly, except it's not 
talking to vmailmgr to authenticate.
Smtp, pop3, virtual domains all work just 
fine.

Any ideas ?

TIA,

- Chris

RE: Qmail and time zone

[Chris Bolt]

What are you using to send these test messages? 

  MA I dont see where the problem is.  The client can only set the 
  MA 'Date:'
  MA headers anyway.  The 'Received:' headers on the other hand are set 
  MA by
 
 So, pls explain this, and tell me, how I can get the received messages 
 to display the correct time:
 
 1. Message from a qmail server:
...
 Sendmail inserts the correct TZ on the "Date" line, but qmail does not!
 
  KS

Qmail and time zone

[Kari Suomela]

Thursday March 01 2001 19:23, Chris Bolt wrote to All:


 CB What are you using to send these test messages?

These examples were both sent by:

'last kari | mail my@address'

It'll be different, if I use a client, which inserts the time zone.

 KS

Re: Qmail and time zone

[David Dyer-Bennet]

[EMAIL PROTECTED] (Kari Suomela) writes:

 Thursday March 01 2001 15:57, David Dyer-Bennet wrote to All:
 
 
   How do I get Qmail to include the proper time zone info in the
   messages? My sendmail machines have it, but anything coming from
   Qmail has -. The machines are otherwise identical RH 7.0 boxes.
 
  DB Basically, you won't.  Qmail is putting in the time correctly, but
  DB it's stating it in GMT.  This is actually more useful; mail often
  DB crosses timezone boundaries, and having the received headers *all* 
  DB use
 
 This is very annoying! I've spent lots of time training the users to 
 configure their clients properly, and now my qmail server sends out 
 garbage, which defeats the purpose. :(

It's not garbage; it's correct.  It just doesn't use the local
timezone.  In the list of received headers, where a message often
passes through servers in different timezones, having everything in
GMT is *more* useful IMHO.

  DB The timezone information is only available in rather 
  DB system-dependent
  DB ways through the standard C library, and Dan has chosen to 
  DB completely
  DB avoid the standard C library for security and performance reasons.
 
 Whatever that means. Sendmail is doing it ok, so it can't be that hard 
 to implement.

It means that it would either compromise the security of qmail, or
else require lots of extra code to handle various systems local
conventions, to change this behavior.  It's not hard to do; it IS hard
to do *well*.
-- 
David Dyer-Bennet  /  Welcome to the future!  /  [EMAIL PROTECTED]
SF: http://www.dd-b.net/dd-b/  Minicon: http://www.mnstf.org/minicon/
Photos: http://dd-b.lighthunters.net/

Re: Qmail and time zone

[David Dyer-Bennet]

[EMAIL PROTECTED] (Kari Suomela) writes:

 Thursday March 01 2001 19:23, Chris Bolt wrote to All:
 
 
  CB What are you using to send these test messages?
 
 These examples were both sent by:
 
 'last kari | mail my@address'
 
 It'll be different, if I use a client, which inserts the time zone.
 

Exactly.  For that matter, it'd be different if you viewed the
messages through a client that displayed times in headers in current
timezone, too.
-- 
David Dyer-Bennet  /  Welcome to the future!  /  [EMAIL PROTECTED]
SF: http://www.dd-b.net/dd-b/  Minicon: http://www.mnstf.org/minicon/
Photos: http://dd-b.lighthunters.net/

Qmail and time zone

[Kari Suomela]

Thursday March 01 2001 21:08, David Dyer-Bennet wrote to All:

  It'll be different, if I use a client, which inserts the time zone.
 

 DB Exactly.  For that matter, it'd be different if you viewed the
 DB messages through a client that displayed times in headers in 
 DB current
 DB timezone, too.

No, it's not! That's how I noticed it. Someone was blaming my client 
for it, but the problem is the same with all of them. I have tested it 
with various Netscapes, Outlook 98, Outlook 2000, Outlook Express, 
PMMail Pro 2000, Sqwebmail and Adjewebmail.

 KS

   KARICO Business Services
   Toronto, ON Canada
   http://www.ksbase.com

... Scientific Creationism - the perfect oxymoron

Re: Lost the Battle

[Lincoln Yeoh]

At 03:24 PM 01-03-2001 +, Mark Delany wrote:
On Thu, Mar 01, 2001 at 10:19:34AM -0500, Dave Sill wrote:
 My qmail project, only 1 week away from implementation, was canned, we are
 now moving to Lotus Notes.
 
 Well, it's not a total loss. At least you learned something about
 qmail.

And maybe you can convince your company to use qmail as your email
relay server on the firewall. Use Notes internally in a protected
environment and only expose qmail to that nasty world out there.

Yah, that's very similar to what I'm doing. qmail on the firewall.

qmail doesn't do a lot of what Notes does, so if they really want those
stuff, then yeah Notes could be a good choice. 

Thing is I'm not sure that qmail would really protect mailservers behind
the firewall from the usual buffer overflow stuff. 

For example, if an attacker sends a mail with a huge GMT field, will it
still go through qmail unfiltered? I get the impression that qmail does
very little reprocessing of the message. 

Of course you can't protect mailservers totally, but I figure one could
make a pretty good try with the obvious cases (typical buffer overflows,
validation checks etc). 

Maybe I could make a filtering module and stick it in after qmail-smtpd or
something.

Cheerio,
Link.

Re: Qmail and time zone

[David Dyer-Bennet]

[EMAIL PROTECTED] (Kari Suomela) writes:

 Thursday March 01 2001 21:08, David Dyer-Bennet wrote to All:
 
   It'll be different, if I use a client, which inserts the time zone.
  
 
  DB Exactly.  For that matter, it'd be different if you viewed the
  DB messages through a client that displayed times in headers in 
  DB current
  DB timezone, too.
 
 No, it's not! That's how I noticed it. Someone was blaming my client 
 for it, but the problem is the same with all of them. I have tested it 
 with various Netscapes, Outlook 98, Outlook 2000, Outlook Express, 
 PMMail Pro 2000, Sqwebmail and Adjewebmail.

That's because you didn't use a client which adjusts header
timestamps, though.
-- 
David Dyer-Bennet  /  Welcome to the future!  /  [EMAIL PROTECTED]
SF: http://www.dd-b.net/dd-b/  Minicon: http://www.mnstf.org/minicon/
Photos: http://dd-b.lighthunters.net/

Problem receiving mail.

[Grant]

Below is the output from /var/log/qmail/current

I have followed Dave Sill's tutorial to install qmail, what could I have
missed in order to get this error? Thanks...

@40003a9f25fa002e499c info msg 131091: bytes 753 from
[EMAIL PROTECTED] qp 1705 uid 501
@40003a9f25fa00b7bd1c starting delivery 2: msg 131091 to local
[EMAIL PROTECTED]
@40003a9f25fa00bd3b5c status: local 2/10 remote 0/20
@40003a9f25fa0203869c delivery
2: failure: This_message_is_looping:_it_already_has_my_Delivered-To_line._(#5.4.6)/
@40003a9f25fa02136904 status: local 1/10 remote 0/20
@40003a9f25fa0323cb7c bounce msg 131091 qp 1708
@40003a9f25fa032a2c4c end msg 131091
@40003a9f25fa033bb494 new msg 131094
@40003a9f25fa0342b974 info msg 131094: bytes 1328 from  qp 1708 uid
507
@40003a9f25fa03d31e4c starting delivery 3: msg 131094 to remote
[EMAIL PROTECTED]
@40003a9f25fa03d85254 status: local 1/10 remote 1/20
@40003a9f25fa0497f8d4 delivery 1: success: did_0+1+0/qp_1705/
@40003a9f25fa04a0fd6c status: local 0/10 remote 1/20
@40003a9f25fa04aae87c end msg 131090
@40003a9f25fe1d762704 delivery
3: success: 202.21.11.98_accepted_message./Remote_host_said:_250_ok_983508323_qp_15414/
@40003a9f25fe1d813af4 status: local 0/10 remote 0/20
@40003a9f25fe1d8a4374 end msg 131094

Re: Qmail and time zone

[Petri Kaukasoina]

On Thu, Mar 01, 2001 at 09:43:07PM -0500, Kari Suomela wrote:
 These examples were both sent by:
 
 'last kari | mail my@address'

I don't know about RedHat but I have added the following line in
/etc/mail.rc of my non-RedHat linux system:
  set sendmail=/var/qmail/bin/datemail

It's explained in /var/qmail/doc/FAQ, paragraph 6.1.

RE: Where do I find the logs

[Andrew Wafula]

Thanks,

I get them now. Is it possible to log the qmail-pop3d in the same way?

Andrew

-Original Message-
From: David Dyer-Bennet [mailto:[EMAIL PROTECTED]]
Sent: Thursday, March 01, 2001 9:39 PM
To: Qmail
Subject: Re: Where do I find the logs


"Andrew Wafula" [EMAIL PROTECTED] writes:

 Hi,

 I did a migration from Sendmail to Qmail and now I don't know where to
find
 the logs. previously they were in /var/log/maillog but now it seems they
are
 split up under the /var/log/qmail directory (or so I think).
 I need to look at the logs from time to time but i just cant seem to find
 them.

Are you logging via multilog?  If so, there's a directory somewhere
with the file "current" in it that contains the current log (the one
being written to right now) and probably (if you've had it up long
enough to roll to additional log files) files with names rather like

@40003a8bf1aa33d789ac.s
@40003a8c1ee106d5040c.s
@40003a8cb8c72584e19c.s
@40003a8d8c130207ff24.s
@40003a8ee3b217506fec.s
@40003a90ad7a24735644.u
@40003a90c3cd0b5ae604.u

which represent old log files.

"Somewhere" is controlled by how you start things.  Are you running
qmail-send supervised under svscan?  Then the log directory is
described in the supervise directory.
--
David Dyer-Bennet  /  Welcome to the future!  /
[EMAIL PROTECTED]
SF: http://www.dd-b.net/dd-b/  Minicon:
http://www.mnstf.org/minicon/
Photos: http://dd-b.lighthunters.net/

qmail-pop3d problem

[Duncan MacMillan]

Hi All,

I have inherited a box that is running Slackware with QMail. Qmail is setup
to use tcpserver and rblsmtpd. The box is masquerading an internal address
as well.

If I connect to the internal interface (192.168.1) (1st ethernet card) via
telnet on port 110 I get an immediate response (OK). If I connect to the
external interface (2nd ethernet card) I get a long delay (40 sec +) before
I get the OK prompt. If I connect from a machine that is one hop away on the
internal network to the 192.168.1 ethernet card I get the 40 sec + delay).
Once the connection happens the system is very quick. The problem I am
having is that some mail clients are timing out when connection to the pop
service.

Due to the fact I inherited the box recently I am not aware of patch levels
but the versions installed on the box are as follows.

Qmail 1.03
rblsmtpd 0.70
tcpserver 0.84
daemontools 0.70

I think it may be some sort of network lookup that is being done but I don't
really know enough about the box to know where to look.

The box is not under resourced at all as it has more memory that it needs
and the processors never go over 10%.

Any ideas or pointers at reading material would be appreciated.

Cheers
Duncan

Re: qmail 2.0 exploit

[Ian Lance Taylor]

"Jason Brooke" [EMAIL PROTECTED] writes:

  If you run qmail-smtpd directly from inetd.conf, as suggested in the
  INSTALL file distributed with qmail-1.03, then there is a pretty good
  chance that the instance of qmail-smtpd being attacked will grow to
  eat of all of memory.  What happens then depends upon your OS.  On
  GNU/Linux, a random process will be killed; there is a pretty good
  chance that the random process will be the large qmail-smtpd.
  Alternatively, a careful attacker who really understands your system
  can create several fairly large qmail-smtpd processes and
  significantly increase the chance that the random process which is
  killed will be something other than qmail-smtpd.  In this scenario
  this attack can indeed be a denial of service.
 
 actually for what it's worth, if you follow the directions in INSTALL you
 should generally hit the 'read FAQ' before getting down to the section of
 INSTALL that says to use inetd (for upgrading from sendmail):)
 
 FAQ pretty much points you at tcpserver

I would say that that is a mere quibble, except that it isn't even
that.  It isn't tcpserver which prevents qmail-smtpd from growing
without bound; it is softlimit.  softlimit isn't mentioned in the
INSTALL file or the FAQ which is distributed with qmail 1.03.  The
daemontools are mentioned, but not in the context of resource limits.

Obviously there isn't anything wrong with qmail.  And obviously these
bug reports are highly misleading in implying that there is a bug
which needs to be fixed in qmail.  But I do think that the bug reports
have a point: if you install qmail-1.03 according to a reasonable
reading of the instructions which come with the tar file, your system
may be vulnerable to a theoretical denial of service attack.  The fact
that other people tell you to install qmail in a different way is
interesting, but does not change the fact that qmail-1.03 comes with
installation instructions which at least some people will naturally
follow.  I certainly did in my first qmail installation.

Dan could fix this by releasing qmail-1.03.1 with different
installation instructions.  Of course, if he did, some people would
take that to be an admission that there actually is a security hole in
qmail-1.03.

Ian