Re: [qmailtoaster] New Cipher error with last update

[Philip Nix Guru]

Hello

removing

tls-cipher-list=TLS_AES_256_GCM_SHA384:TLS_CHACHA20_POLY1305_SHA256:TLS_AES_128_GCM_SHA256 
from spamdyke.conf maybe ?



On 5/7/24 18:37, Remo Mattei wrote:

I had the same issue I will send you the change you need to apply.

Inviato da iPhone

Il giorno 7 mag 2024, alle ore 09:33, Philip Nix Guru  
ha scritto:




Hello

with the last update

I am getting a lot of those errors :


spamdyke[3336556]: ERROR(tls_init_inner()@tls.c:299): unable to set 
SSL/TLS cipher list: 
TLS_AES_256_GCM_SHA384:TLS_CHACHA20_POLY1305_SHA256:TLS_AES_128_GCM_SHA256: 
Operation failed but no error was reported by the SSL/TLS library, 
error:1410D0B9:SSL routines:SSL_CTX_set_cipher_list:no cipher match



just for the info

[qmailtoaster] New Cipher error with last update

[Philip Nix Guru]

Hello

with the last update

I am getting a lot of those errors :


spamdyke[3336556]: ERROR(tls_init_inner()@tls.c:299): unable to set 
SSL/TLS cipher list: 
TLS_AES_256_GCM_SHA384:TLS_CHACHA20_POLY1305_SHA256:TLS_AES_128_GCM_SHA256: 
Operation failed but no error was reported by the SSL/TLS library, 
error:1410D0B9:SSL routines:SSL_CTX_set_cipher_list:no cipher match



just for the info

Re: [qmailtoaster] send email all user

[Philip Nix Guru]

Hello

you can use vpopbull

but you need to buil yur mail (with headers) as a txt file


Cheers

-P


On 4/3/24 17:23, Eric Broch wrote:
I thought I remembered an option in vqadmin or qmailadmin where you 
could send an email to a domain, but I can't find it now.


You could

1)

vi passwd (add mysql root password)

echo "select concat(pw_name,'@','mydomain.com') as user from 
mydomain_com" | mysql -u root -p`cat passwd` vpopmail &> 
mydomainlist.txt (Edit file removing unwanted stuff)


create a mailing list in your email client from the file mydomainlist.txt

OR

2)

Create a mailing list:

# ezmlm-make -5 postmas...@mydomain.com -Afpqut 
/home/vpopmail/domains/mydomain.com/mydomain-list \

/home/vpopmail/domains/mydomain.com/.qmail-mydomain-list \
mydomain-list mydomain.com

You could get a list of all users in the domain:

vi passwd (add mysql root password)

echo "select concat(pw_name,'@','mydomain.com') as user from 
mydomain_com" | mysql -u root -p`cat passwd` vpopmail &> mydomainlist.txt


Subscribe domain users to mailing list:

ezmlm-sub /home/vpopmail/domains/mydomain.com/mydomain-list < 
mydomainlist.txt



Send and email

From postmas...@mydomain.com

To: mydomain-l...@mydomain.com

"Subject"

Body of email



On 4/3/2024 8:35 AM, Giuseppe Perna wrote:

Good morning everyone,
I would like to send an email to all users of an internal 
qmaIltoaster domain, is this POSSIBLE?
If that's not possible, I could also just send an email to all the 
users on my server.


Thank you


#rpm -qa qmail*
qmail-pop3d-toaster-1.03-1.3.22
qmailtoaster-plus.repo-0.2-2
qmailmrtg-toaster-4.2-1.3.7
qmailtoaster-plus-0.3.2-1.4.19
qmail-toaster-1.03-1.3.22
qmailadmin-toaster-1.2.16-1.4.0

[root@posta ~]# rpm -qa *toaster*
ucspi-tcp-toaster-0.88-1.3.9
maildrop-toaster-2.0.3-1.3.8
control-panel-toaster-0.5-1.4.0
libdomainkeys-toaster-0.68-1.3.6
qmail-pop3d-toaster-1.03-1.3.22
squirrelmail-toaster-1.4.20-1.3.17
qmailtoaster-plus.repo-0.2-2
vpopmail-toaster-5.4.33-1.4.0
daemontools-toaster-0.76-1.3.6
libsrs2-toaster-1.0.18-1.3.6
courier-authlib-toaster-0.59.2-1.3.10
ripmime-toaster-1.4.0.6-1.3.6
autorespond-toaster-2.0.5-1.4.0
courier-imap-toaster-4.1.2-1.3.10
isoqlog-toaster-2.1-1.3.7
maildrop-toaster-devel-2.0.3-1.3.8
qmailmrtg-toaster-4.2-1.3.7
send-emails-toaster-0.5-1.4.0
spamassassin-toaster-3.3.2-1.4.3
vqadmin-toaster-2.3.7-1.4.1
qmailtoaster-plus-0.3.2-1.4.19
ezmlm-toaster-0.53.324-1.3.6
qmail-toaster-1.03-1.3.22
ezmlm-cgi-toaster-0.53.324-1.3.6
qmailadmin-toaster-1.2.16-1.4.0
simscan-toaster-1.4.0-1.4.0
clamav-toaster-0.97.6-1.4.2

Please help me.

thanks


-
To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com
For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com

Re: [qmailtoaster] Question on /etc/sysconfig/spamassassin

[Philip Nix Guru]

Hello

On my system I am using this

SPAMDOPTIONS="-m10 -x -u clamscan"


the user depends on how it is installed


I did have the issuse with the #org SPAMDOPTIONS="-c -m5 -H 
--razor-home-dir='/var/lib/razor/' --razor-log-file='sys-syslog'"


errors and right accesses


Regards

-P


On 3/22/24 18:30, Gary Bowling wrote:



Also, in /etc/sysconfig/spamassassin  the options are set as follows:

# Options to spamd
SPAMDOPTIONS="-c -m5 -H --razor-home-dir='/var/lib/razor/' 
--razor-log-file='sys-syslog'"



There was a thread about this back in 2022, but there really wasn't 
any conclusion on that thread. Razor is not installed or configured in 
the installation. What should those SPAMDOPTIONS really be?


--

Gary Bowling
The Moderns on Spotify 

- 
To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com 
For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com 

Re: [qmailtoaster] 530 5.2.0 Message is empty. Aborting.

[Philip Nix Guru]

Hello Eric

qmail-1.03-3.3.7.qt.el8.x86_64

AlmaLinux release 8.7 (Stone Smilodon)

On 3/27/23 15:56, Eric Broch wrote:


What OS and version o qmail are you running? There are debugging 
options with later version of qmail


On 3/24/2023 11:27 AM, Philip Nix Guru wrote:


Hello

for a couple of weeks I am seeing empty messages after being scanned 
on a test server


QmailToaster is scanning then delivering to another qmail server 
according to smtproutes policies


The mail is scanned fined but when it is sent to the other 
qmailtoaster the mail is empty



Received: (qmail 3980300 invoked by uid 89); 24 Mar 2023 16:50:41 -
Received: by simscan 1.4.0 ppid: 3980291, pid: 3980292, t: 2.4054s
  scanners: regex: 1.4.0 attach: 1.4.0 clamav: 0.103.8/m:62/d:26850 
spam: 3.4.6 rspam: 3.5 dspam:  3.10.2 (agent/library)
530 5.2.0 Message is empty. Aborting.


send log file :
2023-03-24 17:50:41.919899500 info msg 1054620: bytes 306 from <> qp 3980300 
uid 89
2023-03-24 17:50:41.919926500 starting delivery 1193: msg 1054620 to remote 

bytes 306  size of the empty mail


but the mail is not empty when it reaches the server

Mar 24 17:50:40 dns1 spamd[3499352]: spamd: connection from ::1 
[::1]:54218 to port 783, fd 5
Mar 24 17:50:40 dns1 spamd[3499352]: spamd: processing message 
<0100018709f5b404-851b741b-34b1-3640-9e91-0uauhti1ervx-000...@email.amazonses.com> 
for xxx@:981
Mar 24 17:50:41 dns1 spamd[3499352]: spamd: clean message (3.2/5.0) 
for xxx@:981 in 1.0 seconds, 415434 bytes.
Mar 24 17:50:41 dns1 spamd[3499352]: spamd: result: . 3 - 
BAYES_50,DKIM_ADSP_NXDOMAIN,DKIM_INVALID,DKIM_SIGNED,HTML_FONT_SIZE_LARGE,HTML_MESSAGE,HTML_MIME_NO_HTML_TAG,MIME_HTML_ONLY,SPF_FAIL,SPF_HELO_SOFTFAIL,UNPARSEABLE_RELAY,URIBL_SBL_A,URI_TRUNCATED 
scantime=1.0,size=415434,user=xxx@,uid=981,required_score=5.0,rhost=::1,raddr=::1,rport=54218,mid=<0100018709f5b404-851b741b-34b1-3640-9e91-0uauhti1ervx-000...@email.amazonses.com>,bayes=0.50,autolearn=no 
autolearn_force=no

Mar 24 17:50:41 dns1 spamd[3499341]: prefork: child states: II


Just wondering if any of you had that issue ?

I have that on a "new" server the others seem to behave fine


Cheers

-P

[qmailtoaster] 530 5.2.0 Message is empty. Aborting.

[Philip Nix Guru]

Hello

for a couple of weeks I am seeing empty messages after being scanned on 
a test server


QmailToaster is scanning then delivering to another qmail server 
according to smtproutes policies


The mail is scanned fined but when it is sent to the other qmailtoaster 
the mail is empty



Received: (qmail 3980300 invoked by uid 89); 24 Mar 2023 16:50:41 -
Received: by simscan 1.4.0 ppid: 3980291, pid: 3980292, t: 2.4054s
 scanners: regex: 1.4.0 attach: 1.4.0 clamav: 0.103.8/m:62/d:26850 
spam: 3.4.6 rspam: 3.5 dspam:  3.10.2 (agent/library)
530 5.2.0 Message is empty. Aborting.


send log file :
2023-03-24 17:50:41.919899500 info msg 1054620: bytes 306 from <> qp 3980300 
uid 89
2023-03-24 17:50:41.919926500 starting delivery 1193: msg 1054620 to remote 

bytes 306  size of the empty mail


but the mail is not empty when it reaches the server

Mar 24 17:50:40 dns1 spamd[3499352]: spamd: connection from ::1 
[::1]:54218 to port 783, fd 5
Mar 24 17:50:40 dns1 spamd[3499352]: spamd: processing message 
<0100018709f5b404-851b741b-34b1-3640-9e91-0uauhti1ervx-000...@email.amazonses.com> 
for xxx@:981
Mar 24 17:50:41 dns1 spamd[3499352]: spamd: clean message (3.2/5.0) for 
xxx@:981 in 1.0 seconds, 415434 bytes.
Mar 24 17:50:41 dns1 spamd[3499352]: spamd: result: . 3 - 
BAYES_50,DKIM_ADSP_NXDOMAIN,DKIM_INVALID,DKIM_SIGNED,HTML_FONT_SIZE_LARGE,HTML_MESSAGE,HTML_MIME_NO_HTML_TAG,MIME_HTML_ONLY,SPF_FAIL,SPF_HELO_SOFTFAIL,UNPARSEABLE_RELAY,URIBL_SBL_A,URI_TRUNCATED 
scantime=1.0,size=415434,user=xxx@,uid=981,required_score=5.0,rhost=::1,raddr=::1,rport=54218,mid=<0100018709f5b404-851b741b-34b1-3640-9e91-0uauhti1ervx-000...@email.amazonses.com>,bayes=0.50,autolearn=no 
autolearn_force=no

Mar 24 17:50:41 dns1 spamd[3499341]: prefork: child states: II


Just wondering if any of you had that issue ?

I have that on a "new" server the others seem to behave fine


Cheers

-P

Re: [qmailtoaster] forwarding to gmail address fails because of hard spf check

[Philip Nix Guru]

Hello Peter

The issue you had yesterday is something that never got fixed

I ran into that already in 2013


I d suggest monitoring /var/log/qmail/send/current

(make a cron script) and if you trigger the error just rename 
/var/qmail/control/srs_domain to /var/qmail/control/srs_domain.alert or 
whatever


so you wont break your server ..


Regards

-Philip



On 2/23/23 12:02, Peter Peltonen wrote:

Ok good.

I actually ran into a SRS related problem yesterday: i think a 
malformed headers in spam msg caused to SRS to fail which put my qmail 
send process in a loop with error


No user in SRS0 address

Qmail spawned more and more processes until my server got unresponsive 
and I had to reboot the server. After qmail had started, the same 
thing happened again.


I had to disable SRS to get everything working.

Very unfortunate, everything had worked so well until now.

Peter

to 23. helmik. 2023 klo 11.38 あいざわひろし  
kirjoitti:


Hi guys

Thanks to this thread, gmail.com  now receives
forwarded message from
my mailserver .

I noticed that mx.google.com  says
'spf=neutral' in the header
ARC-Authentication-Results
I created  SPF record for domain srs (in this example, srs.xyz.com
) and now
mx.google.com  says 'spf=pass'.

I think it is better to make the spf record for srs domain.

--
AIZAWA Hiroshi

2023年1月3日(火) 18:23 Peter Peltonen :
>
> Googling "srs qmailtoaster" gave me this link:
>
>

http://wiki.qmailtoaster.net/index.php/Configuring_SRS_on_Toaster_1.03-1.3.13%2B
>
> which does not work, it seems qmailtoaster.com
 should be used instead of .net
>
> Okay now we have the instructions I guess I could try to test
it, I have a spare registered domain I could test with. Does this
sound ok procedure:
>
> setup domain xyz.com  with SPF with hard fail
(-all) and the toaster as the MX
> send email from xyz.com  to GMail through our
toaster: should pass ok
> setup forwarding from xyz.com  to GMail
> send email to xyz.com : should fail because
GMail does not accept
> setup SRS at toaster:
>
> create NS record for domain srs.xyz.com 
with MX pointing to our toaster
> echo srs.xyz.com  >
/var/qmail/control/srs_domain
> mkpasswd -l 32 > /var/qmail/control/srs_secrets
> mkpasswd -l 32 >> /var/qmail/control/srs_secrets
> (repeat mkpasswd as many times you need, not sure how many is
really needed?)
> echo 7 > /var/qmail/control/srs_maxage
> echo 8 > /var/qmail/control/srs_hashlength
> qmailctl restart
> echo srs.xyz.com  >>
/var/qmail/control/rcpthosts
> echo srs.xyz.com:srs >> /var/qmail/control/virtualdomains
> echo "| /var/qmail/bin/srsfilter" >
/var/qmail/alias/.qmail-srs-default
> (ownershp of other alias files on my server are user alias group
nofiles, so probably this should be changed to the same?)
>
> send email to xyz.com : should pass ok
>
>
> What do you think Angus?
>
> Best,
> Peter
>
>
> On Mon, Jan 2, 2023 at 7:52 PM Angus McIntyre 
wrote:
>>
>>
>>
>> Peter Peltonen wrote on 1/2/23 11:57 AM:
>> > Some of my toaster users have their email forwarded to Gmail
... Some
>> > googling around tells me that SRS could be the solution for this
>> > problem.
>> >
>> > There is info on this at Qmailtoaster Wiki, but the site
seems to be
>> > somehow broken.
>>
>> Which page are you looking at, and in what way does it seem broken?
>>
>>
>>

http://wiki.qmailtoaster.com/index.php/Configuring_SRS_on_Toaster_1.03-1.3.13%2B
>>
>> currently loads fine for me, and looks as if it has good
information.
>>
>> I should stress that I haven't tried this yet. I didn't know
about SRS
>> until you posted this (thank you!) but I'm having the same
issue as you
>> and it sounds as if this might be just what I need.
>>
>> Would anyone who's actually implemented this care to comment?
>>
>> Angus
>>
>>
>>
-
>> To unsubscribe, e-mail:
qmailtoaster-list-unsubscr...@qmailtoaster.com
>> For additional commands, e-mail:
qmailtoaster-list-h...@qmailtoaster.com
>>

-
To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com
For additional commands, e-mail:
qmailtoaster-list-h...@qmailtoaster.com

Re: [qmailtoaster] forwarding to gmail address fails because of hard spf check

[Philip Nix Guru]

Hello

when you manually add a  domain to morercpthosts

simply run /var/qmail/bin/qmail-newmrh

If you use graylisting you can add this :

mkdir /var/spamdyke/graylist/domain_name
chown -R vpopmail:vchkpw  /var/spamdyke/graylist/domain_name

Regards

-P



On 1/4/23 22:06, Andreas wrote:
No, no need to rebuild cdb nor restart the server when adding domains 
or aliasdomains

at least when you add them through ~vpopmail/bin/adddomain  ...


Andreas

Am 04.01.23 um 18:38 schrieb Peter Peltonen:

Thanks Jeff for the info.

Do you know if qmailctl cdb / restart is needed when adding info to 
rcpthosts, morercpthosts or virtualdomains?


Best,
Peter

On Wed, Jan 4, 2023 at 7:24 PM Jeff Koch  
wrote:


Peter - I don't think it matters whether the domain is added to
rcpthosts or morercpthosts - the toaster will generally add
additional domains to morercpthosts but it should work fine
either way.

Jeff

On 1/4/2023 12:18 PM, Peter Peltonen wrote:

Okay I tested this setup and it seems to work, mail gets through
and I get spf=pass for it in Gmail.

The only difference to the procedure I posted earlier were:

- needed to add srs.xyz.com  to
morercpthosts and not to rcpthosts as I have more than 50
domains hosted
- at the end I ran qmailctl cdb and qmailctl restart, not sure
if needed

Best,
Peter



On Tue, Jan 3, 2023 at 11:22 AM Peter Peltonen
 wrote:

Googling "srs qmailtoaster" gave me this link:


http://wiki.qmailtoaster.net/index.php/Configuring_SRS_on_Toaster_1.03-1.3.13%2B

which does not work, it seems qmailtoaster.com
 should be used instead of .net

Okay now we have the instructions I guess I could try to
test it, I have a spare registered domain I could test with.
Does this sound ok procedure:

  * setup domain xyz.com  with SPF with hard
fail (-all) and the toaster as the MX
  * send email from xyz.com  to GMail
through our toaster: should pass ok
  * setup forwarding from xyz.com  to GMail
  * send email to xyz.com : should fail
because GMail does not accept
  * setup SRS at toaster:

 1. create NS record for domain srs.xyz.com
 with MX pointing to our toaster
 2. echo srs.xyz.com  >
/var/qmail/control/srs_domain
 3. mkpasswd -l 32 > /var/qmail/control/srs_secrets
 4. mkpasswd -l 32 >> /var/qmail/control/srs_secrets
 5. (repeat mkpasswd as many times you need, not sure how
many is really needed?)
 6. echo 7 > /var/qmail/control/srs_maxage
 7. echo 8 > /var/qmail/control/srs_hashlength
 8. qmailctl restart
 9. echo srs.xyz.com  >>
/var/qmail/control/rcpthosts
10. echo srs.xyz.com:srs >> /var/qmail/control/virtualdomains
11. echo "| /var/qmail/bin/srsfilter" >
/var/qmail/alias/.qmail-srs-default
(ownershp of other alias files on my server are user
alias group nofiles, so probably this should be changed
to the same?)

  * send email to xyz.com : should pass ok


What do you think Angus?

Best,
Peter


On Mon, Jan 2, 2023 at 7:52 PM Angus McIntyre
 wrote:



Peter Peltonen wrote on 1/2/23 11:57 AM:
> Some of my toaster users have their email forwarded to
Gmail ... Some
> googling around tells me that SRS could be the
solution for this
> problem.
>
> There is info on this at Qmailtoaster Wiki, but the
site seems to be
> somehow broken.

Which page are you looking at, and in what way does it
seem broken?



http://wiki.qmailtoaster.com/index.php/Configuring_SRS_on_Toaster_1.03-1.3.13%2B

currently loads fine for me, and looks as if it has good
information.

I should stress that I haven't tried this yet. I didn't
know about SRS
until you posted this (thank you!) but I'm having the
same issue as you
and it sounds as if this might be just what I need.

Would anyone who's actually implemented this care to
comment?

Angus



-
To unsubscribe, e-mail:
qmailtoaster-list-unsubscr...@qmailtoaster.com
For additional commands, e-mail:
qmailtoaster-list-h...@qmailtoaster.com

Re: [qmailtoaster] New Installation

[Philip Nix Guru]

And 15.00 is the rspamd :)


ok so just the dpsam debug logs .. was it compiled enabling debugging ?


On 9/1/22 16:01, Philip Nix Guru wrote:


oops a little typo

Value 12.00 is simcontrol of course :)


On 9/1/22 15:41, Philip Nix Guru wrote:

Hello

I wanted to try an "automatic" new installation

beside a few config that look really awkward, system is running


But I was wondering on the different scanners scores


quickly checking logs

I saw this :


[00]2022-09-01 15:12:35.959906500 simscan:[379981]:CLEAN 
(0.20/12.00):4.3762s:Re_ Call procmail after sieve: xx
[00]2022-09-01 15:12:36.264850500 simscan:[379981]:CLEAN 
(4.39/15.00):4.6811s:Re_ Call procmail after sieve: xxx
[00]2022-09-01 15:12:36.859406500 simscan:[379981]:CLEAN 
(0./0.9899):5.2757s:Re_ Call procmail after sieve:x


the scanning times are totally wrong , no idea why though yet


Value 12.00 is from tcp.smtp

Value 15.00 is defined where ?

Value 0.9899 is Dspam ? and defined where


Regarding dspam, where are the debug/general logs

I saw logs in /var/lib/dspam but even with debug enabled, I can't see 
the debug log



before tweaking like on my other custom systems I wanted to find out 
those few things on an automatic toaster install



Regards





-
To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com
For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com

Re: [qmailtoaster] New Installation

[Philip Nix Guru]

oops a little typo

Value 12.00 is simcontrol of course :)


On 9/1/22 15:41, Philip Nix Guru wrote:

Hello

I wanted to try an "automatic" new installation

beside a few config that look really awkward, system is running


But I was wondering on the different scanners scores


quickly checking logs

I saw this :


[00]2022-09-01 15:12:35.959906500 simscan:[379981]:CLEAN 
(0.20/12.00):4.3762s:Re_ Call procmail after sieve: xx
[00]2022-09-01 15:12:36.264850500 simscan:[379981]:CLEAN 
(4.39/15.00):4.6811s:Re_ Call procmail after sieve: xxx
[00]2022-09-01 15:12:36.859406500 simscan:[379981]:CLEAN 
(0./0.9899):5.2757s:Re_ Call procmail after sieve:x


the scanning times are totally wrong , no idea why though yet


Value 12.00 is from tcp.smtp

Value 15.00 is defined where ?

Value 0.9899 is Dspam ? and defined where


Regarding dspam, where are the debug/general logs

I saw logs in /var/lib/dspam but even with debug enabled, I can't see 
the debug log



before tweaking like on my other custom systems I wanted to find out 
those few things on an automatic toaster install



Regards





-
To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com
For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com

[qmailtoaster] New Installation

[Philip Nix Guru]

Hello

I wanted to try an "automatic" new installation

beside a few config that look really awkward, system is running


But I was wondering on the different scanners scores


quickly checking logs

I saw this :


[00]2022-09-01 15:12:35.959906500 simscan:[379981]:CLEAN 
(0.20/12.00):4.3762s:Re_ Call procmail after sieve: xx
[00]2022-09-01 15:12:36.264850500 simscan:[379981]:CLEAN 
(4.39/15.00):4.6811s:Re_ Call procmail after sieve: xxx
[00]2022-09-01 15:12:36.859406500 simscan:[379981]:CLEAN 
(0./0.9899):5.2757s:Re_ Call procmail after sieve:x


the scanning times are totally wrong , no idea why though yet


Value 12.00 is from tcp.smtp

Value 15.00 is defined where ?

Value 0.9899 is Dspam ? and defined where


Regarding dspam, where are the debug/general logs

I saw logs in /var/lib/dspam but even with debug enabled, I can't see 
the debug log



before tweaking like on my other custom systems I wanted to find out 
those few things on an automatic toaster install



Regards





-
To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com
For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com

Re: [qmailtoaster] New Install

[Philip Nix Guru]

Hello

This is weird yes

I used the latest installation script


I modded my spamdoptions and I did pass as argument -u user, but I chose 
vpopmail


it is just a matter or folder ownership if you use bayes or other plugins


But there is a lot of differences in the options, wonder if there is a 
changelog somewhere , to at least notify the changes


I do think it is useful to have spamd run as a user vpopmail or clamscan


but why are you using --creat-prefs with -x ?

-x is Disable user config files (I user -x as this new test qmail is a 
frontend filtering so I dont want user config)



Thx for checking Remo


Regards

-Philip




On 7/11/22 20:04, Remo Mattei wrote:

This is my spamassassin

# Options to spamd
SPAMDOPTIONS="--create-prefs -m10 -q -x -u clamscan"
~
~
~
~
As I do not see the razor on my default config in Rocky Linux.

Remo


On Jul 8, 2022, at 12:36 AM, Philip Nix Guru  wrote:

Hello

AlmaLinux


check your /etc/sysconfig/spamassassin

SPAMDOPTIONS="-c -m5 -H --razor-home-dir='/var/lib/razor/' 
--razor-log-file='sys-syslog'"



Regards

-Philip


On 7/8/22 03:50, Remo Mattei wrote:

I wonder what OS are you running? I will have to check my rocky but I have not 
had any issues.


Il giorno 7 lug 2022, alle ore 18:21, Philip Nix Guru  ha 
scritto:

Hello

I was just checking a new install with all the new features (dspam rspam tls 
...)


I noticed that spamassassin is called with razor2

/usr/bin/perl -T -w /usr/bin/spamd -c -m5 -H --razor-home-dir=/var/lib/razor/ 
--razor-log-file=sys-syslog


But that folder /var/lib/razor is not created in the install process and will 
then trigger an error

razor2: razor2 check failed: No such file or directory razor2: Can't read: 
/var/lib/razor/ at /usr/share/perl5/vendor_perl/Mail/Spam
Assassin/Plugin/Razor2.pm


just passing the info

Regards

-Philip




-
To unsubscribe, e-mail:qmailtoaster-list-unsubscr...@qmailtoaster.com
For additional commands, e-mail:qmailtoaster-list-h...@qmailtoaster.com


-
To unsubscribe, e-mail:qmailtoaster-list-unsubscr...@qmailtoaster.com
For additional commands, e-mail:qmailtoaster-list-h...@qmailtoaster.com

Re: [qmailtoaster] New Install

[Philip Nix Guru]

Well it will just generate en error

but it wont block anything

I dont see the point having a razor in spamdoptions and it is not really 
configured


you have to issue commands to register create and discover through 
razor-admin command



or I missed something on the toaster page .. I ll go check after 
installing tweaks :)



On 7/11/22 20:05, Remo Mattei wrote:

But on my other one I do see:

# Options to spamd
SPAMDOPTIONS="-c -m5 -H --razor-home-dir='/var/lib/razor/' 
--razor-log-file='sys-syslog'"



And I do not have any issues as I recall on this box for mail.

Remo


On Jul 8, 2022, at 12:36 AM, Philip Nix Guru  wrote:

Hello

AlmaLinux


check your /etc/sysconfig/spamassassin

SPAMDOPTIONS="-c -m5 -H --razor-home-dir='/var/lib/razor/' 
--razor-log-file='sys-syslog'"



Regards

-Philip


On 7/8/22 03:50, Remo Mattei wrote:

I wonder what OS are you running? I will have to check my rocky but I have not 
had any issues.


Il giorno 7 lug 2022, alle ore 18:21, Philip Nix Guru  ha 
scritto:

Hello

I was just checking a new install with all the new features (dspam rspam tls 
...)


I noticed that spamassassin is called with razor2

/usr/bin/perl -T -w /usr/bin/spamd -c -m5 -H --razor-home-dir=/var/lib/razor/ 
--razor-log-file=sys-syslog


But that folder /var/lib/razor is not created in the install process and will 
then trigger an error

razor2: razor2 check failed: No such file or directory razor2: Can't read: 
/var/lib/razor/ at /usr/share/perl5/vendor_perl/Mail/Spam
Assassin/Plugin/Razor2.pm


just passing the info

Regards

-Philip




-
To unsubscribe, e-mail:qmailtoaster-list-unsubscr...@qmailtoaster.com
For additional commands, e-mail:qmailtoaster-list-h...@qmailtoaster.com


-
To unsubscribe, e-mail:qmailtoaster-list-unsubscr...@qmailtoaster.com
For additional commands, e-mail:qmailtoaster-list-h...@qmailtoaster.com

Re: [qmailtoaster] New Install

[Philip Nix Guru]

Hello List

so what's the status on that razor in spamdoptions ?

it is a good idea to use razor but it has to be registered created and 
discovered to be enabled



Regards

-Philip

On 7/8/22 09:36, Philip Nix Guru wrote:


Hello

AlmaLinux


check your /etc/sysconfig/spamassassin

SPAMDOPTIONS="-c -m5 -H --razor-home-dir='/var/lib/razor/' 
--razor-log-file='sys-syslog'"



Regards

-Philip


On 7/8/22 03:50, Remo Mattei wrote:

I wonder what OS are you running? I will have to check my rocky but I have not 
had any issues.


Il giorno 7 lug 2022, alle ore 18:21, Philip Nix Guru  ha 
scritto:

Hello

I was just checking a new install with all the new features (dspam rspam tls 
...)


I noticed that spamassassin is called with razor2

/usr/bin/perl -T -w /usr/bin/spamd -c -m5 -H --razor-home-dir=/var/lib/razor/ 
--razor-log-file=sys-syslog


But that folder /var/lib/razor is not created in the install process and will 
then trigger an error

razor2: razor2 check failed: No such file or directory razor2: Can't read: 
/var/lib/razor/ at /usr/share/perl5/vendor_perl/Mail/Spam
Assassin/Plugin/Razor2.pm


just passing the info

Regards

-Philip




-
To unsubscribe, e-mail:qmailtoaster-list-unsubscr...@qmailtoaster.com
For additional commands, e-mail:qmailtoaster-list-h...@qmailtoaster.com


-
To unsubscribe, e-mail:qmailtoaster-list-unsubscr...@qmailtoaster.com
For additional commands, e-mail:qmailtoaster-list-h...@qmailtoaster.com

Re: [qmailtoaster] New Install

[Philip Nix Guru]

Hello

AlmaLinux


check your /etc/sysconfig/spamassassin

SPAMDOPTIONS="-c -m5 -H --razor-home-dir='/var/lib/razor/' 
--razor-log-file='sys-syslog'"



Regards

-Philip


On 7/8/22 03:50, Remo Mattei wrote:

I wonder what OS are you running? I will have to check my rocky but I have not 
had any issues.


Il giorno 7 lug 2022, alle ore 18:21, Philip Nix Guru  ha 
scritto:

Hello

I was just checking a new install with all the new features (dspam rspam tls 
...)


I noticed that spamassassin is called with razor2

/usr/bin/perl -T -w /usr/bin/spamd -c -m5 -H --razor-home-dir=/var/lib/razor/ 
--razor-log-file=sys-syslog


But that folder /var/lib/razor is not created in the install process and will 
then trigger an error

razor2: razor2 check failed: No such file or directory razor2: Can't read: 
/var/lib/razor/ at /usr/share/perl5/vendor_perl/Mail/Spam
Assassin/Plugin/Razor2.pm


just passing the info

Regards

-Philip




-
To unsubscribe, e-mail:qmailtoaster-list-unsubscr...@qmailtoaster.com
For additional commands, e-mail:qmailtoaster-list-h...@qmailtoaster.com



-
To unsubscribe, e-mail:qmailtoaster-list-unsubscr...@qmailtoaster.com
For additional commands, e-mail:qmailtoaster-list-h...@qmailtoaster.com

[qmailtoaster] New Install

[Philip Nix Guru]

Hello

I was just checking a new install with all the new features (dspam rspam 
tls ...)



I noticed that spamassassin is called with razor2

/usr/bin/perl -T -w /usr/bin/spamd -c -m5 -H 
--razor-home-dir=/var/lib/razor/ --razor-log-file=sys-syslog



But that folder /var/lib/razor is not created in the install process and 
will then trigger an error


razor2: razor2 check failed: No such file or directory razor2: Can't 
read: /var/lib/razor/ at /usr/share/perl5/vendor_perl/Mail/Spam

Assassin/Plugin/Razor2.pm


just passing the info

Regards

-Philip




-
To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com
For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com

Re: [qmailtoaster] Issue in opensuse leap 15 and SPDL

[Philip Nix Guru]

Hello every1

I tested an installation on spdl 8.1 on a vm (xen)

choosing mariadb

All went fine w/o a glitch





On 1/21/21 10:50 AM, ChandranManikandan wrote:

Hi Eric,

Yes, the script is correct and I have tried to check the status 
manually and it hangs also.


Here is full script of qt_install_cos8.sh

# Set DNF variables
echo "$DB" > /etc/yum/vars/db

DB=`cat /etc/yum/vars/db` && [[ "$DB" == *mysql* ]] && DBD="${DB}d" || 
DBD="${DB}"


echo "Using $DBD backend..."

yum -y install $DB $DB-server

# MySQL admin password
read -s -p "Enter $DBD password: " password
if [ -z "$password" ]; then
   echo "Empty password, exiting..."
   exit 1
fi
echo -e "\n"
MYSQLPW=$password
credfile=~/sql.cnf
echo -e "[client]\nuser=root\npassword='$MYSQLPW'\nhost=localhost" > 
$credfile

echo "Starting $DBD Server..."
systemctl start $DBD && systemctl enable $DBD && systemctl status $DBD
echo "Started $DBD Server"
sleep 2
echo "Setting $DBD admin password..."
mysqladmin -uroot password $MYSQLPW &> /dev/null
echo "Admin password set"
echo "Creating vpopmail database..."
mysqladmin --defaults-extra-file=$credfile reload
mysqladmin --defaults-extra-file=$credfile refresh
mysqladmin --defaults-extra-file=$credfile create vpopmail
mysqladmin --defaults-extra-file=$credfile reload
mysqladmin --defaults-extra-file=$credfile refresh
echo "Adding vpopmail users and privileges..."
mysql --defaults-extra-file=$credfile -e "CREATE USER 
vpopmail@localhost IDENTIFIED BY 'SsEeCcRrEeTt'"
mysql --defaults-extra-file=$credfile -e "GRANT ALL PRIVILEGES ON 
vpopmail.* TO vpopmail@localhost"

mysqladmin --defaults-extra-file=$credfile reload
mysqladmin --defaults-extra-file=$credfile refresh
echo "Done with vpopmail database..."

# Add repos
curl -o /etc/yum.repos.d/qmt.repo 
https://raw.githubusercontent.com/qmtoaster/mirrorlist/master/qmt-centos8.repo

DOVECOTMYSQL=

On Wed, Jan 20, 2021 at 10:06 PM Eric Broch > wrote:


Did you check the script?

Here is that section:

echo -e "\n"
MYSQLPW=$password
credfile=~/sql.cnf
echo -e "[client]\nuser=root\npassword='$MYSQLPW'\nhost=localhost"
> $credfile
echo "Starting $DBD Server..."
systemctl start $DBD && systemctl enable $DBD && systemctl status $DBD
echo "Started $DBD Server"
sleep 2
echo "Setting $DBD admin password..."
mysqladmin -uroot password $MYSQLPW &> /dev/null
echo "Admin password set"
echo "Creating vpopmail database..."

It doesn't look like the script is getting to this line (line 7 in
the segment above):

echo "Started $DBD Server"

Have you tried starting and checking the status of mysqld manually
to see if it hangs?


On 1/20/2021 12:04 AM, ChandranManikandan wrote:

Hi Eric,

I have freshly installed SPDL 8.1 on a virtual box then ran a yum
update.
After done the updates rebooted the system to install QMT with
the below commands.
curl -O

https://raw.githubusercontent.com/qmtoaster/scripts/master/qt_install_cos8.sh
&& \
chmod 755 qt_install_cos8.sh && ./qt_install_cos8.sh
then installed relevant packages and then asking for database
selection, i selected mysql and i put the new password there.
After that mysql services started and nothing moved.
FYI screenshot attached and messages below.
Enter mysqld password:

Starting mysqld Server...
Created symlink
/etc/systemd/system/multi-user.target.wants/mysqld.service →
/usr/lib/systemd/system/mysqld.service.
● mysqld.service - MySQL 8.0 database server
   Loaded: loaded (/usr/lib/systemd/system/mysqld.service;
enabled; vendor pres>
   Active: active (running) since Wed 2021-01-20 14:54:46 +08;
562ms ago
 Main PID: 5805 (mysqld)
   Status: "Server is operational"
    Tasks: 39 (limit: 12455)
   Memory: 426.3M
   CGroup: /system.slice/mysqld.service
           └─5805 /usr/libexec/mysqld --basedir=/usr

Jan 20 14:54:35 localhost.localdomain systemd[1]: Starting MySQL
8.0 database s>
Jan 20 14:54:35 localhost.localdomain mysql-prepare-db-dir[5723]:
Initializing >
Jan 20 14:54:46 localhost.localdomain systemd[1]: Started MySQL
8.0 database se>
lines 1-13/13 (END)

Appreciate your help.



On Sat, Jan 16, 2021 at 5:29 AM Eric Broch
mailto:ebr...@whitehorsetc.com>> wrote:

Odd, I just did a Springdale Install today. It went off
without a hitch.

Any errors to report?

On 1/13/2021 3:13 AM, ChandranManikandan wrote:

Hi Eric,

I have tried to install QMT in Opensuse leap15 & SPDL as per
qmailtoaster guide on the portal,
but after mardiab installed and started the mariadb service
nothing has moved forward to further package installation.

I have tried the virtualbox testing environment.

-- 
*/Regards,

Manikandan.C
/*




-- 
*/Regards,

Re: [qmailtoaster] local queue increasing /slow delivery / multiple copies of same email

[Philip Nix Guru]

Hello

a bit hard to debug without checking system

if you got multitail

create a file with :

multitail -Z red,black,inverse -T -S -x "%m %u@%h %f (%t) [%l]" \
   -m 0 -n 49 -cS qmail-send -l "qmlog -f send" \
   -m 0 -n 49 -cS qmail-smtp3 -em "policy_check" -em "CHKUSER" -em 
"simscan" -em "spamdyke" -em "qmail-smtpd: " -l "qmlog -f smtp" \
   -m 0 -n 49 -cS qmtspamassassin -ev "prefork" -ev "(connection from 
localhost)" -l "tail -f /var/log/maillog" \
  # -m 0 -n 49 -cS qmail-smtp -em "policy_check" -em "CHKUSER" -em 
"simscan" -em  "spamdyke" -em "qmail-smtpd: " -em "spf-reject" -l "qmlog 
-f submission" \
  # -m 0 -n 49 -cS qmtspamassassin -ev "prefork" -ev "(connection from 
localhost)" -l "tail -f /var/log/maillog"


and just sh it, and check if you see anything weird/strange, delay ...

in the mail transaction

The amount of messages in the local queue is still descending but I 
don't know why so slow!





El vie., 7 ago. 2020 a las 15:48, Philip Nix Guru (<mailto:phi...@ows.ch>>) escribió:


Hello

But the mail does get delivered just with a very long delay ?

and you disabled clamd but it still running ?


Check a delivered mail, look at the headers, make sure clamd is
really not running

anything suspicous in /var/log/clamd/clamd.log ?


qmHandle -s shows what ?


On 8/7/20 8:34 PM, Diego Piñon Conde wrote:

2 hs has passed and the local queue has 3530 msg (it was 3700 at
some point). Beside clamd that it is still running and time to
time take 100% cpu usage (I don't understand why because
qmailtoaster it's supoust that not use it anymore), cpu usage is
normally below 20% and memory is the same. So why does it take so
long to deliver local msg!

I'm in UTC -3, so probably all of you are snoring. I will keep
working til qmailtoaster works normally, I hope when you wake up
you can give me a hand.

I will really appreciate that. Thanks in advance!

El vie., 7 ago. 2020 a las 12:29, Philip Nix Guru (mailto:phi...@ows.ch>>) escribió:

Hello

what you could start by doing is disabling

idle-timeout-secs=xx in /etc/spamdyke/spamdyke.conf

just comment the line

check in a few hours if your TIMEOUT drastically decreased

then you can adapt the idle-timeout delay


If not then, we can check other things


Cheers


On 8/7/20 4:40 PM, Diego Piñon Conde wrote:

Hi Philip
this is  the tail of /var/log/maillog

/Aug  7 11:31:01 pegasus spamdyke[2968]: TIMEOUT from:
sciottilili...@gmail.com <mailto:sciottilili...@gmail.com>
to: filibe...@tarjetacliper.com
<mailto:filibe...@tarjetacliper.com> origin_ip:
209.85.215.175 origin_rdns: mail-pg1-f175.google.com
<http://mail-pg1-f175.google.com> auth: (unknown)
encryption: TLS reason: TIMEOUT
Aug  7 11:31:03 pegasus spamdyke[2970]: TIMEOUT from:
nore...@messages.sonicwall.com
<mailto:nore...@messages.sonicwall.com> to:
pi...@tarjetacliper.com <mailto:pi...@tarjetacliper.com>
origin_ip: 209.167.231.144 origin_rdns:
mail01.messages.sonicwall.com
<http://mail01.messages.sonicwall.com> auth: (unknown)
encryption: TLS reason: TIMEOUT
Aug  7 11:31:03 pegasus spamdyke[2969]: TIMEOUT from:

v-cjcdika_pmnlhikcme_gmicmlkp_gmicmlk...@bounce.info.bancopatagonia.com.ar

<mailto:v-cjcdika_pmnlhikcme_gmicmlkp_gmicmlk...@bounce.info.bancopatagonia.com.ar>
to: scio...@tarjetacliper.com
<mailto:scio...@tarjetacliper.com> origin_ip: 192.156.219.80
origin_rdns: mail7756.info.bancopatagonia.com.ar
<http://mail7756.info.bancopatagonia.com.ar> auth: (unknown)
encryption: TLS reason: TIMEOUT
Aug  7 11:31:06 pegasus spamdyke[2974]: TIMEOUT from:
bounce-10710_html-121882056-2177875-6399888-...@bounce.mail.bbva.com.ar

<mailto:bounce-10710_html-121882056-2177875-6399888-...@bounce.mail.bbva.com.ar>
to: bondo...@tarjetacliper.com
<mailto:bondo...@tarjetacliper.com> origin_ip: 13.111.6.12
origin_rdns: mta.mail.bbva.com.ar
<http://mta.mail.bbva.com.ar> auth: (unknown) encryption:
TLS reason: TIMEOUT
Aug  7 11:31:24 pegasus vpopmail[3225]: vchkpw-submission:
(PLAIN) login success rose...@tarjetacliper.com:10.10.10.8
<mailto:rose...@tarjetacliper.com:10.10.10.8>
Aug  7 11:31:27 pegasus spamdyke[3004]: TIMEOUT from:
www...@xpressus.emsmtp.com
<mailto:www...@xpressus.emsmtp.com> to:
crisgar...@tarjetacliper.com
<mail

Re: [qmailtoaster] local queue increasing /slow delivery / multiple copies of same email

[Philip Nix Guru]

Hello

But the mail does get delivered just with a very long delay ?

and you disabled clamd but it still running ?


Check a delivered mail, look at the headers, make sure clamd is really 
not running


anything suspicous in /var/log/clamd/clamd.log ?


qmHandle -s shows what ?


On 8/7/20 8:34 PM, Diego Piñon Conde wrote:
2 hs has passed and the local queue has 3530 msg (it was 3700 at some 
point). Beside clamd that it is still running and time to time take 
100% cpu usage (I don't understand why because qmailtoaster it's 
supoust that not use it anymore), cpu usage is normally below 20% and 
memory is the same. So why does it take so long to deliver local msg!


I'm in UTC -3, so probably all of you are snoring. I will keep working 
til qmailtoaster works normally, I hope when you wake up you can give 
me a hand.


I will really appreciate that. Thanks in advance!

El vie., 7 ago. 2020 a las 12:29, Philip Nix Guru (<mailto:phi...@ows.ch>>) escribió:


Hello

what you could start by doing is disabling

idle-timeout-secs=xx in /etc/spamdyke/spamdyke.conf

just comment the line

check in a few hours if your TIMEOUT drastically decreased

then you can adapt the idle-timeout delay


If not then, we can check other things


Cheers


On 8/7/20 4:40 PM, Diego Piñon Conde wrote:

Hi Philip
this is  the tail of /var/log/maillog

/Aug  7 11:31:01 pegasus spamdyke[2968]: TIMEOUT from:
sciottilili...@gmail.com <mailto:sciottilili...@gmail.com> to:
filibe...@tarjetacliper.com <mailto:filibe...@tarjetacliper.com>
origin_ip: 209.85.215.175 origin_rdns: mail-pg1-f175.google.com
<http://mail-pg1-f175.google.com> auth: (unknown) encryption: TLS
reason: TIMEOUT
Aug  7 11:31:03 pegasus spamdyke[2970]: TIMEOUT from:
nore...@messages.sonicwall.com
<mailto:nore...@messages.sonicwall.com> to:
pi...@tarjetacliper.com <mailto:pi...@tarjetacliper.com>
origin_ip: 209.167.231.144 origin_rdns:
mail01.messages.sonicwall.com
<http://mail01.messages.sonicwall.com> auth: (unknown)
encryption: TLS reason: TIMEOUT
Aug  7 11:31:03 pegasus spamdyke[2969]: TIMEOUT from:
v-cjcdika_pmnlhikcme_gmicmlkp_gmicmlk...@bounce.info.bancopatagonia.com.ar

<mailto:v-cjcdika_pmnlhikcme_gmicmlkp_gmicmlk...@bounce.info.bancopatagonia.com.ar>
to: scio...@tarjetacliper.com <mailto:scio...@tarjetacliper.com>
origin_ip: 192.156.219.80 origin_rdns:
mail7756.info.bancopatagonia.com.ar
<http://mail7756.info.bancopatagonia.com.ar> auth: (unknown)
encryption: TLS reason: TIMEOUT
Aug  7 11:31:06 pegasus spamdyke[2974]: TIMEOUT from:
bounce-10710_html-121882056-2177875-6399888-...@bounce.mail.bbva.com.ar

<mailto:bounce-10710_html-121882056-2177875-6399888-...@bounce.mail.bbva.com.ar>
to: bondo...@tarjetacliper.com
<mailto:bondo...@tarjetacliper.com> origin_ip: 13.111.6.12
origin_rdns: mta.mail.bbva.com.ar <http://mta.mail.bbva.com.ar>
auth: (unknown) encryption: TLS reason: TIMEOUT
Aug  7 11:31:24 pegasus vpopmail[3225]: vchkpw-submission:
(PLAIN) login success rose...@tarjetacliper.com:10.10.10.8
<mailto:rose...@tarjetacliper.com:10.10.10.8>
Aug  7 11:31:27 pegasus spamdyke[3004]: TIMEOUT from:
www...@xpressus.emsmtp.com <mailto:www...@xpressus.emsmtp.com>
to: crisgar...@tarjetacliper.com
<mailto:crisgar...@tarjetacliper.com> origin_ip: 91.211.241.9
origin_rdns: pmta41009.emsmtp.com <http://pmta41009.emsmtp.com>
auth: (unknown) encryption: TLS reason: TIMEOUT
Aug  7 11:31:32 pegasus spamdyke[3006]: TIMEOUT from:
sd...@meridionalseguros.com.ar
<mailto:sd...@meridionalseguros.com.ar> to:
segu...@tarjetacliper.com <mailto:segu...@tarjetacliper.com>
origin_ip: 40.107.76.91 origin_rdns:
mail-eopbgr760091.outbound.protection.outlook.com
<http://mail-eopbgr760091.outbound.protection.outlook.com> auth:
(unknown) encryption: TLS reason: TIMEOUT
Aug  7 11:31:34 pegasus spamdyke[3050]: TIMEOUT from:
antonel...@pseguros.com.ar <mailto:antonel...@pseguros.com.ar>
to: segu...@tarjetacliper.com <mailto:segu...@tarjetacliper.com>
origin_ip: 190.210.19.10 origin_rdns:
webmail.provinciaseguros.com
<http://webmail.provinciaseguros.com> auth: (unknown) encryption:
TLS reason: TIMEOUT
Aug  7 11:31:38 pegasus spamdyke[3074]: TIMEOUT from:
sebastian.sa...@osde.com.ar <mailto:sebastian.sa...@osde.com.ar>
to: rfernan...@tarjetacliper.com
<mailto:rfernan...@tarjetacliper.com> origin_ip: 209.85.210.45
origin_rdns: mail-ot1-f45.google.com
<http://mail-ot1-f45.google.com> auth: (unknown) encryption: TLS
reason: TIMEOUT
Aug  7 11:31:42 pegasus spamdyke[3158]: TIMEOUT from:
dpinmue...@mardelplata.gob.ar
<mailto:dpinmue...@m

Re: [qmailtoaster] local queue increasing /slow delivery / multiple copies of same email

[Philip Nix Guru]

Hello

what you could start by doing is disabling

idle-timeout-secs=xx in /etc/spamdyke/spamdyke.conf

just comment the line

check in a few hours if your TIMEOUT drastically decreased

then you can adapt the idle-timeout delay


If not then, we can check other things


Cheers


On 8/7/20 4:40 PM, Diego Piñon Conde wrote:

Hi Philip
this is  the tail of /var/log/maillog

/Aug  7 11:31:01 pegasus spamdyke[2968]: TIMEOUT from: 
sciottilili...@gmail.com <mailto:sciottilili...@gmail.com> to: 
filibe...@tarjetacliper.com <mailto:filibe...@tarjetacliper.com> 
origin_ip: 209.85.215.175 origin_rdns: mail-pg1-f175.google.com 
<http://mail-pg1-f175.google.com> auth: (unknown) encryption: TLS 
reason: TIMEOUT
Aug  7 11:31:03 pegasus spamdyke[2970]: TIMEOUT from: 
nore...@messages.sonicwall.com <mailto:nore...@messages.sonicwall.com> 
to: pi...@tarjetacliper.com <mailto:pi...@tarjetacliper.com> 
origin_ip: 209.167.231.144 origin_rdns: mail01.messages.sonicwall.com 
<http://mail01.messages.sonicwall.com> auth: (unknown) encryption: TLS 
reason: TIMEOUT
Aug  7 11:31:03 pegasus spamdyke[2969]: TIMEOUT from: 
v-cjcdika_pmnlhikcme_gmicmlkp_gmicmlk...@bounce.info.bancopatagonia.com.ar 
<mailto:v-cjcdika_pmnlhikcme_gmicmlkp_gmicmlk...@bounce.info.bancopatagonia.com.ar> 
to: scio...@tarjetacliper.com <mailto:scio...@tarjetacliper.com> 
origin_ip: 192.156.219.80 origin_rdns: 
mail7756.info.bancopatagonia.com.ar 
<http://mail7756.info.bancopatagonia.com.ar> auth: (unknown) 
encryption: TLS reason: TIMEOUT
Aug  7 11:31:06 pegasus spamdyke[2974]: TIMEOUT from: 
bounce-10710_html-121882056-2177875-6399888-...@bounce.mail.bbva.com.ar 
<mailto:bounce-10710_html-121882056-2177875-6399888-...@bounce.mail.bbva.com.ar> 
to: bondo...@tarjetacliper.com <mailto:bondo...@tarjetacliper.com> 
origin_ip: 13.111.6.12 origin_rdns: mta.mail.bbva.com.ar 
<http://mta.mail.bbva.com.ar> auth: (unknown) encryption: TLS reason: 
TIMEOUT
Aug  7 11:31:24 pegasus vpopmail[3225]: vchkpw-submission: (PLAIN) 
login success rose...@tarjetacliper.com:10.10.10.8
Aug  7 11:31:27 pegasus spamdyke[3004]: TIMEOUT from: 
www...@xpressus.emsmtp.com <mailto:www...@xpressus.emsmtp.com> to: 
crisgar...@tarjetacliper.com <mailto:crisgar...@tarjetacliper.com> 
origin_ip: 91.211.241.9 origin_rdns: pmta41009.emsmtp.com 
<http://pmta41009.emsmtp.com> auth: (unknown) encryption: TLS reason: 
TIMEOUT
Aug  7 11:31:32 pegasus spamdyke[3006]: TIMEOUT from: 
sd...@meridionalseguros.com.ar <mailto:sd...@meridionalseguros.com.ar> 
to: segu...@tarjetacliper.com <mailto:segu...@tarjetacliper.com> 
origin_ip: 40.107.76.91 origin_rdns: 
mail-eopbgr760091.outbound.protection.outlook.com 
<http://mail-eopbgr760091.outbound.protection.outlook.com> auth: 
(unknown) encryption: TLS reason: TIMEOUT
Aug  7 11:31:34 pegasus spamdyke[3050]: TIMEOUT from: 
antonel...@pseguros.com.ar <mailto:antonel...@pseguros.com.ar> to: 
segu...@tarjetacliper.com <mailto:segu...@tarjetacliper.com> 
origin_ip: 190.210.19.10 origin_rdns: webmail.provinciaseguros.com 
<http://webmail.provinciaseguros.com> auth: (unknown) encryption: TLS 
reason: TIMEOUT
Aug  7 11:31:38 pegasus spamdyke[3074]: TIMEOUT from: 
sebastian.sa...@osde.com.ar <mailto:sebastian.sa...@osde.com.ar> to: 
rfernan...@tarjetacliper.com <mailto:rfernan...@tarjetacliper.com> 
origin_ip: 209.85.210.45 origin_rdns: mail-ot1-f45.google.com 
<http://mail-ot1-f45.google.com> auth: (unknown) encryption: TLS 
reason: TIMEOUT
Aug  7 11:31:42 pegasus spamdyke[3158]: TIMEOUT from: 
dpinmue...@mardelplata.gob.ar <mailto:dpinmue...@mardelplata.gob.ar> 
to: diu...@tarjetacliper.com <mailto:diu...@tarjetacliper.com> 
origin_ip: 200.41.224.100 origin_rdns: mail.mardelplata.gov.ar 
<http://mail.mardelplata.gov.ar> auth: (unknown) encryption: (none) 
reason: TIMEOUT/


I've checked scan.conf and logverbose = yes


El vie., 7 ago. 2020 a las 11:27, Philip Nix Guru (<mailto:phi...@ows.ch>>) escribió:


Hello

can you check if you got any

 TIMEOUT in /var/log/maillog log file

since you did your update


Check also your scan.conf file

/etc/clamd.d/scan.conf

Enable Log (verbose) ,

LogVerbose yes



On 8/7/20 4:12 PM, Diego Piñon Conde wrote:

Hi all

I'm running qmail toaster on CentOS 7.

Because I had problems with freshclam (terrible slow db update),
yesterday I changed clamAV to Epel version.

I don't know if it's relevant, but after that local delivery was
too slow.

Local queue was increasing in size and every email received by
clients was received 5 or 6 times.

I thinked maybe clamd it's the culprit, so I've changed clamd=no
in simcontrol and did qmailctl cdb but nothing has changed.

My knowledge is limited and  I will appreciate any help

Re: [qmailtoaster] local queue increasing /slow delivery / multiple copies of same email

[Philip Nix Guru]

Hello

can you check if you got any

 TIMEOUT in /var/log/maillog log file

since you did your update


Check also your scan.conf file

/etc/clamd.d/scan.conf

Enable Log (verbose) ,

LogVerbose yes



On 8/7/20 4:12 PM, Diego Piñon Conde wrote:

Hi all

I'm running qmail toaster on CentOS 7.

Because I had problems with freshclam (terrible slow db update), 
yesterday I changed clamAV to Epel version.


I don't know if it's relevant, but after that local delivery was too slow.

Local queue was increasing in size and every email received by clients 
was received 5 or 6 times.


I thinked maybe clamd it's the culprit, so I've changed clamd=no in 
simcontrol and did qmailctl cdb but nothing has changed.


My knowledge is limited and  I will appreciate any help

Re: [qmailtoaster] Upgraded email to testing version, now only plain passwords accepted for authed smtp?

[Philip Nix Guru]

Hello

ok that's correct



On 8/6/20 10:09 PM, Eric Broch wrote:


Yes, the new SMTPS looks like this

#!/bin/sh
QMAILDUID=`id -u vpopmail`
NOFILESGID=`id -g vpopmail`
MAXSMTPD=`cat /var/qmail/control/concurrencyincoming`
SMTPD="/var/qmail/bin/qmail-smtpd"
TCP_CDB="/etc/tcprules.d/tcp.smtp.cdb"
HOSTNAME=`hostname`
VCHKPW="/home/vpopmail/bin/vchkpw"
export SMTPS=1
export FORCETLS=0
export SMTPAUTH="!+cram"

exec /usr/bin/softlimit -m 12800 \
    /usr/bin/tcpserver -v -R -H -l $HOSTNAME -x $TCP_CDB -c "$MAXSMTPD" \
    -u "$QMAILDUID" -g "$NOFILESGID" 0 465 \
    $SMTPD $VCHKPW /bin/true 2>&1



On 8/6/2020 1:50 PM, Philip Nix Guru wrote:


Hello

check your run file

for smtp and smtps


post it here


Regards

-P


On 8/6/20 9:33 PM, Boheme wrote:

In an attempt to resolve my duplicate email issues, I upgraded to the version 
of email in the testing repo. Now email can only be sent on 587 with plain 
passwords. Since I have everyone using TLS that’s still secure, but it’s 
causing a headache for existing non-technical users who’s settings suddenly 
don’t work.

Was this an expected change?
Is it reversible, or has the md5 challenge response been completely removed?

-Sent from my Pip-Boy 3000
-
To unsubscribe, e-mail:qmailtoaster-list-unsubscr...@qmailtoaster.com
For additional commands, e-mail:qmailtoaster-list-h...@qmailtoaster.com

Re: [qmailtoaster] Upgraded email to testing version, now only plain passwords accepted for authed smtp?

[Philip Nix Guru]

Hello

check your run file

for smtp and smtps


post it here


Regards

-P


On 8/6/20 9:33 PM, Boheme wrote:

In an attempt to resolve my duplicate email issues, I upgraded to the version 
of email in the testing repo. Now email can only be sent on 587 with plain 
passwords. Since I have everyone using TLS that’s still secure, but it’s 
causing a headache for existing non-technical users who’s settings suddenly 
don’t work.

Was this an expected change?
Is it reversible, or has the md5 challenge response been completely removed?

-Sent from my Pip-Boy 3000
-
To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com
For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com

Re: [qmailtoaster] simscan updates

[Philip Nix Guru]

Hello

Yes , I had that problem when rebooting, suddenly permission denied :) 
just got hot a second


good all was logged and error was identified

in my case my clamscan has an id of 994


Yes , for those upgrading , check the id BEFORE the next reboot


-Philip




On 8/3/20 5:51 PM, Remo Mattei wrote:
Hello if you are using the new claim script to convert the RPM, you 
will need to update the ID on the SIMSCAN RAMDISK now it says

mount -t tmpfs -o size=1024m,nodev,noexec,noatime,uid=46,gid=0,mode=0750

in  my case I had to change it to 990
so
mount -t tmpfs -o size=1024m,nodev,noexec,noatime,uid=990,gid=0,mode=0750

Remo

Re: [qmailtoaster] protect virus

[Philip Nix Guru]

I only saw 2 rules in the logs,

missed one so clamd was kinda starting and dying, which produced the 
multi qq soft reject



so I just added all the log options in scan.conf, restarted 
clamd@scan.service (reloading is not enough)


check status of daemon and I caught the last signature that was 
remaining .. it only showed after I cleaned the 2 first ones


Just a stupid mistake, went too quick in analyzing the logs


All seems fine now, script is bullet proof :)


the scan.conf had limited logging compared to the "old" clamav.conf toaster

I didnt check that at first ..


All good, I will run that on the other servers now ..

Thank you





On 6/24/20 2:48 AM, Eric Broch wrote:


What'd you do to mitigate?


On 6/23/2020 6:47 PM, Philip Nix Guru wrote:


Hello

ok it was 3 signatures that seem to be faulty with clamav 0.102.3

EMAIL_Cryptowall.yar

peid.yar

rfxn.yara


Seems ok now ..

added debuging in scan.conf to check if all is running good


Next time I will do that in the day, not at night :)


Cheers

-P



On 6/24/20 1:49 AM, Philip Nix Guru wrote:


Hello

something weird, I dont have any files scanned by simscan anymore

all attachements are qq soft reject


nothing logged anymore in /var/log/wmail

like  /var/qmail/simscan/15929 messages



On 6/24/20 1:04 AM, Eric Broch wrote:

A soft link is not okay?

# ls -l /var/run
lrwxrwxrwx. 1 root root 6 Aug  3  2015 /var/run -> ../run


-
To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com
For additional commands, e-mail: 
qmailtoaster-list-h...@qmailtoaster.com

Re: [qmailtoaster] protect virus

[Philip Nix Guru]

Hello

ok it was 3 signatures that seem to be faulty with clamav 0.102.3

EMAIL_Cryptowall.yar

peid.yar

rfxn.yara


Seems ok now ..

added debuging in scan.conf to check if all is running good


Next time I will do that in the day, not at night :)


Cheers

-P



On 6/24/20 1:49 AM, Philip Nix Guru wrote:


Hello

something weird, I dont have any files scanned by simscan anymore

all attachements are qq soft reject


nothing logged anymore in /var/log/wmail

like  /var/qmail/simscan/15929 messages



On 6/24/20 1:04 AM, Eric Broch wrote:

A soft link is not okay?

# ls -l /var/run
lrwxrwxrwx. 1 root root 6 Aug  3  2015 /var/run -> ../run


-
To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com
For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com

Re: [qmailtoaster] protect virus

[Philip Nix Guru]

Hello

something weird, I dont have any files scanned by simscan anymore

all attachements are qq soft reject


nothing logged anymore in /var/log/wmail

like  /var/qmail/simscan/15929 messages



On 6/24/20 1:04 AM, Eric Broch wrote:

A soft link is not okay?

# ls -l /var/run
lrwxrwxrwx. 1 root root 6 Aug  3  2015 /var/run -> ../run


-
To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com
For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com

Re: [qmailtoaster] protect virus

[Philip Nix Guru]

Hello

sure, that's fine, I used your script on a very busy production server, 
all went fine


I just had to make a little change for compatibility with some of my scripts


I d suggest one thing, in scan.conf


PidFile /run/clamd.scan/clamd.pid

LocalSocket /run/clamd.scan/clamd.sock


I did change that to /var/run/clamd.scan/clamd.pid|clamd.sock


I changed it to keep it compatible with


 extremeshok <https://github.com/extremeshok> / *clamav-unofficial-sigs
 <https://github.com/extremeshok/clamav-unofficial-sigs>*


Regards

-Philip


On 6/23/20 11:33 PM, Eric Broch wrote:


Philip,

Yes, I decided to go with EPEL ClamAV because I don't see a reason not 
to. It does the same thing with minor changes and someone else takes 
care of the RPMS. And, updates are faster.


Other than the name of the service only the below user/group changes 
take place.


chown clamscan:root /var/qmail/simscan
chown clamscan:root /var/qmail/bin/simscan
chown -R clamscan:clamscan /var/log/clamd
chown -R clamupdate:clamupdate /var/lib/clamav

The permissions do not change. I just put them in the script just to 
make sure after update.


The signature library after QMT clamav is removed has owner 46 group 
46 which is the deleted clamav user and group. Scanning works just 
fine like this however I wanted things clean and changed user and 
group to clamupdate for those signatures.


I have tested this on several production machines and all seems to 
work well. I'd like to know if problems occur. If they do one could 
revert; however, I don't foresee any issues.


Eric


On 6/23/2020 2:14 PM, Philip Nix Guru wrote:


Hello

so that's the new way to go for clamav ?

Script for upgrade looks simple, I am not too fond of changing user 
and ownership (thank you epel)


if you use extra scripts for un official sigs it can lead to some 
problems ..


Who tested the move to epel clamav tree ?


Regards



On 6/23/20 5:01 PM, Eric Broch wrote:


https://www.qmailtoaster.org/qttoepelclam.html

On 6/22/2020 11:39 PM, ChandranManikandan wrote:

Hi Folks,

I received below two virus notifications in my logwatch report. How 
do I protect from virus protection?
Eric: Any possible chances to update the latest clamav, have you 
upload the latest clamav epel.

Please assist me.

Some few spam emails with the same subject with different email 
addresses received everyday.

I have blocked on spamassassin and spamdyke. but still received.
Any further attacks happened.
I am running CSF & Fail2ban.
Anyone assist me.

 Viruses detected:

Email.Phishing.VOF1-6297424-0: 1 Time(s)

Heuristics.Phishing.Email.SpoofedDomain: 3 Time(s)

 Virus database reloaded 2 time(s) (last time with 7343939 viruses)


--
*/Regards,
Manikandan.C
/*

Re: [qmailtoaster] protect virus

[Philip Nix Guru]

Hello

so that's the new way to go for clamav ?

Script for upgrade looks simple, I am not too fond of changing user and 
ownership (thank you epel)


if you use extra scripts for un official sigs it can lead to some 
problems ..


Who tested the move to epel clamav tree ?


Regards



On 6/23/20 5:01 PM, Eric Broch wrote:


https://www.qmailtoaster.org/qttoepelclam.html

On 6/22/2020 11:39 PM, ChandranManikandan wrote:

Hi Folks,

I received below two virus notifications in my logwatch report. How 
do I protect from virus protection?
Eric: Any possible chances to update the latest clamav, have you 
upload the latest clamav epel.

Please assist me.

Some few spam emails with the same subject with different email 
addresses received everyday.

I have blocked on spamassassin and spamdyke. but still received.
Any further attacks happened.
I am running CSF & Fail2ban.
Anyone assist me.

 Viruses detected:

Email.Phishing.VOF1-6297424-0: 1 Time(s)

Heuristics.Phishing.Email.SpoofedDomain:   3 Time(s)

 Virus database reloaded 2 time(s) (last time with 7343939 viruses)


--
*/Regards,
Manikandan.C
/*

Re: [qmailtoaster] QMail Admin

[Philip Nix Guru]

Hello

nice work

a few things :

1.you used aclocal-1.15, centos7 is on 1.13 so before runing configure

just use this command : |touch --date="`date`"aclocal.m4 Makefile.am 
configure Makefile.in|


|2.you are checking libvpopmail libs and inc deps but you are checking 
here :|


| /home/vpopmail/etc/inc_deps & /home/vpopmail/etc/lib_deps|

|but on the latest version those files are in another location : 
/etc/libvpopmail/inc_deps & /etc/libvpopmail/inc_deps|


|a simple simlink will fix the issue|

|
|

|Then all will compile fine|

|
|

|Thx for the support|

|
|

|
|

On 5/4/20 3:58 PM, Roberto Puzzanghera wrote:

Il 04-05-2020 15:38 Gary Bowling ha scritto:

Nice, interested to learn if this might eventually be added to the
repo for general use or if we will have to download and custom build?


Of course yes. It's ready to use as is. Just replace the default qmail 
logo with yours. Also check if the patch is compatible with the other 
already installed patches, as I had to modify many .c sources due to 
the fact that a lot of html code was inside the source files itself. 
So be aware that, in order to preserve the look, not only the html and 
images folders should be moved.


regards
Roberto



thanks

On 5/4/2020 8:50 AM, Roberto Puzzanghera wrote:


Hi all,
during coronavirus spare time I've found the time to improve a bit
qmailadmin with a new responsive skin and also with the cracklib
patch, which checks the pwd strenght.

If useful feel free to download. Have a look here
https://notes.sagredo.eu/en/qmail-notes-185/qmailadmin-23.html

regards

 -
To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com
For additional commands, e-mail:
qmailtoaster-list-h...@qmailtoaster.com

Re: [qmailtoaster] AUTH suddenly stopped working

[Philip Nix Guru]

That "problem" was already introduced in january testing build

I ran into that issue, hopefully it was not on a production server :)



On 9/6/19 11:57 PM, Eric Broch wrote:


Interesting that another admin would upgrade the server from the 
testing repo w/o mentioning it. Damn the torpedoes full speed ahead...LOL


I'm not sure why the run script was not updated though, I'll have to 
look into that.


Thanks for helping debug, Charles!


On 9/6/2019 3:54 PM, Charles Hockenbarger wrote:
Crikeys, I'll have to double check with the other admin that she 
didn't do something without telling me, or we have a different 
serious problem.


That looks to have solved the AUTH issue, though.

Thank you for the quick and excellent help, Eric.  I only wish I had 
the knowledge level to be this helpful to the rest of the group.


On Fri, Sep 6, 2019 at 4:37 PM Eric Broch > wrote:


It looks like you did do an upgrade from the testing repo, not
sure how.

qmail-1.03-3.1.1 was just put out yesterday

replace

export REQUIRE_AUTH=1

with

export SMTPAUTH="!+cram"

stop and start qmail



On 9/6/2019 3:31 PM, Charles Hockenbarger wrote:

I did not do an upgrade, no.  I don't have automatic yum updates
configured for the server.

Sorry, should have thought to include this right off the bat.

[root@mail ~]# rpm -qa | grep qmail
qmailmrtg-4.2-3.qt.el7.x86_64
qmail-1.03-3.1.1.qt.el7.x86_64
qmailadmin-1.2.16-2.qt.el7.x86_64
[root@mail ~]#

#!/bin/sh
QMAILDUID=`id -u vpopmail`
NOFILESGID=`id -g vpopmail`
MAXSMTPD=`cat /var/qmail/control/concurrencyincoming`
SMTPD="/var/qmail/bin/qmail-smtpd"
TCP_CDB="/etc/tcprules.d/tcp.smtp.cdb"
HOSTNAME=`hostname`
VCHKPW="/home/vpopmail/bin/vchkpw"
export REQUIRE_AUTH=1

exec /usr/bin/softlimit -m 12800 \
    /usr/bin/tcpserver -v -R -H -l $HOSTNAME -x $TCP_CDB -c
"$MAXSMTPD" \
    -u "$QMAILDUID" -g "$NOFILESGID" 0 587 \
    $SMTPD $VCHKPW /bin/true 2>&1


On Fri, Sep 6, 2019 at 4:25 PM Eric Broch
mailto:ebr...@whitehorsetc.com>> wrote:

What version of qmail are you running?

# rpm -qa | grep qmail

# cat /var/qmail/supervise/submission/run

Send results

On 9/6/2019 3:17 PM, Eric Broch wrote:
> Have you upgraded?
>
> On 9/6/2019 2:26 PM, Charles Hockenbarger wrote:
>> I am hoping someone has had a similar situation or a
place to point
>> me as I'm at my wits end and have users unable to send
emails.
>>
>> I've had a toaster running for several years. This
particular system
>> has been running without issues for roughly 12 months
after migrating
>> from CentOS 6 to CentOS 7.
>>
>> I didn't make any changes yesterday, and email was
flowing perfectly.
>> This morning, we aren't able to authenticate, with
Outlook reporting
>> 'None of the authentication methods supported by this
client are
>> supported by your server'. Multiple Android clients are
reporting
>> similar errors. The firewall in front of the server and
iptables have
>> 587 open (again, no changes intentionally made in the
environment).
>> I can connect with openssl s_client -starttls smtp -crlf
-connect
>> :587. What is missing is the AUTH line and if I
try to
>> execute an AUTH, I get 503 auth not available (#5.5.3).
Selinux is
>> disabled.
>>
>> My /var/log/maillog stops reporting any vchkpw-submission
activity
>> around 0600 this morning. I've searched and not seen
where vchkpw
>> just stops doing anything.
>>
>> I'm investigating whether the server has been
compromised, but
>> nothing is showing so far, and this is a very odd
behavior to execute
>> if it were.
>>
>> Any thoughts?
>>
>> My users have been down since this morning, and I'm
flummoxed.
>>
>> Thank you!
>>
>> Chas
>
>
-
> To unsubscribe, e-mail:
qmailtoaster-list-unsubscr...@qmailtoaster.com

> For additional commands, e-mail:
qmailtoaster-list-h...@qmailtoaster.com

>

-
To unsubscribe, e-mail:
qmailtoaster-list-unsubscr...@qmailtoaster.com

For additional commands, e-mail:
qmailtoaster-list-h...@qmailtoaster.com

Re: [qmailtoaster] AUTH suddenly stopped working

[Philip Nix Guru]

The dev/testing versions got some new patches

regarding the auth you ll get all infos here :


* *SMTPAUTH**Meaning*
""Left blank to allow Authentication types "PLAIN" and "LOGIN"
"+cram"   Add "CRAM-MD5" support
"cram"Just (secure) "CRAM-MD5" support, no other types offered
"!"   Enforcing SMTP Auth (of type "LOGIN" or "PLAIN")
"!cram"   Enforcing SMTP Auth of type "CRAM-MD5"
"!+cram"  Enforcing SMTP Auth of type "LOGIN", "PLAIN", or "CRAM-MD5"
"-"   Disabling SMTP Auth (for a particular connection)

The complete patch info is listed here :
https://www.fehcom.de/qmail/smtpauth.html

Regards
-P

On 9/6/19 11:54 PM, Charles Hockenbarger wrote:
Crikeys, I'll have to double check with the other admin that she 
didn't do something without telling me, or we have a different serious 
problem.


That looks to have solved the AUTH issue, though.

Thank you for the quick and excellent help, Eric.  I only wish I had 
the knowledge level to be this helpful to the rest of the group.


On Fri, Sep 6, 2019 at 4:37 PM Eric Broch > wrote:


It looks like you did do an upgrade from the testing repo, not
sure how.

qmail-1.03-3.1.1 was just put out yesterday

replace

export REQUIRE_AUTH=1

with

export SMTPAUTH="!+cram"

stop and start qmail



On 9/6/2019 3:31 PM, Charles Hockenbarger wrote:

I did not do an upgrade, no.  I don't  have automatic yum updates
configured for the server.

Sorry, should have thought to include this right off the bat.

[root@mail ~]# rpm -qa | grep qmail
qmailmrtg-4.2-3.qt.el7.x86_64
qmail-1.03-3.1.1.qt.el7.x86_64
qmailadmin-1.2.16-2.qt.el7.x86_64
[root@mail ~]#

#!/bin/sh
QMAILDUID=`id -u vpopmail`
NOFILESGID=`id -g vpopmail`
MAXSMTPD=`cat /var/qmail/control/concurrencyincoming`
SMTPD="/var/qmail/bin/qmail-smtpd"
TCP_CDB="/etc/tcprules.d/tcp.smtp.cdb"
HOSTNAME=`hostname`
VCHKPW="/home/vpopmail/bin/vchkpw"
export REQUIRE_AUTH=1

exec /usr/bin/softlimit -m 12800 \
    /usr/bin/tcpserver -v -R -H -l $HOSTNAME -x $TCP_CDB -c
"$MAXSMTPD" \
    -u "$QMAILDUID" -g "$NOFILESGID" 0 587 \
    $SMTPD $VCHKPW /bin/true 2>&1


On Fri, Sep 6, 2019 at 4:25 PM Eric Broch
mailto:ebr...@whitehorsetc.com>> wrote:

What version of qmail are you running?

# rpm -qa | grep qmail

# cat /var/qmail/supervise/submission/run

Send results

On 9/6/2019 3:17 PM, Eric Broch wrote:
> Have you upgraded?
>
> On 9/6/2019 2:26 PM, Charles Hockenbarger wrote:
>> I am hoping someone has had a similar situation or a
place to point
>> me as I'm at my wits end and have users unable to send emails.
>>
>> I've had a toaster running for several years. This
particular system
>> has been running without issues for roughly 12 months
after migrating
>> from CentOS 6 to CentOS 7.
>>
>> I didn't make any changes yesterday, and email was flowing
perfectly.
>> This morning, we aren't able to authenticate, with Outlook
reporting
>> 'None of the authentication methods supported by this
client are
>> supported by your server'. Multiple Android clients are
reporting
>> similar errors. The firewall in front of the server and
iptables have
>> 587 open (again, no changes intentionally made in the
environment).
>> I can connect with openssl s_client -starttls smtp -crlf
-connect
>> :587. What is missing is the AUTH line and if I
try to
>> execute an AUTH, I get 503 auth not available (#5.5.3).
Selinux is
>> disabled.
>>
>> My /var/log/maillog stops reporting any vchkpw-submission
activity
>> around 0600 this morning. I've searched and not seen where
vchkpw
>> just stops doing anything.
>>
>> I'm investigating whether the server has been compromised,
but
>> nothing is showing so far, and this is a very odd behavior
to execute
>> if it were.
>>
>> Any thoughts?
>>
>> My users have been down since this morning, and I'm flummoxed.
>>
>> Thank you!
>>
>> Chas
>
>
-
> To unsubscribe, e-mail:
qmailtoaster-list-unsubscr...@qmailtoaster.com

> For additional commands, e-mail:
qmailtoaster-list-h...@qmailtoaster.com

>

-
To unsubscribe, e-mail:

Re: [qmailtoaster] qmailadmin customize

[Philip Nix Guru]

Hello

very nice

What you should maybe add, is the password check complexity and not 
allow an easy password when you create or modify an account


but it is a really nice job you did

it d be a great asset for qmailtoaster

Regards

-Philip


On 2/8/19 5:58 PM, r...@mattei.org wrote:

I like it personally

Let me know I would love to install it

+1

Remo

Il giorno 8 feb 2019, alle ore 16:28, Tahnan Al Anas > ha scritto:



Dear Sir,

Please have a look on my current qmailamdin

mail.citechco.net/cgi-bin/qmailadmin 


username postmaster
domain qmailtoaster.com 
password: Q08JpJpC


--
--

Best Regards
Muhammad Tahnan Al Anas


On Fri, Feb 8, 2019 at 8:02 PM Eric Broch > wrote:


Send it over and I'll have look.

On 2/7/2019 10:55 PM, Tahnan Al Anas wrote:

Hi Eric,

I have qmailadmin package which is modified with good looking
html css and can login to squireemail directly. Would you allow
it to integrate with qmailtoaster? I am willing to share the
pacakge for all. Also this qmailadmin package is currently live
on many of my old servers


--
--

Best Regards
Muhammad Tahnan Al Anas


-- 
Eric Broch

White Horse Technical Consulting (WHTC)



-
To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com
For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com

Re: [qmailtoaster] Development version

[Philip Nix Guru]

Hello Andy

it is indeed a parameter you set in the env variable in the run file (in 
my case I set it up in the submission run file)


cat /var/qmail/supervise/submission/run
#!/bin/sh
QMAILDUID=`id -u vpopmail`
NOFILESGID=`id -g vpopmail`
MAXSMTPD=`cat /var/qmail/control/concurrencyincoming`
SMTPD="/var/qmail/bin/qmail-smtpd"
TCP_CDB="/etc/tcprules.d/tcp.smtp.cdb"
HOSTNAME=`hostname`
VCHKPW="/home/vpopmail/bin/vchkpw"
export SMTPAUTH="!+cram" <<<<<<<<<--

exec /usr/bin/softlimit -m 12800 \
    /usr/bin/tcpserver -v -R -H -l $HOSTNAME -x $TCP_CDB -c "$MAXSMTPD" \
    -u "$QMAILDUID" -g "$NOFILESGID" 0 587 \
    $SMTPD $VCHKPW /bin/true 2>&1

The current _qmail-authentication_ patch allows you to use the 
environment variable SMTPAUTH for *qmail-smtpd* in the following way:


SMTPAUTH settings for *qmail-smtpd



* *SMTPAUTH**Meaning*
""Left blank to allow Authentication types "PLAIN" and "LOGIN"
"+cram"   Add "CRAM-MD5" support
"cram"Just (secure) "CRAM-MD5" support, no other types offered
"!"   Enforcing SMTP Auth (of type "LOGIN" or "PLAIN")
"!cram"   Enforcing SMTP Auth of type "CRAM-MD5"
"!+cram"  Enforcing SMTP Auth of type "LOGIN", "PLAIN", or "CRAM-MD5"
"-"   Disabling SMTP Auth (for a particular connection)

The complete patch info is listed here :
https://www.fehcom.de/qmail/smtpauth.html


Regards
-P


On 1/26/19 8:06 PM, Andrew Swartz wrote:
My guess is that there must be a difference in the patches applied to 
qmail-smtpd or a different compile time option.  I don't think this is 
a simple setting (like in qmail/control).


When the connection comes in, tcpserver forwards it to qmail-smtpd.  
If STARTTLS is invoked, qmail-smtpd hands that task off to openssl, 
which then returns the decrypted plaintext.  But the password 
processing, whether plain, login, or encrypted, is likely handled 
directly by qmail-smtpd.


Is anyone out there familiar enough with the source code to confirm or 
refute this?


If it is a compile option, it should be fixable with mild to moderate 
effort.  If it is a patch change, that seems more difficult (at least 
with my skill level).


If you figure this out, please let us know, as others will likely be 
making the migration in the future.



-Andy



On 1/25/2019 1:21 AM, Philip Nix Guru wrote:
I tested with Thunderbird (where the account was working fine with 
stable version and encrypted password on starttls)


and the message came up after the upgrade to change to normal password.

When lamba users will get that message they ll just panic and wont 
know what to do.



I still need to check how outlook will react ...


On 1/25/19 10:52 AM, Tommi Järvilehto wrote:
Was there a problem with Outlook and encrypted passwords? Or the 
password cache?


On 25.1.2019 11:43, Philip Nix Guru wrote:

Hello

Yes that's one of the reason I was wondering why encrypted password 
was no longer supported for STARTTLS in the lastest dev version


Regards

-P

On 1/25/19 8:56 AM, Andrew Swartz wrote:

I would add the caveat that STARTTLS is only "probably safe".

Unfortunately, it suffers from a critical error in the very 
concept of going from an plaintext session to a TLS session, 
resulting in an unfixable (as far as I know) vulnerability.  A 
man-in-the-middle can inject text into the server response to tell 
the client that STARTTLS is not available and that the 
conversation should therefore continue in plaintext.  I've read 
that several ISP's have been caught using this vulnerability to 
scan people's outgoing email. That means PLAIN or LOGIN type 
submission passwords can be seen.


This is why the 2018 RFC (https://tools.ietf.org/html/rfc8314) has 
strongly recommended abandoning STARTTLS on port 587 and using 
dedicated TLS on port 465 for mail submission.


-Andy





On 1/24/2019 9:30 PM, Eric Broch wrote:
The password is not encrypted (Normal) but is sent over an 
encrypted connection, it's safe.


On 1/24/2019 5:39 PM, Philip Nix Guru wrote:

Hello

I was testing the dev version (an upgrade over the stable 
version) and came through that annoying problem


if I have to advise all users to change their config :


Sending of the message failed.
The Outgoing server (SMTP) xx does not seem to support 
encrypted passwords. If you just set up the account, try 
changing the 'Authentication method' in 'Account settings | 
Outgoing server (SMTP)' to 'Normal password'.


All the users having a starttls config in their mail client had 
to change from encrypted to normal


which of course brought the question "oh it is not safe anymore 
..."



Regards

-Philip





-

Re: [qmailtoaster] Development version

[Philip Nix Guru]

I tested with Thunderbird (where the account was working fine with 
stable version and encrypted password on starttls)


and the message came up after the upgrade to change to normal password.

When lamba users will get that message they ll just panic and wont know 
what to do.



I still need to check how outlook will react ...


On 1/25/19 10:52 AM, Tommi Järvilehto wrote:
Was there a problem with Outlook and encrypted passwords? Or the 
password cache?


On 25.1.2019 11:43, Philip Nix Guru wrote:

Hello

Yes that's one of the reason I was wondering why encrypted password 
was no longer supported for STARTTLS in the lastest dev version


Regards

-P

On 1/25/19 8:56 AM, Andrew Swartz wrote:

I would add the caveat that STARTTLS is only "probably safe".

Unfortunately, it suffers from a critical error in the very concept 
of going from an plaintext session to a TLS session, resulting in an 
unfixable (as far as I know) vulnerability.  A man-in-the-middle can 
inject text into the server response to tell the client that 
STARTTLS is not available and that the conversation should therefore 
continue in plaintext.  I've read that several ISP's have been 
caught using this vulnerability to scan people's outgoing email.  
That means PLAIN or LOGIN type submission passwords can be seen.


This is why the 2018 RFC (https://tools.ietf.org/html/rfc8314) has 
strongly recommended abandoning STARTTLS on port 587 and using 
dedicated TLS on port 465 for mail submission.


-Andy





On 1/24/2019 9:30 PM, Eric Broch wrote:
The password is not encrypted (Normal) but is sent over an 
encrypted connection, it's safe.


On 1/24/2019 5:39 PM, Philip Nix Guru wrote:

Hello

I was testing the dev version (an upgrade over the stable version) 
and came through that annoying problem


if I have to advise all users to change their config :


Sending of the message failed.
The Outgoing server (SMTP) xx does not seem to support 
encrypted passwords. If you just set up the account, try changing 
the 'Authentication method' in 'Account settings | Outgoing server 
(SMTP)' to 'Normal password'.


All the users having a starttls config in their mail client had to 
change from encrypted to normal


which of course brought the question "oh it is not safe anymore ..."


Regards

-Philip





-
To unsubscribe, e-mail: 
qmailtoaster-list-unsubscr...@qmailtoaster.com
For additional commands, e-mail: 
qmailtoaster-list-h...@qmailtoaster.com




-
To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com
For additional commands, e-mail: 
qmailtoaster-list-h...@qmailtoaster.com




-
To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com
For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com





-
To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com
For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com

Re: [qmailtoaster] Development version

[Philip Nix Guru]

Hello

Yes that's one of the reason I was wondering why encrypted password was 
no longer supported for STARTTLS in the lastest dev version


Regards

-P

On 1/25/19 8:56 AM, Andrew Swartz wrote:

I would add the caveat that STARTTLS is only "probably safe".

Unfortunately, it suffers from a critical error in the very concept of 
going from an plaintext session to a TLS session, resulting in an 
unfixable (as far as I know) vulnerability.  A man-in-the-middle can 
inject text into the server response to tell the client that STARTTLS 
is not available and that the conversation should therefore continue 
in plaintext.  I've read that several ISP's have been caught using 
this vulnerability to scan people's outgoing email.  That means PLAIN 
or LOGIN type submission passwords can be seen.


This is why the 2018 RFC (https://tools.ietf.org/html/rfc8314) has 
strongly recommended abandoning STARTTLS on port 587 and using 
dedicated TLS on port 465 for mail submission.


-Andy





On 1/24/2019 9:30 PM, Eric Broch wrote:
The password is not encrypted (Normal) but is sent over an encrypted 
connection, it's safe.


On 1/24/2019 5:39 PM, Philip Nix Guru wrote:

Hello

I was testing the dev version (an upgrade over the stable version) 
and came through that annoying problem


if I have to advise all users to change their config :


Sending of the message failed.
The Outgoing server (SMTP) xx does not seem to support encrypted 
passwords. If you just set up the account, try changing the 
'Authentication method' in 'Account settings | Outgoing server 
(SMTP)' to 'Normal password'.


All the users having a starttls config in their mail client had to 
change from encrypted to normal


which of course brought the question "oh it is not safe anymore ..."


Regards

-Philip





-
To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com
For additional commands, e-mail: 
qmailtoaster-list-h...@qmailtoaster.com




-
To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com
For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com



-
To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com
For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com

[qmailtoaster] Development version

[Philip Nix Guru]

Hello

I was testing the dev version (an upgrade over the stable version) and 
came through that annoying problem


if I have to advise all users to change their config :


Sending of the message failed.
The Outgoing server (SMTP) xx does not seem to support encrypted 
passwords. If you just set up the account, try changing the 
'Authentication method' in 'Account settings | Outgoing server (SMTP)' 
to 'Normal password'.


All the users having a starttls config in their mail client had to 
change from encrypted to normal


which of course brought the question "oh it is not safe anymore ..."


Regards

-Philip





-
To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com
For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com

Re: [qmailtoaster] Upgrade qmailtoaster to Centos 7

[Philip Nix Guru]

Hello

I did use the convert script

courier-dovecot-migrate.pl

# ./courier-dovecot-migrate.pl -help
Usage: maildir-migrate [options] 

Options:
--convert   Perform conversion
--quiet Silence output
--overwrite Overwrite existing files
--recursive Recursively look through maildir for subaccounts
--to-dovecotConversion is from Courier to Dovecot
--to-courierConversion is from Dovecot to Courier


On 04/07/2017 05:15 PM, Eric Broch wrote:
I don't believe any conversion is necessary. You may just have to 
resubscribe to the folders.



On 4/7/2017 9:09 AM, Rvaught wrote:
I am in a similar situation. I am running on a Centos 5 with Courier 
and would like to move to a Centos 7 setup with Dovecot. I have a mix 
of pop and imap clients.
What would be the best way to convert the mailboxes to Dovecot after 
I copy them to the new machine?

Thanks,
Rick

-Original Message-
From: Sean Murphy [mailto:sean.mur...@mobilcom.net]
Sent: Friday, April 07, 2017 10:59 AM
To: qmailtoaster-list@qmailtoaster.com
Subject: Re: [qmailtoaster] Upgrade qmailtoaster to CentOS 7

Eric,

That list looks good, except:

/etc/spamassassin should be /etc/mail/spamassassin, unless it's 
different on CentOS7.


I'm unsure as to the MariaDB admin password on the current machine as 
my predecessor set it up.


I will poke around my docs and see if I can find anything.  And, I 
didn't realize rsync was not in default install in minimal. Weird.


Thanks again, Eric, this is very helpful.  Everybody here is the best.

-Sean

On 4/7/2017 10:44 AM, Eric Broch wrote:

Hi Sean,

Off the top of my head I do the following:

On the QMT/COS7 Install make the MariaDB admin password the same as on
your old machine.

1) Install rsync on both machines

2) Make ssh work without password

# How to make the below rsync ssh command work without a password #
exec ssh-agent bash # ssh-keygen # ssh-copy-id 'new server ip'
# ssh 'new server ip'

3) I rsync the CONTENTS of the following folders, old server to new

/var/lib/squirrelmail/prefs
/usr/share/spamassassin
/etc/spamassassin
/etc/tcprules.d
/var/qmail/control
/var/qmail/users
/home/vpopmail/domains

  rsync  --progress --delete -var -e  ssh ${folder}/
$REMOTEUSER@$REMOTEHOST:${folder}

4) Dump vpopmail mysql database on old server and restore on new.

At this point you should be able to connect to the new server from
mail clients.

5)  Secure qmailadmin and vqadmin /etc/httpd/conf/toaster.conf for
CentOS 7 ( http://www.qmailtoaster.com/notes.html)

Hope I'm not forgetting anything.


Eric






On 4/7/2017 7:10 AM, Sean Murphy wrote:

Good day all,

I've finally acquired a "new" machine to house our current install of
the toaster, installed CentOS 7 and ran all available updates, and
rounded up the preparatory files for the install. I will most likely
install qmailtoaster and take it on a test drive before migrating our
current install to the new box.  I would like to inquire on the best
way to do this, since the current install is on a CentOS 5 box and we
are running Courier instead of Dovecot. Should I restore from a
backup, or should I recreate the domain on the new box?  I'm in no
hurry, the current install is performing like a champ, and I have a
backup machine in place should something go awry before the new
machine is ready.  Any advice or horror stories would be greatly
appreciated.

Thanks!

-Sean


-
To unsubscribe, e-mail:
qmailtoaster-list-unsubscr...@qmailtoaster.com
For additional commands, e-mail:
qmailtoaster-list-h...@qmailtoaster.com



-
To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com
For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com





-
To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com
For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com






-
To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com
For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com

Re: [qmailtoaster] How to upgrade Clamav 0.99

[Philip Nix Guru]

Hello
I found the issue, it kinda depends on the version of the OS
--nomd5 was enough to installl

Got still a  few legacy toasters :)

On 12/03/2015 04:35 PM, Eric wrote:

Phillip,

And for unpacking the source itself...

[ebroch@mail2 ~]$  tar -zxvf rpmbuild/SOURCES/clamav-0.99.tar.gz -C ./

[ebroch@mail2 ~]$ ls -l
total 4
drwxrwxr-x 26 ebroch ebroch 4096 Nov 25 09:54 clamav-0.99
drwxr-xr-x  5 ebroch ebroch   36 Aug  3 16:33 Maildir
drwxr-xr-x  4 ebroch ebroch   32 Dec  3 08:15 rpmbuild


Eric

On 12/3/2015 8:19 AM, Eric wrote:

Phillip,

Hmmm.

Here's my src file on my CentOS 7 server:

[ebroch@mail2 ~]$ rpm -Uvh 
ftp://ftp.whitehorsetc.com/pub/repo/qmt/CentOS/7/testing/SRPMS/clamav-0.99-0.qt.src.rpm
Retrieving 
ftp://ftp.whitehorsetc.com/pub/repo/qmt/CentOS/7/testing/SRPMS/clamav-0.99-0.qt.src.rpm

Updating / installing...
   1:clamav-0.99-0.qt # [100%]

[ebroch@mail2 ~]$ ls -l
total 0
drwxr-xr-x 5 ebroch ebroch 36 Aug  3 16:33 Maildir
drwxr-xr-x 4 ebroch ebroch 32 Dec  3 08:15 rpmbuild

[ebroch@mail2 ~]$ ls -l rpmbuild/*
rpmbuild/SOURCES:
total 15608
-rw-r--r-- 1 ebroch ebroch 15968038 Dec  1 11:15 clamav-0.99.tar.gz
-rw-rw-r-- 1 ebroch ebroch 2682 Nov 21  2014 
clamav-0.9x-qmailtoaster.patch

-rw-rw-r-- 1 ebroch ebroch 1398 Jan 28  2015 clamd.init
-rw-rw-r-- 1 ebroch ebroch 1469 Nov 21  2014 freshclam.init

rpmbuild/SPECS:
total 24
-rw-rw-r-- 1 ebroch ebroch 22017 Dec  2 09:25 clamav.spec


It unpacked fine as you can see above. On what machine did you unpack 
the source file?


Eric

On 12/3/2015 7:29 AM, Philip wrote:

Hello Eri
there is a problem with your src file
error: unpacking of archive failed on file
/usr/src/redhat/SOURCES/clamav-0.99.tar.gz;566051b7: cpio: MD5 sum 
mismatch


On 12/03/2015 03:01 PM, Eric wrote:

And on CentOS 7

rpm -Uvh
ftp://ftp.whitehorsetc.com/pub/repo/qmt/CentOS/7/testing/x86_64/clamav-0.99-0.qt.el7.x86_64.rpm 



or

# yum --enablerepo=whtc-qmt-testing update

if you have White Horse repo enable in your yum configuration.


On 12/3/2015 6:56 AM, Eric wrote:

rpm -Uvh
ftp://ftp.whitehorsetc.com/pub/repo/qmt/CentOS/6/testing/x86_64/clamav-0.99-0.qt.el6.x86_64.rpm 



or

# yum --enablerepo=whtc-qmt-testing update

If you have White Horse repos in your yum configuration.



On 12/3/2015 2:16 AM, NoriyukiHayashi wrote:

Hi,

U can download clamav-0.99.tar.gz.
Then
rpm -ivh clamav-0.98.7.qt.srm.
Change spec file.
ftp upload clamav-0.99.tar.gz
Then
rpmbiuld -ba --target x86_64 --define 'qt' clamav.spec

U can make clamav-0.99.qt srpm

If u can not do that.
I will do that end of this week and upload web server that u can 
download by the way.

My target is centos 6.6.

regards,




Dear Friends,

My server having warning messages Clamav is outdated need to 
update from

0.98.7 to 0.99

Could anyone help me .
My server is Centos 6.5 64 bit


--
*Thanks,*
*Manikandan.C*
*System Administrator*



--
NoriyukiHayashi ibisMailで送信！

- 

To unsubscribe, e-mail: 
qmailtoaster-list-unsubscr...@qmailtoaster.com
For additional commands, e-mail: 
qmailtoaster-list-h...@qmailtoaster.com



-
To unsubscribe, e-mail: 
qmailtoaster-list-unsubscr...@qmailtoaster.com
For additional commands, e-mail: 
qmailtoaster-list-h...@qmailtoaster.com



-
To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com
For additional commands, e-mail: 
qmailtoaster-list-h...@qmailtoaster.com






-
To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com
For additional commands, e-mail: 
qmailtoaster-list-h...@qmailtoaster.com





-
To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com
For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com




-
To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com
For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com

Re: [qmailtoaster] wiki

[Philip Nix Guru]

Hello
Are you using the sendmail-whois action ?
if so check your process you probably have a hanging 100% whois process 
running

known fail2ban bug

-P

On 05/07/2014 05:50 PM, Dave M wrote:

Hi CJ
As I have just finished the install, I will monitor it and see if it 
needs to be restarted at any time.

Dave M
*From:* cj yother mailto:c...@yother.com
*Sent:* Wednesday, May 07, 2014 9:41 AM
*To:* qmailtoaster-list@qmailtoaster.com 
mailto:qmailtoaster-list@qmailtoaster.com

*Subject:* Re: [qmailtoaster] wiki
Just thought I'd mention this.  It seems appropriate.  I've had to 
restart my Fail2Ban daily.  For some reason (which I have not 
investigated yet) it stop banning.  Has anyone else experienced this?



On 05/07/2014 08:33 AM, Dave M wrote:

Figured it out
Check it out here:
http://wiki.qmailtoaster.com/index.php/Fail2ban_Centos6
Dave M
*From:* Dave M mailto:sysad...@tricubemedia.com
*Sent:* Wednesday, May 07, 2014 9:09 AM
*To:* qmailtoaster-list@qmailtoaster.com 
mailto:qmailtoaster-list@qmailtoaster.com

*Subject:* [qmailtoaster] wiki
Hi all
I have now setup fail2ban on our Centos6 qmailtoaster ( currently 
with 7 Jails qmail-iptables, squirrelmail-iptables, fail2ban, 
ssh-iptables, dos-hosts, password-fail, username-notfound)

Can some one please remind me how I can add it to the wiki
Thanks
Dave M


--

Re: [qmailtoaster] QMT on COS6 Officially Released!

[Philip Nix Guru]

Evening
What's the best method nowadays to do a fresh install ?
the old install shell scripts or something is added now in qtp ?

Thx Eric for the great work,
I ve been running qmaitoaster servers for several years now
since the early days I d say :)

-P






-Original Message- From: Eric Shubert
Sent: Monday, April 21, 2014 4:58 PM
To: qmailtoaster-list@qmailtoaster.com
Subject: [qmailtoaster] QMT on COS6 Officially Released!

The packages for QMT have been promoted to the /current/ branch in the 
repo.


If you installed packages from the /testing/ branch, you do not need to
update from the /current/ branch. You may want to disable the /testing/
repo in the appropriate /etc/yum.repos.d/*.repo files if you enabled 
them.


Then again, you might want to keep them enabled. There are already a few
updates in /testing/ related to the upcoming changes for logging, which
are going to be significant. We will be implementing an ELK
(ElasticSearch, Logstash, Kibana) stack for log analysis. This will
bring all of the logs under one umbrella and provide some very neat
analysis capabilities.

If you have any problems with anything, as always, bring them up here.
Making changes to packages is now highly automated, and I expect that
we'll be seeing much more frequent releases of packages as things are
changed and fixed.

Documentation is still a bit behind. If anyone would like to get some
experience with github's wiki, let me know and we can apply some
teamwork on getting that going. What we do with that presently has wide
open possibilities.

Thanks to all the testers and trail blazers who helped make this release
possible. You know who you are, and your help is greatly appreciated.

Re: [qmailtoaster] Re: How to use qmail toaster as a Mail Filter Layer

[Philip Nix Guru]

On 03/11/2013 04:37 PM, Eric Shubert wrote:

On 03/11/2013 05:12 AM, Dan McAllister wrote:

PS: A more interesting question I'm working on -- I want to make QMT a
SPAM filter -- only I want the NON-SPAM to be forwarded to the real
server (Exchange), while the SPAM is held back (users can access SPAM
messages via web-mail or a separate IMAP login).


It makes sense to me to do this in the delivery phase. You could 
probably do this with maildrop, but as maildrop will be replaced by 
dovecot's LDA in the future, I'd give it a go with dovecot's LDA 
(http://wiki2.dovecot.org/LDA).



I would simply use smtproutes
+ filter on the clients mail client (obviously outlook in your case) 
based on the tagged subject

Re: [qmailtoaster] Re: vpopmail-5.4.33, qmailadmin-1.2.16, vqadmin-2.3.7 upgrades

[Philip Nix Guru]

On 08/06/2012 06:29 PM, Eric Shubert wrote:

On 08/06/2012 06:07 AM, Dan McAllister wrote:

On 8/6/2012 4:30 AM, Philip wrote:


On 8/6/2012 12:10 AM, Eric Shubert wrote:

On 08/05/2012 02:52 PM, Philip Nix Guru wrote:


On 08/05/2012 09:55 PM, Eric Shubert wrote:

The subject software upgrades for QMT are now available. These long
awaited upgrades are seriously overdue, as QMT has been using the 
same

version of vpopmail since I built my first QMT over 6 years ago.

I'm happy to say that this brings QMT up to date with all of the
upstream software (TTBOMK - someone please notify if something newer
is out there), and completes work on v1.4.x until such time as 
another

upstream update becomes available. If I'm lucky, QMT v1.5.0 (CentOS
6.x compatibility) will be available before then.

The recommended upgrade procedure is as follows:
# yum update qmailtoaster-plus
# qtp-newmodel

If you're running the QTP version of dovecot:
# yum update dovecot

If you're running spamdyke (you should be if you're not):
# qtp-install-spamdyke
# service qmail restart


If you choose to do things the hard way (manually), here are some
notes off the top of my head.

In addition to the 3 vpopmail related packages, the following 
packages

should be rebuilt and reinstalled (qtp-newmodel will do this
automatically):
qmail-toaster
courier-authlib-toaster
courier-imap-toaster

If you're running a dovecot version that you built yourself, you
should rebuild and reinstall this as well after installing vpopmail.

There are vpopmail database changes required by vpopmail-5.4.18+. 
You

should run the qtp-convert script which will do them for you
(qtp-newmodel does this as well).


TTBOMK, all problems with vqadmin have been fixed. If you have a
problem with it, let us know and we'll see if it can't be fixed.
Likewise with vpopmail and quotas. There might be some database 
fixing
that needs to be done to put things in sync for you, but we can 
cross

those bridges as they come.

As always, if you have any problems with this, please post here.

Thanks to everyone who's helped along the way with this, especially
our own Bharath, and Matt at inter7 (the present vpopmail 
maintainer).



That's great
usually I do compile all manually or even mod a bit the spec files
but for once I just started the qtp-newmodel
was for updating a normal not modified qmt

Well I guess I ll have to do it manually :)
.
qtp-build-rpms v0.3.5
qtp-remove-pkgs v0.3.1
REMOVED control-panel-toaster from sandbox (not for real)
Building daemontools-toaster-0.76-1.3.6 ...
Installing daemontools-toaster-0.76-1.3.6 in the sandbox ...
qtp-build-rpms - binary rpm not found for
daemontools-toaster-0.76-1.3.6
qtp-build-rpms - Script Error - aborting.

Build failed, Exiting.

Wrote:
/root/src/rpm/RPMS/x86_64/daemontools-toaster-0.76-1.3.6.x86_64.rpm
Executing(%clean): /bin/sh -e /var/tmp/rpm-tmp.97447
+ umask 022
+ cd /root/src/rpm/BUILD
+ cd daemontools-0.76
+ '[' -n /var/tmp/daemontools-toaster-0.76 -a
/var/tmp/daemontools-toaster-0.76 '!=' / ']'
+ rm -rf /var/tmp/daemontools-toaster-0.76
+ '[' -d /root/src/rpm/BUILD/daemontools-0.76 ']'
+ rm -rf /root/src/rpm/BUILD/daemontools-0.76
+ exit 0
Executing(--clean): /bin/sh -e /var/tmp/rpm-tmp.97447
+ umask 022
+ cd /root/src/rpm/BUILD
+ rm -rf daemontools-0.76
+ exit 0
Installing daemontools-toaster-0.76-1.3.6 in the sandbox ...


Conclusion
Then script is not handling .rpmmacros env variables
that's a fault in my opinion



Any idea why it put the rpm in /root/src/ instead of /usr/src/?
That's appears to me to be the problem.

What does
# qtp-whatami
show?

It shouldn't be tough to fix this, even though your setup isn't
apparently typical.




Hey :)
sure I know heheh, I am always using .rpmmacros to define where I want
my rpms
I am building rpms for different projects and I want mine in my
homedir not in the usual /usr/src
before I validate them for release.
It is is a typical way to define by user where to store .
But no worry I can disable it when using qtp-newmodel, just passing
the infos for those who may get that error

Thx for your great work


Just an FYI -- that is the DEFAULT behavior of rpmbuild in RHEL/COS 6!
The normal build location becomes /root/rpmbuild/*

Dan

--



That did ring a bell after I sent the reply. Thanks for the 
confirmation, Dan. I need to modify qtp-whatami for this.


Philip, you can change qtp-whatami to set BUILD_DIR to whatever your 
preference is.


Since I have to change qtp-whatami anyhow for COS6, if you post the 
format of your .rpmmacros (hidden file in /root/ I'm presuming, yes?) 
I can have qtp-whatami check for this, and set the variable accordingly.


Thanks.



Hello Eric


yes .rpmmacros is in the root of the user's dir

# cat .rpmmacros
%_topdir /root/src/rpm

# ls /root/src/rpm/
BUILD  RPMS  SOURCES  SPECS  SRPMS

Re: [qmailtoaster] vpopmail-5.4.33, qmailadmin-1.2.16, vqadmin-2.3.7 upgrades

[Philip Nix Guru]

On 08/05/2012 09:55 PM, Eric Shubert wrote:
The subject software upgrades for QMT are now available. These long 
awaited upgrades are seriously overdue, as QMT has been using the same 
version of vpopmail since I built my first QMT over 6 years ago.


I'm happy to say that this brings QMT up to date with all of the 
upstream software (TTBOMK - someone please notify if something newer 
is out there), and completes work on v1.4.x until such time as another 
upstream update becomes available. If I'm lucky, QMT v1.5.0 (CentOS 
6.x compatibility) will be available before then.


The recommended upgrade procedure is as follows:
# yum update qmailtoaster-plus
# qtp-newmodel

If you're running the QTP version of dovecot:
# yum update dovecot

If you're running spamdyke (you should be if you're not):
# qtp-install-spamdyke
# service qmail restart


If you choose to do things the hard way (manually), here are some 
notes off the top of my head.


In addition to the 3 vpopmail related packages, the following packages 
should be rebuilt and reinstalled (qtp-newmodel will do this 
automatically):

qmail-toaster
courier-authlib-toaster
courier-imap-toaster

If you're running a dovecot version that you built yourself, you 
should rebuild and reinstall this as well after installing vpopmail.


There are vpopmail database changes required by vpopmail-5.4.18+. You 
should run the qtp-convert script which will do them for you 
(qtp-newmodel does this as well).



TTBOMK, all problems with vqadmin have been fixed. If you have a 
problem with it, let us know and we'll see if it can't be fixed. 
Likewise with vpopmail and quotas. There might be some database fixing 
that needs to be done to put things in sync for you, but we can cross 
those bridges as they come.


As always, if you have any problems with this, please post here.

Thanks to everyone who's helped along the way with this, especially 
our own Bharath, and Matt at inter7 (the present vpopmail maintainer).



That's great
usually I do compile all manually or even mod a bit the spec files
but for once I just started the qtp-newmodel
was for updating a normal not modified qmt

Well I guess I ll have to do it manually :)
.
qtp-build-rpms v0.3.5
qtp-remove-pkgs v0.3.1
REMOVED control-panel-toaster from sandbox (not for real)
Building daemontools-toaster-0.76-1.3.6 ...
Installing daemontools-toaster-0.76-1.3.6 in the sandbox ...
qtp-build-rpms - binary rpm not found for daemontools-toaster-0.76-1.3.6
qtp-build-rpms - Script Error - aborting.

Build failed, Exiting.

Wrote: /root/src/rpm/RPMS/x86_64/daemontools-toaster-0.76-1.3.6.x86_64.rpm
Executing(%clean): /bin/sh -e /var/tmp/rpm-tmp.97447
+ umask 022
+ cd /root/src/rpm/BUILD
+ cd daemontools-0.76
+ '[' -n /var/tmp/daemontools-toaster-0.76 -a 
/var/tmp/daemontools-toaster-0.76 '!=' / ']'

+ rm -rf /var/tmp/daemontools-toaster-0.76
+ '[' -d /root/src/rpm/BUILD/daemontools-0.76 ']'
+ rm -rf /root/src/rpm/BUILD/daemontools-0.76
+ exit 0
Executing(--clean): /bin/sh -e /var/tmp/rpm-tmp.97447
+ umask 022
+ cd /root/src/rpm/BUILD
+ rm -rf daemontools-0.76
+ exit 0
Installing daemontools-toaster-0.76-1.3.6 in the sandbox ...


Conclusion
Then script is not handling .rpmmacros env variables
that's a fault in my opinion

Re: [qmailtoaster] Re: spamassassin-toaster-3.3.2-1.4.2 dependencies error

[Philip Nix Guru]

On 07/31/2012 06:20 PM, Eric Shubert wrote:

On 07/31/2012 03:42 AM, Philip wrote:

Hello
There is a bug in the check of the dependencies
(was testing on an old qmail but still working:))

error: Failed dependencies:
 perl(NetAddr::IP) = 4.000 is needed by
spamassassin-toaster-3.3.2-1.4.3.i386


Module id = NetAddr::IP
 DESCRIPTION  Manipulation and operations on IP addresses
 CPAN_USERID  LUISMUNOZ (Luis Munozluismu...@cpan.org)
 CPAN_VERSION 4.062
 CPAN_FILEM/MI/MIKER/NetAddr-IP-4.062.tar.gz
 UPLOAD_DATE  2012-06-06
 DSLIP_STATUS RdpOp
(released,developer,perl,object-oriented,Standard-Perl)
 MANPAGE  NetAddr::IP - Manages IPv4 and IPv6 addresses and 
subnets

 INST_FILE
/usr/lib/perl5/site_perl/5.8.8/i386-linux-thread-multi/NetAddr/IP.pm
 INST_VERSION 4.062

-


I've added perl(NetAddr::IP) to qtp-dependencies script. It will be 
included in the next QTP release.


Thanks Philip.


Hello Eric
actually that's not the problem :)
(NetAddr::IP) is installed on my little play box --- INST_VERSION 4.062

But installed through CPAN and  not from any repo
I didnt have time to check at the spec file yet
to see where the depends and requirements are

[qmailtoaster] SRS: No user in SRS0 address

[Philip Nix Guru]

Hello
This afternoon, we had a weird issue on one of our qmt servers
the server wouldn't deliver any mail
the send log file was filled with :

SRS: No user in SRS0 address


I quickly disabled SRS to have the server back to normal before checking 
what could have caused that

SRS was working and enabled for over 4 years, never had an issue

If any1 has an idea ?
Thx

Re: [qmailtoaster] Email to root (alias)

[Philip Nix Guru]

Hello Alex
Try this,
I take you have aliases in a the vpopmail database table valias or you 
are using .qmail files as aliases ?
So do as Eric suggested, create the alias r...@mydomain.com to 
postmas...@mydomain.com, aliases are considered as forwards now, in the 
old days aliases and forwards were different


So at the end make sure r...@mydomain.com is forwarded to 
postmas...@mydomain.com or to any acco...@mydomain.com you want .. and 
it should work

Simply mail root  on your shell and check the send log file

Cheers
-Philip





On 08/16/2011 05:39 PM, Postmaster wrote:

Philip,

Many thanks for your suggestion.
Yes, I have postmas...@mydomain.com (I have tried other e-mails as 
well) and the domain is the same in .qmail-root as in 
/var/qmail/control/me.

I simply cannot figure out what may be wrong.


Regards
Alex




On 16/08/2011 11:44, Philip wrote:

Hello
it is pretty trivial the  alias folder
Lets take an example
your .qmail-root contains postmas...@yourdomain.com (or any 
u...@yourdoumain.com)  yourdomain.com should be similar to what is in 
/var/qmail/control/me


Then of course you need the account postmas...@yourdomain.com (the 
one listed in the me file) created and working on your server

Then all should be working as expected

-Philip



On 8/15/2011 4:13 PM, Postmaster wrote:

Jake,


I logged in as the root and used the following command:

mutt -s root email test root  sample.txt


sample.txt contains anything like hello, this is test
I do not have the e-mail account root, but I understand that 
.qmail-root is supposed to forward ALL email to postmaster.
Unfortunately, this is not the case. Postmaster is not getting any 
messages from root. Like Eric, like have no idea

how the /var/qmail/alias/ files are supposed to work


Regards
Alex






On 15/08/2011 15:39, Jake Vickers wrote:

On 08/15/2011 06:27 AM, Postmaster wrote:
I can only see the sent message in the send log and not the smtp 
long.


@40004e48f3581874855c info msg 397667: bytes 5012 from
r...@domain.com qp 31167 uid 0
@40004e48f35818a9398c starting delivery 875: msg 397667 to local
domain.com-r...@domian.com
@40004e48f35818a94544 status: local 1/10 remote 0/10
@40004e48f358198608e4 delivery 875: success: did_0+0+1/
@40004e48f358198610b4 status: local 0/10 remote 0/10



Do you have an account at r...@domain.com?


- 

Qmailtoaster is sponsored by Vickers Consulting Group 
(www.vickersconsulting.com)
   Vickers Consulting Group offers Qmailtoaster support and 
installations.
 If you need professional help with your setup, contact them 
today!
- 

Please visit qmailtoaster.com for the latest news, updates, and 
packages.
 To unsubscribe, e-mail: 
qmailtoaster-list-unsubscr...@qmailtoaster.com
For additional commands, e-mail: 
qmailtoaster-list-h...@qmailtoaster.com

Re: [qmailtoaster] Re: Re; rsync question

[Philip Nix Guru]

Hello
There is an already made solution called snapback2 (based on rsync)
http://www.perusion.com/misc/Snapback2/

Either you use it as an incremental backup or just for a single backup
You can ssh in or simply do it local (by mounting the destination 
machine into your qmail)


-Philip

On 04/06/2011 08:24 PM, Eric Shubert wrote:

On 04/06/2011 10:41 AM, Joel Eddy wrote:

Eric,

Would you put this in a script file to run? That’s what I’m trying to
do. No luck as yet tho.

find /home/vpopmail/domains/mydomain.com \  If I use this it scrolls
the entire domain structure by “FAST” by the way.


That's because there's no -exec yet. It's doing the default action, 
which is -print.



-name Maildir/new \  If I include this I get “find: -name/Maildir/new:
unknown option”


I don't think that would have worked, come to think of it. -name can 
only specify a filename, not a directory/filename as I had it.


Basically, you want to use find to get a list of all of the new|cur 
directories, then use the -exec option to run rsync on them. Using 
just the default -print option initially to get the name part(s) right 
will make things a little easier, as you have done.


How about something more like this:
find /home/vpopmail/domains/mydomain.com/*/Maildir/+(cur|new)
Does that get them all?


-exec rsync -avh {} destination \;  Haven’t tried this yet.

Any suggestions?

Joel

PS: If I/we get this to work I’ll wiki it on the wiki



You mean when, not if. ;)

Re: [qmailtoaster] Re: servercert.pem common name

[Philip Nix Guru]

Hello
you can make it on one command line
openssl req -new -newkey rsa:2048 -days 3650 -nodes -x509 -keyout 
servercert.pem  -out servercert.pem

that would make it for 10 years

And voilà

Eric Broch wrote:

Eric S.,

I'd do it after Thanksgiving, but someone would have to give me
instructions.

Eric B.

-Original Message-
From: news [mailto:n...@ger.gmane.org] On Behalf Of Eric Shubert
Sent: Wednesday, November 25, 2009 9:57 AM
To: qmailtoaster-list@qmailtoaster.com
Subject: [qmailtoaster] Re: servercert.pem common name

It'd be nice to have this on the wiki. Anyone care to update it?

Eric Broch wrote:
  

Athiq,

This is how I do it...in a bash script:

# 1. Create the key.
# 2. Copy the key (mailkey.crt) to /var/qmail/control/servercert.pem
# 3. Restart Qmail.
# 4. Import the key (mailkey.cert) to trusted root server in 
#Internet Explorer or Firefox

#on your computer.
# 5. Make sure the name of the server (CN) when creating 
#the certificate, whether FQDN
#or IP address, is used in the server information incoming 
#and outgoing fields of the mail client. 
# 6. Restart the mail client.


openssl genrsa -out x.key 2048
openssl req -new -key x.key -out x.csr
openssl x509 -req -days 3650 -in x.csr -signkey x.key -out x.crt
cat x.crt x.key  mailkey.crt
cp mailkey.crt /var/qmail/control/servercert.pem

rm x.crt
rm x.key
rm x.csr

Eric






-Original Message-
From: Athiqur Rahman [mailto:s...@arahmantech.com] 
Sent: Wednesday, November 25, 2009 6:55 AM

To: qmailtoaster-list@qmailtoaster.com
Subject: [qmailtoaster] servercert.pem common name

Hi,

The common name of my servercert.pem is set to 'localhost'. How to I 
change this, or create a new certificate with the common name of my mail 
server.


Every time i try to send an email my thunderbird throws up a warning 
syaing my smtp name and certificate name are not the same.



thanks,

--Athiq







  


-
Qmailtoaster is sponsored by Vickers Consulting Group 
(www.vickersconsulting.com)
   Vickers Consulting Group offers Qmailtoaster support and installations.
 If you need professional help with your setup, contact them today!
-
Please visit qmailtoaster.com for the latest news, updates, and packages.

 To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com

For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com

Re: [qmailtoaster] Re: maildrop Problem making 'maildirsize'

[Philip Nix Guru]

Hello
Well dont worry, the problem is with accounts with NOQUOTA
the maildirfilter in qt is bugged for  hmm kinda years :)
it cant handle NOQUOTA accounts

Cheers
-P

Eric Shubert wrote:

Rafael Andrade wrote:

Hello all,

after i enable spambox in qmailadmin, i see in maildrop log file some 
erros like, any knows why this erros occoured?


Nov 13 18:21:22 - BEGIN maildrop processing for bur...@domain.com ===
QUOTA =
Problem making 'maildirsize' for 
/home/vpopmail/domains/domain.com/burato

  message is clean (0.1)
RETCODE = 0   delivering to 
/home/vpopmail/domains/domain.com/burato/Maildir

=== END ===  bur...@domain.com  success (quota)
Nov 13 18:21:28 - BEGIN maildrop processing for bur...@domain.com ===
QUOTA =
Problem making 'maildirsize' for 
/home/vpopmail/domains/domain.com/burato

  message is clean (0.1)
RETCODE = 0   delivering to 
/home/vpopmail/domains/domain.com/burato/Maildir

=== END ===  bur...@domain.com  success (quota)



Thanks so much

- 



What is the ownership/permissions of 
/home/vpopmail/domains/domain.com/burato/Maildir directory?

Should be 700 vpopmail:vchkpw



-
Qmailtoaster is sponsored by Vickers Consulting Group 
(www.vickersconsulting.com)
   Vickers Consulting Group offers Qmailtoaster support and installations.
 If you need professional help with your setup, contact them today!
-
Please visit qmailtoaster.com for the latest news, updates, and packages.

 To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com

For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com

Re: [qmailtoaster] Re: maildrop Problem making 'maildirsize'

[Philip Nix Guru]

Hello
it does work, it is just the maildirmake command that doenst work when 
you pass something empty with the -q flag

but the tagged SPAM mails are moved to the .SPAM folder :)



Eric Shubert wrote:
Are you saying that the Spambox feature doesn't work with NOQUOTA 
accounts, because maildrop-toaster doesn't work with NOQUOTA accounts?


Philip Nix Guru wrote:

Hello
Well dont worry, the problem is with accounts with NOQUOTA
the maildirfilter in qt is bugged for  hmm kinda years :)
it cant handle NOQUOTA accounts

Cheers
-P

Eric Shubert wrote:

Rafael Andrade wrote:

Hello all,

after i enable spambox in qmailadmin, i see in maildrop log file 
some erros like, any knows why this erros occoured?


Nov 13 18:21:22 - BEGIN maildrop processing for bur...@domain.com ===
QUOTA =
Problem making 'maildirsize' for 
/home/vpopmail/domains/domain.com/burato

  message is clean (0.1)
RETCODE = 0   delivering to 
/home/vpopmail/domains/domain.com/burato/Maildir

=== END ===  bur...@domain.com  success (quota)
Nov 13 18:21:28 - BEGIN maildrop processing for bur...@domain.com ===
QUOTA =
Problem making 'maildirsize' for 
/home/vpopmail/domains/domain.com/burato

  message is clean (0.1)
RETCODE = 0   delivering to 
/home/vpopmail/domains/domain.com/burato/Maildir

=== END ===  bur...@domain.com  success (quota)



Thanks so much

- 





What is the ownership/permissions of 
/home/vpopmail/domains/domain.com/burato/Maildir directory?

Should be 700 vpopmail:vchkpw



- 

Qmailtoaster is sponsored by Vickers Consulting Group 
(www.vickersconsulting.com)
   Vickers Consulting Group offers Qmailtoaster support and 
installations.

 If you need professional help with your setup, contact them today!





-
Qmailtoaster is sponsored by Vickers Consulting Group 
(www.vickersconsulting.com)
   Vickers Consulting Group offers Qmailtoaster support and installations.
 If you need professional help with your setup, contact them today!
-
Please visit qmailtoaster.com for the latest news, updates, and packages.

 To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com

For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com

Re: [qmailtoaster] [Fwd: Re: qtp update]

[Philip Nix Guru]

Well it is in fact 4.8 :)


d...@acbsco.com wrote:

Jake Vickers wrote:
  

David Milholen wrote:


Jake,
I started to run the update script and it did not like that the os
was cent os 4.3 and that I should update this first.
I want to make sure that when I run the script that it will not be an
issue. If I need to update the os do I need to just run up2date -u?
Or will that affect qtp?
TM
Dave

  

Dave - I'm bringing this onto the list so that others can benefit from
it as well (and others can also answer).
Cent4 is up to 4.7 now I believe, so it will want to update to the
current packages/kernel before upgrading the packages. It's a good
idea to keep that up to date anyway.
To update the OS, you can just yum -y update and then do a reboot
afterwards to get the latest kernel running.





-

Qmailtoaster is sponsored by Vickers Consulting Group
(www.vickersconsulting.com)
   Vickers Consulting Group offers Qmailtoaster support and
installations.
 If you need professional help with your setup, contact them today!
-

Please visit qmailtoaster.com for the latest news, updates, and
packages.
 To unsubscribe, e-mail:
qmailtoaster-list-unsubscr...@qmailtoaster.com
For additional commands, e-mail:
qmailtoaster-list-h...@qmailtoaster.com




I am running CentOS 4 on my qmailtoaster. Confirming that 4.7 is the
most recent. I was on 4.3, did a yum update to 4.7 prior to updating
qmailtoaster via qtp-newmodel. No issues.
Dave H.

-
Qmailtoaster is sponsored by Vickers Consulting Group 
(www.vickersconsulting.com)
Vickers Consulting Group offers Qmailtoaster support and installations.
  If you need professional help with your setup, contact them today!
-
 Please visit qmailtoaster.com for the latest news, updates, and packages.
 
  To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com

 For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com


  


-
Qmailtoaster is sponsored by Vickers Consulting Group 
(www.vickersconsulting.com)
   Vickers Consulting Group offers Qmailtoaster support and installations.
 If you need professional help with your setup, contact them today!
-
Please visit qmailtoaster.com for the latest news, updates, and packages.

 To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com

For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com

Re: [qmailtoaster] qmail machine being spammer help...

[Philip Nix Guru]

Hello
we had a lot of those attacks on our web hosting servers in the past
and it has only to do with apache . It is a known and old exploit,
a spam relay is using Apache to forward data to an open mail relay.
We check those at router level but the mod_security works fine for a 
single machine


Really it is an old exploit.
Nothing to worry about regarding the toaster, well you can always add a 
nice mod_security configuration to take care of all those little exploits





Jake Vickers wrote:

Eric Shubert wrote:
Thanks Jake. So is this simply an apache configuration issue? Is 
there an easy way it can be 'fixed' in a toaster package configuration?




It's actually an issue with the programming of the application 
(talking about Roundcube here). There are a couple different Apache 
modules that can be utilized to proxy or filter the PHP code used and 
help prevent the exploits in the code.
I'm sure something could be written into QTP to install any one of 
those modules if someone wants to lay out a skeleton that can be used 
as a base for the installation of the module.



- 

Qmailtoaster is sponsored by Vickers Consulting Group 
(www.vickersconsulting.com)
   Vickers Consulting Group offers Qmailtoaster support and 
installations.

 If you need professional help with your setup, contact them today!
- 

Please visit qmailtoaster.com for the latest news, updates, and 
packages.
 To unsubscribe, e-mail: 
qmailtoaster-list-unsubscr...@qmailtoaster.com
For additional commands, e-mail: 
qmailtoaster-list-h...@qmailtoaster.com





-
Qmailtoaster is sponsored by Vickers Consulting Group 
(www.vickersconsulting.com)
   Vickers Consulting Group offers Qmailtoaster support and installations.
 If you need professional help with your setup, contact them today!
-
Please visit qmailtoaster.com for the latest news, updates, and packages.

 To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com

For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com

Re: [qmailtoaster] clamav-toaster-0.95

[Philip Nix Guru]

Jake Vickers wrote:


I'm uploading a new package now for clam that requires ncurses and 
ncurses-devel to be installed. The clamav team added a new utility to 
the package, clamdtop. It requires ncurses to compile, and if ncurses 
is missing it does not compile. This is why you received errors about 
the file being installed but unpackaged; you had ncurses-devel 
installed so it built clamdtop for you, but it was not included in the 
RPM's spec file. I added it to the spec file, but this then required 
that everyone have ncurses and ncurses-devel installed. I probably 
could have put a conditional in the RPM to look for that first and 
then adjust accordingly, and I may do this in the next release, but 
for brevity I just required that ncurses and ncurses-devel be 
installed across the board now.
I was only able to test on Cent 4, Cent 5, and Fedora 10. Suse is 
being silly and doesn't want to install from an ISO into a VM image so 
I was not able to test on it. I will try and test on it in the next 
week or two, and Mandriva/Mandrake the week after that. I imagine 
someone will let me know if it does not work on one of those before then.

Thanks.



I tested on Fedora 5  9,Centos 4 32bit, Centos 5 32bit  64bit
all working fine

Thx Jake


-
Managed Qmailtoaster servers are now available
  Visit http://qmailtoaster.com/QMTManaged.html to order yours today!

Qmailtoaster is sponsored by Vickers Consulting Group 
(www.vickersconsulting.com)

Please visit qmailtoaster.com for the latest news, updates, and packages.


 To unsubscribe, e-mail: testing-unsubscr...@qmailtoaster.com
For additional commands, e-mail: testing-h...@qmailtoaster.com

Re: [qmailtoaster] spamdyke smtp logging bugs

[Philip Nix Guru]

Yes the * were added  manually
sorry for the confusion

# cat /var/qmail/supervise/smtp/run
#!/bin/sh
QMAILDUID=`id -u vpopmail`
NOFILESGID=`id -g vpopmail`
MAXSMTPD=`cat /var/qmail/control/concurrencyincoming`
SPAMDYKE=/usr/local/bin/spamdyke
SPAMDYKE_CONF=/etc/spamdyke/spamdyke.conf
SMTPD=/var/qmail/bin/qmail-smtpd
TCP_CDB=/etc/tcprules.d/tcp.smtp.cdb
HOSTNAME=`hostname`
VCHKPW=/home/vpopmail/bin/vchkpw
REQUIRE_AUTH=0

exec /usr/bin/softlimit -m 1200 \
/usr/bin/tcpserver -v -R -h -l $HOSTNAME -x $TCP_CDB -c $MAXSMTPD \
-u $QMAILDUID -g $NOFILESGID 0 smtp \
$SPAMDYKE --config-file $SPAMDYKE_CONF \
$SMTPD $VCHKPW /bin/true 21

-P

Sam Clippinger wrote:
It looks like spamdyke is being run multiple times for each connection 
-- the two spamdyke PIDs in the logs are different.  What does your 
run file look like?


I have no idea where the asterisks came from.  Did you insert those 
manually to highlight the duplicated text?


-- Sam Clippinger

Philip Nix Guru wrote:

Hello
I was playing with a spamdyke-stats.pl script I saw, trying to update 
it to work with the qtoaster setup

and I was getting some strange results .. so I checked the logs
and found that that I had a few spamdyke[###]:spamdyke[] in my 
smtp log file


example : (I converted TAI64N timestamps for better readings)

2008-11-03 23:51:28.405450500 spamdyke[26362]: DENIED_RBL_MATCH from: 
[EMAIL PROTECTED] to: [EMAIL PROTECTED] 
origin_ip: 86.2.231.197 origin_rdns: 
cpc2-hudd10-0-0-cust964.hudd.cable.ntl.com auth: (unknown)
2008-11-03 23:51:28.446391500 *spamdyke[26365]: spamdyke[26362]*: 
DENIED_RBL_MATCH from: [EMAIL PROTECTED] to: 
[EMAIL PROTECTED] origin_ip: 86.2.231.197 origin_rdns: 
cpc2-hudd10-0-0-cust964.hudd.cable.ntl.com auth: 
(unknown)DENIED_RBL_MATCH from: 
[EMAIL PROTECTED] to: [EMAIL PROTECTED] 
origin_ip: 86.2.231.197 origin_rdns: 
cpc2-hudd10-0-0-cust964.hudd.cable.ntl.com auth: (unknown)
2008-11-03 23:51:28.488134500 *spamdyke[26365]: spamdyke[26362]*: 
DENIED_RBL_MATCH from: [EMAIL PROTECTED] to: 
[EMAIL PROTECTED] origin_ip: 86.2.231.197 origin_rdns: 
cpc2-hudd10-0-0-cust964.hudd.cable.ntl.com auth: 
(unknown)DENIED_RBL_MATCH from: 
[EMAIL PROTECTED] to: [EMAIL PROTECTED] 
origin_ip: 86.2.231.197 origin_rdns: 
cpc2-hudd10-0-0-cust964.hudd.cable.ntl.com auth: (unknown)
2008-11-03 23:51:28.536631500 *spamdyke[26365]: spamdyke[26362]*: 
DENIED_RBL_MATCH from: [EMAIL PROTECTED] 
to: [EMAIL PROTECTED] origin_ip: 86.2.231.197 origin_rdns: 
cpc2-hudd10-0-0-cust964.hudd.cable.ntl.com auth: (unknown)


It seems to happen when you have multiple emails reaching different 
users on the same domain





-
QmailToaster hosted by: VR Hosted http://www.vr.org
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]



-
QmailToaster hosted by: VR Hosted http://www.vr.org
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]



-
QmailToaster hosted by: VR Hosted http://www.vr.org
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: [qmailtoaster] spamdyke and tcpserver

[Philip Nix Guru]

From my testing
adding those 2 lines in spamdyke.conf
local-domains-file=/var/qmail/control/rcpthosts
local-domains-file=/var/qmail/control/morercpthosts

didnt change anything, all is still working fine on this busy test server

But
adding
access-file=/etc/tcprules.d/tcp.smtp  (using different tcp.smtp files 
for testing purpose)
I dont have any mail parsed through spamassassin anymore, as soon as I 
remove that configuration

it have activity again ...

cant explain yet why :)

Sam Clippinger wrote:
I wouldn't add them unconditionally, because spamdyke will generate 
errors if it can't open a nonexistent file.  What you're doing now is 
probably best.


I'm not very familiar with QMT's admin tools -- how does 
/var/qmail/control/morercpthosts get created in the first place?  Does 
one of the admin tools automatically create the file when 
/var/qmail/control/rcpthosts gets too big?


-- Sam Clippinger

Eric Shubert wrote:

Sam Clippinger wrote:
That's probably all that needs to happen.  I don't have a copy of 
the QTP spamdyke configuration file handy, but it should also 
contain local-domains-file lines to load 
/var/qmail/control/rcpthosts and /var/qmail/control/morercpthosts if 
spamdyke is going to correctly handle relaying.


The local-domains-file parameter is added by the script for each of 
rcpthosts and morercpthosts, but only when they exist. Would it 
perhaps be better to always add them whether they exist or not?



-- Sam Clippinger

Eric Shubert wrote:

Looks like I missed this one, Philip. Thanks for pointing it out.

From what I'm seeing, I simply need to add:
access-file=/etc/tcprules.d/tcp.smtp
to the configuration file. I'm not seeing anything that would 
change in

the run.spamdyke file. I guess the parameter could be added to either
place, but I'm trying to keep the configuration as cohesive as 
possible.


Sam, does this look right to you? If so I'll get in in the next 
QT-Plus

release.

Philip wrote:
 

Thx Sam for clearing up a few things

In that case the spamdyke installation script used by qtp-plus should
maybe add the |access-file| option
and use the /etc/tcprules.d/tcp.smtp as parameters in the 
run.spamdyke file

If ppl had local ips or other ips to prevent rbl checking or allowing
relaying
it has no effect anymore.

Or those ips should be  under some conditions  added to the 
whitelist_ip

file of spamdyke

-P


Sam Clippinger wrote:
 
spamdyke cannot read CDB files but it can read the /etc/tcp.smtp 
file

(text version) and use some of the values, mostly for controlling
relaying.  For example, if the incoming IP address matches a line 
that

sets the RELAYCLIENT variable, spamdyke will allow the client to
relay.  See the documentation here:
   http://www.spamdyke.org/documentation/README.html#RELAYING

However, setting a SPAMDYKE variable in /etc/tcp.smtp has no 
effect. spamdyke's configuration is set through its configuration 
file(s), not

the environment.

-- Sam Clippinger

Philip Nix Guru wrote:
   

Heheh
Yes I am using the

whitelist_ip file

you can either enter x.y.z or x.y.z. for a c-class
I was just curious about the tcp.smtp file :)
I know that spamdyke cant use cdb files

-P


Eric Shubert wrote:
 

Philip wrote:
 
   

Hello
I was wondering about how to disable spamdyke by ip range
can we do something like :

1.2.3.:allow,RELAYCLIENT=,RBLSMTPD=,SPAMDYKE=,NOP0FCHECK=1 


in tcp.smtp file
or you better add your c-class or any subnet to the 
whitelist_ip file

from spandyke ?

Thx for the info


I don't know of anything like the former. qmail (and thus 
spamdyke)
doesn't necessarily use tcpserver, so I'd be surprised if this 
were

available.

I'd look toward the whitelist_ip file. I'm not sure how to 
specify and

IP range there though. Check the documentation.

I'm expect that Sam will chime in here and enlighten us 
further. ;)


--
-Eric 'shubes'


- 


 QmailToaster hosted by: VR Hosted http://www.vr.org
- 

To unsubscribe, e-mail: 
[EMAIL PROTECTED]

For additional commands, e-mail:
[EMAIL PROTECTED]


- 


QmailToaster hosted by: VR Hosted http://www.vr.org
- 

To unsubscribe, e-mail: 
[EMAIL PROTECTED]
For additional commands, e-mail: 
[EMAIL PROTECTED]



- 


QmailToaster hosted by: VR Hosted http://www.vr.org
- 

To unsubscribe, e-mail: 
[EMAIL PROTECTED]
For additional commands, e-mail: 
[EMAIL PROTECTED]



  

-
QmailToaster hosted by: VR Hosted http://www.vr.org

Re: [qmailtoaster] spamdyke and tcpserver

[Philip Nix Guru]

Thx
but we are using simscan in qtoaster and it is patched to provide smtp auth
brings memories, I did use qmail scanner in some old days :)

I will play tomorrow with different combos in the tcp.smtp file to 
really see what triggers it

I ll let you know
Cheers
-P

||
Sam Clippinger wrote:

I'm not sure if this applies or not but it might solve your problem:
   http://www.spamdyke.org/documentation/FAQ.html#TROUBLE5

-- Sam Clippinger

Philip Nix Guru wrote:

From my testing
adding those 2 lines in spamdyke.conf
local-domains-file=/var/qmail/control/rcpthosts
local-domains-file=/var/qmail/control/morercpthosts

didnt change anything, all is still working fine on this busy test 
server


But
adding
access-file=/etc/tcprules.d/tcp.smtp  (using different tcp.smtp files 
for testing purpose)
I dont have any mail parsed through spamassassin anymore, as soon as 
I remove that configuration

it have activity again ...

cant explain yet why :)

Sam Clippinger wrote:
I wouldn't add them unconditionally, because spamdyke will generate 
errors if it can't open a nonexistent file.  What you're doing now 
is probably best.


I'm not very familiar with QMT's admin tools -- how does 
/var/qmail/control/morercpthosts get created in the first place?  
Does one of the admin tools automatically create the file when 
/var/qmail/control/rcpthosts gets too big?


-- Sam Clippinger

Eric Shubert wrote:

Sam Clippinger wrote:
That's probably all that needs to happen.  I don't have a copy of 
the QTP spamdyke configuration file handy, but it should also 
contain local-domains-file lines to load 
/var/qmail/control/rcpthosts and /var/qmail/control/morercpthosts 
if spamdyke is going to correctly handle relaying.


The local-domains-file parameter is added by the script for each of 
rcpthosts and morercpthosts, but only when they exist. Would it 
perhaps be better to always add them whether they exist or not?



-- Sam Clippinger

Eric Shubert wrote:

Looks like I missed this one, Philip. Thanks for pointing it out.

From what I'm seeing, I simply need to add:
access-file=/etc/tcprules.d/tcp.smtp
to the configuration file. I'm not seeing anything that would 
change in
the run.spamdyke file. I guess the parameter could be added to 
either
place, but I'm trying to keep the configuration as cohesive as 
possible.


Sam, does this look right to you? If so I'll get in in the next 
QT-Plus

release.

Philip wrote:
 

Thx Sam for clearing up a few things

In that case the spamdyke installation script used by qtp-plus 
should

maybe add the |access-file| option
and use the /etc/tcprules.d/tcp.smtp as parameters in the 
run.spamdyke file
If ppl had local ips or other ips to prevent rbl checking or 
allowing

relaying
it has no effect anymore.

Or those ips should be  under some conditions  added to the 
whitelist_ip

file of spamdyke

-P


Sam Clippinger wrote:
 
spamdyke cannot read CDB files but it can read the 
/etc/tcp.smtp file

(text version) and use some of the values, mostly for controlling
relaying.  For example, if the incoming IP address matches a 
line that

sets the RELAYCLIENT variable, spamdyke will allow the client to
relay.  See the documentation here:
   http://www.spamdyke.org/documentation/README.html#RELAYING

However, setting a SPAMDYKE variable in /etc/tcp.smtp has no 
effect. spamdyke's configuration is set through its 
configuration file(s), not

the environment.

-- Sam Clippinger

Philip Nix Guru wrote:
 

Heheh
Yes I am using the

whitelist_ip file

you can either enter x.y.z or x.y.z. for a c-class
I was just curious about the tcp.smtp file :)
I know that spamdyke cant use cdb files

-P


Eric Shubert wrote:
   

Philip wrote:
 
 

Hello
I was wondering about how to disable spamdyke by ip range
can we do something like :

1.2.3.:allow,RELAYCLIENT=,RBLSMTPD=,SPAMDYKE=,NOP0FCHECK=1 


in tcp.smtp file
or you better add your c-class or any subnet to the 
whitelist_ip file

from spandyke ?

Thx for the info


I don't know of anything like the former. qmail (and thus 
spamdyke)
doesn't necessarily use tcpserver, so I'd be surprised if 
this were

available.

I'd look toward the whitelist_ip file. I'm not sure how to 
specify and

IP range there though. Check the documentation.

I'm expect that Sam will chime in here and enlighten us 
further. ;)


--
-Eric 'shubes'


- 


 QmailToaster hosted by: VR Hosted http://www.vr.org
- 

To unsubscribe, e-mail: 
[EMAIL PROTECTED]

For additional commands, e-mail:
[EMAIL PROTECTED]


- 


QmailToaster hosted by: VR Hosted http://www.vr.org
- 

To unsubscribe, e-mail: 
[EMAIL PROTECTED]
For additional commands, e-mail: 
[EMAIL PROTECTED

[qmailtoaster] spamdyke smtp logging bugs

[Philip Nix Guru]

Hello
I was playing with a spamdyke-stats.pl script I saw, trying to update it 
to work with the qtoaster setup

and I was getting some strange results .. so I checked the logs
and found that that I had a few spamdyke[###]:spamdyke[] in my smtp 
log file


example : (I converted TAI64N timestamps for better readings)

2008-11-03 23:51:28.405450500 spamdyke[26362]: DENIED_RBL_MATCH from: 
[EMAIL PROTECTED] to: [EMAIL PROTECTED] 
origin_ip: 86.2.231.197 origin_rdns: 
cpc2-hudd10-0-0-cust964.hudd.cable.ntl.com auth: (unknown)
2008-11-03 23:51:28.446391500 *spamdyke[26365]: spamdyke[26362]*: 
DENIED_RBL_MATCH from: [EMAIL PROTECTED] to: 
[EMAIL PROTECTED] origin_ip: 86.2.231.197 origin_rdns: 
cpc2-hudd10-0-0-cust964.hudd.cable.ntl.com auth: 
(unknown)DENIED_RBL_MATCH from: 
[EMAIL PROTECTED] to: [EMAIL PROTECTED] 
origin_ip: 86.2.231.197 origin_rdns: 
cpc2-hudd10-0-0-cust964.hudd.cable.ntl.com auth: (unknown)
2008-11-03 23:51:28.488134500 *spamdyke[26365]: spamdyke[26362]*: 
DENIED_RBL_MATCH from: [EMAIL PROTECTED] to: 
[EMAIL PROTECTED] origin_ip: 86.2.231.197 origin_rdns: 
cpc2-hudd10-0-0-cust964.hudd.cable.ntl.com auth: 
(unknown)DENIED_RBL_MATCH from: 
[EMAIL PROTECTED] to: [EMAIL PROTECTED] 
origin_ip: 86.2.231.197 origin_rdns: 
cpc2-hudd10-0-0-cust964.hudd.cable.ntl.com auth: (unknown)
2008-11-03 23:51:28.536631500 *spamdyke[26365]: spamdyke[26362]*: 
DENIED_RBL_MATCH from: [EMAIL PROTECTED] to: 
[EMAIL PROTECTED] origin_ip: 86.2.231.197 origin_rdns: 
cpc2-hudd10-0-0-cust964.hudd.cable.ntl.com auth: (unknown)


It seems to happen when you have multiple emails reaching different 
users on the same domain





-
QmailToaster hosted by: VR Hosted http://www.vr.org
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: [qmailtoaster] spamdyke and tcpserver

[Philip Nix Guru]

Hi Eric
just wait a bit I ll check a few things this weekend
coz when I added it, suddenly nothing went through spamassassin anymore
dont have much time today to figure out what line triggered it
so stay tuned :)


Eric Shubert wrote:

Looks like I missed this one, Philip. Thanks for pointing it out.

From what I'm seeing, I simply need to add:
access-file=/etc/tcprules.d/tcp.smtp
to the configuration file. I'm not seeing anything that would change in
the run.spamdyke file. I guess the parameter could be added to either
place, but I'm trying to keep the configuration as cohesive as possible.

Sam, does this look right to you? If so I'll get in in the next QT-Plus
release.

Philip wrote:
  

Thx Sam for clearing up a few things

In that case the spamdyke installation script used by qtp-plus should
maybe add the |access-file| option
and use the /etc/tcprules.d/tcp.smtp as parameters in the run.spamdyke file
If ppl had local ips or other ips to prevent rbl checking or allowing
relaying
it has no effect anymore.

Or those ips should be  under some conditions  added to the whitelist_ip
file of spamdyke

-P


Sam Clippinger wrote:


spamdyke cannot read CDB files but it can read the /etc/tcp.smtp file
(text version) and use some of the values, mostly for controlling
relaying.  For example, if the incoming IP address matches a line that
sets the RELAYCLIENT variable, spamdyke will allow the client to
relay.  See the documentation here:
   http://www.spamdyke.org/documentation/README.html#RELAYING

However, setting a SPAMDYKE variable in /etc/tcp.smtp has no effect. 
spamdyke's configuration is set through its configuration file(s), not

the environment.

-- Sam Clippinger

Philip Nix Guru wrote:
  

Heheh
Yes I am using the

whitelist_ip file

you can either enter x.y.z or x.y.z. for a c-class
I was just curious about the tcp.smtp file :)
I know that spamdyke cant use cdb files

-P


Eric Shubert wrote:


Philip wrote:
 
  

Hello
I was wondering about how to disable spamdyke by ip range
can we do something like :

1.2.3.:allow,RELAYCLIENT=,RBLSMTPD=,SPAMDYKE=,NOP0FCHECK=1
in tcp.smtp file
or you better add your c-class or any subnet to the whitelist_ip file
from spandyke ?

Thx for the info




I don't know of anything like the former. qmail (and thus spamdyke)
doesn't necessarily use tcpserver, so I'd be surprised if this were
available.

I'd look toward the whitelist_ip file. I'm not sure how to specify and
IP range there though. Check the documentation.

I'm expect that Sam will chime in here and enlighten us further. ;)

--
-Eric 'shubes'


-
 QmailToaster hosted by: VR Hosted http://www.vr.org
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail:
[EMAIL PROTECTED]

  
  

-
QmailToaster hosted by: VR Hosted http://www.vr.org
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]



-
QmailToaster hosted by: VR Hosted http://www.vr.org
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]


  

-
QmailToaster hosted by: VR Hosted http://www.vr.org




-
 QmailToaster hosted by: VR Hosted http://www.vr.org
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

  


-
QmailToaster hosted by: VR Hosted http://www.vr.org
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: [qmailtoaster] spamdyke and tcpserver

[Philip Nix Guru]

Oh that's bad then coz it definatly doesnt include rcphosts nor 
morercpthosts

Sam how can you add 2 files ?

local-domains-file=/var/qmail/control/rcpthosts then a , a space .. 
/var/qmail/control/morercpthosts ?
in spamdyke.conf


Thx for the info

Sam Clippinger wrote:
That's probably all that needs to happen.  I don't have a copy of the 
QTP spamdyke configuration file handy, but it should also contain 
local-domains-file lines to load /var/qmail/control/rcpthosts and 
/var/qmail/control/morercpthosts if spamdyke is going to correctly 
handle relaying.


-- Sam Clippinger

Eric Shubert wrote:

Looks like I missed this one, Philip. Thanks for pointing it out.

From what I'm seeing, I simply need to add:
access-file=/etc/tcprules.d/tcp.smtp
to the configuration file. I'm not seeing anything that would change in
the run.spamdyke file. I guess the parameter could be added to either
place, but I'm trying to keep the configuration as cohesive as possible.

Sam, does this look right to you? If so I'll get in in the next QT-Plus
release.

Philip wrote:
 

Thx Sam for clearing up a few things

In that case the spamdyke installation script used by qtp-plus should
maybe add the |access-file| option
and use the /etc/tcprules.d/tcp.smtp as parameters in the 
run.spamdyke file

If ppl had local ips or other ips to prevent rbl checking or allowing
relaying
it has no effect anymore.

Or those ips should be  under some conditions  added to the 
whitelist_ip

file of spamdyke

-P


Sam Clippinger wrote:
   

spamdyke cannot read CDB files but it can read the /etc/tcp.smtp file
(text version) and use some of the values, mostly for controlling
relaying.  For example, if the incoming IP address matches a line that
sets the RELAYCLIENT variable, spamdyke will allow the client to
relay.  See the documentation here:
   http://www.spamdyke.org/documentation/README.html#RELAYING

However, setting a SPAMDYKE variable in /etc/tcp.smtp has no 
effect. spamdyke's configuration is set through its configuration 
file(s), not

the environment.

-- Sam Clippinger

Philip Nix Guru wrote:
 

Heheh
Yes I am using the

whitelist_ip file

you can either enter x.y.z or x.y.z. for a c-class
I was just curious about the tcp.smtp file :)
I know that spamdyke cant use cdb files

-P


Eric Shubert wrote:
   

Philip wrote:
 
 

Hello
I was wondering about how to disable spamdyke by ip range
can we do something like :

1.2.3.:allow,RELAYCLIENT=,RBLSMTPD=,SPAMDYKE=,NOP0FCHECK=1
in tcp.smtp file
or you better add your c-class or any subnet to the whitelist_ip 
file

from spandyke ?

Thx for the info



I don't know of anything like the former. qmail (and thus spamdyke)
doesn't necessarily use tcpserver, so I'd be surprised if this were
available.

I'd look toward the whitelist_ip file. I'm not sure how to 
specify and

IP range there though. Check the documentation.

I'm expect that Sam will chime in here and enlighten us further. ;)

--
-Eric 'shubes'


- 


 QmailToaster hosted by: VR Hosted http://www.vr.org
- 

To unsubscribe, e-mail: 
[EMAIL PROTECTED]

For additional commands, e-mail:
[EMAIL PROTECTED]



-
QmailToaster hosted by: VR Hosted http://www.vr.org
-
To unsubscribe, e-mail: 
[EMAIL PROTECTED]
For additional commands, e-mail: 
[EMAIL PROTECTED]




-
QmailToaster hosted by: VR Hosted http://www.vr.org
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: 
[EMAIL PROTECTED]



  

-
QmailToaster hosted by: VR Hosted http://www.vr.org




-
 QmailToaster hosted by: VR Hosted http://www.vr.org
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

  


-
QmailToaster hosted by: VR Hosted http://www.vr.org
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]



-
QmailToaster hosted by: VR Hosted http://www.vr.org
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: [qmailtoaster] spamdyke and tcpserver

[Philip Nix Guru]

spamdyke.conf installed via qtp-plus

#dns-blacklist-entry=zombie.dnsbl.sorbs.net
#dns-blacklist-entry=dul.dnsbl.sorbs.net
#dns-blacklist-entry=bogons.cymru.com
dns-blacklist-entry=zen.spamhaus.org
dns-blacklist-entry=bl.spamcop.net
graylist-dir=/var/spamdyke/graylist
graylist-level=always
graylist-max-secs=2678400
graylist-min-secs=180
greeting-delay-secs=5
idle-timeout-secs=60
ip-blacklist-file=/etc/spamdyke/blacklist_ip
ip-in-rdns-keyword-blacklist-file=/etc/spamdyke/blacklist_keywords
ip-in-rdns-keyword-whitelist-file=/etc/spamdyke/whitelist_keywords
ip-whitelist-file=/etc/spamdyke/whitelist_ip
local-domains-file=/var/qmail/control/rcpthosts
local-domains-file=/var/qmail/control/morercpthosts
log-level=info
log-target=stderr
max-recipients=50
#policy-url=http://my.policy.explanation.url/
rdns-blacklist-file=/etc/spamdyke/blacklist_rdns
rdns-whitelist-file=/etc/spamdyke/whitelist_rdns
recipient-blacklist-file=/etc/spamdyke/blacklist_recipients
recipient-whitelist-file=/etc/spamdyke/whitelist_recipients
reject-empty-rdns
#reject-ip-in-cc-rdns
reject-missing-sender-mx
reject-unresolvable-rdns
sender-blacklist-file=/etc/spamdyke/blacklist_senders
sender-whitelist-file=/etc/spamdyke/whitelist_senders
tls-certificate-file=/var/qmail/control/servercert.pem


Sam Clippinger wrote:
That's probably all that needs to happen.  I don't have a copy of the 
QTP spamdyke configuration file handy, but it should also contain 
local-domains-file lines to load /var/qmail/control/rcpthosts and 
/var/qmail/control/morercpthosts if spamdyke is going to correctly 
handle relaying.


-- Sam Clippinger

Eric Shubert wrote:

Looks like I missed this one, Philip. Thanks for pointing it out.

From what I'm seeing, I simply need to add:
access-file=/etc/tcprules.d/tcp.smtp
to the configuration file. I'm not seeing anything that would change in
the run.spamdyke file. I guess the parameter could be added to either
place, but I'm trying to keep the configuration as cohesive as possible.

Sam, does this look right to you? If so I'll get in in the next QT-Plus
release.

Philip wrote:
 

Thx Sam for clearing up a few things

In that case the spamdyke installation script used by qtp-plus should
maybe add the |access-file| option
and use the /etc/tcprules.d/tcp.smtp as parameters in the 
run.spamdyke file

If ppl had local ips or other ips to prevent rbl checking or allowing
relaying
it has no effect anymore.

Or those ips should be  under some conditions  added to the 
whitelist_ip

file of spamdyke

-P


Sam Clippinger wrote:
   

spamdyke cannot read CDB files but it can read the /etc/tcp.smtp file
(text version) and use some of the values, mostly for controlling
relaying.  For example, if the incoming IP address matches a line that
sets the RELAYCLIENT variable, spamdyke will allow the client to
relay.  See the documentation here:
   http://www.spamdyke.org/documentation/README.html#RELAYING

However, setting a SPAMDYKE variable in /etc/tcp.smtp has no 
effect. spamdyke's configuration is set through its configuration 
file(s), not

the environment.

-- Sam Clippinger

Philip Nix Guru wrote:
 

Heheh
Yes I am using the

whitelist_ip file

you can either enter x.y.z or x.y.z. for a c-class
I was just curious about the tcp.smtp file :)
I know that spamdyke cant use cdb files

-P


Eric Shubert wrote:
   

Philip wrote:
 
 

Hello
I was wondering about how to disable spamdyke by ip range
can we do something like :

1.2.3.:allow,RELAYCLIENT=,RBLSMTPD=,SPAMDYKE=,NOP0FCHECK=1
in tcp.smtp file
or you better add your c-class or any subnet to the whitelist_ip 
file

from spandyke ?

Thx for the info



I don't know of anything like the former. qmail (and thus spamdyke)
doesn't necessarily use tcpserver, so I'd be surprised if this were
available.

I'd look toward the whitelist_ip file. I'm not sure how to 
specify and

IP range there though. Check the documentation.

I'm expect that Sam will chime in here and enlighten us further. ;)

--
-Eric 'shubes'


- 


 QmailToaster hosted by: VR Hosted http://www.vr.org
- 

To unsubscribe, e-mail: 
[EMAIL PROTECTED]

For additional commands, e-mail:
[EMAIL PROTECTED]



-
QmailToaster hosted by: VR Hosted http://www.vr.org
-
To unsubscribe, e-mail: 
[EMAIL PROTECTED]
For additional commands, e-mail: 
[EMAIL PROTECTED]




-
QmailToaster hosted by: VR Hosted http://www.vr.org
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: 
[EMAIL PROTECTED

Re: [qmailtoaster] spamdyke and tcpserver

[Philip Nix Guru]

I added 2 lines and it seems to eb accpeted
local-domains-file=/var/qmail/control/rcpthosts
local-domains-file=/var/qmail/control/morercpthosts

not that I see much differece. was workign without
but the tcp.smtp file is definatly blocking something

I have a few diff ones
but what is stopping spamassassint to pass email looks like this

127.:allow,RELAYCLIENT=,RBLSMTPD=,DKSIGN=/var/qmail/control/domainkeys/%/private,NOP0FCHECK=1
192.168.66.:allow,RELAYCLIENT=,RBLSMTPD=,NOP0FCHECK=1,SENDER_NOCHECK=1
y.z.a.x:allow,RELAYCLIENT=,RBLSMTPD=,NOP0FCHECK=1,MAXCONNIP=10
x.y.z.a:allow,RELAYCLIENT=,RBLSMTPD=,SENDER_NOCHECK=1
2
:allow,BADMIMETYPE=,BADLOADERTYPE=M,CHKUSER_RCPTLIMIT=50,CHKUSER_WRONGRCPTLIMIT=30,DKVERIFY=DEfhIJK,QMAILQUEUE=/var/qmail/bin/simscan,DKQUEUE=/var/qmail/bin/qmail-queue.orig,DKSIGN=/var/qmail/control/domainkeys/%/private,NOP0FCHECK=1,MAXCONNIP=5,RBLTIMEOUT=15,SENDER_NOCHECK=1

If you have an idea ?
Or I ll just put basic things and slowly add the env variables


Philip Nix Guru wrote:
Oh that's bad then coz it definatly doesnt include rcphosts nor 
morercpthosts

Sam how can you add 2 files ?

local-domains-file=/var/qmail/control/rcpthosts then a , a space .. 
/var/qmail/control/morercpthosts ?

in spamdyke.conf


Thx for the info

Sam Clippinger wrote:
That's probably all that needs to happen.  I don't have a copy of the 
QTP spamdyke configuration file handy, but it should also contain 
local-domains-file lines to load /var/qmail/control/rcpthosts and 
/var/qmail/control/morercpthosts if spamdyke is going to correctly 
handle relaying.


-- Sam Clippinger

Eric Shubert wrote:

Looks like I missed this one, Philip. Thanks for pointing it out.

From what I'm seeing, I simply need to add:
access-file=/etc/tcprules.d/tcp.smtp
to the configuration file. I'm not seeing anything that would change in
the run.spamdyke file. I guess the parameter could be added to either
place, but I'm trying to keep the configuration as cohesive as 
possible.


Sam, does this look right to you? If so I'll get in in the next QT-Plus
release.

Philip wrote:
 

Thx Sam for clearing up a few things

In that case the spamdyke installation script used by qtp-plus should
maybe add the |access-file| option
and use the /etc/tcprules.d/tcp.smtp as parameters in the 
run.spamdyke file

If ppl had local ips or other ips to prevent rbl checking or allowing
relaying
it has no effect anymore.

Or those ips should be  under some conditions  added to the 
whitelist_ip

file of spamdyke

-P


Sam Clippinger wrote:
  

spamdyke cannot read CDB files but it can read the /etc/tcp.smtp file
(text version) and use some of the values, mostly for controlling
relaying.  For example, if the incoming IP address matches a line 
that

sets the RELAYCLIENT variable, spamdyke will allow the client to
relay.  See the documentation here:
   http://www.spamdyke.org/documentation/README.html#RELAYING

However, setting a SPAMDYKE variable in /etc/tcp.smtp has no 
effect. spamdyke's configuration is set through its configuration 
file(s), not

the environment.

-- Sam Clippinger

Philip Nix Guru wrote:


Heheh
Yes I am using the

whitelist_ip file

you can either enter x.y.z or x.y.z. for a c-class
I was just curious about the tcp.smtp file :)
I know that spamdyke cant use cdb files

-P


Eric Shubert wrote:
  

Philip wrote:
 


Hello
I was wondering about how to disable spamdyke by ip range
can we do something like :

1.2.3.:allow,RELAYCLIENT=,RBLSMTPD=,SPAMDYKE=,NOP0FCHECK=1
in tcp.smtp file
or you better add your c-class or any subnet to the 
whitelist_ip file

from spandyke ?

Thx for the info



I don't know of anything like the former. qmail (and thus spamdyke)
doesn't necessarily use tcpserver, so I'd be surprised if this were
available.

I'd look toward the whitelist_ip file. I'm not sure how to 
specify and

IP range there though. Check the documentation.

I'm expect that Sam will chime in here and enlighten us further. ;)

--
-Eric 'shubes'


- 


 QmailToaster hosted by: VR Hosted http://www.vr.org
- 

To unsubscribe, e-mail: 
[EMAIL PROTECTED]

For additional commands, e-mail:
[EMAIL PROTECTED]


- 


QmailToaster hosted by: VR Hosted http://www.vr.org
- 

To unsubscribe, e-mail: 
[EMAIL PROTECTED]
For additional commands, e-mail: 
[EMAIL PROTECTED]




-
QmailToaster hosted by: VR Hosted http://www.vr.org
-
To unsubscribe, e-mail: 
[EMAIL PROTECTED]
For additional commands, e-mail: 
[EMAIL PROTECTED

Re: [qmailtoaster] spamdyke and tcpserver

[Philip Nix Guru]

Heheh
Yes I am using the

whitelist_ip file

you can either enter x.y.z or x.y.z. for a c-class
I was just curious about the tcp.smtp file :)
I know that spamdyke cant use cdb files

-P


Eric Shubert wrote:

Philip wrote:
  

Hello
I was wondering about how to disable spamdyke by ip range
can we do something like :

1.2.3.:allow,RELAYCLIENT=,RBLSMTPD=,SPAMDYKE=,NOP0FCHECK=1
in tcp.smtp file
or you better add your c-class or any subnet to the whitelist_ip file
from spandyke ?

Thx for the info




I don't know of anything like the former. qmail (and thus spamdyke)
doesn't necessarily use tcpserver, so I'd be surprised if this were
available.

I'd look toward the whitelist_ip file. I'm not sure how to specify and
IP range there though. Check the documentation.

I'm expect that Sam will chime in here and enlighten us further. ;)

--
-Eric 'shubes'


-
 QmailToaster hosted by: VR Hosted http://www.vr.org
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

  


-
QmailToaster hosted by: VR Hosted http://www.vr.org
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: [qmailtoaster] Stop scanning mail with spamd

[Philip Nix Guru]

Hello
you also need to tell simscan not to check for spam
by disabling it here  /var/qmail/control/simcontrol et rebuilding the 
cdb ( /var/qmail/bin/simscanmk)


Cheers
-P


Kyle Quillen wrote:

Hi all,
 
How do I go about keeping spamd from running it is killing my server 
and making dups go all over the board.  I have 5 new servers coming 
and just need to get this corrected quickly.  Do i just take out the 
spamd portion of my smtp run file?
 
thanks

Q
 


-
QmailToaster hosted by: VR Hosted http://www.vr.org
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: [qmailtoaster] Issue upgrading Spamassassin

[Philip Nix Guru]

perl-5.8.8-10.el5_2.3


Eric Shubert wrote:

What's the perl package you're running (entire version)?
rpm -q perl

Philip wrote:
  

Hi Eric
MakeMaker is the latest 6.44
and perl is 5.8.8
OS is centos 5.2 x86_64 (to be exact it was 5.1 or 5.0 updated to 5.2)

Problem is not MakeMaker, 3.2.4 compiled with same MakeMaker but doesnt
anymore
I didnt have time to check much. too busy those days


Eric Shubert wrote:


Which version of MakeMaker.pl do you have?
(less `locate MakeMaker.pm`)
Which version of perl?

James Palmer wrote:
 
  

Philip,

I also had my CentOS 5 box up to date via CPAN (or at least I thought I
did) and SA 3.2.5 RPM wouldn't build.

After 350Mb of yum updates the rpm then built and installed fine and is
working perfectly!

James


On 15 Jul 2008, at 15:27, Philip wrote:

   


Hi James
the problem is with perl modules
all my centos 5.2 x64 are up2date but I do also update all perl
modules through CPAN including makemaker :)
and that's the issue now, older spam 3.2.4 was compiling, but not
anymore with v1.9205

you can always build it manually.
but for those who prefer the rpm way, it should be fixed

-P


James Palmer wrote:
 
  

Cheers Anil.

Just for everybody's information, I fully upgraded my CentOS 5 box
via yum and now the latest spamassasin-toaster source RPM (3.2.5)
builds, installs and (seems to) work fine.

James



On 14 Jul 2008, at 06:29, Anil Aliyan wrote:

   


James check your mail i have sent it just now.

Regards,

Anil Aliyan
- Original Message - From: James Palmer
[EMAIL PROTECTED]
To: qmailtoaster-list@qmailtoaster.com
Sent: Sunday, July 13, 2008 5:31 PM
Subject: Re: [qmailtoaster] Issue upgrading Spamassassin


 
  

Cheers Philip.
If you could email 3.2.4 to [EMAIL PROTECTED] it'd be appreciated.
Best Regards,
James
-

  QmailToaster hosted by: VR Hosted http://www.vr.org
-

To unsubscribe, e-mail:
[EMAIL PROTECTED]
For additional commands, e-mail:
[EMAIL PROTECTED]




-
  QmailToaster hosted by: VR Hosted http://www.vr.org
-
To unsubscribe, e-mail:
[EMAIL PROTECTED]
For additional commands, e-mail:
[EMAIL PROTECTED]

  
  

-
   QmailToaster hosted by: VR Hosted http://www.vr.org
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail:
[EMAIL PROTECTED]





-
   QmailToaster hosted by: VR Hosted http://www.vr.org
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail:
[EMAIL PROTECTED]

  
  

-
QmailToaster hosted by: VR Hosted http://www.vr.org
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]



  
  

-
QmailToaster hosted by: VR Hosted http://www.vr.org
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]





  


-
QmailToaster hosted by: VR Hosted http://www.vr.org
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: [qmailtoaster] Issue upgrading Spamassassin

[Philip Nix Guru]

James Palmer wrote:

Cheers Erik.

Does anybody have the link to the previous version of SA so I can 
reinstall?



Cheers,

James



-
QmailToaster hosted by: VR Hosted http://www.vr.org
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]


Hi james
I can send you any older version, but unfortunatly, it wont help you
the spec files are the same, beside version number of course
I tested 3.2.4 on some centos boxes I got , and you ll run into the same 
problem


if you want to try, let me know and I ll email you the 3.2.4
Cheers
-P


-
QmailToaster hosted by: VR Hosted http://www.vr.org
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

[qmailtoaster] compilation error with new spamassassin package

[Philip Nix Guru]

Hello
I quickly tried to compile that on a centos 5.2 x64
I will check monday and debug .. I am a bit far from work this weekend :)
package is : spamassassin-toaster-3.2.5-1.3.14.src.rpm
compiled with cnt5064 ...

+ find 
/var/tmp/spamassassin-toaster-root/usr/lib/perl5/vendor_perl/5.8.8/Mail 
/var/tmp/spamassassin-toaster-root/usr/lib/perl5/vendor_perl/5.8.8/spamassassin-run.pod 
-type d -print

+ sed '[EMAIL PROTECTED]/var/tmp/[EMAIL PROTECTED] @g'
+ rm -f /var/tmp/spamassassin-toaster-root/etc/mail/spamassassin/local.cf
+ rm -f /var/tmp/spamassassin-toaster-root/etc/mail/spamassassin/init.pre
+ install -d /var/tmp/spamassassin-toaster-root/etc
+ install -d /var/tmp/spamassassin-toaster-root/etc/cron.hourly
+ install -d /var/tmp/spamassassin-toaster-root/var/qmail/supervise/spamd
+ install -d 
/var/tmp/spamassassin-toaster-root/var/qmail/supervise/spamd/log
+ install -d 
/var/tmp/spamassassin-toaster-root/var/qmail/supervise/spamd/supervise

+ install -d /var/tmp/spamassassin-toaster-root/var/log/qmail
+ install -d /var/tmp/spamassassin-toaster-root/var/log/qmail/spamd
+ rm -f /var/tmp/spamassassin-toaster-root/etc/mail/spamassassin/local.cf
+ rm -f /var/tmp/spamassassin-toaster-root/etc/mail/spamassassin/v310.pre
+ install -m 0644 /usr/src/redhat/SOURCES/qmailtoaster.local.cf.bz2 
/var/tmp/spamassassin-toaster-root/etc/mail/spamassassin/local.cf.bz2
install: cannot create regular file 
`/var/tmp/spamassassin-toaster-root/etc/mail/spamassassin/local.cf.bz2': 
No such file or directory

error: Bad exit status from /var/tmp/rpm-tmp.82090 (%install)


-
QmailToaster hosted by: VR Hosted http://www.vr.org
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: [qmailtoaster] Clamav - Is thre a better way

[Philip Nix Guru]

Install the src.rpm
and check the spec file, that's how it works
then build the rpm or/and the src.rpm from the spec file
something like
rpmbuild -ba --with your_distrib package.spec
that will build binary and source packages

Should be tricial from 93.1 to 93.3
I didnt chekc the spec but prolly just a single version to change in the 
spec file


-P

Richard Baxant wrote:

I ran the rpmbuild command and while compiling it stops to ask for the
file to patch?

On Fri, Jul 11, 2008 at 2:11 PM, Jake Vickers [EMAIL PROTECTED] wrote:
  

Richard Baxant wrote:


Can you clarify on the patching part? I found this patch file in
sources but not sure what changes I need to make on it?

clamav-0.9x.patch.bz2

cd /usr/src/redhat/SOURCES
tar xjvf clamav-0.93.3.tar.bz2
cd clamav-0.93.3
patch  clamav-0.9x.patch.bz2

then rpmbuild process...

  

I don't think you can patch using a .bz2 file; you'd need to unbzip2 it then
apply the patch.  The spec file for the src.rpm should have some notes in it
and detail (by looking at the pre and post sections) what needs to be done.


-
   QmailToaster hosted by: VR Hosted http://www.vr.org
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]





-
 QmailToaster hosted by: VR Hosted http://www.vr.org
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

  



-
QmailToaster hosted by: VR Hosted http://www.vr.org
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

[qmailtoaster] clamav spamassassin updates

[Philip Nix Guru]

Hello

Latest clamav stable is: 0.93.3
Latest spamassassin stable is:3.2.5

I know it takes time to update the packages .. if you need help ask :)
Cheers
-P


-
QmailToaster hosted by: VR Hosted http://www.vr.org
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: [qmailtoaster] SIMSCAN

[Philip Nix Guru]

Hello Gilbert
you can simply run this command :
/var/qmail/bin/simscanmk -g

or you can simply have all the cdb files rebuilt issuing :
/etc/init.d/qmail cdb command  or  of course /usr/bin/qmailctl cdb

-P


Gilbert T. Gutierrez, Jr. wrote:
I sm seeing a descrepancy in my headers.  My question is, how do I 
correct the header to read the correct information or not provide some 
of those details?  Below is what I am seeing.


Headers in Email Received have the following line...

Received: by simscan 1.3.1 ppid: 8009, pid: 8021, t: 0.7548s
scanners: attach: 1.3.1 clamav: 0.90.1-exp/m:46 spam: 3.1.8

The problem is that I am running clamav 0.93.1 and spamassassin 
3.2.4.  Is there a configuration file that holds this information?  I 
know that spamassassin is 3.2.4 because the next line is as follows in 
the header...


X-Spam-Checker-Version: SpamAssassin 3.2.4 (2008-01-01) on
mailsvr.phxinternet.net

Following is my clamav log...
[EMAIL PROTECTED] clamav]# tail freshclam.log
WARNING: Local version: 0.93 Recommended version: 0.93.3
DON'T PANIC! Read http://www.clamav.net/support/faq
main.cld is up to date (version: 47, sigs: 312304, f-level: 31, 
builder: sven)

Downloading daily-7668.cdiff [100%]
daily.cld updated (version: 7668, sigs: 35026, f-level: 33, builder: neo)
WARNING: Your ClamAV installation is OUTDATED!
WARNING: Current functionality level = 29, recommended = 33
DON'T PANIC! Read http://www.clamav.net/support/faq
Database updated (347330 signatures) from db.us.clamav.net (IP: 
64.142.100.50)

--


Thank you,
Gilbert


-
QmailToaster hosted by: VR Hosted http://www.vr.org
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]



-
QmailToaster hosted by: VR Hosted http://www.vr.org
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: [qmailtoaster] libsepol.so.1 with 1/1/2008 patches for CentOS 5 x86_64

[Philip Nix Guru]

Hello
Yiu must change the memory allocated
but to the smtp run file
/var/qmail/supervise/smtp/run
Try exec /usr/bin/softlimit -m 8500 ...

It will work
Cheers
-P


Benjamin O Baez wrote:


Thanks, but that didn't fix the problem.

In answer to an earlier email, I did reboot the server.  The updates 
appliead were about 400+ and look to be update 1 from CentOS.  I 
usually snapshot before an update, but forgot this time.  I will be 
going back to a bare metal backup image of the server.


Thanks,

Ben


*Johannes Weberhofer, Weberhofer GmbH [EMAIL PROTECTED]*

01/09/2008 12:43 AM
Please respond to
qmailtoaster-list@qmailtoaster.com



To
qmailtoaster-list@qmailtoaster.com
cc

Subject
	Re: [qmailtoaster] libsepol.so.1 with 1/1/2008 patches for CentOS 5 
x86_64










Hi Ben,

please check 
http://www.mail-archive.com/qmailtoaster-list@qmailtoaster.com/msg14674.html 
it could be the same issue.


Johannes

Benjamin O Baez schrieb:

 Hi,

 I am running CentOS 5 x86_64 and after a long period of no updates to
 the OS, I decided to install the latest and greatest updates.  I am now
 not getting email and here are the following error messages in log
 /var/log/qmail/smtp/current

 @40004784a6b50e4d0c84 tcpserver: status: 0/100
 @40004784a6b5181daee4 tcpserver: status: 1/100
 @40004784a6b5181daee4 tcpserver: pid 3097 from 64.18.133.125
 @40004784a6b5181daee4 tcpserver: ok 3097
 mta01.biospectra.com:64.142.102.68:25 :64.18.133.125::43529
 @40004784a6b5182b0cc4 /var/qmail/bin/qmail-smtpd: error while
 loading shared libraries: libsepol.so.1: failed to map segment from
 shared object: Cannot allocate memory
 @40004784a6b5182b187c tcpserver: end 3097 status 32512

 Any ideas?

 Thanks,

 Ben

--


|-
|  weberhofer GmbH   | Johannes Weberhofer
|  information technologies
|  Austria, 1080 Wien, Blindengasse 52/3
|
|  Firmenbuch: 225566s, Handelsgericht Wien
|  UID: ATU55277701
|
|  phone : +43 (0)1 5454421 0| email: [EMAIL PROTECTED]
|  fax   : +43 (0)1 5454421 19   | web  : http://weberhofer.at
|  mobile: +43 (0)699 11998315
|---

-
QmailToaster hosted by: VR Hosted http://www.vr.org
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]




-
QmailToaster hosted by: VR Hosted http://www.vr.org
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: [qmailtoaster] DEVEL PACKAGE: Updated ClamAV

[Philip Nix Guru]

Thanks Erik

I ve been running it for almost an hour now, no issue
all seems to be working fine so far, no delay in starting, no extra load ..
smooth :) the way I like it

-P


Erik A. Espinoza wrote:

Hey Everyone,

I have released a new clamav package on the devel site,
http://devel.qmailtoaster.com/.

Thanks,
Erik

-
 QmailToaster hosted by: VR Hosted http://www.vr.org
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

  


-
QmailToaster hosted by: VR Hosted http://www.vr.org
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: [qmailtoaster] Please help me to fix this problem

[Philip Nix Guru]

Do you have a maildirsize file in the account folder ( in the Maildir 
folder)

if so delete it and retry

You have a QT installed with all the stable packages and uptodate ?

Ahmed Shareef wrote:

i have tryed but still same problem
 



 
On 8/19/07, *Philip Nix Guru* [EMAIL PROTECTED] mailto:[EMAIL PROTECTED] 
wrote:


Hi
try to set the quota to NOQUOTA on 1 account to reset it and then set
the quota you want (command line or through qmailadmin)
then see if that fixes your issues

Ahmed Shareef wrote:

 Dear all,



 I have problem in user quote I have more then 40 users all are
getting
 above message

 * *

 *Warning:* Your quota usage is currently 300.0%. To avoid losing any
 email, you should immediately empty out your Trash and Sent folders
 and delete any emails with large attachments.



 *300.0% of 0.0M*

 *Over Quota!** *

 Please help me to fix this problem



 Thanks


-
QmailToaster hosted by: VR Hosted http://www.vr.org
-
To unsubscribe, e-mail:
[EMAIL PROTECTED]
mailto:[EMAIL PROTECTED]
For additional commands, e-mail:
[EMAIL PROTECTED]
mailto:[EMAIL PROTECTED]




-
QmailToaster hosted by: VR Hosted http://www.vr.org
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: [qmailtoaster] Please help me to fix this problem

[Philip Nix Guru]

One more thing how do you add a domain to your system ?
command line or the very bad way using vqadmin? :)



Ahmed Shareef wrote:

i have tryed but still same problem
 



 
On 8/19/07, *Philip Nix Guru* [EMAIL PROTECTED] mailto:[EMAIL PROTECTED] 
wrote:


Hi
try to set the quota to NOQUOTA on 1 account to reset it and then set
the quota you want (command line or through qmailadmin)
then see if that fixes your issues

Ahmed Shareef wrote:

 Dear all,



 I have problem in user quote I have more then 40 users all are
getting
 above message

 * *

 *Warning:* Your quota usage is currently 300.0%. To avoid losing any
 email, you should immediately empty out your Trash and Sent folders
 and delete any emails with large attachments.



 *300.0% of 0.0M*

 *Over Quota!** *

 Please help me to fix this problem



 Thanks


-
QmailToaster hosted by: VR Hosted http://www.vr.org
-
To unsubscribe, e-mail:
[EMAIL PROTECTED]
mailto:[EMAIL PROTECTED]
For additional commands, e-mail:
[EMAIL PROTECTED]
mailto:[EMAIL PROTECTED]




-
QmailToaster hosted by: VR Hosted http://www.vr.org
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: [qmailtoaster] Please help me to fix this problem

[Philip Nix Guru]

You cannot add a domain with qmailadmin ?


Ahmed Shareef wrote:


Today only I have installed qmail server its updated

I have to deleted maildirsize but still same problem

I have add user and domain by using qmailadmin

 


Thanks

 




On 8/19/07, *Philip Nix Guru* [EMAIL PROTECTED] mailto:[EMAIL PROTECTED] 
wrote:


One more thing how do you add a domain to your system ?
command line or the very bad way using vqadmin? :)



Ahmed Shareef wrote:
 i have tryed but still same problem




 On 8/19/07, *Philip Nix Guru*  [EMAIL PROTECTED]
mailto:[EMAIL PROTECTED] mailto: [EMAIL PROTECTED] mailto:[EMAIL 
PROTECTED]
 wrote:

 Hi
 try to set the quota to NOQUOTA on 1 account to reset it and
then set
 the quota you want (command line or through qmailadmin)
 then see if that fixes your issues

 Ahmed Shareef wrote:
 
  Dear all,
 
 
 
  I have problem in user quote I have more then 40 users all are
 getting
  above message
 
  * *
 
  *Warning:* Your quota usage is currently 300.0%. To avoid
losing any
  email, you should immediately empty out your Trash and
Sent folders
  and delete any emails with large attachments.
 
 
 
  *300.0% of 0.0M*
 
  *Over Quota!** *
 
  Please help me to fix this problem
 
 
 
  Thanks
 


-

 QmailToaster hosted by: VR Hosted  http://www.vr.org
http://www.vr.org/

-

 To unsubscribe, e-mail:
 [EMAIL PROTECTED]
mailto:[EMAIL PROTECTED]
 mailto: [EMAIL PROTECTED]
mailto:[EMAIL PROTECTED]
 For additional commands, e-mail:
 [EMAIL PROTECTED]
mailto:[EMAIL PROTECTED]
 mailto: [EMAIL PROTECTED]
mailto:[EMAIL PROTECTED]



-
QmailToaster hosted by: VR Hosted  http://www.vr.org
http://www.vr.org/
-
To unsubscribe, e-mail:
[EMAIL PROTECTED]
mailto:[EMAIL PROTECTED]
For additional commands, e-mail:
[EMAIL PROTECTED]
mailto:[EMAIL PROTECTED]




-
QmailToaster hosted by: VR Hosted http://www.vr.org
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: [qmailtoaster] Please help me to fix this problem

[Philip Nix Guru]

Ok Cool
you can add extra rules and let your server learn .. after a few days it 
will start hitting more spams

try looking here :
http://www.rulesemporium.com
http://saupdates.openprotect.com/
and http://daryl.dostech.ca/sa-update/sare/sare-sa-update-howto.txt

and check the plugins you use
you may find infos in /etc/mail/spamassassin


Ahmed Shareef wrote:
Thanks its working one more thing i need to know about spam i have 
installed but still i am getting spam mail how do i stop
 
 
 
 

 
On 8/19/07, *Philip Nix Guru* [EMAIL PROTECTED] mailto:[EMAIL PROTECTED] 
wrote:


The command line is :

vadddomain: usage: vadddomain [options] virtual_domain [postmaster
password]
options: -v prints the version
-q quota_in_bytes (sets the quota for postmaster account)
-b (bounces all mail that doesn't match a user, default)
-e email_address (forwards all non matching user to this
address [*])
-u user (sets the uid/gid based on a user in /etc/passwd)
-d dir (sets the dir to use for this domain)
-i uid (sets the uid to use for this domain)
-g gid (sets the gid to use for this domain)
-O optimize adding, for bulk adds set this for all
   except the last one
-r[len] (generate a len (default 8) char random postmaster
password)

[*] omit @-sign to deliver directly into user's Maildir: '-e
postmaster'




Ahmed Shareef wrote:
 then i need to add in command line?



 On 8/19/07, *Philip Nix Guru* [EMAIL PROTECTED]
mailto:[EMAIL PROTECTED] mailto: [EMAIL PROTECTED] mailto:[EMAIL 
PROTECTED]
 wrote:

 You cannot add a domain with qmailadmin ?


 Ahmed Shareef wrote:
 
  Today only I have installed qmail server its updated
 
  I have to deleted maildirsize but still same problem
 
  I have add user and domain by using qmailadmin
 
 
 
  Thanks
 
 
 
 
 
  On 8/19/07, *Philip Nix Guru*  [EMAIL PROTECTED]
mailto:[EMAIL PROTECTED]
 mailto: [EMAIL PROTECTED] mailto:[EMAIL PROTECTED]
mailto:[EMAIL PROTECTED] mailto:[EMAIL PROTECTED] mailto:[EMAIL 
PROTECTED]
mailto:[EMAIL PROTECTED]
  wrote:
 
  One more thing how do you add a domain to your system ?
  command line or the very bad way using vqadmin? :)
 
 
 
  Ahmed Shareef wrote:
   i have tryed but still same problem
  
  
  
  
   On 8/19/07, *Philip Nix Guru*  [EMAIL PROTECTED]
mailto:[EMAIL PROTECTED]
 mailto:[EMAIL PROTECTED] mailto:[EMAIL PROTECTED]
  mailto:[EMAIL PROTECTED] mailto:[EMAIL PROTECTED] mailto:
[EMAIL PROTECTED] mailto:[EMAIL PROTECTED] mailto:
 [EMAIL PROTECTED] mailto:[EMAIL PROTECTED] mailto:[EMAIL PROTECTED]
mailto:[EMAIL PROTECTED] mailto: [EMAIL PROTECTED] mailto:[EMAIL 
PROTECTED]
 mailto:[EMAIL PROTECTED] mailto:[EMAIL PROTECTED]
   wrote:
  
   Hi
   try to set the quota to NOQUOTA on 1 account to
reset
 it and
  then set
   the quota you want (command line or through
qmailadmin)
   then see if that fixes your issues
  
   Ahmed Shareef wrote:
   
Dear all,
   
   
   
I have problem in user quote I have more then 40
 users all are
   getting
above message
   
* *
   
*Warning:* Your quota usage is currently
300.0%. To
 avoid
  losing any
email, you should immediately empty out your
Trash and
  Sent folders
and delete any emails with large attachments.
   
   
   
*300.0% of 0.0M*
   
*Over Quota!** *
   
Please help me to fix this problem
   
   
   
Thanks
   
  
  
 

-

   QmailToaster hosted by: VR Hosted 
http://www.vr.org
  http://www.vr.org/
  
 

-

   To unsubscribe, e-mail:
   [EMAIL PROTECTED]
mailto:[EMAIL PROTECTED]
 mailto: [EMAIL PROTECTED

Re: [qmailtoaster] Update clamav and spamassasin

[Philip Nix Guru]

Hello
you may find the explanation here
http://archives.devshed.com/forums/networking-100/rdns-none-and-qmail-2361420.html

but 3.20  3.21 had another very annoying bug, all mails were tagged 
with RDNS_NONE

by all I mean 100% of the mails :)

3.2.23 fixed that issue, to be honest I didnt check the new code about 
the ptr lookups

the -h just asks qmail to to the rdns lookups. some1 has to do it :)

-P


Peter Peltonen wrote:

Hi,

On 8/14/07, Philip [EMAIL PROTECTED] wrote:
  

2. edit smtp run file changing -H into -h



Could you clarify again why this is necessary?

I'm running the latest clamav and spamassassin from the devel site on
i386 without touching the smtp run file and have not notoiced any
problems...

Regards,
Peter

-
 QmailToaster hosted by: VR Hosted http://www.vr.org
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

  


-
QmailToaster hosted by: VR Hosted http://www.vr.org
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: [qmailtoaster] Update clamav and spamassasin

[Philip Nix Guru]

It is only an issue with x86_64
The spec file needs a little tweak

the clamv and spamassassin packages on the dev site work perfect now
clamav .91.1 fixed the slow starting process but you all know that now :)
and spamassassin 3.2.3 fixes a lot of issues in previous versions

and on a side note the combo of those 2 even got my load a little lower 
not that it was ever high even on my very busy smtps
using default plugins + dcc pyzor razor2 pdfinfo imageinfo most of the 
sare rules from the sare.sa-update.dostech.net channel and the

updates.spamassassin.org channel ..
and the tcpserver smtp run file with -h instead of -H ...


If you arent running an x86_64 bits OS, you can upgrade safely
all will be done smoothly.

I have 6 machines running that combo now



Erik A. Espinoza wrote:

Hopefully someone can dig up which perl modules to install via
rpmforge. I posted the list earlier and do not have time to look it up
again in my notes.

Once 1.4 is released, I will modify the documetnation to match as we
will not be supppoting as many distributions.

Erik

On 8/13/07, Harry Zink [EMAIL PROTECTED] wrote:
  

On Aug 13, 2007, at 2:51 PM, aledr wrote:
You must proceed as the first time You compiled the packages:
rpmbuild --rebuild --with distro package.src.rpm

I did that.

After that just use:
rpm -Uvh package.rpm

I did that.

This should do the trick.

It did not - it popped up the three perl module dependencies that I pointed
out earlier.

Then check If all needed perl modules for SpamAssassin are installed

I checked, and all modules are better than what Spamassassin requires. I
think it has to do with x86_64 stuff.

You can (and should) use RBLs (
http://wiki.qmailtoaster.com/index.php/RBLs) and SURBL
(http://wiki.qmailtoaster.com/index.php/SURBL ) to fight
against Spams
Thanks, good advice.






-
 QmailToaster hosted by: VR Hosted http://www.vr.org
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

  


-
QmailToaster hosted by: VR Hosted http://www.vr.org
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: [qmailtoaster] blacklists and tcp.smtp

[Philip Nix Guru]

List Admin wrote:


My second office unfortunately has an Embarq public IP address. That 
IP is listed on dsbl.org. I thought If I add their IP to the tcp.smtp 
file and rebuild it show automatically allow them to send mail through 
the server. It is rejecting all of their mail now.



Hello
use the submission port (587)

problem fixed :)


-
QmailToaster hosted by: VR Hosted http://www.vr.org
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: [qmailtoaster] Send an email to ALL DOMAINS AND ACCOUNTS

[Philip Nix Guru]

Basura wrote:

Hi All,

I want to send an email to every account to let them know how to 
change to port 587 insted of using 25.
How can I send this kind of email. Is there something done to make 
this easily?


Thanks
Federico

-
QmailToaster hosted by: VR Hosted http://www.vr.org
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]


Hello
there is a very fast command for that
vpopbull (~vpopmail/bin/vpopbull)
usage: vpopbull [options] -f [email_file] [virtual_domain] [...]
  -v (print version number)
  -V (verbose)
  -f email_file (file with message contents)
  -e exclude_email_addr_file (list of addresses to exclude)
  -n (don't mail. Use with -V to list accounts)
  -c (default, copy file)
  -h (use hard links)
  -s (use symbolic links)

Create your mail as a txt file (with the appropriate headers)
it works really fast and wont go through your smtp :)
just plain copy in teh right dir of all the accounts, reason why you 
need to set teh headers, like sender, date/time 


-P




-
QmailToaster hosted by: VR Hosted http://www.vr.org
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: [qmailtoaster] CentOS5 x86_64 pop3 auth error

[Philip Nix Guru]

Hello Jordi
stop qmail
use your favorite editor
et edit /var/qmail/supervise/pop3/run
change the 2400 (I think that was default) to 1 for a first try
restart qmail
and retry

It should work now
-P


[EMAIL PROTECTED] wrote:

Hi all,

I've installed qmail-toaster on CentOS 5 x86_64 box. It seems all works
fine, but it seems also de pop3 acces is unavailable. If I try to test the
pop access with a simple telnet, I get the next error:

[EMAIL PROTECTED] ~]$ telnet
telnet open localhost pop3
Trying 127.0.0.1...
Connected to localhost.localdomain (127.0.0.1).
Escape character is '^]'.
+OK [EMAIL PROTECTED]
USER [EMAIL PROTECTED]
+OK
PASS my_password_here
/home/vpopmail/bin/vchkpw: error while loading shared libraries:
libgssapi_krb5.so.2: failed to map segment from shared object: Cannot
allocate memory
-ERR unable to write pipe
Connection closed by foreign host.

I've read the thread
http://www.mail-archive.com/qmailtoaster-list@qmailtoaster.com/msg13097.html
but I don't know how increase the limits. I supose I should use the ulimit
command with /home/vpopmail/bin/vchkpw... but ¿how?

Note that the mail is working fine (this mailbox itself) and the webmail
works perfectly.

Thanks.





-
 QmailToaster hosted by: VR Hosted http://www.vr.org
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

  



-
QmailToaster hosted by: VR Hosted http://www.vr.org
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

[qmailtoaster] SA 3.2

[Philip Nix Guru]

Hello
any eta on the package for SA 3.2 ?

Thx for the effort ...
-P


-
QmailToaster hosted by: VR Hosted http://www.vr.org
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: [qmailtoaster] slow SMTP

[Philip Nix Guru]

Hi Alex
Check your rbl lists
Like I said yesterday if you use opm.blitzed.org you will have such issues
-P

[EMAIL PROTECTED] wrote:

Hello everyone,
My toaster has been running ok until yesterday, the mail client outlook
has failed to send emails out through my toaster. it keep returning an
error connecting to SMTP server. The weired thing is that I have not
changed a thing, well except a plugin I added to squirelweb mail(email
footer to be exact). Email sent through squirrel are delivered fine.
smtp logs dont show any issues.

any ideas??

ALex


-
Celebrating 10 years of Excellence (1997-2007).
   Enter His gates with Thanksgiving
http://www.ucu.ac.ug/


-
 QmailToaster hosted by: VR Hosted http://www.vr.org
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

  



-
QmailToaster hosted by: VR Hosted http://www.vr.org
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: [qmailtoaster] Blocking .pps .ppt

[Philip Nix Guru]

Hello Thiago
how do you block the extension ?
using the /var/qmail/control/simcontrol file ?
In that case .doc has no reason to be blocked if you added
:.pps:.ppt

-P

Thiago - TI - Realeza wrote:

Hello guys...
 
I have a trouble here.
 
I need to block the PowerPoint extension on my toaster, but when I 
block it, .doc and .xls extension had blocked too, because, of course, 
all of them is from the ms office suite. 
 
Is there other way to do that?
 
 
thanks
 
 
Thiago



-
QmailToaster hosted by: VR Hosted http://www.vr.org
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: [qmailtoaster] restore script

[Philip Nix Guru]

Hi Steve
spamd is run with option -u vpopmail
so if you use a user_prefs file it will be here :
/home/vpopmail/.spamassassin/user_prefs

and the rest of your spamassassin config files here :
/etc/mail/spamassassin/

-P

Steve Slowik wrote:

Good question...

Based on the install notebook:

1. The original qmailtoaster installation was installed per the 
*CentOS 4.3  qmailtoaster the easy way* 
http://www.qmailtoaster.com/centos/cnt40/EZ-QmailToaster-CentOS-4.3.txt 
install guide.

2. There may have been one or two upgrades via the upgrade script.

Incoming emails are getting scanned and marked as ***SPAM*** .

Running find / -name user_prefs on the original machine returns:

/root/.spamassassin/user_prefs

Running the same on the new install returns nothing.

Regards, Steve Slowik


Jake Vickers wrote:

Steve Slowik wrote:
I am attempting to move from an older qmailtoaster installation on 
one machine to a new machine running the iso-current installation.


I believe that I am using the latest qtp-backup script on the old 
installation and the latest qtp-restore script on the new machine.


Here is the result:

home/vpopmail/domains/.quotawarn.msg

Restoring spamassassin files
.spamassassin/
.spamassassin/bayes_toks
.spamassassin/auto-whitelist
.spamassassin/bayes_seen
.spamassassin/bayes_journal
.spamassassin/bayes_toks.expire5240
Performing permission/sanity check on spamassassin files

chmod: cannot access `/home/vpopmail/.spamassassin/user_prefs': No 
such file or directory



Was spamassassin installed prior to running the backup?
I'll try and do a test today myself.
Thanks.



-
QmailToaster hosted by: VR Hosted http://www.vr.org
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]




-
QmailToaster hosted by: VR Hosted http://www.vr.org
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: [qmailtoaster] SMTP-AUTH on CentOS 4 does not working - Please help

[Philip Nix Guru]

Hey
you are missing 1 line
at least ...
a sample woule be (to add as last line):
:allow,BADMIMETYPE=,BADLOADERTYPE=M,CHKUSER_RCPTLIMIT=50,CHKUSER_WRONGRCPTLIMIT=10,DKVERIFY=DEfhIJK,QMAILQUEUE=/var/qmail/bin/simscan,DKQUEUE=/var/qmail/bin/qmail-queue.orig,DKSIGN=/var/qmail/control/domainkeys/%/private,NOP0FCHECK=1,MAXCONNIP=8,RBLTIMEOUT=15

Recreate the cdb file of course :)
restart qmail and I think it should be fixed

Miki wrote:

Hi again.
Here is my /etc/tcp.smtp  file:

127.:allow,RELAYCLIENT=
10.10.10.:allow,RELAYCLIENT=
10.10.20.:allow,RELAYCLIENT=


Thanks for help
Miki



On 5/14/07, *Philip* [EMAIL PROTECTED] mailto:[EMAIL PROTECTED] wrote:

Hello
I didnt follow the whole issue
but could you just show us your tcp.smtp file ?


Miki wrote:
 Hi again,
 Users are using email client to send via SMTP server without
 authentication and it's work and that's why anyone can use the SMTP
 which lead to problem.

 And yes, I'm getting too much SPAM until my server is very slow
 although SpamAssassin is installed and work.

 Thanks again.
 Miki

 On 5/14/07, *Johannes Weberhofer, Weberhofer GmbH* 
 [EMAIL PROTECTED] mailto:[EMAIL PROTECTED]
mailto:[EMAIL PROTECTED] mailto:[EMAIL PROTECTED] wrote:

 As the default settings block incoming traffoc from Dynamic
IPs at
 the SMTP port, you must have a fixed IP to do the test this way.

 Johannes

 Jake Vickers schrieb:
  Miki wrote:
  ..
  Any ideas how to enable / check the SMTP-AUTH ?
  Sure. Turn it off and try sending an email outside your
domain.
  What makes you think others are using your machine? You
may just be
  seeing standard spam stuff that we all see.

 --


 |-
 |  weberhofer GmbH   | Johannes Weberhofer
 |  information technologies
 |  Austria, 1080 Wien, Blindengasse 52/3
 |
 |  phone : +43 (0)1 5454421 0| email:
[EMAIL PROTECTED] mailto:[EMAIL PROTECTED]
 mailto: [EMAIL PROTECTED] mailto:[EMAIL PROTECTED]
 |  fax   : +43 (0)1 5454421 19   | web  : http://weberhofer.at
 |  mobile: +43 (0)699 11998315
 |---



-

  QmailToaster hosted by: VR Hosted  http://www.vr.org

-

 To unsubscribe, e-mail:
 [EMAIL PROTECTED]
mailto:[EMAIL PROTECTED]
 mailto: [EMAIL PROTECTED]
mailto:[EMAIL PROTECTED]
 For additional commands, e-mail:
 [EMAIL PROTECTED]
mailto:[EMAIL PROTECTED]
 mailto: [EMAIL PROTECTED]
mailto:[EMAIL PROTECTED]



-
 QmailToaster hosted by: VR Hosted  http://www.vr.org
-
To unsubscribe, e-mail:
[EMAIL PROTECTED]
mailto:[EMAIL PROTECTED]
For additional commands, e-mail:
[EMAIL PROTECTED]
mailto:[EMAIL PROTECTED]





-
QmailToaster hosted by: VR Hosted http://www.vr.org
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: [qmailtoaster] SMTP-AUTH on CentOS 4 does not working - Please help

[Philip Nix Guru]

Hehehe
ok I see the line now :)

Miki wrote:

Opps... here is more, my   /etc/tcprules.d/tcp.smtp file look like this:

127.:allow,RELAYCLIENT=
:allow,BADMIMETYPE=,BADLOADERTYPE=M,CHKUSER_RCPTLIMIT=50,CHKUSER_WRONGRCPTLIMIT=10,QMAILQUEUE=/var/qmail/bin/simscan 


10.10.10.:allow,RELAYCLIENT=
10.10.20.:allow,RELAYCLIENT=

Thanks,
Miki




On 5/14/07, *Philip*  [EMAIL PROTECTED] mailto:[EMAIL PROTECTED] wrote:

Hello
I didnt follow the whole issue
but could you just show us your tcp.smtp file ?


Miki wrote:
 Hi again,
 Users are using email client to send via SMTP server without
 authentication and it's work and that's why anyone can use the SMTP
 which lead to problem.

 And yes, I'm getting too much SPAM until my server is very slow
 although SpamAssassin is installed and work.

 Thanks again.
 Miki

 On 5/14/07, *Johannes Weberhofer, Weberhofer GmbH* 
 [EMAIL PROTECTED] mailto:[EMAIL PROTECTED]
mailto:[EMAIL PROTECTED] mailto:[EMAIL PROTECTED] wrote:

 As the default settings block incoming traffoc from Dynamic
IPs at
 the SMTP port, you must have a fixed IP to do the test this way.

 Johannes

 Jake Vickers schrieb:
  Miki wrote:
  ..
  Any ideas how to enable / check the SMTP-AUTH ?
  Sure. Turn it off and try sending an email outside your
domain.
  What makes you think others are using your machine? You
may just be
  seeing standard spam stuff that we all see.

 --


 |-
 |  weberhofer GmbH   | Johannes Weberhofer
 |  information technologies
 |  Austria, 1080 Wien, Blindengasse 52/3
 |
 |  phone : +43 (0)1 5454421 0| email:
[EMAIL PROTECTED] mailto:[EMAIL PROTECTED]
 mailto:[EMAIL PROTECTED] mailto:[EMAIL PROTECTED]
 |  fax   : +43 (0)1 5454421 19   | web  : http://weberhofer.at
 |  mobile: +43 (0)699 11998315
 |---



-

  QmailToaster hosted by: VR Hosted  http://www.vr.org

-

 To unsubscribe, e-mail:
 [EMAIL PROTECTED]
mailto:[EMAIL PROTECTED]
 mailto: [EMAIL PROTECTED]
mailto:[EMAIL PROTECTED]
 For additional commands, e-mail:
 [EMAIL PROTECTED]
mailto:[EMAIL PROTECTED]
 mailto: [EMAIL PROTECTED]
mailto:[EMAIL PROTECTED]



-
 QmailToaster hosted by: VR Hosted  http://www.vr.org
-
To unsubscribe, e-mail:
[EMAIL PROTECTED]
mailto:[EMAIL PROTECTED]
For additional commands, e-mail:
[EMAIL PROTECTED]
mailto:[EMAIL PROTECTED]





-
QmailToaster hosted by: VR Hosted http://www.vr.org
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: [qmailtoaster] SMTP-AUTH on CentOS 4 does not working - Please help

[Philip Nix Guru]

Sorry I ment
/etc/tcprules.d/tcp.smtp

actually the smtp run file (/var/qmail/supervise/smtp/run) doenst have 
auth forced like the submission (export REQUIRE_AUTH=1)

but it is in the code if you didtn add RELAYCLIENT= in your tcp.smtp file

if you want, message me the ip of your smtp, I ll check if that's in 
open relay

or check any tools on the net ... I doubt it can be open relay

Miki wrote:

Hi again,
the line is in the file /etc/tcprules.d/tcp.smtp not in /etc/tcp.smtp
should I add to /etc/tcp.smtp this:
:/allow,SMTPAUTH= /or :/allow,REQUIREAUTH= ??? to enable the authentication?


Thanks,
Miki
/


On 5/14/07, *Philip Nix Guru* [EMAIL PROTECTED] mailto:[EMAIL PROTECTED] 
wrote:


Hehehe
ok I see the line now :)

Miki wrote:
 Opps... here is more, my   /etc/tcprules.d/tcp.smtp file look
like this:

 127.:allow,RELAYCLIENT=


:allow,BADMIMETYPE=,BADLOADERTYPE=M,CHKUSER_RCPTLIMIT=50,CHKUSER_WRONGRCPTLIMIT=10,QMAILQUEUE=/var/qmail/bin/simscan


 10.10.10.:allow,RELAYCLIENT=
 10.10.20.:allow,RELAYCLIENT=

 Thanks,
 Miki




 On 5/14/07, *Philip*  [EMAIL PROTECTED] mailto:[EMAIL PROTECTED]
mailto:[EMAIL PROTECTED] mailto:[EMAIL PROTECTED] wrote:

 Hello
 I didnt follow the whole issue
 but could you just show us your tcp.smtp file ?


 Miki wrote:
  Hi again,
  Users are using email client to send via SMTP server without
  authentication and it's work and that's why anyone can use
the SMTP
  which lead to problem.
 
  And yes, I'm getting too much SPAM until my server is very
slow
  although SpamAssassin is installed and work.
 
  Thanks again.
  Miki
 
  On 5/14/07, *Johannes Weberhofer, Weberhofer GmbH* 
  [EMAIL PROTECTED] mailto:[EMAIL PROTECTED]
mailto:[EMAIL PROTECTED] mailto:[EMAIL PROTECTED]
 mailto:[EMAIL PROTECTED] mailto:[EMAIL PROTECTED]
mailto:[EMAIL PROTECTED] mailto:[EMAIL PROTECTED] wrote:
 
  As the default settings block incoming traffoc from
Dynamic
 IPs at
  the SMTP port, you must have a fixed IP to do the test
this way.
 
  Johannes
 
  Jake Vickers schrieb:
   Miki wrote:
   ..
   Any ideas how to enable / check the SMTP-AUTH ?
   Sure. Turn it off and try sending an email outside your
 domain.
   What makes you think others are using your machine? You
 may just be
   seeing standard spam stuff that we all see.
 
  --
 
 
  |-
  |  weberhofer GmbH   | Johannes Weberhofer
  |  information technologies
  |  Austria, 1080 Wien, Blindengasse 52/3
  |
  |  phone : +43 (0)1 5454421 0| email:
 [EMAIL PROTECTED] mailto:[EMAIL PROTECTED]
mailto:[EMAIL PROTECTED] mailto:[EMAIL PROTECTED]
  mailto:[EMAIL PROTECTED]
mailto:[EMAIL PROTECTED] mailto: [EMAIL PROTECTED]
mailto:[EMAIL PROTECTED]
  |  fax   : +43 (0)1 5454421 19   | web  :
http://weberhofer.at
  |  mobile: +43 (0)699 11998315
 
|---

 
 
 

-

   QmailToaster hosted by: VR Hosted 
http://www.vr.org
 

-

  To unsubscribe, e-mail:
  [EMAIL PROTECTED]
mailto:[EMAIL PROTECTED]
 mailto:[EMAIL PROTECTED]
mailto:[EMAIL PROTECTED]
  mailto:
[EMAIL PROTECTED]
mailto:[EMAIL PROTECTED]
 mailto:[EMAIL PROTECTED]
mailto:[EMAIL PROTECTED]
  For additional commands, e-mail:
  [EMAIL PROTECTED]
mailto:[EMAIL PROTECTED]
 mailto: [EMAIL PROTECTED]
mailto:[EMAIL PROTECTED]
  mailto: [EMAIL PROTECTED]
mailto:[EMAIL PROTECTED]
 mailto: [EMAIL PROTECTED]
mailto:[EMAIL PROTECTED]
 
 


-

  QmailToaster hosted by: VR Hosted  http://www.vr.org

-

 To unsubscribe, e-mail:
 [EMAIL PROTECTED]
mailto:[EMAIL PROTECTED]
 mailto:[EMAIL PROTECTED]
mailto:[EMAIL PROTECTED]
 For additional commands, e-mail:
 [EMAIL PROTECTED]
mailto:[EMAIL PROTECTED]
 mailto:[EMAIL PROTECTED]
mailto:[EMAIL PROTECTED

Re: [qmailtoaster] SMTP-AUTH on CentOS 4 does not working - Please help

[Philip Nix Guru]

Try any of those :
http://www.checkor.com/
http://www.spamhelp.org/shopenrelay/
http://www.abuse.net/relay.html


etc .-...

Miki wrote:

Hi again,
the line is in the file /etc/tcprules.d/tcp.smtp not in /etc/tcp.smtp
should I add to /etc/tcp.smtp this:
:/allow,SMTPAUTH= /or :/allow,REQUIREAUTH= ??? to enable the authentication?


Thanks,
Miki
/


On 5/14/07, *Philip Nix Guru* [EMAIL PROTECTED] mailto:[EMAIL PROTECTED] 
wrote:


Hehehe
ok I see the line now :)

Miki wrote:
 Opps... here is more, my   /etc/tcprules.d/tcp.smtp file look
like this:

 127.:allow,RELAYCLIENT=


:allow,BADMIMETYPE=,BADLOADERTYPE=M,CHKUSER_RCPTLIMIT=50,CHKUSER_WRONGRCPTLIMIT=10,QMAILQUEUE=/var/qmail/bin/simscan


 10.10.10.:allow,RELAYCLIENT=
 10.10.20.:allow,RELAYCLIENT=

 Thanks,
 Miki




 On 5/14/07, *Philip*  [EMAIL PROTECTED] mailto:[EMAIL PROTECTED]
mailto:[EMAIL PROTECTED] mailto:[EMAIL PROTECTED] wrote:

 Hello
 I didnt follow the whole issue
 but could you just show us your tcp.smtp file ?


 Miki wrote:
  Hi again,
  Users are using email client to send via SMTP server without
  authentication and it's work and that's why anyone can use
the SMTP
  which lead to problem.
 
  And yes, I'm getting too much SPAM until my server is very
slow
  although SpamAssassin is installed and work.
 
  Thanks again.
  Miki
 
  On 5/14/07, *Johannes Weberhofer, Weberhofer GmbH* 
  [EMAIL PROTECTED] mailto:[EMAIL PROTECTED]
mailto:[EMAIL PROTECTED] mailto:[EMAIL PROTECTED]
 mailto:[EMAIL PROTECTED] mailto:[EMAIL PROTECTED]
mailto:[EMAIL PROTECTED] mailto:[EMAIL PROTECTED] wrote:
 
  As the default settings block incoming traffoc from
Dynamic
 IPs at
  the SMTP port, you must have a fixed IP to do the test
this way.
 
  Johannes
 
  Jake Vickers schrieb:
   Miki wrote:
   ..
   Any ideas how to enable / check the SMTP-AUTH ?
   Sure. Turn it off and try sending an email outside your
 domain.
   What makes you think others are using your machine? You
 may just be
   seeing standard spam stuff that we all see.
 
  --
 
 
  |-
  |  weberhofer GmbH   | Johannes Weberhofer
  |  information technologies
  |  Austria, 1080 Wien, Blindengasse 52/3
  |
  |  phone : +43 (0)1 5454421 0| email:
 [EMAIL PROTECTED] mailto:[EMAIL PROTECTED]
mailto:[EMAIL PROTECTED] mailto:[EMAIL PROTECTED]
  mailto:[EMAIL PROTECTED]
mailto:[EMAIL PROTECTED] mailto: [EMAIL PROTECTED]
mailto:[EMAIL PROTECTED]
  |  fax   : +43 (0)1 5454421 19   | web  :
http://weberhofer.at
  |  mobile: +43 (0)699 11998315
 
|---

 
 
 

-

   QmailToaster hosted by: VR Hosted 
http://www.vr.org
 

-

  To unsubscribe, e-mail:
  [EMAIL PROTECTED]
mailto:[EMAIL PROTECTED]
 mailto:[EMAIL PROTECTED]
mailto:[EMAIL PROTECTED]
  mailto:
[EMAIL PROTECTED]
mailto:[EMAIL PROTECTED]
 mailto:[EMAIL PROTECTED]
mailto:[EMAIL PROTECTED]
  For additional commands, e-mail:
  [EMAIL PROTECTED]
mailto:[EMAIL PROTECTED]
 mailto: [EMAIL PROTECTED]
mailto:[EMAIL PROTECTED]
  mailto: [EMAIL PROTECTED]
mailto:[EMAIL PROTECTED]
 mailto: [EMAIL PROTECTED]
mailto:[EMAIL PROTECTED]
 
 


-

  QmailToaster hosted by: VR Hosted  http://www.vr.org

-

 To unsubscribe, e-mail:
 [EMAIL PROTECTED]
mailto:[EMAIL PROTECTED]
 mailto:[EMAIL PROTECTED]
mailto:[EMAIL PROTECTED]
 For additional commands, e-mail:
 [EMAIL PROTECTED]
mailto:[EMAIL PROTECTED]
 mailto:[EMAIL PROTECTED]
mailto:[EMAIL PROTECTED]




-
 QmailToaster hosted by: VR Hosted http://www.vr.org
-
To unsubscribe, e-mail:
[EMAIL PROTECTED]
mailto:[EMAIL PROTECTED]
For additional

Re: [qmailtoaster] SMTP-AUTH on CentOS 4 does not working - Please help

[Philip Nix Guru]

Miki
it is forced on port 587
and on port 25 you can change behaviour using tcp.smtp file

a foreign user cant relay through your smtp
if the ip he is connecting to your smtp isnt listed in yout tcp.smtp 
file with a RELAYCLIENT= like you did for your internal ips

that's the default QMT behavior.

If users didtn have to use auth, your server would be an open relay :)



Miki wrote:

Hi thanks for your help,
but first of all I want to enable SMTP authentication so users need 
username and password to be able to send email through this server.


Thanks,
Miki

On 5/14/07, *Philip Nix Guru* [EMAIL PROTECTED] mailto:[EMAIL PROTECTED] 
wrote:


Try any of those :
http://www.checkor.com/
http://www.spamhelp.org/shopenrelay/
http://www.abuse.net/relay.html http://www.abuse.net/relay.html


etc .-...

Miki wrote:
 Hi again,
 the line is in the file /etc/tcprules.d/tcp.smtp not in
/etc/tcp.smtp
 should I add to /etc/tcp.smtp this:
 :/allow,SMTPAUTH= /or :/allow,REQUIREAUTH= ??? to enable the
authentication?


 Thanks,
 Miki
 /


 On 5/14/07, *Philip Nix Guru* [EMAIL PROTECTED]
mailto:[EMAIL PROTECTED] mailto:[EMAIL PROTECTED] mailto:[EMAIL PROTECTED] 

 wrote:

 Hehehe
 ok I see the line now :)

 Miki wrote:
  Opps... here is more, my   /etc/tcprules.d/tcp.smtp file look
 like this:
 
  127.:allow,RELAYCLIENT=
 

:allow,BADMIMETYPE=,BADLOADERTYPE=M,CHKUSER_RCPTLIMIT=50,CHKUSER_WRONGRCPTLIMIT=10,QMAILQUEUE=/var/qmail/bin/simscan



 
  10.10.10.:allow,RELAYCLIENT=
  10.10.20.:allow,RELAYCLIENT=
 
  Thanks,
  Miki
 
 
 
 
  On 5/14/07, *Philip*  [EMAIL PROTECTED]
mailto:[EMAIL PROTECTED] mailto:[EMAIL PROTECTED] mailto:[EMAIL 
PROTECTED]
 mailto: [EMAIL PROTECTED] mailto:[EMAIL PROTECTED]
mailto:[EMAIL PROTECTED] mailto:[EMAIL PROTECTED] wrote:
 
  Hello
  I didnt follow the whole issue
  but could you just show us your tcp.smtp file ?
 
 
  Miki wrote:
   Hi again,
   Users are using email client to send via SMTP server
without
   authentication and it's work and that's why anyone
can use
 the SMTP
   which lead to problem.
  
   And yes, I'm getting too much SPAM until my server
is very
 slow
   although SpamAssassin is installed and work.
  
   Thanks again.
   Miki
  
   On 5/14/07, *Johannes Weberhofer, Weberhofer GmbH* 
   [EMAIL PROTECTED] mailto:[EMAIL PROTECTED]
mailto:[EMAIL PROTECTED] mailto:[EMAIL PROTECTED]
 mailto: [EMAIL PROTECTED] mailto:[EMAIL PROTECTED]
mailto:[EMAIL PROTECTED] mailto:[EMAIL PROTECTED]
  mailto:[EMAIL PROTECTED]
mailto:[EMAIL PROTECTED] mailto: [EMAIL PROTECTED]
mailto:[EMAIL PROTECTED]
 mailto:[EMAIL PROTECTED] mailto:[EMAIL PROTECTED]
mailto:[EMAIL PROTECTED] mailto:[EMAIL PROTECTED] wrote:
  
   As the default settings block incoming traffoc from
 Dynamic
  IPs at
   the SMTP port, you must have a fixed IP to do
the test
 this way.
  
   Johannes
  
   Jake Vickers schrieb:
Miki wrote:
..
Any ideas how to enable / check the SMTP-AUTH ?
Sure. Turn it off and try sending an email
outside your
  domain.
What makes you think others are using your
machine? You
  may just be
seeing standard spam stuff that we all see.
  
   --
  
  
   |-
   |  weberhofer GmbH   | Johannes
Weberhofer
   |  information technologies
   |  Austria, 1080 Wien, Blindengasse 52/3
   |
   |  phone : +43 (0)1 5454421 0| email:
  [EMAIL PROTECTED] mailto:[EMAIL PROTECTED]
mailto: [EMAIL PROTECTED] mailto:[EMAIL PROTECTED]
 mailto:[EMAIL PROTECTED] mailto:[EMAIL PROTECTED]
mailto:[EMAIL PROTECTED] mailto:[EMAIL PROTECTED]
   mailto: [EMAIL PROTECTED]
mailto:[EMAIL PROTECTED]
 mailto:[EMAIL PROTECTED] mailto:[EMAIL PROTECTED]
mailto: [EMAIL PROTECTED] mailto:[EMAIL PROTECTED]
 mailto:[EMAIL PROTECTED] mailto:[EMAIL PROTECTED]
   |  fax   : +43 (0)1 5454421 19   | web  :
 http://weberhofer.at http://weberhofer.at
   |  mobile: +43 (0)699 11998315

Re: [qmailtoaster] SMTP-AUTH on CentOS 4 does not working - Please help

[Philip Nix Guru]

Hey Miki
so you are saying your server is an open relay ?
I hope not for you :)
check those links and you ll know straight away
http://www.checkor.com/ and poste the results (hide our ip)  if you just 
have blue, dont worry all is fine



if you dont have a line matching the sender's ip in your tcp.smtp file, 
he cant send through your server w/o beeing authentified;
by default it is smtp auth (if you modded your qmt it could be pop 
before smtp aswell)




Miki wrote:

Hi Philip and again thanks for your great help.

you wrote:
...If users didtn have to use auth, your server would be an open 
relay :) ...



Ok, so how do I enable users to use auth now, and to block this relay?

Thanks again
Miki




On 5/14/07, *Philip Nix Guru* [EMAIL PROTECTED] mailto:[EMAIL PROTECTED] 
wrote:


Miki
it is forced on port 587
and on port 25 you can change behaviour using tcp.smtp file

a foreign user cant relay through your smtp
if the ip he is connecting to your smtp isnt listed in yout tcp.smtp
file with a RELAYCLIENT= like you did for your internal ips
that's the default QMT behavior.

If users didtn have to use auth, your server would be an open relay :)



Miki wrote:
 Hi thanks for your help,
 but first of all I want to enable SMTP authentication so users need
 username and password to be able to send email through this server.

 Thanks,
 Miki

 On 5/14/07, *Philip Nix Guru*  [EMAIL PROTECTED]
mailto:[EMAIL PROTECTED] mailto:[EMAIL PROTECTED] mailto:[EMAIL 
PROTECTED]
 wrote:

 Try any of those :
 http://www.checkor.com/ http://www.checkor.com/
 http://www.spamhelp.org/shopenrelay/
 http://www.abuse.net/relay.html 
http://www.abuse.net/relay.html


 etc .-...

 Miki wrote:
  Hi again,
  the line is in the file /etc/tcprules.d/tcp.smtp not in
 /etc/tcp.smtp
  should I add to /etc/tcp.smtp this:
  :/allow,SMTPAUTH= /or :/allow,REQUIREAUTH= ??? to
enable the
 authentication?
 
 
  Thanks,
  Miki
  /
 
 
  On 5/14/07, *Philip Nix Guru* [EMAIL PROTECTED]
mailto:[EMAIL PROTECTED]
 mailto: [EMAIL PROTECTED] mailto:[EMAIL PROTECTED]
mailto:[EMAIL PROTECTED] mailto:[EMAIL PROTECTED] mailto:[EMAIL 
PROTECTED]
mailto:[EMAIL PROTECTED] 
  wrote:
 
  Hehehe
  ok I see the line now :)
 
  Miki wrote:
   Opps... here is more, my   /etc/tcprules.d/tcp.smtp
file look
  like this:
  
   127.:allow,RELAYCLIENT=
  
 

:allow,BADMIMETYPE=,BADLOADERTYPE=M,CHKUSER_RCPTLIMIT=50,CHKUSER_WRONGRCPTLIMIT=10,QMAILQUEUE=/var/qmail/bin/simscan



 
  
   10.10.10.:allow,RELAYCLIENT=
   10.10.20.:allow,RELAYCLIENT=
  
   Thanks,
   Miki
  
  
  
  
   On 5/14/07, *Philip*  [EMAIL PROTECTED]
mailto:[EMAIL PROTECTED]
 mailto:[EMAIL PROTECTED] mailto:[EMAIL PROTECTED]
mailto:[EMAIL PROTECTED] mailto:[EMAIL PROTECTED] mailto:[EMAIL 
PROTECTED]
mailto:[EMAIL PROTECTED]
  mailto: [EMAIL PROTECTED] mailto:[EMAIL PROTECTED]
mailto:[EMAIL PROTECTED] mailto:[EMAIL PROTECTED]
 mailto:[EMAIL PROTECTED] mailto:[EMAIL PROTECTED] mailto:
[EMAIL PROTECTED] mailto:[EMAIL PROTECTED] wrote:
  
   Hello
   I didnt follow the whole issue
   but could you just show us your tcp.smtp file ?
  
  
   Miki wrote:
Hi again,
Users are using email client to send via SMTP
server
 without
authentication and it's work and that's why anyone
 can use
  the SMTP
which lead to problem.
   
And yes, I'm getting too much SPAM until my server
 is very
  slow
although SpamAssassin is installed and work.
   
Thanks again.
Miki
   
On 5/14/07, *Johannes Weberhofer, Weberhofer
GmbH* 
[EMAIL PROTECTED]
mailto:[EMAIL PROTECTED] mailto:[EMAIL PROTECTED]
mailto:[EMAIL PROTECTED]
 mailto: [EMAIL PROTECTED] mailto:[EMAIL PROTECTED]
mailto:[EMAIL PROTECTED] mailto:[EMAIL PROTECTED]
  mailto: [EMAIL PROTECTED]
mailto:[EMAIL PROTECTED] mailto: [EMAIL PROTECTED]
mailto:[EMAIL PROTECTED]
 mailto:[EMAIL PROTECTED] mailto:[EMAIL PROTECTED]
mailto:[EMAIL PROTECTED] mailto:[EMAIL PROTECTED]
   mailto: [EMAIL PROTECTED]
mailto

Re: [qmailtoaster] SMTP-AUTH on CentOS 4 does not working - Please help

[Philip Nix Guru]

Miki
in your /var/qmail/supervise/smtp/run
what you got for :
TCP_CDB=/etc/tcprules.d/tcp.smtp.cdb ??
does that match what you got ?
and check your tcp.smtp.cdb file
do something like strings /etc/tcprules.d/tcp.smtp.cdb w/o the  of 
course

and check if that matches the 2 lines Warren told you to use

Good luck

Warren (mailing lists) wrote:

Do not delete them all. Leave these lines in there:

127.:allow,RELAYCLIENT=,DKSIGN=/var/qmail/control/domainkeys/%/private 

:allow,BADMIMETYPE=,BADLOADERTYPE=M,CHKUSER_RCPTLIMIT=50,CHKUSER_WRONGRCPTLIMIT=10,DKVERIFY=DEGIJKfh,QMAILQUEUE=/var/qmail/bin/simscan,DKQUEUE=/var/qmail/bin/qmail-queue.orig,DKSIGN=/var/qmail/control/domainkeys/%/private,NOP0FCHECK=1 




Regards,
Warren

Miki wrote:

Hi again,
It's look like that Qmail is ignoring rcpthosts file, it is relay to 
any domain from any domain even after I delete all lines from 
/etc/tcp.smtp and rebuild the cdb file.


Any idea?

Thanks,
Miki



-
QmailToaster hosted by: VR Hosted http://www.vr.org
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]




-
QmailToaster hosted by: VR Hosted http://www.vr.org
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: [qmailtoaster] SMTP-AUTH on CentOS 4 does not working - Please help

[Philip Nix Guru]

if you use the latest qmt
really add this last line (replacing yours starting with :.. )
:allow,BADMIMETYPE=,BADLOADERTYPE=M,CHKUSER_RCPTLIMIT=50,CHKUSER_WRONGRCPTLIMIT=10,DKVERIFY=DEGIJKfh,QMAILQUEUE=/var/qmail/bin/simscan,DKQUEUE=/var/qmail/bin/qmail- 
queue.orig,DKSIGN=/var/qmail/control/domainkeys/%/private,NOP0FCHECK=1


recreate cdb file, restart qmail and your users must auth, it has to 
work that way

qmail is patched with the require_auth patch

But you didnt tell us, is your server an open relay ?
from what it should be
using normal smtp port
users from 10.10.10.0/24 and 10.10.20.0/24 can send email through your 
server (no need to auth)

localhost same ..
But all the others cant and need to auth
Otherwise your server is an open relay


Miki wrote:

Hi,
In my /var/qmail/supervise/smtp/run:
TCP_CDB=/etc/tcprules.d/tcp.smtp.cdb

[EMAIL PROTECTED]:~% strings /etc/tcprules.d/tcp.smtp.cdb
127.+RELAYCLIENT=
+BADMIMETYPE=
+BADLOADERTYPE=M
+CHKUSER_RCPTLIMIT=50
+CHKUSER_WRONGRCPTLIMIT=10
+QMAILQUEUE=/var/qmail/bin/simscan
10.10.10.+RELAYCLIENT=
10.10.20.+RELAYCLIENT=


Thanks,
Miki



On 5/14/07, *Philip Nix Guru* [EMAIL PROTECTED] mailto:[EMAIL PROTECTED] 
wrote:


Miki
in your /var/qmail/supervise/smtp/run
what you got for :
TCP_CDB=/etc/tcprules.d/tcp.smtp.cdb ??
does that match what you got ?
and check your tcp.smtp.cdb file
do something like strings /etc/tcprules.d/tcp.smtp.cdb w/o the
 of
course
and check if that matches the 2 lines Warren told you to use

Good luck

Warren (mailing lists) wrote:
 Do not delete them all. Leave these lines in there:


127.:allow,RELAYCLIENT=,DKSIGN=/var/qmail/control/domainkeys/%/private




:allow,BADMIMETYPE=,BADLOADERTYPE=M,CHKUSER_RCPTLIMIT=50,CHKUSER_WRONGRCPTLIMIT=10,DKVERIFY=DEGIJKfh,QMAILQUEUE=/var/qmail/bin/simscan,DKQUEUE=/var/qmail/bin/qmail-
queue.orig,DKSIGN=/var/qmail/control/domainkeys/%/private,NOP0FCHECK=1



 Regards,
 Warren

 Miki wrote:
 Hi again,
 It's look like that Qmail is ignoring rcpthosts file, it is
relay to
 any domain from any domain even after I delete all lines from
 /etc/tcp.smtp and rebuild the cdb file.

 Any idea?

 Thanks,
 Miki



-
 QmailToaster hosted by: VR Hosted http://www.vr.org

-
 To unsubscribe, e-mail:
[EMAIL PROTECTED]
mailto:[EMAIL PROTECTED]
 For additional commands, e-mail:
[EMAIL PROTECTED]
mailto:[EMAIL PROTECTED]



-
 QmailToaster hosted by: VR Hosted http://www.vr.org
http://www.vr.org
-
To unsubscribe, e-mail:
[EMAIL PROTECTED]
mailto:[EMAIL PROTECTED]
For additional commands, e-mail:
[EMAIL PROTECTED]
mailto:[EMAIL PROTECTED]





-
QmailToaster hosted by: VR Hosted http://www.vr.org
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: [qmailtoaster] availibility clamav 0.90.2 ?

[Philip Nix Guru]

Johannes Weberhofer, Weberhofer GmbH wrote:
I have installed clamav 0.90.2 on several SuSE servers (9.3, 10.1 and 
10.2) and it is running nicely for some days.


Thank you, Nick!

Johannes Weberhofer

slamp slamp wrote:
i just installed this on my server and it seems to be functioning 
fine. dont see any errors.





Hello
I have been very busy to dig into it , but on fc 4  5.
0.90.1 works like a charm 0.90.2 the daemon keeps dying and restarting
whatever the combo of installation you do
remove previous version, remove simscann
installl new clamav, rebuild simscan matching your new clamav which 
should be the optimized procedure
but whatever the order same issues, clamd dies and restarts and you get 
rejected mail in that process.


I could reproduce this on 4 or 5 fc4 and fc5 machines .. no fresh 
installs but updates

so it could be related to fc machines,  even
if I had the issue on a centos 4.4 machine (but that's a test machine 
and I wouldnt really trust it)

but it did work on a new fresh install on a centos 4.4

I hope to find the time to manually compile it and run it standalone and 
see how it behaves ...







-
QmailToaster hosted by: VR Hosted http://www.vr.org
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: [qmailtoaster] Problem with SPAM folder

[Philip Nix Guru]

Hello Guillermo
you need to remove the option in qmailadmin for your other users
and delete the .qmail of that user (check before if he doenst have any 
other options.
in that qmail you should see something like |/var/qmail/bin/preline 
/usr/bin/maildrop -A 'Content-Filter: qmailtoaster' /etc/mail/mailfilter

That's about it

Cheers

Guillermo Villasana wrote:
Hello everyone I have the following problem. I have a client that I 
presume activated the SPAM folder in a previous version where this 
option was available, now I need to remove that option, but I don't 
know where to delete for this domain, which file should I modify and 
what. ( I don't want to enable the spam folder )


Thanks
Terius

-
QmailToaster hosted by: VR Hosted http://www.vr.org
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]




-
QmailToaster hosted by: VR Hosted http://www.vr.org
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: [qmailtoaster] qq soft reject after upgrade

[Philip Nix Guru]

Hello
I did try on 3 different machines (actually the ones I tested were FC5/6 
machines)

the others have a way too heavy traffic to do it in the days

all 3 had that issue


Nick Hemmesch wrote:

Has anyone else had this problem?

Regards,

Nick

  

Ok
I narrowed the problem
the old clamav issue
WARNING: Socket file /tmp/clamd exists. Unclean shutdown?

I had to revert to clamav-toaster-0.90.1-1.3.11
clamav-toaster-0.90.2
http://www.qmailtoaster.com/download/stable/clamav-toaster-0.90.2-1.3.12.src.rpm
broke it


but I will try a few other things ...



Philip wrote:


(sorry resending with another smtp)
Hello
Since I did the upgrade
I am getting a lof of

04-16 11:25:50 connect(): Connection refused
04-16 11:25:50 qmail-smtpd: qq soft reject (mail server temporarily
rejected message


What could trigger this ?

-
QmailToaster hosted by: VR Hosted http://www.vr.org
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]


  

-
 QmailToaster hosted by: VR Hosted http://www.vr.org
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]







-
 QmailToaster hosted by: VR Hosted http://www.vr.org
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

  



-
QmailToaster hosted by: VR Hosted http://www.vr.org
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: [qmailtoaster] qq soft reject after upgrade

[Philip Nix Guru]

Hi Nick
I raised it to 20 but I can try 25 ..
stay tuned :)

Nick Hemmesch wrote:

Hi Philip,

This may not make a difference but, would you set your smtp run softlimit
to 2500, restart qmailtoaster and see if you still have the soft
reject problem.

Regards,

Nick

  

Hi Philip,

If you are having this problem, it is very likely others are going to have
the problem also. I will move 90.1 back on the stable list for now.

Thank you . . .

Regards,

Nick



Hello
I did try on 3 different machines (actually the ones I tested were FC5/6
machines)
the others have a way too heavy traffic to do it in the days

all 3 had that issue


Nick Hemmesch wrote:
  

Has anyone else had this problem?

Regards,

Nick




Ok
I narrowed the problem
the old clamav issue
WARNING: Socket file /tmp/clamd exists. Unclean shutdown?

I had to revert to clamav-toaster-0.90.1-1.3.11
clamav-toaster-0.90.2
http://www.qmailtoaster.com/download/stable/clamav-toaster-0.90.2-1.3.12.src.rpm
broke it


but I will try a few other things ...



Philip wrote:

  

(sorry resending with another smtp)
Hello
Since I did the upgrade
I am getting a lof of

04-16 11:25:50 connect(): Connection refused
04-16 11:25:50 qmail-smtpd: qq soft reject (mail server temporarily
rejected message


What could trigger this ?






-
 QmailToaster hosted by: VR Hosted http://www.vr.org
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

  



-
QmailToaster hosted by: VR Hosted http://www.vr.org
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: [qmailtoaster] qq soft reject after upgrade

[Philip Nix Guru]

Hey Nick
Unfortunatly no difference
even with 2500 as softlimit
the clamd process just restarts like it wasnt started

I will try it on one of my test box later today and manually compile it 
and debug it and we will see


What could be interesting ... if it works on a fresh clean installation 
(even if I removed the package with --nodeps ..)


-P


*04-16 19:46:13 clamd daemon 0.90.2 (OS: linux-gnu, ARCH: i386, CPU: i386)*
04-16 19:46:13 Log file size limited to 1048576 bytes.
04-16 19:46:13 Reading databases from /usr/share/clamav
04-16 19:46:24 Loaded 217928 signatures.
04-16 19:46:24 Unix socket file /tmp/clamd
04-16 19:46:24 Setting connection queue length to 15
04-16 19:46:24 Listening daemon: PID: 5265
04-16 19:46:24 Archive: Archived file size limit set to 10485760 bytes.
04-16 19:46:24 Archive: Recursion level limit set to 8.
04-16 19:46:24 Archive: Files limit set to 1000.
04-16 19:46:24 Archive: Compression ratio limit set to 250.
04-16 19:46:24 Archive support enabled.
04-16 19:46:24 Algorithmic detection enabled.
04-16 19:46:24 Portable Executable support enabled.
04-16 19:46:24 ELF support enabled.
04-16 19:46:24 Mail files support enabled.
04-16 19:46:24 Mail: Recursion level limit set to 64.
04-16 19:46:24 OLE2 support enabled.
04-16 19:46:24 PDF support disabled.
04-16 19:46:24 HTML support enabled.
04-16 19:46:24 Self checking every 1800 seconds.
04-16 19:46:25 
/var/qmail/simscan/1176745584.428047.5397/msg.1176745584.428047.5397: OK
04-16 19:46:25 
/var/qmail/simscan/1176745584.428047.5397/addr.1176745584.428047.5397: OK

04-16 19:46:25 /var/qmail/simscan/1176745584.428047.5397/textfile0: OK
04-16 19:46:29 
/var/qmail/simscan/1176745589.909664.5409/msg.1176745589.909664.5409: OK
04-16 19:46:29 
/var/qmail/simscan/1176745589.909664.5409/addr.1176745589.909664.5409: OK

04-16 19:46:29 /var/qmail/simscan/1176745589.909664.5409/textfile0: OK
04-16 19:46:30 
/var/qmail/simscan/1176745589.244206.5407/addr.1176745589.244206.5407: OK
04-16 19:46:30 
/var/qmail/simscan/1176745589.244206.5407/msg.1176745589.244206.5407: OK

04-16 19:46:30 /var/qmail/simscan/1176745589.244206.5407/textfile0: OK
04-16 19:46:38 /var/qmail/simscan/1176745597.157969.5427/RIBA_1.gif: OK
*04-16 19:46:39 clamd daemon 0.90.2 (OS: linux-gnu, ARCH: i386, CPU: i386)*
04-16 19:46:39 Log file size limited to 1048576 bytes.
04-16 19:46:39 Reading databases from /usr/share/clamav
04-16 19:46:49 Loaded 217928 signatures.
04-16 19:46:49 WARNING: Socket file /tmp/clamd exists. Unclean shutdown? 
Removing...

04-16 19:46:49 Unix socket file /tmp/clamd
04-16 19:46:49 Setting connection queue length to 15
04-16 19:46:49 Listening daemon: PID: 5431
04-16 19:46:49 Archive: Archived file size limit set to 10485760 bytes.
04-16 19:46:49 Archive: Recursion level limit set to 8.
04-16 19:46:49 Archive: Files limit set to 1000.


Nick Hemmesch wrote:

Hi Philip,

This may not make a difference but, would you set your smtp run softlimit
to 2500, restart qmailtoaster and see if you still have the soft
reject problem.

Regards,

Nick

  

Hi Philip,

If you are having this problem, it is very likely others are going to have
the problem also. I will move 90.1 back on the stable list for now.

Thank you . . .

Regards,

Nick



Hello
I did try on 3 different machines (actually the ones I tested were FC5/6
machines)
the others have a way too heavy traffic to do it in the days

all 3 had that issue


Nick Hemmesch wrote:
  

Has anyone else had this problem?

Regards,

Nick




Ok
I narrowed the problem
the old clamav issue
WARNING: Socket file /tmp/clamd exists. Unclean shutdown?

I had to revert to clamav-toaster-0.90.1-1.3.11
clamav-toaster-0.90.2
http://www.qmailtoaster.com/download/stable/clamav-toaster-0.90.2-1.3.12.src.rpm
broke it


but I will try a few other things ...



Philip wrote:

  

(sorry resending with another smtp)
Hello
Since I did the upgrade
I am getting a lof of

04-16 11:25:50 connect(): Connection refused
04-16 11:25:50 qmail-smtpd: qq soft reject (mail server temporarily
rejected message


What could trigger this ?






-
 QmailToaster hosted by: VR Hosted http://www.vr.org
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

  



-
QmailToaster hosted by: VR Hosted http://www.vr.org
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: [qmailtoaster] qq soft reject after upgrade

[Philip Nix Guru]

Hi Igor
I would first check your clamd logs
it you have warning messages, yes it is related to clam-av package

Cheers

Igor Vukotic' wrote:

Hi,
I have a lot's of 

qq soft reject after upgrade
...
messages, is this related?


On 2007.04.16, at 21:16, Philip Nix Guru wrote:


Hi Nick
same results ...
same behavior the daemon thinks the socket is staled and then tries 
to restart it (FixStaleSocket is at yes).. I have to check the code 
and how it is checking if the daemon is running or not

that's probably the issue ...
And set the socket file to another location for testing purpose


If any1 did a fresh new install with 0.90.2 and it works .. it might 
be an upgrade issue

even if in your spec file I didnt see any special requirements



Nick Hemmesch wrote:

Hi Philip,

What happens if you uninstall clamav and simscan, then reinstall those
packages?

Regards,

Nick



Hi Erik,

Thanks a lot . . . I sent you an email off list with additional info.

Regards,

Nick



I will work on the clamav update later this week.
Erik

On 4/16/07, Nick Hemmesch [EMAIL PROTECTED] wrote:


Hi Philip,

I will be out of town for a few days. Hopefully Erik, Eric and Jake
will
be watching this, they are about as good with these problems as 
anyone

I
know.

Regards,

Nick



Hey Nick
Unfortunatly no difference
even with 2500 as softlimit
the clamd process just restarts like it wasnt started

I will try it on one of my test box later today and manually 
compile



it


and debug it and we will see

What could be interesting ... if it works on a fresh clean


installation


(even if I removed the package with --nodeps ..)

-P


*04-16 19:46:13 clamd daemon 0.90.2 (OS: linux-gnu, ARCH: i386, 
CPU:

i386)*
04-16 19:46:13 Log file size limited to 1048576 bytes.
04-16 19:46:13 Reading databases from /usr/share/clamav
04-16 19:46:24 Loaded 217928 signatures.
04-16 19:46:24 Unix socket file /tmp/clamd
04-16 19:46:24 Setting connection queue length to 15
04-16 19:46:24 Listening daemon: PID: 5265
04-16 19:46:24 Archive: Archived file size limit set to 10485760


bytes.


04-16 19:46:24 Archive: Recursion level limit set to 8.
04-16 19:46:24 Archive: Files limit set to 1000.
04-16 19:46:24 Archive: Compression ratio limit set to 250.
04-16 19:46:24 Archive support enabled.
04-16 19:46:24 Algorithmic detection enabled.
04-16 19:46:24 Portable Executable support enabled.
04-16 19:46:24 ELF support enabled.
04-16 19:46:24 Mail files support enabled.
04-16 19:46:24 Mail: Recursion level limit set to 64.
04-16 19:46:24 OLE2 support enabled.
04-16 19:46:24 PDF support disabled.
04-16 19:46:24 HTML support enabled.
04-16 19:46:24 Self checking every 1800 seconds.
04-16 19:46:25
/var/qmail/simscan/1176745584.428047.5397/msg.1176745584.428047.5397: 




OK


04-16 19:46:25
/var/qmail/simscan/1176745584.428047.5397/addr.1176745584.428047.5397: 




OK


04-16 19:46:25 /var/qmail/simscan/1176745584.428047.5397/textfile0:


OK


04-16 19:46:29
/var/qmail/simscan/1176745589.909664.5409/msg.1176745589.909664.5409: 




OK


04-16 19:46:29
/var/qmail/simscan/1176745589.909664.5409/addr.1176745589.909664.5409: 




OK


04-16 19:46:29 /var/qmail/simscan/1176745589.909664.5409/textfile0:


OK


04-16 19:46:30
/var/qmail/simscan/1176745589.244206.5407/addr.1176745589.244206.5407: 




OK


04-16 19:46:30
/var/qmail/simscan/1176745589.244206.5407/msg.1176745589.244206.5407: 




OK


04-16 19:46:30 /var/qmail/simscan/1176745589.244206.5407/textfile0:


OK

04-16 19:46:38 
/var/qmail/simscan/1176745597.157969.5427/RIBA_1.gif:



OK

*04-16 19:46:39 clamd daemon 0.90.2 (OS: linux-gnu, ARCH: i386, 
CPU:

i386)*
04-16 19:46:39 Log file size limited to 1048576 bytes.
04-16 19:46:39 Reading databases from /usr/share/clamav
04-16 19:46:49 Loaded 217928 signatures.
04-16 19:46:49 WARNING: Socket file /tmp/clamd exists. Unclean


shutdown?


Removing...
04-16 19:46:49 Unix socket file /tmp/clamd
04-16 19:46:49 Setting connection queue length to 15
04-16 19:46:49 Listening daemon: PID: 5431
04-16 19:46:49 Archive: Archived file size limit set to 10485760


bytes.


04-16 19:46:49 Archive: Recursion level limit set to 8.
04-16 19:46:49 Archive: Files limit set to 1000.


Nick Hemmesch wrote:


Hi Philip,

This may not make a difference but, would you set your smtp run
softlimit
to 2500, restart qmailtoaster and see if you still have the 
soft

reject problem.

Regards,

Nick




Hi Philip,

If you are having this problem, it is very likely others are 
going



to


have
the problem also. I will move 90.1 back on the stable list for 
now.


Thank you . . .

Regards,

Nick




Hello
I did try on 3 different machines (actually the ones I tested 
were

FC5/6
machines)
the others have a way too heavy traffic to do it in the days

all 3 had that issue


Nick Hemmesch wrote:



Has anyone else had this problem?

Regards,

Nick





Ok
I narrowed the problem
the old clamav issue
WARNING: Socket file /tmp/clamd exists. Unclean shutdown?

I had to revert

Re: [qmailtoaster] qq soft reject after upgrade

[Philip Nix Guru]

Igor,
in your smtp log just before the
qq soft reject
do you see something like :

connect(): Connection refused
qmail-smtpd: qq soft reject (mail server temporarily rejected message 
(#4.3.0)):




Igor Vukotić wrote:
Log file /var/log/qmail/clamd/ looks good, no strange messages, only 
in /var/log/qmail/smtp/

a lots of qq soft reject after upgrade ...

On 2007.04.16, at 21:48, Philip Nix Guru wrote:


Hi Igor
I would first check your clamd logs
it you have warning messages, yes it is related to clam-av package

Cheers

Igor Vukotic' wrote:

Hi,
I have a lot's of 

qq soft reject after upgrade
...
messages, is this related?


On 2007.04.16, at 21:16, Philip Nix Guru wrote:


Hi Nick
same results ...
same behavior the daemon thinks the socket is staled and then tries 
to restart it (FixStaleSocket is at yes).. I have to check the code 
and how it is checking if the daemon is running or not

that's probably the issue ...
And set the socket file to another location for testing purpose


If any1 did a fresh new install with 0.90.2 and it works .. it 
might be an upgrade issue

even if in your spec file I didnt see any special requirements



Nick Hemmesch wrote:

Hi Philip,

What happens if you uninstall clamav and simscan, then reinstall 
those

packages?

Regards,

Nick



Hi Erik,

Thanks a lot . . . I sent you an email off list with additional 
info.


Regards,

Nick



I will work on the clamav update later this week.
Erik

On 4/16/07, Nick Hemmesch [EMAIL PROTECTED] wrote:


Hi Philip,

I will be out of town for a few days. Hopefully Erik, Eric and 
Jake

will
be watching this, they are about as good with these problems as 
anyone

I
know.

Regards,

Nick



Hey Nick
Unfortunatly no difference
even with 2500 as softlimit
the clamd process just restarts like it wasnt started

I will try it on one of my test box later today and manually 
compile



it


and debug it and we will see

What could be interesting ... if it works on a fresh clean


installation


(even if I removed the package with --nodeps ..)

-P


*04-16 19:46:13 clamd daemon 0.90.2 (OS: linux-gnu, ARCH: 
i386, CPU:

i386)*
04-16 19:46:13 Log file size limited to 1048576 bytes.
04-16 19:46:13 Reading databases from /usr/share/clamav
04-16 19:46:24 Loaded 217928 signatures.
04-16 19:46:24 Unix socket file /tmp/clamd
04-16 19:46:24 Setting connection queue length to 15
04-16 19:46:24 Listening daemon: PID: 5265
04-16 19:46:24 Archive: Archived file size limit set to 10485760


bytes.


04-16 19:46:24 Archive: Recursion level limit set to 8.
04-16 19:46:24 Archive: Files limit set to 1000.
04-16 19:46:24 Archive: Compression ratio limit set to 250.
04-16 19:46:24 Archive support enabled.
04-16 19:46:24 Algorithmic detection enabled.
04-16 19:46:24 Portable Executable support enabled.
04-16 19:46:24 ELF support enabled.
04-16 19:46:24 Mail files support enabled.
04-16 19:46:24 Mail: Recursion level limit set to 64.
04-16 19:46:24 OLE2 support enabled.
04-16 19:46:24 PDF support disabled.
04-16 19:46:24 HTML support enabled.
04-16 19:46:24 Self checking every 1800 seconds.
04-16 19:46:25
/var/qmail/simscan/1176745584.428047.5397/msg.1176745584.428047.5397: 




OK


04-16 19:46:25
/var/qmail/simscan/1176745584.428047.5397/addr.1176745584.428047.5397: 




OK

04-16 19:46:25 
/var/qmail/simscan/1176745584.428047.5397/textfile0:



OK


04-16 19:46:29
/var/qmail/simscan/1176745589.909664.5409/msg.1176745589.909664.5409: 




OK


04-16 19:46:29
/var/qmail/simscan/1176745589.909664.5409/addr.1176745589.909664.5409: 




OK

04-16 19:46:29 
/var/qmail/simscan/1176745589.909664.5409/textfile0:



OK


04-16 19:46:30
/var/qmail/simscan/1176745589.244206.5407/addr.1176745589.244206.5407: 




OK


04-16 19:46:30
/var/qmail/simscan/1176745589.244206.5407/msg.1176745589.244206.5407: 




OK

04-16 19:46:30 
/var/qmail/simscan/1176745589.244206.5407/textfile0:



OK

04-16 19:46:38 
/var/qmail/simscan/1176745597.157969.5427/RIBA_1.gif:



OK

*04-16 19:46:39 clamd daemon 0.90.2 (OS: linux-gnu, ARCH: 
i386, CPU:

i386)*
04-16 19:46:39 Log file size limited to 1048576 bytes.
04-16 19:46:39 Reading databases from /usr/share/clamav
04-16 19:46:49 Loaded 217928 signatures.
04-16 19:46:49 WARNING: Socket file /tmp/clamd exists. Unclean


shutdown?


Removing...
04-16 19:46:49 Unix socket file /tmp/clamd
04-16 19:46:49 Setting connection queue length to 15
04-16 19:46:49 Listening daemon: PID: 5431
04-16 19:46:49 Archive: Archived file size limit set to 10485760


bytes.


04-16 19:46:49 Archive: Recursion level limit set to 8.
04-16 19:46:49 Archive: Files limit set to 1000.


Nick Hemmesch wrote:


Hi Philip,

This may not make a difference but, would you set your smtp run
softlimit
to 2500, restart qmailtoaster and see if you still have 
the soft

reject problem.

Regards,

Nick




Hi Philip,

If you are having this problem, it is very likely others are 
going



to


have
the problem also. I will move 90.1 back on the stable list 
for now