[qmailtoaster] dknewkey error

[Gabriel Lai]

Hi all,

I have the below error after issue dknewkey command:

[EMAIL PROTECTED] ~]# dknewkey 
/var/qmail/control/domainkeys/allict.com.my/private > allict.com.my.txt
grep: /tmp/dknewkey.4329: No such file or directory
[EMAIL PROTECTED] ~]#


Pls help


   
Ready
 for the edge of your seat? 
Check out tonight's top picks on Yahoo! TV. 
http://tv.yahoo.com/

Re: [qmailtoaster] Remote host said: 550 5.7.1 Fix reverse DNS....

[Gabriel Lai]

Hi Domenico & Jake,

I've requested the ISP to add in a PTR record in their DNS Server to resolve 
this issue, I think this is the only way.

Anyway, thanks for the help. Will feedback if I have any reply from ISP.

Cheers


- Original Message 
From: Jake Vickers <[EMAIL PROTECTED]>
To: qmailtoaster-list@qmailtoaster.com
Sent: Sunday, June 10, 2007 6:48:39 PM
Subject: Re: [qmailtoaster] Remote host said: 550 5.7.1 Fix reverse DNS

Domenico Fortunato wrote: 
Domenico Fortunato ha scritto: 
Gabriel Lai ha scritto: 
Hi all,

I have the below issue with certain recipients' mail server

Connected to 203.113.188.10 but sender was rejected. Remote host said: 550 
5.7.1 Fix reverse DNS for 60.49.220.221,or use your
ISP server


How to solve this issue? 60.49.220.221 is my Gateway IP, but my real IP address 
is 60.49.220.222... how can I force qmail to send out with 60.49.220.222 
instead of 60.49.220.221??




Have you tried iptables postrouting?

Sorry for my bad english, I repeat...

Did you try iptables postrouting?
Regards.
Domenico Fortunato

I don't think that will have any effect.  The IP he's sending from has to PTR 
recrord, so AOL or whoever he's sending to has no was to resolve his IP to a 
domain name.  He can either route his email through his ISP (who will have a 
reverse record, or PTR) or he can obtain a PTR record for his IP address from 
his IP.



 

Need Mail bonding?
Go to the Yahoo! Mail Q&A for great tips from Yahoo! Answers users.
http://answers.yahoo.com/dir/?link=list&sid=396546091

[qmailtoaster] ClamAV toaster issue

[Jon M. Ernster]

Hey all,

I'm having an interesting problem with my qmail-toaster installation, 
particularly with ClamAV. Everything is the current version from the web 
site.


I host my site/mail server on a VPS.  My web host disables execute 
permissions on /tmp and /var/tmp for security purposes.  I had to get 
them to disable this so I could even get the packages installed.


I noticed that while clamav toaster was compiling, that it creates the 
user and puts its home directory in /tmp


+ /usr/sbin/useradd -u 46 -r -M -d /tmp -s /sbin/nologin -c 'Clam 
AntiVirus' -g clamav clamav


My question is whether or not clamav requires execute permissions in 
/tmp POST installation or not?


I believe that it might because I was having issues earlier where clamav 
processes were building up in a manner in which I believe clamav wasn't 
scanning/processing emails, therefore stopping all mail from processing 
on my server.  This may be because my VPS was restarted and the 
permissions on my /tmp directory were reverted to no longer allow 
execute permissions.


The output from a ps aux looked like this when I was having issues:

clamav   21828  0.0  0.0  1776  600 ?S21:22   0:00 
/var/qmail/bin/simscan
clamav   21829  0.0  0.0  1776  600 ?S21:22   0:00 
/var/qmail/bin/simscan
clamav   21832  0.0  0.0  4684 1224 ?S21:22   0:00 clamdscan 
--stdout
clamav   21834  0.0  0.0  4684 1224 ?S21:22   0:00 clamdscan 
--stdout
vpopmail 22156  0.0  0.0  5324 1424 ?S21:23   0:00 
/var/qmail/bin/qmail-smtpd /home/vpopmail/bin/vchkpw /bin/true
clamav   22167  0.0  0.0  1776  600 ?S21:23   0:00 
/var/qmail/bin/simscan
clamav   22169  0.0  0.0  4684 1224 ?S21:23   0:00 clamdscan 
--stdout
vpopmail 26412  0.0  0.0  5324 1416 ?S21:33   0:00 
/var/qmail/bin/qmail-smtpd /home/vpopmail/bin/vchkpw /bin/true
clamav   26419  0.0  0.0  1776  600 ?S21:33   0:00 
/var/qmail/bin/simscan
clamav   26424  0.0  0.0  4684 1224 ?S21:33   0:00 clamdscan 
--stdout
vpopmail 28119  0.0  0.0  5324 1424 ?S21:34   0:00 
/var/qmail/bin/qmail-smtpd /home/vpopmail/bin/vchkpw /bin/true
clamav   28120  0.0  0.0  1776  600 ?S21:34   0:00 
/var/qmail/bin/simscan
clamav   28122  0.0  0.0  4684 1224 ?S21:34   0:00 clamdscan 
--stdout
vpopmail  9259  0.0  0.0  5324 1416 ?S21:40   0:00 
/var/qmail/bin/qmail-smtpd /home/vpopmail/bin/vchkpw /bin/true
clamav9263  0.0  0.0  1776  600 ?S21:40   0:00 
/var/qmail/bin/simscan
clamav9265  0.0  0.0  4684 1224 ?S21:40   0:00 clamdscan 
--stdout
vpopmail  9636  0.0  0.0  5324 1964 ?S21:41   0:00 
/var/qmail/bin/qmail-smtpd /home/vpopmail/bin/vchkpw /bin/true
clamav9643  0.0  0.0  1776  600 ?S21:41   0:00 
/var/qmail/bin/simscan
clamav9647  0.0  0.0  4684 1224 ?S21:41   0:00 clamdscan 
--stdout
vpopmail 17453  0.0  0.0  5324 1420 ?S21:48   0:00 
/var/qmail/bin/qmail-smtpd /home/vpopmail/bin/vchkpw /bin/true
clamav   17589  0.0  0.0  1776  600 ?S21:48   0:00 
/var/qmail/bin/simscan
clamav   17595  0.0  0.0  4684 1224 ?S21:48   0:00 clamdscan 
--stdout


Currently everything is in working order, and execute permissions are 
allowed until I can get an answer as to whether or not execute 
permissions are necessary after the clamav toaster is installed.


If execute permissions are required, is there anything I can do about 
this?  Possibly a custom build of the toaster which defines an alternate 
location for clamav instead of /tmp?  I don't think my host will 
permanently enable execute permissions for my VPS, I would have to 
request them to grant me this access every time my VPS is restarted.  I 
would obviously prefer that no execute permissions be enabled on my 
server for security purposes as that is the intention of it being that 
way to begin with.


Any insight would be appreciated.

Thanks,

Jon

-
QmailToaster hosted by: VR Hosted 
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: [qmailtoaster] SPAM REJECT wrong Email

[Toni Wijaya]

problem solved after I add new line in local.cf as information from PakOgah

whitelist_from_rcvd [EMAIL PROTECTED] citi.com

the domain citi.com actually used by citigroup.com as internal mailsystem 
and we found them after carefully read the mail header.


anyway thank's to PakOgah that help me so much on this case.

Regards

toni


Tony,

I dont see USER_IN_WHITELIST's rule on your header
are you sure already add the domain with correct syntax?

and as Jake said you can feed a valid, work-related email to SA train by
forwarding to [EMAIL PROTECTED]

detail to create SA learning account is in here
http://wiki.qmailtoaster.com/index.php/SpamAssassin

if still problem, let's speak in Bahasa via Japri.
okeh..


yes, I already restart my spamassassin daemon

here is my header:

X-Spam-Flag: YES
X-Spam-Checker-Version: SpamAssassin 3.1.7 (2006-10-05) on
mail.masterindo.com
X-Spam-Level: ***
X-Spam-Status: Yes, score=11.2 required=5.0 tests=AWL,BAYES_00,
 FORGED_RCVD_HELO,HTML_MESSAGE,RM_bwo_Online,UPPERCASE_25_50
 autolearn=no version=3.1.7
X-Spam-Report:
 *  0.1 FORGED_RCVD_HELO Received: contains a forged HELO
 *  0.4 RM_bwo_Online BODY: masked spam word(s)
 * -2.6 BAYES_00 BODY: Bayesian spam probability is 0 to 1%
 *  [score: 0.]
 *  0.0 HTML_MESSAGE BODY: HTML included in message
 *  0.0 UPPERCASE_25_50 message body is 25-50% uppercase
 *   13 AWL AWL: From: address is in the auto white-list


- Original Message -
From: "PakOgah" <[EMAIL PROTECTED]>
To: 
Sent: Wednesday, May 30, 2007 6:20 PM
Subject: Re: [qmailtoaster] SPAM REJECT wrong Email



By adding domain on whitelist all emails from that domain will have
score -100 points
if there additional SA rules in there it suppose to be doesn't get your
tagged score (at /etc/mail/spamassasins/local.cf)
except on that email all SA rules get ignited
this is header from fedex.com, can I see your header to see what SA
rules
it get

X-Spam-Status: No, score=-102.4 required=4.0 tests=BAYES_00,TW_DF,TW_DL,
USER_IN_WHITELIST autolearn=no version=3.1.8


btw: did you restart your spamassasins daemon?

from http://wiki.apache.org/spamassassin/AutoWhitelist
to disable auto_whitelist
use_auto_whitelist 0

and the score will go down at the second and third time s/he sent you
email

Toni Wijaya wrote:

I can receive the email now, but still marked as SPAM (13 AWL AWL:
From:
address is in the auto white-list). How to remove address from auto
white-list?

thanks

- Original Message - From: "PakOgah" <[EMAIL PROTECTED]>
To: 
Sent: Monday, May 28, 2007 4:53 PM
Subject: Re: [qmailtoaster] SPAM REJECT wrong Email



Toni Wijaya wrote:

I already restart SpamAssassin but still not work

try to look at the header, may be you will find something like
@sub.domain.com
or try this it work with me, whitelisting email from fedex and its
subdomain
whitelist_from [EMAIL PROTECTED] [EMAIL PROTECTED] *.fedex.com fedex.com
whitelist_from_rcvd [EMAIL PROTECTED] fedex.com

check here for detail
http://spamassassin.apache.org/full/3.1.x/doc/Mail_SpamAssassin_Conf.html




-
QmailToaster hosted by: VR Hosted 
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]





-
 QmailToaster hosted by: VR Hosted 
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]






-
QmailToaster hosted by: VR Hosted 
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]





-
QmailToaster hosted by: VR Hosted 
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: [qmailtoaster] help getting tmomail.net MMS messages -- "invalid sender" issues

[Jean-Paul van de Plasse]

There is an other way, but that does imply you disable all checks on the email 
adres format.
add SENDER_NOCHECK="1" to your tcprules file, for either the mailserver ip you 
have these problems with or if your dare to your default line.
I have been running this for sometime now since I do not see too much problems 
with the format of the sender.
As far as I can see there are no files created based on the sender name and 
thus I do not see the risks, but I am not saying there are none!!

Do not forget to run qmailctl cdb
after you made the changes.

Regards,

JP
  - Original Message - 
  From: Bill Kwok 
  To: qmailtoaster-list@qmailtoaster.com 
  Sent: Sunday, June 10, 2007 5:28 PM
  Subject: Re: [qmailtoaster] help getting tmomail.net MMS messages -- "invalid 
sender" issues


  You may have a look about Nick's email:

  http://www.mail-archive.com/qmailtoaster-list@qmailtoaster.com/msg04628.html
   
  Best regards,
  Bill
   
  On 6/1/07, Adam Cantwell <[EMAIL PROTECTED]> wrote: 
>> Need some help getting tmomail.net MMS messages into my qmail
>> server.  Gmail.com has
>> apparently overcome the "invalid sender" issues which are blocked by
>> chkuser.  Mail to
>> earthlink.net  also succeeds.
>>
>> My qmail / vpopmail:  vpopmail-toaster-5.4.13-1.3.3  Uses chkuser:  v.
>> 2.0.8 for vpopmail > 5.3.x
>>
>> Email server blocks MMS email from tmomail.net
>>
>> e.g. # grep -i 'invalid sender address format' Log  |  tai64nlocal
>>Log /var/log/qmail/[EMAIL PROTECTED]
>> Produces "invalid sender address format" for the TMOMAIL MMS email.. 
>>
>> 2007-05-28 21:31:54.930953500 CHKUSER rejected sender:  from \
>><1805nnn/[EMAIL PROTECTED]::> remote
>>  \
> 
> I get the same thing when a user I have tries to send using his Tmobile
> phone. Whats happening is the / in the username; what chkuser is seeing is
> "1805nnn/TYPE= [EMAIL PROTECTED]" as the username. It doesn't like the
> slash. You can recompile chkuser to accept these, if you don't mind
> opening a security risk like that (actually, I'm not 100% positive you 
can 
> allow a / or not...).
>
>


Coincidentally, I just had this same issue come up.  According to RFC
2822, a forward slash apparently is a valid character in an address -
http://www.zvon.org/tmRFC/RFC2822/Output/chapter3.html#dot-atom.

Am I reading this wrong?

In the Chkuser documentation,

http://www.interazioni.it/opensource/chkuser/documentation/chkuser_settings.html#MX_format_checking
there is apparently an environment variable you can set called
"CHKUSER_ALLOW_SENDER_CHAR_xxx" where you can tell it to allow certain 
characters, but a "/" isn't one of them.

Did the original poster ever come up with a solution other than
recompiling Chkuser?

Adam

- 
QmailToaster hosted by: VR Hosted 
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: [qmailtoaster] help getting tmomail.net MMS messages -- "invalid sender" issues

[Bill Kwok]

You may have a look about Nick's email:

http://www.mail-archive.com/qmailtoaster-list@qmailtoaster.com/msg04628.html

Best regards,
Bill

On 6/1/07, Adam Cantwell <[EMAIL PROTECTED]> wrote:


>> Need some help getting tmomail.net MMS messages into my qmail
>> server.  Gmail.com has
>> apparently overcome the "invalid sender" issues which are blocked by
>> chkuser.  Mail to
>> earthlink.net  also succeeds.
>>
>> My qmail / vpopmail:  vpopmail-toaster-5.4.13-1.3.3  Uses chkuser:  v.
>> 2.0.8 for vpopmail > 5.3.x
>>
>> Email server blocks MMS email from tmomail.net
>>
>> e.g. # grep -i 'invalid sender address format' Log  |  tai64nlocal
>>Log /var/log/qmail/[EMAIL PROTECTED]
>> Produces "invalid sender address format" for the TMOMAIL MMS email..
>>
>> 2007-05-28 21:31:54.930953500 CHKUSER rejected sender:  from \
>><1805nnn/[EMAIL PROTECTED]::> remote
>>  \
>
> I get the same thing when a user I have tries to send using his Tmobile
> phone. Whats happening is the / in the username; what chkuser is seeing
is
> "1805nnn/[EMAIL PROTECTED]" as the username. It doesn't like the
> slash. You can recompile chkuser to accept these, if you don't mind
> opening a security risk like that (actually, I'm not 100% positive you
can
> allow a / or not...).
>
>


Coincidentally, I just had this same issue come up.  According to RFC
2822, a forward slash apparently is a valid character in an address -
http://www.zvon.org/tmRFC/RFC2822/Output/chapter3.html#dot-atom.

Am I reading this wrong?

In the Chkuser documentation,

http://www.interazioni.it/opensource/chkuser/documentation/chkuser_settings.html#MX_format_checking
there is apparently an environment variable you can set called
"CHKUSER_ALLOW_SENDER_CHAR_xxx" where you can tell it to allow certain
characters, but a "/" isn't one of them.

Did the original poster ever come up with a solution other than
recompiling Chkuser?

Adam

-
QmailToaster hosted by: VR Hosted 
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: [qmailtoaster] Rules Emporium

[Jake Vickers]

Jake Vickers wrote:
For those that get error logs sent to them, Rules Emporium returned 
404 error last night when trying to update your rules from Rules du 
Jour. The word on the Spamassassin mailing list is that there was a 
DDOS attack on the site last night.

If I hear anything else earth-shattering, I'll let you know.
RulesEmporium has been brought back online.  Prolexic (www.prolexic.com) 
provided DDoS protection for them and has allowed them to get back online.
They are asking that everyone also stop updating Rules du Jour rules 
nightly.  They say that since the rules are so infrequently updated, 
that everyone should at least most to a weekly check to save on bandwidth.





smime.p7s
Description: S/MIME Cryptographic Signature

Re: [qmailtoaster] Mails delivered in BULK/JUNK folder

[Jake Vickers]

Benedict Claver wrote:

Hi list,

I have installed Qmailtoaster with CentOS 4.5,
tested sending within same domain is ok,and as well I
can receive mails when sent from yahoo,Hotmail and the
like.

The problem is when tested sending to yahoo and
hotmail, mails are accepted by those servers but are
just sent to Bulk and Junk folders respectively.

Can any one have a crue on what is not working right?.

I will appreciate your quick contributions.
  
Move the messages into the Inbox on Hotmail and Yahoo. After you do this 
a couple times, it (Hotmail or Yahoo) will recognize your emails as 
legitimate and deliver them there by default.

Other things to look at:

PTR records - do you have one?
DomainKeys - are yours set up correct, or set up at all?
SPF - did you do this?



smime.p7s
Description: S/MIME Cryptographic Signature

Re: [qmailtoaster] ctyme.com criticizes qmail

[Jake Vickers]

Eric Spaeth wrote:
I looked at a couple example RFC-2821 patches for qmail-remote, and I 
think I captured the main cases where qmail-remote should be 
attempting a connection to an alternate MX (if available):


1) 400-599 code return on greeting   (lame server)
2) 400-599 code after qmail-remote identifies
3) 400-599 code for recipients  (flagbother not set as part of the 
else clause)


Here's my first stab at a patch:  
http://www.spaethco.com/share/qmail-rfc2821.patch


Initial testing seems to indicate the patch is working as anticipated; 
I would appreciate review of these changes by the development 
community for future inclusion in the project.
Thanks for the patch. I've brought the subject up on the developer's 
list for at least further testing.


smime.p7s
Description: S/MIME Cryptographic Signature

Re: [qmailtoaster] Remote host said: 550 5.7.1 Fix reverse DNS....

[Jake Vickers]

Domenico Fortunato wrote:

Domenico Fortunato ha scritto:

Gabriel Lai ha scritto:

Hi all,

I have the below issue with certain recipients' mail server

Connected to 203.113.188.10 but sender was rejected. Remote host 
said: 550 5.7.1 Fix reverse DNS for 60.49.220.221,or use your

ISP server


How to solve this issue? 60.49.220.221 is my Gateway IP, but my real 
IP address is 60.49.220.222... how can I force qmail to send out 
with 60.49.220.222 instead of 60.49.220.221??





Have you tried iptables postrouting?

Sorry for my bad english, I repeat...

Did you try iptables postrouting?
Regards.
Domenico Fortunato
I don't think that will have any effect.  The IP he's sending from has 
to PTR recrord, so AOL or whoever he's sending to has no was to resolve 
his IP to a domain name.  He can either route his email through his ISP 
(who will have a reverse record, or PTR) or he can obtain a PTR record 
for his IP address from his IP.




smime.p7s
Description: S/MIME Cryptographic Signature

[qmailtoaster] Mails delivered in BULK/JUNK folder

[Benedict Claver]

Hi list,

I have installed Qmailtoaster with CentOS 4.5,
tested sending within same domain is ok,and as well I
can receive mails when sent from yahoo,Hotmail and the
like.

The problem is when tested sending to yahoo and
hotmail, mails are accepted by those servers but are
just sent to Bulk and Junk folders respectively.

Can any one have a crue on what is not working right?.

I will appreciate your quick contributions.

Regards,
Benny




   

Be a better Heartthrob. Get better relationship answers from someone who knows. 
Yahoo! Answers - Check it out. 
http://answers.yahoo.com/dir/?link=list&sid=396545433

-
 QmailToaster hosted by: VR Hosted 
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]