smtpfwdd[352]: can't open semaphore file in /var/smtpd/mqueue (Permission denied) - bye!
The Subject of this email is the error i get at startup after i hit ctrl+c, when i reboot my system(freebsd4.3rc2)it hangs when trying to start qmail it looks like this: [1] 220 qmail status: loal 0/10 remote 0/20 at this point it hangs and will go no further until i hit ctrl+c when that is done i get the: smtpfwdd[352]: can't open semaphore file in /var/smtpd/mqueue (Permission denied) - bye! This is my first time installing qmail and it has been a harrowing experience :) Any help would be most appreciated, Jon
Re: qmail-queue and custom reject message
On Sat, Jul 28, 2001 at 06:57:33AM -0400, Philip Mak wrote: On Sat, 28 Jul 2001 [EMAIL PROTECTED] wrote: i wrote custom script which substitute qmail-queue, it unpack received message, starting antivirus and if message infected anyone, return code '111' i.e. temporary problem, and deny message relay via server. but, user cannot understand reason of relay-deny. so, server must return custom error message to sender. how i can made it? Print the error message to standard output and the server will return this message. This doesn't work with qmail-queue. I have yet to find anyway to get a message either returned to the sending server or to the logs. I've tried printing to standard out and standard error. jon
Re: Someone please BAN Spammers
Yeah filters etc are all good but the traffic is till hitting your server. On Fri, 27 Jul 2001, Jeff Palmer wrote: Can someone please BAN those annoying spam, and dumb Exchange Scanmailprograms ? This is getting unacceptable! - The list is unusable. Certainly not. Get a better mail client. Hey Drew, Just out of sheer wonder..How is a mail client going to stop the mails from coming in? Granted a few well placed filters would be a good start.. but the fact remains the emails still come in. Wouldn't a statement like use filters be better than get a better mail client Seems to me the mail client is doing the job it was designed to do. The person GOT the mails, and then was able to SEND mail to the list complaining about the mail he/she got. Sounds like the MUA did it's job. A filter is what he/she needs to rid themselves of the spammage. my .02 cents. (who ever said a zero has no value?) Jeff Palmer [EMAIL PROTECTED]
Re: Sublist (Was: Virus-infected listmembers)
Wilson most definitely is the problem How can it be still sending virii for over 24 hours? Wilson is a goon On Fri, 27 Jul 2001, Robin S. Socha wrote: On Thu, Jul 26, 2001 at 09:54:53PM -0400, Steve Reed wrote: I think it would be very considerate of the list members if whoever runs this mailing list would PLEASE wake up and ban the living daylights out of Wilson and his barrage of viruses. What for? Wilson isn't the problem. The problem is that we're not in 92 anymore. What I'd like to see is a sublist that drops anything that isn't ASCII only and also everything that is sent with Windos MUAs. For the fun of it, I just killed everything that said Outlook (Express), Eudora, Pegasus and Webmail for the last month. Trust me, the list suddenly became good. Dear [EMAIL PROTECTED], could we have a sublist? I'm sure a lot of people would host it. I would. Prettyplease?
Converted
Hello list, my name is Jon and I am a new convert to qmail and just wanted to introduce myself. I hope to get up to speed and be able to contribute to this list soon. Jon Reynolds
Re: Virus-infected listmembers
Wilson is going to start costing me cash. I am in Australia on a cable service and have to pay 28c per MB Jon Booth On Thu, 26 Jul 2001, Kitabjian, Dave wrote: Is there a really, really good reason why folks like Wison and others that have sent 25 viruses to the qmail list in the last 18 hours are not being removed from this mailing list? Dave -Original Message- From: Wilson [mailto:[EMAIL PROTECTED] mailto:[EMAIL PROTECTED] ] Sent: Wednesday, July 25, 2001 6:01 PM To: [EMAIL PROTECTED] Subject:EMAIL SCAN:VIRUS ALERT! IN ATTACHMENT~CDRD083 Attachment file : CDRD083d.com Virus name : W32/SirCam@MM Action taken: Moved... Hi! How are you? I send you this file in order to have your advice See you later. Thanks File: ATT34209.ATT
Re: bonussouzaramos (Virus removed)
Kind of ironic this being sent to a qmail list. Hope Wilson isn't a mail administrator somewhere. Jon On Wed, 25 Jul 2001, Wilson wrote: Hi! How are you? I send you this file in order to have your advice See you later. Thanks
Re: LUCROS_JUNHO
Thats 13 virus worms you've mailed to god knows how many people on this list. Unplug your pc from the net and fix it. Jon On Wed, 25 Jul 2001, Wilson wrote: Hi! How are you? I send you this file in order to have your advice See you later. Thanks
Re: orbs
On Thu, Jul 19, 2001 at 06:12:37PM +0200, Vincent Schonau wrote: And if you switch to one of the other DNSBL's, please make sure you keep up with the various anti-spam forums. Most of these services are provided for free; making sure you don't waste the resources is the least you can do. Yes, very good point. For example, beginning Aug 1 of this year, mail-abuse.org (that's the original RBL, MAPS and DUL) will begin charging for access to their DNS servers. If you don't have an account set-up with them before then, you will lose access to them. orbl.org seems to a popular replacement for orbs.org and MAPS. jon
Re: mailbombed
On Tue, Jul 17, 2001 at 03:51:22PM -0700, Adam McKenna wrote: On Tue, Jul 17, 2001 at 09:42:14AM -0700, Jon Rust wrote: A user on a mailserver that we secondary for (don't get me started) has been mailbombed. Currently there are literally 10's of thousands of messages in my queue trying to deliver to him. My mail server's running at a oad of 8 right now. How can I clear out all these messages easily? They are all the same size, so I could use find to look through mess for the file names, then remove them from mess, info and remote. Does that work? Should I stop qmail-send before doing this? Add the domain to virtualdomains, like so: domain.com:alias-domain then create ~alias/.qmail-domain-default with a single hash (#) mark in it. then add a smtproute to localhost for the domain and restart qmail-send. The only problem with this is that all messages for that domain will be deleted, not just the person who got mailbombed. Thanks Adam. Of course, it took many hours to get this from you. The total count of messages was close to 250,000, and my mail server has been almost useless today. I used this technique after someone (dek IIRC) in the #qmail IRC channel pointed me to http://www.faqts.com/knowledge_base/view.phtml/aid/1443 Anyway, it's been running all day with the new smtproute and the alias entry. Logs confirm the messages are being delivered. I'm all the way down to 140,000 queued msgs now. That's after about 7 hours worth of processing. For future reference, how unsafe is just removing the files from mess, info, and remote with qmail running? sigh... last pid: 55460; load averages: 8.54, 7.28, 7.94 up 42+00:28:06 17:00:12 181 processes: 2 running, 179 sleeping CPU states: 81.9% user, 0.4% nice, 9.2% system, 2.7% interrupt, 5.8% idle Thanks again! jon
supervise sucking cycles
I just restructured my supervise directory to the new method outlined in LWQ and LWDJBDNS. After restarting the svscan process, I noticed that the load on the machine has increased dramatically. Top shows supervise running pretty hot: last pid: 85737; load averages: 4.44, 2.95, 1.98 up snip PID USERNAME PRI NICE SIZERES STATETIME WCPUCPU COMMAND 64185 root 10 0 860K 420K nanslp 0:12 3.47% 3.47% supervise 64191 root 10 0 860K 420K nanslp 0:08 2.00% 2.00% supervise snip help?! None of the services loigs say anything. The run files are the same, I just symlinked the directories into /service and ran #!/bin/sh env - PATH=/usr/local/bin:/usr/sbin:/usr/bin:/bin csh -cf 'svscan /service ' how can I track down the problem? jon
Re: supervise sucking cycles
Godamnit. I hate replying to myself. I had checked the logs... but only briefly I guess, or the process was happy for a bit? I dunno. But when I looked at them again later (AFTER sending pointless mail to the list of course), qmail-send's log was going nuts. Turns out I failed to properly kill qmail-send before restarting svscan in the new directory. Self-LARTing commenced... jon
Re: Qmail SMTP timing out.
Server is most likely unable to do a reverse DNS lookup on those clients. Jon On Wed, 27 Jun 2001, Grant wrote: Qmail has been working perfectly up until yesterday. What I did was: echo 10485760 /var/qmail/control/databytes and restarted qmail. While this is nothing major, ever since yesterday _some_ clients have been reporting timeouts on sending emails. I telnet from the clients machine to port 25 of the mail server and I get nothing. Whereas if I telnet locally to port 25 I get: Trying 127.0.0.1... Connected to localhost.localdomain. Escape character is '^]'. 220 webster.conprojan.com.au ESMTP ps auwwx shows: root 29681 0.0 0.1 1124 92 ?S11:58 0:00 svscan root 29682 0.0 0.0 1088 52 ?S11:58 0:00 supervise qmail-send root 29683 0.0 0.0 1088 52 ?S11:58 0:00 supervise log root 29684 0.0 0.0 1088 52 ?S11:58 0:00 supervise qmail-smtpd root 29685 0.0 0.0 1088 52 ?S11:58 0:00 supervise log qmails 29686 0.0 0.3 1140 240 ?S11:58 0:01 qmail-send qmaill 29687 0.0 0.0 11000 ?SW 11:58 0:00 [multilog] root 29688 0.0 0.0 1152 60 ?S11:58 0:00 /usr/local/bin/tcpserver -H -R -x /etc/tcp.smtp.cdb -u id -u qmaild -g id -g qmaild 0 smtp /var/qmail/bin/qmail-smtpd qmaill 29689 0.0 0.4 1104 264 ?S11:58 0:00 /usr/local/bin/multilog t /var/log/qmail root 29692 0.0 0.1 1100 72 ?S11:58 0:00 qmail-lspawn ./Maildir qmailr 29693 0.0 0.1 1100 100 ?S11:58 0:00 qmail-rspawn qmailq 29694 0.0 0.1 1092 92 ?S11:58 0:00 qmail-clean It suggests to be a resolving issue. But I haven't changed anything else except for databytes.
tcprules
Hi, I don't know if this is possable or not - but I better ask the experts :-) I have just installed qmail-qfilter + QMAILQUEUE patch. So with that I have to add QMAILQUEUE=/var/qmail/bin/qmail-qftest into the tcp rules file so the incoming mail is run though the filter. I have 20 IP's on my server. Is there a way of saying : Only assign QMAILQUEUE=/var/qmail/bin/qmail-qftest if the incoming email is being sent to my IP address A.B.C.D. Because out of all the 20 IP's I have, I only want to filter mail coming though the ip A.B.C.D. Best Wishes, Jon
Re: long delays when sending mail
The Linux box needs to be able to do reverse lookups on the windows IP addresses. Trap for new players of which I am one. Jon
qmail-qfilter
Hi everyone! I want to start using qmail-qfilter, I patched qmail using QMAILQUEUE and this went ok. I then went into the qmail-qfilter directory and typed make. Then the errors started :-) ./choose cl trysetenv setenv.h1 setenv.h2 setenv.h ./compile qmail-qfilter.c In file included from qmail-qfilter.c:26: fork.h:4: conflicting types for `fork' /usr/include/unistd.h:245: previous declaration of `fork' fork.h:5: conflicting types for `vfork' /usr/include/unistd.h:461: previous declaration of `vfork' qmail-qfilter.c: In function `parse_sender': qmail-qfilter.c:92: warning: implicit declaration of function `unsetenv' qmail-qfilter.c: In function `mktmpfile': qmail-qfilter.c:218: warning: implicit declaration of function `open' *** Error code 1 make: Fatal error: Command failed for target `qmail-qfilter.o' I am running Solaris (Intel based). I searched the mailing list and could not find anything helpful. Has anyone got any ideas? Thanks, Jon
Long connect times
Hi all, I am using QMail with xinetd. It takes ages for a PC internally (allowed to relay) to connect to the server. Outside servers can connect instantly. Where should I look to diagnose this problem Thanks for any help Jon Booth Lucid Logic Pty. Ltd. http://www.lucidlogic.com +61 3 9853 7452 +61 412 767 030
Re: Long connect times
That would make sense. How can I stop it from doing reverse lookups? Its not practical from me to set up reverse DNS for these internal IPs. Thanks Jon On Thu, 14 Jun 2001, [iso-8859-1] Jörgen Persson wrote: On Thu, Jun 14, 2001 at 05:39:06PM +1000, Jon Booth wrote: Hi all, I am using QMail with xinetd. It takes ages for a PC internally (allowed to relay) to connect to the server. Outside servers can connect instantly. Where should I look to diagnose this problem I'm not familiar with xinetd but it might be configured to do reversed DNS lookups for incoming connections. It will most probably delay the connection if it can't do that properly. By the way, tcpserver[1] is the prefered internet daemon for qmail. Jörgen [1] http://cr.yp.to/ucspi-tcp.html
Re: Long connect times
OK I have set up reverse DNS and it works great. The reason I was hesitant to set it up was I was using my ISPs DNS to resolve not my local but I am now forwarding from my local to theirs Thanks Jon Booth On Thu, 14 Jun 2001, Russell Nelson wrote: Jon Booth writes: Hi all, I am using QMail with xinetd. It takes ages for a PC internally (allowed to relay) to connect to the server. Outside servers can connect instantly. Where should I look to diagnose this problem Reverse DNS for your internal hosts. It's not optional. -- -russ nelson [EMAIL PROTECTED] http://russnelson.com Crynwr sells support for free software | PGPok | 521 Pleasant Valley Rd. | +1 315 268 1925 voice | #exclude windows.h Potsdam, NY 13676-3213 | +1 315 268 9201 FAX |
Using qmail-queue
Hi, My company runs quite a large opt-in newsletter (around 60,000 members, growing by about a 1000 every few days), up to a few months ago we sent the newsletter by using qmail-inject for every email address on the list (which was slow). So we started to use the qmail-queue directly (using the info on the man page for it) so we give qmail-queue the message file with all the headers, and also the list of email addresses. Work well, and super fast :-) But last week one of our bosses found that Hotmail has a bulk mail folder so all incoming email to Hotmail users which does not have there email address in the To: field of the email, goes into this folder. And because we use qmail-queue, all the emails sent has the same To: fieild (we use the email address for our site)and therefore all our newsletters go into there bulk folder. So is there anyway of having the email address of the user being emailed in the To: field without using qmail-inject for every message? Looking at this mailing list (which uses ezmlm) it seems everyone has there own Return-Path made up of my email address on this list. So if its possable to have a different return-path for every email, is it possable to change the To header and still use qmail-queue? Any ideas? We can't really use ezmlm as we have our very own customised software for our mailing list which we have built and added to for years. Thanks in advance, Jon
Re: anyone using qmail-qfilter?
On Mon, Jun 04, 2001 at 08:36:26AM -0600, Charles Cazabon wrote: Jon Rust [EMAIL PROTECTED] wrote: I'm getting these in my syslog: .../kernel: pid 93400 (qmail-qfilter), uid 82: exited on signal 11 segfault? Is signal 11 a segmentation violation on your OS? Yes. (FreeBSD 4.2-Stable) Is this happening whenever any process injects mail? Or only when qmail-smtpd (and possibly qmail-qmtpd and qmail-qmqpd) inject mail? If the latter, are you running with memory limits on qmail-smtpd? I don't know. It doesn't happen all the time, and there is no logging available from within qmail-qfilter. :-/ I'm working on setting up a test environment to try to isolate the problem. I've got softlimit capping me usage for smtpd at 200 (2 MB). Another possibility (given that you're running on PC hardware) is hardware problems; it's worked fine for years does not mean there wasn't a latent problem all along. Okay, how about it works fine without qmail-qfilter? :-) I only recently started running q-qf. Prior to that nothing on my qmail system segfaulted. If I take q-qf outta the loop, everything is peachy again. I've searched for .core files resulting from the sig 11, but can't find any. And I'm still seeing them. Bruce Guenter appears to have stopped development of qmail-qfilter (anything related to qmail?). No, Bruce is just a busy guy (hence the adjective prolific at qmail.org). He's still working on qmail-related stuff; vmailmgr is undergoing active development. If you would like Bruce to change his priorities, I'm sure that he would be happy to move your pet projects to the top of his to-do list, given the appropriate incentive. That's how free software consulting works. Ah, bad assumption on my part. He has never responded to any mail I've sent him concerning any of the qmail how-to's or projects he has donated to our community. I just ASSuMEd he had moved on. My bad, and apologies to BG. Offering up incentive isn't an issue. I'd be more than happy to. jon
anyone using qmail-qfilter?
I'm getting these in my syslog:
.../kernel: pid 93400 (qmail-qfilter), uid 82: exited on signal 11
I was getting LOTS of them, and I thought it was related to my filter
attempting to reject messages with error code 31. Well my current filter
consists of:
#!/usr/bin/perl
while () {
print;
}
exit (0);
And I'm still seeing them. Bruce Guenter appears to have stopped
development of qmail-qfilter (anything related to qmail?). Bummer, since
this looks like the only option for filtering, and BG wrote some handy
stuff.
I'm using FreeBSD 4.2-Stable. Any suggestions are welcome.
Thanks,
jon
qmail-qfilter logging?
I've just installed a small filter using Bruce Guenter's qmail-qfilter
package. I have a print statement or 2 when i reject a message:
# from header filter(s) (sexyfun easy to spot here)
} elsif (/^From:/) {
if (/haha\@sexyfun/io) {
print mail refused, suspected Hybris (aka, Snow White) virus:;
print http://vil.nai.com/vil/virusSummary.asp?virus_k=98873\n;;
exit(31);
}
}
However, the line above doesn't show in the qmail logs anywhere, nor
does it get echoed to the sending server. Did I miss something? Any way
to log it short of using syslog calls?
Thanks,
jon
simple spam filtering system: critiques welcome
We currently use rblsmtpd to block mail based on RSS, DUL and RBL. What I've wanted all along is a way for individual users to have this same ability, rather than as a system-wide setting. Here's what I've come up with, and I'd appreciate criticisms and comments from my fellow qmail admins: http://www.vcnet.com/~jon/qmail-filter/ In a nutshell I use qmail-qfilter + rblcheck to add an extra header to mail delivered through RBL-listed sites. The added header also contains a ranking based on which lists it matched (as defined in the modified rblcheck source I link to). Then, a dot-qmail called script scans the message headers and rejects or accepts based on this ranking. The same system could be used to flag suspected virus infected mail, but I haven't gotten that far just yet. Huge oversights, ways of making it more efficient, etc are welcomed. I have NOT put this into production yet, but have tested it on a limited basis. Thanks, jon
sending a newsletter
Hey, Background - we have been running a simple newsletter on our site for over a year now - we coded the adding/remove of people on the list ourself, as it very customised for the site. Up to now we have been sending the newsletter by using qmail-inject for every email address on the list. Now its got to a stage which is too much (50,000 email addresses on the list). I have been reading this list and some people has been talking about sending the messages stright into qmail-queue and not qmail-inject. Would this speed up everything for me - less load on the server, faster send time? Also someone else mentioned using qmail-remote to send the message, if it was sent ok move onto the next email, if not put into queue - and they posted a basic run down of the code needed for this- I have searched for this and can not find it - any remember it please and would this be better for me? I know I should move onto to using exmlm and it a great program, however we have wrote customised scripts for the newsletter and it working ok - just the sending of it is poor at the moment. Also its just a stright send type newsletter, not a discussion list. Thanks a lot! Jon
Re: sending a newsletter
Hi, Thanks for that - I was reading the man page for qmail-queue and not got a clue! So if you could show me how to pass the information needed to qmail-queue that would be great (the format of it etc). Thanks for your help so far! Jon Provided you supply qmail-queue with all the recipients at once, yes, you would see a (possibly large) improvement. If you use qmail-queue this way, you are sending one message to 5 recipients. If you call qmail-queue (or qmail-inject) separately for each recipient, you're queuing 5 messages, each for one recipient. There's a big difference. Background - we have been running a simple newsletter on our site for over a year now - we coded the adding/remove of people on the list ourself, as it very customised for the site. Up to now we have been sending the newsletter by using qmail-inject for every email address on the list. Now its got to a stage which is too much (50,000 email addresses on the list). I have been reading this list and some people has been talking about sending the messages stright into qmail-queue and not qmail-inject. Would this speed up everything for me - less load on the server, faster send time?
Re: sending a newsletter
Hi, The first 2 bits are no problem - add all the email addresses into a file and the message into a file. But the problem is the final bit - Then run qmail-queue with fd 0 open on the message file, and fd 1 open on the envelope file. I am trying to do this in perl and don't know how. So if anyone can point me in the right direction that would be great. Thanks for your help today Charles - your been great :-) All the best, Jon have a great weekend everyone :-) The man page actually does have all the necessary information in it. Create a file for the envelope information; put all fifty thousand recipients in it. This file has the format "F" sender-address NUL "T" recipient-address NUL ... NUL Put the actual email message (properly formatted, with headers) in another file. Then run qmail-queue with fd 0 open on the message file, and fd 1 open on the envelope file. If qmail-queue exits 0, everything went fine. Otherwise, you didn't do it right.
Return-Path
Hi, I have been running qmail for about 2 months now and everything has been great :-) I have a very simple setup. I host web sites on the server using Apache, and when someone uses a perl script though there web site, email sent by perl script has a return-path of [EMAIL PROTECTED] I thought qmail might use the username of the Apache web server as the return-path but it doesn't. Anyway to control what the return-path is? I have qmail setup to use the "alias" username to store mail and the Maildir format. So my /var/qmail/control/virtualdomains file looks like - websiteurl.com:alias-websiteurl Any ideas? All the best, Jon
RE: No transport provider was available for delivery to this recipient
We've experienced this error a few times here, generally when sending large files (2Mb). I thought it was a timeout problem with Outlook so I set the server timeout to a higher figure in the internet email service and it doesn't happen now. -Original Message- From: john roberts [SMTP:[EMAIL PROTECTED]] Sent: Thursday, January 25, 2001 4:40 PM To: [EMAIL PROTECTED] Cc: [EMAIL PROTECTED] Subject:Re: No transport provider was available for delivery to this recipient There is nothing in /var/log/maillog when this happens. Its like it never gets to the mailserver to process. Typically the message sits in the outlook outbox for a few seconds before I get the message back "no delivery". How do I look to see what the tcpservers max connection limit is? John From: Markus Stumpf [EMAIL PROTECTED] To: john roberts [EMAIL PROTECTED] CC: [EMAIL PROTECTED] Subject: Re: No transport provider was available for delivery to this recipient Date: Thu, 25 Jan 2001 17:11:03 +0100 On Thu, Jan 25, 2001 at 07:53:48AM -0800, john roberts wrote: I sometimes get this message when I am trying to send mail from Outlook 2000 or 97 to qmail 1.03 server: No transport provider was available for delivery to this recipient. Dies this message pop up immediately or after some kinda timout? What do the qmail logs say? Maybe tcpservers max connection limit was hit at that time? \Maex -- SpaceNet AG| Joseph-Dollinger-Bogen 14 | Fon: +49 (89) 32356-0 Research Development | D-80807 Muenchen| Fax: +49 (89) 32356-299 Stress is when you wake up screaming and you realize you haven't fallen asleep yet. _ Get your FREE download of MSN Explorer at http://explorer.msn.com
qmail-mrtg concurrency
I've got concurrencylocal set to 50, and concurrencyremote set to 40. However, looking at my MRTG graphs created by qmail-mrtg from prodigysolutions, it would appear something is limiting concurrency to 30. The maximal 5 minute plot (magenta, remote I believe) is almost flat against 30 for most of the day, and the blue line never goes above it. Am I missing something, or is qmail-mrtg? Hmmm... it is v 1.0. Maybe I'll upgrade. jon
Re: Oracle + Qmail
I would be very interested in working with you. I am using AOLserver and Oracle now for all my environments. This pretty much prevents me from using any existing PHP apps ( I don't like PHP in any case). What are your thoughts? At 01:58 PM 1/2/2001 -0500, Jonathan D. Poole wrote: Has anyone seen an implementation for Oracle and qmail? I've implemented qmail+mysql however I'd like to see if Oracle can be integrated with Qmail. Anyone know of any links? Documentation? if they exist? Anyone looking to Develope such an Idea? Thanks in advance Jonathan D. Poole [EMAIL PROTECTED]
Re: Oracle + Qmail
Do you have an url with source I could look at? At 06:38 PM 1/2/2001 -0800, Jonathan D. Poole wrote: I don't care to much about the front end of things, they can always be written, I'm more intrested in a mirror of mysql+qmail setup, just integrated with oracle instead. I don't know if anything has to be totally rewritten, or if it's just DBA related configuration, however It would be much more scaleable if qmail could work with Oracle. Jonathan D. Poole
Re: Exception-lists to MAPS-RBL-Filtering?
On Wed, Dec 20, 2000 at 12:36:05PM -0500, Jerry Keene wrote: Our use of MAPS-RBL filtering on our Qmail servers has been in place for over a year with very few complaints about inaccessibility. Lately a couple of intended correspondents have been ruled out by the system. Very definitely the "filtered outs" ought to take steps to get off the RBL lists for their own good. With that said, however, is it possible to readily build exception- lists that allow e-mail correspondence with contacts on the RBL database? In your tcp.smtp file used by tcpserver: # allow this IP through 10.10.10.10:allow,RBLSMTPD="" Conversely, to block someone not in the list: # hostgo.com are spamming bastards 9/24/00 209.217.19.180:allow,RBLSMTPD="-Hostgo spam is not wanted here" jon
Re: How to get Mail delivery in form cgi´s work
On Fri, Dec 08, 2000 at 11:10:59AM -0600, Bruno Wolff III wrote: No it does not. sendmail expects encoded email addresses in the argument list, while the qmail wrapper expects raw addresses. This cause problems with addresses that have characters in them that require quoting. For example, mutt doesn't work right with qmail. I'd have to disagree. (sending from Mutt on a sendmail-free qmail box) jon
Re: How to get Mail delivery in form cgi´s work
On Fri, Dec 08, 2000 at 11:47:32AM -0600, Bruno Wolff III wrote: And did the address you were sending to have any characters needing quoting in it? You going into mutt and use the 'm' command to mail a message. Use the following for the To address: "jpr"@vcnet.com You should get a bounce on a qmail system. If you were using sendmail you wouldn't. No offense intended, but I'm not sure I care really. I just don't see why you'd present the address as "something"@domain.com. Is there a reason for doing that? Seems to me this is just sendmail catching a mistake, where qmail doesn't; and as long as you don't make the mistke, you'll be fine. I'd appreciate you telling me where I missed something if that's not the case. Always up for learning something new. :-) Thanks, jon
Re: How to get Mail delivery in form cgi´s work
On Fri, Dec 08, 2000 at 06:16:47PM +, Mark Delany wrote: What if the "something" has spaces in it? "John Doe"@example.com is a legit address. I see your point. Mea culpa. (I dunno about the rest of you guys, but we only allow alphanumerics, dashes, periods and underscores in our addresses.) jon
Re: Bye
On Fri, Dec 01, 2000 at 01:58:54PM -0500, Dave Sill wrote: I'm taking a vacation from this list until the level of newbie tolerance improves dramatically. Sorry, I just can't take it any longer. -Dave Arg, that sucks. Sorry to see you go, Dave. REALLY sorry to see a few pricks ruin it for the rest of us who appreciate your help. Thanks for the help you've given to the list in the past. Polite, accurate, non-flaming help I might add. Hope to see you back some day, that is if I survive the crap. jon
Re: qrblcheck
Version 0.93 has been posted. No more warnings when compiling with "-Wall" and included a note about possibly needing "-lresolv." I also included some suggestions from Tullio Andreatta [EMAIL PROTECTED] for better memory management. Try it out and let me know. http://jon.rusts.net/qrblcheck.c jon On Tue, Nov 21, 2000 at 10:47:10AM -0600, Mate Wierdl wrote: OK, so I did $ gcc -O -Wall -s qrblcheck.c -lresolv -o qrblcheck qrblcheck.c: In function `main': qrblcheck.c:269: warning: suggest parentheses around assignment used as truth value qrblcheck.c:303: warning: implicit declaration of function `mainrbl' qrblcheck.c:315: warning: control reaches end of non-void function qrblcheck.c: In function `mainrbl': qrblcheck.c:341: warning: suggest parentheses around assignment used as truth value qrblcheck.c:328: warning: unused variable `c' qrblcheck.c:321: warning: unused variable `quiet' Perhaps these warnings should be avoided? Mate -- --- Mate Wierdl | Dept. of Math. Sciences | University of Memphis
Re: RBL
I think I entered the names that I got off of the anti-spam doc on qmail.org. I could have messed up also, thanks for the corrections. At 11:32 AM 11/20/00 -0600, Mate Wierdl wrote: msci.memphis.edu This should be relays.msci.memphis.edu. How did you enter these domains? Why did you enter both dul.maps.vix.com and dialups.mail-abuse.org What is the difference? Mate
Using /var/spool/mail/$USER
Hi,
I am trying to install qmail, it installed ok and started fine. I want all
mail to be delivered to /var/spool/mail/$USER, so I used this rc script -
#!/bin/sh
# Using splogger to send the log through syslog.
# Using binmail to deliver messages to /var/spool/mail/$USER by default.
# Using SVR4 binmail interface: /bin/mail -r
exec env - PATH="/var/qmail/bin:$PATH" \
qmail-start \
'|preline -f /bin/mail -r "${SENDER:-MAILER-DAEMON}" -d "$USER"' \
splogger qmail
I used the /etc/init.d/qmail script from the Life with qmail to start qmail
with my server. I am quite to new to qmail and would like to know what I
need to get mail from POP3 (using /var/spool/mail/$USER) and also how I
create POP3 accounts, as the Life with qmail only tells me about using the
./Mailbox thing.
Any ideas? Thanks,
Jon
qmail and /var/spool/mail
Hi, Is there any guides to setting up qmail using /var/spool/mail, as all of the ones I have read just show you how to use ./Mailbox which I don't want to do. Any help? Thanks, Jon
RBL
Does anyone have a current list of domains to use for RBL that work with rblsmtp. I entered relays.: msci.memphis.edu dialups.mail-abuse.org relays.orbs.org dul.maps.vix.com rbl.maps.vix.com inputs.orbs.org And I still get mail that is ORBS and DUL blocked. Thanks.
Strange 550 errors to ???
I have had my qmail setup for several years and just now have started to notice that some recipients are returning: 550 relaying mail to ... is not allowed. This happens when a virtual user is relaying through my server and the servername is not the same as the recipient. For example: I send mail from [EMAIL PROTECTED] to [EMAIL PROTECTED] and it is rejected with the above error. However if I send mail from the domain that is listed in defaultdomain "laschools.org" it works fine. This has happened both times on university sites. exchange.calstatela.edu and ucla.edu. Could it be an exchange server setup that is bad. Or do I have something misconfigured for all this time and didn't know it.
rbl users beware: MSN blocked
Just got a call from an angry MSN user. http://www.internetnews.com/isp-news/article/0,,8_512791,00.html jon
Re: Possible to Log usernames with qmail-pop3d?
On Thu, Nov 09, 2000 at 07:29:44PM -0500, Jamin A. Brown wrote: Hello, Is it possible to write the username and hopefully connection status (good, password rejected, etc.) of any connections to qmail-pop3d through tcpserver? No, but it is possible to use a password checker that logs. Check the qmail web site and the archives... there are a few out there. jon
Re: ANNOUNCE: qrblcheck -- rbl checking for .qmail
Looks good... I tried not play with the original rblcheck as much as
possible. Thanks for the tips, I'll roll them in when I get a chance.
My plan is to rewrite the whole mess to make it a bit more
coherent (not that rblcheck wasn't, but the combo of my code and his
isn't the cleanest, and there's extra stuff in there that doesn't need
to be).
jon
On Mon, Nov 06, 2000 at 03:25:33PM +, Tullio Andreatta wrote:
I'm not an experienced C programmer, so feedback is welcome and
encouraged.
Using dynamic allocated memory to store static data is not so good.
Since we know RBL domains at compile time, how about ...
struct rbl {
char *site;
unsigned int rating;
} rblsites[] = {
{ "rbl.maps.vix.com", 16},
{ "dul.maps.vix.com", 8},
{ "relays.mail-abuse.org", 4},
{ "outputs.orbs.org", 2},
{ "relays.orbs.org", 1},
{ NULL, 0 }
};
struct rbl *ptr;
... and ...
rblfiltered = 0;
for (ptr = rblsites; ptr-site != NULL; ptr++)
{
if (max_rating = ptr-rating)
{
response = rblcheck(a, ptr-site, txt);
if (response)
rbfiltered += ptr-rating;
}
}
return rbfiltered;
}
... ?
Re: ANNOUNCE: qrblcheck -- rbl checking for .qmail
On Fri, Nov 03, 2000 at 02:48:22PM -0500, Robert J Adams wrote: Jon, Does this work for you? I was trying to get it up and running, didn't work, so I added a few debugging printf's and noticed that it looks up Domain: 0.0.2.151.relays.orbs.org For each message no matter what's in the "Received" line.. Hmmm... very odd. No, it's working fine here. I can pipe your entire message through it and get a result of 0. Then I can change the IP in the first Received: from header to 127.0.0.3 and it gets a rating of 10. Send me a copy of what the headers look like on your system. Can't really think of anything else. :-/ I also wanted to say thanks for starting the development on this.. I was looking for something like this! Well thanks. Be better if it actually worked for ya. jon
Re: ANNOUNCE: qrblcheck -- rbl checking for .qmail
Robert, I have reproduced your problem... err my problem. I'm looking into it now. jon
Re: ANNOUNCE: qrblcheck -- rbl checking for .qmail
All fixed. Please try it out now and tell me what you think. Jon
ANNOUNCE: qrblcheck -- rbl checking for .qmail
I took rblcheck and added some extra code to read a message from stdin, find the IP of the last relay. It then compares a rating, based on running lookups against various RBL-style lists, against the value supplied on the command line. These mods make it suitable to be used in a .qmail file. In other words, it looks for the first instance of this type of line: Received: from mail.domain.com (HELO domain.com) (12.34.56.78) It will grab the IP in ()'s and feed it into the rblcheck routine written by Edward Marshall. The rblcheck routine(s) has been modified to return a value based on which list(s) matched. Namely: rbl.maps.vix.com = 16 dul.maps.vix.com = 8 relays.mail-abuse.org = 4 outputs.orbs.org = 2 relays.orbs.org = 1 Add all values of lists that matched together, and compare it to the value supplied on the command line. If the returned value is less than or equal to the command line value, qrblcheck returns code 0, which tells qmail to continue delivery. If the value is greater than that supplied on the command line, qrblcheck returns 100 which tells qmail to stop all deliveries and return the message. If, for whatever reason, no IP was found, qrblcheck returns 0 (mail is accepted). EXAMPLE: Putting "|qrblcheck 15" on the first line of your .qmail file will block any mail that matches rbl.maps.vix.com. Instead, using "|qrblcheck 1" will reject mail that matches all the lists except for relays.orbs.org. Download the source at http://jon.rusts.net/qrblcheck.c I'm not an experienced C programmer, so feedback is welcome and encouraged. The biggest problem I see right now is that it will match bogus IP's... like 999.999.999.999, but I don't see how that would work it's way into headers written by qmail. Regardless, I do plan on implementing some sort of trap for this. It successfully compiles on FreeBSD 4.x, but can't be sure it will on any other system. Hopefully this will be useful to someone. jon
Installed and can't use it though perl
Hi, I have now installed qmail and started it up (followed the install document). I tried one of the tests - % echo to: [EMAIL PROTECTED] | /var/qmail/bin/qmail-inject And I got a blank email though - so it worked. Now when I tried using qmail in a perl script - $mailprog = "/var/qmail/bin/sendmail"; $to ="me\@mydomainname.com"; $subject = "Test"; $msg = "It works"; open (MAIL, "|$mailprog") || die "Can't open $mailprog!\n"; print MAIL "To: $to\n"; print MAIL "From: $to\n"; print MAIL "Subject: $subject\n\n"; print MAIL "$msg"; close (MAIL); The location to the qmail sendmail program is ok, but no emails are sent. Any ideas? Thanks, Jon
gcc on Solaris
Hi, I am trying to complie Qmail on my Solaris server. I need to try and get it to use GCC to complie the files, I know I need to edit the conf-cc file but I don't know what to add in it. Is it just the path to gcc and nothing else? Thanks, Jon
Problem with new install...
Hi, Just installed qmail, and everything went well - well I think so. I tried to send some mail though /var/qmail/bin/sendmail from a perl program and got the following error message back - qmail-inject: fatal: qq trouble in home directory (#4.3.0) Any ideas what the problem is? I am using the latest version of qmail on a Solaris server. Thanks, Jon
Using QMAIL and SENDMAIL
Hi, On my companys site we handle a few large mailing lists and sending one though sendmail takes a few hours at the moment and is getting longer! We want to setup QMAIL on the server so we can send the newsletters though qmail from our perl scripts. We don't want to use qmail for all pop3 etc at the moment. So is it possable to setup qmail on the server and just use it to send emails though it from perl? And keep sendmail running for everything else? Thanks in advance, Jon
Re: qmail-pop3d logging?
On Thu, Oct 05, 2000 at 09:26:29AM -0400, Dave Sill wrote: Jon Rust [EMAIL PROTECTED] wrote: I take it qmail-pop3d just isn't verbose like qmail-send and qmail-smtpd? qmail-send is verbose, but qmail-smtpd is quiet. The logging you're seeing for qmail-smtpd comes from tcpserver's "-v" option. -Dave Yes! That's exactly what i was looking for. I should have looked in the right place i guess. Thanks! @400039dc9bd5176b6e14 tcpserver: status: 3/40 @400039dc9bd51f3f5de4 tcpserver: end 46530 status 256 @400039dc9bd51f4633e4 tcpserver: status: 2/40 @400039dc9bd52880acdc tcpserver: status: 3/40 ... Dave is the man. jon
Re: Best Winbloze Mail Client?
On Wed, Oct 04, 2000 at 10:13:09AM -0500, Brett Randall wrote: snip point-and-click most WB users like, but I personally like keyboard functionality more, even if the standard QWERTY keyboard sucks arse big time). Hey that's an idea. Why don't we change the standard Windows client to a ported GNUS and change the keyboards to Dvorak's! That should increase work efficiency by about 400%! Oh well, to dream of the future /BR Urban legend. There have been studies that show QWERTY isn't all that bad. _The Economist_ in particular ran a story about a study comparing Dvorak and QWERTY and found no advantage either way. The misconception comes from the statement that the keyboard was designed to slow typists down. Not quite. It was designed to prevent the hammers from getting tangled up. Doing so doesn't necessarily mean the typist will be slower. jon
qmail-pop3d logging?
I've set-up pop3d using supervise and tried to get it to log /something/, however nothing ever comes out. I'm very interested to see the number of concurrent connections similar to the way the other qmail programs do (send and smtpd). Any way to do it? Here's my pop3d/run file: #!/bin/sh QMAILDUID=`id -u qmaild` NOFILESGID=`id -g qmaild` exec tcpserver -R -x/etc/tcp.pop3d.cdb 0 pop3 \ /var/qmail/bin/qmail-popup mail.vcnet.com \ /var/qmail/bin/checkpoppasswd /var/qmail/sbin/relay-ctrl-allow \ /var/qmail/bin/qmail-pop3d Maildir 21 Here's my pop3d/log/run file: #!/bin/sh exec /usr/local/bin/setuidgid qmaill \ /usr/local/bin/multilog t /var/log/pop3d I take it qmail-pop3d just isn't verbose like qmail-send and qmail-smtpd? Thanks, jon
Re: qmail-inject
On Wed, Sep 27, 2000 at 04:08:03PM -0500, Jose de Jesus Rodriguez Ramirez wrote:
snip
with qmail I try to do the same but I can't, because the
/var/qmail/bin/sendmail is gone... so I try to do it with qmail-inject
echo To:[EMAIL PROTECTED] | /var/qmail/bin/qmail-inject
and works... it sends a black email, my question is how to put some subject
or body to the email???
host:~{1} $ echo "To: [EMAIL PROTECTED]
Subject: test
From: [EMAIL PROTECTED]
this is the body...blah
blah
blah blah blah" | qmail-inject
host:~{2} $
That'll work in bash. In csh and tcsh you'll need backslashes at the end
of each line.
jon
Re: remove messages from queue
On Fri, Sep 01, 2000 at 02:08:04PM -0300, Daniel Augusto Fernandes wrote: Did you get the latest version? Did you configure it correctly as on the README? Mine is not suid and I run it as root. Well, the only linked on his page... 0.4.1. I did a "tar xvzf" and it came out with the suid bit set. jon
Re: remove messages from queue
On Thu, Aug 31, 2000 at 08:36:13PM +0100, Barrie Bremner wrote: Daniel Augusto Fernandes wrote: Is this on any FAQ? How can I safely remove messages from queue? I just use a wee perl script called qmHandle. See http://www.freshmeat.net/ HTH Baz. Hrmf. This doesn't work here. It reports 0 mesages at all times (even though I've got 500+ in the queue right now). Suggestions? My queue is at /var/qmail/queue. I run it as root. ?? jon
Re: remove messages from queue
On Thu, Aug 31, 2000 at 03:30:45PM -0700, Jon Rust wrote:
Hrmf. This doesn't work here. It reports 0 mesages at all times (even
though I've got 500+ in the queue right now).
Suggestions? My queue is at /var/qmail/queue. I run it as root. ??
jon
Arg. The scripty comes packaged as suid. I unpacked as a non-priv user,
so when I ran it as root, it changed back to non-priv user. Error
checking on the opendir funtion would be nice. :-)
opendir(DIR,"${queue}remote") || die "can't open queue $!\n";
jon
Re: effectiveness of DUL
Oy! This thread made me curious so I was grepping through my smtpd logs. As they were streaming down the screen, it seemed like there were an awful lot of a particular address. 195.25.12.67 and 75 seemed to be showing up every line almost. In fact, in less than 3 days of logs I show those addresses being rejected... take a deep breath... more than 38,000 times. Yikes. Either they are pushing some major amounts of spam, or someone there is a blockhead and doesn't understand error messages. jon
Re: effectiveness of DUL
To add some perspective... the total of all messages blocked by RSS and DUL was ~48,000 over that same period (the last 3 days). Those 2 IPs accounted for close to 39,000 of those. OT for the thread... DUL accounted for 350 of the denials. jon
Re: effectiveness of DUL
Thanks for the advince Chris. I appreciate it. However, I do use the -b flag, so mail is being blocked: @400039a208a80b375874.s:@400039a1ba8124896a9c rblsmtpd: 195.25.12.67 pid 30954: 553 Open relay problem - see URL:http://www.mail-abuse.org/cgi-bin/nph-rss?195.25.12.67 Must be a spam house, or MS software is really just THAT broken. :-) jon On Thu, Aug 24, 2000 at 08:32:19PM -0400, Chris Johnson wrote: Whenever I see this kind of thing happen, it invariably turns out to be some moronic Microsoft SMTP MTA on the other end. Your example is a case in point: [cjohnson@mail cjohnson]$ telnet 195.25.12.67 25 Trying 195.25.12.67... Connected to s2.gen.oleane.net. Escape character is '^]'. 220-s2.gen.oleane.net Microsoft SMTP MAIL ready at Fri, 25 Aug 2000 02:21:33 +0200 Version: 5.5.1877.197.19 220 ESMTP spoken here I suspect that you're not using the -b option to rblsmtpd, which causes rblsmtpd to send a 553 (permanent) error code to an RBL'ed client rather than the default 451 (temporary). Microsoft MTAs interpret the 451's "Try again later" as "Try again as soon as you can, and keep trying over and over and over as quickly as you possibly can." If you want to shut this guy up, give rblsmtpd the -b option, or stick something like the following in your SMTP rules file (assuming you're using tcpserver): 195.25.12.67:allow,RBLSMTPD="-Buzz off, bonehead. You're bothering me." The leading '-' makes the error permanent for this particular IP address. Or, firewall his ass. Chris
Re: rblsmtpd and relays.mail-abuse.org
On Thu, Aug 10, 2000 at 12:55:57PM -0400, Hubbard, David wrote: I've been reading more of the archives about this rblsmtpd issue lately and I think what has happened is that the relays.mail-abuse.org DNS no longer has the TXT entries in it that rblsmtpd looks for. Did this spam that got through your server come from a host in the open-relays database or the maps? Does anyone know if the other services, not relays.mail-abuse.org, have made the same change or are going to? If they did, it would prevent rblsmtpd from working with them too correct? Do you think DJB would make a new rblsmtpd release to make it work with these new no-TXT maps DNS servers? Thanks, Dave Correct. I did some research too (should have before posting :-/). rblsmtpd works by rejecting connections from servers with TXT records at the various "RBLs." On Aug 8th, RSS stopped using TXT records entirely. All along there has also been an A record for each listed address, so you can still use that, and in fact, rblcheck uses the A records for its check. I applied the patch at http://www.cqc.com/~pacman/projects/rblsmtpd-rss/ posted by pacman Aug 9th I believe. This patch allows you to tell rblsmtpd to use A records for certain RBLs. It seems to be working just fine. Odd that this issue has been so quiet. Are there really so few people using rblsmtpd? jon
rblsmtpd and relays.mail-abuse.org
While checking out a spam I received this morning I noticed that rblcheck finds it in the RSS. Hrmf. I run rblsmtpd so I'm not clear on how it got through: snip /usr/local/bin/rblsmtpd -b -t10\ -r rbl.maps.vix.com \ -r dul.maps.vix.com \ -r relays.mail-abuse.org snip According to the RSS it was added yesterday at 1700 PDT. The address is 133.5.173.200 if you want to test for yourself. I vaguely remember someone mentioning a patch for rblsmtpd, but not a whole lot of discussion on why it's not working anymore. Anyone got the low-down? Anyone tried the patch? Thanks, jon
Re: rblsmtpd
See 'man rblsmtpd'. Briefly, you don't set the var normally. If the var is set, but empty, rblsmtpd won't block the mail in any case. If the var is set to an actual value, it will block the mail. You can set the var in your tcp.smtp CDB file like so: 63.88.133.:allow,RBLSMTPD="-Yesmail email is not wanted here" The 'allow' is misleading. It says to allow the TCP connection, but not necessarily to allow the mail. The $RBLSMTPD var being set tells rblsmtpd to reject the mail. HTH, jon On Wed, Aug 02, 2000 at 12:31:21PM +0100, Slider wrote: Hi, Some rather basic questions How do I set the $RBLSMTPD environment variable in order for rblsmtpd to block incoming rbl mails? Does rblsmtpd need it's own daemon or can it be integrated with the smtpd daemon if so how? Thanks AC
using RBLSMTPD env var
I was just denying all Yesmail connections in my tcp.smtp.cdb file.
After watching the thread today on blocking mail, I wanted to use the
RBLSMTPD var instead. Like so:
# Yesmail.com
63.88.133.:allow,RBLSMTPD="-Yesmail email is not wanted here"
63.89.82.:allow,RBLSMTPD="-Yesmail email is not wanted here"
63.238.242-243.:allow,RBLSMTPD="-Yesmail email is not wanted here"
63.79.151.:allow,RBLSMTPD="-Yesmail email is not wanted here"
207.154.137.:allow,RBLSMTPD="-Yesmail email is not wanted here"
207.154.208.:allow,RBLSMTPD="-Yesmail email is not wanted here"
208.44.19.:allow,RBLSMTPD="-Yesmail email is not wanted here"
216.80.61.240-255:allow,RBLSMTPD="-Yesmail email is not wanted here"
216.229.132.128-143:allow,RBLSMTPD="-Yesmail email is not wanted here"
64.208.162.128-143:allow,RBLSMTPD="-Yesmail email is not wanted here"
216.52.151.64-95:allow,RBLSMTPD="-Yesmail email is not wanted here"
Just for fun, I added one of my own IPs to the list as a test. The test
failed. :-(
host:~{503} $ telnet mail.vcnet.com 25
Trying 209.239.239.15...
Connected to mail.vcnet.com.
Escape character is '^]'.
220 rblsmtpd.local
Connection closed by foreign host.
host:~{504} $
I thought it was supposed to spit out the contents of RBLSMTPD? And no
553 either. What did I miss? (I tried with both a space after the hyphen
and without.)
jon
Re: using RBLSMTPD env var
On Fri, Jul 28, 2000 at 06:39:18PM -0400, Adam McKenna wrote: On Fri, Jul 28, 2000 at 03:30:34PM -0700, Jon Rust wrote: [...] I thought it was supposed to spit out the contents of RBLSMTPD? And no 553 either. What did I miss? (I tried with both a space after the hyphen and without.) Nope. If RBLSMTPD is set, rblsmtpd skips the RBL check. --Adam I don't think we're on the same page here. If the environment variable RBLSMTPD is set to something besides an empty string, it should give an error code, either 4xx or 5xx depending on command line options, and whether or not the var starts with a hyphen. It's not doing that. I quote from the rblsmtpd man page: "If $RBLSMTPD is set and is empty, rblsmtpd does not block mail. "Normally, if $RBLSMTPD is set, rblsmtpd uses a 451 error code in its limited SMTP conversation. This tells legitimate clients to try again later. It gives innocent relay operators a chance to see the problem, prohibit relaying, get off the RBL, and get the mail delivered. "However, if $RBLSMTPD begins with a hyphen, rblsmtpd removes the hyphen and uses a 553 error code. This tells legitimate clients to bounce the message immediately." The last paragraph is what I'm trying to achieve. Any help there? jon
Re: using RBLSMTPD env var
On Sat, Jul 29, 2000 at 10:39:30AM +1200, Chris, the Young One wrote:
On Fri, Jul 28, 2000 at 03:30:34PM -0700, Jon Rust wrote:
!host:~{503} $ telnet mail.vcnet.com 25
!Trying 209.239.239.15...
!Connected to mail.vcnet.com.
!Escape character is '^]'.
!220 rblsmtpd.local
!Connection closed by foreign host.
I presume that the connection didn't get closed immediately. I know
that rblsmtpd closes the connection after 60 seconds. If you issue
SMTP commands, they will all result in error messages (if you need
a quick SMTP reference, see http://cr.yp.to/smtp.html).
It closes in 1 second.
Hey, vcnet.com, aren't they those cool people hosting the boycott
Microsoft site? :-)
That is one of customers, yes. We comp that space to him. :-
jon
Re: using RBLSMTPD env var
On Sat, Jul 29, 2000 at 11:12:12AM +1200, Chris, the Young One wrote: On Fri, Jul 28, 2000 at 03:53:04PM -0700, Jon Rust wrote: ! It closes in 1 second. Some possibilities I can see: 1. You invoked rblsmtpd with ``-t 1'' (unlikely, if you said that it closed in less than 1 second). Ah yes. '-t 2' actually. Guess I really should have timed it before claiming 1. :-/ Damnit. So it was just timing out the connection before it got a chance to say "553 yada yada yada." I did a copy and paste of HELO, mail from, etc and it did give the 553 error message. Thanks. I gotta go increase that 2 second timeout. What was I thinking?! jon
bare LFs and fixcrio ramifications
I've really gotten tired of trying to explain to lusers that their mail program is broken. Most don't understand (avg IQ is only 100) and just hang-up pissed off. I finally caved and added fixcrio to my qmail-smtpd incantation. Now that I've given in, what can I expect to break that wasn't broken before? Here's my qmail-smtpd run script for svscan (basically pilfered and modified from LWQ... thanks Dave!): #!/bin/sh QMAILDUID=`id -u qmaild` NOFILESGID=`id -g qmaild` exec /usr/local/bin/softlimit -m 200 \ /usr/local/bin/tcpserver -Rv -x /etc/tcp.smtp.cdb -c 100\ -u $QMAILDUID -g $NOFILESGID 0 smtp /usr/local/bin/rblsmtpd -b -t2\ -r rbl.maps.vix.com -r dul.maps.vix.com \ -r relays.mail-abuse.org sh -c ' /usr/local/bin/fixcrio /var/qmail/bin/qmail-smtpd cd /var/qmail/autoturn exec setlock -nx $TCPREMOTEIP/seriallock \ maildirsmtp $TCPREMOTEIP autoturn-$TCPREMOTEIP- $TCPREMOTEIP AutoTURN ' 21 Thanks, jon
Re: orbs.org accuses qmail of mailbomb relaying!
On Fri, Jul 21, 2000 at 11:20:00AM -0400, Michael T. Babcock wrote: Don't get me wrong. I like Qmail for the most part. I just think there's room for improvement. And room for less attitude ... hint. Petr Novotny wrote: The problem is that there shouldn't be any "domain in question," an MTA should make efficient use of a limited number of SMTP sessions when transferring mail to any other MTA. This horse has been beaten to death. What do you mean by "should"? And why "limited number"? To be friendly to your neighbours ... Why is the onus on qmail here? If I'm an MTA dropping off mail to another MTA, I'm going to send the mail as fast as the other MTA accepts it. If Other MTA needs to slow it down, it should do so. There's no reason for me to make assumptions about how many SMTP connections and messages I can send to another MTA. jon
queue notices
I've seen a few mail systems notify users that mail hasn't been delivered when it's been queued for X number of days, but hasn't yet expired. Say your queuelifetime is set to 1 week. After a message hasn't delivered for 1 day, let the sender know that it hasn't and also that you (the mail server) will keep trying for another 6 days. Has anyone seen a patch like this? Any thoughts on implementing the idea? Thanks, jon
Re: applying SMTP SIZE patch
bash-2.03$ uname -a FreeBSD host.vcnet.com 3.3-RELEASE FreeBSD 3.3-RELEASE #1: Wed Oct 20 20:43:43 PDT 1999 [EMAIL PROTECTED]:/usr/src/sys/compile/CUSTKERN i386 bash-2.03$ patch -v Patch version 2.1 jon At 12:03 AM + 6/2/00, Jim Breton wrote: On Thu, Jun 01, 2000 at 04:58:14PM -0700, Jon Rust wrote: FWIW, I used the patch as posted to this list (below) and had no problems applying it. What OS, and what version of "patch" do you use, if you don't mind my asking?
Queue cleaning: spam problem
One of my customers upgraded or changed their mail system yesterday and opened it up for relay by accident. That was bad. Worse is that they use us as a "smart relay" (which I didn't know until today). SO now I've got all this mail queued up waiting to go out to hundreds and thousands of people. Are there scripts available that I can use to search through the queue, look for a particular subject/Received line/whatever and ax it? Thanks, jon "leaving to smack this customer..."
Re: applying SMTP SIZE patch
FWIW, I used the patch as posted to this list (below) and had no
problems applying it.
jon
At 12:38 AM +0200 6/2/00, Einar Bordewich wrote:
I had the same problem, so I patched it manually. Her it is with the patch
applied.
If you rename your old file to qmail-smtpd.c.orig and do a "diff -c
qmail-smtpd.c.orig qmail-smtpd.c |more", you should see output quite equal
to the patch.
BTW: The initial size on qmail-smtpd.c was 11262 bytes.
--
Delivered-To: [EMAIL PROTECTED]
Mailing-List: contact [EMAIL PROTECTED]; run by ezmlm
Delivered-To: mailing list [EMAIL PROTECTED]
X-Remote-IP: 130.60.48.21
Date: Wed, 31 May 2000 12:08:34 +0200 (MET DST)
From: Will Harris [EMAIL PROTECTED]
To: [EMAIL PROTECTED]
Subject: SMTP SIZE command revisited (new patch)
Status: U
I've extended the little patch I wrote earlier to make qmail fully RFC
1870 compliant, including the extended MAIL FROM ... SIZE syntax.
You can also get it from my website, http://will.harris.ch.
regards,
Will
*** qmail-smtpd.c.orig Mon May 29 11:54:41 2000
--- qmail-smtpd.c Wed May 31 11:44:21 2000
***
*** 52,57
--- 52,58
void err_bmf() { out("553 sorry, your envelope sender is in my
badmailfrom list (#5.7.1)\r\n"); }
void err_nogateway() { out("553 sorry, that domain isn't in my list
of allowed rcpthosts (#5.7.1)\r\n"); }
void err_unimpl() { out("502 unimplemented (#5.5.1)\r\n"); }
+ void err_size() { out("552 sorry, that message size exceeds my
databytes limit (#5.3.4)\r\n"); }
void err_syntax() { out("555 syntax error (#5.5.4)\r\n"); }
void err_wantmail() { out("503 MAIL first (#5.5.1)\r\n"); }
void err_wantrcpt() { out("503 RCPT first (#5.5.1)\r\n"); }
***
*** 197,202
--- 198,239
return 1;
}
+ int sizelimit(arg)
+ char *arg;
+ {
+ int i;
+ long r;
+ unsigned long sizebytes = 0;
+
+ if (r 0) return 0;
+
+ i = str_chr(arg,'');
+ if (arg[i])
+ arg += i + 1;
+ else {
+ arg += str_chr(arg,':');
+ if (*arg == ':') ++arg;
+ while (*arg == ' ') ++arg;
+ }
+
+ arg += str_chr(arg,' ');
+ if (*arg == ' ') while (*arg == ' ') ++arg;
+ else return 1;
+
+ i = str_chr(arg,'=');
+ arg[i] = 0;
+ if (case_equals(arg,"SIZE")) {
+ arg += i;
+ while (*++arg *arg 47 *arg 58) {
+ sizebytes *= 10;
+ sizebytes += *arg - 48;
+ }
+ r = databytes - sizebytes;
+ if (r 0) return 0;
+ }
+ return 1;
+ }
+
int bmfcheck()
{
int j;
***
*** 227,235
smtp_greet("250 "); out("\r\n");
seenmail = 0; dohelo(arg);
}
void smtp_ehlo(arg) char *arg;
{
! smtp_greet("250-"); out("\r\n250-PIPELINING\r\n250 8BITMIME\r\n");
seenmail = 0; dohelo(arg);
}
void smtp_rset()
--- 264,279
smtp_greet("250 "); out("\r\n");
seenmail = 0; dohelo(arg);
}
+ char size_buf[FMT_ULONG];
+ void smtp_size()
+ {
+ size_buf[fmt_ulong(size_buf,(unsigned long) databytes)] = 0;
+ out("250 SIZE "); out(size_buf); out("\r\n");
+ }
void smtp_ehlo(arg) char *arg;
{
! smtp_greet("250-"); out("\r\n250-PIPELINING\r\n250-8BITMIME\r\n");
! smtp_size();
seenmail = 0; dohelo(arg);
}
void smtp_rset()
***
*** 240,245
--- 284,290
void smtp_mail(arg) char *arg;
{
if (!addrparse(arg)) { err_syntax(); return; }
+ if (!sizelimit(arg)) { err_size(); return; }
flagbarf = bmfcheck();
seenmail = 1;
if (!stralloc_copys(rcptto,"")) die_nomem();
RE: Purpose of this list
I would just like to affirm the people on this list. I am a newbie to Linux and qmail, and have learned a bunch from this list. Yes, some of the terms are cryptic, but with a little research, I can usually find what they mean. When I asked for help, I was responded to very politely and the response got me pointed in the right direction to fix the problem. I used Life With qmail as my guide, and it was great. My hat is off to this list! Jon Saunders SECPA -Original Message- From: Dave Sill [mailto:[EMAIL PROTECTED]] Sent: Thursday, May 18, 2000 6:39 AM To: [EMAIL PROTECTED] Subject: RE: Purpose of this list Brad Johnson [EMAIL PROTECTED] wrote: However, qmail does suffer from the same issue as BSD traditionally has, which is that everyone involved is too damned smart, so they write in terse, dense and frighteningly useful language and get annoyed when people have difficulty parsing the information. I worked hard to make "Life with qmail" newbie-friendly, and I try hard to be newbie-friendly on this list. If you have specific constructive suggestions on how I can improve either, please let me know. The other section that doesn't exist (or does it? It's not easy to find) is "Qmail for users" which would talk about qmail just from the perspective of the *nix user, with the userland commands, without mixing it all in with the admin info. See: http://Web.InfoAve.Net/~dsill/lwq.html#usage -Dave
Re: Filtering
QMAILQUEUE and qmail-qfilter should do the trick. They're both listed on the qmail.org web page. jon At 2:08 AM +0300 5/13/00, [EMAIL PROTECTED] wrote: thank you for this one. However, my problem is not only the size of the message but as well as its contents. I want to deny also any messages that contain .EXE files to avoid virus spread. So actually I have to filter the message in two ways - the size and its content. Hello ! I'm rather a beginner not only with QMAIL but with unix as a whole. I just wanted to ask if anyone can help - something I didn't find anywhere. I want to filter some incoming messages - both local and remote. However, I want to filter them as they are coming, not when they have come and have been placed in the queue. The whole idea is to prohibit big attachments and to deny any mail with huge attachments before it has arrived - for the sake of saving bandwidth, so I want to reject as it comes before its being delivered already. I hope this makes sense. Thank you very much, Peter put your size limit in /var/qmail/control/databytes, like this: su echo 32700 /var/qmail/control/databytes This will cause excessive messages to get bounced. I don't know if qmail-smtpd looks at that file or not, if not you could patch it to look at that file, or patch it to abruptly drop the connection once it has received that much data. Abruptly dropping connections would cause retries and so forth, though, while bounce messages will retrain the people sending the attachments to do something else so their messages can get through. -- David Nicol 816.235.1187 [EMAIL PROTECTED] You discover uranium! collect $240,000
RE: FW: FW: VIRUS PEOR QUE MELISSA II *** Importante***
My guess, this is a hoax as outlined on some of the major virus protection sites - The hoax states that IBM and AOL acknowledge the WOBBLER virus, it is worse than Melissa, and that it destroys Netscape. Jon Saunders SECPA -Original Message- From: Hector Tinoco [mailto:[EMAIL PROTECTED]] Sent: Monday, May 08, 2000 4:20 AM To: [EMAIL PROTECTED] Subject: Re: FW: FW: VIRUS PEOR QUE MELISSA II *** Importante*** On Mon, 8 May 2000, Eddy wrote: OTRO VIRUS ESPANTOSO, PONGAN ATENCION: ATENCION VIRUS IBM y AOL acaban de informar que un nuevo Virus - WOBBLER - anda suelto. Llegara en un E-mail titulado: "How to Give a Cat a Colonic". IBM y AOL han anunciado que es MUY poderoso, mas que Melissa, y que no hay NINGUN remedio conocido. Este virus comera toda su informacion sobre la unidad de disco duro, y tambien destruye al Navegante de Netscape y Microsoft Internet Explorador. No abra nada con este titulo y por favor pase este mensaje a todos sus contactos y cualquiera que usa con asiduidad el e-mail. No demasiadas personas parecen saber esto todavia, asi que propague esta informacion tan rapido como le sea posible. Esta informacion fue anunciada ayer por la manana por IBM. Por favor compartalo con todos los de su libro de direccion para que la propagacion del virus puedan detenerse. Este es un Virus muy peligroso y no hay ningun remedio para 'el en este momento. Todos agradeceran saberlo. /__/__/__/__/__/__/__/__/__/__/__/__/__/__/__/__/__/__/__/__/__/ Hector Ryan Tinoco Reed Administrador Nodo Internet, WebMaster. Direccion de Investigaciones Academicas Universidad Catolica de Nicaragua Tels. : (505) 276-0004 - Ext. 5602 (Oficina UNICA) 3:00pm - 9:40pm (505) 268-2362 - Ext. 116 (Oficina CRIES) 8:00am - 1:00pm (505) 289-4829 (Casa) Faxs : (505) 276-0590 (UNICA) (505) 268-1565 (CRIES) Beeper: 19533 (2784800 Alfanumeric) URL : http://www.unica.edu.ni/htinoco | | | | ___/ __\ |___| ___ _ __ | |__| | / _ \ / / | |/ _ \ | '_ \ | |__| || __/ / /___ | | | (_) || |_) | |_| |_| \___| \/ |_|\___/ | .__ \ |_| \_\ /__/__/__/__/__/__/__/__/__/__/__/__/__/__/__/__/__/__/__/__/__/
Re: ETRN and QMail
I use the serialmail package from DJB. There's a file in the package that describes how to set-up AUTOTURN. Works like a champ. Not quite ETRN, but from what I can tell, enough of it's functionality to make Exchange servers happy. jon At 4:56 PM -0700 5/4/00, Jose de Leon wrote: I have heard of a patch or program that can help me support clients that use ETRN. Can somebody point me to the sources? Thanks, Jose de Leon System Administrator InVision Telecommunications (209) 549-8800
qmailqueue install prob
I applied the patch, did a make... so far so good. Then I stopped
qmail (qmail-ctl stop) and
mail:/usr/local/src/qmail-1.03{36} # make setup check
( ( ./compile tryrsolv.c ./load tryrsolv dns.o ipalloc.o ip.o \
stralloc.a alloc.a error.a fs.a str.a -lresolv `cat socket.lib` ) \
/dev/null 21 echo -lresolv || exit 0 ) dns.lib
rm -f tryrsolv.o tryrsolv
./install
install: fatal: unable to write .../bin/qmail-queue: text busy
*** Error code 111
Stop.
Hrmf. Anyhelp for this non-programmer-type?
jon
Re: ETRN and QMail
At 5:33 PM -0700 5/4/00, Jose de Leon wrote: Thanks Jon for the suggestion. I looked at AutoTURN. It won't work for us as we don't want to provide a static IP to this customer. As far as I can tell, all I really need to do is get the clients IP address when logged in somehow, and then initiate maildir2smtp while they are online. You could set-up a separate port for them. For example make tcpserver listen on port 1025 and run the AutoTURN stuff from there. It would be their own private port, so the AutoTURN script could be dedicated to them. I guess what i'm saying is that it's possible to do this with a dynamic IP. :-) jon
Re: qmailqueue install prob
At 2:35 AM +0200 5/5/00, Peter van Dijk wrote: On Thu, May 04, 2000 at 05:24:59PM -0700, Jon Rust wrote: [snip] Hrmf. Anyhelp for this non-programmer-type? Something was still busy injecting mail thru qmail-queue. Ahhh... I see. Gotta wait longer after telling qmail to stop. :-) Gotcha. Thanks, jon
Re: ETRN and QMail
At 2:43 AM +0200 5/5/00, Peter van Dijk wrote: So much for security, eh? Hrmf. You have apoint there. :-/ Guess I should think before typing. Of course, by limiting the range of IPs allowed to trigger the download, you could decrease the exposure, but it would be far from perfect. (crawling back into lurk mode) jon
Newbie needs help
I am a qmail and Linux newbie and could use some help. I have a new install with RH 6.2 and followed the setup instructions in Life with Qmail. Everything was working fine until I decided to upgrade ucspi-tcp from .84 to .88. Since I did that, qmail won't start automatically at a reboot. I can execute the startup in /etc/rc/inid.d, it starts fine and works fine. I tried to find it in the logs but couldn't find anything, but I may be looking in the wrong log. Any suggestions where to look would be appreciated! A second question. I am using qmail-pop3, where do I put the start up scripts for it? Thanks Jon Saunders SECPA/Rural-com
qmail stopped responding
Suddenly qmail stopped responding today. Telnet to port 25 gave me the standard telnet "connected to" and "escape character is ^]" but no smtp prompt. ps aux showed many smtp processes. Since the phone was ringing off the hook, I had to hurry and didn't have time to look farther. I stopped the qmail service, waited about 30 seconds, then restarted it. It's answering again, but I don't know for how long. A feel rusty since it's been so long since anything has gone with my qmail installation. :-/ What should have I done to track down the culprit? Here's my run file for the supervised (DT .61) qmail process: #!/bin/sh QMAILDUID=`id -u qmaild` NOFILESGID=`id -g qmaild` exec /usr/local/bin/softlimit -m 200 \ /usr/local/bin/tcpserver -Rv -x /etc/tcp.smtp.cdb -c 100\ -u $QMAILDUID -g $NOFILESGID 0 smtp /usr/local/bin/rblsmtpd -b -t2\ -r rbl.maps.vix.com -r dul.maps.vix.com \ -r relays.mail-abuse.org sh -c ' /var/qmail/bin/qmail-smtpd cd /var/qmail/autoturn exec setlock -nx $TCPREMOTEIP/seriallock \ maildirsmtp $TCPREMOTEIP autoturn-$TCPREMOTEIP- $TCPREMOTEIP AutoTURN ' 21 Any help appreciated. Jon
Re: Poor documentation of anti-spam options?
I agree with most of what you said here Dave, but I'd have to say that rejecting mail with envelope sender domains that don't exist is a good thing (either an A or CNAME record, or an MX). If for no other reason, you can't bounce back to them. I don't consider this aspect an arms race with spammers, just common sense. You give me a false from address, I reject your mail. I guess it could be done using dot-qmail, maildrop/procmail and a little elbow grease on a per user basis. For me, that's not ideal, but would work. jon At 2:24 PM -0500 3/31/00, Dave Sill wrote: Chris Hardie [EMAIL PROTECTED] wrote: I've been observing what seems to be a lack of clear and concise documentation about anti-spam/security options for the novice and/or average qmail user. LWQ doesn't cover anti-spam options in depth because I've personally never felt the need to implement MTA-level spam control and nobody who does use them has contributed such coverage. qmail's anti-spam options are limited because there's simply no reliable way to differentiate spam and legitimate mail. DJB refuses to engage in an arms race with spammers. snip
Re: Poor documentation of anti-spam options?
Points (Charles' too) taken. Both good arguments. Dunno know if they changed my mind, but got my thinking anyway... jon At 3:06 PM -0500 3/31/00, Dave Sill wrote: Jon Rust [EMAIL PROTECTED] wrote: I agree with most of what you said here Dave, but I'd have to say that rejecting mail with envelope sender domains that don't exist is a good thing (either an A or CNAME record, or an MX). If for no other reason, you can't bounce back to them. You have two choices: accept the mail or reject it. If you accept it, it may be unreplyable, but at least the message has been delivered. If you reject it, the mail doesn't go through, which is kind of counter to the whole idea of SMTP. Now, the envelope sender could be bad for one of two reasons: it could be intentionally bad, i.e., spam, or it could be unintentionally bad, e.g., a typo or a DNS fubar. If it's spam, and you reject it, you win. If it's not spam and you reject it, you lose. OK, so you're willing to throw out the baby with bathwater, and you start rejecting them. Lots of other people start doing that, too. Do the spammers: 1) throw up their hands and admit defeat, or 2) start using valid (but wrong) domains in their envelope return paths, thereby defeating your rejection and escalating the arms race? Note that many are already doing (2), of course. -Dave
qmail-smtpd on SCO OSR5.0.5
Greetings, I'm having a problem whereby SMTP connections from certain mail-servers work fine and from other servers there is a big problem (all packets appear to disappear or get disregarded). Most of the ISP's servers fail (including the secondary MX). The ISP has: 1) Traced the packets as far as the ISDN router. 2) Double checked the router config. and say that everything is fine ... The router (CISCO 801) maps ports 25 and 53(TCP UDP) through to the SCO box. qmail-smtpd is running under tcpserver with -v for logging purposes ... The config for qmail is very simple. Some servers at the ISP can (and do) telnet to port 25 and get a "good" connect and manage to get through the smtp session and mail entered is delivered. Others receive the "banner" but everything else sent gets "lost" and eventually the session times-out. There are no "deny's" on the router or on SCO,(that I can find) What can any-one suggest ... depression is setting in. Jon Jenkins
Re: qmailanalog
Is qmailanalog compatible with multilog? The first part of the
MATCHUP doc file says:
Before using qmailanalog, make sure that your qmail log contains
microsecond timestamps: e.g.,
901967408.113926 new msg 19287
901967408.116537 info msg 19287: bytes ...
Um, nope. I have lines like this:
@400038e3b11b21dd6d0c info msg 24695: bytes 70110 from snip
@400038e3b11b223b82fc starting delivery 26852: msg 24695 to local snip
Any good one liners to make this work?
Thanks,
jon
At 2:41 PM -0500 3/30/00, Dave Sill wrote:
"S.P. Hoeke" [EMAIL PROTECTED] wrote:
Keep in mind i'm a newbie to qmail and OpenBSD... a lot of this stuff
maybe self-explanatory to the more 'advanced' users.
No problem.
Specifically I don't know how to "feed your log through" the awk line.
If your log is in a file called "foo", do:
awk '{$1="";$2="";$3="";$4="";$5="";print}' foo
That will, of course, output to standard output, so you want to feed
it to matchup:
awk '{$1="";$2="";$3="";$4="";$5="";print}' foo | ./matchup
And matchup outputs to standard output, so you'll want to redirect it
to a file, say matchup.out:
awk '{$1="";$2="";$3="";$4="";$5="";print}' foo | ./matchup matchup.out
Same goes for "feed the matchup output through any of the" scripts
E.g.:
./zoverall matchup.out
-Dave
Re: how do you use a deferral host in qmail?
At 4:08 PM -0500 3/30/00, Jeremy Hansen wrote: You're cocky and absolutely useless. Thanks -jeremy Whoa, you're so far off base now, I'd guess you just lost all interest from anyone else worthwhile on the list. Dave Sill has been, and continues to be, a tremendous support resource on the list and through LWQ. Just because he didn't give the answer you wanted doesn't mean he's "absolutely useless". Take a deep breath, play some Q3A or whatever, and realize that he and John Levine have pointed you in the right direction. jon
Re: qmailanalog
At 4:24 PM -0600 3/30/00, Charles Cazabon wrote: Jon Rust [EMAIL PROTECTED] wrote: Um, nope. I have lines like this: @400038e3b11b21dd6d0c info msg 24695: bytes 70110 from snip @400038e3b11b223b82fc starting delivery 26852: msg 24695 to local snip Those would be Dan's newer TAI64 timestamps IIRC. One of his packages can convert the timestamps back and forth, but I can't find it at the moment. Newer daemontools maybe? Charles tai64nlocal will convert it into something like 2000-03-30 07:56:09.195584500, but qmailanalog doesn't want that either. :-/ Looks like a job for perl. jon
Re: qmailanalog
At 4:54 PM -0600 3/30/00, Ronny Haryanto wrote: On 30-Mar-2000, Jon Rust wrote: tai64nlocal will convert it into something like 2000-03-30 07:56:09.195584500, but qmailanalog doesn't want that either. :-/ Looks like a job for perl. I use tai64nfrac.c found on qmail.org. Ronny I didn't see it there. Using google, I found this: http://sunsite.auc.dk/qmail/tai64nfrac Thanks for the tip! jon
Re: Poor documentation of anti-spam options?
Chris, I'm in the exect same place. Finally implemented rblsmtpd, and would now like to reject addresses with fake domains. I found this: http://qmail.area.com/qmail-1.03-mfcheck.3.patch, but have not yet tried it. I was hoping to get some feedback from list on it, but apparently no one here uses it. Please let me know what you find out. Thanks, jon At 4:35 PM -0500 3/30/00, Chris Hardie wrote: Folks, I've been observing what seems to be a lack of clear and concise documentation about anti-spam/security options for the novice and/or average qmail user. In my particular situation, I've recently moved to the tcpserver/rblsmtpd way of doing things, and now I'm interested in blocking mail based on invalid/bad-DNS hosts in envelopes/From: headers. Only after scouring the mailing list archive was I able to determine that that "DENYMAIL" patch is the apparently recommended way of doing this, and of course everyone says "get it from the qmail website". There's no mention of "DENYMAIL" on the main qmail page, and the only link to "an anti-spam patch" (in the "Yet More Qmail Addons" section) is broken. I was finally able to find this link http://www.geocities.com/SiliconValley/Peaks/5799/qmail-uce.html which appears to be the DENYMAIL patch, but I had to use lots of third party search engines to find it, and I'm still not sure of what I've got. snip
Re: Spam, orbs, maps
You'll want to look at maildrop. There may be a way to do this with your .qmail files alone, but I haven't seen it. Maildrop's at http://www.flounder.net/~mrsam/maildrop/ It replaces qmail's own delivery agent and allows filtering of the message before delivery. The filtering language is pretty straightforward.. jon At 12:48 PM -0400 3/11/00, [EMAIL PROTECTED] wrote: Is there a patch or a script that can be used to filter by per user ?
remove
remove
DNS checks on sending address
What are the recommended ways of doing a DNS check on the sending domain before accepting mail? I see only 1 patch listed at qmail.org, and it wasn't well received (according to my search through the archives). Comments? jon
Re: Effective anti spamming
At 12:04 PM -0800 3/2/00, Chris Thorman wrote: Hi John, Would you be willing to share the scripts/setup you use to achieve the labeling that you do? I'd like to be able to replicate this on our end -- labeling is better than rejecting, I think, because it allows after-the-fact analysis, plus it allows different users to choose how aggressively they want to filter. I sent the relavent files to Chris. Anyone else who wants them can contact me directly. jon
Re: Unix as it should be (OT)
Heh, I have that book. I picked it up one day after struggling to get ClearCase running on HPUX 8 (or was it 9?) for about 2 weeks. Not good for the UNIX newbie. It will really unnecessarily skew your opinion against the OS. So many of the UNIX "features" they listed were out of date, even back then (1994). It took me several years to get over some of the bias I picked up in that book. :-) And they never offered a solution for all of UNIX's short-comings. If a better OS can be made, why hadn't it? More of a "Whiner's Handbook" than anything, but still pretty funny in some parts. Hmm... I think I'll try to find it tonight... Signed, A Reformed UNIX Hater At 7:25 PM -0600 3/2/00, Henri J. Schlereth wrote: I refer anybody who wants to know what 'etc' covers to find a copy of "The UNIX-HATERS Handbook", by Simson Garfinkel, et. al. ISBN 1-56884-203-1 It's been out of print for a while, but if you can find it, it's an entertaining read. (Full disclosure: I'm a contributor.) Chris Yes! I managed to find a copy at a half-price bookstore, and as a *nix fan many people are surprised to see that in my possesion. Maybe it is time for a Microsoft-Haters Handbook? Henri
