RE: Lost the Battle
On 28-Feb-2001 dennis wrote: My qmail project, only 1 week away from implementation, was canned, we are now moving to Lotus Notes. Condolences. A company I used to work with also replaced the qmail I installed (and which had worked flawlessly for 18 months) with Notes (they wanted shared calendars :-). Two months later, they had to be rescued by their ISP because they were being used as a SPAM relay. Stefaan -- How's it supposed to get the respect of management if you've got just one guy working on the project? It's much more impressive to have a battery of programmers slaving away. -- Jeffrey Hobbs (comp.lang.tcl)
Re: Lost the Battle
I must say being someone who's installed NOTES (R5) that it's all up to who installed/configured it and their level of understanding of the product. Trouble with groupware products like Notes and Exchange is companies figure they dont need moderate/highly priced people who actually understand what they are doing (it's GUI, so it's easy, right?) This is the downfall of today's reality in alot of companies, they trade experienced employees for 'turn key' and 'easily maintainable' products which seemly dont need an experienced staff to administer. Or at least that's the crap managers are being sold on. I must say if I hear another Lotus rep extoll the virtues of "knowledgeware" one more time I'll shoot them! :) Sorry, my rant for the month. -Jason On Thu, 01 Mar 2001 09:41:56 +0100 (MET) Stefaan A Eeckels [EMAIL PROTECTED] wrote: On 28-Feb-2001 dennis wrote: My qmail project, only 1 week away from implementation, was canned, we are now moving to Lotus Notes. Condolences. A company I used to work with also replaced the qmail I installed (and which had worked flawlessly for 18 months) with Notes (they wanted shared calendars :-). Two months later, they had to be rescued by their ISP because they were being used as a SPAM relay. Stefaan -- How's it supposed to get the respect of management if you've got just one guy working on the project? It's much more impressive to have a battery of programmers slaving away. -- Jeffrey Hobbs (comp.lang.tcl)
logging alternatives to qmail-pop3d and checkpassword
Can someone help me to find logging alternatives to qmail-pop3d and checkpassword? Jrgen
NOVICE no mailbox here by tht name...
Hi All, Newbie alert: if you're busy, don't read. I'm hoping you can point out where I went wrong here... I started with a Suse6.3 machine. I removed the sendmail.rpm. I followed the life-with-qmail directions to install a Mailbox+df version of qmail, almost to the letter, with two exceptions: 1) The two times it said to start 'qmail' with '/usr/local/sbin/qmail' I started it with '/usr/bin/qmail'. 2) I have a list of domains that resolve to my local machine that I wanted to receive mail for, so I put them in both locals and rcpthosts. So, then I tried to send local email: mail kcorey testing . The errors I get in the log are: The 'kcorey' mailbox doesn't exist, so qmail tries to bounce this to 'postmaster'. The 'postmaster' mailbox doesn't exist, so it bounces to 'root'. The 'root' mailbox doesn't exist, so it gives up as a triple-bounce undeliverable. Both the 'kcorey' and 'root' accounts exist in /etc/passwd, and I made the symlinks back to /var/spool/mail. (Postmaster doesn't exist, so I'd expect an error of some kind there.) Why does qmail think those two mailboxes do not exist? (Note: I get this error with /var/spool/mail chmodded to 1777, and with or without the symlinks being there for the mail files in /var/spool/mail. The FAQ doesn't seem to answer this specifically, and when I looked through the archives, all I saw were replies about upper case or dotted usernames. Ideas anyone? -- Ken Corey, CTOAtomic Interactive, Ltd.
Re: Scalable Mail Solution
On Thu, Mar 01, 2001 at 04:56:43PM +1100, Brett Randall wrote: Well, my users are all in one domain, so I cannot split the domains across several HDD's. RAID??? RAID + Fibre Channel. Secondly, what if 2 1/2 million users simultaneously hit the server, would the server handle it? What with? A baseball bat? Unlikely. Logging in? Perhaps. Calculate how many MBs each instance of your web server take up, multiply it by 2.5million, and tell me that your server can handle both that amount of RAM and that number of processes. Uh huh. Yeah.. no way that you can get that kind of traffic to one server. Not going to happen. Well, how does hotmail or yahoo do it? I am sure they load blanace across multiple servers, but how? If you're looking at a *nix solution, look into Coda filesystems, Intermezzo, GFS, etc. Then look at a network-based clustering solution, such as the Linux Virtual Server. There are several common solutions for this sort of problem (although I have never seen it on this scale, really).. 1. Use something like Qmail-LDAP, which has a "mailHost" feature. This lets you have users distributed across multiple servers, and the qmail boxes are smart enough to forward the message to the proper server via QMTP. POP3 can get forwarded to the appropriate host as well. 2. Use something like a series of Network Appliance NAS devices to store users mail; then you can have each server access the entire data store regardless of where the connection is (via NFS). 3. Use something like GFS, which is a shared filesystem used on Fibre Channel Arrays. This has great potential, as the bandwidth of FC and the overhead of SCIS is much lower than an NFS based solution. However, there are other limitations here; GFS hasn't really ever been tested on a scale like that, to my knowledge. Not to mention the number of machines and arrays you would need to have. #1 is the simplest method, but it also has the most administrative overhead and the least amount of redundancy. Loose server32, and all the users on server32 loose thier mail. #2 works really well if you design the networks properly; but at the volume your talking about, you'll probably really wind up with a hybrid of #1 and #2... a small cluster of machines attached to a Netapp for small groups of users. #3 is the holy grail; of course, I've never seen anybody actually deploy it, since GFS is such a new thing. :) I know all about load balancing with dns, etc. across multiple web servers for example, but with mail, a specific user has to login to the same box that hosts his mailbox everytime, and mail arriving from outside world to this user has to arrive to the same box also. You're thinking inside the box. Yeah, he is. Stop thinking about each machine as the source; start thinking of the entire infrastructure as one machine. Check out http://www.infrastructures.org for more information on how to get your head around building things like this. If anyone out there has gone through something like this, I would appreciate it a lot if you hint me with a clue :) P.S. Please cc me your reply, as I am not subscribed to the list. Best Regards, You might want to subscribe. Just a hint. Definetly subscribe. Check out Qmail-LDAP, too. You won't be sorry. Adam -- [EMAIL PROTECTED] - (http://sysadminsith.org) Evil Lord of the Sysadmin Sith Darth Rmdashrf
Re: NOVICE no mailbox here by tht name...
On Thu, Mar 01, 2001 at 10:20:21AM +, Ken Corey wrote: Ideas anyone ? have you _really_ followed all the steps of the LWQ ? if yes, root would have a mailbox in /var/qmail/alias/Mailbox. Does this directory exists ? Please show us the qmail users from /etc/passwd. Good luck :) Olivier PS: if you followed the INSTALL file of the qmail-1.03 tar.gz, it would work... :) -- _ Olivier Mueller - [EMAIL PROTECTED] - PGPkeyID: 0E84D2EA - Switzerland qmail projects: http://omail.omnis.ch - http://webmail.omnis.ch PGP signature
qmail Digest 1 Mar 2001 11:00:00 -0000 Issue 1290
qmail Digest 1 Mar 2001 11:00:00 - Issue 1290 Topics (messages 58042 through 58126): Re: QMail log: is human DATE/TIME available 58042 by: japc.co.sapo.pt Re: qmail-send progress with large queue/todo 58043 by: Peter van Dijk 58045 by: Manvendra Bhangui 58064 by: David Dyer-Bennet 58065 by: Charles Cazabon Re: nfs mounting /var/qmail/alias 58044 by: Peter van Dijk Re: [Qmail-scanner-general]amavis or qmail-scanner ? 58046 by: Bruno Wolff III 58049 by: Michael Peppard 58051 by: marcth 58106 by: Brett Randall Re: How to create two mailboxes for one user 58047 by: Sean Swehla Re: Relay-ctrl and qmail 58048 by: Charles Cazabon 58054 by: Bruce Guenter 58058 by: Enrique Vadillo 58087 by: inter7.mail.delanet.com How can I test the capability of my qmail server? 58050 by: root help for smtp-server on MAPS DULed IP 58052 by: Christoph Hertel 58053 by: Charles Cazabon Re: tcpserver for pop3 and telnet 58055 by: Dave Sill 58056 by: Charles Cazabon 58059 by: Tim Hunter tls.patch causing qmail-remote to crash 58057 by: John McCoy, Jr amavis or qmail-scanner ? 58060 by: Jérémy Cluzel 58063 by: Olivier M. 58067 by: schoon.amgt.com 58079 by: Jason Haar Re: About qmail sendmail. 58061 by: David Dyer-Bennet Re: Return address for autoresponder 58062 by: David Dyer-Bennet Announcing cr.yp.to-update list 58066 by: Dave Sill qmail-0.0.0.0.patch not found 58068 by: Claudio Nieder 58107 by: Scott Gifford Re: mailserver buffering 58069 by: Andy Bradford 58113 by: Markus Stumpf Relay-ctrl and qmail: problem more fundamental, I think 58070 by: Bill Isaacs 58071 by: Charles Cazabon 58072 by: Bill Isaacs 58074 by: Charles Cazabon 58084 by: Bill Isaacs 58088 by: Chris Johnson 58090 by: Charles Cazabon 58109 by: Bill Isaacs Re: Can Qmail send out 2 million mails in 12 hour window? 58073 by: inter7.mail.delanet.com 58111 by: Markus Stumpf pop3 acct name 58075 by: Dean Browett 58091 by: Chris Johnson Duplicate mails on mailing list. 58076 by: Andy Bradford What does this mean. 58077 by: inter7.mail.delanet.com 58078 by: Charles Cazabon 58081 by: denis Attachment Limit 58080 by: Cristopher Daniluk 58082 by: Charles Cazabon unsubcribe 58083 by: inter7.mail.delanet.com List Mirroring 58085 by: David Coley Time::HiRes for Qmail-Scanner on RH7 ? 58086 by: inter7.mail.delanet.com 58089 by: Olivier M. Re: checkpassword (pop3d) problem 58092 by: inter7.mail.delanet.com qmail+system accounts+virt. dom. POPs 58093 by: inter7.mail.delanet.com Using Virtual Consoles with multilog 58094 by: Roger Waterhouse 58095 by: Peter van Dijk 58096 by: Charles Cazabon Re: warning: trouble opening remote/4/r 58097 by: inter7.mail.delanet.com Re: Cannot receive mail from some sites 58098 by: inter7.mail.delanet.com Useful Unix Networking/Programming site 58099 by: Bruce Dang Partition swap broke qmail 58100 by: Stewart Vardaman 58101 by: schoon.amgt.com 58102 by: Sean Reifschneider 58103 by: Chris Johnson Lost the Battle 58104 by: dennis 58120 by: Stefaan A Eeckels 58121 by: Jason Radford procmail problems (RH6.2) 58105 by: Joe Janitor qmail vulnerability 58108 by: D. J. Bernstein 58118 by: Andy Bradford qmail 2.0 exploit 58110 by: Peter Cavender 58112 by: Ian Lance Taylor 58117 by: Vince Vielhaber Scalable Mail Solution 58114 by: Tim Hassan 58115 by: Brett Randall 58116 by: Hubbard, David 58124 by: Adam Jacob SSL Support 58119 by: Green Onyx logging alternatives to qmail-pop3d and checkpassword 58122 by: Jörgen Persson NOVICE no mailbox here by tht name... 58123 by: Ken Corey 58125 by: Olivier M. Qmail - to slow? 58126 by: Thomas König Administrivia: To unsubscribe from the digest, e-mail: [EMAIL PROTECTED] To subscribe to the digest, e-mail: [EMAIL PROTECTED] To bug my human owner, e-mail: [EMAIL PROTECTED] To post to the list, e-mail: [EMAIL PROTECTED] -- Pipe the logs files through tai64nlocal (man tai64nlocal), for instance cat current | /usr/local/bin/tai64nlocal . On Wed, Feb 28, 2001 at 01:06:26PM +0300, Alexander Cherepanov wrote: I couldn't found anywhere how can I get human-readable date and time stamps in qmail logs. Can anybody do that? Thanks for you help, Alexander -- Jose AP Celestino [EMAIL PROTECTED]
Re: logging alternatives to qmail-pop3d and checkpassword
Can someone help me to find logging alternatives to qmail-pop3d and checkpassword? Jrgen On my system, I've added some code to qmail-pop3d.c to make it log the clients username and IP address to syslog every time a user quits. Here is the extra code: /* Add syslog logging */ static void log_summary() { #include syslog.h extern char **environ; char **p; char *user, *ip; /* TCPREMOTEIP is inherited from tcpserver. */ for (p = environ; *p strncmp(*p, "TCPREMOTEIP=", 12) != 0; ++p); ip = (*p) ? (*p + 12) : "0.0.0.0"; /* USER is inherited from checkpassword. * Make sure that USER is not already set when tcpserver starts. */ for (p = environ; *p strncmp(*p, "USER=", 5) != 0; ++p); user = (*p) ? (*p + 5) : "unknown"; openlog("qmail-pop3d", 0, LOG_MAIL); syslog(LOG_INFO, "%s %s", ip, user); closelog(); } static void log_and_die() { log_summary(); die(); } Then substitute log_and_die() for die() in the pop3_quit() function. -- Gjermund Sorseth
messages staying in the queue...
Hi ... i'm quite novice with qmail, i have set up a qmail server with vpopmail i worked on my qmail server yesterday, and some messages went in the queue when my system wasn't well configured to deliver them ... now i can send and receive messages correctly but these messages stay in the queue ! 1) how could i do, a recursive touch ? i tried find . * -print -exec touch , that's wrong... what's the missing magic word for giving the found file as argument ? $ ? ... ??? 2) an other dark point i missunderstand is the relaycontrol, i defined a rcpthosts file, when qmail run with it, it can't deliver messages locally even if local virtualdomains are defined in it, answering theses domains are not in my rcpthosts when i try to send msg! it would mean my qmail-send reads the rcpthosts file ? i had a look on the big qmail picture and that's not working the same ... when i delete this rcpthosts file, everything work well then but i get troubles with spammers then ! many thanks for answers ! Fred.
Re: logging alternatives to qmail-pop3d and checkpassword
J gen_Persson [EMAIL PROTECTED]$B!!(Bwrote: Can someone help me to find logging alternatives to qmail-pop3d and checkpassword? J gen http://www.ornl.gov/its/archives/mailing-lists/qmail/1998/08/msg00896.html --Shinya
Re: amavis or qmail-scanner ?
Jrmy Cluzel wrote: 1) as virus-scanner ? amavis or qmail-scanner ? both seem to work fine... I've replied to you directly and added Jason Haar into CC, so he can correct me if I made a wrong assumption. :-) Hopefully I do not need a dozen of bodyguards ;-))) 2) as antivirus ? H+BEDV AntiVir, AVP, Sophos Sweep,or McAfee ViruScan ? I used avp for a while (and I find it very efficient), but doesn't know the other ones... Well, Kaspersky Labs ships Kaspersky AntiVirus (AVP) for qmail. For a product comparison please visit www.av-test.org - they do comparisons of Linux products, too. HTH best regards, Rainer Link -- Rainer Link | Member of Virus Help Munich (www.vhm.haitec.de) [EMAIL PROTECTED] | Member of AMaViS Development Team (amavis.org) rainer.w3.to | OpenAntiVirus Project (www.openantivirus.org)
Re: Qmail - to slow?
On Thu, Mar 01, 2001 at 11:33:29AM +0100, Thomas Knig wrote: [snip] qmail (standard tgz file with only the qmail-date-localtime patch) is compiled with: conf-split = 300 That conf-split is ridiculous. It is way higher than necessary, *and* it is not prime. conf-spawn = 255 /var/qmail/bin: concurrencylocal = 30 concurrencyremote = 100 You might want to up concurrencyremote a lot :) Now I has tried to send a Newsletter to 180.000 subscribers. The system needs 5 1/2 hours for delivery( 9 mails per second), but I mean it's to long?! The average bandwich during the delivery is 70k-100k it's to slightly for an 100mbit Connection. If I look for qmail processes, ther are only 3-5 qmail-remote processes. netstat -an show me 100-200 socket connections to smpt servers on port 25. vmstat shows an average idle time between 65%-78%. memory use is ca. 200 MB, swap is untouched. What can I do, for higher performance? Apply the big-concurrency patch, use ezmlm for your mailinglist. Have I errors in my configuration? Yes, your conf-split is broken. Greetz, Peter.
Re: Qmail - to slow?
Hi, thanks for your answer. Which values are right for my problem? -- tom
Re: Qmail - to slow?
On Thu, Mar 01, 2001 at 02:30:37PM +0100, Thomas Knig wrote: Hi, thanks for your answer. Which values are right for my problem? conf-split should be 23 unless you have *really* good reasons to change it. Greetz, Peter.
Where do I find the logs
Hi, I did a migration from Sendmail to Qmail and now I don't know where to find the logs. previously they were in /var/log/maillog but now it seems they are split up under the /var/log/qmail directory (or so I think). I need to look at the logs from time to time but i just cant seem to find them. Andrew
Re: Scalable Mail Solution
In short, yes, there are Terrabyte solutions, they start in the several hundred thousand range, and go up according to what you need. Many companies that do that sort of volume use load balancers (layer 7 usually), and several machines clustered together. I don't see any reason qmail couldn't handle that volume of users, but you're talking about some serious equipment costs, at least in the very high hundreds of thousands of dollars. The short answer to the question about what would happen if 2.5 million users hit your PIII server at once. In a word: *poof* Check out: http://www.f5.com (f5 Load balancers are cool, Foundry also makes some good gear, I forget the URL) http://www.nthgencomp.com/ (Terabyte arrays) http://www.sun.com/ (Servers that won't blow up under that load and Terabyte arrays) Hope that helps. Rob Tim Hassan wrote: Hi, I have used Qmail for over 3 years now and I love it. Now I have came across one project, building a Mail server to handle around 5-6 million users with a 10 meg mailbox each (I use vpopmail www.inter7.com for the pop server and virtual domain part). Now multiplying 10MB x 500 users = 50million megs, which is about 50,000 gigs. Is their such a thing as a 50 terrabyte hard drive? Well, my users are all in one domain, so I cannot split the domains across several HDD's. Secondly, what if 2 1/2 million users simultaneously hit the server, would the server handle it? with a quad p-III Xeon 1ghz and 4 GB or ram and a OC connection. Well, how does hotmail or yahoo do it? I am sure they load blanace across multiple servers, but how? I know all about load balancing with dns, etc. across multiple web servers for example, but with mail, a specific user has to login to the same box that hosts his mailbox everytime, and mail arriving from outside world to this user has to arrive to the same box also. If anyone out there has gone through something like this, I would appreciate it a lot if you hint me with a clue :) P.S. Please cc me your reply, as I am not subscribed to the list. Best Regards, Tim -- Rob Hines Jr. System Administrator
Re: Scalable Mail Solution
Rob Hines Jr. wrote: In short, yes, there are Terrabyte solutions, they start in the several hundred thousand range, and go up according to what you need. Many companies that do that sort of volume use load balancers (layer 7 usually), and several machines clustered together. I don't see any reason qmail couldn't handle that volume of users, but you're talking about some serious equipment costs, at least in the very high hundreds of thousands of dollars. The short answer to the question about what would happen if 2.5 million users hit your PIII server at once. In a word: *poof* Check out: http://www.f5.com (f5 Load balancers are cool, Foundry also makes some good gear, I forget the URL) http://www.nthgencomp.com/ (Terabyte arrays) http://www.sun.com/ (Servers that won't blow up under that load and Terabyte arrays) Hope that helps. Rob Tim Hassan wrote: Hi, I have used Qmail for over 3 years now and I love it. Now I have came across one project, building a Mail server to handle around 5-6 million users with a 10 meg mailbox each (I use vpopmail www.inter7.com for the pop server and virtual domain part). Now multiplying 10MB x 500 users = 50million megs, which is about 50,000 gigs. Is their such a thing as a 50 terrabyte hard drive? Well, my users are all in one domain, so I cannot split the domains across several HDD's. Secondly, what if 2 1/2 million users simultaneously hit the server, would the server handle it? with a quad p-III Xeon 1ghz and 4 GB or ram and a OC connection. Well, how does hotmail or yahoo do it? I am sure they load blanace across multiple servers, but how? I know all about load balancing with dns, etc. across multiple web servers for example, but with mail, a specific user has to login to the same box that hosts his mailbox everytime, and mail arriving from outside world to this user has to arrive to the same box also. If anyone out there has gone through something like this, I would appreciate it a lot if you hint me with a clue :) P.S. Please cc me your reply, as I am not subscribed to the list. Best Regards, Tim www.foundrynetworks.net, I am using the serveriron XL 16
Re: Qmail - to slow?
Do you have installed the daemontools? how do you logging? syslog? multilog? Bye! Thomas Knig wrote: Hi, I have been setup a linux-box PII/450, 256MB RAM, 4 GB IDE HDD, 100mbit bandwitch with RehHat 6.2, qmail 1.03 + ezmlm-idx with MySQL + vpopmail. qmail (standard tgz file with only the qmail-date-localtime patch) is compiled with: conf-split = 300 conf-spawn = 255 /var/qmail/bin: concurrencylocal = 30 concurrencyremote = 100 Now I has tried to send a Newsletter to 180.000 subscribers. The system needs 5 1/2 hours for delivery( 9 mails per second), but I mean it's to long?! The average bandwich during the delivery is 70k-100k it's to slightly for an 100mbit Connection. If I look for qmail processes, ther are only 3-5 qmail-remote processes. netstat -an show me 100-200 socket connections to smpt servers on port 25. vmstat shows an average idle time between 65%-78%. memory use is ca. 200 MB, swap is untouched. What can I do, for higher performance? Have I errors in my configuration? -- thomas koenig
Re: Qmail - to slow?
Yes, I have installed daemontools-0.53. I use tcpserver, logging via cyclog. /etc/rc.d/init.d/qmail: echo -n "Starting: " env - PATH="/var/qmail/bin:/usr/local/bin" \ qmail-start ./Maildir/ /usr/local/bin/accustamp \ | /usr/local/bin/setuser qmaill /usr/local/bin/cyclog /var/log/qmail echo -n "qmail " env - PATH="/var/qmail/bin:/usr/local/bin" \ tcpserver -H -R -l$HOSTNAME -c30 0 pop-3 /var/qmail/bin/qmail-popup \ $HOSTNAME \ /home/vpopmail/bin/vchkpw /var/qmail/bin/qmail-pop3d Maildir echo -n "pop " env - PATH="/var/qmail/bin:/usr/local/bin" \ tcpserver -H -R -l$HOSTNAME -x /home/vpopmail/etc/tcp.smtp.cdb -c30 \ -u503 -g502 0 smtp \ /var/qmail/bin/qmail-smtpd 21 /dev/null echo "smtp" -- tom
Redirect e-mails to 'root'
I need to redirect e-mail to root to another e-mail address (local). I created a /var/qmail/alias/.qmail-root containing ' john ' but qmail still attempts to deliver messages to root. The reason I need to do this is as follows: (I may be doing something wrong?) - Our server handles mail for office.domain.com (this value is in 'me') - However all our public e-mail addresses are [EMAIL PROTECTED] and the machine at domain.com forwards selected e-mail addresses onto [EMAIL PROTECTED] for users to get (with the rest being picked up by pop3 from domain.com as a general 'customer service' address) - To ensure that our local users can send to [EMAIL PROTECTED] I removed 'domain.com' from 'locals' and 'rcpthosts' (otherwise they were being bounced) - This works OK, but messages to root (cron et al) get delivered to [EMAIL PROTECTED] which isn't under our control (domain.com is our webserver) so I don't get to see them. This is why I want to forward them. Any suggestions? Thanks John
Re: Redirect e-mails to 'root'
I created a /var/qmail/alias/.qmail-root containing ' john ' but qmail still attempts to deliver messages to root. Put john into the file (without the spaces). Frank
Re: Redirect e-mails to 'root'
- Our server handles mail for office.domain.com (this value is in 'me') - This works OK, but messages to root (cron et al) get delivered to [EMAIL PROTECTED] which isn't under our control (domain.com is our webserver) so I don't get to see them. This is why I want to forward them. Hm. This doesn't fit. Please pove the output of qmail-showctl. Regards, Frank
Re: procmail problems (RH6.2) SOLVED (?)
I made some modifications to the homedir files: $HOME/.qmail now has | preline /usr/bin/procmail -m /home/joe/.procmailrc (the -m file was previously mis-named) and $HOME/.procmailrc has PATH=/bin:/usr/bin:/usr/bin:$PATH ORGMAIL=$HOME/Mailbox MAILDIR=$HOME/mail DEFAULT=$HOME/Mailbox #completely optional LOGFILE=$MAILDIR/procmail.log Does this mean I have to have these two files in every home directory!? And does it also mean that any user can screw his mail up by accidentally deleting these files? I have to say, though this works, I'm not particularly comfortable with it... Joe --- Joe Janitor [EMAIL PROTECTED] wrote: I'm having trouble with qmail and procmail. I've read the FAQ and the list archives, but am still unsure what to do. I'm using a Linux RedHat 6.2 system. installed qmail. outgoing mail works. incoming mail (from outside) bounces (unknown user) local mail won't be delivered, i.e when I try (from the machine in question): $ mail joe Subject: testing testing . Cc: $ I end up with /var/spool/mail/joe (a symlink to /home/joe/Mailbox) being renamed as BOGUS.joe.1jLB and a new FILE called /var/spool/mail/joe containing the "testing" message. I read in INSTALL.mbox the following: A few mail programs are unable to handle symbolic links, so you will have to configure them to look at ~user/Mailbox directly: * procmail: Change SYSTEM_MBOX in config.h and recompile; or, with recent versions, define MAILSPOOLHOME in src/authenticate.c. but I don't know where to find config.h or authenticate.c... do I have to download the procmail source and recompile after these edits? (There has to be an easier way!) I tried adding ~joe/.qmail-test1 containing: |preline procmail -m /home/awilber/.procmailrc and ~joe/.procmail containing PATH=/bin:/usr/bin:/usr/bin:$PATH ORGMAIL=$HOME/Mailbox MAILDIR=$HOME/mail DEFAULT=$HOME/Mailbox #completely optional LOGFILE=$MAILDIR/procmail.log this didn't work. I'm lost. Thanks, Joe __ Do You Yahoo!? Get email at your own domain with Yahoo! Mail. http://personal.mail.yahoo.com/ __ Do You Yahoo!? Get email at your own domain with Yahoo! Mail. http://personal.mail.yahoo.com/
Re: Fwd: Re: Relay-ctrl and qmail: problem more fundamental, I think
Bill Isaacs [EMAIL PROTECTED] wrote: At the risk of sounding really stupid, do I need to invoke BOTH the corrected script (minus the qmail-smtpd part) AND the old one (pop-3, etc.)? In other words, will I have two tcpserver scripts, one invoking the pop-3 and the other the qmail smtpd? If I remember your setup, yes. Think of tcpserver as a meta-daemon -- it binds to one TCP port on your machine and accepts connections. For each connection, it spawns a specified program which reads and writes data from and to that connection. Therefore, if you want to use it for two different ports (different services, like SMTP and POP3), you need to run two different instances of tcpserver. As I said, I am a complete newbie with email and no great shakes with much of this stuff to begin with. I hope you folks aren't getting to tired of answering these dumb questions. This list generally doesn't tire of questions from people who are willing to do some work, experiment, and report honest results. If you want to help yourself further, I would recommend reading everything at cr.yp.to, especially concerning ucspi-tcp, daemontools, and qmail, as well as everything linked to from www.qmail.org. Charles -- --- Charles Cazabon[EMAIL PROTECTED] GPL'ed software available at: http://www.qcc.sk.ca/~charlesc/software/ Any opinions expressed are just that -- my opinions. ---
Re: Redirect e-mails to 'root'
Please pove the output of qmail-showctl. Oh I'm a silly-billy. I guess I need some sleep :) I meant "give" or "post". Frank
Re: Where do I find the logs
Andrew Wafula [EMAIL PROTECTED] wrote: I did a migration from Sendmail to Qmail and now I don't know where to find the logs. previously they were in /var/log/maillog but now it seems they are split up under the /var/log/qmail directory (or so I think). I need to look at the logs from time to time but i just cant seem to find them. It depends how you installed qmail. Check how you're calling qmail-start. Charles -- --- Charles Cazabon[EMAIL PROTECTED] GPL'ed software available at: http://www.qcc.sk.ca/~charlesc/software/ Any opinions expressed are just that -- my opinions. ---
Re: Lost the Battle
My qmail project, only 1 week away from implementation, was canned, we are now moving to Lotus Notes. Well, it's not a total loss. At least you learned something about qmail. -Dave
Re: Lost the Battle
On Thu, Mar 01, 2001 at 10:19:34AM -0500, Dave Sill wrote: My qmail project, only 1 week away from implementation, was canned, we are now moving to Lotus Notes. Well, it's not a total loss. At least you learned something about qmail. And maybe you can convince your company to use qmail as your email relay server on the firewall. Use Notes internally in a protected environment and only expose qmail to that nasty world out there. Sure you could expose your Notes server to the Internet, but do you really want to with all that company data so close at hand? Sure you could also buy a seperate Notes server and license just as a firewall box, but is that cost effective and is it the most secure choice? Regards.
Re: Redirect e-mails to 'root'
- Our server handles mail for office.domain.com (this value is in 'me') - This works OK, but messages to root (cron et al) get delivered to [EMAIL PROTECTED] which isn't under our control (domain.com is our webserver) so I don't get to see them. This is why I want to forward them. Hm. This doesn't fit. Please pove the output of qmail-showctl. And I've just realised that any messing about with root@ forwards won't work.. as it's not delivering to local root anyway. Here's qmail-showctl (a very useful feature isn't it!) May as well give up on the domain hiding, I trust you all :-) (plus I probably posted it before somewhere!) The machine 'office.internal' is portfowarded to (SMTP/POP-3) from our firewall which has the external name 'office.mobiletones.com' hence the different names in there. BIND is set up to map all office.internal addresses correctly. qmail home directory: /var/qmail. user-ext delimiter: -. paternalism (in decimal): 2. silent concurrency limit: 120. subdirectory split: 23. user ids: 501, 502, 503, 0, 504, 505, 506, 507. group ids: 501, 502. badmailfrom: (Default.) Any MAIL FROM is allowed. bouncefrom: (Default.) Bounce user name is MAILER-DAEMON. bouncehost: (Default.) Bounce host name is office.mobiletones.com. concurrencylocal: (Default.) Local concurrency is 10. concurrencyremote: (Default.) Remote concurrency is 20. databytes: (Default.) SMTP DATA limit is 0 bytes. defaultdomain: Default domain name is office.internal. defaulthost: Default host name is mobiletones.com. doublebouncehost: (Default.) 2B recipient host: office.mobiletones.com. doublebounceto: (Default.) 2B recipient user: postmaster. envnoathost: (Default.) Presumed domain name is office.mobiletones.com. helohost: (Default.) SMTP client HELO host name is office.mobiletones.com. idhost: (Default.) Message-ID host name is office.mobiletones.com. localiphost: (Default.) Local IP address becomes office.mobiletones.com. locals: Messages for pluto.office.internal are delivered locally. Messages for office.mobiletones.com are delivered locally. Messages for localhost are delivered locally. me: My name is office.mobiletones.com. percenthack: (Default.) The percent hack is not allowed. plusdomain: Plus domain name is office.internal. qmqpservers: (Default.) No QMQP servers. queuelifetime: (Default.) Message lifetime in the queue is 604800 seconds. rcpthosts: SMTP clients may send messages to recipients at pluto.office.internal. SMTP clients may send messages to recipients at office.mobiletones.com. SMTP clients may send messages to recipients at localhost. morercpthosts: (Default.) No effect. morercpthosts.cdb: (Default.) No effect. smtpgreeting: (Default.) SMTP greeting: 220 office.mobiletones.com. smtproutes: (Default.) No artificial SMTP routes. timeoutconnect: (Default.) SMTP client connection timeout is 60 seconds. timeoutremote: (Default.) SMTP client data timeout is 1200 seconds. timeoutsmtpd: (Default.) SMTP server data timeout is 1200 seconds. virtualdomains: (Default.) No virtual domains. defaultdelivery: I have no idea what this file does. default: I have no idea what this file does. controlbackup: I have no idea what this file does. tain64local: I have no idea what this file does.
Re: procmail problems (RH6.2) SOLVED (?)
Joe Janitor [EMAIL PROTECTED] wrote: I made some modifications to the homedir files: $HOME/.qmail now has | preline /usr/bin/procmail -m /home/joe/.procmailrc (the -m file was previously mis-named) and $HOME/.procmailrc has PATH=/bin:/usr/bin:/usr/bin:$PATH ORGMAIL=$HOME/Mailbox MAILDIR=$HOME/mail DEFAULT=$HOME/Mailbox #completely optional LOGFILE=$MAILDIR/procmail.log Does this mean I have to have these two files in every home directory!? No. First, procmail doesn't need the -m flag. See the procmail section in LWQ: http://www.lifewithqmail.org/lwq.html#procmail Also, if you want delivery via procmail to be the default, specify that on the qmail-start command line, or in the control/defaultdelivery file if you installed using LWQ. Finally, you can specify a systemwide default procmailrc in /etc/procmailrc. And does it also mean that any user can screw his mail up by accidentally deleting these files? I have to say, though this works, I'm not particularly comfortable with it... You can't really save your users from themselves... -Dave
Re: messages staying in the queue...
On Thu, Mar 01, 2001 at 12:14:11PM +0100, Frdric Belteau wrote: Hi ... SNIP 1) how could i do, a recursive touch ? i tried find . * -print -exec touch , that's wrong... what's the missing magic word for giving the found file as argument ? $ ? ... ??? This has nothing to do with qmail, but try, um, 'man find'? It's there, honest. 'find . -type f -exec touch {} \; ' 2) an other dark point i missunderstand is the relaycontrol, i defined a rcpthosts file, when qmail run with it, it can't deliver messages locally SNIP Possibly the most FAQ in the FAQ... If using Dan's docs, included in the distro, read the FAQ on relay. If using Life with qmail, read LWQ again, more carefully. many thanks for answers ! Fred. HTH, -- Greg White Those who make peaceful revolution impossible will make violent revolution inevitable. -- John F. Kennedy
Re: procmail problems (RH6.2) SOLVED (?)
--- Dave Sill [EMAIL PROTECTED] wrote: Joe Janitor [EMAIL PROTECTED] wrote: I made some modifications to the homedir files: $HOME/.qmail now has | preline /usr/bin/procmail -m /home/joe/.procmailrc (the -m file was previously mis-named) and $HOME/.procmailrc has PATH=/bin:/usr/bin:/usr/bin:$PATH ORGMAIL=$HOME/Mailbox MAILDIR=$HOME/mail DEFAULT=$HOME/Mailbox #completely optional LOGFILE=$MAILDIR/procmail.log Does this mean I have to have these two files in every home directory!? No. First, procmail doesn't need the -m flag. See the procmail section in LWQ: http://www.lifewithqmail.org/lwq.html#procmail Also, if you want delivery via procmail to be the default, specify that on the qmail-start command line, or in the control/defaultdelivery file if you installed using LWQ. I think I was already doing this, my /etc/rc.d/init.d/qmail script called qmail-start '|preline procmail' splogger qmail Finally, you can specify a systemwide default procmailrc in /etc/procmailrc. I read about that, but since that file didn't already exist on my system, I wondered if it would be looked for at all (if I created it). I never got around to testing it. And does it also mean that any user can screw his mail up by accidentally deleting these files? I have to say, though this works, I'm not particularly comfortable with it... You can't really save your users from themselves... But you can make it harder for them to auto-hank... In any case, I've since downloaded the procmail source, edited src/authenticate.c to include #define MAILSPOOLHOME "/Mailbox" and recompiled. Now it works great without any $HOME/.qmail or $HOME/.procmailrc or /etc/procmailrc Thanks for writing. Joe __ Do You Yahoo!? Get email at your own domain with Yahoo! Mail. http://personal.mail.yahoo.com/
Re: Scalable Mail Solution
"Rob Hines Jr." wrote: In short, yes, there are Terrabyte solutions, they start in the several hundred thousand range, and go up according to what you need. Many companies that do that sort of volume use load balancers (layer 7 usually), and several machines clustered together. I don't see any reason qmail couldn't handle that volume of users, but you're talking about some serious equipment costs, at least in the very high hundreds of thousands of dollars. The short answer to the question about what would happen if 2.5 million users hit your PIII server at once. In a word: *poof* Check out: http://www.f5.com (f5 Load balancers are cool, Foundry also makes some good gear, I forget the URL) Foundry Networks is: http://www.foundrynetworks.com/ Some very good solid equipment. http://www.nthgencomp.com/ (Terabyte arrays) http://www.sun.com/ (Servers that won't blow up under that load and Terabyte arrays) Hope that helps. Rob Jonathan Smith
Re: Relay test
Paco Martinez writes: Relay test result Hmmn, at first glance, host appeared to accept a message for relay. THIS MAY OR MAY NOT MEAN THAT IT'S AN OPEN RELAY. As you see "Test 9" shows that my PC has a security hole Hello, Paco. Could you please translate "THIS MAY OR MAY NOT MEAN THAT IT'S AN OPEN RELAY" into your native language? Obviously it's not sufficient to say it in English with capital letters. -- -russ nelson [EMAIL PROTECTED] http://russnelson.com Crynwr sells support for free software | PGPok | "This is Unix... 521 Pleasant Valley Rd. | +1 315 268 1925 voice | Stop acting so helpless." Potsdam, NY 13676-3213 | +1 315 268 9201 FAX | --Daniel J. Bernstein
Re: unsubcribe
[EMAIL PROTECTED] writes: unsubcribe If I wrote "unsubcribe" to the qmail mailing list, would it unsubscribe me any better than if I wrote "unsubscribe"? Hint: Try sending requests for a LIST running on a HOST to LIST-request@HOST. This is never the wrong thing to do. -- -russ nelson [EMAIL PROTECTED] http://russnelson.com Crynwr sells support for free software | PGPok | "This is Unix... 521 Pleasant Valley Rd. | +1 315 268 1925 voice | Stop acting so helpless." Potsdam, NY 13676-3213 | +1 315 268 9201 FAX | --Daniel J. Bernstein
Some newbies issue
Hi, Kindly excuse me if my problem is stupid or if it's not related. I'm first-timer setting up a Mail server and i choose qmail instead of Sendmail as qmail have the add-on i luv. Hope you pple out here can help me and THANKS in Advance. My system: Linux (Turbolinux ver 6.1) (no sendmail installed) (installed qmail-1.03) I don't have own DNS and Static IP. I subscribe to hn.org. i'm using Maildir format. qmail running:- Following TEST.deliver (test using qmail-inject) 1) tested local to localSUCCESSFULL. 2) tested local to errorSUCCESSFULL. 3) tested local to remote SUCCESSFULL. 4) tested local to POSTmaster SUCCESSFULL. 5) tested Double-bounce SUCCESSFULL. Following TEST.recieve (via SMTP) 1) tested local to localSUCCESSFULL. 2) tested local to remote SUCCESSFULL. 3) tested remote to local NOT SUCCESSFULL. Due to i'm first time setting up such server i do not know what when wrong. i try sending [EMAIL PROTECTED] and [EMAIL PROTECTED] from my pacific.net.sg (ISP) account both mails bounced back to my pacific.net.sg pop account. I do understand that i need to set MX in DNS under Netphuture.com Zone file, but i do not know i do it rightly or not. I want to have my SMTP/POP3 known as mail.netphuture.com and user email address as ie. [EMAIL PROTECTED] Here my hn.org Dynamic service setting:- === Rec FQDN Rec TypeRec Value DynDNS MX Pref === netphuture.com NS ns1.hn.org 0 0 netphuture.com NS aux1.hn.org0 0 www.netphuture.com CNAME netphuture.com 0 0 netphuture.com Anetphuture.hn.org1 0 mail.netphuture.comCNAME netphuture.com 0 0 netphuture.com MX mail.netphuture.com010 Please help me. I've installed qmail twice to figure out and read through lots of FAQ and mailing archive this whole months Feb'01. No doubt i found lots of other knowlegde but i still can't get the Remote to local (TEST.recieve) to work. That's why i suspect my setting of MX could be the core issue of it. Sorry for the long message here. Regards. Jason Benedict Low ***One's success is not because of oneself but is given by others
Re: Some newbies issue
Hi, Due to i'm first time setting up such server i do not know what when wrong. i try sending [EMAIL PROTECTED] and [EMAIL PROTECTED] from my pacific.net.sg (ISP) account both mails bounced back to my The bounce messages could help in determine what was the problem. netphuture.com MX mail.netphuture.com010 $ dnsmx netphuture.com 10 mail.netphuture.com $ dnsip mail.netphuture.com 202.156.122.40 $ telnet 202.156.122.40 25 Trying 202.156.122.40... Here I don't get any response. If you want to receive mail, your host needs to be permanently connected to the Internet and listening to port 25 for incoming mail. Is qmail-smtpd running ? claudio -- Claudio Nieder, Kanalweg 1, CH-8610 Uster, Tel +41 79 357 6743 yahoo messenger: claudionieder aim: claudionieder icq:42315212 mailto:[EMAIL PROTECTED]http://www.claudio.ch
Re: Some newbies issue
On Thu, 01 Mar 2001, Jason Benedict Low wrote: Hi, Kindly excuse me if my problem is stupid or if it's not related. I'm first-timer setting up a Mail server and i choose qmail instead of Sendmail as qmail have the add-on i luv. Hope you pple out here can help me and THANKS in Advance. My system: Linux (Turbolinux ver 6.1) (no sendmail installed) (installed qmail-1.03) I don't have own DNS and Static IP. I subscribe to hn.org. i'm using Maildir format. qmail running:- Following TEST.deliver (test using qmail-inject) 1) tested local to local SUCCESSFULL. 2) tested local to error SUCCESSFULL. 3) tested local to remote SUCCESSFULL. 4) tested local to POSTmaster SUCCESSFULL. 5) tested Double-bounceSUCCESSFULL. Following TEST.recieve (via SMTP) 1) tested local to local SUCCESSFULL. 2) tested local to remote SUCCESSFULL. 3) tested remote to local NOT SUCCESSFULL. Due to i'm first time setting up such server i do not know what when wrong. i try sending [EMAIL PROTECTED] and [EMAIL PROTECTED] from my pacific.net.sg (ISP) account both mails bounced back to my pacific.net.sg pop account. I do understand that i need to set MX in DNS under Netphuture.com Zone file, but i do not know i do it rightly or not. I want to have my SMTP/POP3 known as mail.netphuture.com and user email address as ie. [EMAIL PROTECTED] Here my hn.org Dynamic service setting:- === Rec FQDN Rec TypeRec Value DynDNS MX Pref === netphuture.com NS ns1.hn.org 0 0 netphuture.com NS aux1.hn.org0 0 www.netphuture.com CNAME netphuture.com 0 0 netphuture.com Anetphuture.hn.org1 0 mail.netphuture.comCNAME netphuture.com 0 0 netphuture.com MX mail.netphuture.com010 Please help me. I've installed qmail twice to figure out and read through lots of FAQ and mailing archive this whole months Feb'01. No doubt i found lots of other knowlegde but i still can't get the Remote to local (TEST.recieve) to work. That's why i suspect my setting of MX could be the core issue of it. Sorry for the long message here. Regards. Jason Benedict Low ***One's success is not because of oneself but is given by others change the mail.netphuture.com record to an a record and point it to either an ip address or something like mail.netphuture.hn.org -- *** Matthew H Patterson Unix Systems Administrator National Support Center, LLC Naperville, Illinois, USA ***
Re: Where do I find the logs
"Andrew Wafula" [EMAIL PROTECTED] writes: Hi, I did a migration from Sendmail to Qmail and now I don't know where to find the logs. previously they were in /var/log/maillog but now it seems they are split up under the /var/log/qmail directory (or so I think). I need to look at the logs from time to time but i just cant seem to find them. Are you logging via multilog? If so, there's a directory somewhere with the file "current" in it that contains the current log (the one being written to right now) and probably (if you've had it up long enough to roll to additional log files) files with names rather like @40003a8bf1aa33d789ac.s @40003a8c1ee106d5040c.s @40003a8cb8c72584e19c.s @40003a8d8c130207ff24.s @40003a8ee3b217506fec.s @40003a90ad7a24735644.u @40003a90c3cd0b5ae604.u which represent old log files. "Somewhere" is controlled by how you start things. Are you running qmail-send supervised under svscan? Then the log directory is described in the supervise directory. -- David Dyer-Bennet / Welcome to the future! / [EMAIL PROTECTED] SF: http://www.dd-b.net/dd-b/ Minicon: http://www.mnstf.org/minicon/ Photos: http://dd-b.lighthunters.net/
Re: Scalable Mail Solution
The short answer to the question about what would happen if 2.5 million users hit your PIII server at once. In a word: *poof* Bad things happen, little gremlins come out of the wood work and data starts to disappear. Check out: http://www.f5.com (f5 Load balancers are cool, Foundry also makes some good gear, I forget the URL) I highly recommend this! ArrowPoint looks really neat, but I've never used it (http://www.arrowpoint.com/). http://www.nthgencomp.com/ (Terabyte arrays) Very expensive, same with EMC, and Network Appliances. If you haven't budgeted for $1M (or some large portion thereof), then you may want to look at setting something close to the following up: Internet - BIG-IP - First row of MX servers that forward to a large number 2nd level mail servers using fastforward. All cdb files synced across the front row servers, built on a regular time interval (once a minute) from a database. - (use qmtp, qmqp if possible) Second row of MX servers w/ IMAP, pop3, web access, etc. that get user data off of an NFS server (use Maildir) format. Use a quasi-dynamic DNS setup (recommend TinyDNS) to figure out where to look for user Maildirs (username-host.mail.domain.com), and set the TTLs to 5 seconds. - NFS servers - work horses that do nothing but serve Maildir data via NFS w/ big raid drives. http://www.sun.com/ (Servers that won't blow up under that load and Terabyte arrays) http://www.freebsd.org/ Not to start anything, really, but I've run FreeBSD servers w/ an average load of 80-120 for years w/o them crashing or giving me problems (where a Solaris E450 box folded, put its tails between its legs, and walked away sniveling after days of configuration tweaks). Linux: nice. Sun: better. FreeBSD: arrived at Mecca. Motto: Design distributed with large numbers to scale quickly and cheaply. BIG-IP and FreeBSD are your friends. -sc -- Sean Chittenden[EMAIL PROTECTED] C665 A17F 9A56 286C 5CFB 1DEA 9F4F 5CEF 1EDD FAAD PGP signature
_lots_ of repeat messages
hi all- we've been having a rather bizzare problem recently: certain emails sent from hotmail arrive every 5 minutes or so. some unfortunate users are receiving up to 200 copies of certain pieces of mail. originally, i thought this to be a problem with our primary mailserver (or our internet connection), as some of the dups would come directly to our primary mailserver, and some would arrive form the backup (lower preference MX). there was a problem with the primary: tcpserver was consigured to refuse certain remote connections, so it makes perfect sense that lots of mail would bounce to the backup. but that problem was resolved serveral days ago, and now we're still getting flooded from certain hotmail accounts. checklist: 1. these aren't attacks of any sort: every originating address is valis and recognized by the users here. 2. the dns records appear to be correct. 3. output of qmail-showctl(shown below) If there's no obvious reason why this is happening, is there at least an easy way to prevent it on an individual basis? TIA- Dan [dkelley@mx1]$ /var/qmail/bin/qmail-showctl qmail home directory: /var/qmail. user-ext delimiter: -. paternalism (in decimal): 2. silent concurrency limit: 120. subdirectory split: 23. user ids: 500, 501, 502, 0, 503, 504, 505, 506. group ids: 500, 501. badmailfrom: (Default.) Any MAIL FROM is allowed. bouncefrom: (Default.) Bounce user name is MAILER-DAEMON. bouncehost: (Default.) Bounce host name is mx1.ny.otec.com. concurrencylocal: Local concurrency is 30. concurrencyremote: Remote concurrency is 120. databytes: (Default.) SMTP DATA limit is 0 bytes. defaultdomain: Default domain name is ny.otec.com. defaulthost: (Default.) Default host name is mx1.ny.otec.com. doublebouncehost: (Default.) 2B recipient host: mx1.ny.otec.com. doublebounceto: (Default.) 2B recipient user: postmaster. envnoathost: (Default.) Presumed domain name is mx1.ny.otec.com. helohost: (Default.) SMTP client HELO host name is mx1.ny.otec.com. idhost: (Default.) Message-ID host name is mx1.ny.otec.com. localiphost: (Default.) Local IP address becomes mx1.ny.otec.com. locals: Messages for mx1.ny.otec.com are delivered locally. Messages for localhost are delivered locally. Messages for mailhost are delivered locally. Messages for mailhost.otec.com are delivered locally. Messages for mailhost.ny.otec.com are delivered locally. Messages for otec.com are delivered locally. Messages for rbl.com are delivered locally. Messages for mailhost.rbl.com are delivered locally. Messages for ca.otec.com are delivered locally. Messages for ny.otec.com are delivered locally. Messages for cio.genx.net are delivered locally. Messages for analogue.net are delivered locally. Messages for orb.analogue.net are delivered locally. Messages for www.analogue.net are delivered locally. Messages for microgravity.analogue.net are delivered locally. me: My name is mx1.ny.otec.com. percenthack: (Default.) The percent hack is not allowed. plusdomain: Plus domain name is otec.com. qmqpservers: (Default.) No QMQP servers. queuelifetime: (Default.) Message lifetime in the queue is 604800 seconds. rcpthosts: SMTP clients may send messages to recipients at gc.ny.otec.com. SMTP clients may send messages to recipients at gc.ny.otec.net. SMTP clients may send messages to recipients at bos.otec.net. SMTP clients may send messages to recipients at bos.otec.com. SMTP clients may send messages to recipients at mx1.bos.otec.net. SMTP clients may send messages to recipients at mx1.bos.otec.com. SMTP clients may send messages to recipients at mailhost.bos.otec.net. SMTP clients may send messages to recipients at mailhost.bos.otec.com. SMTP clients may send messages to recipients at otec.com. SMTP clients may send messages to recipients at mailhost.otec.com. SMTP clients may send messages to recipients at mx1.ny.otec.com. SMTP clients may send messages to recipients at db1.gc.ny.otec.com. SMTP clients may send messages to recipients at mx2.ny.genx.net. SMTP clients may send messages to recipients at localhost. SMTP clients may send messages to recipients at mailhost.ca.otec.com. SMTP clients may send messages to recipients at mailhost.ny.otec.com. SMTP clients may send messages to recipients at mailhost.rbl.com. SMTP clients may send messages to recipients at mailhost2.ca.otec.com. SMTP clients may send messages to recipients at mailhost2.ny.otec.com. SMTP clients may send messages to recipients at mailhost2.otec.com. SMTP clients may send messages to recipients at mailhost2.rbl.com. SMTP clients may send messages to recipients at ny.otec.com. SMTP clients may send messages to recipients at otec.com. SMTP clients may send messages to recipients at rbl.com. morercpthosts: (Default.) No effect. morercpthosts.cdb: (Default.) No effect. smtpgreeting: (Default.) SMTP greeting: 220 mx1.ny.otec.com. smtproutes: (Default.) No artificial SMTP routes. timeoutconnect: (Default.) SMTP client connection timeout is 60 seconds.
Re: Solved! NOVICE no mailbox here by that name...Feh
On Thursday 01 March 2001 10:27 am, Olivier M. wrote: have you _really_ followed all the steps of the LWQ ? if yes, root would have a mailbox in /var/qmail/alias/Mailbox. Does this directory exists ? The directory /var/qmail/alias exists, with a file called 'Mailbox'. Actually, I found two problems with my setup: 1) I hadn't installed dot-forward, so the attempt to deliver to any mail box died with the mail box didn't exist (it was really that it couldn't find dot-forward). I found the proper error message by trying a '.qmail-default' mailbox. Compiling and then installing dot-forward into /usr/bin/dot-forward fixed it. 2) my links were (naively) pointing the wrong direction from the ~user/Mailbox file to /var/spool/mail/$user, rather than the other direction. Duh. Please show us the qmail users from /etc/passwd. They're in there: alias:x:508:101::/var/qmail/alias:/bin/bash qmaild:x:509:101::/var/qmail:/bin/bash qmaill:x:510:101::/var/qmail:/bin/bash qmailp:x:511:101::/var/qmail:/bin/bash qmailq:x:512:102::/var/qmail:/bin/bash qmailr:x:513:102::/var/qmail:/bin/bash qmails:x:514:102::/var/qmail:/bin/bash Good luck :) Actually, it must be said that this is coming together in less than 12 hours. Remarkable for a full internet capable mail client! Kudos all around! PS: if you followed the INSTALL file of the qmail-1.03 tar.gz, it would work... :) Ah, I followed the wrong document, then...but it never explicitly states that you should install the dot-forward. It only refers to it in the FAQ, and the error message isn't illuminating in this case. Also, the wording of the link text confused me. Not that that takes a great deal of effort these days...;^) Now "all" I need to do is get pop3 working, and I'm set... -- Ken Corey, CTOAtomic Interactive, Ltd.
Re: Where do I find the logs
From: David Dyer-Bennet [EMAIL PROTECTED] Are you logging via multilog? If so, there's a directory somewhere with the file "current" in it that contains the current log (the one being written to right now) and probably (if you've had it up long enough to roll to additional log files) files with names rather like @40003a8bf1aa33d789ac.s @40003a8c1ee106d5040c.s @40003a8cb8c72584e19c.s @40003a8d8c130207ff24.s @40003a8ee3b217506fec.s @40003a90ad7a24735644.u @40003a90c3cd0b5ae604.u which represent old log files. Is there an easy way to convert these filenames to dates etc. (or any sequential coding eg. messages.0, messages.1 etc) for past reference? Manually typing each filename doesn't sound fun. Why does multilog store it this way? Thanks John
Password options
I work for a company that had a mail server operating prior to my starting. It is a Slackware system running qmail-1.03. It is configured with /home/maildir for the users. The rest of the network is NT controlled. Most users are running Eudora Pro for a client. There is limited use of Outlook at the same time. The password request uses the shadow password for authentication. My CTO recently started asking about switching to APOP instead of POP for logins. He started a packet sniffer and pulled the user name and password for the mail transfer. As a result of this he wants a more secure method used. From what I have been finding the only program that works with qmail is checkpw. The drawback I see is that the users password is stored in cleartext in the home directory. Since the CTO does not want either of us to know these due to company policy (currently when a password is changed I activate passwd and have the user enter the new one). Is there a way to use the shadow password, or a program that does not use a cleartext file? I do have a password generator program that can be run to give me an encoded password. I use this to generate a UNIX compatible code to activate the CVS program in the NT environment for development. Thanks in advance, Richard Lyon Network Administrator AbsoluteFuture, Inc. NE 8th Street, Suite 1414 Bellevue, WA 98004
Re: Where do I find the logs
Hi, Is there an easy way to convert these filenames to dates etc. (or any $ ls @* | awk '{ print $1" "$1 }' | tai64nlocal 2001-03-01 01:37:43.797816500.s @40003a9d99f72f8db6b4.s 2001-03-01 12:23:38.729794500.s @40003a9e315a2b7fc7c4.s 2001-03-01 12:40:21.697936500.s @40003a9e35452999aa74.s 2001-03-01 15:01:18.184211500.s @40003a9e564e0afad82c.s 2001-03-01 16:16:05.419022500.s @40003a9e67d518f9c6a4.s 2001-03-01 16:57:46.746902500.s @40003a9e719a2c84d3e4.s 2001-03-01 17:45:59.996518500.u @40003a9e7ce73b65aa64.u 2001-03-01 20:06:52.296409500.s @40003a9e9dec11aad99c.s 2001-03-01 20:09:49.077417500.s @40003a9e9e9d049d4c1c.s The name is the creation time of the file, so in the above case the first file will contain logs older than 2001-03-01 01:37:43 claudio -- Claudio Nieder, Kanalweg 1, CH-8610 Uster, Tel +41 79 357 6743 yahoo messenger: claudionieder aim: claudionieder icq:42315212 mailto:[EMAIL PROTECTED]http://www.claudio.ch
Qmail and time zone
How do I get Qmail to include the proper time zone info in the messages? My sendmail machines have it, but anything coming from Qmail has -. The machines are otherwise identical RH 7.0 boxes. KS KARICO Business Services Toronto, ON Canada http://www.ksbase.com ... Don't ask me; I was hired for my looks.
Re: POP accounts??
On Thu, 01 Mar 2001, [EMAIL PROTECTED] wrote: Hi all! I have been trying to setup pop accounts with no success :( so maybe can help me! I followed this: http://www.whirlycott.com/phil/pop3.html step by step a lot of times, when i send a mail from hotmail to the account that I created I got this: Hi. This is the qmail-send program at siso.com. I'm afraid I wasn't able to deliver your message to the following addresses. This is a permanent error; I've given up. Sorry it didn't work out. [EMAIL PROTECTED]: Sorry. Although I'm listed as a best-preference MX or A for that host, it isn't in my control/locals file, so I don't treat it as local. (#5.4.6) --- Below this line is a copy of the message. also I put as my gid uid 110 because I saw that i some file of my RH6.2 box, how I can verify that this ids are correct? I don't know what to do or where I can found more info solve this trouble, Thank you in advance, Rocael. Get free email and a permanent address at http://www.netaddress.com/?N=1 `echo 'e-macro.com' /var/qmail/control/locals` `echo 'e-macro.com' /var/qmail/control/locals` -- *** Matthew H Patterson Unix Systems Administrator National Support Center, LLC Naperville, Illinois, USA ***
Re: Password options
On Thu, 01 Mar 2001, Richard Lyon wrote: I work for a company that had a mail server operating prior to my starting. It is a Slackware system running qmail-1.03. It is configured with /home/maildir for the users. The rest of the network is NT controlled. Most users are running Eudora Pro for a client. There is limited use of Outlook at the same time. The password request uses the shadow password for authentication. My CTO recently started asking about switching to APOP instead of POP for logins. He started a packet sniffer and pulled the user name and password for the mail transfer. As a result of this he wants a more secure method used. From what I have been finding the only program that works with qmail is checkpw. The drawback I see is that the users password is stored in cleartext in the home directory. Since the CTO does not want either of us to know these due to company policy (currently when a password is changed I activate passwd and have the user enter the new one). Is there a way to use the shadow password, or a program that does not use a cleartext file? I do have a password generator program that can be run to give me an encoded password. I use this to generate a UNIX compatible code to activate the CVS program in the NT environment for development. Thanks in advance, Richard Lyon Network Administrator AbsoluteFuture, Inc. NE 8th Street, Suite 1414 Bellevue, WA 98004 Go to www.qmail.org and search through the document for apop. You should find 2 items, the second of which sounds like what you want. -- *** Matthew H Patterson Unix Systems Administrator National Support Center, LLC Naperville, Illinois, USA ***
various timeouts
Greetings, Occasionally our inbound mail servers need a reboot after patching and sometimes there is lots of mail that needs to find its way home to the sender due to bounces. Sometimes those remote sites are either having difficulties or are so swamped that nothing much gets to them. I'd like to cut down on the time the server spends waiting on them. There seems to be 3 control files to do this: timeoutsmtpd which is amt of time for each new *buffer* of data from a remote SMTP client. (default 20 minutes) timeoutconnect which is how long qmail-remote waits for a connection (default 1 minute) timeoutremote which appears to be like timeoutsmtpd but for each response, not each buffer (also 20minute default). Seems like a non-responsive server is fine at 1 minute, but 20 minutes seems to be an excessive amount of time to hold up one of my concurrent connects for a buffer of data or just a reply. Would it be safe to lower this value to say also 1 minute? I don't want to mess with the defaults if this would be a bad thing to do, but I cannot think of why it would be. Thanks, -- Michael Boyiazis [EMAIL PROTECTED] Mail Architect, NetZero, Inc.
Re: Where do I find the logs
"John P" [EMAIL PROTECTED] wrote: Manually typing each filename doesn't sound fun. Use a shell that implements filename completion. Why does multilog store it this way? Guaranteed unique and self documenting. -Dave
Re: POP accounts??
Hi, `echo 'e-macro.com' /var/qmail/control/locals` `echo 'e-macro.com' /var/qmail/control/locals` I suppose one of these two lines should read echo 'e-macro.com' /var/qmail/control/rcpthosts claudio -- Claudio Nieder, Kanalweg 1, CH-8610 Uster, Tel +41 79 357 6743 yahoo messenger: claudionieder aim: claudionieder icq:42315212 mailto:[EMAIL PROTECTED]http://www.claudio.ch
Re: Lost the Battle
Dennis, I'm strongly advice you to keep fighting for your qmail as a frontend out to internet. IDG use notes all over the world, and of course from time to time there is problems related to third-party relaying. This is with R5 peace of cake to take care of, but it has to be done since it's not enabled as default. At IDG in norway, we use qmail as a frontend. One of the reasons is that IDG New Media is an ISP, and we do need the flexibility that qmail and it's modularity offers. Using qmail as the frontend, relaying for the notes server works flawlessly through the firewall only allowing the qmailservers through the fw. hope this gives you new fighting spirit ;-) regards -- IDG New MediaEinar Bordewich Development Manager Phone: +47 2336 1420 E-Mail: eibo(at)newmedia.no Lat: 59.91144 N Lon: 10.76097 E - Original Message - From: "dennis" [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Thursday, March 01, 2001 12:44 AM Subject: Lost the Battle Hi all... For the past 3 weeks I have been fighting the battle to move our dieing email server from a proprietary solution to qmail. I had devoted 3 months of research and development (with a lot of help from this list) to making sure that the qmail server has all the features required by our organization. My nightmare began when management announced a new business development manager. My qmail project, only 1 week away from implementation, was canned, we are now moving to Lotus Notes. I'd like to thank everyone for there help over the 3 months, without you guys, I don't think I could have even taken the project this far. Regards Dennis
procmail fix (or replacement?)
Running qmail-1.03 and procmail 3.15.1 under Solaris 2.6 Sparc. When I try to manually run the qmail-procmail script (which calls preline procmail) I get a preline error: preline: usage: preline cmd [ arg ... ] The reason I'm trying this manually is to diagnose why it isn't working from .qmail. I've tried various iterations of cat'ing a real qmail message and just text, but this doesn't appear to help (i.e. cat message | preline procmail gives the same thing). Anyone have an idea on this, or a replacement for procmail? ...Chris
Qmail and time zone
Thursday March 01 2001 15:15, Matthew Patterson wrote to Kari Suomela: How do I get Qmail to include the proper time zone info in the messages? My sendmail machines have it, but anything coming from Qmail has -. MP Is your machine's system time set on GMT or local time? If it is MP on MP GMT, it shouldn't show an offset. If they are on local time, make MP sure Makes no difference. I've tried setting it to GMT and local time, as well as numerous time zone options. They all work fine with sendmail, but qmail ignores them. MP that your machine knows that by checking the output of date and MP seeing if there is a timezone listed. Yes, it's there. KS
Re: Qmail and time zone
On Thu, Mar 01, 2001 at 03:21:43PM -0500, Kari Suomela wrote: How do I get Qmail to include the proper time zone info in the messages? My sendmail machines have it, but anything coming from Qmail has -. The machines are otherwise identical RH 7.0 boxes. Are you talking about the Received: or the Date: header? Greetz, Peter.
Re: Qmail and time zone
[EMAIL PROTECTED] (Kari Suomela) writes: How do I get Qmail to include the proper time zone info in the messages? My sendmail machines have it, but anything coming from Qmail has -. The machines are otherwise identical RH 7.0 boxes. Basically, you won't. Qmail is putting in the time correctly, but it's stating it in GMT. This is actually more useful; mail often crosses timezone boundaries, and having the received headers *all* use GMT would make it much easier to follow. The timezone information is only available in rather system-dependent ways through the standard C library, and Dan has chosen to completely avoid the standard C library for security and performance reasons. -- David Dyer-Bennet / Welcome to the future! / [EMAIL PROTECTED] SF: http://www.dd-b.net/dd-b/ Minicon: http://www.mnstf.org/minicon/ Photos: http://dd-b.lighthunters.net/
Re: Password options
On Thu, Mar 01, 2001 at 12:37:37PM -0800, Richard Lyon wrote: [snip] cleartext file? I do have a password generator program that can be run to give me an encoded password. I use this to generate a UNIX compatible code to activate the CVS program in the NT environment for development. Well, the choice is cleartext over the network, or cleartext on the server. Plain POP3 offers no other choices. What you probably want is pop3 with normal authentication (from shadow), over SSL. www.qmail.org can help you out here. Greetz, Peter.
Re: Qmail and time zone
On Thu, Mar 01, 2001 at 03:57:32PM -0600, David Dyer-Bennet mumbled: [EMAIL PROTECTED] (Kari Suomela) writes: How do I get Qmail to include the proper time zone info in the messages? My sendmail machines have it, but anything coming from Qmail has -. The machines are otherwise identical RH 7.0 boxes. Basically, you won't. Qmail is putting in the time correctly, but it's stating it in GMT. This is actually more useful; mail often Actually that's not quit true. On my OpenBSD system I set my timezone in the kernel configuration. If you look in the headers of this mail you will see I have GMT+1 (MET). Not sure how, if possible, you set the timezone with a "hard" value on a Linux system. /Martin
Re: Qmail and time zone
Aargh! Nevermind, I just realized why I did set a hardvalue in the kernel config. I did this so that qmail would show the time as GMT and not MET ie. qmail used the MET time which is GMT+1 but it still wrote it as -. When setting a hard value of -60 in the kernel the error was fixed. Sorry about confusing things a bit... /M On Thu, Mar 01, 2001 at 11:44:50PM +0100, Martin Akesson mumbled: On Thu, Mar 01, 2001 at 03:57:32PM -0600, David Dyer-Bennet mumbled: [EMAIL PROTECTED] (Kari Suomela) writes: How do I get Qmail to include the proper time zone info in the messages? My sendmail machines have it, but anything coming from Qmail has -. The machines are otherwise identical RH 7.0 boxes. Basically, you won't. Qmail is putting in the time correctly, but it's stating it in GMT. This is actually more useful; mail often Actually that's not quit true. On my OpenBSD system I set my timezone in the kernel configuration. If you look in the headers of this mail you will see I have GMT+1 (MET). Not sure how, if possible, you set the timezone with a "hard" value on a Linux system. /Martin
Re: Qmail and time zone
On Thu, Mar 01, 2001 at 11:44:50PM +0100, Martin Akesson wrote: [snip] Actually that's not quit true. On my OpenBSD system I set my timezone in the kernel configuration. If you look in the headers of this mail you will see I have GMT+1 (MET). That's not the kernel configuration. And you are confusing stuff: the Date header can very well be in your own timezone. Any machine writing Received headers in something not GMT is confused, however. Any user requesting so is confused, too. Not sure how, if possible, you set the timezone with a "hard" value on a Linux system. Same as on OpenBSD. It's in the libc. Greetz, Peter.
Qmail and time zone
Thursday March 01 2001 15:57, David Dyer-Bennet wrote to All: How do I get Qmail to include the proper time zone info in the messages? My sendmail machines have it, but anything coming from Qmail has -. The machines are otherwise identical RH 7.0 boxes. DB Basically, you won't. Qmail is putting in the time correctly, but DB it's stating it in GMT. This is actually more useful; mail often DB crosses timezone boundaries, and having the received headers *all* DB use This is very annoying! I've spent lots of time training the users to configure their clients properly, and now my qmail server sends out garbage, which defeats the purpose. :( DB The timezone information is only available in rather DB system-dependent DB ways through the standard C library, and Dan has chosen to DB completely DB avoid the standard C library for security and performance reasons. Whatever that means. Sendmail is doing it ok, so it can't be that hard to implement. KS
Re: Qmail and time zone
On Thu, Mar 01, 2001 at 05:08:43PM -0500, Kari Suomela mumbled: DB Basically, you won't. Qmail is putting in the time correctly, but DB it's stating it in GMT. This is actually more useful; mail often DB crosses timezone boundaries, and having the received headers *all* DB use This is very annoying! I've spent lots of time training the users to configure their clients properly, and now my qmail server sends out garbage, which defeats the purpose. :( I dont see where the problem is. The client can only set the 'Date:' headers anyway. The 'Received:' headers on the other hand are set by the MDA and should all use the same timezone, GMT. The users will never see these headers anyway and most ISPs will only be happy with this configuration, atleast I know I would be. /M
Re: Qmail and time zone
On Thu, Mar 01, 2001 at 05:08:43PM -0500, Kari Suomela wrote: Thursday March 01 2001 15:57, David Dyer-Bennet wrote to All: How do I get Qmail to include the proper time zone info in the messages? My sendmail machines have it, but anything coming from Qmail has -. The machines are otherwise identical RH 7.0 boxes. DB Basically, you won't. Qmail is putting in the time correctly, but DB it's stating it in GMT. This is actually more useful; mail often DB crosses timezone boundaries, and having the received headers *all* DB use This is very annoying! I've spent lots of time training the users to configure their clients properly, and now my qmail server sends out garbage, which defeats the purpose. :( You have users who read Recieved: headers regularly? Why? At any rate, it really ticks me off when SMTP servers use local timezone values in Recieved: headers -- try tracing a message that got to you from Finland across a good five or six servers that _all_ use local timezones, doing the GMT math by hand, to see how long the message took to get to you. No fscking fun at _all_. Using GMT in Recieved: headers means that it's _very_ easy to find out exactly how long it took to get to you, and where any delays might have been (and what else is the date in the Recieved: header for?). Doing the simple math to convert it all to your local timezone should be trivial, you only need to do it once. DB The timezone information is only available in rather DB system-dependent DB ways through the standard C library, and Dan has chosen to DB completely DB avoid the standard C library for security and performance reasons. Whatever that means. Sendmail is doing it ok, so it can't be that hard to implement. KS I imagine that it's trickier than you think if you're avoiding standard C libraries, and most sysadmins (which is who I thought Recieved: headers were for) seem to prefer GMT anyway Is your problem actually with the Recieved: headers, or 'Date:'? -- Greg White Those who make peaceful revolution impossible will make violent revolution inevitable. -- John F. Kennedy
Thanks Mailing List Problems!
Thanks to the list, I've built my first SMTP server So far things are looking good. I do have one problem with receiving mail from any mailing list. It simply bounces!! Not sure where to look on this one. The setup here is qmail configured as an SMTP gateway for an entire domain, pullmail running on NT to inject mail from gateway. While looking at the headers, all emails from the different mailing lists have the To: field - not too surprised about that. What I need to know is, which field should I set pullmail to look for to handle mailing lists?? Am I thinking correctly?? Thanks again! qmail is awesome... .mark "Windows 95/98 /n./ 32 bit extensions and a graphical shell for a 16 bit patch to an 8 bit operating system originally coded for a 4 bit microprocessor, written by a 2 bit company that can't stand 1 bit of competition." use Disclaimer; my $opinion_only;
Re: Qmail and time zone
On Thu, 01 Mar 2001 17:08:43 EST, wrote: This is very annoying! I've spent lots of time training the users to configure their clients properly, and now my qmail server sends out garbage, which defeats the purpose. :( What did you train your users to do? They should be putting in a correct Date header with the right timezone information---if they aren't retrain them. Most users won't ever look at the rest of the headers such as Received and it is more appropriate that they are in UTC/GMT. Andy
Re: relay-ctrl and qmail (it's finally working!)
Thanks guys and gals(?)! This is making my life much easier.
Qmail and time zone
Friday March 02 2001 00:22, Martin Akesson wrote to All: This is very annoying! I've spent lots of time training the users to configure their clients properly, and now my qmail server sends out garbage, which defeats the purpose. :( MA I dont see where the problem is. The client can only set the MA 'Date:' MA headers anyway. The 'Received:' headers on the other hand are set MA by Well, something isn't right. If a message arrives directly from my sendmail server, the time shows the local time correctly, even though the hardware clcok is in GMT. From a qmail server, the time zone shows -, which makes no sense. This does not apply to user to user mail, since those messages get the time zone (mis)configuration from the users' clients. However, sqwebmail and others, which send messages directly from the server, are affected. Also all notification messages from various utilities to myself (admin) have the - time zone and get sorted whoknowswhere in my inbox. MA the MDA and should all use the same timezone, GMT. The users will MA never see these headers anyway and most ISPs will only be happy MA with The headers may now show, but when you "reply" the quote header shows the time and TZ of the original message - wrong in these cases. KS KARICO Business Services Toronto, ON Canada http://www.ksbase.com ... I demand that you ignore that man behind the curtain!
[vmailmgr] email to virtual user bounces
Qmail is installed, and properly receives email to users with full accounts and Mailbox files in their $HOME. I installed vmailmgr and want to run virtualdomains (multiple domains, multiple IPs, multiple virtual users per domain). PROBLEM: Outside mail to virtual aliases bounces saying "Sorry, no mailbox here by that name." INFO: I created /var/qmail/control/virtualdomains with: .mydomain.com:aw I did the following: useradd aw su - aw vsetup vadduser herman edit /etc/inetd.conf and add pop-3 stream tcp nowait root /var/qmail/bin/qmail-popup qmail-popup mydomain.com /usr/local/bin/checkvpw /var/qmail/bin/qmail-pop3d Mailbox restart inetd (using init.d script) restart qmail (using init.d script) __ Do You Yahoo!? Get email at your own domain with Yahoo! Mail. http://personal.mail.yahoo.com/
(no subject)
unsubscribe
Re: qmail 2.0 exploit
I get the feeling this would've already been well and truly covered on this list, but just out of curiosity I tried it anyway. On slackware 7.1 installed in vmware under win2k pro and slackware 7.1 on 2 other 'real' machines, all it did was chew cpu and cause qmail-smtpd to chew some cpu as well. 'top' showed about 48 in the %CPU column for both. I let it run for about 15 minutes - as far as I could tell from the output of 'free', swap wasn't affected in the slightest. Mail still worked fine - both 'real' machines host around 800 vhosts, each with their own virtual mail domains. It's a free hosting setup for computer gamers in Australia - they are generally very quick to complain when something goes wrong ;) but not a peep from them while I was doing those quick tests What is this qmail version 2.0 that securityfocus.com claims there is an explot for? Am I missing something, or are they? Being that I have better things to do than to try to screw up my mail server, has anyone tried this claimed explot? What really happens? --Pete
Re: qmail 2.0 exploit
actually for what it's worth, if you follow the directions in INSTALL you should generally hit the 'read FAQ' before getting down to the section of INSTALL that says to use inetd (for upgrading from sendmail):) FAQ pretty much points you at tcpserver - Original Message - From: "Ian Lance Taylor" [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Thursday, March 01, 2001 2:59 PM Subject: Re: qmail 2.0 exploit Peter Cavender [EMAIL PROTECTED] writes: What is this qmail version 2.0 that securityfocus.com claims there is an explot for? Am I missing something, or are they? Being that I have better things to do than to try to screw up my mail server, has anyone tried this claimed explot? What really happens? It depends upon how you run qmail-smtpd. There are several variables. If you run qmail-smtpd directly from inetd.conf, as suggested in the INSTALL file distributed with qmail-1.03, then there is a pretty good chance that the instance of qmail-smtpd being attacked will grow to eat of all of memory. What happens then depends upon your OS. On GNU/Linux, a random process will be killed; there is a pretty good chance that the random process will be the large qmail-smtpd. Alternatively, a careful attacker who really understands your system can create several fairly large qmail-smtpd processes and significantly increase the chance that the random process which is killed will be something other than qmail-smtpd. In this scenario this attack can indeed be a denial of service. If you run qmail-smtpd as suggested in Life With Qmail, then you are not vulnerable to this attack, because qmail-smtpd is run under the softlimit program to limit the amount of memory it will allocate. (This does not affect the size of the mail messages it can accept, as qmail-smtpd does not store mail messages in memory.) Ian
Re: [vmailmgr] virtual alias can't receive mail SOLVED
Ah, after creating virtualdomains, I needed to remove the domain from control/locals now it's working. --- Joe Janitor [EMAIL PROTECTED] wrote: Qmail is installed, and properly receives email to users with full accounts and Mailbox files in their $HOME. I installed vmailmgr and want to run virtualdomains (multiple domains, multiple IPs, multiple virtual users per domain). PROBLEM: Outside mail to virtual aliases bounces saying "Sorry, no mailbox here by that name." INFO: I created /var/qmail/control/virtualdomains with: .mydomain.com:aw I did the following: useradd aw su - aw vsetup vadduser herman edit /etc/inetd.conf and add pop-3 stream tcp nowait root /var/qmail/bin/qmail-popup qmail-popup mydomain.com /usr/local/bin/checkvpw /var/qmail/bin/qmail-pop3d Mailbox restart inetd (using init.d script) restart qmail (using init.d script) __ Do You Yahoo!? Get email at your own domain with Yahoo! Mail. http://personal.mail.yahoo.com/ __ Do You Yahoo!? Get email at your own domain with Yahoo! Mail. http://personal.mail.yahoo.com/
Qmail and time zone
Friday March 02 2001 00:22, Martin Akesson wrote to All: MA I dont see where the problem is. The client can only set the MA 'Date:' MA headers anyway. The 'Received:' headers on the other hand are set MA by So, pls explain this, and tell me, how I can get the received messages to display the correct time: 1. Message from a qmail server: === Cut === .INTL 1:140/22 1:140/22 .REPLYADDR [EMAIL PROTECTED] .REPLYTO 1:140/22.10 UUCP .MSGID: [EMAIL PROTECTED] 95ee3556 .PID: SoupGate-OS/2 v1.05 .Return-Path: [EMAIL PROTECTED] .Delivered-To: [EMAIL PROTECTED] .Received: (qmail 3425 invoked by uid 520); 2 Mar 2001 01:03:16 - .Delivered-To: [EMAIL PROTECTED] .Received: (qmail 3423 invoked by uid 0); 2 Mar 2001 01:03:16 - .Date: 2 Mar 2001 01:03:16 - .Message-ID: [EMAIL PROTECTED] .From: [EMAIL PROTECTED] .To: [EMAIL PROTECTED] .FMPT 10 wtmp begins Thu Mar 1 12:06:49 2001 === Cut === 2. Message from a sendmail server: Ä .INTL 1:140/22 1:140/22 .REPLYADDR [EMAIL PROTECTED] .REPLYTO 1:140/22.10 UUCP .MSGID: [EMAIL PROTECTED] 4f1d8db8 .PID: SoupGate-OS/2 v1.05 .Return-Path: [EMAIL PROTECTED] .Delivered-To: [EMAIL PROTECTED] .Received: (qmail 3415 invoked by uid 520); 2 Mar 2001 01:02:57 - .Delivered-To: [EMAIL PROTECTED] .Received: (qmail 3413 invoked from network); 2 Mar 2001 01:02:57 - .Received: from kb1.ksbase.com ([EMAIL PROTECTED]) by kb3.ksbase.com with . SMTP; 2 Mar 2001 01:02:57 - .Received: (from root@localhost) by kb1.ksbase.com (8.9.3/8.8.7) id UAA01101 . for [EMAIL PROTECTED]; Thu, 1 Mar 2001 20:02:56 -0500 .Date: Thu, 1 Mar 2001 20:02:56 -0500 .From: root [EMAIL PROTECTED] .Message-Id: [EMAIL PROTECTED] .To: [EMAIL PROTECTED] .FMPT 10 From: [EMAIL PROTECTED] wtmp begins Thu Mar 1 09:08:51 2001 === Cut === Sendmail inserts the correct TZ on the "Date" line, but qmail does not! KS
Qmail and time zone
Thursday March 01 2001 15:37, Greg White wrote to All: GW it really ticks me off when SMTP servers use local timezone values GW in GW Recieved: headers -- try tracing a message that got to you from I've only seen "Received" headers. :) The sender's and recipient's local times are important. If the mail server ignores the time zone and time stamps everything in GMT, you really have to do some calculating! If there is a proper Date header, a proper email client will convert the time to local time accordingly. KS
Re: Qmail and time zone
Martin Akesson [EMAIL PROTECTED] writes on 1 March 2001 at 23:44:50 +0100 On Thu, Mar 01, 2001 at 03:57:32PM -0600, David Dyer-Bennet mumbled: [EMAIL PROTECTED] (Kari Suomela) writes: How do I get Qmail to include the proper time zone info in the messages? My sendmail machines have it, but anything coming from Qmail has -. The machines are otherwise identical RH 7.0 boxes. Basically, you won't. Qmail is putting in the time correctly, but it's stating it in GMT. This is actually more useful; mail often Actually that's not quit true. On my OpenBSD system I set my timezone in the kernel configuration. If you look in the headers of this mail you will see I have GMT+1 (MET). Not sure how, if possible, you set the timezone with a "hard" value on a Linux system. The date line is zone +1, but the received line is zone 0, which is exactly what I'd expect (the date line being put in by the MUA, not qmail). Just like in my headers (except it's be -6 here). -- David Dyer-Bennet / Welcome to the future! / [EMAIL PROTECTED] SF: http://www.dd-b.net/dd-b/ Minicon: http://www.mnstf.org/minicon/ Photos: http://dd-b.lighthunters.net/
Re: Qmail and time zone
Kari Suomela [EMAIL PROTECTED] wrote: How do I get Qmail to include the proper time zone info in the messages? My sendmail machines have it, but anything coming from Qmail has -. The machines are otherwise identical RH 7.0 boxes. In Received: headers? - is the proper time zone. In the Date: field? Have your MUA insert the date field. qmail won't touch it then. BTW, it's "qmail", not "Qmail". Charles -- --- Charles Cazabon[EMAIL PROTECTED] GPL'ed software available at: http://www.qcc.sk.ca/~charlesc/software/ Any opinions expressed are just that -- my opinions. ---
OpenBSD 2.8 and sqwebmail
Hi, I'm using vpopmail with qmail and sqwebmail on OpenBSD 2.8. I've configured everything according to the scripts on http://www.inter7.com/vpopmail/Qmail-FreeBSD.txtand http://matt.simerson.net/computing/qmail.toaster.shtml. Sqwebmail seems to run properly, except it's not talking to vmailmgr to authenticate. Smtp, pop3, virtual domains all work just fine. Any ideas ? TIA, - Chris
RE: Qmail and time zone
What are you using to send these test messages? MA I dont see where the problem is. The client can only set the MA 'Date:' MA headers anyway. The 'Received:' headers on the other hand are set MA by So, pls explain this, and tell me, how I can get the received messages to display the correct time: 1. Message from a qmail server: ... Sendmail inserts the correct TZ on the "Date" line, but qmail does not! KS
Qmail and time zone
Thursday March 01 2001 19:23, Chris Bolt wrote to All: CB What are you using to send these test messages? These examples were both sent by: 'last kari | mail my@address' It'll be different, if I use a client, which inserts the time zone. KS
Re: Qmail and time zone
[EMAIL PROTECTED] (Kari Suomela) writes: Thursday March 01 2001 15:57, David Dyer-Bennet wrote to All: How do I get Qmail to include the proper time zone info in the messages? My sendmail machines have it, but anything coming from Qmail has -. The machines are otherwise identical RH 7.0 boxes. DB Basically, you won't. Qmail is putting in the time correctly, but DB it's stating it in GMT. This is actually more useful; mail often DB crosses timezone boundaries, and having the received headers *all* DB use This is very annoying! I've spent lots of time training the users to configure their clients properly, and now my qmail server sends out garbage, which defeats the purpose. :( It's not garbage; it's correct. It just doesn't use the local timezone. In the list of received headers, where a message often passes through servers in different timezones, having everything in GMT is *more* useful IMHO. DB The timezone information is only available in rather DB system-dependent DB ways through the standard C library, and Dan has chosen to DB completely DB avoid the standard C library for security and performance reasons. Whatever that means. Sendmail is doing it ok, so it can't be that hard to implement. It means that it would either compromise the security of qmail, or else require lots of extra code to handle various systems local conventions, to change this behavior. It's not hard to do; it IS hard to do *well*. -- David Dyer-Bennet / Welcome to the future! / [EMAIL PROTECTED] SF: http://www.dd-b.net/dd-b/ Minicon: http://www.mnstf.org/minicon/ Photos: http://dd-b.lighthunters.net/
Re: Qmail and time zone
[EMAIL PROTECTED] (Kari Suomela) writes: Thursday March 01 2001 19:23, Chris Bolt wrote to All: CB What are you using to send these test messages? These examples were both sent by: 'last kari | mail my@address' It'll be different, if I use a client, which inserts the time zone. Exactly. For that matter, it'd be different if you viewed the messages through a client that displayed times in headers in current timezone, too. -- David Dyer-Bennet / Welcome to the future! / [EMAIL PROTECTED] SF: http://www.dd-b.net/dd-b/ Minicon: http://www.mnstf.org/minicon/ Photos: http://dd-b.lighthunters.net/
Qmail and time zone
Thursday March 01 2001 21:08, David Dyer-Bennet wrote to All: It'll be different, if I use a client, which inserts the time zone. DB Exactly. For that matter, it'd be different if you viewed the DB messages through a client that displayed times in headers in DB current DB timezone, too. No, it's not! That's how I noticed it. Someone was blaming my client for it, but the problem is the same with all of them. I have tested it with various Netscapes, Outlook 98, Outlook 2000, Outlook Express, PMMail Pro 2000, Sqwebmail and Adjewebmail. KS KARICO Business Services Toronto, ON Canada http://www.ksbase.com ... Scientific Creationism - the perfect oxymoron
Re: Lost the Battle
At 03:24 PM 01-03-2001 +, Mark Delany wrote: On Thu, Mar 01, 2001 at 10:19:34AM -0500, Dave Sill wrote: My qmail project, only 1 week away from implementation, was canned, we are now moving to Lotus Notes. Well, it's not a total loss. At least you learned something about qmail. And maybe you can convince your company to use qmail as your email relay server on the firewall. Use Notes internally in a protected environment and only expose qmail to that nasty world out there. Yah, that's very similar to what I'm doing. qmail on the firewall. qmail doesn't do a lot of what Notes does, so if they really want those stuff, then yeah Notes could be a good choice. Thing is I'm not sure that qmail would really protect mailservers behind the firewall from the usual buffer overflow stuff. For example, if an attacker sends a mail with a huge GMT field, will it still go through qmail unfiltered? I get the impression that qmail does very little reprocessing of the message. Of course you can't protect mailservers totally, but I figure one could make a pretty good try with the obvious cases (typical buffer overflows, validation checks etc). Maybe I could make a filtering module and stick it in after qmail-smtpd or something. Cheerio, Link.
Re: Qmail and time zone
[EMAIL PROTECTED] (Kari Suomela) writes: Thursday March 01 2001 21:08, David Dyer-Bennet wrote to All: It'll be different, if I use a client, which inserts the time zone. DB Exactly. For that matter, it'd be different if you viewed the DB messages through a client that displayed times in headers in DB current DB timezone, too. No, it's not! That's how I noticed it. Someone was blaming my client for it, but the problem is the same with all of them. I have tested it with various Netscapes, Outlook 98, Outlook 2000, Outlook Express, PMMail Pro 2000, Sqwebmail and Adjewebmail. That's because you didn't use a client which adjusts header timestamps, though. -- David Dyer-Bennet / Welcome to the future! / [EMAIL PROTECTED] SF: http://www.dd-b.net/dd-b/ Minicon: http://www.mnstf.org/minicon/ Photos: http://dd-b.lighthunters.net/
Problem receiving mail.
Below is the output from /var/log/qmail/current I have followed Dave Sill's tutorial to install qmail, what could I have missed in order to get this error? Thanks... @40003a9f25fa002e499c info msg 131091: bytes 753 from [EMAIL PROTECTED] qp 1705 uid 501 @40003a9f25fa00b7bd1c starting delivery 2: msg 131091 to local [EMAIL PROTECTED] @40003a9f25fa00bd3b5c status: local 2/10 remote 0/20 @40003a9f25fa0203869c delivery 2: failure: This_message_is_looping:_it_already_has_my_Delivered-To_line._(#5.4.6)/ @40003a9f25fa02136904 status: local 1/10 remote 0/20 @40003a9f25fa0323cb7c bounce msg 131091 qp 1708 @40003a9f25fa032a2c4c end msg 131091 @40003a9f25fa033bb494 new msg 131094 @40003a9f25fa0342b974 info msg 131094: bytes 1328 from qp 1708 uid 507 @40003a9f25fa03d31e4c starting delivery 3: msg 131094 to remote [EMAIL PROTECTED] @40003a9f25fa03d85254 status: local 1/10 remote 1/20 @40003a9f25fa0497f8d4 delivery 1: success: did_0+1+0/qp_1705/ @40003a9f25fa04a0fd6c status: local 0/10 remote 1/20 @40003a9f25fa04aae87c end msg 131090 @40003a9f25fe1d762704 delivery 3: success: 202.21.11.98_accepted_message./Remote_host_said:_250_ok_983508323_qp_15414/ @40003a9f25fe1d813af4 status: local 0/10 remote 0/20 @40003a9f25fe1d8a4374 end msg 131094
Re: Qmail and time zone
On Thu, Mar 01, 2001 at 09:43:07PM -0500, Kari Suomela wrote: These examples were both sent by: 'last kari | mail my@address' I don't know about RedHat but I have added the following line in /etc/mail.rc of my non-RedHat linux system: set sendmail=/var/qmail/bin/datemail It's explained in /var/qmail/doc/FAQ, paragraph 6.1.
RE: Where do I find the logs
Thanks, I get them now. Is it possible to log the qmail-pop3d in the same way? Andrew -Original Message- From: David Dyer-Bennet [mailto:[EMAIL PROTECTED]] Sent: Thursday, March 01, 2001 9:39 PM To: Qmail Subject: Re: Where do I find the logs "Andrew Wafula" [EMAIL PROTECTED] writes: Hi, I did a migration from Sendmail to Qmail and now I don't know where to find the logs. previously they were in /var/log/maillog but now it seems they are split up under the /var/log/qmail directory (or so I think). I need to look at the logs from time to time but i just cant seem to find them. Are you logging via multilog? If so, there's a directory somewhere with the file "current" in it that contains the current log (the one being written to right now) and probably (if you've had it up long enough to roll to additional log files) files with names rather like @40003a8bf1aa33d789ac.s @40003a8c1ee106d5040c.s @40003a8cb8c72584e19c.s @40003a8d8c130207ff24.s @40003a8ee3b217506fec.s @40003a90ad7a24735644.u @40003a90c3cd0b5ae604.u which represent old log files. "Somewhere" is controlled by how you start things. Are you running qmail-send supervised under svscan? Then the log directory is described in the supervise directory. -- David Dyer-Bennet / Welcome to the future! / [EMAIL PROTECTED] SF: http://www.dd-b.net/dd-b/ Minicon: http://www.mnstf.org/minicon/ Photos: http://dd-b.lighthunters.net/
qmail-pop3d problem
Hi All, I have inherited a box that is running Slackware with QMail. Qmail is setup to use tcpserver and rblsmtpd. The box is masquerading an internal address as well. If I connect to the internal interface (192.168.1) (1st ethernet card) via telnet on port 110 I get an immediate response (OK). If I connect to the external interface (2nd ethernet card) I get a long delay (40 sec +) before I get the OK prompt. If I connect from a machine that is one hop away on the internal network to the 192.168.1 ethernet card I get the 40 sec + delay). Once the connection happens the system is very quick. The problem I am having is that some mail clients are timing out when connection to the pop service. Due to the fact I inherited the box recently I am not aware of patch levels but the versions installed on the box are as follows. Qmail 1.03 rblsmtpd 0.70 tcpserver 0.84 daemontools 0.70 I think it may be some sort of network lookup that is being done but I don't really know enough about the box to know where to look. The box is not under resourced at all as it has more memory that it needs and the processors never go over 10%. Any ideas or pointers at reading material would be appreciated. Cheers Duncan
Re: qmail 2.0 exploit
"Jason Brooke" [EMAIL PROTECTED] writes: If you run qmail-smtpd directly from inetd.conf, as suggested in the INSTALL file distributed with qmail-1.03, then there is a pretty good chance that the instance of qmail-smtpd being attacked will grow to eat of all of memory. What happens then depends upon your OS. On GNU/Linux, a random process will be killed; there is a pretty good chance that the random process will be the large qmail-smtpd. Alternatively, a careful attacker who really understands your system can create several fairly large qmail-smtpd processes and significantly increase the chance that the random process which is killed will be something other than qmail-smtpd. In this scenario this attack can indeed be a denial of service. actually for what it's worth, if you follow the directions in INSTALL you should generally hit the 'read FAQ' before getting down to the section of INSTALL that says to use inetd (for upgrading from sendmail):) FAQ pretty much points you at tcpserver I would say that that is a mere quibble, except that it isn't even that. It isn't tcpserver which prevents qmail-smtpd from growing without bound; it is softlimit. softlimit isn't mentioned in the INSTALL file or the FAQ which is distributed with qmail 1.03. The daemontools are mentioned, but not in the context of resource limits. Obviously there isn't anything wrong with qmail. And obviously these bug reports are highly misleading in implying that there is a bug which needs to be fixed in qmail. But I do think that the bug reports have a point: if you install qmail-1.03 according to a reasonable reading of the instructions which come with the tar file, your system may be vulnerable to a theoretical denial of service attack. The fact that other people tell you to install qmail in a different way is interesting, but does not change the fact that qmail-1.03 comes with installation instructions which at least some people will naturally follow. I certainly did in my first qmail installation. Dan could fix this by releasing qmail-1.03.1 with different installation instructions. Of course, if he did, some people would take that to be an admission that there actually is a security hole in qmail-1.03. Ian