Re: [qmailtoaster] a stange problem
Getting back to the original problem (where the message was disappearing)... I can think of 2 possibilities: 1) Her self hatred rule was deleting the message, or 2) My first guess was: her client is using a POP3 interface instead of IMAP, which would delete the message on the server as soon as it was downloaded. I ran into this with 2 clients (the POP part)... the clients were setup as POP3 accidentally (as in: users didn't follow configuration instructions), then the users complained that the web interface view didn't match their home PC view. It took me almost a week of hit and miss guesses before I finally realized it was POP. Since then, after every upgrade, I still go into /var/qmail/supervise and rename pop3 and pop3-ssl to .pop3 .pop3-ssl (the DOTs make the file hidden). This effectively DISABLES the pop3 interface. (BTW: I also allow IMAP (supervise/imap4) access ONLY from the LAN -- forcing outside users to use IMAPS (supervise/imap4-ssl). But I'm admittedly paranoid! ;-)) In the hopes that this helps someone out there... Dan McAllister IT4SOHO, LLC Information Technologies for the Small Office Home Office Jake Vickers wrote: Jim Shupert, Jr. wrote: Friends, here my qmailtoaster is running - what seems to be fine. But I have 1 user who isn't getting mail she I are in the same domain ( everyone else is getting sending OK ) if I send her an email and I look in home/vpopmail/domains/ourDomaineName/herAccntName/MailDir/ cur = empty tmp = empty new/ i will see the email I just sent her. ( i can open it and look at it ) If I go to her client and do a send - recieve she does not get it and it is gone from ' new ' so any thoughts also where does mail go - that is - is there a que place and where is that? Can she the message from webmail? Before her client checks it? If so, then it's something with her client. When a message is marked as read, it gets moved from the new dir, then get's moved to the cur dir, unless the client is set to remove the messages from the server, in which case it's removed. A message is in queue when it comes in (for a brief period of time, like 2-6 seconds as it gets checked for spam and what-not), and when messages are sent that are destined for outside domains. They will then rest in the queue until delivered. Namely /var/qmail/queue/remote somewhere. - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] Use Qmail???
I am guessing that you have 172.25.13 programmed with a 24-bit netmask? (check your /etc/sysconfig/network-scripts/ifcfg-eth* files -- or the appropriate files for your distribution). A 24-bit netmask looks like: 255.255.255.0. If you're NOT specifying a netmask, then you're getting a 16-bit netmask (because of the 172 in your address). If that is the case, try specifying your tcp.smtp rule as: 172.25.:allow,RELAYCLIENT="" Hope this helps... Dan Dan McAllister, President IT4SOHO, LLC 2171 Wrens Way Clearwater, FL 33761 877-IT4SOHO: Toll Free 727-647-7646 In Pinellas 813-464-2093 In Hillsborough 727-507-9435 Fax Only Jack D. Martin Jr. wrote: This is what I put in: 172.25.13.:allow,RELAYCLIENT="" I looked at the Server Log and I got this: @400046800bef11b26b1c tcpserver: pid 32374 from 65.77.22.250 @400046800bef11b8200c tcpserver: ok 32374 proliant1.magicwisp.com:65.77.22.242:25 :65.77.22.250::54847 @400046800bef2463ecf4 CHKUSER accepted sender: from [EMAIL PROTECTED]:: remote ornage.magicwisp.com:unknown:65.77.22.250 rcpt : sender accepted @400046800bef2d8a8be4 CHKUSER rejected relaying: from [EMAIL PROTECTED]:: remote ornage.magicwisp.com:unknown:65.77.22.250 rcpt [EMAIL PROTECTED] : client not allowed to relay @400046800bf02dffbfcc tcpserver: end 32374 status 0 I changed the it to 65.77.22.250:allow,RELAYCLIENT="" Still would not work. What should the tcp.smtp say? -Original Message- From: Natalio Gatti [mailto:[EMAIL PROTECTED]] Sent: Monday, June 25, 2007 12:52 PM To: qmailtoaster-list@qmailtoaster.com Subject: Re: [qmailtoaster] Use Qmail??? On 6/25/07, Jack D. Martin Jr. [EMAIL PROTECTED] wrote: I used the method described by Natalio below - and it works, as long as I am sending emails to my own domain. If the PC in question sends to something off of my domain I get this in the logs: @4000467fe78c00c4a1e4 new msg 2283211 @4000467fe78c00c4f7d4 info msg 2283211: bytes 2386 from [EMAIL PROTECTED] qp 11453 uid 48 @4000467fe78c0248fbdc starting delivery 174: msg 2283211 to remote [EMAIL PROTECTED] @4000467fe78c024926d4 status: local 0/10 remote 1/60 @4000467fe79204c9f1cc delivery 174: failure: User_and_password_not_set,_continuing_without_authentication./65.77.22 .242_does_not_like_recipient./Remote_host_said:_553_sorry,_that_domain _isn't_in_my_list_of_allowed_rcpthosts_(#5.5.3_-_chkuser)/Giving_up_on _65.77.22.242./ @4000467fe79205af44d4 status: local 0/10 remote 0/60 @4000467fe79206d43cd4 bounce msg 2283211 qp 11457 @4000467fe79206d45ffc end msg 2283211 Any ideas? It seems that your old server isn't relaying your new server. Did you config tcp.smtp with RELAYCLIENT="" in your old server? Natalio - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] emails stuck in the outbox
Erik: as regards your suggestion RE antivirus, we have a corporate AV provider (F-Secure) -- so all users are using the F-Secure Client 7.0 -- and none other has this problem, saving the one user (I'll call him RL)... Also, he (RL) is using the same AV product (physically the same laptop) at both locations -- works one place, but not the other. I'm beginning to think that this may be an Outlook 2000 issue... As Erik does, I have over 200 users using all types of email clients -- I've just polled my log files, and RL is the only user I've found yet still using Office 2000. Given that Office 2007 Standard Upgrade is only $200, I think I'll recommend it. Of course, if that doesn't resolve the issue, I'll owe the employee $200 for making him buy software he didn't need! c'est la vie... Hope everyone has a great weekend! Ciao! Dan McAllister, President IT4SOHO, LLC 2171 Wrens Way Clearwater, FL 33761 877-IT4SOHO: Toll Free 727-647-7646 In Pinellas 813-464-2093 In Hillsborough 727-507-9435 Fax Only Erik A. Espinoza wrote: I have about a hundred Outlook users on a Toaster and haven't experienced any issues. Please take screenshots of all of the smtp settings and mail them to me (offlist if you prefer). Also please let me know which version of Outlook? All of my users are XP, 2003 and 2007. Thanks, Erik On 7/5/07, dnk [EMAIL PROTECTED] wrote: Hi there, I am not sure (yet) if this is a toaster issue or not, but it seems any users I have on outlook have an issue with their outbound email sitting in the outbox. Even with sending and receiving This only seems to happen on a toaster when the client is Outlook. If I connect using a different mail client - all works good. But on the same note - if the same outlook client connects to another (non toaster) mail server - all is ok. On occasion, I will get an error about how my mail server does not support SSL (even though it does and the services are on). I double checked the logs, and nothing seems odd in there. Next time i get the actual error (not consistent) I will post it d - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] local root account
You probably aren't wanting these (crontabs) in a separate "root" account anyways, so save yourself the trouble of setting up mail aliases for root... Step 1) Set your crontab to send emails to YOU (root is just a default) Place the line below near the top of your /etc/crontab file (filename may be different for some distributions -- mine is Fedora / CentOS / RedHat ES) [EMAIL PROTECTED] DON'T FORGET to make cron re-read the config file (I use a HUP signal with "pkill -HUP crond", some might restart the service) Step 2) Make sure that mail you send from the command line is formatted correctly. This usually implies making sure the following files (in /var/qmail/control) are correct: me should be your FQDN (on the Internet, not your LAN)... e.g.: mail.mydomain.com defaultdomain should be your Internet domain name (not your LAN)... e.g.: mydomain.com defaulthost should be same as me (above) plusdomain should be same as defaultdomain (above) NOTE: When I install a NEW Qmail Toaster, I always have to reset these files, as my host name is a LAN host name, not an Internet one... the toaster build scripts are smart enough to get the settings from my running system. I've got to be smart enough to know that they need to be tweaked! Step 3) Test your settings by sending a CLI mail message to yourself -- you'll have to check the log files to see if/where something went wrong. Try the command line: mail -s "Testing 123" [EMAIL PROTECTED] /dev/null (Note: you may get a warning message that the message body is empty -- that really is OK, as it's what you asked for!) If it works, you'll receive a blank message from "[EMAIL PROTECTED]" with a Subject of "Testing 123" and nothing in the message. If it doesn't work, look at the send log (I use qmlog -- but you can also manually look in /var/log/qmail/send/current) I hope this helps! Dan McAllister, President IT4SOHO, LLC 2171 Wrens Way Clearwater, FL 33761 877-IT4SOHO: Toll Free 727-647-7646 In Pinellas 813-464-2093 In Hillsborough 727-507-9435 Fax Only Janno Sannik wrote: how to verify what's default domain for qmail? A M wrote: by default msgs will go to [EMAIL PROTECTED] mailto:[EMAIL PROTECTED] 2007/7/10, Felipe Ceglia [EMAIL PROTECTED] mailto:[EMAIL PROTECTED]: Hi folks, This may be a dumb question, but how do I setup my server to send service messages (crontab, etc) when I have qmailtoaster installed? I created root and admin aliases, but I got no messages. Thank you, Felipe - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] mailto:[EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] mailto:[EMAIL PROTECTED] -- AM agmsoft(at)gmail.com - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
[qmailtoaster] Domain bouncing mail, vuser says user is fine
OK... this is the 3rd time this has happened to me, and the fix I've used in the past just isn't feasible this time... I've got a domain on a qmail-toaster (I've tried migrating to qtplus, but the sandbox creation always fails because of the symbolic links and additional mounted filesystems (backup and home are on separate drives)... but that's another story)... The issue is that after running fine for a while, a domain's mysql database gets reasonably well corrupted. At current, if I do a vdominfo on the domain, it shows what I suspect is an error associated with doing signed arithmetic on an unsigned value, or vice-versa. The number of users is being reported as 2147483647 (which is 7FFF in hex). If I run vuserinfo, all the expected users show just fine, however /something/ in qmail-smtp is reporting that there are no users in the domain (all users are bouncing mail as no mailbox here by that name) -- so I suspect qmail-smtp is using the # of users value and finds it too large. I've had this problem before, but on much smaller domains. Previously, to resolve this problem, I have backed up the old mailboxes, deleted the entire domain (vdeldomain), deleted ALL of the mysql databases (rm -rf /var/lib/mysql/*), re-started mysql (to generate new base databases in /var/lib/mysql), reset the mysql default password, added the vpopmail mysql database, re-added each of the users (plus aliases, forwards, etc.) manually into the vpopmail database, verified correctness, then finally restoring the old mailbox entries. *There has to be a better way! *(With this particular domain, that'll be an all-day project! Over 150 users!) Surely this mysql database entry that has counted the # of users can be fixed somehow WITHOUT starting from scratch! I'm no database guy, but I am a pretty astute Linux (UNIX) admin... so I'm hoping someone out there with the MYSQL knowhow can lead me in the right direction to fix this ASAP! Thanks in advance, Dan Daniel McAllister, President IT4SOHO, LLC 2171 Wrens Way Clearwater, FL 33764 877-IT4SOHO: Toll Free 727-647-7646 In Pinellas 813-464-2093 In Hillsborough 727-507-9435 Fax Only When did you do your last backup? Ask me about unattended backup solutions... to protect your business, not just your data!
Re: [qmailtoaster] Domain bouncing mail, vuser says user is fine -- still a problem
Thanks for the pointer to the tool, Phil... Unfortunately, it appears that the # of users bug is a symptom, not the real problem. Using navicat, I have repaired the # of users entry in the dir_control field. However, my users on this system all remain unable to receive email. (same error) I have also verified (to the best of my limited ability) that the remaining mysql table entries (for dir_control, and the domain) are sane by comparing their entries with another server's tables... The users are able to SEND messages just fine -- it's just their inbound mail that's bouncing. So I believe chkuser is working fine... what I next need to know is what other facility within qmail-smtp could result in this bounce message, and how can I test it to see where its failing? Thanks again in advance for any help! Dan PS: I have to admit -- I'm getting frustrated with the whole qmail-toaster idea -- being a sys-admin for decades, I'm not used to deploying systems that are magic boxes -- I like to know HOW things work (and WHY they work)... but sendmail was a BITCH (always has been), and I was impressed with what other people had said about the toaster. I'm beginning to think I should learn POSTFIX. sigh at least then, when things broke, I'd have some better ideas about where to look and what to tweak! hopefully, someone will show me a DUH item that will restore my faith in the qmail-toaster idea Daniel McAllister, President IT4SOHO, LLC 2171 Wrens Way Clearwater, FL 33764 877-IT4SOHO: Toll Free 727-647-7646 In Pinellas 813-464-2093 In Hillsborough 727-507-9435 Fax Only When did you do your last backup? Ask me about unattended backup solutions... to protect your business, not just your data! Phil Leinhauser wrote: Do a google search for a product called navicat. It's an admin tool MySQL. Once you connect to your MySQL, you'll see the tables. When you right click on a table or group of tables, you have the option to check tables. It will report the state back as ok, crashed, corrupted, etc. On the bad tables, you can right click repair tables. It will then fix any errors it found. I have found Navicat to be a pretty invaluable tool for MySQL. You can get a full feature 30 day demo I think. Phil -Original message- From: Dan McAllister [EMAIL PROTECTED] Date: Mon, 16 Jul 2007 12:29:13 -0400 To: qmailtoaster-list@qmailtoaster.com Subject: [qmailtoaster] Domain bouncing mail, vuser says user is fine OK... this is the 3rd time this has happened to me, and the fix I've used in the past just isn't feasible this time... I've got a domain on a qmail-toaster (I've tried migrating to qtplus, but the sandbox creation always fails because of the symbolic links and additional mounted filesystems (backup and home are on separate drives)... but that's another story)... The issue is that after running fine for a while, a domain's mysql database gets reasonably well corrupted. At current, if I do a vdominfo on the domain, it shows what I suspect is an error associated with doing signed arithmetic on an unsigned value, or vice-versa. The number of users is being reported as 2147483647 (which is 7FFF in hex). If I run vuserinfo, all the expected users show just fine, however /something/ in qmail-smtp is reporting that there are no users in the domain (all users are bouncing mail as no mailbox here by that name) -- so I suspect qmail-smtp is using the # of users value and finds it too large. I've had this problem before, but on much smaller domains. Previously, to resolve this problem, I have backed up the old mailboxes, deleted the entire domain (vdeldomain), deleted ALL of the mysql databases (rm -rf /var/lib/mysql/*), re-started mysql (to generate new base databases in /var/lib/mysql), reset the mysql default password, added the vpopmail mysql database, re-added each of the users (plus aliases, forwards, etc.) manually into the vpopmail database, verified correctness, then finally restoring the old mailbox entries. *There has to be a better way! *(With this particular domain, that'll be an all-day project! Over 150 users!) Surely this mysql database entry that has counted the # of users can be fixed somehow WITHOUT starting from scratch! I'm no database guy, but I am a pretty astute Linux (UNIX) admin... so I'm hoping someone out there with the MYSQL knowhow can lead me in the right direction to fix this ASAP! Thanks in advance, Dan Daniel McAllister, President IT4SOHO, LLC 2171 Wrens Way Clearwater, FL 33764 877-IT4SOHO: Toll Free 727-647-7646 In Pinellas 813-464-2093 In Hillsborough 727-507-9435 Fax Only When did you do your last backup? Ask me about unattended backup solutions... to protect your business, not just your data! - QmailToaster hosted by: VR Hosted http://www.vr.org
Re: [qmailtoaster] Domain bouncing mail, vuser says user is fine -- still a problem
Jake... I DO have a bad habit of reading the documentation -- I use the vqadmin program solely for retrieving passwords when idiot users forget them -- usually the day after they have reset them for some odd reason. In my environment, clients purchase a server and maintenance from me. They are then able to host their own services (web, file, email, etc) on their own server in a kind of black box configuration -- I do all the maintenance, security audits, etc. for them for a monthly fee. Mail accounts (or more correctly, mailboxes) USED to be tied to User accounts -- until I switched to the toaster. A HUGE benefit, if you ask me! However, users cannot host additional domains without calling support (we haven't automated that task yet.) They can edit webpages, and completely manage their email domain (thanks to qmailadmin), but I don't even give them access to toaster-admin, much less vqadmin. When a client asks for a new domain to be hosted on their system, they submit a request via email. At that time, we add the domain to their DNS, create a space for the web pages to be hosted, create an admin account group for the new domain (who are able to edit the web pages), and lastly create the email domain (vadddomain). I actually then add a couple of items: 1) I set the postmaster account to point to MY postmaster account -- I read the postmaster mail for all domains I administer, whether on my own server or a client's 2) I create an admin user mailbox (usually the owner of the company) and set the password to something we've agreed upon earlier 3) I create webmaster and abuse aliases for my own webmaster and abuse email mailboxes (on my own domain) -- same reason as for postmaster 4) I email the client a PDF document that tells them how to log into qmailadmin on their new webpage, how to use THEIR account (not postmaster) and a brief primer on how to create each type of account (mailbox, alias, responder, and list). They can always call for additional support -- but the issues that new users bring up are usually added to our PDF document so we don't have to answer it again! Which brings me back to my current issue... this client is STILL without email this evening, and I'm looking like an idiot because I've checked everything I know how to check... Are there NO CLI diagnostics that can try to find out why (or just as importantly) WHERE qmail-smtp is failing to find the account??? regards... Dan Daniel McAllister, President IT4SOHO, LLC 2171 Wrens Way Clearwater, FL 33764 877-IT4SOHO: Toll Free 727-647-7646 In Pinellas 813-464-2093 In Hillsborough 727-507-9435 Fax Only When did you do your last backup? Ask me about unattended backup solutions... to protect your business, not just your data! Jake Vickers wrote: Helmut Fritz wrote: Jake - wow. I did not know that. I used vqadmin to create my domains and it worked just fine. But that is all I did, create the virtual domains and set the limits for mailboxes, aliases, etc... Then I used qmailadmin to finish things up and create users mailboxes, mail lists, etc. I thought I saw reference to doing it this way either in a mail list thread or in the readme/wiki. Yeah, you can get some strange things by using it. Like the other thread on here that has a corrupted database, with 2147483647 users in the table. Thats one I've reproduced with VqAdmin myself. Best method (which should be on the wiki now, if not email me the incorrect link) is to create the domain via the CLI, and set your limits and such then. Then use qmailadmin to do everything else. - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] Domain bouncing mail, vuser says user is fine -- still a problem
Jake Vickers wrote: Dan McAllister wrote: Jake... I DO have a bad habit of reading the documentation -- I use the vqadmin program solely for retrieving passwords when idiot users forget them -- usually the day after they have reset them for some odd reason. I have no doubt, and hope you do read the sparse docs we've put together. The number 217-whatever is just one that I can reproduce consistently with vqadmin. If you created the domains via the CLI (and I'm assuming the values are correct at that time) and they change later That's an interesting one. Is the mysql DB on a different machine as well? I'm starting to suspect something awry with either a DB being on a different machine, or the filesystems being on a different machine. I know there was an issue with MySQL5 when it came out, and I think the end-result patch just pings the DB every so often to keep the connection alive. Before that everyone was getting cannot connect to DB messages. Most clients have just the one server (most are dual-core Opterons, some dual-CPU/dual-core (4 total cores) Opterons -- most are spec'd to 2GB RAM per core). Those that have multiple servers have added an MS Windoze Server 2000 or 2003 SBS. Even in those instances, the MySQL remains on the Linux server. (My QMail Toasters are running on a Fedora Core 5 derivative -- loads of my own customizations that allow me to sell the server as a service, and remotely administer the system as if it is just 1 instance of the same server over and over again. (Keeps me sane). When a client asks for a new domain to be hosted on their system, they submit a request via email. At that time, we add the domain to their DNS, create a space for the web pages to be hosted, create an admin account group for the new domain (who are able to edit the web pages), and lastly create the email domain (vadddomain). If you're PHP savvy this could be scripted. I have a bash script I use to create new domains for my clients. It asks for the name, number of mailboxes, quota, etc. and then creates it for me. I'm an old-time UNIX guy -- I actually do all those steps in a custom-built BASH script. As such, I'm inclined to leave it as-is now. Make clients call in to add domains so I have more hands-on with them. I actually then add a couple of items: 1) I set the postmaster account to point to MY postmaster account -- I read the postmaster mail for all domains I administer, whether on my own server or a client's 2) I create an admin user mailbox (usually the owner of the company) and set the password to something we've agreed upon earlier 3) I create webmaster and abuse aliases for my own webmaster and abuse email mailboxes (on my own domain) -- same reason as for postmaster 4) I email the client a PDF document that tells them how to log into qmailadmin on their new webpage, how to use THEIR account (not postmaster) and a brief primer on how to create each type of account (mailbox, alias, responder, and list). They can always call for additional support -- but the issues that new users bring up are usually added to our PDF document so we don't have to answer it again! Good ideas. I leave it up to the clients for their bounce messages and what-not. 'Course I also set up and maintain their in-house networks, networks in other states to connect back to the home office, VoIP phone systems, I also do custom projects (http://thebuildercam.com/ as an example, which I built from the ground up in my garage), etc., so I don't feel guilty watching over their stuff as much. My biggest problem right now is AOL. They recently changed their servers, and I chase phantom-bounces all the time for 1 client who checks the mail server for me - 50 times a day. 2 weekends ago he only got 50 emails on a Sunday and was sending me text messages to my phone because he said the email server was broke. He normally averages 150-200 messages a day and figured that 100 or so had gotten lost somewhere. It was just a light day. He didn't know of any emails that actually bounced, but he figured there had to be some. sigh AOL is a pain -- but that's their history! Why run ON the Internet when you can build your own, internally housed, completely customized, uniq Internet all right here! That way you're not hampered by anything like /standards!/ (I think they thought they could out-Microsoft Microsoft -- you know: The E3 Strategy - Embrace, Extend, Exterminate! :-) I also offer a broad range of programs, mostly tailored to small to mid-sized businesses, and specializing in non-centric environments (lots of VPN clients, VoIP phone systems that allow users to roam across the world and still make and receive local calls from the Main Office and the like) all needing high availability and high data security. Which brings me back to my current issue... this client is STILL without email this evening, and I'm looking like an idiot because I've checked everything I know
Re: [qmailtoaster] Domain bouncing mail, vuser says user is fine -- still a problem
I'll put my responses up here this time: 1) Yes, the MySQL server is local (same machine as qmail-toaster) 2) If qmail-send is having trouble looking up names, it must be a MYSQL problem... as root, I can perform the following: # vuserinfo [EMAIL PROTECTED] name: user passwd: $1$OUEk3eHa$14lfEMjiA.tX6nuT1m5.m1 clear passwd: password comment/gecos: My User Name uid:0 gid:0 flags: 0 gecos: My User Name limits: No user limits set. dir: /home/vpopmail/domains/domain.com/user quota: NOQUOTA usage: NOQUOTA last auth: Tue Jul 17 10:23:51 2007 last auth ip: imap (I have removed personal data from the above snippet) Florida definitely has its share of growing pains these days... hard to fathom the folks over in Orlando letting things get so outta hand that the home of Disney World is considered to be too dangerous to raise a family! (You shoulda come to St. Pete/Clearwater! Then again, no -- I don't need the competition! :-)) Daniel McAllister, President IT4SOHO, LLC 2171 Wrens Way Clearwater, FL 33764 877-IT4SOHO: Toll Free 727-647-7646 In Pinellas 813-464-2093 In Hillsborough 727-507-9435 Fax Only When did you do your last backup? Ask me about unattended backup solutions... to protect your business, not just your data! Jake Vickers wrote: Dan McAllister wrote: You can use recordio to see what qmail-smtp is doing, and maybe see where the break is. I've been traveling the last few days so I haven't kept up on the threads much. What OS and version? Behind a NAT firewall or public? Are just the /home and /backup dirs on NFS? Thanks. Turns out the error is now coming from qmail-send (earlier it was qmail-smtp, but the MySQL fix seems to have gotten it thru qmail-smtp and on to qmail-send. The exact error message in QMLOG send is: 2007-07-17 10:06:40.201173500 new msg 2261131 2007-07-17 10:06:40.201177500 info msg 2261131: bytes 1551 from [EMAIL PROTECTED] qp 21254 uid 89 2007-07-17 10:06:40.211859500 starting delivery 9: msg 2261131 to local [EMAIL PROTECTED] 2007-07-17 10:06:40.211864500 status: local 1/10 remote 0/60 2007-07-17 10:06:40.215288500 delivery 9: failure: Sorry,_no_mailbox_here_by_that_name._(#5.1.1)/ 2007-07-17 10:06:40.215294500 status: local 0/10 remote 0/60 2007-07-17 10:06:40.229608500 bounce msg 2261131 qp 21257 2007-07-17 10:06:40.229613500 end msg 2261131 I still missed some details, so if you put them in the email, I apologize. Was the mysql DB on a different machine? It would seem that it's having issues looking up the names in the DB at first glance. Can you turn on recordio and see what exactly is going on? I'll be away from a PC for most of the day, but I'll try and check in later. You're not that far from me. My office is in Orlando, but I'm moving to North Carolina this month. I'll still be in Orlando a couple days a month though, since that's where the bulk of my clients are right now. I realized that a few months back... so you're evacuating to NC like all the rest, eh? My parents left for NC about 10 years ago (outside of Cashiers, NC these days). So many ex-Floridians in NC, they're going to have to build a new Disney up there! :-) Aye. And they don't like Floridians up here, so I neglect to tell them I just moved from there (I'm in Burlington). I'm from Michigan originally, so I'm a true half-back. And let's see Houses are 1/2 the price of Florida... Property taxes are 1/8th, car insurance is 1/3, power bill will be 1/3 (don't need the AC as much.), etc. Orlando's murders are up 137% this year, violent crimes are up 41%, 40% of all drivers are uninsured, 15,000 people a day run red lights (they have cameras that provide this info, but they don't issue tickets by that method yet), it was voted the angriest city in America, the sickest (as far as flu cases and contact/hygiene related illnesses), the 3rd worst as far as traffic congestion in the US, and the list goes on and on. With our son due in October, I wanted to raise him somewhere a little more wholesome if that makes sense.
Re: [qmailtoaster] Domain bouncing mail, vuser says user is fine -- still a problem
Update: I enabled the vpopmail user as a shell account (changed the entry in /etc/passwd, then used su) I tried the vuserinfo command: $vuserinfo [EMAIL PROTECTED] ... and received an identical response. I believe that this effectively shuts down the MySQL error assertion. Unless qmail-send isn't running as the correct user... but I just checked -- qmail-send is running as user qmails as intended (or at least the same as on my other servers). The saga continues, and my clients are getting louder! :( Daniel McAllister, President IT4SOHO, LLC 2171 Wrens Way Clearwater, FL 33764 877-IT4SOHO: Toll Free 727-647-7646 In Pinellas 813-464-2093 In Hillsborough 727-507-9435 Fax Only When did you do your last backup? Ask me about unattended backup solutions... to protect your business, not just your data! Dan McAllister wrote: I'll put my responses up here this time: 1) Yes, the MySQL server is local (same machine as qmail-toaster) 2) If qmail-send is having trouble looking up names, it must be a MYSQL problem... as root, I can perform the following: # vuserinfo [EMAIL PROTECTED] name: user passwd: $1$OUEk3eHa$14lfEMjiA.tX6nuT1m5.m1 clear passwd: password comment/gecos: My User Name uid:0 gid:0 flags: 0 gecos: My User Name limits: No user limits set. dir: /home/vpopmail/domains/domain.com/user quota: NOQUOTA usage: NOQUOTA last auth: Tue Jul 17 10:23:51 2007 last auth ip: imap (I have removed personal data from the above snippet) Florida definitely has its share of growing pains these days... hard to fathom the folks over in Orlando letting things get so outta hand that the home of Disney World is considered to be too dangerous to raise a family! (You shoulda come to St. Pete/Clearwater! Then again, no -- I don't need the competition! :-)) Daniel McAllister, President IT4SOHO, LLC 2171 Wrens Way Clearwater, FL 33764 877-IT4SOHO: Toll Free 727-647-7646 In Pinellas 813-464-2093 In Hillsborough 727-507-9435 Fax Only When did you do your last backup? Ask me about unattended backup solutions... to protect your business, not just your data! Jake Vickers wrote: Dan McAllister wrote: You can use recordio to see what qmail-smtp is doing, and maybe see where the break is. I've been traveling the last few days so I haven't kept up on the threads much. What OS and version? Behind a NAT firewall or public? Are just the /home and /backup dirs on NFS? Thanks. Turns out the error is now coming from qmail-send (earlier it was qmail-smtp, but the MySQL fix seems to have gotten it thru qmail-smtp and on to qmail-send. The exact error message in QMLOG send is: 2007-07-17 10:06:40.201173500 new msg 2261131 2007-07-17 10:06:40.201177500 info msg 2261131: bytes 1551 from [EMAIL PROTECTED] qp 21254 uid 89 2007-07-17 10:06:40.211859500 starting delivery 9: msg 2261131 to local [EMAIL PROTECTED] 2007-07-17 10:06:40.211864500 status: local 1/10 remote 0/60 2007-07-17 10:06:40.215288500 delivery 9: failure: Sorry,_no_mailbox_here_by_that_name._(#5.1.1)/ 2007-07-17 10:06:40.215294500 status: local 0/10 remote 0/60 2007-07-17 10:06:40.229608500 bounce msg 2261131 qp 21257 2007-07-17 10:06:40.229613500 end msg 2261131 I still missed some details, so if you put them in the email, I apologize. Was the mysql DB on a different machine? It would seem that it's having issues looking up the names in the DB at first glance. Can you turn on recordio and see what exactly is going on? I'll be away from a PC for most of the day, but I'll try and check in later. You're not that far from me. My office is in Orlando, but I'm moving to North Carolina this month. I'll still be in Orlando a couple days a month though, since that's where the bulk of my clients are right now. I realized that a few months back... so you're evacuating to NC like all the rest, eh? My parents left for NC about 10 years ago (outside of Cashiers, NC these days). So many ex-Floridians in NC, they're going to have to build a new Disney up there! :-) Aye. And they don't like Floridians up here, so I neglect to tell them I just moved from there (I'm in Burlington). I'm from Michigan originally, so I'm a true half-back. And let's see Houses are 1/2 the price of Florida... Property taxes are 1/8th, car insurance is 1/3, power bill will be 1/3 (don't need the AC as much.), etc. Orlando's murders are up 137% this year, violent crimes are up 41%, 40% of all drivers are uninsured, 15,000 people a day run red lights (they have cameras that provide this info, but they don't issue tickets by that method yet), it was voted the angriest city in America, the sickest (as far as flu cases and contact/hygiene related illnesses), the 3rd worst as far as traffic congestion in the US, and the list goes on and on. With our son due in October, I wanted to raise him somewhere a little more wholesome if that makes sense.
Re: [qmailtoaster] Domain bouncing mail, vuser says user is fine
To my knowledge, it is no longer relied upon (but is apparently checked somewhere, or else the 2^32-1 value in it would be ignored) Dan Daniel McAllister, President IT4SOHO, LLC 2171 Wrens Way Clearwater, FL 33764 877-IT4SOHO: Toll Free 727-647-7646 In Pinellas 813-464-2093 In Hillsborough 727-507-9435 Fax Only When did you do your last backup? Ask me about unattended backup solutions... to protect your business, not just your data! Helmut Fritz wrote: In any case cur_users is always 0 in the DB, regardless of the number of users. is that not odd/wrong? where does the cur_users get pulled from then? or is it actually a deprecated field (well, maybe not officially!) and not used? *From:* A M [mailto:[EMAIL PROTECTED] *Sent:* Tuesday, July 17, 2007 4:05 AM *To:* qmailtoaster-list@qmailtoaster.com *Subject:* Re: [qmailtoaster] Domain bouncing mail, vuser says user is fine OK, cur_users on dir_control, some times, gets maxed up. usualy after adding users if I recall correctly. Not necessarily with vqadmin, but with qmailadmin also (I think). I googled it arround and and didn't get much, so I assumed a vqadmin bug at first. But in some of my systems this happens when adding users to domains. Couldn't trace it to a single point. It's not a every time thing though so I figure some bug between mysql5 and vqadmin. In any case cur_users is always 0 in the DB, regardless of the number of users. 2007/7/17, Jake Vickers [EMAIL PROTECTED] mailto:[EMAIL PROTECTED]: A M wrote: you should install phpMyAdmin. This will allow you to use the interface to edit the values in dir_control table. FWIW I think QMT had this issue since, at least, ver 1.3... prior to that I don't know. The field is allaways 0 but at some point , after qmailadmin I think, it gets maxed out. Can you elaborate on that some? If it's a consistent problem, I was not aware of it. Thanks. -- AM agmsoft(at)gmail.com
Re: [qmailtoaster] Domain bouncing mail, vuser says user is fine -- still a problem
Yes, all users are bouncing... I have opened the MySQL tables in navicat and they look identical to other domains (on other servers) that DO work. I have tried a telnet session -- same result (error message is sent) I have also tried a telnet session to SUBMIT email -- and that works fine! I agree that the large value for number of users is of no consequence, although I reset it to zero already Thanks for the ideas... Daniel McAllister, President IT4SOHO, LLC 2171 Wrens Way Clearwater, FL 33764 877-IT4SOHO: Toll Free 727-647-7646 In Pinellas 813-464-2093 In Hillsborough 727-507-9435 Fax Only When did you do your last backup? Ask me about unattended backup solutions... to protect your business, not just your data! Jean-Paul van de Plasse wrote: Hey Dan, A few questions.. Are all accounts in the domain giving a bounce? When you look in the table beloning to the domain , does it look ok? Have you tried a telnet smtp session ? The mysql 2147483647 (max mysql signed int value) is not the problem if you ask me, I have severall domains with this value and never had any problems with those. JP - Original Message - *From:* Dan McAllister mailto:[EMAIL PROTECTED] *To:* qmailtoaster-list@qmailtoaster.com mailto:qmailtoaster-list@qmailtoaster.com *Sent:* Tuesday, July 17, 2007 5:57 PM *Subject:* Re: [qmailtoaster] Domain bouncing mail, vuser says user is fine -- still a problem Update: I enabled the vpopmail user as a shell account (changed the entry in /etc/passwd, then used su) I tried the vuserinfo command: $vuserinfo [EMAIL PROTECTED] ... and received an identical response. I believe that this effectively shuts down the MySQL error assertion. Unless qmail-send isn't running as the correct user... but I just checked -- qmail-send is running as user qmails as intended (or at least the same as on my other servers). The saga continues, and my clients are getting louder! :( Daniel McAllister, President IT4SOHO, LLC 2171 Wrens Way Clearwater, FL 33764 877-IT4SOHO: Toll Free 727-647-7646 In Pinellas 813-464-2093 In Hillsborough 727-507-9435 Fax Only When did you do your last backup? Ask me about unattended backup solutions... to protect your business, not just your data! Dan McAllister wrote: I'll put my responses up here this time: 1) Yes, the MySQL server is local (same machine as qmail-toaster) 2) If qmail-send is having trouble looking up names, it must be a MYSQL problem... as root, I can perform the following: # vuserinfo [EMAIL PROTECTED] name: user passwd: $1$OUEk3eHa$14lfEMjiA.tX6nuT1m5.m1 clear passwd: password comment/gecos: My User Name uid:0 gid:0 flags: 0 gecos: My User Name limits: No user limits set. dir: /home/vpopmail/domains/domain.com/user quota: NOQUOTA usage: NOQUOTA last auth: Tue Jul 17 10:23:51 2007 last auth ip: imap (I have removed personal data from the above snippet) Florida definitely has its share of growing pains these days... hard to fathom the folks over in Orlando letting things get so outta hand that the home of Disney World is considered to be too dangerous to raise a family! (You shoulda come to St. Pete/Clearwater! Then again, no -- I don't need the competition! :-)) Daniel McAllister, President IT4SOHO, LLC 2171 Wrens Way Clearwater, FL 33764 877-IT4SOHO: Toll Free 727-647-7646 In Pinellas 813-464-2093 In Hillsborough 727-507-9435 Fax Only When did you do your last backup? Ask me about unattended backup solutions... to protect your business, not just your data! Jake Vickers wrote: Dan McAllister wrote: You can use recordio to see what qmail-smtp is doing, and maybe see where the break is. I've been traveling the last few days so I haven't kept up on the threads much. What OS and version? Behind a NAT firewall or public? Are just the /home and /backup dirs on NFS? Thanks. Turns out the error is now coming from qmail-send (earlier it was qmail-smtp, but the MySQL fix seems to have gotten it thru qmail-smtp and on to qmail-send. The exact error message in QMLOG send is: 2007-07-17 10:06:40.201173500 new msg 2261131 2007-07-17 10:06:40.201177500 info msg 2261131: bytes 1551 from [EMAIL PROTECTED] qp 21254 uid 89 2007-07-17 10:06:40.211859500 starting delivery 9: msg 2261131 to local [EMAIL PROTECTED] 2007-07-17 10:06:40.211864500 status: local 1/10 remote 0/60 2007-07-17 10:06:40.215288500 delivery 9: failure: Sorry,_no_mailbox_here_by_that_name._(#5.1.1)/ 2007-07-17 10:06:40.215294500 status: local 0/10 remote 0/60 2007-07-17 10:06:40.229608500 bounce msg 2261131 qp 21257 2007-07-17 10:06:40.229613500 end msg 2261131 I still missed some
Re: [qmailtoaster] Domain bouncing mail, vuser says user is fine -- still a problem
The value of the assign file matches entries on other (working) servers... --- +userdomain.com-:userdomain.com:89:89:/home/vpopmail/domains/userdomain.com:-:: . --- An interesting attempt -- I've never had to examine this file before (didn't even know it existed!) Am curious what its used for Thanks, Dan Daniel McAllister, President IT4SOHO, LLC 2171 Wrens Way Clearwater, FL 33764 877-IT4SOHO: Toll Free 727-647-7646 In Pinellas 813-464-2093 In Hillsborough 727-507-9435 Fax Only When did you do your last backup? Ask me about unattended backup solutions... to protect your business, not just your data! Jake Vickers wrote: Natalio Gatti wrote: The content of /var/qmail/user/assign reflects your current domains? I had a corrupted assign file, which lead me to a similar problem: qmail-smtpd accepted the messages (I guess here is where mysql plays its role), but qmail-send didn't identified them as local accounts. The assign file must be compiled once modified, is a cdb file. It is compiled with qmail-newu. If your assign file is correct, running this command won't affect your installation. Jake, can this command be included in service qmail cdb? I do not see why not. I'll make a note and remind Erik when the new version gets ready to roll. - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] Domain bouncing mail, vuser says user is fine -- still a problem
ummm... I think I inadvertently confused you... I ran vuserinfo as root and got: [EMAIL PROTECTED] ~]# /home/vpopmail/bin/vuserinfo [EMAIL PROTECTED] name: user passwd: $1$OUEk3eHa$14lfEMjiA.tX6nuT1m5.m1 clear passwd: password comment/gecos: My User uid:0 gid:0 flags: 0 gecos: My User limits: No user limits set. dir: /home/vpopmail/domains/clientdomain.com/user quota: NOQUOTA usage: NOQUOTA last auth: Tue Jul 17 12:01:12 2007 last auth ip: imap [EMAIL PROTECTED] ~]# Then I logged in as the user vpopmail: [EMAIL PROTECTED] ~]# su vpopmail [vpopmail@ root]$ /home/vpopmail/bin/vuserinfo [EMAIL PROTECTED] name: user passwd: $1$OUEk3eHa$14lfEMjiA.tX6nuT1m5.m1 clear passwd: password comment/gecos: My User uid:0 gid:0 flags: 0 gecos: My User limits: No user limits set. dir: /home/vpopmail/domains/clientdomain.com/user quota: NOQUOTA usage: NOQUOTA last auth: Tue Jul 17 12:01:12 2007 last auth ip: imap [vpopmail@ root]$ exit When I said it was the same, I meant that it was the same info as when I ran it as root. Sorry for any confusion... Now if you were referring to the password for vpopmail in Linux, there is none (not one on any other client either) (the /etc/shadow entry equivalent is: vpopmail:!!:13542:: which is a non-password. I *DO* change the default root password in MySQL away from the PpAaSsWwOoRrDd or some such default. Dan Daniel McAllister, President IT4SOHO, LLC 2171 Wrens Way Clearwater, FL 33764 877-IT4SOHO: Toll Free 727-647-7646 In Pinellas 813-464-2093 In Hillsborough 727-507-9435 Fax Only When did you do your last backup? Ask me about unattended backup solutions... to protect your business, not just your data! Jake Vickers wrote: Dan McAllister wrote: Update: I enabled the vpopmail user as a shell account (changed the entry in /etc/passwd, then used su) I tried the vuserinfo command: $vuserinfo [EMAIL PROTECTED] ... and received an identical response. I believe that this effectively shuts down the MySQL error assertion. Unless qmail-send isn't running as the correct user... but I just checked -- qmail-send is running as user qmails as intended (or at least the same as on my other servers). The saga continues, and my clients are getting louder! :( You're onto something there That should have worked: [EMAIL PROTECTED] ~]# su vpopmail bash-3.00$ /home/vpopmail/bin/vuserinfo [EMAIL PROTECTED] name: jake passwd: $1$N4y/3gvf$UqT0OapwHml5arTMkXkHg0 clear passwd: none-of-your-business comment/gecos: Jake Vickers uid:0 gid:0 flags: 0 gecos: Jake Vickers limits: No user limits set. dir: /home/vpopmail/domains/v2gnu.com/jake quota: NOQUOTA usage: NOQUOTA last auth: Tue Jul 17 17:09:17 2007 last auth ip: 70.145.239.156 But it does have to read all of that info from mysql. Have you changed the password for vpopmail from the default or anything?
Re: [qmailtoaster] domains were created w GUI not CLI
First rule of computing... (especially software engineering): If it works... DON'T try to fix it! As a former software engineer and manager (spent first 8 years of my career at Cape Canaveral Air Force Station writing Range Safety real-time missile tracking code) I can tell you from experience that this is a HARD lesson to learn! Software updates should be applied ONLY if: - You need the new functionality - Your old software isn't working - You are applying a security patch that fixes a known vulnerability Software updates should NOT be applied if: - The system is working fine as-is - The only reason you want to upgrade is to be at the latest release Hence, the reason my high availability servers are still based off of a Fedora Core 5 install (lots of customization -- but that's where we started). Could I upgrade to FC6 or Fedora7? Sure... but the upgrades are primarily in the GUI -- which I don't even install on servers! If it ain't broke (and FC5 is working great for me) then don't fix it! Just my two-cents worth! Dan Daniel McAllister, President IT4SOHO, LLC 2171 Wrens Way Clearwater, FL 33764 877-IT4SOHO: Toll Free 727-647-7646 In Pinellas 813-464-2093 In Hillsborough 727-507-9435 Fax Only When did you do your last backup? Ask me about unattended backup solutions... to protect your business, not just your data! Jim Shupert, Jr. wrote: lets say I have a friend - who build a QmailToaster and he created his domains NOT with the CLI // example as understand it // home/vpopmail/bin/vadddomain -q 1500 testdomain.com newdomain but rather he... used the GUI http://mailhost.myfriendsdomain.com/mail/vqadmin/toaster.vqadmin to create his domains ( 5 of them ) What might I advise ' my friend' to do... come in this weekend and start over? cross those fingers and hope for the best and watch for...what? what would be the problem? Note ' my firends' email server seems to be operational in all respects and there is much happness in the kingdom. thanks, js
Re: [qmailtoaster] Domain bouncing mail, vuser says user is fine -- still a problem
Just to update you all... I ran out of time... I finally had to un-install and re-install to get the toaster to work again. I tried several half-baked methods, but the only one that worked was to COMPLETELY uninstall qmail-toaster: I spent all night manually writing scripts and backing up data (and the active queues) Everything is working OK now Thanks to all who offered their help Dan --- Daniel McAllister, President IT4SOHO, LLC 2171 Wrens Way Clearwater, FL 33764 877-IT4SOHO: Toll Free 727-647-7646 In Pinellas 813-464-2093 In Hillsborough 727-507-9435 Fax Only When did you do your last backup? Ask me about unattended backup solutions... to protect your business, not just your data! - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] Vmoddomlimits help/clarification
Helmut... I cannot speak for the programmers of vpopmail, but it is common for 0 to be used for the no limit value when populating a field like a Quota value So... what that means is that your vmoddomlimits output correctly shows that there is no limit for your domain. NOTE: If you really wanted to make the domain have a zero limit, you would need to set the value to 1 -- a 1MB limit is effectively always over quota. I hope this helps... Dan Daniel McAllister, President IT4SOHO, LLC 2171 Wrens Way Clearwater, FL 33764 877-IT4SOHO: Toll Free 727-647-7646 In Pinellas 813-464-2093 In Hillsborough 727-507-9435 Fax Only When did you do your last backup? Ask me about unattended backup solutions... to protect your business, not just your data! Helmut Fritz wrote: Nobody, huh??? Is this where the default limits are set? /home/vpopmail/etc/vlimits.default -Original Message- From: Helmut Fritz [mailto:[EMAIL PROTECTED] Sent: Tuesday, July 17, 2007 10:23 AM To: qmailtoaster-list@qmailtoaster.com Subject: [qmailtoaster] Vmoddomlimits help/clarification O.K. - so now I know to use this and not vqadmin. ;) So how do I set no quota? The wiki page shows exactly the same thing as the help for the command: -Q quota-in-megabytes ( set domain disk quota, '100' = 100 MB ) -q quota-in-bytes ( set default user quota, '10M' = 10 MB ) I get this, but I don't want a quota on some domains. I have previously created one with vqadmin and used NOQUOTA, and this is what vmoddomlimits shows when I do a -S (show current settings): [EMAIL PROTECTED] bin]# ./vmoddomlimits -S mydomain.com Domain: mydomain.com -- Max Pop Accounts: 100 Max Aliases: 100 Max Forwards: 100 Max Autoresponders: 100 Max Mailinglists: 100 GID Flags: Flags (for commandline): Flags for non postmaster accounts: pop account:ALLOW_CREATE ALLOW_MODIFY ALLOW_DELETE alias: ALLOW_CREATE ALLOW_MODIFY ALLOW_DELETE forward:ALLOW_CREATE ALLOW_MODIFY ALLOW_DELETE autoresponder: ALLOW_CREATE ALLOW_MODIFY ALLOW_DELETE mailinglist:ALLOW_CREATE ALLOW_MODIFY ALLOW_DELETE mailinglist users: ALLOW_CREATE ALLOW_MODIFY ALLOW_DELETE mailinglist moderators: ALLOW_CREATE ALLOW_MODIFY ALLOW_DELETE quota: ALLOW_CREATE ALLOW_MODIFY ALLOW_DELETE default quota: ALLOW_CREATE ALLOW_MODIFY ALLOW_DELETE Domain Quota: 0 MB Default User Quota: 0 bytes Max Domain Messages: 0 Default Max Messages per User: 0 [EMAIL PROTECTED] bin]# Note that Domain Quota has a 0, as well as default User Quota and # messages. Vqadmin has no facility to set #messages, so I am guessing that is default for every domain I create. Where do I set the defaults for domain/user and bytes/message quotas, as well as the other common settings (#accounts, mailing lists, etc.)? Is there a file these are pulled from that I can modify? What are the proper values for setting no quotas? Is it a 0 for the appropriate option (i.e. '-Q 0' or '-q 0' and '-M 0' and '-m 0')? Are there any pointers on the non-postmaster account flags (the '-g flag' stuff)? What would one use these for? Example? Thx any and all!!! Helmut - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] Vmoddomlimits help/clarification
Halmut... Actually, my point was that I had noted previously that the NOQUOTA entry was being stored in the database as 0 By forcing you to type the value NOQUOTA to enter a 0 into the field, you are hoping to make sure that the user is not of the opinion that 0 means disabled. For example, in QMAILADMIN, you can stop users from using or creating mail lists by limiting the field to 0. I'm not sure how to make it unlimited -- so my add-domain script allows up to 1000 of them. (This is probably an example of where -1 is used, but I don't believe that -1 is recognized as valid in the QMAILADMIN tool. Probably ESPECIALLY because the 0 value has different meanings in different places, the tool requires you to make a NOQUOTA entry in order to force a 0 value into the database. (In reality, the database probably does not allow for a test entry in that field!) The end result of this is, if you're using the CLI, then I don't think you can say NOQUOTA to the vdominfo or vmoddomlimits programs. So, say 0 for the quota values, and you GET a NOQUOTA. I'll check this out later today when I get some time. Dan Daniel McAllister, President IT4SOHO, LLC 2171 Wrens Way Clearwater, FL 33764 877-IT4SOHO: Toll Free 727-647-7646 In Pinellas 813-464-2093 In Hillsborough 727-507-9435 Fax Only When did you do your last backup? Ask me about unattended backup solutions... to protect your business, not just your data! Helmut Fritz wrote: Thx Dan - yeah, I know 0 is often used - but it can be used to disable or set to unlimited. Same with -1. and then in this case we have the NOQUOTA value as well... Aarrgh! :) -Original Message- From: Dan McAllister [mailto:[EMAIL PROTECTED] Sent: Thursday, July 19, 2007 6:17 AM To: qmailtoaster-list@qmailtoaster.com Subject: Re: [qmailtoaster] Vmoddomlimits help/clarification Helmut... I cannot speak for the programmers of vpopmail, but it is common for 0 to be used for the no limit value when populating a field like a Quota value So... what that means is that your vmoddomlimits output correctly shows that there is no limit for your domain. NOTE: If you really wanted to make the domain have a zero limit, you would need to set the value to 1 -- a 1MB limit is effectively always over quota. I hope this helps... Dan Daniel McAllister, President IT4SOHO, LLC 2171 Wrens Way Clearwater, FL 33764 877-IT4SOHO: Toll Free 727-647-7646 In Pinellas 813-464-2093 In Hillsborough 727-507-9435 Fax Only When did you do your last backup? Ask me about unattended backup solutions... to protect your business, not just your data! Helmut Fritz wrote: Nobody, huh??? Is this where the default limits are set? /home/vpopmail/etc/vlimits.default -Original Message- From: Helmut Fritz [mailto:[EMAIL PROTECTED] Sent: Tuesday, July 17, 2007 10:23 AM To: qmailtoaster-list@qmailtoaster.com Subject: [qmailtoaster] Vmoddomlimits help/clarification O.K. - so now I know to use this and not vqadmin. ;) So how do I set no quota? The wiki page shows exactly the same thing as the help for the command: -Q quota-in-megabytes ( set domain disk quota, '100' = 100 MB ) -q quota-in-bytes ( set default user quota, '10M' = 10 MB ) I get this, but I don't want a quota on some domains. I have previously created one with vqadmin and used NOQUOTA, and this is what vmoddomlimits shows when I do a -S (show current settings): [EMAIL PROTECTED] bin]# ./vmoddomlimits -S mydomain.com Domain: mydomain.com -- Max Pop Accounts: 100 Max Aliases: 100 Max Forwards: 100 Max Autoresponders: 100 Max Mailinglists: 100 GID Flags: Flags (for commandline): Flags for non postmaster accounts: pop account:ALLOW_CREATE ALLOW_MODIFY ALLOW_DELETE alias: ALLOW_CREATE ALLOW_MODIFY ALLOW_DELETE forward:ALLOW_CREATE ALLOW_MODIFY ALLOW_DELETE autoresponder: ALLOW_CREATE ALLOW_MODIFY ALLOW_DELETE mailinglist:ALLOW_CREATE ALLOW_MODIFY ALLOW_DELETE mailinglist users: ALLOW_CREATE ALLOW_MODIFY ALLOW_DELETE mailinglist moderators: ALLOW_CREATE ALLOW_MODIFY ALLOW_DELETE quota: ALLOW_CREATE ALLOW_MODIFY ALLOW_DELETE default quota: ALLOW_CREATE ALLOW_MODIFY ALLOW_DELETE Domain Quota: 0 MB Default User Quota: 0 bytes Max Domain Messages: 0 Default Max Messages per User: 0 [EMAIL PROTECTED] bin]# Note that Domain Quota has a 0, as well as default User Quota and # messages. Vqadmin has no facility to set #messages, so I am guessing that is default for every domain I create. Where do I set the defaults for domain/user and bytes/message quotas, as well as the other common settings (#accounts, mailing lists, etc.)? Is there a file these are pulled from that I can modify? What are the proper values for setting no quotas? Is it a 0 for the appropriate option (i.e. '-Q 0' or '-q 0' and '-M 0' and '-m 0')? Are there any pointers on the non-postmaster account flags (the '-g
Re: [qmailtoaster] Upcoming release of QMT-ISO 1.3.1
Jake... Just a quick note... for NTP, there are 4 pools of PUBLIC ntp servers (that is, the DNS name will resolve to a dozen or more addresses) for the US alone. Set your NTP servers to include any or all of the following: 0.us.pool.ntp.org 1.us.pool.ntp.org 2.us.pool.ntp.org 3.us.pool.ntp.org This way, your own time server doesn't have to be public. I've got a new/used (new to me) little Dell 1U server I'm planning to use your QMTISO on as soon as you release the new version. One last quick question -- wasn't there some discussion of some kind of different SPAM protection bantered about recently? Can you fill me in on that proposal? Thanks, Dan PS: How's the move up to the Great White North coming? (in my book, as a native Floridian, the GWN is anything north of I-10!) Daniel McAllister, President IT4SOHO, LLC 2171 Wrens Way Clearwater, FL 33764 877-IT4SOHO: Toll Free 727-647-7646 In Pinellas 813-464-2093 In Hillsborough 727-507-9435 Fax Only When did you do your last backup? Ask me about unattended backup solutions... to protect your business, not just your data! Jake Vickers wrote: I am planning on releasing version 1.3.1 of QMT-ISO next week. I have been fixing a few bugs and adding a few enhancements. I'm currently whipping up a script to set the hostname and change the relevant files like /etc/hosts Anyway, here's the release notes so far: Added script to install webmin-1.350-1 from RPMFIND Added a colorized multitail.conf Added cwatchall to watch all mail logs in color Added updated packages for CentOS and QMT, also trimmed the packages some and made the ISO about 7M smaller Changed the time servers to my time servers for initial sync and turned ntpd on at boot-up Fixed the DomainKeys issue since it has not been removed the packages yet - we now do it the hard way Fixed bug with firewall not being loaded Updated installation so that it does not download QTP unless there is a network connection/new version Let me know if there are any other bugs you've found. You can also send me feature requests - I won't guarantee they'll be in this release (or any release for that matter), but I do read them. Thanks. - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] Is 64BIT OS reliable and fast or not needed?
In response to the question about 64-bit Linux versions stability... I have been running Qmail-Toaster (no plus, not ISO) on Fedora Core 5 for more than a year. The problems I have encountered have been primarily operator error and poor configuration choices (in other words, my own damned fault -- as much as I loathe to admit it). I do still have some concerns about running Qmail in general -- primarily because I don't like black boxes and I don't yet have any kind of reasonable understanding of the processing path used in Qmail. But that's MY problem, not Qmail's! I need more time to study the Qmail part of the system, but work pays money study does not (yet!). The only time I have had ANY problem with this system (in general) was when my wife wanted me to make a QuickTime MOV file playable on a DVD: the video codecs were not written for the 64-bit version, and I would up running a 32-bit Fedora Core 7 in VM. What a pain that was -- just for a video! In addition to the Qmail Toaster (with about 15 domains), the same system also runs an Apache Web Server (for about 10 domains), both ISC BIND DHCP services, and SAMBA (as a PDC). I'd call it as stable as a ROCK! There are two caveats: 1) I do Linux and general Unix consulting for my business, so some of the minor issues (like turning off services that FC5 wanted to run out of the box, or configuring SAMBA as a PDC) are things I can do far more easily than the average admin, and 2) I don't configure my systems with the GUI -- there are no X-Windows at all on my servers! So if you're looking for GUI experience on a 64-bit system, I am not a reasonable case study. I hope you find the information here useful... or someone else does, at least! Dan McAllister IT4SOHO - Information Technologies for the Small Office Home Office bb. wrote: Hi, I think, if OS and application are both 64bit, they would run feelable faster but... Is there any experienced person and is 64bit problemless choice? Thanks to God and good programmers... --- Jake Vickers [EMAIL PROTECTED] wrote: bb. wrote: Yes Jake Helper, I am still trying on the new install and i have already formated the previous installs and logs. Now, is this the good (~same like) way: 1- Install CentOS 5 x64 2- Follow the instructions in: www.qmailtoaster.com/centos/cnt5064/very-quick-install.txt Or do you recommend ISO because it is more fine tuned (So stable) and 32bit because of more people uses (And tested) 32 instead of 64bit OS QMT? Oh that is complex work for weekend and thanks for your kindly replies... That will be entirely up to you. I personally think 64-bit is not needed for a mail server, and also think Cent5 is very bloated. Those instructions should get you up an running. I have not used them myself, but others on the list are running the same scenario that you are. The ISO is only meant to make the installation easier for new folks. Moody friends. Drama queens. Your life? Nope! - their life, your story. Play Sims Stories at Yahoo! Games. http://sims.yahoo.com/ - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
[qmailtoaster] Problem with backup Toaster
OK... so maybe I'm just too smart for myself... I've got several toaster's installed around my area (on managed Linux servers). I setup MY main toaster to be a backup mail server for all of my other managed servers, then use one of my client's systems (with their permission, of course) as a backup to my own server. To accomplish this, I setup the DNS to resolve MX records as such: @ MX 10 mail.domain.com. @ MX 20 mail2.backupdomain.com. Then, in the backup toaster I make 2 manual entries: a) I add the domain that is being backed up to the /var/qmail/control/rcpthosts file, and b) I add an entry in /var/qmail/control/smtproutes to FORCE the backed-up domain to deliver to the main mail server. Now here's my problem: - my backup toasters are sometimes looping messages, which results in a failure message being sent back to the sender. Anyone got any suggestions? Did I miss something?? Thanks in advance! Dan Daniel McAllister, President IT4SOHO, LLC 224 - 13th Avenue N St. Petersburg, FL 33701 877-IT4SOHO: Toll Free 727-647-7646 In Pinellas 813-464-2093 In Hillsborough 727-507-9435 Fax Only When did you do your last backup? Ask me about unattended offsite backup solutions... to protect your business, not just your data! - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] Problem with backup Toaster
. Copies of these messages may be in the archive. To retrieve a set of messages 123-145 (a maximum of 100 per request), send an empty message to: [EMAIL PROTECTED] To receive a subject and author list for the last 100 or so messages, send an empty message to: [EMAIL PROTECTED] Here are the message numbers: 16305 16309 16330 16331 16332 16333 16315 16334 16335 16336 16337 16346 16351 16356 16360 16363 16364 16365 16366 16367 16368 16369 16370 16361 16371 16372 16373 16362 16375 16374 16376 16377 16378 16379 16380 16381 16382 16383 16384 16393 16394 16395 16396 16397 16398 16399 16401 16402 16385 16390 16391 -- cut - To be clear, here is the answer from a DIG MX on my domain (it4soho.com) ;; ANSWER SECTION: it4soho.com.81551 IN MX 10 mail.it4soho.com. it4soho.com.81551 IN MX 50 mail2.it4soho.com. And here are the (edited) contents of rcpthosts: backupdomain.com server.localdomain.local it4soho.com And here are the (edited) contents of smtproutes .it4soho.com:mail.it4soho.com BTW: I have checked the DNS entries for both mail.it4soho.com mail2.it4soho.com -- and all servers are reporting the correct values. (This became an issue when I changed IP addresses at it4soho.com). SO... To my less-than-fully-trained-on-QMail eye, what appears to be happening (incorrectly) is that the toaster at backupdomain.com is receiving a message for it4soho.com, seeing it in its rcpthosts, but NOT recognizing that there is an smtproutes value for that domain, and so trying to deliver it (again) to itself. Do I need to remove the dot (.) in front of the domain names? ( I was under the impression that the dot made the domain name a wild-card... no? Thanks again for such a quick reply, Phil! Daniel McAllister, President IT4SOHO, LLC 224 - 13th Avenue N St. Petersburg, FL 33701 877-IT4SOHO: Toll Free 727-647-7646 In Pinellas 813-464-2093 In Hillsborough 727-507-9435 Fax Only When did you do your last backup? Ask me about unattended offsite backup solutions... to protect your business, not just your data! Phil Leinhauser wrote: You say sometimes they loop. Can you see what will or will not loop? Is it something in the message or from a certain address? If you can isolate why the sometimes it might help you find the why. Phil -Original message- From: Dan McAllister [EMAIL PROTECTED] Date: Thu, 10 Jan 2008 17:48:49 -0500 To: qmailtoaster-list@qmailtoaster.com Subject: [qmailtoaster] Problem with backup Toaster OK... so maybe I'm just too smart for myself... I've got several toaster's installed around my area (on managed Linux servers). I setup MY main toaster to be a backup mail server for all of my other managed servers, then use one of my client's systems (with their permission, of course) as a backup to my own server. To accomplish this, I setup the DNS to resolve MX records as such: @ MX 10 mail.domain.com. @ MX 20 mail2.backupdomain.com. Then, in the backup toaster I make 2 manual entries: a) I add the domain that is being backed up to the /var/qmail/control/rcpthosts file, and b) I add an entry in /var/qmail/control/smtproutes to FORCE the backed-up domain to deliver to the main mail server. Now here's my problem: - my backup toasters are sometimes looping messages, which results in a failure message being sent back to the sender. Anyone got any suggestions? Did I miss something?? Thanks in advance! Dan Daniel McAllister, President IT4SOHO, LLC 224 - 13th Avenue N St. Petersburg, FL 33701 877-IT4SOHO: Toll Free 727-647-7646 In Pinellas 813-464-2093 In Hillsborough 727-507-9435 Fax Only When did you do your last backup? Ask me about unattended offsite backup solutions... to protect your business, not just your data! - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] Problems with SPAMDYKE
Sam, et. al. I would say that to get the best results out of SPAMDYKE, you DEFINITELY want *IT* to handle the TLS. My reasoning is 2-fold: 1) I have an average of 15% of incoming SPAM that is attaching with TLS (I thought this was odd, but apparently not) 2) I require TLS for my outbound mail (from my clients) and THEY TOO can be sources of SPAM. I'd like SPAMDYKE to equally fight inbound AND outbound SPAM! Just my thoughts. They were free to you, so take them at their face value. Daniel McAllister, President IT4SOHO, LLC Take my advice... I won't be using it today! Sam Clippinger wrote: Actually, enabling TLS in spamdyke is the best solution. When spamdyke handles the TLS, the remote server can't tell the difference -- if it was using TLS before, it should continue to do so. However, because spamdyke decrypts the traffic, it can enable all of its filters (including graylisting, recipient blacklisting, etc). If spamdyke simply passes TLS traffic through without decrypting it, most of its filters cannot operate. -- Sam Clippinger Davide Bozzelli wrote: Sam Clippinger ha scritto: OK, I should be able to duplicate that setup to see if I can reproduce your error. It may be a little while before I have the time, however. In the meantime, can you try enabling TLS support in spamdyke to see if this error persists? Inside spamdyke, TLS passthrough is handled differently than TLS decoding. If this is a spamdyke bug, you may be able to work around it. Enabling TLS support will also allow all of spamdyke's filters to function, including graylisting. To enable TLS, you'll need to compile spamdyke with TLS support and use the tls-certificate-file directive in the configuration file. Your TLS certificate is probably located at: /var/qmail/control/servercert.pem -- Sam Clippinger I can confirm this bug, i've have the exact problems with a qmail patched with jms combined patch that sends mail to a qmailtoaster with spamdyke enabled without tls. By enabling tls in spamdyke the problem went down, but it's not the correct way of work, cause the source mta don't do any tls handshake. Have fun, Davide - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
RE: [qmailtoaster] Problem with backup Toaster
Thanks to those who responded -- both in the list, and directly. As it turns out, the entire issue was the preceding DOT in the smtproutes file. Leave off the dots, and the error messages quit! Thanks again... Dan -- Dan McAllister, President IT4SOHO, LLC - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] can't send test message to myself
Cameron: If you are using SpamDyke, or another anti-spam, you may need to create a PTR record for your DNS: that is, make the Internet (Public) IP Address of your server reverse-resolve to something like bstastjohns.com (or, if you ONLY do mail on that IP Address, mail.bstastjohns.com -- I prefer the former). The reason is that one commonly used anti-spam technique used today is a check for a valid reverse-dns entry. NOTE that, unless your IP address is a Register.com IP address (e.g.: they are your hosting company for your server), you'll need to contact your ISP to make this PTR entry! The pathway for resolving an IP address's PTR entry goes through your ISP, not your domain name. For now, I suggest removing any spam-blocking making sure your ports are open (no iptables active, if necessary, ports forwarded through firewall/router). Hope this helps! Dan Daniel McAllister, President IT4SOHO, LLC 224 - 13th Avenue N St. Petersburg, FL 33701 877-IT4SOHO: Toll Free 727-647-7646 In Pinellas 813-464-2093 In Hillsborough 727-507-9435 Fax Only When did you do your last backup? Ask me about unattended offsite backup solutions... to protect your business, not just your data! Cameron wrote: I've done that...about 6 days ago. I set it up to point to mail.bstastjohns.com and of course changed the A record for mail.bstastjohns.com to the current IP. Do I need to set up TXT records or add a PTR or is that more than I need? Cameron - Original Message - From: Phil Leinhauser [EMAIL PROTECTED] To: qmailtoaster-list@qmailtoaster.com Sent: Tuesday, January 15, 2008 8:46 AM Subject: Re: [qmailtoaster] can't send test message to myself I see your DNS is at register.com. You have an A record for your web site and that is working fine. Now you need to setup the MX record because when I query the DNS for one, it comes back empty. Look in your DNS control panel in the register.com where you setup the www. You should see something about an MX or Mail Exchanger record. Phil -Original message- From: Cameron [EMAIL PROTECTED] Date: Tue, 15 Jan 2008 10:26:13 -0500 To: qmailtoaster-list@qmailtoaster.com Subject: Re: [qmailtoaster] can't send test message to myself Well I'm registered at Register.com and updated all the fields I could find. I'm not real sure what the s.th is. Cameron - Original Message - From: Andreas Galatis [EMAIL PROTECTED] To: qmailtoaster-list@qmailtoaster.com Sent: Tuesday, January 15, 2008 1:51 AM Subject: Re: [qmailtoaster] can't send test message to myself Hi Cameron, me too, I cannot find an MX for bstastjohns.com Maybe you missed s.th. when setting up the MX? bye Andreas Am Dienstag, 15. Januar 2008 07:57 schrieb Cameron: I just set up qmail-toaster on CentOS5, Core2 duo, 1 Gig ram machine with a clean install. Everything looks fine now, but when I try to send a test message to myself using the Squirrelmail interface, I get a 511 sorry, can't find a valid MX for sender domain error. I'm using a domain I own that doesn't currently have a mail server set up. The domain is bstastjohns.com and I have mail.bstastjohns.com A and MX records pointed to a temproary public IP at 71.86.114.51. I can't send in messages form outside either. I'm pretty new to Linux and really new to qmail so please be gentle. When I ping mail.bstastjohns.com it resolves to the correct IP. Any clues? Regards, Cameron - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] can't send test message to myself
OK... this got me thinking... what are we overlooking Are you sure your mail server (from whom you're trying to send a test message) is using DNS correctly? (not serving... USING) Check your /etc/resolv.conf file... is should look like this: search mylocaldomain.name nameserver 192.168.0.2 NOTE: the IP address should be your own... just to be sure, you could also use 127.0.0.1 Just because your system is a DNS server, doesn't mean you definitely want it (the DNS server) to use itself as the server... you can force your server to get outside resolutions by using an outside DNS server... E.g.: search mylocaldomain.name nameserver 4.2.2.2 (The 4.2.2.2 address is a Verizon DNS server that is open to requests -- even from non-Verizon IP addresses. It'll also respond to a PING, so that's an easy IP address to file away in your limited mind-space!) I hope this helps... Dan Daniel McAllister, President IT4SOHO, LLC 224 - 13th Avenue N St. Petersburg, FL 33701 877-IT4SOHO: Toll Free 727-647-7646 In Pinellas 813-464-2093 In Hillsborough 727-507-9435 Fax Only When did you do your last backup? Ask me about unattended offsite backup solutions... to protect your business, not just your data! Cameron wrote: Ok, I set up a TXT record from some stuff I found online and that seems to have fixed my issue. Thanks for all the help. I'm sure I'll be asking more... Cameron - Original Message - From: Dan McAllister [EMAIL PROTECTED] To: qmailtoaster-list@qmailtoaster.com Sent: Tuesday, January 15, 2008 9:32 AM Subject: Re: [qmailtoaster] can't send test message to myself Cameron: If you are using SpamDyke, or another anti-spam, you may need to create a PTR record for your DNS: that is, make the Internet (Public) IP Address of your server reverse-resolve to something like bstastjohns.com (or, if you ONLY do mail on that IP Address, mail.bstastjohns.com -- I prefer the former). The reason is that one commonly used anti-spam technique used today is a check for a valid reverse-dns entry. NOTE that, unless your IP address is a Register.com IP address (e.g.: they are your hosting company for your server), you'll need to contact your ISP to make this PTR entry! The pathway for resolving an IP address's PTR entry goes through your ISP, not your domain name. For now, I suggest removing any spam-blocking making sure your ports are open (no iptables active, if necessary, ports forwarded through firewall/router). Hope this helps! Dan Daniel McAllister, President IT4SOHO, LLC 224 - 13th Avenue N St. Petersburg, FL 33701 877-IT4SOHO: Toll Free 727-647-7646 In Pinellas 813-464-2093 In Hillsborough 727-507-9435 Fax Only When did you do your last backup? Ask me about unattended offsite backup solutions... to protect your business, not just your data! Cameron wrote: I've done that...about 6 days ago. I set it up to point to mail.bstastjohns.com and of course changed the A record for mail.bstastjohns.com to the current IP. Do I need to set up TXT records or add a PTR or is that more than I need? Cameron - Original Message - From: Phil Leinhauser [EMAIL PROTECTED] To: qmailtoaster-list@qmailtoaster.com Sent: Tuesday, January 15, 2008 8:46 AM Subject: Re: [qmailtoaster] can't send test message to myself I see your DNS is at register.com. You have an A record for your web site and that is working fine. Now you need to setup the MX record because when I query the DNS for one, it comes back empty. Look in your DNS control panel in the register.com where you setup the www. You should see something about an MX or Mail Exchanger record. Phil -Original message- From: Cameron [EMAIL PROTECTED] Date: Tue, 15 Jan 2008 10:26:13 -0500 To: qmailtoaster-list@qmailtoaster.com Subject: Re: [qmailtoaster] can't send test message to myself Well I'm registered at Register.com and updated all the fields I could find. I'm not real sure what the s.th is. Cameron - Original Message - From: Andreas Galatis [EMAIL PROTECTED] To: qmailtoaster-list@qmailtoaster.com Sent: Tuesday, January 15, 2008 1:51 AM Subject: Re: [qmailtoaster] can't send test message to myself Hi Cameron, me too, I cannot find an MX for bstastjohns.com Maybe you missed s.th. when setting up the MX? bye Andreas Am Dienstag, 15. Januar 2008 07:57 schrieb Cameron: I just set up qmail-toaster on CentOS5, Core2 duo, 1 Gig ram machine with a clean install. Everything looks fine now, but when I try to send a test message to myself using the Squirrelmail interface, I get a 511 sorry, can't find a valid MX for sender domain error. I'm using a domain I own that doesn't currently have a mail server set up. The domain is bstastjohns.com and I have mail.bstastjohns.com A and MX records pointed to a temproary public IP at 71.86.114.51. I can't send in messages form outside either. I'm pretty new to Linux and really new to qmail so please be gentle
Re: [qmailtoaster] mail everone in a domain
Wouldn't SPAMmers LOVE the idea of being able to address something to EVERYONE in a domain! Unfortunately Cameron, you're going to have to make a list... the good news is that you should be able to do this with the vpopmail CLI commands in a shell script rather easily. HINT: 1) create a list ([EMAIL PROTECTED]) 2) write a shell script to use the command vuserinfo -D mydomain.name and pipe the output into ezmlm-sub I hope this helps! Dan Daniel McAllister, President IT4SOHO, LLC 224 - 13th Avenue N St. Petersburg, FL 33701 877-IT4SOHO: Toll Free 727-647-7646 In Pinellas 813-464-2093 In Hillsborough 727-507-9435 Fax Only When did you do your last backup? Ask me about unattended offsite backup solutions... to protect your business, not just your data! Cameron wrote: Is there a quick and dirty way to email everyone in a domain using qmail? Should I just set up a list and add everone to it? I have about 3000 addresses in one particular domain I'm moving over form a windows platform and need to send out broadcast messages from time to time. What does everyone suggest? Regards, Cameron - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] Spamdyke Errors
Check the status of your /var filesystem, as well as whatever filesystem contains your /tmp directory (my /tmp links to /var/tmp, so for me it's the same filesystem). I eventually had to write a script that deleted old mail log files, because I found my /var filesystem (only 1GB to begin with) was filling up on some client's systems (those, like mine, with relatively heavy mail flow). Hope this helps! Dan Daniel McAllister, President IT4SOHO, LLC 224 - 13th Avenue N St. Petersburg, FL 33701 877-IT4SOHO: Toll Free 727-647-7646 In Pinellas 813-464-2093 In Hillsborough 727-507-9435 Fax Only When did you do your last backup? Ask me about unattended offsite backup solutions... to protect your business, not just your data! Ronnie Tartar wrote: I have been getting a lot of the following errors in my maillog from spamdyke. Jan 21 21:43:32 mail spamdyke[31530]: ERROR: unable to write 63 bytes to file descriptor 1: Broken pipe Is this normal behavior? Or is this something that I need to look further into? Thanks - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
[qmailtoaster] New Toaster SSL problem
Greetings and Salutations to all... I have installed a new toaster (with QMT-Plus) onto a Fedora 8 system. I used the Fedora 6 build scripts and everything seems to work perfectly. EXCEPT (there's always an exception)... imap4-SSL is experienceing a problem with the kerberos library. All of the relevant packages were installed from the devel website (vs. the now-static-since-April main site). Again, after making sure all the relevant support rpms were installed, the install scripts ran cleanly. The problem can be seen from the qmlog imap4-ssl | tail, which appears as: 01-28 20:43:50 /usr/bin/couriertls: error while loading shared libraries: libkrb5support.so.0: failed to map segment from shared object: Cannot allocate memory The system runs with 2.0 GB of ram, and being a good sysadm, the swap space is an equaly spacious 2.0 GB. (In other words, I believe there is a problem in the allocation routine, or in the library itself -- because there is PLENTY of memory (real and virtual) available. If I look from the client end, I get the following from Outlook Express: Configuration: Account: mail.mydomain.com Server: mail.mydomain.com User name: [EMAIL PROTECTED] Protocol: IMAP Port: 993 Secure(SSL): 1 Code: 800ccc0f (I don't think that helps much... but you never know!) Finally, I have the following krb packages installed: krb5-libs-1.6.2-9.fc8 krb5-auth-dialog-0.7-5.fc8 krb5-devel-1.6.2-9.fc8 krb5-workstation-1.6.2-9.fc8 krb5-devel-1.6.2-9.fc8 pam_krb5-2.2.18-1 pam_krb5-2.2.18-1 krb5-libs-1.6.2-9.fc8 I BELIEVE that I NEED the Kerberos packages for my Samba (as PDC) installation -- but that may be a false assumption. I have even tried backing out the latest kerberos versions (to the FC6 version), but I get the same result. Any ideas??? -- Dan McAllister, President IT4SOHO, LLC PLEASE NOTE OUR NEW ADDRESS: 224 - 13th Avenue N St. Petersburg, FL 33701 All other contact info remains unchanged: 877-IT4SOHO - Toll Free 727-647-7646 - In Pinellas 727-507-9435 - Fax - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
[qmailtoaster] New Toaster SSL problem
Greetings and Salutations to all... I have installed a new toaster (with QMT-Plus) onto a Fedora 8 system. I used the Fedora 6 build scripts and everything seems to work perfectly. EXCEPT (there's always an exception)... imap4-SSL is experienceing a problem with the kerberos library. All of the relevant packages were installed from the devel website (vs. the now-static-since-April main site). Again, after making sure all the relevant support rpms were installed, the install scripts ran cleanly. The problem can be seen from the qmlog imap4-ssl | tail, which appears as: 01-28 20:43:50 /usr/bin/couriertls: error while loading shared libraries: libkrb5support.so.0: failed to map segment from shared object: Cannot allocate memory The system runs with 2.0 GB of ram, and being a good sysadm, the swap space is an equaly spacious 2.0 GB. (In other words, I believe there is a problem in the allocation routine, or in the library itself -- because there is PLENTY of memory (real and virtual) available. If I look from the client end, I get the following from Outlook Express: Configuration: Account: mail.mydomain.com Server: mail.mydomain.com User name: [EMAIL PROTECTED] Protocol: IMAP Port: 993 Secure(SSL): 1 Code: 800ccc0f (I don't think that helps much... but you never know!) Finally, I have the following krb packages installed: krb5-libs-1.6.2-9.fc8 krb5-auth-dialog-0.7-5.fc8 krb5-devel-1.6.2-9.fc8 krb5-workstation-1.6.2-9.fc8 krb5-devel-1.6.2-9.fc8 pam_krb5-2.2.18-1 pam_krb5-2.2.18-1 krb5-libs-1.6.2-9.fc8 I BELIEVE that I NEED the Kerberos packages for my Samba (as PDC) installation -- but that may be a false assumption. I have even tried backing out the latest kerberos versions (to the FC6 version), but I get the same result. Any ideas??? -- Dan McAllister, President IT4SOHO, LLC PLEASE NOTE OUR NEW ADDRESS: 224 - 13th Avenue N St. Petersburg, FL 33701 All other contact info remains unchanged: 877-IT4SOHO - Toll Free 727-647-7646 - In Pinellas 727-507-9435 - Fax - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] New Toaster SSL problem
Eric Shubes wrote: Dan McAllister wrote: The problem can be seen from the qmlog imap4-ssl | tail, which appears as: 01-28 20:43:50 /usr/bin/couriertls: error while loading shared libraries: libkrb5support.so.0: failed to map segment from shared object: Cannot allocate memory The system runs with 2.0 GB of ram, and being a good sysadm, the swap space is an equaly spacious 2.0 GB. (In other words, I believe there is a problem in the allocation routine, or in the library itself -- because there is PLENTY of memory (real and virtual) available. Any ideas??? Try increasing the softlimit in the /var/qmail/supervise/imap4-ssl/run file, especially if you have a x86_64 system. I think you'll need to stop then start (not restart) qmail after changing this. You are BRILLIANT! (I had forgotten that there were softlimits placed on all of the supervised processes!) I upped the softlimit by 50% (from 24M to 36M) and it now works flawlessly again. Thanks a million (or 12M) to Eric for the fine push in the right direction! Dan - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] Spam folders
I ran into the same issue... so I simply teach my users how to write a client-side Rule that moves marked spam messages to a special folder. By including the user in this, I've GREATLY reduced the number of times/day I have to deal with where's my mail questions! Just my 2-cents worth! Dan Daniel McAllister, President IT4SOHO, LLC 224 - 13th Avenue N St. Petersburg, FL 33701 877-IT4SOHO: Toll Free 727-647-7646 In Pinellas 813-464-2093 In Hillsborough 727-507-9435 Fax Only When did you do your last backup? Ask me about unattended offsite backup solutions... to protect your business, not just your data! PakOgah wrote: Cameron wrote: I'm still getting everything configured for my new Qmail Toaster and it looks like SA is automatically configured to be running. My question is how is it confiugured by defualt. Is it blocking, tagging, redirecting? What I would like is for it to tag, but then redirect to a spam folder for each user. Anywone have experience with this? Cameron Perhaps this can answer you http://www.mail-archive.com/qmailtoaster-list@qmailtoaster.com/msg17100.html Redirecting email tagged with ***SPAM*** to SPAM folder on each user requires you to recompile qmailadmin http://wiki.qmailtoaster.com/index.php/FAQs#I_upgraded_my_QmailToaster_to_the_latest_and_I_no_longer_have_the_.22Spam_Detection.22_box_in_Qmailadmin. yes I have experiend with this, users keep ignoring what I said to check their SPAM folder before complaining to me that they didn't rcvd email so I deactivate it again. :) - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] How to add spf on qmailtoaster...
SPF is compiled into and enabled by default in the QMail Toaster. You can control the behavior of the SPF function with the numeric value in the file /var/qmail/control/spfbehavior. The default value is 3, which is to say that: a) if a domain uses SPF (and you SHOULD), then the SPF rules will be enforced b) if a domain does NOT use SPF, then no blocking will occur. A complete description of the spfbehavior levels is here: http://wiki.qmailtoaster.com/index.php/Spfbehavior Eventually (when someone decides SPF should be required -- whomever someone is, I don't know), the number we put in there will climb to a 4 or 5. But for now, the agreed upon best use level is the 3 that the toaster puts in there as a default. (NOTE: To turn OFF SPF, just change the value to a 0). NOTE: The value in the /var/qmail/control/spfbehavior can be overwritten by the presence of an environment variable SPFBEHAVIOR (if used, it is probably being set in your tcp rules file (/etc/tcprules.d/tcp.smtp). So, if you change it but nothing happens differently (not sure if a QMail restart is required when it changes), then look for the ENV variable. Another NOTE (and I think this may help someone who a few days ago was talking about changing the tcp.smtp file and the changes not working)... if you change the contents of /etc/tcprules.d (including the tcp.smtp file), you must RE-COMPILE the files to have them take effect. The command is simple: # qmailctl cdb I hope someone finds this useful Best Regards, Dan Daniel McAllister, President IT4SOHO, LLC 224 - 13th Avenue N St. Petersburg, FL 33701 877-IT4SOHO: Toll Free 727-647-7646 In Pinellas 813-464-2093 In Hillsborough 727-507-9435 Fax Only When did you do your last backup? Ask me about unattended offsite backup solutions... to protect your business, not just your data! Ben Mills wrote: Randraa - Yahoo wrote: Good Morning for all, I have some questions about spf on qmail, i already configured spf in dns, but i don't know how to add this configuration on qmail-toaster. I use here qmail-toaster+vpopmail+spamassassin+spamdyke. Other question i have spamdyke running, but i dont know exactly how to add greylist configurations... wanting a tutorial for this. Greylisting is easy with spamdyke. Add the greylist dir path to spamdyke conf, then make the greylist dir. Afterwards you make subdirectories for each domain (ie example.com). If greylisting doesn't work, you probably need to change properties on the dirs you created to allow access. Ben - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] Can I use QMT as a Spam Killer
I have implemented this, using QMT as a front-end filter for an Exchange Server... It's actually simple... a) Install QMT -- but do NOT add ANY domains (much less users) b) Add your domain to the /var/qmail/contol/rcpthosts file, eg: mymaildomain.com c) Add the address of your exchange server to the file /var/qmail/control/smtproutes, eg: mymaildomain.com:10.1.1.50 NOTE: In my experience, it was a worthless exercise to try to route outbound mail through the toaster as well... let exchange deliver the outbound mail, but QMail sit in front of Exchange on the inbound side. In other words, Exchange should be sitting behind a firewall (or NAT router), and the inbound mail ports (namely 25) should be directed to your QMT system, NOT the Exchange system. (You'll also want to point some type of web interface to the Exchange Server for remote mail access. I use an advanced router to redirect different ports for that purpose). I hope this helps SOMEONE! Dan Daniel McAllister, President IT4SOHO, LLC 224 - 13th Avenue N St. Petersburg, FL 33701 877-IT4SOHO: Toll Free 727-647-7646 In Pinellas 813-464-2093 In Hillsborough 727-507-9435 Fax Only When did you do your last backup? Ask me about unattended offsite backup solutions... to protect your business, not just your data! [EMAIL PROTECTED] wrote: One thing is that spam went way way down while I was using QMT. Are there any documents out there on perhaps using QMT simply as a pre-processing host? All email coming into the network would go though that first, get cleaned, then continue on to the mail server. Mike - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] How to add spf on qmailtoaster...
OK... I think we have a disconnect here... there is no greylisting with SPF -- if you're being blocked by SPF, change your DNS record to indicate that you're SPF an approved sender. If you're looking at greylisting, you're probably talking about spamdyke, or another spam filter -- but not SPF. (the log file you show below confirms you're using spamdyke) For a better understanding of SPF, read on at http://www.openspf.org/Introduction For a better look at SpamDyke, see http://www.spamdyke.org/ or, specifically http://www.spamdyke.org/documentation/README.html#GRAYLISTS for how to use greylisting in SPAMDYKE. I hope this helps... SOMEONE! Dan Daniel McAllister, President IT4SOHO, LLC 224 - 13th Avenue N St. Petersburg, FL 33701 877-IT4SOHO: Toll Free 727-647-7646 In Pinellas 813-464-2093 In Hillsborough 727-507-9435 Fax Only When did you do your last backup? Ask me about unattended offsite backup solutions... to protect your business, not just your data! Randraa - Yahoo wrote: OK. I only configure one archive? /var/qmail/control/spfbehavior? to spf work with my qmail? My dns it is already configured. And greylist, i maked one directory inside of graylist.d/ with my domain. but every mails are being blocked. see in log ( /var/log/maillog ) Feb 7 14:00:38 gw spamdyke[17134]: DENIED_GRAYLISTED from: [EMAIL PROTECTED] to: [EMAIL PROTECTED] origin_ip: 209.191.85.214 origin_rdns: smtp104.mail.mud.yahoo.com auth: (unknown) Feb 7 14:00:11 gw spamdyke[16833]: DENIED_GRAYLISTED from: [EMAIL PROTECTED] to: [EMAIL PROTECTED] origin_ip: 209.191.85.215 origin_rdns: mail.google.com auth: (unknown) i dont now exactly how this graylist works, anybody can help? Thanks so much for all - Original Message - From: Dan McAllister [EMAIL PROTECTED] To: qmailtoaster-list@qmailtoaster.com Sent: Thursday, February 07, 2008 12:54 PM Subject: Re: [qmailtoaster] How to add spf on qmailtoaster... SPF is compiled into and enabled by default in the QMail Toaster. You can control the behavior of the SPF function with the numeric value in the file /var/qmail/control/spfbehavior. The default value is 3, which is to say that: a) if a domain uses SPF (and you SHOULD), then the SPF rules will be enforced b) if a domain does NOT use SPF, then no blocking will occur. A complete description of the spfbehavior levels is here: http://wiki.qmailtoaster.com/index.php/Spfbehavior Eventually (when someone decides SPF should be required -- whomever someone is, I don't know), the number we put in there will climb to a 4 or 5. But for now, the agreed upon best use level is the 3 that the toaster puts in there as a default. (NOTE: To turn OFF SPF, just change the value to a 0). NOTE: The value in the /var/qmail/control/spfbehavior can be overwritten by the presence of an environment variable SPFBEHAVIOR (if used, it is probably being set in your tcp rules file (/etc/tcprules.d/tcp.smtp). So, if you change it but nothing happens differently (not sure if a QMail restart is required when it changes), then look for the ENV variable. Another NOTE (and I think this may help someone who a few days ago was talking about changing the tcp.smtp file and the changes not working)... if you change the contents of /etc/tcprules.d (including the tcp.smtp file), you must RE-COMPILE the files to have them take effect. The command is simple: # qmailctl cdb I hope someone finds this useful Best Regards, Dan Daniel McAllister, President IT4SOHO, LLC 224 - 13th Avenue N St. Petersburg, FL 33701 877-IT4SOHO: Toll Free 727-647-7646 In Pinellas 813-464-2093 In Hillsborough 727-507-9435 Fax Only When did you do your last backup? Ask me about unattended offsite backup solutions... to protect your business, not just your data! Ben Mills wrote: Randraa - Yahoo wrote: Good Morning for all, I have some questions about spf on qmail, i already configured spf in dns, but i don't know how to add this configuration on qmail-toaster. I use here qmail-toaster+vpopmail+spamassassin+spamdyke. Other question i have spamdyke running, but i dont know exactly how to add greylist configurations... wanting a tutorial for this. Greylisting is easy with spamdyke. Add the greylist dir path to spamdyke conf, then make the greylist dir. Afterwards you make subdirectories for each domain (ie example.com). If greylisting doesn't work, you probably need to change properties on the dirs you created to allow access. Ben - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - QmailToaster hosted by: VR Hosted http://www.vr.org
Re: [qmailtoaster] Can I use QMT as a Spam Killer
! So, regardless of the behavior of the end-user MTA, any back-splash would be directed to the Internet, not back to the filter-MTA (our QMail or sendmail server). Ironically the rationale for DROPPING vs. BOUNCING mail addressed to non-existent mailboxes is because of SPAM issues... SPAM producers long-ago figured out how to address harvest from mail servers that bounce erroneous addresses. Messages that DON'T bounce from said poorly configured servers are then SOLD as confirmed, valid user addresses to other spammers -- thus helping you, the poor novice mail administrator, get the word out that you are ill-equipped to prevent SPAM, and thus increasing the amount of SPAM your soon-to-be-pitied end-users receive exponentially! FINALLY, if you take into consideration the original poster, (Mike?), who had difficulty in getting a QMT setup and working, and so abandoned that as an end-user MTA, the idea that using a sendmail/mimedefang approach would work better seems to ignore his admitted limitations (no offense, Mike!). Recall how I mentioned above that I used to TEACH a 4-day course in sendmail Administration! I will freely admit that, after 4 full action-packed days, our students were STILL not fully-ready-for-prime-time sendmail administrators (but they COULD do some fancy stuff in sendmail -- certainly enough to get them in REAL trouble!) However, that being said, I would doubt that it would take more than a day, perhaps stretched into 2, to teach the same capabilities in QMT. Naturally, one of the REASONS is that sendmail is infinitely more configurable than QMT -- but it is also infinitely more COMPLEX than QMT -- which is why I would NOT recommend a sendmail/mimedefang configuration to the original poster. At least not without professional Linux Admin help! sendmail has its place -- and I still administer ONE sendmail site. But when you consider that I administer well over 100 email domains on more than 30 systems -- I have to say that, in my opinion, QMT is to mail administration what XWindows was to making *nix an end-user friendly system! (That is, it makes things MUCH easier than the traditional guru-friendly *nix approach!) These are just my thoughts and opinions, and although I named James herein, I offer him no ill-will. I simply disagree with his advise on purely technical grounds. Also, it's Saturday, it's raining outside, and I'm BORED out of my SKULL today... and I have just successfully survived an hour of opera by concentrating instead on writing this LONG message!!! Here's to hoping the weather (and your sanity) is better wherever YOU are! Dan Daniel McAllister, President IT4SOHO, LLC 224 - 13th Avenue N St. Petersburg, FL 33701 877-IT4SOHO: Toll Free 727-647-7646 In Pinellas 813-464-2093 In Hillsborough 727-507-9435 Fax Only When did you do your last backup? Ask me about unattended offsite backup solutions... to protect your business, not just your data! James E. Pratt wrote: Hi, If your network processes a lot of mail (i.e over 200k messages per day), this could really kill your front-end box, as qmail will accept mail for non-existent users by default and you will be wasting cpu cycles scanning worthless messages that will just end up bouncing and sending lots of backscatter out, essentially worsening the overall spam problem in general :\ ... I use sendmail and mimedefang here at work and I have way more control than qmail-toaster could ever give us for a front-end to exchange, as qmail-toaster is really built more for backend storage of multi-domains. You can get much better performance on a spamassassin relay using a different MTA like sendmail or exim/postfix along with procmail/mimedefang etc... I mean, Qmail is definitely great, but has certain issues that make it somewhat unsuitable for large, single-domain environments... :\ (just my 2 cents!) :) Regards, jp Dan McAllister wrote: I have implemented this, using QMT as a front-end filter for an Exchange Server... It's actually simple... a) Install QMT -- but do NOT add ANY domains (much less users) b) Add your domain to the /var/qmail/contol/rcpthosts file, eg: mymaildomain.com c) Add the address of your exchange server to the file /var/qmail/control/smtproutes, eg: mymaildomain.com:10.1.1.50 NOTE: In my experience, it was a worthless exercise to try to route outbound mail through the toaster as well... let exchange deliver the outbound mail, but QMail sit in front of Exchange on the inbound side. In other words, Exchange should be sitting behind a firewall (or NAT router), and the inbound mail ports (namely 25) should be directed to your QMT system, NOT the Exchange system. (You'll also want to point some type of web interface to the Exchange Server for remote mail access. I use an advanced router to redirect different ports for that purpose). I hope this helps SOMEONE! Dan [EMAIL PROTECTED] wrote: One thing is that spam went way way down while I was using
Re: [qmailtoaster] dropping failed addresses
If you're using QMT, then you have the qmailadmin web interface: - Login as an admin user (like postmaster), then open the Email Accounts link At the top of the window you'll see your current setting (IMHO, it should show: *CatchAll: Deleted*) Along the bottom of the page, you'll see links for setting catchall to deleted/bounced/account: Deleted means invalid addresses are deleted Bounced means you report back to the sender that you couldn't deliver the mail because there was no user (mailbox) by that name Account will ask you for the name of an account where you'll store all that crap (Aside: I had a user that was a REAL pain in my backside that I once assigned as the catchall account -- just being mean on my part!) You can also do this on the command line (naturally). The control file is actually located in */home/vpopmail/domains/YOURDOMAIN/.qmail-default* The toaster-default is that the entry looks like: *| /home/vpopmail/bin/vdelivermail '' bounce-no-mailbox *(note: those are two single-quote characters, not a single double-quote character) Sinply change the bounce-no-mailbox to delete so the line looks like *| /home/vpopmail/bin/vdelivermail '' delete* BTW: This is /the/ interface description of how QMail uses the vpopmail package to control mail delivery! I hope this helps. someone! Dan Daniel McAllister, President IT4SOHO, LLC 224 - 13th Avenue N St. Petersburg, FL 33701 877-IT4SOHO: Toll Free 727-647-7646 In Pinellas 813-464-2093 In Hillsborough 727-507-9435 Fax Only When did you do your last backup? Ask me about unattended offsite backup solutions... to protect your business, not just your data! Sergio Minini {NETKEY} wrote: Dan, really nice your insight. I would like to know a little bit more about how to implement dropping in QM, and how can I check if my box is dropping or bouncing. Thanks. Sergio -Original Message- *From:* Dan McAllister [mailto:[EMAIL PROTECTED] *Sent:* Saturday, February 09, 2008 5:02 PM *To:* qmailtoaster-list@qmailtoaster.com *Subject:* Re: [qmailtoaster] Can I use QMT as a Spam Killer So, regardless of the behavior of the end-user MTA, any back-splash would be directed to the Internet, not back to the filter-MTA (our QMail or sendmail server). Ironically the rationale for DROPPING vs. BOUNCING mail addressed to non-existent mailboxes is because of SPAM issues... SPAM producers long-ago figured out how to address harvest from mail servers that bounce erroneous addresses. Messages that DON'T bounce from said poorly configured servers are then SOLD as confirmed, valid user addresses to other spammers -- thus helping you, the poor novice mail administrator, get the word out that you are ill-equipped to prevent SPAM, and thus increasing the amount of SPAM your soon-to-be-pitied end-users receive exponentially!
Re: [qmailtoaster] Clamav is OUTDATED.
Update the CLAMAV RPM from the devel website... Step by step: 1) Download the clamav src.rpm from http://devel.qmailtoaster.com/ (latest I see is from December, 2007) 2) STOP Qmail (qmailctl stop) 3) STOP FreshClam (on Redhat/Fedora/CentOS you could use: service freshclam stop) 3) WAIT for all the processes to truly stop (you can use variants of ps and kill if you're impatient) 4) run the install for clamav rpmbuild --rebuild --with ($YOURDISTRO) clamav-toaster-0.92-1.3.16.src.rpm 5) RESTART freshclam (service freshclam start) 6) RESTART qmail (qmailctl start) The error message will go away TOMORROW I hope this helps someone! Dan Daniel McAllister, President IT4SOHO, LLC 224 - 13th Avenue N St. Petersburg, FL 33701 877-IT4SOHO: Toll Free 727-647-7646 In Pinellas 813-464-2093 In Hillsborough 727-507-9435 Fax Only When did you do your last backup? Ask me about unattended offsite backup solutions... to protect your business, not just your data! Randraa - Yahoo wrote: About the error: WARNING: Your ClamAV installation is OUTDATED! WARNING: Local version: 0.90.1 Recommended version: 0.92 DON'T PANIC! Read http://www.clamav.net/support/faq main.cvd version from DNS: 45
Re: [qmailtoaster] Clamav is OUTDATED.
OOPS! Andreas is correct while my instructions included the building of the rpm, it did NOT include the installation of said re-built RPM! In truth, I pulled the command lines from my own custom updater script (I haven't shared it because I am an atypical sysadmin -- I believe much more strongly than most: if it ain't broke, don't fix it -- so my update script checks the devel site for new releases gives me an interactive prompt on whether or not to install the update. In truth, I don't think I've updated anything but CLAMAV in the past 6 months or so...maybe even 9!) Thanks for finding the omission Andreas!!! Dan Andreas wrote: Hi Jim, I think your syntax is not correct like that and Dan has forgotten to really install the rpm. Should be: rpmbuild --rebuild --with cnt40 ... to build the binarys and then rpm -Uvh your clamav...rpm to install it. Andreas - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] Clamav is OUTDATED.
Actually, I think the Centos 4 distro info would make the command line rpmbuild --rebuild --with cnt40 clamav-toaster-0.92-1.3.16.src.rpm (I got the magic code from the install script provided on the qmailtoaster.com) Dan Daniel McAllister, President IT4SOHO, LLC 224 - 13th Avenue N St. Petersburg, FL 33701 877-IT4SOHO: Toll Free 727-647-7646 In Pinellas 813-464-2093 In Hillsborough 727-507-9435 Fax Only When did you do your last backup? Ask me about unattended offsite backup solutions... to protect your business, not just your data! Jim Shupert, Jr. wrote: Hey thanks for this... and just to be realll clear for me my distro is centOS4.4 so would step 4 for me be is the below the exact sysntax? rpmbuild --rebuild --with ($centOS4.4) clamav-toaster-0.92-1.3.16.src.rpm thanks! jS - Original Message - *From:* Dan McAllister mailto:[EMAIL PROTECTED] *To:* qmailtoaster-list@qmailtoaster.com mailto:qmailtoaster-list@qmailtoaster.com *Sent:* Monday, February 11, 2008 1:40 PM *Subject:* Re: [qmailtoaster] Clamav is OUTDATED. Update the CLAMAV RPM from the devel website... Step by step: 1) Download the clamav src.rpm from http://devel.qmailtoaster.com/ (latest I see is from December, 2007) 2) STOP Qmail (qmailctl stop) 3) STOP FreshClam (on Redhat/Fedora/CentOS you could use: service freshclam stop) 3) WAIT for all the processes to truly stop (you can use variants of ps and kill if you're impatient) 4) run the install for clamav rpmbuild --rebuild --with ($YOURDISTRO) clamav-toaster-0.92-1.3.16.src.rpm 5) RESTART freshclam (service freshclam start) 6) RESTART qmail (qmailctl start) The error message will go away TOMORROW I hope this helps someone! Dan Daniel McAllister, President IT4SOHO, LLC 224 - 13th Avenue N St. Petersburg, FL 33701 877-IT4SOHO: Toll Free 727-647-7646 In Pinellas 813-464-2093 In Hillsborough 727-507-9435 Fax Only When did you do your last backup? Ask me about unattended offsite backup solutions... to protect your business, not just your data! Randraa - Yahoo wrote: About the error: WARNING: Your ClamAV installation is OUTDATED! WARNING: Local version: 0.90.1 Recommended version: 0.92 DON'T PANIC! Read http://www.clamav.net/support/faq main.cvd version from DNS: 45
Re: [qmailtoaster] server overload
Just to be sure... the option (which is domain specific) is DELETE (not DROP). The file is: /home/vpopmail/domains/YOUR DOMAIN HERE/.qmail-default and the entry should read: | /home/vpopmail/bin/vdelivermail '' delete NOTES: 1) that's a PIPE symbol as the 1st character (usually already there, but if you're starting from scratch on the file, the | symbol is, on most US keyboards, located with the \ symbol) 2) the 's after vdelivermail are a pair of single quotes -- that's 2 characters, not a single double-quote character My personal experience (hosting more than 20 domains on this server right now, plus more than 40 others on other QMT installations) is that my connection load lowered when I did this -- apparently address harvesters detect when everything succeeds and stop trying (knowing it's futile? maybe!). A FINAL NOTE: I believe (but am not sure) that the contents of all .qmail-default files are read by qmail-smtp at startup -- so you'll definitely need to shutdown QMT and restart it (NOT just a qmailctl restart!) once you have made the change. Personally, I have OFTEN found it necessary to manually kill many of the QMail processes (after a qmailctl stop). So, if you're not comfortable issuing a BUNCH of ps kill (or pkill) commands, I might suggest rebooting the entire server. (That being said, if you DO find yourself rebooting the system to accomplish this, you might want to consider some additional learnin about your Linux system!) I hope this helps... someone! Dan -- Dan McAllister, President IT4SOHO, LLC On Mon, February 18, 2008 10:35 am, Eric \Shubes\ wrote: [EMAIL PROTECTED] wrote: Hey there, just a simple question: I enabled the 'drop all invalind recipients' option, instead of the 'bounce all'. Now my server is just about to collapse with the connections to its limit and I cant sometimes sent mails from webmail b/c of 'Error 111' could it be any relation between drop-all and overload? That seems unlikely to me, unless the incoming smtp sessions aren't terminating as a result. If you change it back to bounce invalid recipients, does the problem clear up? Note, if you have zombied smtp sessions you might need to kill them manually. What versions of OS/toaster? thanks! sergio -- -Eric 'shubes' - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] Drop SPAM to forwarded account
Most every SPAM filter I know will have SOME false-positives. It is inevitable, since SPAMmers are constantly trying to make their sh*t look like the REAL sh*t you WANT to receive. So, you might want to consider changing the spamassassin processing to move those messages marked as SPAM into a folder (eg: SPAM) rather than deleting them. However, if you're still getting tons of spam (just most of it marked SPAM by spamassassin, you might also want to look into SpamDyke... http://www.spamdyke.org)... I've had VERY GOOD luck with this add-on! Finally, if you're committed to deleting the messages marked as SPAM by spamassassin, then look into a pearl script called mailparser, found at: http://cisu.net/files/mailparser.pl This simple little script, when added to your smtp processing path AFTER spamassassin, will route messages marked as SPAM to /dev/null (thus, deleting them). But again, with the high probability of SOME level of false positives, I DO NOT recommend this approach. (To my kids, I relate this kind of warning to: OK mister, here's your gun -- but be careful with it! OK mister, here's your ammo -- but be VERY careful with it! Now sir, you've got a loaded gun there... PLEASE be CAREFUL! Excuse me SIR, but your gun is pointed right at your foot... PLEASE be careful! ... I'm very sorry you shot your foot off, sir. It'll be to help you fix it now! Will that be cash, or credit?) In other words... YOU'VE BEEN WARNED! I hope this helps... someone! Dan -- Dan McAllister, President IT4SOHO, LLC On Mon, February 18, 2008 1:47 pm, [EMAIL PROTECTED] wrote: I realize that the end-user SHOULD know how to assemble message rules etc, but there have been several occasions where users want to have ONLY CLEAN emails forwarded to an external account. Is this possible? Currently, all email is forwarded with some messages having a *** SPAM *** subject line. I would like to have the option (on a few accounts) to not forward these. How can this be accomplished? - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] Activate imap access for update ip list in relay table
Paolo I'm afraid I do NOT know of a way to make the QMT IMAP server (courierIMAP) do what you want (so you can do an IMAP before SMTP kind of thing) however: IMHO, you should be using authenticated smtp instead of pop-before-smtp (that is, make the users provide a username/password before sending -- it is already configured for that in the QMT, and the username/password combo is the same as for the POP or IMAP account). Users just have to check an extra box when configuring their email. Now, to get on my HIGH HORSE... Personally, I think that POP3 IMAP4 are two of the most DANGEROUS protocols we (as admins) allow on our systems! Why? Because by default, each of these sends the username/password information in cleartext over the open Internet. My systems do not accept POP3 (port 110) or IMAP4 (port 143) connections except from LAN hosts. Instead, I FORCE SSL connections (port 995 for POP, 993 for IMAP). The drawback is that you need to have a REAL SSL certificate installed, or else your users will get a warning message about an invalid certificate every time their Outlook makes an initial connection to the server. REAL SSL Certificates are a small pain (and a small price to pay) for the added security -- but I've been happy with RegisterFly's reseller price of $10/year (I charge my clients $25 to account for my extra time setting them up). NOTE: Last time I checked, RegisterFly.com had some REAL customer service problems -- so much so that they lost their ICANN certification as a Domain Registrar. That MAY have been resolved (there is no longer a warning banner on their website), but I've NEVER had a problem with an SSL certificate -- it's all automated, and other than having some proof of identity issues, I've been VERY happy with RegisterFly. (I contemplated moving ALL my domains over there, until I read about them loosing their ICANN certification!) Anyway -- if anyone knows of a cheaper way to get a valid SSL Certificate, let me know! OK... so now I'm getting OFF my HIGH HORSE! :-) Finally, if you're intimidated with the whole PKI (Public Key Infrastructure) and want help getting installing an SSL Certificate, contact me off-list and I'll be happy to help (for a normal consulting fee). I hope this helps SOMEONE! Dan Daniel McAllister, President IT4SOHO, LLC Taxxolo wrote: Hi all, i'm using pop before smtp with roaming users on a QT mailserver and i read that only the pop3 access updates the ips in relay table of vpopmail database. Is there a way to enable that imap access makes it too?? I've got another server with plesk and qmail and it does it using couriertcp process instead of tcpserver. Thanks for any help! Regards, Paolo
Re: [qmailtoaster] RBL config: logs and whitelist.
An additional note: If your client sends from a particular e-mail address, you /CAN/ add his domain to a whitelist in the spamdyke config. (If he's got a static IP address, it's safer to use that than the domain name). NOTE: In the below examples, I have installed the spamdyke config files at /var/qmail/control/spamdyke/ The file for listing the IP address is defined in the file: /var/qmail/control/spamdyke/spamdyke.conf and by default would be: /var/qmail/control/spamdyke/whitelist_ip The entry to unblock your client would look like: 10.20.30.40 50.60.70.80 That is, one IP per line To whitelist particular senders (my first, but less secure suggestion), ADD the following line to your spamdyke.conf file: sender-whitelist-file=/var/qmail/spamdyke/whitelist_sender Next, create the file you just referenced and add lines like the following: [EMAIL PROTECTED] qmailtoaster-list@qmailtoaster.com That is, one address per line I hope this helps someone! Dan Daniel McAllister, President IT4SOHO, LLC 224 - 13th Avenue N St. Petersburg, FL 33701 877-IT4SOHO: Toll Free 727-647-7646 In Pinellas 813-464-2093 In Hillsborough 727-507-9435 Fax Only When did you do your last backup? Ask me about unattended offsite backup solutions... to protect your business, not just your data! Jake Vickers wrote: Marco Strambino wrote: Hi list! I found very interesting the idea of a spamkiller box suggested last week, so I intalled a qmt-iso 1.4.0 and compiled just rcpthosts and smtproutes, as suggested by Dan. Now a customer claims that his messages are rejected by my server. I checked in *ALL* log files in /var/log/qmail/* and there's no trace of him. Maybe could be a problem he has with RBL (as default I have zen.spamhaus.org configured). The question is: if a message is rejected by RBL check is logged anywhere ? And, is there a sort of whitelist domain based for skipping RBL check ? His IP address will be logged as flagging spamhaus in the SMTP logs - no more information is really logged if I remember right. Spamhaus blocks dynamic IP addresses, so any of your customers that use a cable modem, DSL, or dial-up will be denied. - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] How to not forward messages marked as spam
Rather than using an at the start of the line, I believe you can use a | and list an executable (bash or perl script) I have NOT tried this... I'm working purely from memory back when I was trying to do everything in QMail by myself (that is, before I found the Toaster!) I hope this helps someone! Dan Daniel McAllister, President IT4SOHO, LLC 224 - 13th Avenue N St. Petersburg, FL 33701 877-IT4SOHO: Toll Free 727-647-7646 In Pinellas 813-464-2093 In Hillsborough 727-507-9435 Fax Only When did you do your last backup? Ask me about unattended offsite backup solutions... to protect your business, not just your data! [EMAIL PROTECTED] wrote: As I stated in the original request, there are apparently 0 options for a forward line in the .qmail file. An account is set up to either forward using [address], or to not forward at all. How might I go about adding logic to a line? (That's really the root of the whole question) === Sounds like you'll need to add logic in .qmail to check the exit code from mailfilter, and only do the forward if the exit code is 0. [EMAIL PROTECTED] wrote: I already tried modifying /etc/mail/mailfilter to get it to dump local spam and TRY to abort the procedure. Here's what I inserted directly after reading in $VHOME/Maildir/.mailfilter. If the user's .mailfilter contains the line SPAMFORWARDDROP=1, the following executes: if((/^X-Spam-Status: Yes/:h) ($SPAMFORWARDDROP == 1)) { log Message deleted as specified by .mailfilter\n exception { to /home/vpopmail/domains/[the domain]/postmaster/Maildir/.Spam/ } log === END ===\n EXITCODE=1 exit } This works perfectly without having to modify the smtp delivery pipe, but the next line in .qmail which contains the forward ([address]) still executes. I've also tried setting EXITCODE=99 - no difference. = I'd look into customizing the /etc/mail/mailfilter script. It's part of the maildrop-toaster package, so if you change it, be sure to keep a backup copy handy because any changes would probably be clobbered by an upgrade of that package. -- -Eric 'shubes' = [EMAIL PROTECTED] wrote: Still no luck on this one - there are apparently 0 options for a forward line in the .qmail file. An account is set up to either forward using [address], or to not forward at all. Is there no way to forward ONLY IF the message meets certain criteria? (i.e. $subject !~/\*\*\* SPAM \*\*\*/) This has become a huge issue, particularly for blackberry users. -- -Eric 'shubes' - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] Re: Toaster on FC8
I have the QMT running on FC8 already -- I just told the build packages it was FC6 and everything worked fine for me... Unfortunately, I don't have a copy of your original post -- if you haven't already done so, could you post the output of the failed ezmlm build log-file? (If you have already done so, please send it to me off-list. If you don't know where it is, how to get it, etc., please contact me off-list). Dan Daniel McAllister, President IT4SOHO, LLC 224 - 13th Avenue N St. Petersburg, FL 33701 877-IT4SOHO: Toll Free 727-647-7646 In Pinellas 813-464-2093 In Hillsborough 727-507-9435 Fax Only When did you do your last backup? Ask me about unattended offsite backup solutions... to protect your business, not just your data! Roxanne Sandesara wrote: I'll be honest enough to say: I already explained why I'm installing FC8 instead of CentOS. I'd have preferred CentOS. It wasn't my idea for CentOS not to be able to install on my hardware. What I need is some guidance to getting this to work. Every other package in the series has installed until ezlmn. I'm not installing FC8_86_64. If there is no guidance you can offer me, where do I look for help? On Feb 28, 2008, at 2:21 PM, Erik A. Espinoza wrote: FC7 and 8 are not supported platforms yet. The best bet would be to run on a supported platform, such as CentOS 5. Erik On Thu, Feb 28, 2008 at 10:33 AM, Thomas M. Jaeger [EMAIL PROTECTED] wrote: Are you running on Fedora 8 x86 (fdr80 - 32 bit) or Fedora 8 x86_64 (fdr80_64 - 64 bit)? If you are running on the x86_64 you may want to see the following (and the RE: link at the bottom from Martin): http://www.mail-archive.com/qmailtoaster-list@qmailtoaster.com/msg00393.html I had the same issue when testing on Fedora 7 x86_64 on an Intel Dual Core Processor. I eventually switched to Fedora 7 x86; even with the dual core processor. It runs fast and smooth with no issues on installation. (Also understand that if you are using and not yet familiar with an x86_64 distro, you will get a workout. Be ready to search multiple list archives.) If you are having this issue on a Fedora 8 x86 machine, you may want to submit the problem to the linuxquestions.org list as well. Thomas M. Jaeger Computer Technician, A.A.S. [EMAIL PROTECTED] [EMAIL PROTECTED] -Original Message- From: Roxanne Sandesara [mailto:[EMAIL PROTECTED] Sent: Thursday, February 28, 2008 11:04 AM To: qmailtoaster-list@qmailtoaster.com Subject: [qmailtoaster] Re: Toaster on FC8 I've tried again, and got the same error as previously. This time, I was maintaining a script file of the entire process, so that I could accurately report the error. Any insights or assistance would be greatly appreciated. ./load ezmlm-gate subdb.a getconf.o slurpclose.o slurp.o \ getopt.a getln.a auto_bin.o env.a sig.a fs.a \ strerr.a substdio.a stralloc.a alloc.a error.a str.a case.a wait.a \ open.a lock.a seek.a -L/usr/lib64/mysql -lmysqlclient -lnsl - lm -lz /usr/bin/ld: cannot find -lmysqlclient collect2: ld returned 1 exit status make: *** [ezmlm-gate] Error 1 error: Bad exit status from /var/tmp/rpm-tmp.37118 (%build) RPM build errors: Bad exit status from /var/tmp/rpm-tmp.37118 (%build) error: File not found by glob: /usr/src/redhat/RPMS/i386/ezmlm*.rpm FYI, I have every mysql package for FC8 installed, including: mysql-5.0.45-6.fc8 mysql-devel mysql-server mysql-administrator mysql-test mysql-libs mysql-bench Roxanne - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional
Re: [qmailtoaster] a little question...
Sounds like what you really want is a TAP A TAP is an account (on the same domain or not) that receives a copy of all in outbound mail. (My guess is that you need this for regulatory or record keeping needs?). To create (turn on) a TAP, create a file in your control directory called taps. Each line of this file will specify a unique tap. (NOTE: the TAP functionality is NOT a standard part of QMail, but the patch is included in the QMT setup) For example, using QMT, you want to: # touch /var/qmail/control/taps You can TAP an individual account (I tap my kid's e-mails) or an entire domain. - To tap an individual user, use a line in the taps file that looks like: [EMAIL PROTECTED]:[EMAIL PROTECTED] - To tap an entire domain, use a line in the taps file that looks like: [EMAIL PROTECTED]:[EMAIL PROTECTED] NOTE: In the case of tapping an individual user, I believe you can use a destination e-mail address (mail_collector) that is on the same domain. However, in the case of tapping an entire domain, I believe you must use an outside (alternative) domain -- so that you don't create a loop! Mind you, the OTHERDOMAIN doesn't have to be a REAL Internet domain! If you create a local domain, all the mail delivery will be internal. For example, on my systems (where I host multiple domains), I have an INTERNAL domain called TAPS.LOCAL. Clients that pay for a TAP have a username of [EMAIL PROTECTED] So, as an example, suppose my client owns the domain SOMEDOMAIN.COM, and pays me to host their e-mail. They additionally want/need a TAP account. In addition to all their normal users (mail accounts, forwards, lists, etc.), they are given an account called [EMAIL PROTECTED] that collects ALL of the messages in out of the SOMEDOMAIN.COM e-mail system. (NOTE: This account gets BIG -- FAST! That's why I charge extra for a TAP account!) NOTE: My clients don't generally have POP or IMAP access to this account, as that's generally the whole POINT of a TAP: making sure you have a complete record of e-mails! If you need additional assistance (I have a few financial legal office clients who use this functionality), please feel free to contact me. I hope this helps... someone! Dan Daniel McAllister, President IT4SOHO, LLC 224 - 13th Avenue N St. Petersburg, FL 33701 877-IT4SOHO: Toll Free 727-647-7646 In Pinellas 813-464-2093 In Hillsborough 727-507-9435 Fax Only When did you do your last backup? Ask me about unattended offsite backup solutions... to protect your business, not just your data! lospippolo wrote: ...that may be off-topic. I've already my domain MAILDOMAIN.COM up running I need to create a catch all account (e.g. [EMAIL PROTECTED]) that collect ALL mail for anyaddress@list.mydomain.com I but I do not have idea of as being able to make the list.mydomain.com :-( Perhaps an alias ? Any suggestion ? Best regards. - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] 553 Error, Outlook
The likely error is in your tcprules.d/tcp.smtp file By default, the system will only allow mail to flow THROUGH the server (in other words, RELAY) from users ON the server. You'll need to add one of the following lines (Only 1 is required -- the 1 that applies to your LAN network) to allow LAN connected users to send mail to OTHER domains. 10.:allow,RELAYCLIENT= 172.16.:allow,RELAYCLIENT= 172.17.:allow,RELAYCLIENT= 172.18.:allow,RELAYCLIENT= 172.19.:allow,RELAYCLIENT= 172.20.:allow,RELAYCLIENT= 172.21.:allow,RELAYCLIENT= 172.22.:allow,RELAYCLIENT= 172.23.:allow,RELAYCLIENT= 172.24.:allow,RELAYCLIENT= 172.25.:allow,RELAYCLIENT= 172.26.:allow,RELAYCLIENT= 172.27.:allow,RELAYCLIENT= 172.28.:allow,RELAYCLIENT= 172.29.:allow,RELAYCLIENT= 172.30.:allow,RELAYCLIENT= 172.31.:allow,RELAYCLIENT= 192.168.:allow,RELAYCLIENT= This is in ADDITION to the current lines (default for the toaster) that should look something like: 127.:allow,RELAYCLIENT=,DKSIGN=/var/qmail/control/domainkeys/%/private :allow,BADMIMETYPE=,BADLOADERTYPE=M,\ CHKUSER_RCPTLIMIT=15,CHKUSER_WRONGRCPTLIMIT=3,\ DKVERIFY=DEGIJKfh,QMAILQUEUE=/var/qmail/bin/simscan,\ DKQUEUE=/var/qmail/bin/qmail-queue.orig,\ DKSIGN=/var/qmail/control/domainkeys/%/private NOTE: An alternative is to require ALL users to login to the SMTP server -- this bypasses the no-relay rule as well. I hope this helps someone! Dan Daniel McAllister, President IT4SOHO, LLC 224 - 13th Avenue N St. Petersburg, FL 33701 877-IT4SOHO: Toll Free 727-647-7646 In Pinellas 813-464-2093 In Hillsborough 727-507-9435 Fax Only When did you do your last backup? Ask me about unattended offsite backup solutions... to protect your business, not just your data! [EMAIL PROTECTED] wrote: Hi All, I have two clients who we've recently moved from our older toaster to our newer one. Both use outlook/outlook express, and both can receive incoming mail, but not send it (relay) to domains not living on the toaster. In other words, if the client sends to their own accounts within their own vdomain, or to another vdomain on the toaster, it works. If they try to send to any domain not on the toaster, they get: 553 sorry, that domain isn't in my list of allowed rcpthosts (#5.5.3 - chkuser) This is with a fresh outlook install, and a fresh user account, known good. I've verified this directly, so I know the clients aren't imagining this. Any suggestions are greatly appreciated. TIA, --Duncan - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
[qmailtoaster] Request for ideas
Greetings fellow QMail admins: I am having an issue that is not life-threatening (or even business-threatening), but annoying none-the-less. I have a client who recently moved her Linux Server to her semi-retirement apartment in anther state. Her Linux Server reports in daily with status and various scan results. However, since her move (basically, since the switch to a dynamic IP address), my server has been blocking those reports because SORBS (correctly) sees her system as being on a dynamic IP block. So, the question for the group is: Can I turn off spam blocking for a specific address, or better yet, whitelist a from address? I am using QMT, all latest updates (except latest ClamAV), and have added on SpamDyke. NOTE: I have already created the whitelist_sender file in my spamdyke control directory -- to no effect. Thanks in advance for all ideas! Dan Daniel McAllister, President IT4SOHO, LLC 224 - 13th Avenue N St. Petersburg, FL 33701 877-IT4SOHO: Toll Free 727-647-7646 In Pinellas 813-464-2093 In Hillsborough 727-507-9435 Fax Only When did you do your last backup? Ask me about unattended offsite backup solutions... to protect your business, not just your data! - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] Forwarding Mails to another server (smtproutes)
I have done some testing... I don't know if the QMail-Remote-Auth patch is a part of QMT, but if so - then it is not working. What this patch is /supposed /to do is to allow the addition of username password info in the smtproutes file. The idea being, if I place in my smtproutes file a line like: *:mail.myserver.com [EMAIL PROTECTED] mypassword * which is actually 2 fields longer than a normal smtproutes line (the extra 2 lines being a username (which, in the case of QMT is an email address) and a password, then all my outbound emails should be routed to the server *mail.myserver.com* and when the connection is made, SMTP_AUTH is supposed to be used, using the credentials provided. Any chance someone better at this than I am could figure out how to add the QMail-Remote-Auth patch??? (Or figure out why it isn't working?) I [personally] think that this patch should be a permanent part of the Toaster... any comments? BTW: I tested this by adding a valid username/password entry to a server, then sending a test message, then checking the send log -- which indicates that the connection is still proceeding without the authentication (exact snippet from the log file is: *delivery 29: failure: User_and_password_not_set,_continuing_without_authentication.*) Cheers! Dan Daniel McAllister, President IT4SOHO, LLC 224 - 13th Avenue N St. Petersburg, FL 33701 877-IT4SOHO: Toll Free 727-647-7646 In Pinellas 813-464-2093 In Hillsborough 727-507-9435 Fax Only When did you do your last backup? Ask me about unattended offsite backup solutions... to protect your business, not just your data! Eric Shubert wrote: You got me, then. Maybe a TLS issue? I'd try turning on recordio to see what's happening. You can find instructions on using recordio in the list archives. It'd be nice to have a wiki page on that, but I don't recall anyone writing one yet. Johannes Weberhofer, Weberhofer GmbH wrote: Yes, the user/password is valid on the receiving server. Johannes Eric Shubert schrieb: Is that user/pw an account on the sending or receiving server? It needs to be an account on the receiving server. Johannes Weberhofer, Weberhofer GmbH wrote: Yes, it has (the line is: weberhofer.at:mail.weberhofer.at:587 [EMAIL PROTECTED] password). Johannes Eric Shubert schrieb: Does his machine's smtproutes record include a username and password? It needs that in order to authenticate. I believe the wiki has details. Johannes Weberhofer, Weberhofer GmbH wrote: Hello everyone! I have a question related to the smtproutes. I want to force one of my customers to route external mails through my server, internal mails should stay within his office. I have set up an qmail-toaster within the office which operates perfectly. My server works perfectly, too. When I modify the smptroutes to forward all mails to my server's submission port the customer always gets an error message like this: - returning mail's content [EMAIL PROTECTED]: Connected to 80.237.247.145 but sender was rejected. Remote host said: 503 AUTH first (#5.5.1) - Do you have any ideas how this could be done? Unfortunately the sender does not have a fixed IP address, so he must send authenticated only. Also sending via port 25 does not work. Do you have any ideas? Below you see all the relevant settings and log-files. Best regards, Johannes Weberhofer - /var/qmail/control/smtproutes at my customer's server weberhofer.at:mail.weberhofer.at:587 [EMAIL PROTECTED] password - submission/current in my relaying mail server: @40004817317702ef9834 CHKUSER accepted sender: from [EMAIL PROTECTED]:: remote server.office.mycustomer.domain:unknown:YYY.YYY.YYY.YYY rcpt : sender accepted - smtp/current at my customer's server: @4000481731762d9096c4 status: local 0/10 remote 1/60 @40004817317701c5b27c delivery 83: failure: Connected_to_XXX.XXX.XXX.XXX_but_sender_was_rejected./Remote_host_said:_503_AUTH_first_(#5.5.1)/ @40004817317701c5c21c status: local 0/10 remote 0/60 -- trying to send via port 25 results in the following smtp/current at my customer's server: @40004817350e1c560d1c delivery 87: deferral: No_supported_AUTH_method_found,_continuing_without_authentication. /80.237.247.145_does_not_like_recipient. /Remote_host_said:_451_http://www.spamhaus.org/query/bl?ip=YYY.YYY.YYY.YYY/Giving_up_on_XXX.XXX.XXX.XXX./
Re: [qmailtoaster] DNS issue
I'm a little johnny-come-lately on this discussion, but here's my 2-cents worth: First, let's be clear on something -- with the exception of your own LAN, you do not control, nor does your server answer for a reverse-DNS lookup. DJBDNS, Bind, or even windoze DNS servers answer for NAME lookups for your configured domains, but the REVERSE DNS lookup will be resolved by your ISP. (Amazing how many admins get this wrong!) Based on your question, you may or may not have already known that, but I wanted to get it out of the way anyways. (Again, your LAN is the exception). Now typically, djbdns is setup as a caching nameserver -- which means it doesn't resolve LAN names or addresses -- just Internet ones. So that is probably where your first problem is. To learn how to install local domains, go to http://cr.yp.to/djbdns/run-server-bind.html This is where Daniel (Bernstein, not me) explains how to import and/or create the database for his djbdns system. (Personally, I use bind). Finally, remember that the REVERSE DNS zone has to be NAMED something like (using your apparent LAN address below): 1.168.192.in-addr.arpa and should contain an SOA and PTR records only (certain optional records -- like LOC are OK, but there is no need for the likes of NS or MX records in a reverse-DNS zone file). This seems counter-intuitive, but has to do with the database hierarchy that the Internet DNS system uses. (Basically, it is your network address with the bytes reversed -- so, your network address being 192.168.1[.0] (assuming a 24-bit netmask of 255.255.255.0), you reverse that to 1.168.192. Then, tell the system that this is a REVERSE zone by ending the name with in-addr.arpa). I hope this helps someone! Dan Daniel McAllister, President IT4SOHO, LLC 224 - 13th Avenue N St. Petersburg, FL 33701 877-IT4SOHO: Toll Free 727-647-7646 In Pinellas 813-464-2093 In Hillsborough 727-507-9435 Fax Only When did you do your last backup? Ask me about unattended offsite backup solutions... to protect your business, not just your data! Eric Shubert wrote: Kent Busbee wrote: See response below; Eric Shubert wrote: spamdyke is filtering because the sender isn't authorizing itself. The simplest (and safest) solution is to have all senders authorize themselves. If they're authorized then all spamdyke filters are bypassed, and you don't have to worry about rDNS for your local network (which is otherwise fruitless). You may need to add smtp authorization to squirrelmail configuration if you have people using the toaster's squirrelmail. I keep forgetting to mention that Auth does not seem to be an option. The accounting package does not seem to work with it. I tried setting to submission port 587 and CRAM-MD5, but it says auth failed. I believe the software is at fault, so I hope to get it to work the standard way. Unless you think it is possible Auth is not working do to r-dns. If you think we could more easily trouble shoot the Auth, let me know. On a positive note, I did convert SM to use port 587 (submission) and Auth CRAM-MD5. After installing spamdyke, submissions had slowed in squirrel mail - you would click send and then watch the hourglass for a minute before message successfully sent. After converting to use submission, messages again go right through. I would recommend for anyone using spamdyke and squirrel mail. This slowness with SM is indicative of a dns/rbl problem, typically a dns timeout caused by who knows what. I'd have a look at the contents of /etc/resolv.conf. Since you're running a local dns server, the first nameserver entry should be 127.0.0.1. You should be using a static IP address on your toaster so that DHCP doesn't overwrite this file. If you can dig some sample external domains in quick fashion, then you probably are using an rbl which is having problems. If your dns server is just a localcache (recursive) server and not authoritative, I'd recommend using bind instead of djbdns. To use bind, remove what you have for djbdns, then # yum -y install bind bind-chroot caching-nameserver That's all there is to it. As for the errant submitter @192.168.1.19, have you tried adding this address to the /etc/spamdyke/whitelist_ip file?
Re: [qmailtoaster] Problem with DNS temporary failure
Interesting query -- it took several checks to find the issue(s)... here's what I checked what I deduced: # dig ns msa.hinet.net @4.2.2.2 This querey for the nameservers for the given domain (from a Verizon DNS server) reported NO NAME SERVERS So, my assumption was that msa was a hostname on the hinet.net domain. But assumptions are bad, so I checked: # dig a msa.hinet.net @4.2.2.2 This query reported an IP address of 168.95.4.211, which means I MIGHT be right... but let's check further I tried: # dig mx msa.hinet.net @4.2.2.2 which returned 9 different mail servers (msa-mx[1-9].hinet.net.), but ALL of them had a weight level of zero. This strongly implies that msa.hinet.net is intended to truly be a sub-domain of hinet.net... so I checked for a separate zone file with: # dig soa msa.hinet.net @4.2.2.2 and I received an SOA record... but wait, it was the SOA record for hinet.net, not the sub-domain. So, what have we learned: 1) msa.hinet.net is not really a sub-domain for hinet.net. If that is what is desired, then a new zone file needs to be created, with a unique SOA and unique NS and MX records. 2) msa.hinet.net is (for now) a hostname (or more correctly, a Fully Qualified Domain Name: FQDN) -- but a hostname that has MX records (multiple) assigned to it (legal, but not completel legit) 3) The MX records for msa.hinet.net are incorrectly formated -- I'm not positive, but I don't believe a weight (or preference level) of zero is valid. Try a level of 10. I DO believe that having them all set to the same preference is legal -- it creates a round-robin effect (or at least is supposed to). So -- at a minimum, fix your MX record preference levels. However, appearances seem to favor that you're trying to setup a truly differentiated sub-domain of hinet.net, in which case your DNS zone file needs to be created and correctly referenced within your hinet.net zone file. I hope this helps someone! Dan Daniel McAllister, President IT4SOHO, LLC 224 - 13th Avenue N St. Petersburg, FL 33701 877-IT4SOHO: Toll Free 727-647-7646 In Pinellas 813-464-2093 In Hillsborough 727-507-9435 Fax Only When did you do your last backup? Ask me about unattended offsite backup solutions... to protect your business, not just your data! Guillermo Villasana wrote: Hi guys I am having the following problem with this domain: msa.hinet.net every time I send an email to this domain I get: DNS temporary failure I checked my DNS and I do get several Any thoughts why? Thanks Terius - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] Problem with DNS temporary failure
OOPS... I meant to include a link to a HOWTO for creating subdomain zone files (and creating the correct delegation) See http://www.zytrax.com/books/dns/ch9/delegate.html I hope this helps... someone! Dan Daniel McAllister, President IT4SOHO, LLC 224 - 13th Avenue N St. Petersburg, FL 33701 877-IT4SOHO: Toll Free 727-647-7646 In Pinellas 813-464-2093 In Hillsborough 727-507-9435 Fax Only When did you do your last backup? Ask me about unattended offsite backup solutions... to protect your business, not just your data! Dan McAllister wrote: Interesting query -- it took several checks to find the issue(s)... here's what I checked what I deduced: # dig ns msa.hinet.net @4.2.2.2 This querey for the nameservers for the given domain (from a Verizon DNS server) reported NO NAME SERVERS So, my assumption was that msa was a hostname on the hinet.net domain. But assumptions are bad, so I checked: # dig a msa.hinet.net @4.2.2.2 This query reported an IP address of 168.95.4.211, which means I MIGHT be right... but let's check further I tried: # dig mx msa.hinet.net @4.2.2.2 which returned 9 different mail servers (msa-mx[1-9].hinet.net.), but ALL of them had a weight level of zero. This strongly implies that msa.hinet.net is intended to truly be a sub-domain of hinet.net... so I checked for a separate zone file with: # dig soa msa.hinet.net @4.2.2.2 and I received an SOA record... but wait, it was the SOA record for hinet.net, not the sub-domain. So, what have we learned: 1) msa.hinet.net is not really a sub-domain for hinet.net. If that is what is desired, then a new zone file needs to be created, with a unique SOA and unique NS and MX records. 2) msa.hinet.net is (for now) a hostname (or more correctly, a Fully Qualified Domain Name: FQDN) -- but a hostname that has MX records (multiple) assigned to it (legal, but not completel legit) 3) The MX records for msa.hinet.net are incorrectly formated -- I'm not positive, but I don't believe a weight (or preference level) of zero is valid. Try a level of 10. I DO believe that having them all set to the same preference is legal -- it creates a round-robin effect (or at least is supposed to). So -- at a minimum, fix your MX record preference levels. However, appearances seem to favor that you're trying to setup a truly differentiated sub-domain of hinet.net, in which case your DNS zone file needs to be created and correctly referenced within your hinet.net zone file. I hope this helps someone! Dan Daniel McAllister, President IT4SOHO, LLC 224 - 13th Avenue N St. Petersburg, FL 33701 877-IT4SOHO: Toll Free 727-647-7646 In Pinellas 813-464-2093 In Hillsborough 727-507-9435 Fax Only When did you do your last backup? Ask me about unattended offsite backup solutions... to protect your business, not just your data! Guillermo Villasana wrote: Hi guys I am having the following problem with this domain: msa.hinet.net every time I send an email to this domain I get: DNS temporary failure I checked my DNS and I do get several Any thoughts why? Thanks Terius - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] RE: Weird issue with qmailadmin
I also had a problem with this error -- and it had a REALLY odd cause: I was logging in from a site that had a load-balancing dual-wan router... so qmailadmin thought I was logging in from 2 separate IP addresses. I fixed it in this case by using an SSL connection (https://mydomain.com/qmailadmin). This prevented the load-balancing router from load-balancing my connection to the qmail server. Not likely your problem (Jake's answer is MUCH more likely), but thought I'd throw the information out there... just in case! I hope this helps... someone! Dan Daniel McAllister, President IT4SOHO, LLC 224 - 13th Avenue N St. Petersburg, FL 33701 877-IT4SOHO: Toll Free 727-647-7646 In Pinellas 813-464-2093 In Hillsborough 727-507-9435 Fax Only When did you do your last backup? Ask me about unattended offsite backup solutions... to protect your business, not just your data! Jake Vickers wrote: Helmut Fritz wrote: nobody huh? :( -Original Message- From: Helmut Fritz [mailto:[EMAIL PROTECTED] Sent: Sunday, May 18, 2008 10:25 AM To: 'qmailtoaster-list@qmailtoaster.com' Subject: Weird issue with qmailadmin Recently (the last 3 or 4 months) I have been getting a weird error when attempting operations via qmailadmin. I can log in as postmaster fine, but when I try an operation is get this text across the top of the window. Only one person can log in as system postmaster at one time. Someone else has logged in. Please only have one login at a time. I then get dumped back to the log in window and log in as postmaster again and try the same operation again. This does not occur 100% of the time, probably 75%. If I am persistent, I get it to work. I recently did an upgrade via QTP-newmodel, but has this error before the upgrade as well. It did work when I first set the machine up, but after a few months of running I started getting this error (I only need to make changes infrequently). My domains all get created with vadddomain nowadays. The initial domains were created with admin-toaster. I get the error with orignal domains and new domains. I found an error in the apache error log that may be related due to the time of errors (although not sure). PHP Notice: Use of undefined constant r - assumed 'r' in /usr/share/toaster/include/admin.inc.php on line 137 There are also other errors that seem to be related to a successful qmailadmin operation, probably for a separate thread sometime. That error is okay to ignore. It happens everytime someone logs in using postmaster. I've seen this before, but only for 1 of 2 reasons: someone is already logged into qmailadmin as the postmaster (did you use a strong password? In the case I was called in to investigate they had set the password as password and someone had hacked (it was so simply done and for such a STUPID reason I hate to even call it hacking) into their account and was creating email accounts for themselves) Using the postmaster account in an IMAP client will also generate this error in another case I've seen. Does someone monitor the postmaster account (sometimes set as a catch-all) and uses IMAP? - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
[qmailtoaster] Duplicate Mail Receives
Greetings all: I have a client running a toaster (recently updated to the latest everything on the QMT website) who is now suddenly receiving multiple copies of the same email. I have checked the qmail-smtp logs and see nothing unusual, and I have at least 20 other sites using the exact same settings (for all but the domain and user names) -- but this client is the only one complaining of duplicate e-mails. Any clues where to look?? Thankful for all your help... Dan -- Daniel McAllister, President IT4SOHO, LLC 224 - 13th Avenue N St. Petersburg, FL 33701 877-IT4SOHO: Toll Free 727-647-7646 In Pinellas 813-464-2093 In Hillsborough 727-507-9435 Fax Only When did you do your last backup? Ask me about unattended offsite backup solutions... to protect your business, not just your data! - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] Duplicate Mail Receives
The e-mails show up in Outlook, but the header on each message is entirely unique -- so I would surmise that the message is coming in twice from the sending server. This leads me to believe that the Toaster isn't acknowledging something at the end of the receive, so the sender is re-sending in an incorrect belief that the message was NOT delivered previously. This is really starting to annoy the owner (my client), but fortunately, his employees are not complaining (a mere nuisance to them). As always, any help is appreciated! Dan Daniel McAllister, President IT4SOHO, LLC 224 - 13th Avenue N St. Petersburg, FL 33701 877-IT4SOHO: Toll Free 727-647-7646 In Pinellas 813-464-2093 In Hillsborough 727-507-9435 Fax Only When did you do your last backup? Ask me about unattended offsite backup solutions... to protect your business, not just your data! António Pedro Lima wrote: You say your client complains about getting duplicate emails. Where does he see his emails? Outlook? Or webmail? -Mensagem original- De: Dan McAllister [mailto:[EMAIL PROTECTED] Enviada: terça-feira, 27 de Maio de 2008 20:56 Para: qmailtoaster-list@qmailtoaster.com Assunto: [qmailtoaster] Duplicate Mail Receives Greetings all: I have a client running a toaster (recently updated to the latest everything on the QMT website) who is now suddenly receiving multiple copies of the same email. I have checked the qmail-smtp logs and see nothing unusual, and I have at least 20 other sites using the exact same settings (for all but the domain and user names) -- but this client is the only one complaining of duplicate e-mails. Any clues where to look?? Thankful for all your help... Dan -- Daniel McAllister, President IT4SOHO, LLC 224 - 13th Avenue N St. Petersburg, FL 33701 877-IT4SOHO: Toll Free 727-647-7646 In Pinellas 813-464-2093 In Hillsborough 727-507-9435 Fax Only When did you do your last backup? Ask me about unattended offsite backup solutions... to protect your business, not just your data! - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] Duplicate Mail Receives
Sorry for the duplication folks... seems my SPAM Filter suddenly decided that the list was SPAM (in spite of being specifically white-listed). In any case, since my client hosts only their own email, but only recently upgraded to using SpamDyke, I set the idle-timeout-secs=120 in my spamdyke.conf file. Time will tell it that resolves the issue! Thanks for the replies... Dan Daniel McAllister, President IT4SOHO, LLC 224 - 13th Avenue N St. Petersburg, FL 33701 877-IT4SOHO: Toll Free 727-647-7646 In Pinellas 813-464-2093 In Hillsborough 727-507-9435 Fax Only When did you do your last backup? Ask me about unattended offsite backup solutions... to protect your business, not just your data! Dan McAllister wrote: The e-mails show up in Outlook, but the header on each message is entirely unique -- so I would surmise that the message is coming in twice from the sending server. This leads me to believe that the Toaster isn't acknowledging something at the end of the receive, so the sender is re-sending in an incorrect belief that the message was NOT delivered previously. This is really starting to annoy the owner (my client), but fortunately, his employees are not complaining (a mere nuisance to them). As always, any help is appreciated! Dan Daniel McAllister, President IT4SOHO, LLC 224 - 13th Avenue N St. Petersburg, FL 33701 877-IT4SOHO: Toll Free 727-647-7646 In Pinellas 813-464-2093 In Hillsborough 727-507-9435 Fax Only When did you do your last backup? Ask me about unattended offsite backup solutions... to protect your business, not just your data! António Pedro Lima wrote: You say your client complains about getting duplicate emails. Where does he see his emails? Outlook? Or webmail? -Mensagem original- De: Dan McAllister [mailto:[EMAIL PROTECTED] Enviada: terça-feira, 27 de Maio de 2008 20:56 Para: qmailtoaster-list@qmailtoaster.com Assunto: [qmailtoaster] Duplicate Mail Receives Greetings all: I have a client running a toaster (recently updated to the latest everything on the QMT website) who is now suddenly receiving multiple copies of the same email. I have checked the qmail-smtp logs and see nothing unusual, and I have at least 20 other sites using the exact same settings (for all but the domain and user names) -- but this client is the only one complaining of duplicate e-mails. Any clues where to look?? Thankful for all your help... Dan -- Daniel McAllister, President IT4SOHO, LLC 224 - 13th Avenue N St. Petersburg, FL 33701 877-IT4SOHO: Toll Free 727-647-7646 In Pinellas 813-464-2093 In Hillsborough 727-507-9435 Fax Only When did you do your last backup? Ask me about unattended offsite backup solutions... to protect your business, not just your data! - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] Duplicate Mail Receives
The server is an older one -- using an Athlon XP 2400+ CPU, 1GB RAM. Again, it hosts a single mail domain (well, really 2 -- one aliased to the other), and the problem showed up a few weeks after they were upgraded to using SpamDyke. As I mentioned in an earlier (today) post, there was some great info in the archives (under a load-balancing thread of all places) at http://www.mail-archive.com/qmailtoaster-list@qmailtoaster.com/msg18986.html As my log files didn't show ANYTHING unusual, I have surmised that the REMOTE mail server timed out (or mine did) while processing the message. I cannot control the remote side, so I tried one of the suggestions in the above-mentioned thread -- I increased SpamDyke's idle timeout value, albeit not nearly as much as the suggested one: I doubled it to 120 (from 60) vs. the tread's suggestion of 400. Again, only time will tell and my silent (again) phone! :-) Again, thanks to Sergio Minini for the suggestion pointer to that particular thread in the archives Dan Daniel McAllister, President IT4SOHO, LLC 224 - 13th Avenue N St. Petersburg, FL 33701 877-IT4SOHO: Toll Free 727-647-7646 In Pinellas 813-464-2093 In Hillsborough 727-507-9435 Fax Only When did you do your last backup? Ask me about unattended offsite backup solutions... to protect your business, not just your data! Kyle Quillen wrote: Dan, I know exactly what you are dealing with. Can you give us some specs as to what you are running and what are you load averages and hardware of the server? Thanks Q On Mon, 2008-06-02 at 15:19 -0400, Dan McAllister wrote: The e-mails show up in Outlook, but the header on each message is entirely unique -- so I would surmise that the message is coming in twice from the sending server. This leads me to believe that the Toaster isn't acknowledging something at the end of the receive, so the sender is re-sending in an incorrect belief that the message was NOT delivered previously. This is really starting to annoy the owner (my client), but fortunately, his employees are not complaining (a mere nuisance to them). As always, any help is appreciated! Dan Daniel McAllister, President IT4SOHO, LLC 224 - 13th Avenue N St. Petersburg, FL 33701 877-IT4SOHO: Toll Free 727-647-7646 In Pinellas 813-464-2093 In Hillsborough 727-507-9435 Fax Only When did you do your last backup? Ask me about unattended offsite backup solutions... to protect your business, not just your data! António Pedro Lima wrote: You say your client complains about getting duplicate emails. Where does he see his emails? Outlook? Or webmail? -Mensagem original- De: Dan McAllister [mailto:[EMAIL PROTECTED] Enviada: terça-feira, 27 de Maio de 2008 20:56 Para: qmailtoaster-list@qmailtoaster.com Assunto: [qmailtoaster] Duplicate Mail Receives Greetings all: I have a client running a toaster (recently updated to the latest everything on the QMT website) who is now suddenly receiving multiple copies of the same email. I have checked the qmail-smtp logs and see nothing unusual, and I have at least 20 other sites using the exact same settings (for all but the domain and user names) -- but this client is the only one complaining of duplicate e-mails. Any clues where to look?? Thankful for all your help... Dan -- Daniel McAllister, President IT4SOHO, LLC 224 - 13th Avenue N St. Petersburg, FL 33701 877-IT4SOHO: Toll Free 727-647-7646 In Pinellas 813-464-2093 In Hillsborough 727-507-9435 Fax Only When did you do your last backup? Ask me about unattended offsite backup solutions... to protect your business, not just your data! - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] Confusing of maillist and email address
Think about what you're asking... Hey QMail, when you get an e-mail addressed to [EMAIL PROTECTED], READ THE SENDERS MIND and send it to the correct location, either our e-mail, or the list! OK, all sarcasm aside... if you are looking for an e-mail that collects all of the support e-mails (from the list), then you don't need a separate account -- the list feature includes an archive option that allows all message to be saved Other than that, if you truly want a separate e-mail, the address will need to be different from the list name so that QMail knows how to handle it. I hope this helps someone! Dan Daniel McAllister, President IT4SOHO, LLC PO BOX 507 St. Petersburg, FL 33731-0507 877-IT4SOHO: Toll Free 727-647-7646 In Pinellas 813-464-2093 In Hillsborough 727-507-9435 Fax Only When did you do your last backup? Ask me about unattended offsite backup solutions... to protect your business, not just your data! Truong Duc Luong wrote: Hi list, I have a maillist: [EMAIL PROTECTED] mailto:[EMAIL PROTECTED]. Now, I want to create an email [EMAIL PROTECTED] mailto:[EMAIL PROTECTED] for our business. Can I create an email address have same name as maillist? I'm using: qmail, vpopmail (with mysql). Thanks for all help!
Re: [qmailtoaster] ClamAV Package Updated
One quick comment -- I was forced (by a client) to install the latest QMT onto a Fedora Core 8 system. As has been noted here before, there is an incompatibility in the build scripts for simscan and the glibc that FC8 (actually FC7 too) uses. (my FC5 uses glibc 2.4, FC7 8 use glibc 2.7). My own investigation turned up that simscanmk.c was calling an open routine in glibc that in the newer version REQUIRES an explicit mode (set of permissions). So, I patched the simscanmk.c file and rebuilt (it seems OK to me so far -- but it has been in service only about 2 weeks now). NOTE: I did it brute force by adding a 0x0644 mode -- the RIGHT way would be to get the UMASK value from the system and use it to build the right mode -- but I was in a hurry and my UMASK for regular files was 022 anyway! I should also note that simscan itself is now at release 1.4 (vs. the 1.3 that the toaster uses). I suspect a main reason for the 1.4 release was the new fopen requirements in the new glibc! (I'm sure other improvements are included -- but compatibility has to have been a major driving force.) Not sure if this is of any relevance to you (or anyone on the list) -- but thought it might be worth mentioning. BTW: The line in simscanmk.c is #133 -- just add the 0x0644 to the open call. It's actually irrelevant, as there is a call to chmod later to explicitly set the permission to 644 anyway!) I didn't actually create a patch file -- I just manually edited the file, then finished the build. I hope this helps someone! Dan -- Dan McAllister, President IT4SOHO, LLC PLEASE NOTE OUR NEW ADDRESS: 224 - 13th Avenue N St. Petersburg, FL 33701 All other contact info remains unchanged: 877-IT4SOHO - Toll Free 727-647-7646 - In Pinellas 727-507-9435 - Fax On Thu, September 4, 2008 11:09 am, Eric Shubert wrote: nightduke wrote: qmailctl cdb Usage: Qmail {start|stop|restart|condrestart|reload|status|fullstatus|graceful|help|configtest} Which qmailctl are you running? qmail-toaster-1.03-1.3.15 gives: # qmailctl Usage: /usr/bin/qmailctl {start|stop|restart|doqueue|reload|stat|pause|cont|cdb|queue|help} i do qmail restart but dosen't but i try simscan and do segmentation fault. simscan is not meant to be run from the CLI. Nightduke 2008/9/4 Eric Shubert [EMAIL PROTECTED]: Or, you could have run qtp-newmodel if you had qmailtoaster-plus installed. ;) Much safer this way. BTW, did you think to: .) qmailctl cdb, in case simscan needs to know about the new clamav? .) restart qmail? These aren't always required, but sometimes they are. nightduke wrote: Finally i found how to update on centos. i download the file from qmail toaster rpmbuild --rebuild --with cnt50 clamav-toaster-0.94-1.3.21.src.rpm at /usr/src/redhat/RPMS/i386 rpm -Uvh clamav-toaster-0.94-1.3.21.i386.rpm Updated. Thanks. Nightduke 2008/9/4 nightduke [EMAIL PROTECTED]: How i do the update to the latest version of clamav? Thanks Nightduke 2008/9/4 Erik A. Espinoza [EMAIL PROTECTED]: Greetings, A new clamav package has been released and is on qmailtoaster.com for download. Thanks, Erik -- -Eric 'shubes' - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] -- -Eric 'shubes' - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] spamassassin-toaster-3.2.5-1.3.14 || problem on dependencies || 64 bit CentOS 5 (Resolved)
My guess is that you're running 64-bit Linux (that is, an x86_64 installation). If this is the case, the reason you're seeing zlib show up twice is that you have both the i386 and x86_64 versions installed. Unfortunately, the rpm command doesn't show you this information, but I'll bet yum will. On my own FC5 system, here's what I get *# rpm -qa | grep zlib* zlib-devel-1.2.3-1.2.1 zlib-1.2.3-1.2.1 zlib-devel-1.2.3-1.2.1 zlib-1.2.3-1.2.1 *# yum list zlib** ...stuff deleted here... zlib.i3861.2.3-1.2.1installed zlib.x86_64 1.2.3-1.2.1installed zlib-devel.x86_641.2.3-1.2.1installed zlib-devel.i386 1.2.3-1.2.1installed Just an FYI -- I've had problems in the past with trying to RE-install Zlib as part of the QMT installation because I am virtually always connected via an SSH shell... so I have my install (and update) scripts skip over Zlib. After all, if zlib isn't there, I am not there either! So you can skip over any idea you have that the duplicate entries are any kind of error. It is perfectly normal in an x86_64 environment for the package to show twice -- once in i386 and once in x86_64. Now, if you think that's wasteful or duplicitous -- try Gentoo Linux build everything for your own specific hardware! I hope this helps... someone!!! Dan Daniel McAllister, President IT4SOHO, LLC PO BOX 507 St. Petersburg, FL 33731-0507 877-IT4SOHO: Toll Free 727-647-7646 In Pinellas 813-464-2093 In Hillsborough 727-507-9435 Fax Only When did you do your last backup? Ask me about unattended offsite backup solutions... to protect your business, not just your data! Eric Shubert wrote: That appears to be the case. I'm at a loss as to why the rpm command shows the same packages twice. You might google a bit to see if you can find something on it. Luis Lopez wrote: PS. This is only happening with that Zlib package as far as i can tell. Sincerely, Luis Lopez Eric Shubert wrote: The rpm command shouldn't be listing zlib twice. I wonder if your rpm database is a bit corrupt. You might try # rpm --rebuilddb Does that fix it? Luis Lopez wrote: This is what I got: # rpm -qa |grep zlib zlib-1.2.3-3 zlib-devel-1.2.3-3 zlib-1.2.3-3 zlib-devel-1.2.3-3 Sincerely, Luis Lopez Eric Shubert wrote: Looks like it's not parsing your zlib package version correctly. What does your system return for: # rpm -qa | grep zlib ? P.S. Glad you're up to date! Luis Lopez wrote: Yoohoo all My packages are up-to-date. I do get one little error on: # ./qtp-ami-up2date */usr/sbin/qtp-config: line 117: 3-3 zlib-1: syntax error in expression (error token is zlib-1)* No New Qmail-Toaster Packages Available That line has this little if statement which is gibberish to me: if [ $((updt_v1)) -gt $((inst_v1)) ] \ || ( [ $((updt_v1)) -eq $((inst_v1)) ] \ [ $((updt_v2)) -gt $((inst_v2)) ] ) \ || ( [ $((updt_v1)) -eq $((inst_v1)) ] \ [ $((updt_v2)) -eq $((inst_v2)) ] \ [ $((updt_v3)) -gt $((inst_v3)) ] ); then But as long as it works, it should be ok. Thanks Guys. Sincerely, Luis Lopez * * * * Luis Lopez wrote: Just a quick note on how I installed this. 1. yum --enablerepo=rpmforge install perl-Archive-Tar if for some reason it tries all the repos and errors out with bad checksum go: /yum clean up yum check-update / 2. yum --enablerepo=rpmforge install perl-LWP-UserAgent-Determined This will install the last two dependencies, resolving this error: perl(Archive::Tar) = 1.23 is needed by spamassassin-toaster-3.2.5-1.3.14.x86_64 perl(HTTP::Date) is needed by spamassassin-toaster-3.2.5-1.3.14.x86_64 perl(IO::Zlib) = 1.04 is needed by spamassassin-toaster-3.2.5-1.3.14.x86_64 perl(LWP::UserAgent) is needed by spamassassin-toaster-3.2.5-1.3.14.x86_64 Eric Shubert wrote: Install the rpmforge-release package from dag wieers, then install the perl packages using yum. If you've installed the latest qmailtoaster-plus package, you can simply: # qtp-install-rpmforge # yum --enablerepo=rpmforge install perl-Archive-Tar ... Otherwise, check the list archives for the hard way. ;) Luis Lopez wrote: Hi There, I know that a couple of people had dependencies problems installing that spamassassin-toaster package. I /yum update /the server and rebooted and still had the same issue. No CPAN is used to update the perl modules. I'm not using the qtp-newmodel script, going the manual way: wget http://www.qmailtoaster.org/download/develop/[package] rpmbuild --rebuild --with cnt5064 [package source] cd /usr/src/redhat/RPMS/i386 rpm -Uvh [package] This is the way I've installed the updates so far and it has worked perfectly. But
Re: [qmailtoaster] spamassassin-toaster-3.2.5-1.3.14 || problem on dependencies || 64 bit CentOS 5 (Resolved)
BE CAREFUL Johannes!!! A LOT of people administer their Linux boxes remotely -- usually via SSH. If you REMOVE the zlib package, your SSH connection *_/will /_*drop and you will be unable to reconnect. (Not surprisingly, SSH is very dependent on the zlib package for its encryption compression over the ssh channels!) So IF you feel the need to uninstall zlib (IMHO, not a good idea), make SURE you're not cutting off your access to your server! As for the dependency of zlib djbdns, I have both commented out in my build (and update) scripts. I learned ISC's bind many MANY years ago, so I never switched to djbdns anyway -- although I do agree with Daniel's rationale for creating it -- the caching server and authoritative server SHOULD be separate. The problem I have with that is that this means you cannot (easily) have a server that serves both roles, because both use port 53 -- and it's too late to re-invent DNS at this point! (That being said -- I actually started using djbdns on a hosted linux server last month -- it only has to be an authoritative server, and it is faster than bind in that role. That's my 2-cents's worth and you get what you pay for Dan Daniel McAllister, President IT4SOHO, LLC PO BOX 507 St. Petersburg, FL 33731-0507 877-IT4SOHO: Toll Free 727-647-7646 In Pinellas 813-464-2093 In Hillsborough 727-507-9435 Fax Only When did you do your last backup? Ask me about unattended offsite backup solutions... to protect your business, not just your data! Johannes Weberhofer, Weberhofer GmbH wrote: Luis, you could uninstall the package using rpm -e --allmatches --nodeps --justdb zlib-devel zlib That removes all matching packages from the rpm database ignoring all dependencies. After that reinstall that original package that came with your distribution: rpm -Uhv --replacefiles zlib-.rpm That should solve your problems with the rpm-database that lists the package twice. Best regards, Johannes Luis Lopez schrieb: Thanks for that, Dan Eric. In the mean time, I guess I'll ignore the errors from the Zlib then. Sincerely, Luis Lopez * * * * Eric Shubert wrote: Thanks for explaining that, Dan. I'm guessing that there's probably no need to have a zlib package on the QMT site any more, but I don't know why it's there to begin with, so I could be wrong about that. I think I'll modify the next QTP release simply ignore zlib, as it does djbdns, given that they're not -toaster- packages anyway. Thanks again. Dan McAllister wrote: My guess is that you're running 64-bit Linux (that is, an x86_64 installation). If this is the case, the reason you're seeing zlib show up twice is that you have both the i386 and x86_64 versions installed. Unfortunately, the rpm command doesn't show you this information, but I'll bet yum will. On my own FC5 system, here's what I get *# rpm -qa | grep zlib* zlib-devel-1.2.3-1.2.1 zlib-1.2.3-1.2.1 zlib-devel-1.2.3-1.2.1 zlib-1.2.3-1.2.1 *# yum list zlib** ...stuff deleted here... zlib.i3861.2.3-1.2.1 installed zlib.x86_64 1.2.3-1.2.1 installed zlib-devel.x86_641.2.3-1.2.1 installed zlib-devel.i386 1.2.3-1.2.1 installed Just an FYI -- I've had problems in the past with trying to RE-install Zlib as part of the QMT installation because I am virtually always connected via an SSH shell... so I have my install (and update) scripts skip over Zlib. After all, if zlib isn't there, I am not there either! So you can skip over any idea you have that the duplicate entries are any kind of error. It is perfectly normal in an x86_64 environment for the package to show twice -- once in i386 and once in x86_64. Now, if you think that's wasteful or duplicitous -- try Gentoo Linux build everything for your own specific hardware! I hope this helps... someone!!! Dan Daniel McAllister, President IT4SOHO, LLC PO BOX 507 St. Petersburg, FL 33731-0507 877-IT4SOHO: Toll Free 727-647-7646 In Pinellas 813-464-2093 In Hillsborough 727-507-9435 Fax Only When did you do your last backup? Ask me about unattended offsite backup solutions... to protect your business, not just your data! Eric Shubert wrote: That appears to be the case. I'm at a loss as to why the rpm command shows the same packages twice. You might google a bit to see if you can find something on it. Luis Lopez wrote: PS. This is only happening with that Zlib package as far as i can tell. Sincerely, Luis Lopez Eric Shubert wrote: The rpm command shouldn't be listing zlib twice. I wonder if your rpm database is a bit corrupt. You might try # rpm --rebuilddb Does that fix it? Luis Lopez wrote: This is what I got: # rpm -qa |grep zlib zlib-1.2.3-3 zlib-devel-1.2.3-3 zlib-1.2.3-3 zlib-devel-1.2.3-3 Sincerely, Luis Lopez Eric Shubert wrote: Looks like it's
Re: [qmailtoaster] bypassing virtualdomains
I've had to deal with this... and if you have control of BOTH ends (old server and new) it's much easier... If your old server is a QMT, you can add a file in the control folder (usually /var/qmail/control) called smtproutes. The REAL functionality of this feature is so that you can configure a backup SMTP server that can queue mail for the main server until it is available again. However, it is equally useful in your migration environment -- simply make the old SMTP server a backup for the new one. The formats for the file (and full documentation) is on the WIKI at http://wiki.qmailtoaster.com/index.php/Smtproutes I hope this helps someone! Dan Daniel McAllister, President IT4SOHO, LLC PO BOX 507 St. Petersburg, FL 33731-0507 877-IT4SOHO: Toll Free 727-647-7646 In Pinellas 813-464-2093 In Hillsborough 727-507-9435 Fax Only When did you do your last backup? Ask me about unattended offsite backup solutions... to protect your business, not just your data! Quinn Comendant wrote: Hi all, Is there a way to have qmail-send check actual MX records for a domain before deciding if it is local or not (instead of by (more)rcpthosts and virtualdomains)? An issue comes up occasionally when a domain is added on our server which is currently hosted somewhere else (i.e. it's a migration) and the DNS isn't updated for awhile until the client is prepared to finalize the migration. The problem is, until MX records are switched, they expect mail to be delivered to their existing mail server (i.e. not us) however messages that are sent from our server are delivered locally because the domain exists in (more)rcpthosts and virtualdomains. Any users who send mail to their domain is not received (or more likely, is bounced because the user has not added any mail accounts for the domain). Solutions I've thought of: - Ask people to use a different SMTP server when sending messages to the domain until DNS is migrated (i.e. smtp.gmail.com). PROBLEM: we can't possible insist the hundreds of mail users on our system do this. - Comment out the domain in the (more)rcpthosts and virtualdomains control files. PROBLEM: when the DNS is finally switched for the domain, we'll most likely forget to un-comment the configuration. Any other ideas? Quinn - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] copy of messages on server
What I think you're looking for is the Leave a Copy of Message on Server switch that is available within the client program (Outlook, Outlook Express, MS Mail, Thunderbird, etc.) If you're looking for archiving, look at the TAP functionality (it's in the QMAIL 1.03 documentation, I believe -- it not, it's a patch that is certainly included in QMT). It's in the WIKI at http://wiki.qmailtoaster.com/index.php/Taps I hope this helps someone! Dan Daniel McAllister, President IT4SOHO, LLC PO BOX 507 St. Petersburg, FL 33731-0507 877-IT4SOHO: Toll Free 727-647-7646 In Pinellas 813-464-2093 In Hillsborough 727-507-9435 Fax Only When did you do your last backup? Ask me about unattended offsite backup solutions... to protect your business, not just your data! Ariel wrote: List, there is no way to enable customers pop3 keep a copy of messages on server lista , existe forma de no permitir a clientes pop3 mantener una copia de los mensajes en el servidor - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
[qmailtoaster] Adding members to list via command line
Greetings all... A new QMail (QMT) client has presented me with a list of some 200 e-mails he desires to enter into a list. (Fortunately, he provided it in an excel spreadsheet so that it was EASILY exportable into a format usable by a shell script). So now that I have a true text file of e-mail addresses, how would I go about adding each of these entries to our mailing list? Surely there is /some/ kind of ezmlm command-line add to a mailing list... help? Thanks in advance for any suggestions. Dan -- Daniel McAllister, President IT4SOHO, LLC PO BOX 507 St. Petersburg, FL 33731-0507 877-IT4SOHO: Toll Free 727-647-7646 In Pinellas 813-464-2093 In Hillsborough 727-507-9435 Fax Only When did you do your last backup? Ask me about unattended offsite backup solutions... to protect your business, not just your data!
Re: [qmailtoaster] using qmail with lotus domino
I can attest to what Eric is saying... I use a QMT to front-end for several exchange servers. In DNS, the only MX records point to MX servers (mail.it4soho.com mail2.it4soho.com). Note that the latter (mail2) is actually the same store forward config as what you're trying to accomplish! So, you setup DNS to have an MX record for your QMT server and ONLY your QMT server. Then, in your QMT server, you make an entry in the control/smtproutes file that looks like this: mydomain.com:lotus.mydomain.com where lotus.mydomain.com is the IP address of your Domino server. NOTE: It is NOT necessary for your outbound e-mails to go through your QMT (although you can force that). However, if you specify SPF (in your DNS), you'll need to make an entry for your domino server as well as your mx entries... for example mydomain.com. TXT v=spf1 a mx lotus.mydomain.com -all I hope this helps... SOMEONE! Dan Daniel McAllister, President IT4SOHO, LLC PO BOX 507 St. Petersburg, FL 33731-0507 877-IT4SOHO: Toll Free 727-647-7646 In Pinellas 813-464-2093 In Hillsborough 727-507-9435 Fax Only When did you do your last backup? Ask me about unattended offsite backup solutions... to protect your business, not just your data! Eric Shubert wrote: I don't think you'll like your idea if you implement it. Many spammers don't follow the rules, and use the higher priority mail server to send spam to. Using QMT as a front end for LD is ok, just don't create an MX entry for LD. nightduke wrote: What do you mena with do not add them to the machine otherwise? My idea is to have two mx 10 qmail server 20 lotus domino server when server lotus domino is not available all the email will stay at qmail server, when the lotus domino is available all the email from qmail will go to lotus domino.That's what i want to do. Nightduke 2008/9/23 Jake Vickers [EMAIL PROTECTED]: nightduke wrote: I want to stop spam at smtp level using spamdyke and graylisting too. first Qmail then will send clean emails to Lotus Domino It's possible to do that? Yes it is. Just set the domains up in rcpthosts - do not add them to the machine otherwise. Look on the wiki for instructions on the caching backup server. That's what you'll be setting up. - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - QmailToaster hosted by: VR Hosted http://www.vr.org
Re: [qmailtoaster] Adding members to list via command line
Well, in my own defense here, I DID search the wiki (and other online resources for ezmlm)... I think the keyword I was missing was bulk :( Sorry to be a DOLT here... but, as they say, the only DUMB question is the one never asked! Thanks for the quick reply -- BOTH of you! Dan Daniel McAllister, President IT4SOHO, LLC PO BOX 507 St. Petersburg, FL 33731-0507 877-IT4SOHO: Toll Free 727-647-7646 In Pinellas 813-464-2093 In Hillsborough 727-507-9435 Fax Only When did you do your last backup? Ask me about unattended offsite backup solutions... to protect your business, not just your data! Jake Vickers wrote: Eric Shubert wrote: C'mon, Dan. ;) Google ezmlm mass add users: http://www.dermanagement.com/archives/17 Care to add this to the wiki faqs? Even better: http://wiki.qmailtoaster.com/index.php/Bulk_import_emails_into_EzMLM - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] qmail toaster not compiling vpopmail on fc8 x8_64
The message is telling you the mysql you've got installed is incompatible. Check your MySQL (best bet -- update via YUM (you're on Fedora) --- code snippet --- # yum update mysql* --- end code snippet --- I hope this helps... someone! Dan Daniel McAllister, President IT4SOHO, LLC PO BOX 507 St. Petersburg, FL 33731-0507 877-IT4SOHO: Toll Free 727-647-7646 In Pinellas 813-464-2093 In Hillsborough 727-507-9435 Fax Only When did you do your last backup? Ask me about unattended offsite backup solutions... to protect your business, not just your data! Jake Vickers wrote: Gregory Machin wrote: Hi I'm a qmail newbe and I'm having trouble install the vpopmail component. the rpm build dies with the following errors gcc -I. -I/usr/include/mysql -I. -I. -I. -g -O2 -Wall -c `test -f 'md5.c' || echo './'`md5.c gcc -I. -I/usr/include/mysql -I. -I. -I. -g -O2 -Wall -c `test -f 'hmac_md5.c' || echo './'`hmac_md5.c gcc -g -O2 -Wall -o vchkpw vchkpw.o md5.o hmac_md5.o libvpopmail.a -L/usr/lib/mysql -lmysqlclient -lz -lm -lcrypt /usr/bin/ld: skipping incompatible /usr/lib/mysql/libmysqlclient.so when searching for -lmysqlclient /usr/bin/ld: skipping incompatible /usr/lib/mysql/libmysqlclient.a when searching for -lmysqlclient /usr/bin/ld: cannot find -lmysqlclient collect2: ld returned 1 exit status make[2]: *** [vchkpw] Error 1 make[2]: Leaving directory `/usr/src/redhat/BUILD/vpopmail-5.4.17' make[1]: *** [all-recursive] Error 1 make[1]: Leaving directory `/usr/src/redhat/BUILD/vpopmail-5.4.17' make: *** [all] Error 2 error: Bad exit status from /var/tmp/rpm-tmp.12746 (%build) RPM build errors: Bad exit status from /var/tmp/rpm-tmp.12746 (%build) error: File not found by glob: /usr/src/redhat/RPMS/x86_64/vpopmail-toaster*.rpm I have both the i386 and the x8_64 mysql-devel installed .. From google-ing i have found that it has to do with the fact that it's looking in the place and using the wrong libraries .. but how do I fix this with out doing a hack that may break other / future work .. You could do a sym-link for the library, or edit the spec file. - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] courier-authlib-toaster cant fing installed dependancy (of Building QMT on FC8)
I thought this was answered already the ltdl.h file comes from the libtool-ltdl-devel package. However, for the .h file to have any meaning, you'll also need to install the libtool-ltdl package. So, PRIOR to running the rpmbuild on the courier-authlib-toaster, please run the following command: # yum install libtool-ltdl* NOTE: If you want to be more specific, you can run: # yum install libtool-ltdl.i368 libtool-ltdl-devel.i386 # yum install libtool-ltdl.x86_64 libtool-ltdl-devel.x86_64 Now, obviously you don't want to install the x86_64 versions if you're running 32-bit FC8, but if you're running the 64-bit version, you DO need to install BOTH versions (BOTH i386 x86_64) The next issue you'll have is with the simscan package we're (QMT) still using an older version that allows a file open call to NOT specify a set of permissions (old UNIX fully supported this, as there is a value called a UMASK that provides the missing information if you don't specify it). In any case, our (QMT) simscan package will have to be manually built: To do this, go ahead and run the rpmbuild -- it'll error out tho... Then go to /usr/src/redhat/BUILD/simscan-1.3.1 (I think that's still our current version) and edit simscanmk.c There are 2 lines that need to be changed -- both the same way. Lines 133 379 (I think). In each case, you need to add a value to the end of the open function call. My lines look like: if ( (fdout = open(CdbTmpFile, O_CREAT | O_TRUNC | O_WRONLY, 0x0644)) 0) { Others have suggested 0x0777 or others... I prefer MINIMAL settings. (These numbers represent the UNIX file permissions -- if you don't understand them, consult man chmod) Once you've fixed the two lines, you should be able to run make make install without a problem, as the configure has already been executed. Finally, understand that the RPM facility will NOT show the simscan-toaster package as being installed because you didn't complete the rpmbuild. Don't sweat it. Depending upon the build/install script you're using, just comment out the simscan check move on. I hope this helps! Dan Daniel McAllister, President IT4SOHO, LLC PO BOX 507 St. Petersburg, FL 33731-0507 877-IT4SOHO: Toll Free 727-647-7646 In Pinellas 813-464-2093 In Hillsborough 727-507-9435 Fax Only When did you do your last backup? Ask me about unattended offsite backup solutions... to protect your business, not just your data! Eric Shubert wrote: Gregory Machin wrote: Hi I'm have switched to fedora 8 i386 in the hope that the toaster would work . not quite .. I'm still suffering ... please can someone help .. courier-authlib-toaster fails to build because of a missing dependency. Yet all the required dependancies are installed libtool , automake autoconf etc .. [EMAIL PROTECTED] qtms-install]# rpmbuild --rebuild courier-authlib-toaster-0.59.2-1.3.6.src.rpm Installing courier-authlib-toaster-0.59.2-1.3.6.src.rpm error: Failed build dependencies: /usr/include/ltdl.h is needed by courier-authlib-toaster-0.59.2-1.3.6.i386 [EMAIL PROTECTED] qtms-install]# I even tried doing a manual ./configure make to get more detail ... Compiling authdaemontest.c Linking authdaemontest Compiling authmksock.c Linking authmksock Compiling authdaemond.c authdaemond.c:28:18: error: ltdl.h: No such file or directory authdaemond.c:48: error: expected specifier-qualifier-list before 'lt_dlhandle' authdaemond.c: In function 'initmodules': authdaemond.c:97: warning: implicit declaration of function 'lt_dlclose' authdaemond.c:97: error: 'struct authstaticinfolist' has no member named 'h' authdaemond.c:104: error: 'lt_dlhandle' undeclared (first use in this function) authdaemond.c:104: error: (Each undeclared identifier is reported only once authdaemond.c:104: error: for each function it appears in.) authdaemond.c:104: error: expected ';' before 'h' authdaemond.c:105: error: 'lt_ptr' undeclared (first use in this function) authdaemond.c:105: error: expected ';' before 'pt' authdaemond.c:122: error: 'h' undeclared (first use in this function) authdaemond.c:122: warning: implicit declaration of function 'lt_dlopenext' authdaemond.c:126: warning: implicit declaration of function 'lt_dlerror' authdaemond.c:126: warning: format '%s' expects type 'char *', but argument 3 has type 'int' authdaemond.c:132: error: 'pt' undeclared (first use in this function) authdaemond.c:132: warning: implicit declaration of function 'lt_dlsym' authdaemond.c:138: warning: format '%s' expects type 'char *', but argument 3 has type 'int' authdaemond.c:153: error: 'struct authstaticinfolist' has no member named 'h' authdaemond.c: In function 'start': authdaemond.c:948: warning: implicit declaration of function 'lt_dlinit' authdaemond.c:951: warning: format '%s' expects type 'char *', but argument 3 has type 'int' authdaemond.c:955: warning: implicit declaration of function 'lt_dlsetsearchpath' authdaemond.c:958: warning: format '%s' expects
Re: [qmailtoaster] Failed build on RedHat Enterprise
the only other time I've seen this type of error it was because the filesystem that contained /tmp was full. by default, RHEL puts /tmp on the / (root) filesystem. One of the many customizations I usually deploy is that I change /tmp to be a symbolic link to /var/tmp. I hope this helps Dan Daniel McAllister, President IT4SOHO, LLC PO BOX 507 St. Petersburg, FL 33731-0507 877-IT4SOHO: Toll Free 727-647-7646 In Pinellas 813-464-2093 In Hillsborough 727-507-9435 Fax Only When did you do your last backup? Ask me about unattended offsite backup solutions... to protect your business, not just your data! German Molano Asociados wrote: Yes Selinux is disabled ... #cat /etc/selinux/config # This file controls the state of SELinux on the system. # SELINUX= can take one of these three values: # enforcing - SELinux security policy is enforced. # permissive - SELinux prints warnings instead of enforcing. # disabled - No SELinux policy is loaded. SELINUX=disabled # SELINUXTYPE= can take one of these two values: # targeted - Only targeted network daemons are protected. # strict - Full SELinux protection. SELINUXTYPE=targeted # SETLOCALDEFS= Check local definition changes SETLOCALDEFS=0 I am doing the building with CenOS 50 x64 scripts ... - Original Message - From: Eric Shubert [EMAIL PROTECTED] To: qmailtoaster-list@qmailtoaster.com Sent: Monday, October 27, 2008 11:48 AM Subject: Re: [qmailtoaster] Failed build on RedHat Enterprise Have you disabled selinux? German Molano Asociados wrote: Hi there, i am trying to build the qmailtoaster packages on RedHat Enterprise Linux Server release 5.2 on a x86_64 server, i am getting this error on the building process: + chmod u+x /var/tmp/daemontools-0.76-show_flags + /var/tmp/daemontools-0.76-show_flags /var/tmp/rpm-tmp.28671: /var/tmp/daemontools-0.76-show_flags: /bin/sh: bad interpreter: Permission denied error: Bad exit status from /var/tmp/rpm-tmp.28671 (%prep) RPM build errors: Bad exit status from /var/tmp/rpm-tmp.28671 (%prep) I am logged as root and i run /var/tmp/daemontools-0.76-show_flags and it fails: -bash: /var/tmp/daemontools-0.76-show_flags: /bin/sh: bad interpreter: Permission denied What's wrong ? Thanks for your help - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] Failed build on RedHat Enterprise
Not germane to the problem at hand, but kudos to you for not logging in directly as root! Virtually all of the best practices for UNIX/Linux security tell you to disable direct root access, yet surprisingly it is one of the most common security HOLES I see when I audit systems. By requiring users to log in as themselves, THEN up their privileges to root, you are effectively requiring a double-password to gain root-level access. Now... if you're truly a root user, please look for the following potential problems: - what are the permissions on /, /var, /var/tmp, and lastly, /var/tmp/daemontools-0.76-show_flags o what we're looking here are: - x (execute) permissions for all the dirs the file itself - w (write) permission on /var/tmp - t (sticky) permission on /var/tmp o MY values are / = 0711, /var = 0711, /var/tmp = 1773 - what is your PATH variable set to? o it should include /bin:/usr/bin:/opt/bin:/usr/local/bin:/usr/kerberos/bin and all of the sbin variants of those. - NOTE: on some systems, /opt either doesn't exist or is a symbolic link to /usr/local, so adjust accordingly. o MY value is PATH=/bin:/usr/bin:/opt/bin:/usr/kerberos/bin:/usr/kerberos/sbin:/opt/sbin:/usr/sbin:/sbin Looking forward to your response Dan Daniel McAllister, President IT4SOHO, LLC PO BOX 507 St. Petersburg, FL 33731-0507 877-IT4SOHO: Toll Free 727-647-7646 In Pinellas 813-464-2093 In Hillsborough 727-507-9435 Fax Only When did you do your last backup? Ask me about unattended offsite backup solutions... to protect your business, not just your data! German Molano Asociados wrote: Yes i do, i am as a root, but first I logged as a unprivileged user then switch as a root account with su - command. And sh links to bash # ls -alh /bin/sh lrwxrwxrwx 1 root root 4 Aug 1 12:34 /bin/sh - bash - Original Message - *From:* Jake Vickers mailto:[EMAIL PROTECTED] *To:* qmailtoaster-list@qmailtoaster.com mailto:qmailtoaster-list@qmailtoaster.com *Sent:* Monday, October 27, 2008 1:23 PM *Subject:* Re: [qmailtoaster] Failed build on RedHat Enterprise German Molano Asociados wrote: Hi there, i am trying to build the qmailtoaster packages on RedHat Enterprise Linux Server release 5.2 on a x86_64 server, i am getting this error on the building process: + chmod u+x /var/tmp/daemontools-0.76-show_flags + /var/tmp/daemontools-0.76-show_flags /var/tmp/rpm-tmp.28671: /var/tmp/daemontools-0.76-show_flags: /bin/sh: bad interpreter: Permission denied error: Bad exit status from /var/tmp/rpm-tmp.28671 (%prep) RPM build errors: Bad exit status from /var/tmp/rpm-tmp.28671 (%prep) I am logged as root and i run /var/tmp/daemontools-0.76-show_flags and it fails: -bash: /var/tmp/daemontools-0.76-show_flags: /bin/sh: bad interpreter: Permission denied What's wrong ? Thanks for your help Are you running as root? What does /bin/sh link to?
Re: [qmailtoaster] spamdyke and tcpserver
You would want to use the tcprules.d folder only if you were trying to alter the general processing of inbound messages. As it appears you're trying to limit only the spamdyke functions, I suggest you look in the spamdyke config folder (its location is configurable -- I put mine in /var/qmail/control/spamdyke). Within that folder, create a whitelist_ip file. Messages received from those IP addresses will be skipped by spamdyke (e.g. they'll ALWAYS pass). I hope this helps... Dan When did you do your last backup? Ask me about unattended offsite backup solutions... to protect your business, not just your data! Philip Nix Guru wrote: Heheh Yes I am using the whitelist_ip file you can either enter x.y.z or x.y.z. for a c-class I was just curious about the tcp.smtp file :) I know that spamdyke cant use cdb files -P Eric Shubert wrote: Philip wrote: Hello I was wondering about how to disable spamdyke by ip range can we do something like : 1.2.3.:allow,RELAYCLIENT=,RBLSMTPD=,SPAMDYKE=,NOP0FCHECK=1 in tcp.smtp file or you better add your c-class or any subnet to the whitelist_ip file from spandyke ? Thx for the info I don't know of anything like the former. qmail (and thus spamdyke) doesn't necessarily use tcpserver, so I'd be surprised if this were available. I'd look toward the whitelist_ip file. I'm not sure how to specify and IP range there though. Check the documentation. I'm expect that Sam will chime in here and enlighten us further. ;) -- -Eric 'shubes' - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] SpamAssassin and whitelisting
the spamassassin config entry for whitelisting should look like: def_whitelist_from_rcvd [EMAIL PROTECTED] def_whitelist_from_rcvd [EMAIL PROTECTED] You can also whitelist entire domains: def_whitelist_from_rcvd [EMAIL PROTECTED] This should get you started in the right direction! I hope this helps... Dan When did you do your last backup? Ask me about unattended offsite backup solutions... to protect your business, not just your data! Josh Hopkins wrote: Ok, I know that in the past to create a whitelist I would create a file and place it into the /etc/mail/spamassassin. Usually I would call this the whitelist.cf. Inside the file I would have entries like: whitelist_from [EMAIL PROTECTED] whitelist_from [EMAIL PROTECTED] This however does not seem to be working. In the headers of the email I still get messages marked as spam even though they are in the whitelist. I also tried putting the file into /usr/share/spamassassin with no luck. Has there been a major change to where I can add whitelist_from or whitelist_from_rcvd entries to. I really don't want to have to have them in the local.cf file. I have ran spamassassin -D --lint and it does not give errors. Any ideas? - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] FW: Email Senting Problems
I think there is some confusion here Robin... The DNS that is broken is NOT the DNS entries for your domains... it's the DNS client on your mail server. Log onto your mail server and try this command: dig mx google.com If it takes a long time to reply, or says no servers could be reached, then your outbound messages aren't being sent because the server cannot lookup where to send them! The easiest fix is to edit the file /etc/resolv.conf and make the nameserver entries something dependable like: nameserver 4.2.2.4 nameserver 4.2.2.5 If you're trying to be your own DNS server, you may or may not want to configure your own server to be your primary DNS server. Read the man page for resolv.conf for more config options. I hope this helps Dan Daniel McAllister, President IT4SOHO, LLC When did you do your last backup? Ask me about unattended offsite backup solutions... to protect your business, not just your data! Jake Vickers wrote: Robin W. Sanchez C. wrote: Ok thnas, but exists any option to disable this MX validation into the QMT, only for make test because my domains look well Not be be condescending, but you don't expect a mail server to work with broken DNS do you? - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] FW: Email Senting Problems
If you recently updated your tcprules file, then make sure you got the line format right... as in, there is a comma (not a space) If you placed a complete line in the file, then you have a problem -- because that makes the file format invalid. The last line of MY tcp.smtp file looks like (trimmed a bit): :allow,DKVERIFY=DEGIJKfh,QMAILQUEUE=/var/qmail/bin/simscan,DKQUEUE=/var/qmail/bin/qmail-dk,DKSIGN=/var/qmail/control/domainkeys/%/private,SENDER_NOCHECK=1 As well, (obviously) you should make sure you re-ran the qmailctl cdb and it was successful. Just a few random (seemingly) thoughts... Dan When did you do your last backup? Ask me about unattended offsite backup solutions... to protect your business, not just your data! Robin W. Sanchez C. wrote: For addiontal information this issue happened today bloquing every incoming email, and I don't know the server was working around 2 moths without any problem, I added this line inside tcp.smtp SENDER_NOCHECK=1, because without every incoming mail say problem with invalid sender MX domain -Original Message- From: Jake Vickers [mailto:[EMAIL PROTECTED] Sent: jueves, 30 de octubre de 2008 05:11 p.m. To: qmailtoaster-list@qmailtoaster.com Subject: Re: [qmailtoaster] FW: Email Senting Problems Robin W. Sanchez C. wrote: Ok thnas, but exists any option to disable this MX validation into the QMT, only for make test because my domains look well Not be be condescending, but you don't expect a mail server to work with broken DNS do you? - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] Este correo electronico puede conteneder informacion confindencial y protegida legalmente bajo secreto profesional. La informacion esta dirigida solamente a la persona o entidad indicada como destinatario y su acceso por cualquier otra persona no esta autorizado. si ud recibio este mensaje electronico por error, informeselo al remitente y borrelo. Aclaramos que los conceptos y opiniones comprendidos en este correo electronico, deben atribuirse exclusivamente a su auntor y no deben entenderse como necesariamente coincidentes con las de AIMAR, S.A. y en consecuencia, absolutamente ajenos a la responsabilidad de sus directores y ejecutivos. en tanto no hayan participado de su confension y/o emision y quede esta participacion expresamente consignada en el mensaje La divulgacion publica de este correo electronico, como asi su copia, reproduccion total o parcial queda prohibida, dando lugar en caso de inobservancia de estas y todas las acciones legales que pudiesen corresponder. - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] ezmlm-reject problem
If this is a permanent change, then delete the e-mail account re-create it as a list. No forwarding, no multi-step message path, and no trying to re-write the list rules. Dan Daniel McAllister, President IT4SOHO, LLC When did you do your last backup? Ask me about unattended offsite backup solutions... to protect your business, not just your data! Luis Lopez wrote: Hello, I need to forward an email address to a List, but some how I keep getting rejected with this error: ezmlm-reject: fatal: List address must be in To: or Cc: (#5.7.0) So the scenario is [EMAIL PROTECTED] needs to forward all emails to [EMAIL PROTECTED] Is there a setting where I can change the ezmlm-reject behavior to not require the [EMAIL PROTECTED] to be in the To: or Cc: ? -- Sincerely, Luis Lopez * * *--- IT Support Kiwibox.com http://kiwibox.com/ [EMAIL PROTECTED] mailto:[EMAIL PROTECTED] --- * * * *Information contained in this email and any attachments thereto shall be considered privileged and/or confidential. You are hereby notified that any dissemination, distribution or copying of this email or attachments is prohibited, unless you have expressed permission. If you have received this email in error, please notify the sender and delete the email and the attachments.* * * * * * * * *
Re: [qmailtoaster] Debian?
It may take some tweaking, but the packages should install. You are the 3rd person in the past 2 weeks to ask me about debian... why the sudden interest in a this distribution? (rhetorical question -- not seeking an answer!) Dan Daniel McAllister, President IT4SOHO, LLC When did you do your last backup? Ask me about unattended offsite backup solutions... to protect your business, not just your data! Kevin Qiu wrote: Hi List, I just installed Debian on my new server. Could QMT install on Debian? - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] moving domain from old to new qmail toaster
Ok... since we're talking old *nix here, I thought I'd add my 2-cents worth... Short sweet: The password entries for your OLD system should import to the new one without issue. The new system will already know how to use the OLD password format, but when users change their passwords, the NEW ones will be stored in the $1$ (MD5) format automatically. How or Why you ask? read on... (otherwise, just accept that you don't have to do anything else -- just import the passwords -- move on) The problem you describe arises from the evolution of storing hashed passwords. Not encrypting -- encrypting implies that there is a DECRYPT algorithm. Let it be known throughout the land: there is NO known way (other than brute force guessing) to derive a password from a stored hashed password. NOT even from the old CRYPT format to the newer ones. (NOTE: This is what would be necessary to convert the old passwords to the newer $1$ (MD5) format.) If you have user's hashed passwords you CANNOT convert them to another format. Not no way, not no how. Some background: The /*original*/ (1970's) way to store passwords on *nix systems was to store the 11-character ASCII-ized (base-64) output of CRYPT, a DES-based hashing algorithm. The hash was created by supplying a string of 0's as input and using your password as the hash key: thus the 8-character limit on passwords. The hash results were ASCII-ized (converted to Base-64 printable characters) stored in /etc/passwd. To check a password, you just repeat the process, using the password-guess as the key, and if the results match, the passwords matched the user is authenticated. It didn't take long (into the mid-1980's) to add a 2-character SALT to the beginning of the password field, thus making any given password storable in up to 4096 different ways. Skip ahead to the 90's, and note that over time 3 steps have been taken to more better secure *nix authentication methods: First, we moved password data from the MUST be publically readable /etc/passwd to the not publically readable /etc/shadow file. Then, we changed to a stronger hash algorithm (MD5), and finally, we used the password as the input, and used a longer/larger random value for the SALT (the odds of getting the same SALT grew from 1-in-4096 to 1-in-nearly 280 quadrillion). Since the password itself is now the entry string (vs. part of the key) it can be nearly ANY length (typically up to the 128 chars of the typical TTY buffer). Because of the changes, the FORMAT of the password/shadow file had to change: it's no longer just the ASCII-ized hash output, nor a fixed-length SALT. Instead, the $'s are field delimiters. $1$ is tells the system to use the MD5-based algorithm (a $2a$ value would indicate use of the Blowfish hash algorithm). The next field (between the $s) is the random SALT. The normal length is 8 base-64 chars, thus the 1-in-280 quadrillion chances of duplicates, but it is adjustable. The last field (23 chars for the MD5-based algorithm) are hashed password itself. So, as the AUTH part of a program, when I look at the stored password, if the password field has 3 $s, then I know it's an advanced password. If it is 11 chars, then I know it's an OLD password. The 13 you showed indicates an OLD DES-type password with a 2-character SALT. In the case of an advanced password, I'll need to have the appropriate hashing algorithm for the code in the first field. (Interestingly, Mac OS-X uses the old CRYPT with 2-SALT character method, and DOESN'T ship with the MD5 algorithm installed. You CAN add it, but you have to add MD5 before you reconfigure your auth configs!) So, when the authlibs in QMail Toaster authenticate users, the encrypted passwords can be in either: - The original 11-character format, or - The 13-character (2-char SALT + 11 char result) format, or - The $1$ (MD5 advanced) format By default (in the QMT), new passwords will be stored in the $1$ format. I hope this helps explain WHY it'll work with BOTH kinds of passwords simultaneously! Dan IT4SOHO Myers, Jon W wrote: From: Jake Vickers [EMAIL PROTECTED] Sent: Friday, November 21, 2008 6:47 AM To: qmailtoaster-list@qmailtoaster.com Subject: Re: [qmailtoaster] moving domain from old to new qmail toaster On Thu, 2008-11-20 at 23:28 -0500, Myers, Jon W wrote: ..snipped I'm moving a domain from a very old qmail setup (which does indeed use vpopmail) over to the new qmail toaster box. Things look pretty straight forward, as the vpopmail database is easy to read. The one issue that I'm not sure about is passwords. My old database has encrypted passwords with 13 characters (uppercase/lowercase/letters/numbers/special chars/etc..) (aka, not clear text). The new database uses encrypted passwords that start with $1$ and are i think 34 characters long. I do remember in all my Unix days that the $1$ denotes a particular algorithm. So, is
Re: [qmailtoaster] qmailadmin,webmail,admin-toaster not working
Did you restart your apache server? /etc/init.d/httpd stop /etc/init.d/httpd start Then try again (assuming there are no errors) Dan IT4SOHO senthil vel wrote: Dear List, My qmailtoaster server does not work suddenly. The http://mydomain or my ip/webmail http://mydomain or my ip/admin-toaster/ http://mydomain or my ip/qmailadmin are not working, In IE and Firefox, the HTTP 400-Bad Request error is raising. [EMAIL PROTECTED] /etc/init.d/qmail stat authlib: up (pid 3690) 1864 seconds clamd: up (pid 3719) 1863 seconds imap4: up (pid 3673) 1865 seconds imap4-ssl: up (pid 3669) 1865 seconds pop3: up (pid 3665) 1865 seconds pop3-ssl: up (pid 3685) 1865 seconds send: up (pid 3666) 1865 seconds smtp: up (pid 3720) 1863 seconds spamd: up (pid 3670) 1865 seconds submission: up (pid 3718) 1863 seconds authlib/log: up (pid 3713) 1863 seconds clamd/log: up (pid 3717) 1863 seconds imap4/log: up (pid 3684) 1865 seconds imap4-ssl/log: up (pid 3677) 1865 seconds pop3/log: up (pid 3676) 1865 seconds pop3-ssl/log: up (pid 3688) 1865 seconds send/log: up (pid 3667) 1865 seconds smtp/log: up (pid 3724) 1863 seconds spamd/log: up (pid 3671) 1865 seconds submission/log: up (pid 3707) 1864 seconds And in my /etc/http/conf/http.conf,the following lines are there, Include /etc/httpd/conf/toaster.conf Include /etc/httpd/conf/squirrelmail.conf My vi /etc/httpd/conf/toaster.conf IfModule mod_alias.c ScriptAlias /mail/ /usr/share/toaster/cgi-bin/ Alias /admin-toaster /usr/share/toaster/htdocs/admin/ Alias /stats-toaster/ /usr/share/toaster/htdocs/mrtg/ Alias /qlogs-toaster/ /usr/share/toaster/htdocs/isoqlog/ Alias /images-toaster/ /usr/share/toaster/htdocs/images/ Alias /scripts/ /usr/share/toaster/htdocs/scripts/ Alias /qmailadmin /usr/share/qmailadmin/ /IfModule Directory /usr/share/qmailadmin AddHandler cgi-script .cgi AddHandler cgi-script qmailadmin DirectoryIndex index.cgi qmailadmin index.html Options +Indexes FollowSymLinks +ExecCGI Order allow,deny Allow from all /Directory Directory /usr/share/toaster/htdocs Options -Indexes FollowSymLinks MultiViews AllowOverride All Order allow,deny Allow from all /Directory Directory /usr/share/toaster/htdocs/admin AuthType Basic AuthName Qmail Toaster v. 1.3 Admin AuthUserFile /usr/share/toaster/include/admin.htpasswd require valid-user /Directory Directory /usr/share/toaster/htdocs/mrtg AllowOverride All Order allow,deny Allow from all AuthType Basic AuthName Qmail Toaster v. 1.3 Admin AuthUserFile /usr/share/toaster/include/admin.htpasswd require valid-user /Directory Directory /usr/share/toaster/htdocs/isoqlog AllowOverride All Order allow,deny Allow from all AuthType Basic AuthName Qmail Toaster v. 1.3 Admin AuthUserFile /usr/share/toaster/include/admin.htpasswd require valid-user /Directory Directory /usr/share/toaster/cgi-bin/vqadmin AllowOverride All Options ExecCGI Order allow,deny Allow from all AuthType Basic AuthName Qmail Toaster v. 1.3 Admin AuthUserFile /usr/share/toaster/include/admin.htpasswd require valid-user /Directory Directory /usr/share/toaster/cgi-bin AllowOverride All Options ExecCGI Order allow,deny Allow from all /Directory What may be the problem? Please help me... Thanks and Regards, S.Senthilvel. - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] yahoo deferrals fix - Really SPF checking
Just to throw my 2-cents worth in here... but I think (e.g.: my opinion) that Jake's SPF record recommendation is too restrictive. The A record for your domain very likely may not be the same server as your mail server (in other words, your main web server -- usually the A record for your domain -- may not be your mail server too...) My preferred SPF entry would, therefore, include an MX enrtry to add ALL of the MX records from your domain: v=spf1 a mx -all As for having all those extra SPF records, there apparently needs to be some explanation of how SPF works... to make it as simple as possible, let's just look at the processing of an SPF check: - I get mail from [EMAIL PROTECTED] (a FAKE e-mail address, to be sure!) - I do a DNS TXT lookup for the domain -- effectively, a dig txt qmt.com, or more up-to-date, dig spf qmt.com - I look up the SPF records there (and see v=spf1 a mx -all) - I look up the A record MX record(s) of the domain (dig a qmt.com dig mx qmt.com) - I compare the IP address SENDING the message against the IP addresses discovered above - If there is a match, you PASS SPF checking - If there is NO match, you FAIL SPF checking I block you (the -all) So, you really only need the SPF record for the DOMAINs you send/receive mail with... and the extra TXT records for mail*.solowtech.com http*.solowtech.com won't actually affect anything for the domain solowtech.com (which is, presumably, the domain of your emails). Thus, although you dismiss your first SPF entry as being just your web host, the fact that IT includes both A and MX entries is why your SPF is working! Now, if you have other hosts that may send e-mail on behalf of your domain, but are NOT also mail servers (like a backup server, or alternate web server that want to send logs or alerts), then you just add those servers to your ONE SPF record... like this: v=spf1 a mx ip4:71.21.142.30 -all Now, SPF checking mail servers will accept messages from the solowtech.com domain so long as they come from: - The A record for solowtech.com (67.212.79.197) - Any of the MX records for solowtech.com (only 67.212.79.220 currently) - The IP Address of 71.21.142.30 (the ip4 option) SO... since this is the holiday season, I'll do most of the work for you and say that: 1) you should probably have a backup mail server (you currently have only the 1 MX record, you should have more) 2) If all of the hosts in your posting below are supposed to be valid sources of email, and 'mail.solowtech.com resolves to 67.212.79.198 'mail2.solowtech.com resolves to 67.212.79.198 too 'mail17.solowtech.com resolves to 67.212.79.220 'mail21.solowtech.com resolves to 67.212.79.221 'http2.solowtech.com resolves to 67.212.79.198 too THEN, your SPF record may need to look like: v=spf1 a mx ip4:67.212.79.198 ip4:67.212.79.221 -all HOWEVER, since 197 (a) 220(mx) are already there, you COULD get fancy and use the prefix option and get the same using v=spf1 a/30 mx/31 -all which equates to your A record with a 30-bit prefix -- effectively, 67.212.79.196-199... plus your MX record with a 31-bit prefix (67.212.79.220-221) You MIGHT want to use the REAL netmasks that you might control... e.g.: v=spf1 a/19 -all which would equate to 67.212.79.192-223 Sigh SO MANY possibilities! I hope this helps! Dan IT4SOHO We make IT work for small business! Paul Heard wrote: Hi Jake, Thanks for your extra effort. You are the best. I test my DK using [EMAIL PROTECTED] Its crazy how many different test emails will give Back different results. This address works for me, and yahoo is accepting My DK. Your point about spf is interesting. My spf records check out in several tests, But you are correct in your observation that The A record and MX box will not resolve to the Same IP. I think my spf records for this domain may be wrong. 'solowtech.com:v=spf1 a mx -all:3600 'mail.solowtech.com:v=spf1 a -all:3600 'mail2.solowtech.com:v=spf1 a -all:3600 'mail17.solowtech.com:v=spf1 a -all:3600 'mail21.solowtech.com:v=spf1 a -all:3600 'http2.solowtech.com:v=spf1 a -all:3600 The first entry is just for a web host. Rarely sends mail. The other entries are all running qmail of some form. My DNS servers serve the same data file. I hear what you are saying about the 12 hours, 24-48 hours, but I wish I could say that's been My experience. I have been working on this for over a month. Forms, phone calls, DK, SPF... The cron queue flush was out of desperation. Having said that, I've been running it now For a day, the yahoo mail is going through... Fire and gasoline... Thanks Jake. -Original Message- From: Jake Vickers [mailto:[EMAIL PROTECTED] Sent: Wednesday, November 26, 2008 7:19 AM To: qmailtoaster-list@qmailtoaster.com Subject: Re: [qmailtoaster] yahoo deferrals fix Paul Heard wrote: Hi Jake, Not sure why qmail is not succeeding in the 5 minute retries. I have my
Re: [qmailtoaster] TLS unable to initialize ctx
Drat... I was going to look like a magician! I FORCE my non-local users to use POPS, IMAPS, and SMTPS when they communicate to the mail servers (NOTE: I manage more than 30 qmail servers for clients)... and I ALWAYS have to increase the default memory sizes for the processes in the supervise/run scripts when I install/reinstall! The issue is that the SSL libraries are simply too large to link in to the default memory size! Let me guess -- you (like me) are using a 64-bit version of SUSE (mine are actually Fedora) -- it seems to me that my 32-bit systems do not have this problem. I change the memory limits for ALL of my SSL-enabled protocols (pop3-ssl, imap4-ssl, smtp, submission, smtp-ssl to 128MB and everything works fine. (WHY SMTP? Because it's an OPTION in standard smtp [port 25] to use SSL, and if you don't increase the size then you'll be advertising that you accept SSL connections on that port, but in anyone actually TRIES to use it, it'll crash) Anyway, since I won't look like a magician, at least I'll explain the logic behind the magic! :-) HAPPY GNU YEAR EVERYONE! Dan IT4SOHO Stefan wrote: Did you install all the dependencies before installing the packages? Yes, I did, i followed the instructions in the SuSE 10.1 tutorial like i did before on the other server with the same hard- software. I increased the softlimit of the submission process and the error is now gone, but its a strange behavior. I also have done that on the other server but due to another error, increasing the memory limit seems to fix several errors. Another small question, is POP/IMAP with TLS supported? Thanks Jake Vickers schrieb: Stefan wrote: Hi, today i installed QmailToaster, everything is working fine but TLS. 220 mail.xxx.de - Welcome to Qmail Toaster Ver. 1.3 SMTP Server ESMTP EHLO testing 250-mail.xxx.de - Welcome to Qmail Toaster Ver. 1.3 SMTP Server 250-STARTTLS 250-PIPELINING 250-8BITMIME 250-SIZE 20971520 250 AUTH LOGIN PLAIN CRAM-MD5 STARTTLS 454 TLS unable to initialize ctx: error:140A910D:lib(20):func(169):reason(269) (#4.3.0) Same with IMAP/POP. Ive installed qmailtoaster a month ago on another server and TLS is working fine there. Is there a bug in one of the new packages since then? The packages have not been updated in a year. What it looks like to me is you copied binary packages to this machine and installed them - the error your receiving has to do with not being able to use ctx (re: SSL_CTX) meaning that your SSL libraries are either broken or missing from what I can see. Did you install all the dependencies before installing the packages? - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com
Re: [qmailtoaster] dealing with cronjob mail
I send messages from cron (ON my mail server) using qmail-inject directly. I just put the To: From: Subject: lines in manually For example: echo From: sys...@it4soho.com To: cronwa...@it4soho.com Subject: Cron Generated Report Happy Tuesday! | /var/qmail/bin/qmail-inject NOTE: Simply echoing out to a Cron script will generate an e-mail message from Cron... this way, I can control better what the entire message is, and who it appears to be from. Just my way -- I'm sure it's brute force and there are probably better, more elegant ways! Dan IT4SOHO Jake Vickers wrote: dnk wrote: I whitelist most of mine, but for the rare occasion this is not desired, I used a simple SMTP program called mail: http://www.cleancode.org/projects/email Allows you to send emails from the command line using SMTP auth. Jake, Do you usually compile email, or did you find an RPM you trust? I usually compile it since it only takes a few seconds. Never even looked for an RPM to be honest. - To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com -- --- IT4SOHO, LLC 224 13th Ave N St. Petersburg, FL 33701-1122 877-IT4SOHO: Toll Free 727-647-7646 In Pinellas 813-464-2093 In Hillsborough 727-507-9435 Fax Only We make IT work for small business! - To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com
Re: [qmailtoaster] Aliases
From what I have experienced, aliases in QMail Toaster are handled in the vpopmail user database, not with the .qmail files... Again, from what I understand, the configuration in QMT is that Qmail hands the message off to vpopmail for delivery, bypassing the .qmail files for user directories. I have tried in vain in the past to manually control aliases and mail processing for specific users, and wound up each time making the change in vpopmail vs. qmail. Just my thoughts I hope they're helpful! Dan --- IT4SOHO, LLC 224 13th Ave N St. Petersburg, FL 33701-1122 877-IT4SOHO: Toll Free 727-647-7646 In Pinellas 813-464-2093 In Hillsborough 727-507-9435 Fax Only We make IT work for small business! Jake Vickers wrote: Josh Hopkins wrote: So I created a .qmail in the users directory /home/vpopmail/support.mobeustech.com/helpdesk/.qmail Inside of the file I entered |/srv/sysSupport/cli/index.php but the email are still being delivered to the inbox and not being sent to the alias. I must be missing a step. Any ideas? Does the alias file need to be in the Maildir directory of the user? It's been a long time since I've had need to do anything like this. Check the permissions/ownership of the .qmail file. I think your script will also need 755 permissions at the least to run, and be owned by vpopmaik:vchkpw. Also look at your logs and see if they give any information when attempting to process the .qmail script.
[qmailtoaster] QMail Toaster DKIM
Here's a quickie guys... I know QMT implements DomainKeys (the Yahoo style), and I have been using them for a while now... but what about DKIM? Isn't there a different signature-generation that DKIM uses, so it's more than just making different DKIM DNS entries? Thanks in advance to all who do so much for the QMT! Dan --- IT4SOHO, LLC 224 13th Ave N St. Petersburg, FL 33701-1122 877-IT4SOHO: Toll Free 727-647-7646 In Pinellas 813-464-2093 In Hillsborough 727-507-9435 Fax Only We make IT work for small business! Noel Rivera (Border Less) wrote: Hello List any comments to solve this problem? -Original Message- From: Noel Rivera (Border Less) [mailto:nriv...@borderless.com.mx] Sent: Miércoles, 03 de Junio de 2009 09:12 a.m. To: 'qmailtoaster-list@qmailtoaster.com' Subject: another problem Hello List I have a problem I received a mail from u...@mydomain.com 35 times I look in /var/log/qmail/smtp/current and I have this issue: @40004a268fdf00e03c4c spamdyke[15263]: TIMEOUT from: fra...@domain.com to: nriv...@domain.com origin_ip: 69.25.50.217 origin_rdns: outbound.mse9.exchange.ms auth: (unknown) reason: TIMEOU Any comments to solve this problem? - Qmailtoaster is sponsored by Vickers Consulting Group (www.vickersconsulting.com) Vickers Consulting Group offers Qmailtoaster support and installations. If you need professional help with your setup, contact them today! - Please visit qmailtoaster.com for the latest news, updates, and packages. To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com - Qmailtoaster is sponsored by Vickers Consulting Group (www.vickersconsulting.com) Vickers Consulting Group offers Qmailtoaster support and installations. If you need professional help with your setup, contact them today! - Please visit qmailtoaster.com for the latest news, updates, and packages. To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com
Re: [qmailtoaster] RES: TLS error
The most common problem I've had with TLS and all of the QMAIL TOASTER daemons is a lack of available RAM. First off, let me explain that I use both 64-bit and 32-bit Linux implementations (mostly CentOS, some Fedora, a few Debian), and the problem first arose on a 64-bit system. The fix was to drastically increase the softlimit in my run scripts, and since I duplicate config info on all of my systems - regardless of 64 or 32-bit OSes -- I've never seen this be a problem in the 32-bit systems. What happens when the process runs out of RAM because of the need for the TLS libraries is that the process crashes -- with indeterminate results. So, my suggestion is to up your softlimit and let's go from there! Dan --- IT4SOHO, LLC 224 13th Ave N St. Petersburg, FL 33701-1122 877-IT4SOHO: Toll Free 727-647-7646 In Pinellas 813-464-2093 In Hillsborough 727-507-9435 Fax Only We make IT work for small business! Fábio R. P. Franco wrote: Hey guys! I think it was what I thought. I searched through the list archives and found out that command: [r...@sulistasrv13 send]# openssl s_client -starttls smtp -crlf -connect 209.239.114.87:25 -debug CONNECTED(0003) read from 0x867fc20 [0x8679350] (8192 bytes = 34 (0x22)) - 32 32 30 20 63 68 65 65-74 61 72 61 2e 6e 65 74 220 cheetara.net 0010 - 73 70 61 2e 63 6f 6d 2e-62 72 20 45 53 4d 54 50 spa.com.br ESMTP 0020 - 0d 0a .. write to 0x867fc20 [0x7fffb419a920] (10 bytes = 10 (0xA)) - 53 54 41 52 54 54 4c 53-0d 0a STARTTLS.. read from 0x867fc20 [0x8677340] (8192 bytes = 19 (0x13)) - 32 32 30 20 72 65 61 64-79 20 66 6f 72 20 74 6c 220 ready for tl 0010 - 73 0d 0a s.. write to 0x867fc20 [0x867fcc0] (133 bytes = 133 (0x85)) - 80 83 01 03 01 00 5a 00-00 00 20 00 00 39 00 00 ..Z... ..9.. 0010 - 38 00 00 35 00 00 16 00-00 13 00 00 0a 07 00 c0 8..5 0020 - 00 00 33 00 00 32 00 00-2f 03 00 80 00 00 66 00 ..3..2../.f. 0030 - 00 05 00 00 04 01 00 80-00 00 63 00 00 62 00 00 ..c..b.. 0040 - 15 00 00 12 00 00 09 06-00 40 00 00 65 00 00 64 .@..e..d 0050 - 00 00 14 00 00 11 00 00-08 00 00 06 04 00 80 00 0060 - 00 03 02 00 80 e3 81 2d-45 6e 15 7e 88 9b a3 48 ...-En.~...H 0070 - fb 3c 61 3d 08 46 f9 84-01 b3 6a 91 6a f6 ca 88 .a=.Fj.j... 0080 - 30 ac 5d a4 6d0.].m HELO kernel.org When I did the HELO on a functioning server (smtp.gmail.com) it gave some error and quit, but the 209.239.114.87 server didn't do anything -- probably it's dying after STARTTLS. Any opinions? Fabio Franco -Mensagem original- De: Fábio R. P. Franco [mailto:fabio.fra...@pelissari.com.br] Enviada em: quarta-feira, 3 de junho de 2009 14:34 Para: 'qmailtoaster-list@qmailtoaster.com' Assunto: TLS error Hello guys! I am having problems delivering an e-mail to a certain server: 209.239.114.87 2009-06-01 11:45:55.590179500 delivery 1220787: deferral: TLS_connect_failed:_timed_out;_connected_to_209.239.114.87./ 2009-06-01 11:45:55.590202500 status: local 0/10 remote 2/60 2009-06-01 11:45:55.612051500 delivery 1220788: deferral: TLS_connect_failed:_timed_out;_connected_to_209.239.114.87./ 2009-06-01 11:45:55.612060500 status: local 0/10 remote 1/60 I think it’s trying to use TLS. The message is staying on queue and giving these errors on the send logs. My bet is that their server (209.239.114.87) is not correctly configured for TLS so it’s timing out. What do you think? Any tests I can run? Att, Fabio Franco - Qmailtoaster is sponsored by Vickers Consulting Group (www.vickersconsulting.com) Vickers Consulting Group offers Qmailtoaster support and installations. If you need professional help with your setup, contact them today! - Please visit qmailtoaster.com for the latest news, updates, and packages. To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com - Qmailtoaster is sponsored by Vickers Consulting Group (www.vickersconsulting.com) Vickers Consulting Group offers Qmailtoaster support and installations. If you need professional help with your setup, contact them today! - Please visit qmailtoaster.com for the latest news, updates, and packages. To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com
Re: [qmailtoaster] Upgrading Question
I feel the urge to post my 2-cents worth here... As a *NIX (Linux, Solaris, HP/UX, AIX, even oldies like Ultrix SunOS) Systems Administrator for more than 20 years now, and the author of at least 6 Instructor-Lead week-long courses (I don't count customizations of existing course-ware), I have always felt and taught that updates were akin to asking for trouble. In fact, every one of my courses has a slide (or screen in the video-based courses) that says specifically: If it ain't broke, don't fix it! (and it is attributed, tongue in cheek, to my great-great-grandma, Irene). As the earlier poster implied, there certainly are exceptions -- notably security patches... but except for security patches, there is no need to constantly update Linux (or other *NIX versions)! There are very few true security flaws in the *NIX world, and you certainly need to keep a look out for them patch/update when they are discovered -- but this incessant need to be running the latest greatest software WILL get you into trouble! (Not if, WHEN!) Personally, I update systems only when I HAVE TO - To apply a security patch - To add new functionality As a result, I often install old versions so that new systems are running the same OS as the old ones). A case-in-point was the Linux 2.6 kernel -- which was fully 2-years old before I installed on ANY of my systems... because I didn't need it! It wasn't until I changed hardware vendors for my RAID cards and I was forced into the 2.6 kernels that I went back to the old systems and upgraded -- and that was for MY maintenance benefit! (They haven't been updated since -- still running 2.6.18 kernels in nearly ALL of them!) Bill Gates has convinced an entire generation of System Admins that to update is divine -- and it is bull... if your system is stable, LEAVE IT ALONE! I think I might have broken something getting down off my high horse, so I'll be going inside now Dan McAllister, President IT4SOHO, LLC A SUPERFAN of the QmailToaster Project! --- IT4SOHO, LLC 224 13th Ave N St. Petersburg, FL 33701-1122 877-IT4SOHO: Toll Free 727-647-7646 In Pinellas 813-464-2093 In Hillsborough 727-507-9435 Fax Only We make IT work for small business! Eric Shubert wrote: Cory Swanson wrote: I've got a QmailToaster box that I set up on SuSE 10.1 back in January of 2007. I want to upgrade it to the current version and establish a more regular schedule to keep it up-to-date. My questions are this: 1. Is there any problem performing such an upgrade since the original version installed is so far behind the current available? Not that I'm aware of. There haven't been all that many changes to the stock packages really. Mostly just support for newer distros. 2. What is the best method to go about doing this to minimize problems? qtp-newmodel. It's part of the qmailtoaster-plus package, which is found at http://qtp.qmailtoaster.com. 3. Do you have any other suggestions in doing this? You might want to do a backup first. qtp-newmodel is very safe though, so it's not really necessary. You should be backing up your data anyhow. qtp-backup works very well for this. Thanks in advance, guys! Cory -- - Qmailtoaster is sponsored by Vickers Consulting Group (www.vickersconsulting.com) Vickers Consulting Group offers Qmailtoaster support and installations. If you need professional help with your setup, contact them today! - Please visit qmailtoaster.com for the latest news, updates, and packages. To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com
Re: [qmailtoaster] Multiple domain names in header
An e-mail address with two @ symbols is ALWAYS illegal... since SMTP was introduced in RFC 821 in 1982! Your me file should contain your FQDN -- independent of which domains you're hosting! Just my thoughts... Dan IT4SOHO --- IT4SOHO, LLC 224 13th Ave N St. Petersburg, FL 33701-1122 877-IT4SOHO: Toll Free 727-647-7646 In Pinellas 813-464-2093 In Hillsborough 727-507-9435 Fax Only We make IT work for small business! Adam Glass wrote: Hi all, Thanks again for the help resolving the fully qualified hostname question. Here's another (and hopefully the last): When we send e-mail to someone with an @msn.com http://msn.com address it is immediately rejected. The message hints that it may be spam-related, but that is definitely not true. Our hosting provider is extremely careful about that, our businesses do not send mass e-mails, and I just double-checked our IP address on Spamhaus and it is clean. This might have to do with my QMT configuration for our two domains. Here are the headers from a rejected message (I obscured the recipient's username but nothing else is changed): Hi. This is the qmail-send program at pmcawab.parkermerrick.com http://pmcawab.parkermerrick.com. I'm afraid I wasn't able to deliver your message to the following addresses. This is a permanent error; I've given up. Sorry it didn't work out. recipi...@msn.com: Connected to 65.55.37.120 but sender was rejected. Remote host said: 550 OU-001 Mail rejected by Windows Live Hotmail for policy reasons. Reasons for rejection may be related to content with spam-like characteristics or IP/domain reputation problems. If you are not an email/network admin please contact your E-mail/Internet Service Provider for help. Email/network admins, please visit http://postmaster.live.com for email delivery information and support --- Below this line is a copy of the message. Return-Path: a...@awabllc.com Received: (qmail 3540 invoked by uid 89); 6 Oct 2009 20:56:51 - Received: by simscan 1.3.1 ppid: 3533, pid: 3536, t: 0.0729s scanners: attach: 1.3.1 clamav: 0.95.1 /m:50/d:9332 Received: from unknown (HELO ?137.52.23.46?) (a...@parkermerrick.com@137.52.23.46) by pmcawab with ESMTPA; 6 Oct 2009 20:56:51 - Message-ID: 4acbaf11.3080...@awabllc.com Date: Tue, 06 Oct 2009 16:56:49 -0400 From: Adam Glass a...@awabllc.com User-Agent: Thunderbird 2.0.0.23 (X11/20090817) MIME-Version: 1.0 To: recipi...@msn.com Subject: Hose clamps Content-Type: text/html; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit I tried changing our me and smtpgreeting files two different ways, but with the same result. In one case I put [137.52.23.46] into the me file. In the other case I changed me and smtpgreeting to use the awabllc name instead of parkermerrick. QMT was restarted after each change, but no joy. Any suggestions or advice would be most appreciated. Thank you! --Adam
Re: [qmailtoaster] Re: Is it possible with Qmail
Actually, if you want to get TECHNICAL, most of those things can also be done in QMT: 1 - a Unique Message ID is created when the server receives each message -- and the message ID is the filename used by VPOPMAIL to store the message (or at least PART of the filename). Of course, to SEE the message ID (file name, etc), you'll need access to the QMail files and folders. 2 - Tracking Status are handled by the QMail logging feature -- and detailed logs are kept for each process. You can adjust the level of detail. The only tricky part is that the Admin user who wants to view these logs will need shell access, or else web access to the log folders files. 3 - Using QMT and the VPOPMAIL utilities, an Admin can easily maintain and modify the settings (including quotas) for each user 4 - Here's the tricky one... Using shell commands and the QMail logs, an Admin certainly can determine overall user activity -- but the logs will need to be more detailed than the default setting, and the Admin will need a shell account in addition to the QMail account. So you see, depending on how you INTERPRET the requirements, QMT can satisfy the requirements with little change! There ARE ways to outsmart even LAZY requirements writers (e.g.: the ones that copy requirements from feature lists!) Just my thoughts... Dan IT4SOHO PS: Throw in an additional kicker -- QMT can support separate Admins for each Domain -- so that different e-mail domain admins can be completely locked out of domains that they are NOT admins for. On 2/4/2011 2:05 AM, Anil Aliyan wrote: Dear Eric, Yes these requirements are made by the customer. I know exchange server has all these features but just wanted to check if other mail servers like Qmail etc. can provide all these features or not as Exchange Server will be a costly affair. Regards, Anil Aliyan -Original Message- From: Eric Shubert [mailto:e...@shubes.net] Sent: Thursday, February 03, 2011 7:24 PM To: qmailtoaster-list@qmailtoaster.com Subject: [qmailtoaster] Re: Is it possible with Qmail On 02/03/2011 06:02 AM, Anil Aliyan wrote: Dear All , I have a prospect customer who wish to host their mailing server with us and wish to the following capabilities in the provided mailing solution. Can we have all these mentioned below in Qmail or any add-on for qmail. 1.Every incoming outgoing messages must have unique number generated at server level. 2.Every incoming outgoing message track/ status should be maintained and administrator can monitored the overall log. 3.Admin can maintain user profile and grouping. 4.Admin can review overall / user wise activities. Regards, Anil Aliyan Were these requirements written by you or your prospective customer? -- -Eric 'shubes' - Qmailtoaster is sponsored by Vickers Consulting Group (www.vickersconsulting.com) Vickers Consulting Group offers Qmailtoaster support and installations. If you need professional help with your setup, contact them today! - Please visit qmailtoaster.com for the latest news, updates, and packages. To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com - Qmailtoaster is sponsored by Vickers Consulting Group (www.vickersconsulting.com) Vickers Consulting Group offers Qmailtoaster support and installations. If you need professional help with your setup, contact them today! - Please visit qmailtoaster.com for the latest news, updates, and packages. To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com - Qmailtoaster is sponsored by Vickers Consulting Group (www.vickersconsulting.com) Vickers Consulting Group offers Qmailtoaster support and installations. If you need professional help with your setup, contact them today! - Please visit qmailtoaster.com for the latest news, updates, and packages. To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com
Re: [qmailtoaster] Anyone using spamdyke on a 64bit machine?
I use spamdyke on more than a dozen 64-bit CentOS 5 systems with little to no problem. Our CentOS /RedHat gcc compiler is vers. 4.1.2 I hope this helps. Dan McAllister IT4SOHO, LLC 877-IT4SOHO On 2/17/2011 7:36 PM, P.V.Anthony wrote: Hi, I am having a problem with one email server trying to send email to me. Some how spamdyke seems to be the problem. Got confirmation that the 32bit version of spamdyke is working fine. I need to test if others on 64bit has the same problem with spamdyke. If others 64bit machines are ok, then it should be my gcc version, with is old, gcc version 3.4.6. Have requested the person in charge of the email server to create a test email account that does auto-respond. This way we can test it out. I would like to pass the test email account to someone on this list that has a 64bit machine so same testing can be done. If you are willing to help with the testing, please contact me off this list. The reason for off list, is because the person who has setup the test account does not what it published. P.V.Anthony - Qmailtoaster is sponsored by Vickers Consulting Group (www.vickersconsulting.com) Vickers Consulting Group offers Qmailtoaster support and installations. If you need professional help with your setup, contact them today! - Please visit qmailtoaster.com for the latest news, updates, and packages. To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com - Qmailtoaster is sponsored by Vickers Consulting Group (www.vickersconsulting.com) Vickers Consulting Group offers Qmailtoaster support and installations. If you need professional help with your setup, contact them today! - Please visit qmailtoaster.com for the latest news, updates, and packages. To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com
[qmailtoaster] DKIM and DomainKeys and the Toaster
Greeting QMT and QTP affectionados... I endeavored to help PV Anthony resolve his SpamDyke issues a little bit ago and discovered to my dismay that my DomainKeys system was rejecting messages for no good reason -- ESPECIALLY if the sending domain had NO DomainKeys DNS entries! Needless to say, this is problematic, so I've temporarily suspended checking for DomainKeys Has anyone else experienced this recently? (I've used DomainKeys for quite some time without reason to suspect it was problematic! Was I just blind to the issues all this time??) Thanks in advance to any who choose to discuss this... Dan IT4SOHO - Qmailtoaster is sponsored by Vickers Consulting Group (www.vickersconsulting.com) Vickers Consulting Group offers Qmailtoaster support and installations. If you need professional help with your setup, contact them today! - Please visit qmailtoaster.com for the latest news, updates, and packages. To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com
Re: [qmailtoaster] help -- smtp forward--
I don't speak or read Spanish (assuming that's Spanish), but I think what you're trying to do is to forward outbound messages to a smart host of some kind. Look at the SMTPROUTES file in the CONTROL folder (the actual file names are NOT capitalized) -- by making a generic entry there, all non-local deliveries will be re-directed to the host you specify. (Just make sure that host allows your system to RELAY!) To make a generic entry, just start the like with a : -- so, to send all of your outbound messages to mail.smarthost.com, the line would look like: :mail.smarthost.com Good luck! I hope this is what you needed. Dan IT4SOHO On 2/25/2011 11:18 AM, Ariel wrote: List, I need your help urgently. Tenqo qmail running on a single domain, but I need all outgoing mail from that domain, it can be sent by another server. since I'm tieneindo blacklisting problems. if one can not rule need to forward all outgoing mail to another smtp qmail different. Lista,, necesito su ayuda, de forma urgente. Tenqo qmail funcionando con un solo dominio, pero necesito que todo el correo saliente de ese dominio, lo pueda enviar por otro servidor. ya que estoy tieneindo problemas de listas negras. si no se puede por dominio necesito reenviar todo el correo saliente del qmail por otro smtp diferente. - Qmailtoaster is sponsored by Vickers Consulting Group (www.vickersconsulting.com) Vickers Consulting Group offers Qmailtoaster support and installations. If you need professional help with your setup, contact them today! - Please visit qmailtoaster.com for the latest news, updates, and packages. To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com
[qmailtoaster] QTP NewModel and CentOS
Greetings all... I've been using QTP almost since its inception -- I love most of the scripts and find most to be refreshingly robust. I say most, because I did another QMT install this weekend and decided to spend a little time trying to debug an error I've had from the beginning: On a CentOS 5 x86_64 install that is upgraded from an older version to CentOS 5.5, the qtp-newmodel script consistently fails to mount a unioned sandbox. I know there are issues with CentOS 5 due to the merging of FUSE in general into the mainline kernel during the CentOS 5 lifetime. Furthermore, I am aware that the dkms-fuse package has been removed from the rpmforge repository entirely. But I can get around those. The issue seems to be with the script mounting /opt/qtp-overlay and it not showing up in /etc/mtab. Quite honestly, since I wrote my own update/install script BEFORE I used QTP, I have in the past just used my script to do the install, then use the QTP scripts to manage it after that. But I'd sure like to get to the bottom of this -- even if CentOS 6 comes out in a month or two, I don't intent to upgrade to it before 2012... so any help would be GREATLY appreciated. I can provide traces and logs to anyone familiar with the qtp-sandbox for union-fs and how it's supposed to work. Thanks in advance. Dan McAllister IT4SOHO - Qmailtoaster is sponsored by Vickers Consulting Group (www.vickersconsulting.com) Vickers Consulting Group offers Qmailtoaster support and installations. If you need professional help with your setup, contact them today! - Please visit qmailtoaster.com for the latest news, updates, and packages. To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com
[qmailtoaster] qtp-newmodel sandbox error
Greetings all... once again, I am being dumbfounded by qtp-newmodel. I must just be missing something (been a long time since I've felt this stupid about something!) Here's the lastest output from my log file -- clearly it's looking for qtp-overlay in /etc/mtab and it's not finding it... I thought for a while it was a dkms-fuse error, but even after I found a copy of that package, it still won't run... Any ideas anyone??? Oh... and PLEASE don't quote this entire file when you reply! Thanks in advance for any help or direction! Dan McAllister IT4SOHO Using FUSE union filesystem ... + me=qtp-mount-sandbox + myver=v0.3.3 + '[' '!' -z '' ']' + a1_initialization + '[' 0 '!=' 0 ']' + echo 'qtp-mount-sandbox v0.3.3' qtp-mount-sandbox v0.3.3 + . qtp-config -s ++ myname=qtp-config ++ myver=v0.3.2 ++ '[' qtp-mount-sandbox == qtp-config ']' ++ retexit=return ++ unset silent ++ '[' '!' -z -s ']' ++ case $1 in ++ silent=-s ++ a1_backup_variables ++ export backupdest=/backup/qmailbkup ++ backupdest=/backup/qmailbkup ++ export useftp=n ++ useftp=n ++ export ftpserver=ftp:// ++ ftpserver=ftp:// ++ export emailinfo=y ++ emailinfo=y ++ export email=postmaster ++ email=postmaster ++ export removeprevious=n ++ removeprevious=n ++ a2_newmodel_variables ++ export QMT_WEB=http://www.qmailtoaster.com ++ QMT_WEB=http://www.qmailtoaster.com ++ export QMT_DEV=http://www.qmailtoaster.org ++ QMT_DEV=http://www.qmailtoaster.org ++ export UPGRADE_DIR=/usr/src/qtp-upgrade ++ UPGRADE_DIR=/usr/src/qtp-upgrade ++ export SANDBOX=/mnt/qtp-sandbox ++ SANDBOX=/mnt/qtp-sandbox ++ export OVERLAY=/opt/qtp-overlay ++ OVERLAY=/opt/qtp-overlay ++ export RPMBUILD_OPTIONS= ++ RPMBUILD_OPTIONS= ++ export RPMBUILD_OPT_DIR=/opt/qmailtoaster-plus/etc/rpmbuild ++ RPMBUILD_OPT_DIR=/opt/qmailtoaster-plus/etc/rpmbuild ++ a3_vpopmail_variables ++ mysql_file=/home/vpopmail/etc/vpopmail.mysql ++ '[' -f /home/vpopmail/etc/vpopmail.mysql ']' +++ cut '-d|' -f1 ++ mysql_host=localhost +++ cut '-d|' -f2 ++ mysql_port=0 +++ cut '-d|' -f3 ++ mysql_user=vpopmail +++ cut '-d|' -f4 ++ mysql_password=SsEeCcRrEeTt +++ cut '-d|' -f5 ++ mysql_database=vpopmail ++ ldap_file=/home/vpopmail/etc/vpopmail.ldap ++ '[' -f /home/vpopmail/etc/vpopmail.ldap ']' ++ unset ldap_host ldap_port ldap_user ldap_password ldap_database ++ '[' '!' -s ']' ++ return 0 + . qtp-whatami -s ++ supported_distros='cnt40 cnt4064 cnt50 cnt5064 fdr10 fdr20 fdr30 fdr40 fdr4064 fdr50 fdr5064 fdr60 fdr6064 fedora_9 fedora_964 fedora_10 fedora_1064 fedora_11 fedora_1164 fedora_12 fedora_1264 mdk100 mdk101 mdk102 mdk103 mdk10364 mdk104 mdk10464 mdr09 mdr0964 rht90 sus100 sus10064 sus101 sus10164 ' ++ myname=qtp-whatami ++ myver=v0.3.7 ++ '[' qtp-mount-sandbox == qtp-whatami ']' ++ retexit=return ++ unset silent ++ '[' '!' -z -s ']' ++ case $1 in ++ silent=-s +++ uname -m ++ export QTARCH=x86_64 ++ QTARCH=x86_64 +++ uname -r ++ export QTKERN=2.6.18-194.32.1.el5.centos.plusxen ++ QTKERN=2.6.18-194.32.1.el5.centos.plusxen ++ ARCH64=x86_64 ++ BUILD_DIST= ++ BUILD_DIR= ++ unset tested ++ a2_check_releases +++ cat /etc/scyld-release ++ release_info= ++ '[' -z '' ']' +++ cat /etc/mandriva-release ++ release_info= ++ '[' '!' -z '' ']' +++ cat /etc/mandrake-release ++ release_info= ++ '[' '!' -z '' ']' +++ cat /etc/fedora-release ++ release_info= ++ '[' '!' -z '' ']' +++ cat /etc/redhat-release ++ release_info='CentOS release 5.5 (Final)' ++ '[' '!' -z 'CentOS release 5.5 (Final)' ']' ++ b20_read_release_info ++ read word1 word2 word3 word4 word5 word6 word7 word8 word9 ++ b24_redhat ++ BUILD_DIR=/usr/src/redhat ++ '[' CentOS == CentOS ']' ++ DISTRO=CentOS ++ OSVER=5.5 ++ relnum=5 ++ case $relnum in ++ BUILD_DIST=cnt50 ++ q1_distro_64 ++ '[' x86_64 == x86_64 ']' ++ BUILD_DIST=cnt5064 ++ tested=y ++ return 0 ++ '[' 0 '!=' 0 ']' ++ unset supported ++ for distro in '$supported_distros' ++ '[' cnt5064 == cnt40 ']' ++ for distro in '$supported_distros' ++ '[' cnt5064 == cnt4064 ']' ++ for distro in '$supported_distros' ++ '[' cnt5064 == cnt50 ']' ++ for distro in '$supported_distros' ++ '[' cnt5064 == cnt5064 ']' ++ supported=y ++ break ++ '[' '!' y ']' ++ export DISTRO ++ export OSVER ++ export BUILD_DIST ++ export BUILD_DIR ++ '[' '!' -s ']' ++ '[' y ']' ++ '[' '!' -s ']' ++ return 0 ++ grep '^/opt/qtp-overlay' /etc/mtab + mtab_entry= + '[' 1 == 0 ']' + SBFILE=/mnt/qtp-sandbox/boot/.qtp-sandbox + FSTYPE=U + a2_check_dependencies + pkglist= + rpmforge= + dep_pkgs=fuse-unionfs + case $DISTRO in + dep_pkgs='dkms-fuse fuse-unionfs' + rpmforge=--enablerepo=rpmforge + for pkg in '$dep_pkgs' + rpm --query dkms-fuse + '[' 1 '!=' 0 ']' + pkglist=' dkms-fuse' + for pkg in '$dep_pkgs' + rpm --query fuse-unionfs + '[' 0 '!=' 0 ']' + '[' '!' -z ' dkms-fuse' ']' + echo 'qtp-mount-sandbox - installing dkms-fuse ...' qtp-mount-sandbox - installing dkms-fuse ... + echo 'qtp-mount-sandbox - this could take a few moments - please be patient ' qtp-mount-sandbox - this could take a few moments - please be patient + yum
Re: [qmailtoaster] using registrar's DNS instead of djbdns or Bind
Keith, The DNS component is a performance issue, nothing more. And there are TWO separate and /unequal /parts to the equation: - In the first part, we're talking about making the DNS entries that point other MAIL servers to your QMAIL server and in this part, you honestly do not care whether it is your own personal DNS server, or your ISP's (or registrar's) DNS server -- so long as you can make the SPF, DomainKeys, and/or DKIM entries for SPAM control. - It's the second part that is usually installed locally and can make or break your QMAIL service. This is the part that resolves DNS queries for the QMAIL server (determines the MX records for outbound mail, checks for SPF records, etc.) Thus, for a SMALL installation (one or two domains, only a handful of users), using an outside DNS server will be fine... It will work, albeit less than optimally. But as you grow your installation, you'll start to see problems that will trace back to slow DNS resolution IMHO, and from what I've read: small-to-mid sized installations can use BIND (www.isc.org) just fine -- but even that eventually bogs down as the utilization curve ramps up -- which is why the QMT recommends the use of DJBDNS (http://cr.yp.to/djbdns.html). Now don't get me wrong -- DJBDNS is not the end-all, be-all of DNS servers. In fact, I personally use BIND myself (currently about 30 domains, about 150 users - I consider myself a SMALL server). IMHO, BIND is (and remains) the gold standard in being a DNS server -- but the DJBDNS system is amazingly fast at being a DNS client (or, more correctly, doing recursive lookups), and THAT is the component that the QMAIL system needs to access -- and to access quickly (and repeatedly) in larger environments. Finally, I have to throw in one jab at the think in the small, confined box types out there. Just because you need a DNS server on your QMail box doesn't mean it has to be THE DNS server at your site. Remember, the DNS burden of the QMail (or any other mail) system is in the lookups, not in the responses to outside clients. So don't be afraid to run QMail with its own DJBDNS service and have your real DNS servers somewhere else... So, to summarize -- especially for testing, you can leave your resolv.conf pointing to your ISP's (or registrar's) DNS server and everything should work just fine... but when you are truly ready to go into production, you should implement either BIND or DJBDNS on the host system. I've given you rationale and backup for either decision, so it's a matter of taste now... Enjoy your testing... and leave the DNS for later! Regards, Dan McAllister IT4SOHO On 4/26/2011 8:37 AM, Keith Smith wrote: Hi, Thank you for your help with this question. I am doing an install of Qmail Toaster on CentOS 5.6 using the documentation located at http://wiki.qmailtoaster.com/index.php/CentOS_5_QmailToaster_Install This is a test run to learn so I can do this in a production environment. The docs say I need a DNS server. I am using my registrar's DNS. Do I still need Bind or djbdns? Thank you for your help! -- Keith Smith Internet Marketing LLC (480) 272-9268 PHP Programming Services Search Engine Optimization
[qmailtoaster] Re: SpamAssassin Version
Just to throw my 2-cents worth in here... Binary packages are fine in a well-controlled environment, but source packages offer far more flexibility -- especially if the Makefiles are sophisticated enough to recognize advanced features and take advantage of them (without REQUIRING them). And while binary packages of SpamAssassin and ClamAV are likely available in binary form (and it may not be a bad idea to make the QMT dependent on the standard installation features and locations of each of these), the fact is that QMT grew up in a time when QMail itself was REQUIRED to be distributed in a source format -- part of the licensing requirement of Daniel Bernstein, author of QMail. (I don't think that's true anymore, since Daniel put QMail truly into the Public Domain, but I never worried about that so I'm not totally up-to-date on QMail licensing requirements). NOTE: I already use QMail in a VM environment (CentOS 5.6 is the host OS, Xen is the VM environment, and CentOS 5.5 is my current guest OS running QMT -- I'll update that at some time in the future, but I'm honestly expecting to wait for CentOS 6 before I upgrade the base QMT again). The point is, you are right that there is a sizable disk-space requirement to rebuild the entire QMT from source (*esp*. ClamAV)... but there is an easy way to patch that! Specifically, I mount an NFS volume from my Xen Host to supplement my Xen Client's storage while I build, then unmount and destroy the temp space when I'm done. NOTE: For ME this works especially well because I administer so many QMT installs -- I update the VM image, then distribute it to my clients. All of their actual data (the queue, the mailboxes, the control folder, etc.) are kept on NFS-mounted drives on the HOST OS -- so only the binary QMT is actually run on the Xen-Client... this is not a NORMAL config, and wouldn't be MY config if it weren't for my need to manage so many installs at the same time. Take from this what you wish -- discard the rest. It's worth every penny you paid for it! Dan IT4SOHO On 4/30/2011 1:23 AM, Martin Waschbüsch IT-Dienstleistungen wrote: Am 30.04.2011 um 05:40 schrieb David Bray: Thanks for the Feedback Understand about the Fedora Lifetime etc. I use VM's and Fedora 13 is the current Fedora. Tried Ubuntu, CentOS and keep coming back to Fedora - mainly because the php is more up to date The driving line is not so much SA - SpamAssassin as Clam, on my last server - Fedora 12 based, there was an issue with spam and the update to SA 3.3 did get me into later rule sets (via sa-update) You can - in the Fedora 13 case, substitute in yum install spamassassin with little difficulty, basically install the package, it pulls in what it needs, then create the scripts to run under daemontools. The clamav is harder, but I have it running, though untested. The end aim is just to let the rpm system update clam, rather than having to recompile to src rpm so why is that so bad ? well the toaster works fine on a VM with 20Gb HDD and 512k ram but to recompile the clam package you have to stop the services to free up memory ... so having a recipe for utilizing then yum package is nice ... which brings you back to your argument, Fedora 13 will only have a short life for clamav updates via yum David Bray http://www.brayworth.com.au da...@brayworth.com.au Not everything is perfect with QMT, I would agree, but at the same time: it works! And as Eric pointed out, CentOS / RHEL 5.x is the most current version of the recommended OS for QMT. Jake is working on QMTv2 which will incorporate some changes and it will actually address some of the things you mention (like an option to just install binary packages instead of compile from source). That being said, if you'd like to help with QMT, please join the qmailtoaster-devel list as well! Cheers, Martin - Qmailtoaster is sponsored by Vickers Consulting Group (www.vickersconsulting.com) Vickers Consulting Group offers Qmailtoaster support and installations. If you need professional help with your setup, contact them today! - Please visit qmailtoaster.com for the latest news, updates, and packages. To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com
[qmailtoaster] SPAM Designation Option
Greetings QMail list... I am in the unenviable position of admitting that some of my QMail is FM to me (FM is f***ing magic or, in plainer terms I know it works, I just don't know how) -- and that has me in a bit of a quandary I host web e-mail for some of my clients and I have a NEW customer, who has asked me to turn off the SpamAssassin ***SPAM*** insert in the subject line... in fact, he wants to turn off ALL SPAM blocking for his domain. So, how / where do I configure SpamAssassin (and SpamDyke, for that matter) to NOT process messages for his domain? Thanks in advance, Dan McAllister -- IT4SOHO, LLC PO Box 507 St. Petersburg, FL 33731-0507 CALL TOLL FREE: 877-IT4SOHO 877-484-7646 Phone 727-490-4394 Fax We make IT work for small business! - Qmailtoaster is sponsored by Vickers Consulting Group (www.vickersconsulting.com) Vickers Consulting Group offers Qmailtoaster support and installations. If you need professional help with your setup, contact them today! - Please visit qmailtoaster.com for the latest news, updates, and packages. To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com
Re: [qmailtoaster] Re: RE; spamdyke ?
NOTE: I have seen this behavior when SSL connections are made and there is not enough RAM allocated for the SSL libraries. The result is that the SMTP (actually the qmail-smtp service) hangs (bad memory alloc), and so never returns On 5/3/2011 11:14 AM, Eric Shubert wrote: This looks hunky dory to me. :) Sounding to me like something's choking on content somehow based on what you said previously. I'd like to see detail spamdyke log, and *all* related smtp log messages. - Qmailtoaster is sponsored by Vickers Consulting Group (www.vickersconsulting.com) Vickers Consulting Group offers Qmailtoaster support and installations. If you need professional help with your setup, contact them today! - Please visit qmailtoaster.com for the latest news, updates, and packages. To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com
Re: [qmailtoaster] Re: SPAM Designation Option
Lack of rDNS records will cause messages to fail to MSN/Hotmail, and Yahoo! accounts (don't know about Gmail)... I'm not at all worried about the blocking of messages (the SPAM he doesn't see he won't bitch about)... he just didn't like the ***SPAM*** label behavior! BTW: I warned him that there would be an increase in SPAM -- we'll see how long it takes him to decide to turn SA back on! Dan On 5/3/2011 1:58 PM, Michael J. Colvin wrote: This is true, however a LARGE amount of spam is sent from IP's with no RDNS. By not blocking those e-mails, you're certainly forcing your mail server to deal with a MUCH larger amount of mail, most of which would be spam. I guess if you don't have a resource issue, and don't mind wasting resources on handling spam, that may or may not be rejected by SpamAssassin down the road, then that's fine. I agree that, if the customer wants the spam, I'm more than happy to let them have it. However, I won't do it at the detriment of other users. If you've never had a Spam Attack, where your server is constantly bombarded by spammers, then when you do, you'll wish you had SpamDyke. :-) When your server (Or the OP's server) is being hammered by a spammer, and comes here to complain about how his server is overloaded and legit e-mail is timing out because all of his SMTP ports are being bogarted, the first suggestion is going to be Are you running SpamDyke. And, yes... When a client is not getting e-mail because the sender's mail server (Usually an internal Exchange server) does not have an RDNS, I tell them that's why. I even have a form e-mail I send them to send the blocked person. I've actually picked up several consulting gigs (Fixing their RDNS issue) and spam filtering customers from this... Lack of RDNS is becoming a much more common antispam check. So, if you're blocking it, others are also likely blocking it, and, in the end, the offending server's admin is going to have to resolve the issue... Mike -Original Message- From: Peter Peltonen [mailto:peter.pelto...@gmail.com] Sent: Tuesday, May 03, 2011 10:38 AM To: qmailtoaster-list@qmailtoaster.com Subject: Re: [qmailtoaster] Re: SPAM Designation Option Hi, On Tue, May 3, 2011 at 7:31 PM, Eric Shuberte...@shubes.net wrote: that. Spamdyke false positives are practically nonexistent though, so you might want to just leave spamdyke active and not tell him about it. Then again, if he insists on receiving spam, I'd charge him extra for the load it'll cause on your server as well as the trouble of configuring spamdyke. ;) Even if Spamdyke is correct, it does not mean that the end behaviour is what the customer expects. I have ran into issues where customers haven't received email they were expecting because of Spamdyke rejecting a message because of missing reserve dns. And it does not help telling the customer that the sending server is not properly configured, if they can receive the same email with their Gmail or some other account... I have been playing around with an idea that I should create a page for each customer where they could check the sending addresses for denied messages. So if there is a real message denied I could then offer an option to white list that mail server or sending address, so that the customer could try contacting the sender again. Best, Peter - Qmailtoaster is sponsored by Vickers Consulting Group (www.vickersconsulting.com) Vickers Consulting Group offers Qmailtoaster support and installations. If you need professional help with your setup, contact them today! - Please visit qmailtoaster.com for the latest news, updates, and packages. To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com - Qmailtoaster is sponsored by Vickers Consulting Group (www.vickersconsulting.com) Vickers Consulting Group offers Qmailtoaster support and installations. If you need professional help with your setup, contact them today! - Please visit qmailtoaster.com for the latest news, updates, and packages. To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com - Qmailtoaster is sponsored by Vickers Consulting Group (www.vickersconsulting.com) Vickers Consulting Group offers Qmailtoaster support and installations. If you need professional help with your setup, contact them today!
Re: [qmailtoaster] Re: RE; spamdyke ?
The fix is to edit your SSL-capable run files in /var/qmail/supervise/*/run Depending on what you've got configured, you may need to modify: *smtp*, *submission*, *smtp-ssl*, *pop-ssl*, *imap-ssl*. The last line in each of those run files is the exec that spawns the actual program -- and the first argument is usually softlimit with a -m xx value. The most recent QMT I installed set that value to 6400 (for SMTP SUBMISSION), or 4800 (for IMAP4-SSL POP3-SSL)... these are bigger numbers already from when I last saw this issue, but just FYI, my value for SMTP, SUBMISSION, and SMTP-SSL are 128MB (134217728) [expr 128 \* 1024 \* 1024], and I also increased the 450 value to 64 MB [67108864]. Call me an old-fashioned UNIX guy, but I'm just more comfortable with powers of 2 than powers of 10 when it comes to memory allocation! :-) I'm not sure how much it matches up with the current toaster, but I use the following RUN file in all 3 SMTP locations (smtp, submission, smtp-ssl) with the /_*highlighted *_/line changed for each appropriate spot to make the requisite changes for each port's requirements. (NOTE: I also make the HOSTNAME value equal to the qmail control me value -- it makes more sense to me to use that value than the actual hostname value from the server). Use if you like Dan #!/bin/sh QMAILDUID=`id -u vpopmail` NOFILESGID=`id -g vpopmail` MAXSMTPD=`cat /var/qmail/control/concurrencyincoming` SMTPD=/var/qmail/bin/qmail-smtpd TCP_CDB=/etc/tcprules.d/tcp.smtp.cdb HOSTNAME=`cat /var/qmail/control/me` VCHKPW=/home/vpopmail/bin/vchkpw MAXMEM=`expr 128 \* 1024 \* 1024` # 128 M max memory for messages # OPTIONS /_*RUNTYPE=SMTP*_/ if [ $RUNTYPE == SMTP-SSL ] ; then USEPORT=465 export REQUIRE_AUTH=1 # FORCE AUTH export SMTPS=1 # FORCE SMTPS (SSL) SPAMDYKE= # NO SPAMDYKE on AUTH'd users SPAMDYKEFLAGS= # NO SPAMDYKE on AUTH'd users elif [ $RUNTYPE == SUBMISSION ] ; then USEPORT=587 export REQUIRE_AUTH=1 # FORCE AUTH export SMTPS=0 # Allow SMTP or SMTPS SPAMDYKE= # NO SPAMDYKE on AUTH'd users SPAMDYKEFLAGS= # NO SPAMDYKE on AUTH'd users else # if [ $RUNTYPE == SMTP ] ; then DEFAULT VALUES USEPORT=25 SPAMDYKE=/usr/local/spamdyke/bin/spamdyke SPAMDYKEFLAGS=-f /var/qmail/control/spamdyke/spamdyke.conf export REQUIRE_AUTH=0 # 0 = not required, 1 = required export SMTPS=0 # 0 = not required, 1 = required fi exec /usr/bin/softlimit -m ${MAXMEM} \ /usr/bin/tcpserver -v -R -H -l ${HOSTNAME} -x ${TCP_CDB} \ -c ${MAXSMTPD} -u ${QMAILDUID} -g ${NOFILESGID} 0 ${USEPORT} \ ${SPAMDYKE} ${SPAMDYKEFLAGS} ${SMTPD} ${VCHKPW} /bin/true 21
Re: [qmailtoaster] Allow relay without auth
You should be able to turn off the no-relay option by using the TCP Rules Using the REAL IP address of your Internal Server (that would be the Internet IP, not the LAN IP), add the line: /I.P.A.D/:allow,RELAYCLIENT=,SENDER_NOCHECK=1 near the TOP of your file at */etc/tcprules.d/tcp.smtp* A _sample _/complete/ file looks like (NOTE: There is no right or wrong -- yours may well be different and work fine for you!): 127.0.0.1:allow,RELAYCLIENT=,SENDER_NOCHECK=1 1.2.3.4:allow,RELAYCLIENT=,SENDER_NOCHECK=1 :allow,BADMIMETYPE=,BADLOADERTYPE=M,CHKUSER_RCPTLIMIT=50,CHKUSER_WRONGRCPTLIMIT=10,QMAILQUEUE=/var/qmail/bin/simscan,DKSIGN=/var/qmail/control/domainkeys/%/private This tells TCP Rules to set the environment variables RELAYCLIENT and SENDER_NOCHECK before processing the message, which in turn tells QMail to allow relaying from the IP address specified (in the example above, 1.2.3.4). If your client system is behind a DHCP Internet Service (that is, the IP address may change), you'll need a different solution! Best of luck! Dan McAllister IT4SOHO On 5/11/2011 12:37 PM, Dnk wrote: Hi there, I have never had the need previously (so I am not aware of the proper way to do it) to allow another server to relay mail without authentication (most modern apps can do so), however now I do. What is the proper way to get a toaster (external in a data center) to relay mail for one of my (nat - in the office) internal servers? I have a pretty vanilla install, but with spamdyke installed. Thanks! --- Dnk. - Qmailtoaster is sponsored by Vickers Consulting Group (www.vickersconsulting.com) Vickers Consulting Group offers Qmailtoaster support and installations. If you need professional help with your setup, contact them today! - Please visit qmailtoaster.com for the latest news, updates, and packages. To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com