[qmailtoaster] Problem in QMT new installation - libmysqlclient.so.14: cannot open share object file
Hi all, I tried to install QMT in a newly installed CentOS server but failed. Here's my server version: [r...@mx1 qtms-install]# cat /etc/redhat-release CentOS release 5.5 (Final) [r...@mx1 qtms-install]# cat /proc/version Linux version 2.6.18-194.26.1.el5 (mockbu...@builder10.centos.org) (gcc version 4.1.2 20080704 (Red Hat 4.1.2-48)) #1 SMP Tue Nov 9 12:54:20 EST 2010 [r...@mx1 qtms-install]# yum list mysql ... mysql.i386 5.0.77-4.el5_5.4 installed mysql.x86_64 5.0.77-4.el5_5.4 installed I follow the installation stated in http://wiki.qmailtoaster.com/index.php/CentOS_5_QmailToaster_Install and the installation process looks fine. After the installation, everything except that vpopmail looks fine. [r...@mx1 qtms-install]# vdominfo vdominfo: error while loading shared libraries: libmysqlclient.so.14: cannot open shared object file: No such file or directory And similar thing logged in submission log: [r...@mx1 qtms-install]# vdominfo vdominfo: error while loading shared libraries: libmysqlclient.so.14: cannot open shared object file: No such file or directory Would anyone tell me what's wrong? Thanks in advance. Best regards, Bill
Re: [qmailtoaster] Problem in QMT new installation - libmysqlclient.so.14: cannot open share object file
Randy, Thx for your help. Actually, I've tried to remove both mysql and QMT and reinstall them again but the problem still there once I reload the user database. . Here's my mysql status: [r...@mx1 users]# rpm -qa | grep mysql mysql-bench-5.0.77-4.el5_5.4 mysql-5.0.77-4.el5_5.4 mysql-devel-5.0.77-4.el5_5.4 mysql-5.0.77-4.el5_5.4 mysql-devel-5.0.77-4.el5_5.4 mysql-server-5.0.77-4.el5_5.4 php-mysql-5.1.6-27.el5_5.3 [r...@mx1 users]# ldconfig -v | grep sql ldconfig: /usr/lib/mysql/libmysqlclient.so.14 is not a symbolic link /usr/lib/mysql: libmysqlclient.so.15 - libmysqlclient.so.15.0.0 libmysqlclient.so.14 - libmysqlclient.so.14.0.0 libmysqlclient_r.so.15 - libmysqlclient_r.so.15.0.0 /usr/lib64/mysql: libmysqlclient.so.15 - libmysqlclient.so.15.0.0 libmysqlclient_r.so.15 - libmysqlclient_r.so.15.0.0 libsqlite3.so - libsqlite3.so libsqlite3.so - libsqlite3.so libsqlite3.so.0 - libsqlite3.so.0.8.6 libsqlite3.so.0 - libsqlite3.so.0.8.6 Is there anything I miss? Thx. Best regards, Bill On Sat, Jan 8, 2011 at 7:16 PM, Randy Katz rk...@simplicityhosting.comwrote: Hi, It is a problem with mysql, you might try to remove that file and then do a yum install (forcing reinstall), on my fresh centos 5 system which is current it is pointing to a libmysqlclient.so.15 which is really just a soft link pointer: # rpm -qa | grep mysql mysql-5.0.77-4.el5_5.4 mysql-bench-5.0.77-4.el5_5.4 mysql-server-5.0.77-4.el5_5.4 mysql-devel-5.0.77-4.el5_5.4 php-mysql-5.1.6-27.el5_5.3 [r...@mail2 /]# ldconfig -v | grep sql /usr/lib/mysql: libmysqlclient_r.so.15 - libmysqlclient_r.so.15.0.0 libmysqlclient.so.15 - libmysqlclient.so.15.0.0 libsqlite3.so - libsqlite3.so libsqlite3.so.0 - libsqlite3.so.0.8.6 On 1/8/2011 2:36 AM, Bill Kwok wrote: Hi all, I tried to install QMT in a newly installed CentOS server but failed. Here's my server version: [r...@mx1 qtms-install]# cat /etc/redhat-release CentOS release 5.5 (Final) [r...@mx1 qtms-install]# cat /proc/version Linux version 2.6.18-194.26.1.el5 (mockbu...@builder10.centos.org) (gcc version 4.1.2 20080704 (Red Hat 4.1.2-48)) #1 SMP Tue Nov 9 12:54:20 EST 2010 [r...@mx1 qtms-install]# yum list mysql ... mysql.i386 5.0.77-4.el5_5.4 installed mysql.x86_64 5.0.77-4.el5_5.4 installed I follow the installation stated in http://wiki.qmailtoaster.com/index.php/CentOS_5_QmailToaster_Install and the installation process looks fine. After the installation, everything except that vpopmail looks fine. [r...@mx1 qtms-install]# vdominfo vdominfo: error while loading shared libraries: libmysqlclient.so.14: cannot open shared object file: No such file or directory And similar thing logged in submission log: [r...@mx1 qtms-install]# vdominfo vdominfo: error while loading shared libraries: libmysqlclient.so.14: cannot open shared object file: No such file or directory Would anyone tell me what's wrong? Thanks in advance. Best regards, Bill
Re: [qmailtoaster] Re: Problem in QMT new installation - libmysqlclient.so.14: cannot open share object file
Thank you all for the help. It's my fault that I setup a cron job to rsync whole /home folder with my old machine in order to duplicate all existing email. But I forgot it also includes all programs in /home/vpopmail/bin while leads to version issues. I would like to express my appreciation for the creation of QTP which make my life easy! Best regards, Bill On Sun, Jan 9, 2011 at 5:34 AM, Jake Vickers j...@qmailtoaster.com wrote: On 01/08/2011 12:36 PM, Eric Shubert wrote: On 01/08/2011 09:12 AM, Randy Katz wrote: also, did you do a yum -y update before you tried to install qmailtoaster the first time? This sounds like the problem to me. I have libmysqlclient.so.15 on my test box with COS5.5. I'd rebuild vpopmail-toaster. Use qtp-newmodel, and it'll pick up dependent packages to rebuild automatically. It sounds like it's built against an old library. A rebuild (after fully updating) should get him to where he wants to be. - Qmailtoaster is sponsored by Vickers Consulting Group ( www.vickersconsulting.com) Vickers Consulting Group offers Qmailtoaster support and installations. If you need professional help with your setup, contact them today! - Please visit qmailtoaster.com for the latest news, updates, and packages. To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com
Re: [qmailtoaster] Courier IMAP slowdown
Hi Eric, What's the pros and cons of Dovecot? Will it be worthwhile to replace Dovecot with Courier-IMAP in standard QMT? Thx. Best regards, Bill On Sun, Sep 7, 2008 at 12:27 AM, Eric Shubert [EMAIL PROTECTED] wrote: Jake Vickers wrote: Service, ColliniConsulting S.a.s. wrote: Hello, i have got a Qmail server with about 30 users working with IMAP mailstore with about 30/35Gb of total mail amount. When the Server works hevily, after some time, the IMAP Server socket start answer slowly to request, and all users experience slowdown with the service. From the Linux consolle, if i enter: telnet localhost 143, the cursor blink for some seconds (sometimes about 40/50 seconds) and only after this time the Imap Banner appear. How can i solve this problem? I raised up the tcpsoftlimit in the run script of the /var/service/imapd folder but nothing happened... Thank you in advance for your kind interest, cheers! Look into tuning the courier imap control files. They're in /etc. You may also need to look at your data connection(s) and filesystem. I'd certainly look at tuning first. Where's the bottleneck? If that proves unsuccessful, you might try dovecot in place of courier-imap. I'm running dovecot (http://dovecot.org) with some high volume mailboxes on a couple toasters with good response times. Not quite that many users, but I doubt that would be an issue. -- -Eric 'shubes' - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
[qmailtoaster] Conflict between Autorespond and ezmlm
Hi, My server runs standard qmt. I found that user will receive ezmlm probe / warning when both of the following events are true: 1. Auto-reply has been turned on 2. The user has subscribed to a mailing list and an email is sent to such mailing list. I understand that AUTORESPOND uses this method to avoid email bouncing between servers, but is there any way to avoid sending this annoying email to users? Best regards, Bill
Re: [qmailtoaster] Problem with Submission Port (Internally and Externally)
I have some clients (using Outlook 2003) who couldn't send email by using port 587. After appling SP2 to their machines, it works a little better, but they still have intermittent problems. I use Thunderbird most of the time and it works fine. So it gives me a feeling that it should still be a mail client problem. Finally I have to ask my clients to uncheck the This server requires a secure connection(SSL) option for the SMTP. Best regards, Bill On Wed, May 21, 2008 at 12:43 PM, Helmut Fritz [EMAIL PROTECTED] wrote: you client error message says it is on port 25... -- *From:* Gabriel Lai [mailto:[EMAIL PROTECTED] *Sent:* Tuesday, May 20, 2008 8:26 PM *To:* qmailtoaster-list@qmailtoaster.com *Subject:* Re: [qmailtoaster] Problem with Submission Port (Internally and Externally) Yes, the problem happens not every time... It's intermittent... I've configured the client to use 587... any clues? - Original Message From: Helmut Fritz [EMAIL PROTECTED] To: qmailtoaster-list@qmailtoaster.com Sent: Wednesday, May 21, 2008 10:57:35 AM Subject: RE: [qmailtoaster] Problem with Submission Port (Internally and Externally) do you mean a problem with the submission port, 587? if so your client is still set for regular smtp - 25. at least that is what the message says... -- *From:* Gabriel Lai [mailto:[EMAIL PROTECTED] *Sent:* Tuesday, May 20, 2008 6:59 PM *To:* qmailtoaster-list@qmailtoaster.com *Subject:* [qmailtoaster] Problem with Submission Port (Internally and Externally) Hello all, I have the attached error message. Anyone had this before?? I've tried internally and externally, both doesn't work. Cheers Gabriel
[qmailtoaster] Can I accept a specific domain to send email to my ezmlm mailing list
We are using a standard QMT with several EZMLM mailing list. I would like to block all email from other domains except a couple. For example, my mailing list is [EMAIL PROTECTED] I want [EMAIL PROTECTED] to accept all emails from all users of xxx.com and yyy.com only but not other domains. Not all users of xxx.com and yyy.com are in the mailing list. Is it possible? Thanks a lot. Best regards, Bill
[qmailtoaster] Forward email with domainkeys
Hi List, Some of my users' email are forwarded from regional office (another qmail server). Most emails are fine, except email from google alert. The only error message I can see is something like this: Dec31 14:40:12 CHKUSER accepted rcpt: from [EMAIL PROTECTED]:: remote regionaloffice:unknown:x.x.x.x rcpt [EMAIL PROTECTED] : found existing recipient Dec31 14:40:13 tcpserver: end 24357 status 256 My guess is it's due to domainkeys is being used by Google and when we forward from one server to another, it breaks. Am I correct? If yes, any way to disable domainkeys checking? Thanks in advance. Best regards, Bill
Re: [qmailtoaster] Forward email with domainkeys
On Jan 29, 2008 12:07 AM, Eric Shubes [EMAIL PROTECTED] wrote: Bill Kwok wrote: Hi List, Some of my users' email are forwarded from regional office (another qmail server). Most emails are fine, except email from google alert. The only error message I can see is something like this: Dec31 14:40:12 CHKUSER accepted rcpt: from [EMAIL PROTECTED] mailto:[EMAIL PROTECTED] :: remote regionaloffice:unknown:x.x.x.x rcpt [EMAIL PROTECTED] mailto:[EMAIL PROTECTED] : found existing recipient Dec31 14:40:13 tcpserver: end 24357 status 256 My guess is it's due to domainkeys is being used by Google and when we forward from one server to another, it breaks. Am I correct? If yes, any way to disable domainkeys checking? Thanks in advance. Best regards, Bill That could be on older toaster versions, which did not log spf nor dk rejections. If your toaster is fairly recent, you would see a rejection message in the log for both of these conditions. If your toaster is a bit old, I suspect that your problem is more likely due to SPF misconfiguration, although domainkeys might also be a problem. Check the list archive for instructions on disabling domainkeys. The wizard at http://www.openspf.org is great helping to determine what should be in the spf record for your domain. -- -Eric 'shubes' - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] Hi Eric, It seems my qmt versions are not that outdated: # rpm -qa | grep toaster vpopmail-toaster-5.4.13-1.3.3 ezmlm-cgi-toaster-0.53.324-1.3.2 courier-authlib-toaster-0.59.1-1.3.5 squirrelmail-toaster-1.4.9a-1.3.5 spamassassin-toaster-3.1.8-1.3.7 ripmime-toaster-1.4.0.6-1.3.2 qmailmrtg-toaster-4.2-1.3.2 isoqlog-toaster-2.1-1.3.3 daemontools-toaster-0.76-1.3.2 libdomainkeys-toaster-0.68-1.3.2 libsrs2-toaster-1.0.18-1.3.2 courier-imap-toaster-4.1.2-1.3.6 send-emails-toaster-0.5-1.3.3 qmail-pop3d-toaster-1.03-1.3.14 autorespond-toaster-2.0.4-1.3.2 qmailtoaster-plus-0.2.7-1.3.9 control-panel-toaster-0.5-1.3.3 simscan-toaster-1.3.1-1.3.5 vqadmin-toaster-2.3.4-1.3.2 qmailadmin-toaster-1.2.9-1.3.3 ucspi-tcp-toaster-0.88-1.3.4 maildrop-toaster-devel-2.0.3-1.3.4 clamav-toaster-0.90.1-1.3.11 ezmlm-toaster-0.53.324-1.3.2 maildrop-toaster-2.0.3-1.3.4 qmail-toaster-1.03-1.3.14 To be honest, I have no idea about how to setup SPF. I will study it soon and hope can solve my problem soon. Thanks for pointing me to a new direction.
Re: [qmailtoaster] It is very urgent I will be appreciate your early response
Hi Ahmed, From your error msg, it shows that your user cannot connect from external IP to port 25 of your server because they are blocked by RBLSMTP. They will have to use submission port instead. Please check your server log files and see if there's anything wrong, such as: qq hard reject (DomainKeys verify status: bad format (#5.3.0)) May be you can disable Domainkey for now and see if it's related to your problem. Good Luck. Best regards, Bill On 9/2/07, Ahmed Shareef [EMAIL PROTECTED] wrote: Could somebody help me. There is some problem with SMTP port If my client is connected to LAN (office network) every thing is fine, they are able to use port 25 and 587. But my problem is that when ever they are connecting from out side they are not able to access port 25 and 587 but they are able to telnet port 25 and 587 *It is very urgent I will be appreciate your early response* For more clarification my side I have two network cards in my mail server one with public IP address and other one with LAN IP address (office network) office user are configure with LAN IP address (internal IP) and *firewall is disable* *If I configure with port 587 they are getting above error message * Your server has unexpectedly terminated the connection. Possible causes for this include server problems, network problems, or a long period of inactivity. Account: ' mail.domain.net http://email.dit.net/', Server: ' mail.domain.net http://email.dit.net/', Protocol: SMTP, Port: 587, Secure (SSL): Yes, Error Number: 0x800CCC0F *If I configure with port 25 they are getting above error message * The server does not support a SSL connection. Account: ' mail.domain. http://email.dubai.com/net', Server: ' *mail. http://email.dubai.com/domain.net * ', Protocol: SMTP, Server Response: '250 rblsmtpd.local', Port: 25, Secure(SSL): Yes, Server Error: 250, Error Number: 0x800CCC7D *Here is my tcp.smtp* 127.:allow,RELAYCLIENT=,DKSIGN=/var/qmail/control/domainkeys/%/private,RBLSMTPD=,NOP0FCHECK=1 :allow,BADMIMETYPE=,BADLOADERTYPE=M,CHKUSER_RCPTLIMIT=50,CHKUSER_WRONGRCPTLIMIT=10,QMAILQUEUE=/var/qmail/bin/simscan,DKSIGN=/var/qmail/control/domainkeys/%/private,NOP0FCHECK=1
[qmailtoaster] How to setup QMTP
Hi all, I am thinking of using QMTP to send /receive email between our 2 company email servers. 1. Does QMTP cause any conflict with the current qmt? 2. How do I setup QMTP? Should I add the following line (or something simiar) to my SMTP run script? tcpserver -x /etc/qmqp.cdb -u 7770 -g 2108 0 628 /var/qmail/bin/qmail-qmqpd 3. Does 628 a standard port for QMTP communicateion? 4. Do I need to tell qmt that which server should use QMTP instead of SMTP? Thanks in advance. Best regards, Bill
[qmailtoaster] Upgrade ClamAV by qtp-newmodel
Hi All, I got the following from my freshclam.log: ClamAV update process started at Tue Jun 12 18:02:53 2007 WARNING: Your ClamAV installation is OUTDATED! WARNING: Local version: 0.90.1 Recommended version: 0.90.3 DON'T PANIC! Read http://www.clamav.net/support/faq main.inc is up to date (version: 43, sigs: 104500, f-level: 14, builder: sven) Downloading daily-3406.cdiff [100%] daily.inc updated (version: 3406, sigs: 20663, f-level: 16, builder: ccordes) WARNING: Your ClamAV installation is OUTDATED! WARNING: Current functionality level = 14, recommended = 16 I would like to upgrade it by using qtp-newmodel. But I've also heard from the list that qtp-newmodel has some problems recently. Would any one tell me: 1. Has the problem of qtp-newmodel been fixed? 2. If I use qtp-newmodel to upgrade clamav only, will it work? 3. If qtp-newmodel is not recommended for now, how can I upgrade clamav manually? Thanks. Best regards, Bill
Re: [qmailtoaster] help getting tmomail.net MMS messages -- invalid sender issues
You may have a look about Nick's email: http://www.mail-archive.com/qmailtoaster-list@qmailtoaster.com/msg04628.html Best regards, Bill On 6/1/07, Adam Cantwell [EMAIL PROTECTED] wrote: Need some help getting tmomail.net MMS messages into my qmail server. Gmail.com has apparently overcome the invalid sender issues which are blocked by chkuser. Mail to earthlink.net also succeeds. My qmail / vpopmail: vpopmail-toaster-5.4.13-1.3.3 Uses chkuser: v. 2.0.8 for vpopmail 5.3.x Email server blocks MMS email from tmomail.net e.g. # grep -i 'invalid sender address format' Log | tai64nlocal Log /var/log/qmail/[EMAIL PROTECTED] Produces invalid sender address format for the TMOMAIL MMS email.. 2007-05-28 21:31:54.930953500 CHKUSER rejected sender: from \ 1805nnn/[EMAIL PROTECTED]:: remote mailx06.tmomail.net:unknown:66.94.9.236 \ I get the same thing when a user I have tries to send using his Tmobile phone. Whats happening is the / in the username; what chkuser is seeing is 1805nnn/[EMAIL PROTECTED] as the username. It doesn't like the slash. You can recompile chkuser to accept these, if you don't mind opening a security risk like that (actually, I'm not 100% positive you can allow a / or not...). Coincidentally, I just had this same issue come up. According to RFC 2822, a forward slash apparently is a valid character in an address - http://www.zvon.org/tmRFC/RFC2822/Output/chapter3.html#dot-atom. Am I reading this wrong? In the Chkuser documentation, http://www.interazioni.it/opensource/chkuser/documentation/chkuser_settings.html#MX_format_checking there is apparently an environment variable you can set called CHKUSER_ALLOW_SENDER_CHAR_xxx where you can tell it to allow certain characters, but a / isn't one of them. Did the original poster ever come up with a solution other than recompiling Chkuser? Adam - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
[qmailtoaster] How to run admin-toaster in HTTPS
Dear all, I try to turn my admin-toaster webpage to become a HTTPS page by changing my toaster.conf file. But it turns out asking user name and password for every page. Here's what my file looks like: IfModule mod_alias.c ScriptAlias /mail/ /usr/share/toaster/cgi-bin/ Alias /admin-toaster/ /usr/share/toaster/htdocs/admin/ Alias /stats-toaster/ /usr/share/toaster/htdocs/mrtg/ Alias /qlogs-toaster/ /usr/share/toaster/htdocs/isoqlog/ Alias /images-toaster/ /usr/share/toaster/htdocs/images/ Alias /scripts/ /usr/share/toaster/htdocs/scripts/ Alias /qmailadmin /usr/share/qmailadmin/ /IfModule Directory /usr/share/qmailadmin AddHandler cgi-script .cgi AddHandler cgi-script qmailadmin DirectoryIndex index.cgi qmailadmin index.html Options +Indexes FollowSymLinks +ExecCGI Order allow,deny Allow from all /Directory Directory /usr/share/toaster/htdocs Options -Indexes FollowSymLinks MultiViews AllowOverride All Order allow,deny Allow from all /Directory Directory /usr/share/toaster/htdocs/admin AuthType Basic AuthName Qmail Toaster v. 1.2 Admin AuthUserFile /usr/share/toaster/include/admin.htpasswd require valid-user /Directory . . . Would anyone show me the correct way? Thanks a lot. Best regards, Bill
Re: [qmailtoaster] How to run admin-toaster in HTTPS
On 5/30/07, [EMAIL PROTECTED] [EMAIL PROTECTED] wrote: Dear all, I try to turn my admin-toaster webpage to become a HTTPS page by changing my toaster.conf file. But it turns out asking user name and password for every page. Here's what my file looks like: Check in the archives - I remember a while ago someone posting some instructions on how to run Squirrelmail through HTTPS, and that may give you some good clues. Squirrelmail uses a plugin for https, so it's a bit different. I'm not sure how you would do it with the Toaster admin. Chas Yes, you are right. I've implemented https for my squirrelmail but just having problem setting up for my admin-toaster. Bill
[qmailtoaster] Steps to change the IP address of qmail server
Dear all, I am planning to change my ISP and hence the IP address of my server is going to be changed. Due to limited resources, I can't setup another server while switching over to the new IP. My server has around 60 users. I plan to: 1. Shorten the refresh time of my MX record to 900 (15 mins) from the current 3600 (1 hour) for 4 days to make sure all DNS gets the changes; 2. change the MX record to the new IP address and plug my server to the new network Does the above steps work and are they enough? My current MX record use the following settings: refresh = 3600 (1 hour) retry = 900 (15 mins) expire = 360 (41 days 16 hours) default TTL = 86400 (1 day) Your comments are appreciated. Best regards, Bill
Re: [qmailtoaster] Steps to change the IP address of qmail server
Dear Jared, Thank you very much. Best regards, Bill On 4/20/07, Jared Markell [EMAIL PROTECTED] wrote: This isn't bad. Only thing I would do differently is possible setting both IPs in your MX records, the new one having a lower priority, before you do the IP change. This can only be done though, if you know the new IP address. domain IN MX 10 old.ip.add.ress IN MX 20 new.ip.add.ress This way, even slower-to-update servers will try to send to the new one once the old one is dead. After the IP change is live, remove your old MX 10 and make your MX 20 the new 10. -- *From:* Bill Kwok [mailto:[EMAIL PROTECTED] *Sent:* Thursday, April 19, 2007 9:12 AM *To:* qmailtoaster-list *Subject:* [qmailtoaster] Steps to change the IP address of qmail server Dear all, I am planning to change my ISP and hence the IP address of my server is going to be changed. Due to limited resources, I can't setup another server while switching over to the new IP. My server has around 60 users. I plan to: 1. Shorten the refresh time of my MX record to 900 (15 mins) from the current 3600 (1 hour) for 4 days to make sure all DNS gets the changes; 2. change the MX record to the new IP address and plug my server to the new network Does the above steps work and are they enough? My current MX record use the following settings: refresh = 3600 (1 hour) retry = 900 (15 mins) expire = 360 (41 days 16 hours) default TTL = 86400 (1 day) Your comments are appreciated. Best regards, Bill
Re: [qmailtoaster] Steps to change the IP address of qmail server
Dear Janno, Thank you for the recommendation. Although my server has only 1 NIC right now, your suggestion is very attractive. May be I should add anohter NIC when it's possible. I've also heard from the list that qmail will always use the last eth interface. Would you show me how to run qmail by using 2 NIC? Thanks in advance. Best regards, Bill On 4/20/07, Janno Sannik [EMAIL PROTECTED] wrote: isn't using 2 isps in parallel an option? I have done it like this twice. works /w 0 downtime. Bill Kwok wrote: Dear Jared, Thank you very much. Best regards, Bill On 4/20/07, *Jared Markell* [EMAIL PROTECTED] mailto:[EMAIL PROTECTED] wrote: This isn't bad. Only thing I would do differently is possible setting both IPs in your MX records, the new one having a lower priority, before you do the IP change. This can only be done though, if you know the new IP address. domain IN MX 10 old.ip.add.ress IN MX 20 new.ip.add.ress This way, even slower-to-update servers will try to send to the new one once the old one is dead. After the IP change is live, remove your old MX 10 and make your MX 20 the new 10. *From:* Bill Kwok [mailto:[EMAIL PROTECTED] mailto:[EMAIL PROTECTED]] *Sent:* Thursday, April 19, 2007 9:12 AM *To:* qmailtoaster-list *Subject:* [qmailtoaster] Steps to change the IP address of qmail server Dear all, I am planning to change my ISP and hence the IP address of my server is going to be changed. Due to limited resources, I can't setup another server while switching over to the new IP. My server has around 60 users. I plan to: 1. Shorten the refresh time of my MX record to 900 (15 mins) from the current 3600 (1 hour) for 4 days to make sure all DNS gets the changes; 2. change the MX record to the new IP address and plug my server to the new network Does the above steps work and are they enough? My current MX record use the following settings: refresh = 3600 (1 hour) retry = 900 (15 mins) expire = 360 (41 days 16 hours) default TTL = 86400 (1 day) Your comments are appreciated. Best regards, Bill - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] Email Sending Failed... HELP!!
messagelabs.com seems require sender's domain with reverse dns. Does your domain has one? On 3/20/07, Eric Shubes [EMAIL PROTECTED] wrote: Perhaps they're using a blocklist that has you listed? Gabriel Lai wrote: I've checked it, but I still don understand why only this domain name cannot received our email... any ideas? - Original Message From: Natalio Gatti [EMAIL PROTECTED] To: qmailtoaster-list@qmailtoaster.com Sent: Tuesday, March 20, 2007 9:34:57 PM Subject: Re: [qmailtoaster] Email Sending Failed... HELP!! Did you check www.messagelabs.com/support http://www.messagelabs.com/support and look for information? There it says: 450 Requested action aborted [7] The error message indicates a temporary error. Please try resending your message. If the problem persists, please contact your IT administrator or ISP provider. On 3/20/07, *Gabriel Lai* [EMAIL PROTECTED] mailto:[EMAIL PROTECTED] wrote: Hi all, I've the below error message when send an email to my customer. Please help! *05:44:13*connect to mail1.messagelabs.com[193.109.254.147 http://193.109.254.147/]: Connection refused (port 25) *05:44:13*connect to mail1.messagelabs.com[193.109.254.147 http://193.109.254.147/]: Connection refused (port 25) *05:44:15*connect to mail1.messagelabs.com[212.125.75.4 http://212.125.75.4/]: server refused to talk to me: 450 Requested action aborted [ 7.2] 102, please visit www.messagelabs.com/support http://www.messagelabs.com/support for more details about this error message. (port 25) *05:44:15*connect to mail27.messagelabs.com[193.109.254.147 http://193.109.254.147/]: Connection refused (port 25) -- -Eric 'shubes' - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] Accepts Mails from the unknown users of same Domain
Hi Ashok, It seems you are connecting to your QT server by using private IP ( 192.168.x.x). I guess you've whitelisted such IP range from your tcp.smtp Best regards, Bill On 3/9/07, ashok [EMAIL PROTECTED] wrote: Dear All,, I have installed QT in the test PC. Then I performed the telnet test …. [EMAIL PROTECTED] # telnet mail.exmp.com 25 Trying 192.168.0.22... Connected to mail.exmp.com (192.168.0.22). Escape character is '^]'. 220 Alloha SMTP ESMTP ehlo 250-Alloha SMTP 250-STARTTLS 250-PIPELINING 250-8BITMIME 250-SIZE 20971520 250 AUTH LOGIN PLAIN CRAM-MD5 mail from: [EMAIL PROTECTED] 250 ok rcpt to: [EMAIL PROTECTED] 250 ok data 354 go ahead hi how r u ? . 250 ok 1173434429 qp 12719 Quit I Don't have account [EMAIL PROTECTED] but still my mail server accepts message. Pls Suggets.. Thanks a tonJ ashok
Re: [qmailtoaster] Users can't send mails due to RBL / PBL / CBL
Hi Tim, Submission port is the same as SMTP port with the following differences: 1. SMTP port checks your IP against blacklist(s) while Submission port doesn't 2. Authentication is required when submitting email through Submission port while it's not required at SMTP port. Best regards, Bill 2007/3/6, Tim Korves [EMAIL PROTECTED]: Hi there, Tell your users to use the submission port, port 587 and enable smtp-auth that will fix the rbl issues they are facing ... use of SMTP-Auth is enabled, but why they should use the submission port? I also don't make use of it and I'm able to send mails with SMTP-Auth... Is there a chance of disabling the xBL checks for SMTP authenticated users on standard port 25? Tim - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] qq hard/soft reject
Hi Terry, When gmail / yahoo sent email out, they will sign the email by their own domain keys. But when these emails are forwarded from your ISP, the header has been modified and the signature became invalid. I guess that's the reason why your server rejects them. Try adding DKVERIFY= to the line of your ISP in tcp.smtp and rebuild the cdb to disable incoming checking. Hope it helps you and good luck. Best regards, Bill On 3/1/07, T Rigby [EMAIL PROTECTED] wrote: Hello all, first time poster here. Ive been using QT for some time now and I've just updated to one of the more recent versions and since its worked so well out of the box in the past for me I guess I have a lot of holes in my ability to administate my mail system. I currently use fetchmail to grab my emails from my ISP and forward it to an email address I have on my own server here at home, for example fetchmail grabs mail from my ISP [EMAIL PROTECTED] and then sends it off to [EMAIL PROTECTED]. Somewhere along the line I run into the issue of mail getting rejected due to this. I am guessing its fetchmail causing the issue or rather the fact that the mail is to myisp.com yet its being delivered to myhomeserver.com. I really do lack the knowledge to really know whats going on to fix it properly. My /var/log/qmail/smtp/current shows a bunch of errors like the following qmail-smtpd: qq hard reject (qmail-dk: Cannot sign message due to invalid message syntax. (#5.3.0)): MAILFROM:[EMAIL PROTECTED] RCPTTO:[EMAIL PROTECTED] The odd thing is, most emails get through to me, its mostly emails from yahoo and gmail that dont get through. I've tried adding rules to tcp.smtp and rebuilding the rules but that only makes it so that the IP's that are whitelisted arent hard rejected but soft rejected. So fetchmail leaves them on my ISP's mail server instead of rejecting and deleting them. Also, there are multiple IP addresses for gmail and yahoo mail servers which makes it harder to whitelist them. In order to try and figure out what is casing the mail to be rejected I've edited my tcp.smtp quite a bit.. it is currently as follows... 127.0.0.1:allow ,RELAYCLIENT=,QMAILQUEUE=/var/qmail/bin/simscan,CHKUSER_RCPTLIMIT=50,CHKUSER_WRONGRCPTLIMIT=10 24.71.223.:allow,RBLSMTPD=,QMAILQUEUE=/var/qmail/bin/simscan 66.135.192.:allow,RBLSMTPD=,QMAILQUEUE=/var/qmail/bin/simscan 66.94.234.:allow,RBLSMTPD=,QMAILQUEUE=/var/qmail/bin/simscan 216.109.112.:allow,RBLSMTPD=,QMAILQUEUE=/var/qmail/bin/simscan 209.191.69.:allow,RBLSMTPD=,QMAILQUEUE=/var/qmail/bin/simscan :allow,BADMIMETYPE=,BADLOADERTYPE=M,CHKUSER_RCPTLIMIT=50,CHKUSER_WRONGRCPTLIMIT=10,QMAILQUEUE=/var/qmail/bin/simscan I probably have it pretty messed up here but before I g editing it anymore I wanted to post to this list to get some ideas on how to resolve this situation. I also have to mention that I dont have issues with email being send directly to [EMAIL PROTECTED], it is only when emails are grabbed with fetchmail. Can anyone here suggest what I might do to fix this problem other than stop using fetchmail :) Thank you in advance for your time. Terry Rigby - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] ping
Hi Erik, I receive the qt list well :) Just have a off-topic question: I want to setup a service in my qt server, so that when my users send documents to a specific account, it will reply with a pdf version of the document. Can it be done by just using my existing qt server? Best regards, Bill On 2/13/07, Erik A. Espinoza [EMAIL PROTECTED] wrote: Testing. Noticed no qmailtoaster e-mail at all and wondering if either people aren't having issues or if the list is having issues. Erik - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] squirrelmail and submission port
Hi Erik, It seems that the standard installation of qt installs both squirrelmail and qmail at the same server. So I assume the whole submission process happens within the qt server and localhost doesn't need to check against any RBL. Besides, I suppose users can only send email through squirrelmail after they have been authenticated (by squirrelmail). What's the benefit of submitting the mail through the submission port? Best regards, Bill On 2/7/07, Erik Espinoza [EMAIL PROTECTED] wrote: Nevermind, the config_local.php changes the setting back. We haven't changed the SquirrelMail because some people have the policy of not upgrading all packages, just the ones that need updating (ClamAV, SpamAssassin, SquirrelMail) but not the djb licensed packages. This is because of security. Next SquirrelMail release I'll change the port to 587 and require qmail-toaster-1.03-1.3.8 or higher. Thanks, Erik On 2/6/07, Erik Espinoza [EMAIL PROTECTED] wrote: Hey Slamp, I was under the impression that Squirrelmail used /usr/sbin/sendmail to send mail, not smtp. Doesn't your config.php have $useSendmail = true; Erik The reason squirrelmail uses On 2/6/07, slamp slamp [EMAIL PROTECTED] wrote: Is there a reason why the default config of squirrelmail is not using the submission port? Is it really necessary for squirrelmail to be checked against RBL's? I found that squirrelmail is much faster (sending) when configured to use the submission port since it bypasses RBL checks. This also prevents the error Server replied: 354 when an RBL timeout occurs. BTW I just updated to the latest and greatest including the 3 devel packages and everything is perfect (knocks on wood). Thanks. - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] squirrelmail and submission port
Hi Slamp, Thank you for the clarification but sorry for my ignorance. If we have the *127.0.0.1:allow,RELAYCLIENT=,RBLSMTPD=* in tcp.smtp, will the RBLSMTPD process still be involved, but just return a pass status? Best regards, Bill On 2/8/07, slamp slamp [EMAIL PROTECTED] wrote: Thanks Erik for making the change in the future SM rpm. Bill, To me the real benefit of using the submission port is speed and reliability. The stock SM uses smtp to send mail and gets checked for RBLs. The reason the submission was added was to provide a way of sending without being checked for RBLs but still required to authenticate. Eric, I have done this once, SM on a different host from QT. That was REALLY SLOW even on a 100mbps connection. So I just decided to implement proxy in apache and now it's alot faster. On 2/7/07, Jake Vickers [EMAIL PROTECTED] wrote: Eric Shubes wrote: Now you've got me thinking, Bill. (which is sometimes dangerous!) For the stock toaster, you bring up a good point. What if I were an Enterprise type of user and wanted to run SM on a separate host from the toaster? How difficult would that be? Can the toaster be packaged in such a way as to make this easier, without 'hurting' the stock toaster? IOW, make them loosely (minimally) coupled? Look at the config.pl file for SM. It's in /usr/share/squirrelmail/config/ You should be able to edit all the functions, and tell it what IMAP server to utilize. I haven't messed with this in a long time, but you may also be able to adjust the port. So in theory, yes, you could use SM on a different server and just have it IMAP to your real mail server.
Re: [qmailtoaster] received blank e-mail
Hi Opik, If email is in RTF(Rich Text Format, which is a common Outlook email format), the attachment will be encapsulcated in a winmail.dat file. It is a known problem that Outlook Express will ignore the file and it makes the recipient feels that there's nothing inside the email. If that's the case, your customer better change his email client to Outlook. Otherwise, the sender will have to send email in HTML / plain text format. Best regards, Bill On 2/1/07, opik [EMAIL PROTECTED] wrote: Hello all I have a problem with one of my customer he said he got a blank e-mail when receiving mail using outlook express. Do anyone experience same problem like this? and how to handle problem like this? for the answer i apreciate it. Regards Opik note: Qmailtoaster version 1.03-1.2.11 OS SuSE 10.0 - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] SMTP connection failed all of a sudden
Hi Peter, 1. Please check if your /var/qmail/control/blacklists contains any obsolete servers and make sure they can respond to you wihtin a resonable time. You can also minimize your blacklist. Currently, I have only one entry: -r zen.spamhaus.org 2. If you connect to the email server by using your ISP's dynamic IP, make sure it is not blacklisted. If that's the problem you are facing, you may consider creating the submission port (port 587) for authenticated users to send email. I suppose the stable version should have already had such feature built-in (Would anybody correct me if I am wrong). Best regards, Bill On 1/18/07, Yi-Lei Wu [EMAIL PROTECTED] wrote: Hi list, My Qmail server was working fine until 2 days ago I suddenly couldn't connect to the SMTP service externally. The service is running, and I can connect from localhost. At first I thought it's a firewall issue and I turned off firewall as well as iptables. However, the same thing is still happening. From the log I see that a few other connections got to make through from other countries. However, for mine, the server log just says there is a connection, and the telnet client simply says connection failed. Then the connection on the server would time out. This is so strange... can someone help me here? Best regards, Peter Wu
Re: [qmailtoaster] Invlid format address
Yes, just follow the procedure. Bear in mind that every time you upgrade / reinstall the qt, the changes will be lost and you will have to do it again. Best regards, Bill On 12/29/06, Lucas Diaz [EMAIL PROTECTED] wrote: This is valid for a running qmail-toaster? Thanx a lot. Lucas. Bill Kwok wrote: Pls check this: http://www.mail-archive.com/qmailtoaster-list@qmailtoaster.com/msg04641.html You may want to comment out the #define CHKUSER_LOG_VALID_RCPT line, or set the CHKUSER_ALLOW_SENDER_CHAR settings On 12/28/06, *Lucas Diaz* [EMAIL PROTECTED] mailto:[EMAIL PROTECTED] wrote: I'm trying to send a message to an address that contains the character and get the 511 sorry, recipient address has invalid format (#5.1.1 - chkuser) error. Is there any way of sending this message? From tcp.smtp possibly? Thanx a lot. Lucas. TSAS-BSAS-Argentina - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] mailto:[EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] mailto:[EMAIL PROTECTED] - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] Invlid format address
Pls check this: http://www.mail-archive.com/qmailtoaster-list@qmailtoaster.com/msg04641.html You may want to comment out the #define CHKUSER_LOG_VALID_RCPT line, or set the CHKUSER_ALLOW_SENDER_CHAR settings On 12/28/06, Lucas Diaz [EMAIL PROTECTED] wrote: I'm trying to send a message to an address that contains the character and get the 511 sorry, recipient address has invalid format (#5.1.1 - chkuser) error. Is there any way of sending this message? From tcp.smtp possibly? Thanx a lot. Lucas. TSAS-BSAS-Argentina - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] Re: status 256 at smtp log
It turns out I have to apply the changes suggested by Alex: # cd /var/qmail/bin # rm -f qmail-queue; ln -s qmail-queue.orig qmail-queue Some users reported that they can't receive email from gmail. It's a strange situation. I tried to send from gmail to myself, it works. But if I send to my another ID (this ID will always forward email to my current ID), then it will bounce back with error with *554 mail server permanently rejected message (#5.3.0)* even though I've turned off spf checking. So may be the qmail-dk problem also related to my previous problem (status 256 error). Best regards, Bill On 12/13/06, Bill Kwok [EMAIL PROTECTED] wrote: On 12/13/06, Eric Shubes [EMAIL PROTECTED] wrote: Bill Kwok wrote: Hi Eric, My situation was strange. Let me give you detail on my server: snip All of them are the current version of qt, except I've also installed Espinoza's qmail-toaster-1.03-1.3.8 so that I can use submission port. All processes were running fine. When I receive complaints from users, I couldn't find any hint. The only thing looked abnormal is large number of status 256 error logged at smtp log. I've noticed some 256 errors too that I can't explain. Been wondering about them, but I haven't noticed any email not being received, so I haven't been able to track them down. I just figured they were spam. To make sure they are not blocked by spamassassin or RBL, I added certain IP, which I trusted, to my tcp.smtp( IP:allow,RBLSMTPD=,RELAYCLIENT=), but the situation didn't changed. Good move. You remembered to rebuild the cdb file, I presume. Yes, I did. To minimize the chance of timeout issue, my blacklists was changed to include only one entry: # cat blacklists -r sbl-xbl.spamhaus.org The RBLSMTPD= above should have taken care of turning off RBL checking. You remembered to restart qmail after this change, I hope. Yes, I did that too. In the beginning, I also thought that the status 256 should be sort of timeout stuff. After further studying my smtp log, I found status 256 in different situations: 1. The smtp log only showed a connection, but the process ended very soon: Nov30 18:19:43 tcpserver: status: 1/100 Nov30 18:19:43 tcpserver: pid 8856 from [sender IP] Nov30 18:19:43 tcpserver: ok 8856 [mydomain]:[my IP]:25 :[sender IP]::47596 Nov30 18:19:43 tcpserver: end 8856 status 256 Nov30 18:19:43 tcpserver: status: 0/100 Weird. Was this from the 'trusted' IP? Yes, actually, that's from our company's email server which is in another country. By the way, that server is also a qmail server, although not qt. We have large amount of email, such as emails forwarding from one domain name to another for the same user, from this server. 2. It logged CHKUSER has accepted sender and rcpt, but no email delivered to user's mail box and nothing logged at send log: Nov30 18:36:21 tcpserver: pid 9984 from [sender IP] Nov30 18:36:21 tcpserver: ok 9984 [mydomain]:[my IP]:25 :[sender IP]::53431 Nov30 18:36:21 CHKUSER accepted sender: from [sender] mailto:[EMAIL PROTECTED] :: remote [sender server]:unknown:[sender IP] rcpt : sender accepted Nov30 18:36:21 CHKUSER accepted rcpt: from [sender] mailto:[EMAIL PROTECTED]:: remote [sender domain]:unknown:[sender IP] rcpt [rcpt] mailto:[EMAIL PROTECTED] : found existing recipient Nov30 18:36:21 tcpserver: end 9984 status 256 Weird. Was this from a non-trusted IP? It's from the same server as mentioned above. Email ID and domain name are correct here. I just used my Perl script to reformat the log, That's why it won't show full address / domain name. 3. Some, but not all, CHKUSER rejected may show status 256 too: Nov30 22:57:25 tcpserver: status: 1/100 Nov30 22:57:25 tcpserver: pid 24256 from 89.138.229.34 http://89.138.229.34 Nov30 22:57:25 tcpserver: ok 24256 [my domain]:[my local IP]:25 :89.138.229.34::62008 Nov30 22:57:30 CHKUSER rejected sender: from [EMAIL PROTECTED] mailto:[EMAIL PROTECTED] :: remote 89-138-229-34.bb.netvision.net.il:unknown:89.138.229.34 rcpt : invalid sender MX domain Nov30 22:57:31 tcpserver: end 24256 status 256 Nov30 22:57:31 tcpserver: status: 0/100 As you've mentioned, we should not use such a high setting for the smtp softlimit in normal case. But in my case, I really need to. One more thing to mention: my server need to support multi-language. Best regards, Bill I'm wondering if the DomainKeys bug might be the culprit. Have you disabled DK according to Alexey's instructions? # cd /var/qmail/bin # rm -f qmail-queue; ln -s qmail-queue.orig qmail-queue That's the first thing I tried. But then since the error still exist and I don't want to complicate the situation, I reinstall
[qmailtoaster] Re: status 256 at smtp log
Hi all, Finally, I found out why I got the status 256 error: the original softlimit for smtpd is too small. If you have same symptom like me (lot of smtp connections with status 256 and nothing logged at send / spam / clam log), you better increase the smtp softlimit. My problem didn't recover a bit even though I increased it from 5,000,000 to 16,000,000, then even to 24,000,000. Until today I raise it to 32,000,000, then the problem solved. I don't know if it's related, but I am using RulesDuJour to update my spamassassin rules. Good Luck! Best regards, Bill On 12/5/06, Bill Kwok [EMAIL PROTECTED] wrote: I am sorry I overlook something. The fact is: 1. The tcpserver status 256 error happened even before I changed the self-signed certificate. 2. Concerning the email missing problem: From smtp log, I can see the sender server connected to my server, CHKUSER accpeted sender and rcpt, then end with status 256. But nothing show up in send or spamd log. Thank you very much. Best regards, Bill On 12/5/06, Bill Kwok [EMAIL PROTECTED] wrote: Hi, My server was running okay until when my self-signed digital cert. expired. After I regenerated the cert. by using this steps: cd /usr/share/ssl/certs/ make stunnel.pem mv stunnel.pem /var/qmail/control/servercert.pem chown root:qmail /var/qmail/control/servercert.pem chmod 644 /var/qmail/control/servercert.pem It looked okay at the beginning. But then my users reported that there are some email missing. And I found that from smtp log file, there are quite a number of errors: @400045752a6a34ab5084 tcpserver: status: 18/100 @400045752a6a34ab6024 tcpserver: pid 16588 from nnn.nnn.nnn.nnn @400045752a6a34ab67f4 tcpserver: ok 16588 mx.my.domain.com:10.0.1.1:25 :nnn.nnn.nnn.nnn::39453 @400045752a6a34ed6e4c tcpserver: end 16588 status 256 @400045752a6a34ed7a04 tcpserver: status: 17/100 @400045752a6a36b4824c tcpserver: status: 18/100 @400045752a6a36b491ec tcpserver: pid 16600 from nnn.nnn.nnn.nnn @400045752a6a36b499bc tcpserver: ok 16600 mx.my.domain.com:10.0.1.1:25 :nnn.nnn.nnn.nnn::39464 @400045752a6a3786d9f4 tcpserver: end 16600 status 256 @400045752a6a3786e1c4 tcpserver: status: 17/100 @400045752a6a389125d4 tcpserver: end 16437 status 0 @400045752a6a3891b274 tcpserver: status: 16/100 @400045752a6b004655dc tcpserver: status: 17/100 @400045752a6b0046657c tcpserver: pid 16601 from nnn.nnn.nnn.nnn @400045752a6b00466d4c tcpserver: ok 16601 mx.my.domain.com:10.0.1.1:25 :nnn.nnn.nnn.nnn::39489 @400045752a6b008ad8ec tcpserver: end 16601 status 256 Would anyone show me how to fix this problem? Thanks in advance. Best regards, Bill
Re: [qmailtoaster] Re: status 256 at smtp log
Hi Eric, My situation was strange. Let me give you detail on my server: # rpm -qa | grep toaster vpopmail-toaster-5.4.13-1.3.3 ezmlm-cgi-toaster-0.53.324-1.3.2 spamassassin-toaster-3.1.7-1.3.6 ripmime-toaster-1.4.0.6-1.3.2 qmailmrtg-toaster-4.2-1.3.2 qmail-toaster-1.03-1.3.8 qmailtoaster-plus-0.2-1.3.2 courier-authlib-toaster-0.58-1.3.3 daemontools-toaster-0.76-1.3.2 libdomainkeys-toaster-0.68-1.3.2 send-emails-toaster-0.5-1.3.2 ucspi-tcp-toaster-0.88-1.3.2 qmail-pop3d-toaster-1.03-1.3.8 control-panel-toaster-0.5-1.3.2 clamav-toaster-0.88.5-1.3.5 autorespond-toaster-2.0.4-1.3.2 maildrop-toaster-devel-2.0.2-1.3.3 simscan-toaster-1.2-1.3.2 vqadmin-toaster-2.3.4-1.3.2 courier-imap-toaster-4.1.1-1.3.3 maildrop-toaster-2.0.2-1.3.3 qmailadmin-toaster-1.2.9-1.3.3 ezmlm-toaster-0.53.324-1.3.2 isoqlog-toaster-2.1-1.3.2 squirrelmail-toaster-1.4.8-1.3.4 All of them are the current version of qt, except I've also installed Espinoza's qmail-toaster-1.03-1.3.8 so that I can use submission port. All processes were running fine. When I receive complaints from users, I couldn't find any hint. The only thing looked abnormal is large number of status 256 error logged at smtp log. To make sure they are not blocked by spamassassin or RBL, I added certain IP, which I trusted, to my tcp.smtp( IP:allow,RBLSMTPD=,RELAYCLIENT=), but the situation didn't changed. To minimize the chance of timeout issue, my blacklists was changed to include only one entry: # cat blacklists -r sbl-xbl.spamhaus.org In the beginning, I also thought that the status 256 should be sort of timeout stuff. After further studying my smtp log, I found status 256 in different situations: 1. The smtp log only showed a connection, but the process ended very soon: Nov30 18:19:43 tcpserver: status: 1/100 Nov30 18:19:43 tcpserver: pid 8856 from [sender IP] Nov30 18:19:43 tcpserver: ok 8856 [mydomain]:[my IP]:25 :[sender IP]::47596 Nov30 18:19:43 tcpserver: end 8856 status 256 Nov30 18:19:43 tcpserver: status: 0/100 2. It logged CHKUSER has accepted sender and rcpt, but no email delivered to user's mail box and nothing logged at send log: Nov30 18:36:21 tcpserver: pid 9984 from [sender IP] Nov30 18:36:21 tcpserver: ok 9984 [mydomain]:[my IP]:25 :[sender IP]::53431 Nov30 18:36:21 CHKUSER accepted sender: from [sender] [EMAIL PROTECTED]:: remote [sender server]:unknown:[sender IP] rcpt : sender accepted Nov30 18:36:21 CHKUSER accepted rcpt: from [sender] [EMAIL PROTECTED]:: remote [sender domain]:unknown:[sender IP] rcpt [rcpt][EMAIL PROTECTED] : found existing recipient Nov30 18:36:21 tcpserver: end 9984 status 256 3. Some, but not all, CHKUSER rejected may show status 256 too: Nov30 22:57:25 tcpserver: status: 1/100 Nov30 22:57:25 tcpserver: pid 24256 from 89.138.229.34 Nov30 22:57:25 tcpserver: ok 24256 [my domain]:[my local IP]:25 : 89.138.229.34::62008 Nov30 22:57:30 CHKUSER rejected sender: from [EMAIL PROTECTED]:: remote 89-138-229-34.bb.netvision.net.il:unknown:89.138.229.34 rcpt : invalid sender MX domain Nov30 22:57:31 tcpserver: end 24256 status 256 Nov30 22:57:31 tcpserver: status: 0/100 As you've mentioned, we should not use such a high setting for the smtp softlimit in normal case. But in my case, I really need to. One more thing to mention: my server need to support multi-language. Best regards, Bill On 12/12/06, Eric Shubes [EMAIL PROTECTED] wrote: Bill Kwok wrote: Hi all, Finally, I found out why I got the status 256 error: the original softlimit for smtpd is too small. Good find, Bill. If you have same symptom like me (lot of smtp connections with status 256 and nothing logged at send / spam / clam log), you better increase the smtp softlimit. My problem didn't recover a bit even though I increased it from 5,000,000 to 16,000,000, then even to 24,000,000. Until today I raise it to 32,000,000, then the problem solved. I'd be careful with this. See http://www.tldp.org/HOWTO/Qmail-ClamAV-HOWTO/x277.html for recommendations. Setting this any higher than necessary might cause excessive paging. The toaster default is 12,000,000. I don't know why you should need much/any more than that. How many RBLs are you using? Also, 256 errors are 'normal' for simple timeouts when the sender isn't responding in a timely fashion. The default is 1200 (20 minutes), which I find too long. I've created a /var/qmail/control/timeoutsmtpd file (not included in basic toaster) with a value of 60. This keeps the number of active smtp sessions down a bit (from 10-20 to 5-10) on a high volume server. BL, don't go tweaking softlimit just because you're seeing 256 errors in the log. Be sure that you're missing some emails first. I don't know if it's related, but I am using RulesDuJour to update my spamassassin rules. I doubt it. SA runs as a separate process from smtpd. Good Luck! Best regards, Bill On 12/5/06, *Bill Kwok* [EMAIL PROTECTED] mailto:[EMAIL PROTECTED] wrote
[qmailtoaster] status 256 at smtp log
Hi, My server was running okay until when my self-signed digital cert. expired. After I regenerated the cert. by using this steps: cd /usr/share/ssl/certs/ make stunnel.pem mv stunnel.pem /var/qmail/control/servercert.pem chown root:qmail /var/qmail/control/servercert.pem chmod 644 /var/qmail/control/servercert.pem It looked okay at the beginning. But then my users reported that there are some email missing. And I found that from smtp log file, there are quite a number of errors: @400045752a6a34ab5084 tcpserver: status: 18/100 @400045752a6a34ab6024 tcpserver: pid 16588 from nnn.nnn.nnn.nnn @400045752a6a34ab67f4 tcpserver: ok 16588 mx.my.domain.com:10.0.1.1:25 :nnn.nnn.nnn.nnn::39453 @400045752a6a34ed6e4c tcpserver: end 16588 status 256 @400045752a6a34ed7a04 tcpserver: status: 17/100 @400045752a6a36b4824c tcpserver: status: 18/100 @400045752a6a36b491ec tcpserver: pid 16600 from nnn.nnn.nnn.nnn @400045752a6a36b499bc tcpserver: ok 16600 mx.my.domain.com:10.0.1.1:25 :nnn.nnn.nnn.nnn::39464 @400045752a6a3786d9f4 tcpserver: end 16600 status 256 @400045752a6a3786e1c4 tcpserver: status: 17/100 @400045752a6a389125d4 tcpserver: end 16437 status 0 @400045752a6a3891b274 tcpserver: status: 16/100 @400045752a6b004655dc tcpserver: status: 17/100 @400045752a6b0046657c tcpserver: pid 16601 from nnn.nnn.nnn.nnn @400045752a6b00466d4c tcpserver: ok 16601 mx.my.domain.com:10.0.1.1:25 :nnn.nnn.nnn.nnn::39489 @400045752a6b008ad8ec tcpserver: end 16601 status 256 Would anyone show me how to fix this problem? Thanks in advance. Best regards, Bill
[qmailtoaster] Re: status 256 at smtp log
I am sorry I overlook something. The fact is: 1. The tcpserver status 256 error happened even before I changed the self-signed certificate. 2. Concerning the email missing problem: From smtp log, I can see the sender server connected to my server, CHKUSER accpeted sender and rcpt, then end with status 256. But nothing show up in send or spamd log. Thank you very much. Best regards, Bill On 12/5/06, Bill Kwok [EMAIL PROTECTED] wrote: Hi, My server was running okay until when my self-signed digital cert. expired. After I regenerated the cert. by using this steps: cd /usr/share/ssl/certs/ make stunnel.pem mv stunnel.pem /var/qmail/control/servercert.pem chown root:qmail /var/qmail/control/servercert.pem chmod 644 /var/qmail/control/servercert.pem It looked okay at the beginning. But then my users reported that there are some email missing. And I found that from smtp log file, there are quite a number of errors: @400045752a6a34ab5084 tcpserver: status: 18/100 @400045752a6a34ab6024 tcpserver: pid 16588 from nnn.nnn.nnn.nnn @400045752a6a34ab67f4 tcpserver: ok 16588 mx.my.domain.com:10.0.1.1:25 :nnn.nnn.nnn.nnn::39453 @400045752a6a34ed6e4c tcpserver: end 16588 status 256 @400045752a6a34ed7a04 tcpserver: status: 17/100 @400045752a6a36b4824c tcpserver: status: 18/100 @400045752a6a36b491ec tcpserver: pid 16600 from nnn.nnn.nnn.nnn @400045752a6a36b499bc tcpserver: ok 16600 mx.my.domain.com:10.0.1.1:25 :nnn.nnn.nnn.nnn::39464 @400045752a6a3786d9f4 tcpserver: end 16600 status 256 @400045752a6a3786e1c4 tcpserver: status: 17/100 @400045752a6a389125d4 tcpserver: end 16437 status 0 @400045752a6a3891b274 tcpserver: status: 16/100 @400045752a6b004655dc tcpserver: status: 17/100 @400045752a6b0046657c tcpserver: pid 16601 from nnn.nnn.nnn.nnn @400045752a6b00466d4c tcpserver: ok 16601 mx.my.domain.com:10.0.1.1:25 :nnn.nnn.nnn.nnn::39489 @400045752a6b008ad8ec tcpserver: end 16601 status 256 Would anyone show me how to fix this problem? Thanks in advance. Best regards, Bill
Re: [qmailtoaster] Problem in using Failover replication Setup
Craig, After commenting out 68-72 lines, the script no longer shows error message, but the same error still exists in unionlog.full file: Synchronization incomplete (9 items transferred, 0 skipped, 2 failures) failed: home/vpopmail/.spamassassin failed: home/vpopmail/domains/MY.DOMAIN.COM Deleting lock file Pls find the attached qmail-replicatec. Thanks. Best regards, Bill On 11/27/06, Craig Smith [EMAIL PROTECTED] wrote: Hi Bill, It's no problem, I hope I can help get it sorted and that it works as well for you as it does for me. Does the error you get still reflect the same line now that you've recopied the script? the unison run seems to be running. I see 2 failures and I can't remember at this point what they indicate, but I have seen them before. If the script error is still on the same line, can you comment out the section you pasted and let me know what it says then. So add # in front of each line from 61 to 65. It is probably something that centos expects that fedora doesn't. I've not worked with centos before. Jake or Eric, do you guys know if Centos handles shell script slightly differently? Also bill could you attach the script from your server, so I can run your exact script on my server and see what happens? Thanks Craig -- *From:* Bill Kwok [mailto:[EMAIL PROTECTED] *Sent: * 25 November 2006 07:07 *To:* qmailtoaster-list@qmailtoaster.com *Subject:* Re: [qmailtoaster] Problem in using Failover replication Setup Hi Craig, Thanks a lot for helping me fix this problem. I got the error again even though after I've copied the souce code from website again. Here's my lines 61-65 (or 68-73 in the new script): if [ $size -gt 2000 ];then echo this is bigger than 20MB, moving$LOG mv $LOG $LOGSAVE echo $LOG fi If I run the command '/unison/unison -force / -batch qmail', I got the following output: . . . local: unchanged file modified on 2006-11-23 at 12:28:56 size 1689 rw-r--r-- BACKUP.h... : changed file modified on 2006-11-24 at 19:06:23 size 1689 rw-r--r-- Propagating updates UNISON started propagating changes at 14:40:39 on 25 Nov 2006 [BGN] Updating file var/qmail/control/dh1024.pem from / to //BACKUP.MY.DOMAIN.COM// [BGN] Updating file var/qmail/control/dh512.pem from / to //BACKUP.MY.DOMAIN.COM// [BGN] Updating file var/qmail/control/rsa512.pem from / to //BACKUP.MY.DOMAIN.COM// [BGN] Copying home/vpopmail/.spamassassin from / to //BACKUP.MY.DOMAIN.COM// [BGN] Copying properties for home/vpopmail/domains from / to //BACKUP.MY.DOMAIN.COM// [BGN] Copying home/vpopmail/domains/.overquota.msg from / to //BACKUP.MY.DOMAIN.COM// [BGN] Copying home/vpopmail/domains/.quotawarn.msg from / to //BACKUP.MY.DOMAIN.COM// [BGN] Copying home/vpopmail/domains/MY.DOMAIN.COM from / to //BACKUP.MY.DOMAIN.COM// [BGN] Updating file unison/mysql.dump/vpopmail from / to //BACKUP.MY.DOMAIN.COM// [BGN] Updating file var/qmail/control/badloadertypes from / to //BACKUP.MY.DOMAIN.COM// [BGN] Updating file var/qmail/control/badloadertypes.cdb from / to //BACKUP.MY.DOMAIN.COM// [BGN] Updating file var/qmail/control/servercert.pem.rpmnew from / to //BACKUP.MY.DOMAIN.COM// [END] Copying properties for home/vpopmail/domains [END] Updating file var/qmail/control/dh1024.pem [END] Updating file var/qmail/control/dh512.pem [END] Updating file var/qmail/control/rsa512.pem [END] Copying home/vpopmail/domains/.overquota.msg [END] Copying home/vpopmail/domains/.quotawarn.msg [END] Updating file unison/mysql.dump/vpopmail [END] Updating file var/qmail/control/badloadertypes [END] Updating file var/qmail/control/badloadertypes.cdb [END] Updating file var/qmail/control/servercert.pem.rpmnew Failed: Aborted 15% 07:54 ETAFailed [home/vpopmail/.spamassassin]: Aborted Failed: Error in rsync sender: /home/vpopmail/domains/MY.DOMAIN.COM/userA/Maildir/cur/1164431645.26630.mx.MY.DOMAIN.COM,S=4733:2,: No such file or directory 15% 07:54 ETAFailed [home/vpopmail/domains/MY.DOMAIN.COM]: Error in rsync sender: /home/vpopmail/domains/MY.DOMAIN.COM/userA/Maildir/cur/1164431645.26630.mx.MY.DOMAIN.COM,S=4733:2,: No such file or directory UNISON finished propagating changes at 14:42:10 on 25 Nov 2006 Saving synchronizer state Synchronization incomplete (10 items transferred, 0 skipped, 2 failures) failed: home/vpopmail/.spamassassin failed: home/vpopmail/domains/MY.DOMAIN.COM Thanks again for your help and sorry to bother you while you are busy. Best regards, Bill On 11/25/06, Craig Smith [EMAIL PROTECTED] wrote: As a follow up, I did a direct copy of the text from the wiki into a test file, I ran sh testfile and it ran fine. Assuming that the unison application and the qmail.prf file is in place, it should run fine. Try running the unison command manually and let me know what happens. /unison/unison -force / -batch qmail Did you skip anything in the process or run into problems
Re: [qmailtoaster] Script to show qmail log
Eric, Thank you very much. I will try it out ASAP. :) Best regards, Bill On 11/26/06, Eric Shubes [EMAIL PROTECTED] wrote: One more thing (especially for Bill), If you # export logdir=/path/to/logs before running the script, /path/to/logs will override /var/log/qmail To return to default, # unset logdir Eric Shubes wrote: Eric Shubes wrote: Let me see what I can come up with. I've made some significant modifications to qmlog. It's not finished yet, but I think it's in a usable state. I won't be able to complete what I want to do for a few weeks, but I thought some of you might want to try out what's completed so far. I haven't cut a new qtp release, but you can try out the (highly modified) script by getting it straight from the development branch. To obtain the new version from the development trunk: # cd /opt/qmailtoaster-plus/bin # mv qmlog qmlog.bkp # wget http://svn.shubes.net/qtp/trunk/bin/qmlog # chmod 755 qmlog # cd ../etc # wget http://svn.shubes.net/qtp/trunk/etc/qmlog-trim.sed To get help: # qmlog qmlog v0.2 - show current log of service 'service' usage: qmlog service [option] ... services: clamd imap4 imap4-ssl pop3 pop3-ssl send smtp spamd options: -h[elp] this help -l[ist] list saved logs of service -f follow as it grows, using tail -f -t N show (tail) last N lines -nl show without using less -nt show with no trimming -lc regexshow logs of service that contain the string 'regex' -ln pattern show logs of service with file name containing 'pattern' Highlights: .) options are not longer mutually exclusive, and can be combined (when it makes sense to do so) .) option values have changed significantly .) 'service' may be specified before, among, or after other options .) separate sed file for trimming output, uses any sed command. .) default operation is to trim and show with 'less'. Use CL options to turn these features off. .) -lc option positions log at first occurrence of 'regex' using 'less' Enhancements to be done: .) +grep, -grep options for filtering lines that are showed .) date/time range selection As I said, this is not a completed work. I'm sure there are a few bugs, so if you find some unexpected or inappropriate behavior, please post to the list. All suggested improvements are welcome. NJoy! -- -Eric 'shubes' - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] Problem in using Failover replication Setup
Hi Craig, I am still having problem. :( Pls see below for the result I got. Best regards, Bill On 11/27/06, Craig Smith [EMAIL PROTECTED] wrote: Hi bill, Will try and find the rsync errors I saw when I was testing all of this. The part of the script you commented out controls the size of the logfile, but since 20Mb is rather large it takes time to run, so it can mange without it. Your script runs fine on my system. However I suspect the problem lies in the size variable. the ls listing in centos is probably different to fedora. Run the below command and see which field it is displaying. Is should be the size portion, but it may not be. Increment or decrese the 5 until you get the correct result, and edit your script accordingly. However you can manage without that if you want to manually rotate your logs. ls -l $LOG|cut -d ' ' -f 5 I have to adjust to -f 6 in order to get the file size. :) As for the rsync errors, the errors relating to MY.DOMAIN are normal if your mail is being deleted from the server as people check. It will be down to the script running after a file was there, and during the run was deleted. What happens if you run /unison/unison -force / -batch qmail and then run it again straight after it completes, are the errors identical or do they differ or go away? The error is same as before. It may be that you need to reset the unison database. To do that on both servers do the following. cd /root/.unison. If you do ll you will see something similar to arb35cf206e53266f6ceb48d38f9f6c049. That is the database, if you delete or rename those on both servers and then run the command it will repopulate the data it is working with. Try that and let me know. I rename the name of databases and then run qmail-replicatec again. But I get the same error: Synchronization incomplete (1 item transferred, 0 skipped, 2 failures) failed: home/vpopmail/.spamassassin failed: home/vpopmail/domains/MY.DOMAIN.COM Deleting lock file Since it can transfer 1 file, can I assume unison should be working? P.S. If you do sort out the size variable on your system could you leave a comment on the wiki, or let me know the details so I can leave a note for other centos users. Also did you notice I took the backup server side script out of cron, as it isn't really necessary and should be run manually in the case of a switch over. However I would recommend, that you test your backup server on a regular basis to make sure it is working and you can logon. Run the qmail-replicateb script and then verify. I normally activate the backup server, and change my account to point to it, and make sure I can authenticate. I also do /home/vpopmail/bin/vuserinfo randomn users and confirm their details. Hope that helps. Let me know what unison says after a clearout. Craig From: Bill Kwok [mailto:[EMAIL PROTECTED] Sent: 27 November 2006 10:41 To: qmailtoaster-list@qmailtoaster.com Subject: Re: [qmailtoaster] Problem in using Failover replication Setup Craig, After commenting out 68-72 lines, the script no longer shows error message, but the same error still exists in unionlog.full file: Synchronization incomplete (9 items transferred, 0 skipped, 2 failures) failed: home/vpopmail/.spamassassin failed: home/vpopmail/domains/MY.DOMAIN.COM Deleting lock file Pls find the attached qmail-replicatec. Thanks. Best regards, Bill On 11/27/06, Craig Smith [EMAIL PROTECTED] wrote: Hi Bill, It's no problem, I hope I can help get it sorted and that it works as well for you as it does for me. Does the error you get still reflect the same line now that you've recopied the script? the unison run seems to be running. I see 2 failures and I can't remember at this point what they indicate, but I have seen them before. If the script error is still on the same line, can you comment out the section you pasted and let me know what it says then. So add # in front of each line from 61 to 65. It is probably something that centos expects that fedora doesn't. I've not worked with centos before. Jake or Eric, do you guys know if Centos handles shell script slightly differently? Also bill could you attach the script from your server, so I can run your exact script on my server and see what happens? Thanks Craig From: Bill Kwok [mailto:[EMAIL PROTECTED] Sent: 25 November 2006 07:07 To: qmailtoaster-list@qmailtoaster.com Subject: Re: [qmailtoaster] Problem in using Failover replication Setup Hi Craig, Thanks a lot for helping me fix this problem. I got the error again even though after I've copied the souce code from website again. Here's my lines 61-65 (or 68-73 in the new script): if [ $size -gt 2000 ];then echo this is bigger than 20MB, moving$LOG mv $LOG $LOGSAVE echo $LOG
Re: [qmailtoaster] NJABL DNSBL
Thanks Erik Jean-Paul for providing us such a wonderful solution. :) On 11/28/06, Erik Espinoza [EMAIL PROTECTED] wrote: Thanks Bill for making this clearer. It should be noted that the latest qmail-toaster package from the devel site includes the port 587 service and is set to require smtp auth to send. Thanks, Erik On 11/27/06, Bill Kwok [EMAIL PROTECTED] wrote: Please correct me if I am wrong. What Erik means is that, by default, all SMTP communication will go through port 25. It includes server to server and client to server communication. If you setup rblsmtpd (or similar program) to check the incoming email again spam, all emails going through port 25 will be checked. It includes the emails submitted by you and your users. In order to avoid such problem, you may divide the emails into two portion: Email from other servers - It will use port 25 and rblsmtpd will scan the incoming mail as usual. Email from local users - Local users will need to change their mail client setting, so that it will submit email to the server by using port 587 (the submission port). There's no rblsmtpd checking on port 587. But instead, users must authenticate himself / herself before they can submit email. Best regards, Bill On 11/27/06, Jon M. Ernster [EMAIL PROTECTED] wrote: Can you elaborate on what you mean by it putting up submission port 587 without blacklists? I don't mind not using the RBL on my server, I was just not understanding why I was running into the problem. I guess the RBL is seeing a connection being made from my laptop from a cable connection and blocking it before it sends out. -Original Message- From: Erik Espinoza [mailto: [EMAIL PROTECTED] Sent: Sunday, November 26, 2006 11:11 PM To: qmailtoaster-list@qmailtoaster.com Subject: Re: [qmailtoaster] NJABL DNSBL Why is qmail checking the NJABL when I'm SENDING email? Shouldn't it only be doing this for incoming connections? The blacklists block smtp connections before enough info is sent for Qmail to tell if the mail was incoming or outgoing. Best bet is to upgrade to the qmail-toaster package on my site, http://devel.qmailtoaster.com/ as it will put up Submission port 587 without blacklists. Thanks, Erik - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] Problem in using Failover replication Setup
Hi Craig, Thanks a lot for helping me fix this problem. I got the error again even though after I've copied the souce code from website again. Here's my lines 61-65 (or 68-73 in the new script): if [ $size -gt 2000 ];then echo this is bigger than 20MB, moving$LOG mv $LOG $LOGSAVE echo $LOG fi If I run the command '/unison/unison -force / -batch qmail', I got the following output: . . . local: unchanged file modified on 2006-11-23 at 12:28:56 size 1689 rw-r--r-- BACKUP.h... : changed file modified on 2006-11-24 at 19:06:23 size 1689 rw-r--r-- Propagating updates UNISON started propagating changes at 14:40:39 on 25 Nov 2006 [BGN] Updating file var/qmail/control/dh1024.pem from / to //BACKUP.MY.DOMAIN.COM// [BGN] Updating file var/qmail/control/dh512.pem from / to //BACKUP.MY.DOMAIN.COM// [BGN] Updating file var/qmail/control/rsa512.pem from / to //BACKUP.MY.DOMAIN.COM// [BGN] Copying home/vpopmail/.spamassassin from / to //BACKUP.MY.DOMAIN.COM// [BGN] Copying properties for home/vpopmail/domains from / to //BACKUP.MY.DOMAIN.COM// [BGN] Copying home/vpopmail/domains/.overquota.msg from / to //BACKUP.MY.DOMAIN.COM// [BGN] Copying home/vpopmail/domains/.quotawarn.msg from / to //BACKUP.MY.DOMAIN.COM// [BGN] Copying home/vpopmail/domains/MY.DOMAIN.COM from / to //BACKUP.MY.DOMAIN.COM// [BGN] Updating file unison/mysql.dump/vpopmail from / to //BACKUP.MY.DOMAIN.COM// [BGN] Updating file var/qmail/control/badloadertypes from / to //BACKUP.MY.DOMAIN.COM// [BGN] Updating file var/qmail/control/badloadertypes.cdb from / to //BACKUP.MY.DOMAIN.COM// [BGN] Updating file var/qmail/control/servercert.pem.rpmnew from / to //BACKUP.MY.DOMAIN.COM// [END] Copying properties for home/vpopmail/domains [END] Updating file var/qmail/control/dh1024.pem [END] Updating file var/qmail/control/dh512.pem [END] Updating file var/qmail/control/rsa512.pem [END] Copying home/vpopmail/domains/.overquota.msg [END] Copying home/vpopmail/domains/.quotawarn.msg [END] Updating file unison/mysql.dump/vpopmail [END] Updating file var/qmail/control/badloadertypes [END] Updating file var/qmail/control/badloadertypes.cdb [END] Updating file var/qmail/control/servercert.pem.rpmnew Failed: Aborted 15% 07:54 ETAFailed [home/vpopmail/.spamassassin]: Aborted Failed: Error in rsync sender: /home/vpopmail/domains/MY.DOMAIN.COM/userA/Maildir/cur/1164431645.26630.mx.MY.DOMAIN.COM,S=4733:2,: No such file or directory 15% 07:54 ETAFailed [home/vpopmail/domains/MY.DOMAIN.COM]: Error in rsync sender: /home/vpopmail/domains/MY.DOMAIN.COM/userA/Maildir/cur/1164431645.26630.mx.MY.DOMAIN.COM,S=4733:2,: No such file or directory UNISON finished propagating changes at 14:42:10 on 25 Nov 2006 Saving synchronizer state Synchronization incomplete (10 items transferred, 0 skipped, 2 failures) failed: home/vpopmail/.spamassassin failed: home/vpopmail/domains/MY.DOMAIN.COM Thanks again for your help and sorry to bother you while you are busy. Best regards, Bill On 11/25/06, Craig Smith [EMAIL PROTECTED] wrote: As a follow up, I did a direct copy of the text from the wiki into a test file, I ran sh testfile and it ran fine. Assuming that the unison application and the qmail.prf file is in place, it should run fine. Try running the unison command manually and let me know what happens. /unison/unison -force / -batch qmail Did you skip anything in the process or run into problems during it? It may be something that centos doesn't like that fedora doesn't care about, but I can't say as I've never used centos. Try recopying, the script and let me know what happens. Craig -- *From:* Craig Smith [mailto:[EMAIL PROTECTED] *Sent:* 24 November 2006 16:15 *To:* qmailtoaster-list@qmailtoaster.com *Subject:* RE: [qmailtoaster] Problem in using Failover replication Setup Hi Ben, If you vi qmail-replicatec and do :61 what do you get? It may just be something that copied from the site. In terms of setup, on the backup server you don't need to create anything, just have QMT installed and working. The replication script will replicate all folders, users, control files and mysql data to populate the backup folder. The fact that you are getting an error in the script means there is something wrong on line 61. On my line 61 there is an open line with nothing. I will copy the one from the wiki and run it to see what I get. As for the file, it fails during transfer which is why it is blank. Let me see what happens if I copy and paste directly from the wiki. Also I've just made a minor change to the qmail-replicatec file by adding a lock file process, as mine went a bit nuts last night. Also I've removed the qmail-replicateb from cron as this only really needs to be run if you switch to the backup. Sorry for the slow reply been mad busy. Regards Craig -- *From:* Bill Kwok [mailto:[EMAIL PROTECTED] *Sent:* 23 November 2006 09:30
Re: [qmailtoaster] Script to show qmail log
On 11/23/06, Eric Shubes [EMAIL PROTECTED] wrote: Bill Kwok wrote: You are right. (lucky guess, and a nice objective that I honestly hadn't considered) To shorten the output is my main goal: 1. TAI64 time stamp - To allow user select date format. My understanding is that tai64nlocal can only output the lengthy format. So we may need to use some other program to convert the date format? I think I'd stick with tai64nlocal to do the initial conversion, then use sed w/ regex to shorten it. Would lopping off the microseconds suffice? I suppose we could ditch the '20' part of the year too, or the year entirely. To KISS, I'd like to initially have no optional stuff. So should we simply ditch the year and microseconds? I think that'd be easy and simple. Most of the time, I prefer to have HH:MM:SS only. But for people who prefer to have yy-mm-dd, or even yyMMMdd, it will be a problem. But as a starting, I guess we can just use yymmdd HH:MM:SS format for now. 2. Content replacement - To allow user to predefine wordings for search and replace. That seems simple enough. If I understand what you mean, we can have a configuration file that might contain two fields on each line something like: tcpserver: tcpsrv: regex replacement where the first field would contain a regex to match, and the second field would contain the replacement string. I'm not exactly sold on this feature. Can you give me an example or two where it'd be useful? Somehow I don't like the original message format which is too long, for example: delivery 44176: success: User_and_password_not_set,_continuing_without_authentication./ [EMAIL PROTECTED]_n.n.n.n_accepted_message./Remote_host_said:_250_ok:__Message_172326093_accepted/ I would like to trim the 'continuing_without_authentication.', so that I can show each physical line in one row, without wrapping to next line. Perhaps we could use a common configuration file to default certain options, such as shortened date, or whatever else. /etc/qmlog.conf sounds logical. 3. Content filtering - Show only lines with / without user-defined wordings Positive/negative grep options should be no problem. Other than that, it's just 2 minor settings to allow user to define: 1. log file location I'm not sure why this is needed, but it's easy to do. 2. file name(s) Easy enough too. For this one, perhaps it'd be nice to be able to select a date/time range to display. Could be a bit tricky, but I think it'd be a lot friendlier than selecting by file name. Selecting files from a date range would be easy enough though. The reason why I prefer to have directory name option is that I run cron job to move log files to a separate directory (such as /var/log/qmail/oldlog/200611/send), so that I can retrieve logs when required. When I need to look for records of certain day, I will show all logs in that month folder with filtering. To keep logs for busy server, may be they need to have a more structural directory, such as /var/log/qmail/oldlog/2006/11/23/send For the file name option, I was thinking may be someone, like you :), may has already had utility to regroup log files to certain format, such as by date, or even by hour for busy server. Then they may specify a file name in order to retrieve logs by date (or even hour). Thank you, Eric Thanks to you too Bill. Always looking for ways to improve things. I don't know exactly when I'll get around to doing this. If someone else wants to jump in on it, they're more than welcome. Please let me know if you want to work on it though, so we don't duplicate efforts. Best regards, Bill On 11/23/06, *Eric Shubes* [EMAIL PROTECTED] mailto:[EMAIL PROTECTED] wrote: I'm glad to see that we're thinking along the same lines. I'm pretty good with bash. Not as good with perl, but I think I can read it well enough to translate what you're doing into bash. I'll have a look at it when I get a chance. It would help me out a bit if you could give me a couple examples of what the script needs to do (from the user standpoint). I'm guessing that shortening the output is all that qmlog might need to do. FWIW, there is a tai64nlocal program included in the daemontools-toaster package that converts the time to a readable format. I'll have to see what you're doing to shorten things, but I'm guessing that sed or cut might fit the bill (no pun intended). Thanks! -- -Eric 'shubes' - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
[qmailtoaster] Problem in using Failover replication Setup
Hi all, I am trying to setup a setup for failover. Both machines are running CentOS 4.2. I've just installed qt to my backup server, but no domains and users were setup. I am having problem in synchronizing them. When I run the qmail-replicatec, I got the following error: [EMAIL PROTECTED] unison]# ./qmail-replicatec ./qmail-replicatec: line 61: [: root: integer expression expected In the unisonlog.full, some error message such as the following are logged: Failed: The file /home/vpopmail/.spamassassin/auto-whitelist has been modified during synchronization: transfer aborted 2% 04:06 ETAFailed [home/vpopmail/.spamassassin]: The file /home/vpopmail/.spamassassin/auto-whitelist has been modified during synchronization: transfer aborted Failed: The file /home/vpopmail/domains/my.domain.com/alison.lam/Maildir/maildirsize has been modified during synchronization: transfer aborted 2% 04:06 ETAFailed [home/vpopmail/domains]: The file /home/vpopmail/domains/my.domain.com/userA/Maildir/maildirsize has been modified during synchronization: transfer aborted UNISON finished propagating changes at 17:04:14 on 23 Nov 2006 Saving synchronizer state Synchronization incomplete (1 item transferred, 0 skipped, 2 failures) failed: home/vpopmail/.spamassassin failed: home/vpopmail/domains Then I found that there's no file copied to /home/vpopmail/domains. Am I in a wrong sequence of installation? Do I need to create all domains and users in backup server before synchronizating them? Thanks in advance. Best regards, Bill
Re: [qmailtoaster] Script to show qmail log
Hi, You may install the required Perl module by the following command: # *perl -MCPAN -e 'install Time::TAI64'* Best regards, Bill On 11/22/06, [EMAIL PROTECTED] [EMAIL PROTECTED] wrote: Bill, I am getting errors when I run your script. I may be missing some modules (I think) bunt don't know how to install them. [EMAIL PROTECTED] ~]# ./qt-showlog -t -s pop3-ssl -i LOGOUT -f '%y%b%d %H:%M' Can't locate Time/TAI64.pm in @INC (@INC contains: /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi /usr/lib/perl5/site_perl/5.8.7/i386-linux-thread-multi /usr/lib/perl5/site_perl/5.8.6/i386-linux-thread-multi /usr/lib/perl5/site_perl/5.8.5/i386-linux-thread-multi /usr/lib/perl5/site_perl/5.8.4/i386-linux-thread-multi /usr/lib/perl5/site_perl/5.8.3/i386-linux-thread-multi /usr/lib/perl5/site_perl/5.8.8 /usr/lib/perl5/site_perl/5.8.7 /usr/lib/perl5/site_perl/5.8.6 /usr/lib/perl5/site_perl/5.8.5 /usr/lib/perl5/site_perl/5.8.4 /usr/lib/perl5/site_perl/5.8.3 /usr/lib/perl5/site_perl /usr/lib/perl5/vendor_perl/5.8.8/i386-linux-thread-multi /usr/lib/perl5/vendor_perl/5.8.7/i386-linux-thread-multi /usr/lib/perl5/vendor_perl/5.8.6/i386-linux-thread-multi /usr/lib/perl5/vendor_perl/5.8.5/i386-linux-thread-multi /usr/lib/perl5/vendor_perl/5.8.4/i386-linux-thread-multi /usr/lib/perl5/vendor_perl/5.8.3/i386-linux-thread-multi /usr/lib/perl5/vendor_perl/5.8.8 /usr/lib/perl5/vendor_perl/5.8.7 /usr/lib/perl5/vendor_perl/5.8.6 /usr/lib/perl5/vendor_perl/5.8.5 /usr/lib/perl5/vendor_perl/5.8.4 /usr/lib/perl5/vendor_perl/5.8.3 /usr/lib/perl5/vendor_perl /usr/lib/perl5/5.8.8/i386-linux-thread-multi /usr/lib/perl5/5.8.8 .) at ./qt-showlog line 5. BEGIN failed--compilation aborted at ./qt-showlog line 5. [EMAIL PROTECTED] ~]# Hi all, From time to time, we need to read qmail's log files. Since the time stamp returned by tai64nlocal is too precise (lengthy), for me, I've written a Perl script so that the log file can be displayed in a customized time stamp. It also includes few more options: # qt-showlog -h Display qmail log in custom time format Usage: /root/scripts/qt-showlog [Options] [file name]... -d directory Specify directory location. Default: /var/log/qmail -e TextDisplay lines without Text -f date format SpecIfy date format to be used. Default: %b%d %H:%M:%S -h Show this message -i TextDisplay lines with Text -s Service Select Service log, such as pop3-ssl and send. Default: send -t Display log which is continously appended to (similar to tail -f) [filename] File to be displayed. Default: All files started with ' and 'current' If -t is selected, only 'current' will be displayed For example, the following command shows only the lines which includes 'LOGOUT' in the newly appended records of the /var/log/qmail/pop3-ssl/current file with a yymmmdd HH:MM time stamp: #qt-showlog -t -s pop3-ssl -i LOGOUT -f '%y%b%d %H:%M' 06Nov16 11:31 INFO: LOGOUT, user=adams, ip=[1.2.3.4], top=0, retr=0, rcvd=24, sent=2614, time=0 06Nov16 11:31 INFO: LOGOUT, user=sylvia, ip=[ 1.2.3.4], top=0, retr=0, rcvd=12, sent=39, time=0 06Nov16 11:31 INFO: LOGOUT, user=adrian, ip=[4.3.2.1], top=0, retr=0, rcvd=12, sent=39, time=1 06Nov16 11:31 INFO: LOGOUT, user=anita, ip=[1.3.5.7], top=0, retr=25181, rcvd=40, sent=25923, time=0 To further reduce the length of the output, you may want to edit the following lines of regex in the script. In my example here, I replace all mydomain.com with MD and etc. # comment out the following if you want to show full content my @items= ( [ qr/mydomain.com/, MD ], [ qr/User_and_password_not_set,_continuing_without_authentication./, w/o auth ], [ qr(Remote_host_said:_250[^/]+), 'Remote_host_said:_250' ], ); I hope you like it. Please feel free to comment. Best regards, Bill - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] Script to show qmail log
The module can be installed by: # perl -MCPAN -e 'install File::Tail' Actually, you may add other required modules by the same way. Best regards, Bill On 11/22/06, [EMAIL PROTECTED] [EMAIL PROTECTED] wrote: The module was successfully installed but I still get the same error but this time is line 7 of the script as opposed to the previous error occurring at line 5. Can't locate File/Tail.pm in @INC BEGIN failed--compilation aborted at ./qt-showlog line 7. Hi, You may install the required Perl module by the following command: # *perl -MCPAN -e 'install Time::TAI64'* Best regards, Bill On 11/22/06, [EMAIL PROTECTED] [EMAIL PROTECTED] wrote: Bill, I am getting errors when I run your script. I may be missing some modules (I think) bunt don't know how to install them. [EMAIL PROTECTED] ~]# ./qt-showlog -t -s pop3-ssl -i LOGOUT -f '%y%b%d %H:%M' Can't locate Time/TAI64.pm in @INC (@INC contains: /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi /usr/lib/perl5/site_perl/5.8.7/i386-linux-thread-multi /usr/lib/perl5/site_perl/5.8.6/i386-linux-thread-multi /usr/lib/perl5/site_perl/5.8.5/i386-linux-thread-multi /usr/lib/perl5/site_perl/5.8.4/i386-linux-thread-multi /usr/lib/perl5/site_perl/5.8.3/i386-linux-thread-multi /usr/lib/perl5/site_perl/5.8.8 /usr/lib/perl5/site_perl/5.8.7 /usr/lib/perl5/site_perl/5.8.6 /usr/lib/perl5/site_perl/5.8.5 /usr/lib/perl5/site_perl/5.8.4 /usr/lib/perl5/site_perl/5.8.3 /usr/lib/perl5/site_perl /usr/lib/perl5/vendor_perl/5.8.8/i386-linux-thread-multi /usr/lib/perl5/vendor_perl/5.8.7/i386-linux-thread-multi /usr/lib/perl5/vendor_perl/5.8.6/i386-linux-thread-multi /usr/lib/perl5/vendor_perl/5.8.5/i386-linux-thread-multi /usr/lib/perl5/vendor_perl/5.8.4/i386-linux-thread-multi /usr/lib/perl5/vendor_perl/5.8.3/i386-linux-thread-multi /usr/lib/perl5/vendor_perl/5.8.8 /usr/lib/perl5/vendor_perl/5.8.7 /usr/lib/perl5/vendor_perl/5.8.6 /usr/lib/perl5/vendor_perl/5.8.5 /usr/lib/perl5/vendor_perl/5.8.4 /usr/lib/perl5/vendor_perl/5.8.3 /usr/lib/perl5/vendor_perl /usr/lib/perl5/5.8.8/i386-linux-thread-multi /usr/lib/perl5/5.8.8 .) at ./qt-showlog line 5. BEGIN failed--compilation aborted at ./qt-showlog line 5. [EMAIL PROTECTED] ~]# Hi all, From time to time, we need to read qmail's log files. Since the time stamp returned by tai64nlocal is too precise (lengthy), for me, I've written a Perl script so that the log file can be displayed in a customized time stamp. It also includes few more options: # qt-showlog -h Display qmail log in custom time format Usage: /root/scripts/qt-showlog [Options] [file name]... -d directory Specify directory location. Default: /var/log/qmail -e TextDisplay lines without Text -f date format SpecIfy date format to be used. Default: %b%d %H:%M:%S -h Show this message -i TextDisplay lines with Text -s Service Select Service log, such as pop3-ssl and send. Default: send -t Display log which is continously appended to (similar to tail -f) [filename] File to be displayed. Default: All files started with ' and 'current' If -t is selected, only 'current' will be displayed For example, the following command shows only the lines which includes 'LOGOUT' in the newly appended records of the /var/log/qmail/pop3-ssl/current file with a yymmmdd HH:MM time stamp: #qt-showlog -t -s pop3-ssl -i LOGOUT -f '%y%b%d %H:%M' 06Nov16 11:31 INFO: LOGOUT, user=adams, ip=[1.2.3.4], top=0, retr=0, rcvd=24, sent=2614, time=0 06Nov16 11:31 INFO: LOGOUT, user=sylvia, ip=[ 1.2.3.4], top=0, retr=0, rcvd=12, sent=39, time=0 06Nov16 11:31 INFO: LOGOUT, user=adrian, ip=[4.3.2.1], top=0, retr=0, rcvd=12, sent=39, time=1 06Nov16 11:31 INFO: LOGOUT, user=anita, ip=[1.3.5.7], top=0, retr=25181, rcvd=40, sent=25923, time=0 To further reduce the length of the output, you may want to edit the following lines of regex in the script. In my example here, I replace all mydomain.com with MD and etc. # comment out the following if you want to show full content my @items= ( [ qr/mydomain.com/, MD ], [ qr/User_and_password_not_set,_continuing_without_authentication./, w/o auth ], [ qr(Remote_host_said:_250[^/]+), 'Remote_host_said:_250' ], ); I hope you like it. Please feel free to comment. Best regards, Bill - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - QmailToaster hosted by: VR Hosted http://www.vr.org
Re: [qmailtoaster] Script to show qmail log
There are a few Perl modules which I use in the program. You may run the following to make sure you've got all of them: #perl -MCPAN -e shell cpan install Getopt::Std cpan install Time::TAI64 cpan install Time::HiRes cpan install File::Tail cpan install Cwd cpan exit I select perl to develop the program only because my knowledge about bash is not good enough to develop what I want, especially about how to convert the tai64n string to the format I want and how to shorten the output message. It will be great if we can perform all these features by using bash script. At least people don't need to install any additional perl modules in order to use it. :) Best regards, Bill On 11/22/06, Bill Kwok [EMAIL PROTECTED] wrote: The module can be installed by: # perl -MCPAN -e 'install File::Tail' Actually, you may add other required modules by the same way. Best regards, Bill On 11/22/06, [EMAIL PROTECTED] [EMAIL PROTECTED] wrote: The module was successfully installed but I still get the same error but this time is line 7 of the script as opposed to the previous error occurring at line 5. Can't locate File/Tail.pm in @INC BEGIN failed--compilation aborted at ./qt-showlog line 7. Hi, You may install the required Perl module by the following command: # *perl -MCPAN -e 'install Time::TAI64'* Best regards, Bill On 11/22/06, [EMAIL PROTECTED] [EMAIL PROTECTED] wrote: Bill, I am getting errors when I run your script. I may be missing some modules (I think) bunt don't know how to install them. [EMAIL PROTECTED] ~]# ./qt-showlog -t -s pop3-ssl -i LOGOUT -f '%y%b%d %H:%M' Can't locate Time/TAI64.pm in @INC (@INC contains: /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi /usr/lib/perl5/site_perl/5.8.7/i386-linux-thread-multi /usr/lib/perl5/site_perl/5.8.6/i386-linux-thread-multi /usr/lib/perl5/site_perl/5.8.5/i386-linux-thread-multi /usr/lib/perl5/site_perl/5.8.4/i386-linux-thread-multi /usr/lib/perl5/site_perl/5.8.3/i386-linux-thread-multi /usr/lib/perl5/site_perl/5.8.8 /usr/lib/perl5/site_perl/5.8.7 /usr/lib/perl5/site_perl/5.8.6 /usr/lib/perl5/site_perl/5.8.5 /usr/lib/perl5/site_perl/5.8.4 /usr/lib/perl5/site_perl/5.8.3 /usr/lib/perl5/site_perl /usr/lib/perl5/vendor_perl/5.8.8/i386-linux-thread-multi /usr/lib/perl5/vendor_perl/5.8.7/i386-linux-thread-multi /usr/lib/perl5/vendor_perl/5.8.6/i386-linux-thread-multi /usr/lib/perl5/vendor_perl/5.8.5/i386-linux-thread-multi /usr/lib/perl5/vendor_perl/5.8.4/i386-linux-thread-multi /usr/lib/perl5/vendor_perl/5.8.3/i386-linux-thread-multi /usr/lib/perl5/vendor_perl/5.8.8 /usr/lib/perl5/vendor_perl/5.8.7 /usr/lib/perl5/vendor_perl/5.8.6 /usr/lib/perl5/vendor_perl/5.8.5 /usr/lib/perl5/vendor_perl/5.8.4 /usr/lib/perl5/vendor_perl/5.8.3 /usr/lib/perl5/vendor_perl /usr/lib/perl5/5.8.8/i386-linux-thread-multi /usr/lib/perl5/5.8.8 .) at ./qt-showlog line 5. BEGIN failed--compilation aborted at ./qt-showlog line 5. [EMAIL PROTECTED] ~]# Hi all, From time to time, we need to read qmail's log files. Since the time stamp returned by tai64nlocal is too precise (lengthy), for me, I've written a Perl script so that the log file can be displayed in a customized time stamp. It also includes few more options: # qt-showlog -h Display qmail log in custom time format Usage: /root/scripts/qt-showlog [Options] [file name]... -d directory Specify directory location. Default: /var/log/qmail -e TextDisplay lines without Text -f date format SpecIfy date format to be used. Default: %b%d %H:%M:%S -h Show this message -i TextDisplay lines with Text -s Service Select Service log, such as pop3-ssl and send. Default: send -t Display log which is continously appended to (similar to tail -f) [filename] File to be displayed. Default: All files started with ' and 'current' If -t is selected, only 'current' will be displayed For example, the following command shows only the lines which includes 'LOGOUT' in the newly appended records of the /var/log/qmail/pop3-ssl/current file with a yymmmdd HH:MM time stamp: #qt-showlog -t -s pop3-ssl -i LOGOUT -f '%y%b%d %H:%M' 06Nov16 11:31 INFO: LOGOUT, user=adams, ip=[1.2.3.4], top=0, retr=0, rcvd=24, sent=2614, time=0 06Nov16 11:31 INFO: LOGOUT, user=sylvia, ip=[ 1.2.3.4], top=0, retr=0, rcvd=12, sent=39, time=0 06Nov16 11:31 INFO: LOGOUT, user=adrian, ip=[4.3.2.1], top=0, retr=0, rcvd=12, sent=39, time=1 06Nov16 11:31 INFO: LOGOUT, user=anita, ip=[1.3.5.7], top=0, retr=25181, rcvd=40, sent=25923, time=0 To further reduce the length of the output, you may want to edit the following lines of regex in the script. In my example here, I replace all mydomain.com with MD
Re: [qmailtoaster] Script to show qmail log
You are right. To shorten the output is my main goal: 1. TAI64 time stamp - To allow user select date format. My understanding is that tai64nlocal can only output the lengthy format. So we may need to use some other program to convert the date format? 2. Content replacement - To allow user to predefine wordings for search and replace. 3. Content filtering - Show only lines with / without user-defined wordings Other than that, it's just 2 minor settings to allow user to define: 1. log file location 2. file name(s) Thank you, Eric Best regards, Bill On 11/23/06, Eric Shubes [EMAIL PROTECTED] wrote: I'm glad to see that we're thinking along the same lines. I'm pretty good with bash. Not as good with perl, but I think I can read it well enough to translate what you're doing into bash. I'll have a look at it when I get a chance. It would help me out a bit if you could give me a couple examples of what the script needs to do (from the user standpoint). I'm guessing that shortening the output is all that qmlog might need to do. FWIW, there is a tai64nlocal program included in the daemontools-toaster package that converts the time to a readable format. I'll have to see what you're doing to shorten things, but I'm guessing that sed or cut might fit the bill (no pun intended). Thanks! Bill Kwok wrote: There are a few Perl modules which I use in the program. You may run the following to make sure you've got all of them: #perl -MCPAN -e shell cpan install Getopt::Std cpan install Time::TAI64 cpan install Time::HiRes cpan install File::Tail cpan install Cwd cpan exit I select perl to develop the program only because my knowledge about bash is not good enough to develop what I want, especially about how to convert the tai64n string to the format I want and how to shorten the output message. It will be great if we can perform all these features by using bash script. At least people don't need to install any additional perl modules in order to use it. :) Best regards, Bill On 11/22/06, *Bill Kwok* [EMAIL PROTECTED] mailto:[EMAIL PROTECTED] wrote: The module can be installed by: # perl -MCPAN -e 'install File::Tail' Actually, you may add other required modules by the same way. Best regards, Bill On 11/22/06, [EMAIL PROTECTED] mailto:[EMAIL PROTECTED]* [EMAIL PROTECTED] mailto:[EMAIL PROTECTED] wrote: The module was successfully installed but I still get the same error but this time is line 7 of the script as opposed to the previous error occurring at line 5. Can't locate File/Tail.pm in @INC BEGIN failed--compilation aborted at ./qt-showlog line 7. Hi, You may install the required Perl module by the following command: # *perl -MCPAN -e 'install Time::TAI64'* Best regards, Bill On 11/22/06, [EMAIL PROTECTED] mailto:[EMAIL PROTECTED] [EMAIL PROTECTED] mailto:[EMAIL PROTECTED] wrote: Bill, I am getting errors when I run your script. I may be missing some modules (I think) bunt don't know how to install them. [EMAIL PROTECTED] ~]# ./qt-showlog -t -s pop3-ssl -i LOGOUT -f '%y%b%d %H:%M' Can't locate Time/TAI64.pm in @INC (@INC contains: /usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi /usr/lib/perl5/site_perl/5.8.7/i386-linux-thread-multi /usr/lib/perl5/site_perl/5.8.6/i386-linux-thread-multi /usr/lib/perl5/site_perl/5.8.5/i386-linux-thread-multi /usr/lib/perl5/site_perl/5.8.4/i386-linux-thread-multi /usr/lib/perl5/site_perl/5.8.3/i386-linux-thread-multi /usr/lib/perl5/site_perl/5.8.8 /usr/lib/perl5/site_perl/5.8.7 /usr/lib/perl5/site_perl/5.8.6 /usr/lib/perl5/site_perl/5.8.5 /usr/lib/perl5/site_perl/5.8.4 /usr/lib/perl5/site_perl/5.8.3 /usr/lib/perl5/site_perl /usr/lib/perl5/vendor_perl/5.8.8/i386-linux-thread-multi /usr/lib/perl5/vendor_perl/5.8.7/i386-linux-thread-multi /usr/lib/perl5/vendor_perl/5.8.6/i386-linux-thread-multi /usr/lib/perl5/vendor_perl/5.8.5/i386-linux-thread-multi /usr/lib/perl5/vendor_perl/5.8.4/i386-linux-thread-multi /usr/lib/perl5/vendor_perl/5.8.3/i386-linux-thread-multi /usr/lib/perl5/vendor_perl/5.8.8 /usr/lib/perl5/vendor_perl/5.8.7 /usr/lib/perl5/vendor_perl/5.8.6 /usr/lib/perl5/vendor_perl/5.8.5 /usr/lib/perl5/vendor_perl/5.8.4 /usr/lib/perl5/vendor_perl/5.8.3 /usr/lib/perl5/vendor_perl /usr/lib/perl5/5.8.8/i386-linux-thread-multi /usr/lib/perl5/5.8.8 .) at ./qt-showlog line 5. BEGIN failed--compilation aborted at ./qt-showlog line 5. [ [EMAIL PROTECTED
Re: [qmailtoaster] BCC Function
Hi Gabriel, You can use control/taps: http://wiki.qmailtoaster.com/index.php/Taps Best regards, Bill On 11/17/06, Gabriel Lai [EMAIL PROTECTED] wrote: Hello all, I remember that there's a function in qmail that enables us to archieve the email address to [EMAIL PROTECTED] How can I write the policy? Please assist. -- Sponsored Link $420,000 Mortgage for $1,399/month - Think You Pay Too Much For Your Mortgage? Find Out!http://www.lowermybills.com/lre/index.jsp?sourceid=lmb-9135-16417moid=4116
[qmailtoaster] About qtp-newmodel
Hi Eric, I've just tried to upgrade my qt by using qtp-newmodel, it run smoothly except 2 minor things: 1. Since I've applied qmail-toaster rel. 1.3.8 (so that I can use the submission port), qtp-newmodel prompts me if I want to apply the change or not. If I reply yes, the installation process will be aborted as it found that it's a version downgrade. May I suggest changing qtp-newmodel so that it will ask user to confirm upgrade only if the stable version is later than the installed verison? 2. I installed djbdns (not djbdns-toaster) myself previously. So when I run qtp-newmodel, it assumes djbdns has not been installed. If I allows qtp-newmodel to install djbdns-toaster, the process will abort too. Anyway I can uninstall djbdns, so that I can install djbdns-toaster. I know that I can skip both package and qtp-newmodel will finish the upgrade nicely. Just hope that one day qtp-newmodel will upgrade my qt automatically (by cron job??). Thanks in advance. Best regards, Bill
Re: [qmailtoaster] About qtp-newmodel
Dear Eric, Actually, the qtp-newmodel has already made my life much much easier. Thank you very much for creating such a wonderful program. Best regards, Bill On 11/17/06, Eric Shubes [EMAIL PROTECTED] wrote: Bill Kwok wrote: Hi Eric, I've just tried to upgrade my qt by using qtp-newmodel, it run smoothly except 2 minor things: 1. Since I've applied qmail-toaster rel. 1.3.8 (so that I can use the submission port), qtp-newmodel prompts me if I want to apply the change or not. If I reply yes, the installation process will be aborted as it found that it's a version downgrade. Rightly so. So don't reply yes if you already have a newer version. :) May I suggest changing qtp-newmodel so that it will ask user to confirm upgrade only if the stable version is later than the installed verison? You may. ;) Seriously though, qtp-newmodel presently assumes that if a different version is on the main site then it's newer. Bad assumption I know, but it was adequate for the early release. I've been wanting to make the devel packages available to qtp-newmodel for a while now, which will require this logic. I hope to have this logic included in the next release, along with improving the package selection process. You can see in the script comments that there's a 'future enhancements' section where I've been noting this sort of thing. 2. I installed djbdns (not djbdns-toaster) myself previously. So when I run qtp-newmodel, it assumes djbdns has not been installed. If I allows qtp-newmodel to install djbdns-toaster, the process will abort too. Anyway I can uninstall djbdns, so that I can install djbdns-toaster. That portion (dns related packages) could use some work too. You can modify the /opt/qmailtoaster-plus/bin/qtp-remove-pkgs script to remove it. In the a3_obsolete_packages() function, simply add a line djbdns \ to the list between removepkgs=\ and the terminating double-quote. I know that I can skip both package and qtp-newmodel will finish the upgrade nicely. Just hope that one day qtp-newmodel will upgrade my qt automatically (by cron job??). You could do it automatically now with cron (as long as you have the standard packages), but I wouldn't recommend it (nor any automatic software updates other than freshclam or perhaps rdj). You can use qtp-ami-up2date to email you when there are updates available though. See the wiki documentation for details. Thanks in advance. Best regards, Bill Thanks for using qtp-newmodel, and providing the feedback. That's the way things get better! -- -Eric 'shubes' - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] -- Best regards, Bill
Re: [qmailtoaster] connect() : Connection Refused
Would you show us your tcp.smtp? Best regards, Bill On 11/13/06, Gabriel Lai [EMAIL PROTECTED] wrote: It isn't a firewall issue but I have to open relay only it's being resolves... Seems like it can't authenticate the external users... When I try to send from 127.0.0.1 (mail server itself) it allows me to relay... Please advice. - Original Message From: David Sánchez Martín [EMAIL PROTECTED] To: qmailtoaster-list@qmailtoaster.comSent: Monday, November 13, 2006 4:58:12 PM Subject: RE: [qmailtoaster] connect() : Connection Refused Looks like a firewall issue to me... De: Gabriel Lai [mailto:[EMAIL PROTECTED]] Enviado el: lunes, 13 de noviembre de 2006 6:22Para: Qmail Toaster ListAsunto: [qmailtoaster] connect() : Connection Refused Hello all, Please take a look on connection refused. Need help urgently.. @400045580031147b109c tcpserver: status: 1/100@400045580031147b2bf4 tcpserver: pid 3299 from 192.168.150.250 @400045580031147b33c4 tcpserver: ok 3299 main.etech.net.my:192.168.150.199:25 :192.168.150.250::1834 @400045580031160a2c7c tcpserver: status: 2/100@40004558003116232ed4 tcpserver: pid 3300 from 192.168.150.250 @40004558003116234644 tcpserver: ok 3300 main.etech.net.my:192.168.150.199:25 :192.168.150.250::1835 @40004558003b0b385e2c CHKUSER accepted sender: from [EMAIL PROTECTED] :: remote smoothwall.etech.net.my:unknown:192.168.150.250 rcpt : sender accepted@40004558003b37fd947c CHKUSER accepted rcpt: from [EMAIL PROTECTED]:: remote smoothwall.etech.net.my:unknown:192.168.150.250 rcpt [EMAIL PROTECTED] : found existing recipient@40004558003c08160f8c connect(): Connection refused@40004558003c084d445c tcpserver: end 3299 status 0 Please.. BEGIN:VCARDVERSION:2.1N:Sánchez Martín;DavidFN:[EMAIL PROTECTED] ( [EMAIL PROTECTED])ORG:E2000 Financial Investments, S.A.;Centro de Nuevas TecnologíasTITLE:Administrador de SistemasTEL;WORK;VOICE:902196177ADR;WORK;ENCODING=QUOTED-PRINTABLE:;;Agust=EDn Bravo 17 2=BA B=0D=0A33120 PRAVIA;Asturias;;;Espa=F1a LABEL;WORK;ENCODING=QUOTED-PRINTABLE:Agust=EDn Bravo 17 2=BA B=0D=0A33120 PRAVIA=0D=0AAsturias=0D=0AEspa=F1aURL;WORK: http://www.e2000.esEMAIL;PREF;INTERNET:[EMAIL PROTECTED]REV:20060705T152542ZEND:VCARD - QmailToaster hosted by: VR Hosted http://www.vr.org-To unsubscribe, e-mail: [EMAIL PROTECTED]For additional commands, e-mail: [EMAIL PROTECTED] -- Best regards,Bill
Re: [qmailtoaster] upgrade script
I've tried to upgrade by upgrade.sh, it's very straight forward. The only concern is that you may have to take down your qmail for a while and wait for all packages to be rebuilt. Take a look about qmail-toaster plus: http://wiki.qmailtoaster.com/index.php/QmailToaster-Plusand http://wiki.qmailtoaster.com/index.php/Upgrading. It provides you a sandbox to play with before you really apply the changes to the production system. Best regards, Bill On 11/13/06, [EMAIL PROTECTED] [EMAIL PROTECTED] wrote: How safe is it to run the upgrade script on a production server.I wouldto upgrade to the latest packages but I'm a little nervous.Thanks. -QmailToaster hosted by: VR Hosted http://www.vr.org- To unsubscribe, e-mail: [EMAIL PROTECTED]For additional commands, e-mail: [EMAIL PROTECTED]
[qmailtoaster] Questions about control/taps
Dear all, I use the following line in taps to backup all incoming / outgoing emails of my.domain.com: .*:[EMAIL PROTECTED] Myquestions are: Will it create an endless loop if, by any means, someone sends email to [EMAIL PROTECTED]? Can I specify a directory, instead of a email ID, as the destination, such as ([EMAIL PROTECTED]):/backup/$1 ? If I need to restore emails (both incoming and outgoing) for a user, what's the best way to filter it out from the backup? Problem here is that emails were forwarded to the [EMAIL PROTECTED] . The information of recipient will be lost if he/she was only in the ccor bcc list. If I can't use taps to backup / rstore my users' email in that way, is there any utility that I can use? Thanks in advance. Best regards,Bill
Re: [qmailtoaster] Questions about control/taps
Actually, I've tried to use scripts to filter emails for a user after she's lost all her email in her computer. As I've mentioned before, if the user is in the bcc list, we may not be able to find any info of this user from the email header. My scripthas to go through the send log in order to find out which email the user should has received and who's the sender. Then by comparing the time stamp and the sender of emails, I can locate the email. My worry is that the possibility of getting wrong email is still high. For example, if a sender sent multiple emails, with different sizes,within short period of time, will the send logrecord emails in way which is different from the time stamp of the email files? Wouldanyone show me a better way to filter out theemails? Best regards,Bill On 11/13/06, [EMAIL PROTECTED] [EMAIL PROTECTED] wrote: Dear all, I use the following line in taps to backup all incoming / outgoing emails of my.domain.com: .*: [EMAIL PROTECTED] My questions are:1. Will it create an endless loop if, by any means, someone sends email to [EMAIL PROTECTED]?Don't know, test it!2. Can I specify a directory, instead of a email ID, as thedestination, such as ([EMAIL PROTECTED]):/backup/$1 ? I think you can't but you can allways make a an email account and modify it's .qmail for putting all the mail on a specific maildir or whatever3. If I need to restore emails (both incoming and outgoing) for a user, what's the best way to filter it out from the backup?Problem here isthat emails were forwarded to the [EMAIL PROTECTED].Theinformation of recipient will be lost if he/she was only in the cc or bcclist.Tap is not thought exactly for backups and restores.Is for archiving (say, monitoring, legal obligations, limited backup ofcertain email etc)I'm certainly sure that you can allways make scripts for finding specific e-mails, anyway.4. If I can't use taps to backup / rstore my users' email in that way,is there any utility that I can use?A plain old backup utility should work, tar for example. I use amanda (http://www.amanda.org/) for network backups of whole racksand works like a charm, but you can allways use a priopietary one like Veritas BackupExec or something like that. Thanks in advance. Best regards, Bill-QmailToaster hosted by: VR Hosted http://www.vr.org-To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] Uninstall Qmailtoaster-Plus?
Have you checked log files to see if it's spamassassin block the email or rblsmtpd block the IP addresses of valid clients? My clients were having problem in sending emails due to their IP addresses have been blacklisted by certain RBL sites. Temporary solution is to edit your tcp.smtp and delete one or few of the RBL sites. A better way to deal with it is to enable submission port for your clients to send email. See htp://devel.qmailtoaster.com Best regards,Bill On 11/11/06, Yi-Lei Wu [EMAIL PROTECTED] wrote: Hi list,After I installed thsoe spam rules I started not getting some emails from valid clients, is there a way or script to uninstall those spam rules installed by Qmailtoaster-Plus? Or to remove Qmailtoaster-Plus completely? Thanks.Best regards,Peter Wu
Re: [qmailtoaster] POP mail
WIll it be possible that Outlook gets timeout while downloading email / waiting your server to reply? Try to increase the timeout period to, say, 5 minutes and see if it works better. Have you tried to enter the IP address, instead of mail.domain.com,in Outlook? If it works fine, then may be it's a problem of your DNS server. Best regards, Bill On 11/11/06, Kisakye Alex [EMAIL PROTECTED] wrote: Hi everyone, I have a working toaster and have dns set to; webmail.domain.com for webmail (squirrel) mail.domain.com for smtp and POP SMTP and POP works fine although i notice that sometimes in the morning outlook cant find the mail.domain.com and sometimes i need to restart my toaster box before everything gets back fine When this happens I can still access the box from webmail, its just POP thats out MY POP logs dont seem to catch anything wrong Any Help ALex
Re: [qmailtoaster] Re: Development Package: qmail-toaster-1.03-1.3.8.src.rpm
Dear all, Without any trouble, I've just upgraded my qmailto rel. 1.3.8. Hope it will be qt stable version soon. Erik Jean-Paul, thank you very much. Best regards, Bill On 11/9/06, Erik Espinoza [EMAIL PROTECTED] wrote: I will add support for qmailmrtg to monitor the submission logs oncethis feature makes it to stable. Thanks,ErikOn 11/8/06, Erik Espinoza [EMAIL PROTECTED] wrote: Greetings, I have released an updated qmail-toaster package, available at http://devel.qmailtoaster.com/ for download. This package includes 2 minor changes and should be safe for all: - Added REQUIRE_AUTH patch to qmail-toaster (Thanks to Jean-Paul van de Plasse) - Enabled Submission port 587 With this updated package, port 587 can be used for outgoing SMTP on any client that supports SMTP-AUTH. In addition, since this port can't be used without authentication, blacklists do not apply. Special thanks to Jean-Paul. Erik-QmailToaster hosted by: VR Hosted http://www.vr.org-To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] Automatic Archiving of Qmail mails
You may use taps to forward all incoming/outgoing email to an account. See http://wiki.qmailtoaster.com/index.php/Tapsfor detail. Then you will need to have your own script to check the folder size and alert administrator to do the backup. On 11/9/06, kernel.2k5 [EMAIL PROTECTED] wrote: Hello,i have a qmail server on which having 90 users now i want to automaticarchiving of all incoming and outgoing mails of all the users , and when the archive becomes 900mb overall it should notifypostmaster/administrator by mail so that he can take the backup onattached tape drive.Doi have a need to make some /home quota or every users MAILDIR on quota partation.Now i have straight/ with 100 gb only .On which i have /home/vpopmail qmail configured .Or using some guidance here i can make my above mentioned requirementwith existing without quota configured qmail server.. Thanks for the Help.--===With Best RegardsMr.Shailesh Bhutada(CTO)Web:www.comptrixsys.com Email:[EMAIL PROTECTED]:[EMAIL PROTECTED]=This Message is sent Via [EMAIL PROTECTED]Server SuSe 10.1 Linux Using Opera's e-mail clientor Mozilla ThunderBird Mail Client.= -QmailToaster hosted by: VR Hosted http://www.vr.org- To unsubscribe, e-mail: [EMAIL PROTECTED]For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] RBL blocks my roaming users
Thank you all. I always want to create a second SMTP port for users to submit email, so that they won't be blocked byISP. So far I can only achieve this by using my firewall's VIP mapping. It will be great if qmailtoaster comes with this setting by default. Anyway, I will try Jean-Paul's method as soon as possible. Thanks again. Best regards, Bill On 11/9/06, Jean-Paul van de Plasse [EMAIL PROTECTED] wrote: Have to read and learn about this thing first then,but smaller items/requests are more then welcome ;) Jean-Paul- Original Message -From: Erik Espinoza [EMAIL PROTECTED]To: qmailtoaster-list@qmailtoaster.comSent: Wednesday, November 08, 2006 11:48 PMSubject: Re: [qmailtoaster] RBL blocks my roaming users SRS is the only biggy that we need. Unfortunately there are no SRS patches for Qmail, the support would have to be ported over from H-Sphere. Erik On 11/8/06, Jean-Paul van de Plasse [EMAIL PROTECTED] wrote: Btw, if there are any other outstanding patches or things I am happy to pick them up. Maybe it would be nice/productive if there was a todo/task/assignment list thing online. Jean-Paul - Original Message - From: Erik Espinoza [EMAIL PROTECTED] To: qmailtoaster-list@qmailtoaster.com Sent: Wednesday, November 08, 2006 11:39 PM Subject: Re: [qmailtoaster] RBL blocks my roaming users I'll have this patched and on the site later this week. Erik On 11/8/06, Jean-Paul van de Plasse [EMAIL PROTECTED] wrote: Sure, I kinda expected someone who can change the rpm's would pick it up as it really is a small thing. Anyways, the only file you need to patch is qmail-smtpd.c I attached a new patch, since the previous one failed on a silly newline. Making this work requires the following steps: Save the patch in say /tmp rpm -Uvh qmail-toaster*.src.rpm cd /usr/src/redhat/SPECS (assuming you are using CentOS 4) edit qmail-toaster.spec find 'sleep 5'(should be line 606) change5 to 300 (5 seconds to 300 seconds) rpmbuild -bb --with cnt40 qmail-toaster.spec When the build process pauses, make your changes. You have 5 minutes. cd /usr/src/redhat/BUILD/qmail- 1.03/ patch /tmp/qmail-require_auth.patch Wait for the 300 seconds to expire and watch it build. cd ../RPMS/i386/ qmailctl stop rpm -Uvh --replacefiles --replacepkgs qmail-*.rpm qmailctl start Now to enable this on a specific port you have to cd /var/qmail/supervise cp -rfa smtp smtp-submission cd smtp-submission edit run and add at least the line export REQUIRE_AUTH=1 And change remove the rblcheck and change the port so the exec line becomes like this : exec /usr/bin/softlimit -m 1200 \ /usr/bin/tcpserver -v -R -H -l $HOSTNAME -x $TCP_CDB -c $MAXSMTPD \ -u $QMAILDUID -g $NOFILESGID 0 587 \ $SMTPD $VCHKPW /bin/true 21 Now cd log and edit run so this smtpd goes to its own log dir ie: exec /usr/bin/setuidgid qmaill /usr/bin/multilog t s$LOGSIZE n$LOGCOUNT /var/log/qmail/smtp-submission 21 qmailctl stop qmailctl startThat should be it, if I missed something or am explaining it differently then it should be please feel free to addon or adjust. Regards, Jean-Paul - Original Message - From: [EMAIL PROTECTED] To: qmailtoaster-list@qmailtoaster.com Sent: Wednesday, November 08, 2006 11:07 PM Subject: Re: [qmailtoaster] RBL blocks my roaming users Great news! Could you contribute a lil' howto in the wiki or to the list. (saying something likepatched against, this this and this file and not this :-P) This would be great! ;-) I made a small patch to have the REQUIRE_AUTH functionality. If wanted I can add the REQUIRE_TLS part also.. (I used parts of http://qmail.jms1.net/patches/combined-6c5.shtml btw ) To enable it just add export REQUIRE_AUTH=1 to the run script for your submission smtpd Jean-Paul - Original Message - From: Eric Shubes [EMAIL PROTECTED] To: qmailtoaster-list@qmailtoaster.com Sent: Wednesday, November 08, 2006 9:38 PM Subject: Re: [qmailtoaster] RBL blocks my roaming users [EMAIL PROTECTED] wrote: Not at all, but you must know that with the qmail-smtpd distributed with the toaster is not possible to accept _ONLY_ authenticated (and TLS as an option) When RELAYCLIENT is not set everyone must authenticate, no? Otherwise I think it'd be an open relay. If you configure a smtpd server on 587 with current qmail-smtd and disabling RBL you let spammers pass over your RBL checks! RBL checks yes, but not authentication, providing you don't set the RELAYCLIENT variable. Someone has a working conf of submission for ONLY relay users ??? Not me. I'm purely hypothetical! :) (not really) I was working on patching an alternative qmail-smtpd but with not too much luck and no too much time now :-( I've not much time either, but qmailtoaster-plus is nearly ready for release. ;) -- -Eric 'shubes'
[qmailtoaster] RBL blocks my roaming users
Dear all, Recently, some of my users, all of them are roaming users,complaint that they can't send email through our qmail server. The bounce back message is similar to this: Subject: RE: Sent: 11/7/2006 11:44 PMThe following recipient(s) could not be reached: '[EMAIL PROTECTED] ' on 11/7/2006 11:44 PM 451 http://dsbl.org/listing?nnn.0.192.136 I believe it is due to the changes I've made to the blacklist. Here's my current /var/qmail/control/blacklists: -r sbl-xbl.spamhaus.org -r bl.spamcop.net -r relays.ordb.org -r dnsbl.antispam.or.id -r opm.blitzed.org -r list.dsbl.org -r cbl.abuseat.org My toaster includes this packages: [EMAIL PROTECTED] ~]# rpm -qa | grep toastersimscan-toaster-1.2-1.3.1ezmlm-toaster-0.53.324-1.3.1squirrelmail-toaster-1.4.8-1.3.3qmailmrtg-toaster-4.2-1.3.1spamassassin-toaster-3.1.7-1.3.5 daemontools-toaster-0.76-1.3.1autorespond-toaster-2.0.4-1.3.1qmailadmin-toaster-1.2.9-1.3.1isoqlog-toaster-2.1-1.3.1qmail-pop3d-toaster-1.03-1.3.6qmail-toaster-1.03-1.3.6ripmime-toaster-1.4.0.6-1.3.1 libdomainkeys-toaster-0.68-1.3.1ezmlm-cgi-toaster-0.53.324-1.3.1maildrop-toaster-devel-2.0.2-1.3.1vpopmail-toaster-5.4.13-1.3.2clamav-toaster-0.88.5-1.3.4courier-authlib-toaster-0.58-1.3.1maildrop-toaster-2.0.2-1.3.1 qmailtoaster-plus-0.1-1.3.1vqadmin-toaster-2.3.4-1.3.2ucspi-tcp-toaster-0.88-1.3.1control-panel-toaster-0.5-1.3.1courier-imap-toaster-4.1.1-1.3.2.unicode My questions are: 1. Does my blacklist too aggressive? 2. Is there any way to skip RBL checking if users have authenticated themselves? Thank you very much.Best regards,Bill
Re: [qmailtoaster] disabling CHKUSER_RCPT_MX?
You have to rebuild qmail. See the procedure provided by Nick Hemmesch: Nick Hemmesch wrote: The easy way: rpm -Uvh qmail-toaster*.src.rpm cd /usr/src/redhat/SPECS (assuming you are using CentOS 4) edit qmail-toaster.spec find 'sleep 5' (should be line 606) change 5 to 300 (5 seconds to 300 seconds) rpmbuild -bb --with cnt40 qmail-toaster.spec When the build process pauses, make your changes. You have 5 minutes. edit /usr/src/redhat/BUILD/qmail- 1.03/chkuser_settings.h as you wish Save your changes and wait for the 300 seconds to expire and watch it build. cd ../RPMS/i386/ qmailctl stop rpm -Uvh --replacefiles --replacepkgs qmail-*.rpm qmailctl start On 11/8/06, Lucian Cristian [EMAIL PROTECTED] wrote: Quinn Comendant wrote: Is there an easy way to disable CHKUSER_RCPT_MX or do I need to recompile chkuser? It seems this one should be disabled by default. It is pretty annoying to be sending an email to a couple dozen people and not be able to send because one domain is wrong -- then having to go over the list manually with your human eye-balls. That's the job of the computer tell me which domain is missing MX records (even if via a bounce message). Quinn -QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]I couldn't disable it even if Idisabledthe lines inchkuser_settings.hand recompiled it.- QmailToaster hosted by: VR Hosted http://www.vr.org-To unsubscribe, e-mail: [EMAIL PROTECTED]For additional commands, e-mail: [EMAIL PROTECTED] -- Best regards,Bill
Re: [qmailtoaster] disabling CHKUSER_RCPT_MX?
I don't have much concern about it. Especially when some of the senders / recipients use a not-that-standard email ID, such as having '' or '/' characters in the email ID, you have to disable that rules anyway. Best regards,Bill On 11/8/06, Quinn Comendant [EMAIL PROTECTED] wrote: Ok, that was easy enough. Actually instead of modifying the sleep length, I found it more convenient to just stop the rpmbuild job (control z) and edit chkuser_settings.h, the restart the rpmbuild job (fg return). Regarding disabling CHKUSER_RCPT_MX. And regrets to doing so? Works great for me, but I'm not completely aware if this opens any security exploits.QuinnOn Wed, 8 Nov 2006 14:56:26 +0800, Bill Kwok wrote: You have to rebuild qmail.See the procedure provided by Nick Hemmesch: Nick Hemmesch wrote: The easy way: rpm -Uvh qmail-toaster*.src.rpm cd /usr/src/redhat/SPECS (assuming you are using CentOS 4) edit qmail-toaster.spec find 'sleep 5'(should be line 606) change5 to 300 (5 seconds to 300 seconds) rpmbuild -bb --with cnt40 qmail-toaster.spec When the build process pauses, make your changes. You have 5 minutes. edit /usr/src/redhat/BUILD/qmail- 1.03/chkuser_settings.h as you wish Save your changes and wait for the 300 seconds to expire and watch it build. cd ../RPMS/i386/ qmailctl stop rpm -Uvh --replacefiles --replacepkgs qmail-*.rpm qmailctl start On 11/8/06, Lucian Cristian [EMAIL PROTECTED] wrote: Quinn Comendant wrote: Is there an easy way to disable CHKUSER_RCPT_MX or do I need to recompile chkuser? It seems this one should be disabled by default. It is pretty annoying to be sending an email to a couple dozen people and not be able to send because one domain is wrong -- then having to go over the list manually with your human eye-balls. That's the job of the computer tell me which domain is missing MX records (even if via a bounce message). Quinn - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] I couldn't disable it even if Idisabledthe lines in chkuser_settings.hand recompiled it. - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] -- Best regards, Bill-QmailToaster hosted by: VR Hosted http://www.vr.org-To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] errors during upgrading qt
Dear All, I got the same error while trying to upgrade. It seems the problem came from the parameter sequence in qtp-build-rpms. The originalprogram looks like this (~line 194): me=`basename $0`myver=0.1.3echo $me $myverARCH=$1BUILD_DIST=$2BUILD_DIR=$3UPGRADE_DIR=$4CURRENT_PACKAGES=$5logfile=$6SANDBOX=$7 While I think it should be: me=`basename $0`myver=0.1.3echo $me $myverSANDBOX=$1ARCH=$2BUILD_DIST=$3BUILD_DIR=$4UPGRADE_DIR=$5CURRENT_PACKAGES=$6logfile=$7 It works for me after I've made such change. Best regards, Bill [EMAIL PROTECTED] wrote: The order of parameters passed from qtp-newmodel to qtp-build-rpms waschanged at some point. One of these scripts is apparently not up to date.You should have:qtp-newmodel v0.1.10 qtp-whatami v0.1.1qtp-build-sandbox v0.1.1qtp-build-rpms v0.1.3---Eric 'shubes'I am still getting the same errors as you can see below. I downloaded ver1.2 as you instructed. Creating /opt/qtp-sandbox/home/vpopmail ...Creating /opt/qtp-sandbox/ misc directories ...Sandbox has been built successfully!Starting to build the binary rpms ...(pizza anyone?)If you want to view compile messages, you can open another terminal and: # tail -f /opt/qtp-sandbox/usr/src/qtp-upgrade/log/build-recent.logqtp-build-rpms 0.1.3cat: /usr/src/qtp-upgrade: Is a directoryqtp-build-rpms Error - package list not foundBuild failed, Exiting. [EMAIL PROTECTED] upgrading]#- QmailToaster hosted by: VR Hosted http://www.vr.org- To unsubscribe, e-mail: [EMAIL PROTECTED]For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] Spam folder unavailable on outlook clients
Is there command to turn-on / turn-off Spam Detection for all users, instead of changing the setting user by user at qmailadmin web interface? Thanks in advance. I recently asked the same question after noticing this. Disable the Spam Detection option in the admin pages for each user, this will make spam be delivered to their inboxes and will still be flagged as spam. On 2/6/06, Jake Vickers [EMAIL PROTECTED] wrote: Massimiliano wrote: Hi all . Someone would be so kind to explain me why the Spam folder appears on E-mail clients only when IMAP type account is selected ? No way to get it with POP3 account . I've also tried to create it manually but with no luck :-/ . My idea was to give a user the chance to move Spam messages not recognized to the spam folder without the need to use Squirrelmail but it seems that it's the only way Any suggestions? Many thanks POP3 is basically a receiving only type of transfer. It does not access any of the folders created by users, since it contacts the server, queries for new messages (INBOX), downloads them, then disconnects. The only way I know of to see the other folders is by using IMAP or webmail. - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] Best regards, Bill - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]