[vchkpw] How to ask for change the password
Hi all.. I need to know how to ask users to change the password automatically when a pre-determined period passed out. i.e. I would like to ask everybody to change the password once a month or something like this. Almost all my users uses MS Outlook as e-mail client. Best regards, Quique -- Enrique Luis SchamannGerente de Infra-estruturaSalutia - Tecnologia e SaúdeEd. PanambiRua Geraldo Flausino Gomes, 61 - cj. 11204575-060 - Brooklin NovoSão Paulo, SPBrasilTel.: ++55-11-3371-3286Fax: ++55-11-3371-3291
[vchkpw] phantom vpopmail alias domain
I have an alias domain that exists and appears to be working without the usual symbolic link for it being present in /var/vpopmail/domains. If I try to add that domain I get a message indicating the domain already exists. Sending email to that domain routes correctly to the domain that it is supposed to be an alias of. But the alias domain is invisible. Does vpopmail maintain the domain list somewhere else? I'm aware that vpopmail is just a layer on top of qmail, and I admit that I don't know enough about qmail to really understand the underpinnings, so apologies. I am using vpopmail-5.3.12. Thanks, Kurt Bigler
Re: [vchkpw] Working towards vpopmail 5.4 stable
a process to update all possible dot-qmail files would be VERY heavy and would be abused, besides you CAN easily rename a domain, without that hassle, it's just not as clean, change the name (NOT the path) in user/assign, and issue UPDATE vpopmail SET pw_domain='newname' WHERE pw_name='oldname'; you could then symlink domains/olddomain to domains/newdomain for ease of dir navigation. matt On Thu, 5 Jun 2003 10:28:02 +0200 "Raboo" <[EMAIL PROTECTED]> wrote: > thats why it should exist, it's to much job to do it manually ;) > > - Original Message - > From: "Tom Collins" <[EMAIL PROTECTED]> > To: "vpopmail list" <[EMAIL PROTECTED]> > Sent: Thursday, June 05, 2003 7:02 AM > Subject: Re: [vchkpw] Working towards vpopmail 5.4 stable > > > > On Wednesday, June 4, 2003, at 03:48 PM, Raboo wrote: > > > rename domains. > > > If I use vdeldomain on a alias will it remove the domain or just > > > the alias > > > domain. If it deletes the domain you should add a feature to > > > remove aliases > > > > It just removes the alias. > > > > Renaming a domain in vpopmail is a little more difficult -- you'd > > have to update all the Maildir references in the .qmail files, and > > make sure you update all of the mailing list files. > > > > -- > > Tom Collins > > [EMAIL PROTECTED] > > > > > > >
Re: [vchkpw] MySQL registration from vpopmail
Hello toyoda. (B (Bsay me, do you resolv the problem? (B (Bthanks, my clock it's only change to jump expiration date to software (BTOAD, jejeje,. (B (Bsend me address to NetworkTimeProtcol SERVER. (B (Bdo you have a web page, my web site is www.enzolutions.com, it's only in (Bspanish sorry. (Bsee you later. (B (Bthanks. (Benzo (BEduardo Garcia.
Re: [vchkpw] Working towards vpopmail 5.4 stable
thats why it should exist, it's to much job to do it manually ;) - Original Message - From: "Tom Collins" <[EMAIL PROTECTED]> To: "vpopmail list" <[EMAIL PROTECTED]> Sent: Thursday, June 05, 2003 7:02 AM Subject: Re: [vchkpw] Working towards vpopmail 5.4 stable > On Wednesday, June 4, 2003, at 03:48 PM, Raboo wrote: > > rename domains. > > If I use vdeldomain on a alias will it remove the domain or just the > > alias > > domain. If it deletes the domain you should add a feature to remove > > aliases > > It just removes the alias. > > Renaming a domain in vpopmail is a little more difficult -- you'd have > to update all the Maildir references in the .qmail files, and make sure > you update all of the mailing list files. > > -- > Tom Collins > [EMAIL PROTECTED] > >
Re: [vchkpw] qmail-smtpd-chkusr Patch Problem
Hi, I had the same problem, root.nofiles for for qmail-smtpd-chkusr with owner and group suid workd for me ls -l qmail-smtp* -rwxr-xr-x1 root qmail 37740 Mar 26 11:36 qmail-smtpd -r-sr-sr-x1 root nofiles224080 May 13 05:27 qmail-smtpd-chkusr Regards, Rick Tom Walsh wrote: I have patched my qmail to use the qmail-smtpd-chkusr functionality (on rcpt to: check to see if a user exists on the mail server and if the user doesn't send a 550). I have tested the functionality of qmail-smtpd (compiled with this patch and a couple others) and it works when I run it from the command line. My problem is when I run it from the tcpserver/supervise script the functionality doesn't work. I have managed to get it working by altering the -u and -g on the tcpserver command line to be root. When I do that it works flawlessly. It also works if I set the uid to root and set the gid to qmaild. My question (and I suppose directed at tonix): How can I get this to run with the proper user and group permissions of qmaild? Here are some of the details of my installation. /usr/bin/id -g qmaild 81 cat /etc/group |grep 81 qnofiles:*:81: ./supervise/smtp/run #!/bin/sh PATH=/var/qmail/bin:/usr/local/bin:/usr/bin:/bin export PATH QMAILUID=0 #NOFILESGID=0 #QMAILUID=`/usr/bin/id -u qmaild` NOFILESGID=`/usr/bin/id -g qmaild` exec softlimit -m 800 tcpserver -v -c 384 -p -R -x /usr/home/vpopmail/etc/tcp.smtp.cdb -u $QMAILUID -g $NOFILESGID 0 25 rblsmtpd -b -r relays.osirusoft.com -r relays.ordb.org fixcrio qmail-smtpd mail.ala.net /usr/home/vpopmail/bin/vchkpw /usr/bin/true 2>&1 permissions on qmail-smtpd: -rwxr-xr-x 1 rootqmail 128528 Jun 5 16:26 qmail-smtpd I am assuming it has something to do with the setuid that the patch does, but I am unsure. Any pointers? Tom Walsh Network Admin http://www.ala.net/
[vchkpw] FW: qmail-local_crashed./
When I send mail to another user on the same domain the mailbox fills up with copies of the message and blank emails from root. Otherwise the mail seems to work without error. I am using vpopmail-5.2.1 with mysql backend and qmail 1.03, I did follow instructions in README.vqmailadmin here is an example from /var/log/mail.log: Jun 6 12:34:14 chinstrap qmail: 1054917254.458211 starting delivery 11: msg 130616 to local [EMAIL PROTECTED] Jun 6 12:34:14 chinstrap qmail: 1054917254.458334 status: local 1/10 remote 0/20 Jun 6 12:34:14 chinstrap qmail: 1054917254.477208 new msg 130429 Jun 6 12:34:14 chinstrap qmail: 1054917254.477356 info msg 130429: bytes 206 from <[EMAIL PROTECTED]> qp 9703 uid 109 Jun 6 12:34:14 chinstrap qmail: 1054917254.478488 starting delivery 12: msg 130429 to local [EMAIL PROTECTED] Jun 6 12:34:14 chinstrap qmail: 1054917254.478601 status: local 2/10 remote 0/20 Jun 6 12:34:14 chinstrap qmail: 1054917254.479085 delivery 11: deferral: qmail-local_crashed./ Jun 6 12:34:14 chinstrap qmail: 1054917254.479168 status: local 1/10 remote 0/20 Jun 6 12:34:14 chinstrap qmail: 1054917254.487959 delivery 12: success: /var/state/vchkpw/domains/phmeco.net,rw,phmeco.net/ Jun 6 12:34:14 chinstrap qmail: 1054917254.488090 status: local 0/10 remote 0/20 Jun 6 12:34:14 chinstrap qmail: 1054917254.488110 end msg 130429 What to do?
[vchkpw] qmail-smtpd-chkusr Patch Problem
I have patched my qmail to use the qmail-smtpd-chkusr functionality (on rcpt to: check to see if a user exists on the mail server and if the user doesn't send a 550). I have tested the functionality of qmail-smtpd (compiled with this patch and a couple others) and it works when I run it from the command line. My problem is when I run it from the tcpserver/supervise script the functionality doesn't work. I have managed to get it working by altering the -u and -g on the tcpserver command line to be root. When I do that it works flawlessly. It also works if I set the uid to root and set the gid to qmaild. My question (and I suppose directed at tonix): How can I get this to run with the proper user and group permissions of qmaild? Here are some of the details of my installation. /usr/bin/id -g qmaild 81 cat /etc/group |grep 81 qnofiles:*:81: ./supervise/smtp/run #!/bin/sh PATH=/var/qmail/bin:/usr/local/bin:/usr/bin:/bin export PATH QMAILUID=0 #NOFILESGID=0 #QMAILUID=`/usr/bin/id -u qmaild` NOFILESGID=`/usr/bin/id -g qmaild` exec softlimit -m 800 tcpserver -v -c 384 -p -R -x /usr/home/vpopmail/etc/tcp.smtp.cdb -u $QMAILUID -g $NOFILESGID 0 25 rblsmtpd -b -r relays.osirusoft.com -r relays.ordb.org fixcrio qmail-smtpd mail.ala.net /usr/home/vpopmail/bin/vchkpw /usr/bin/true 2>&1 permissions on qmail-smtpd: -rwxr-xr-x 1 rootqmail 128528 Jun 5 16:26 qmail-smtpd I am assuming it has something to do with the setuid that the patch does, but I am unsure. Any pointers? Tom Walsh Network Admin http://www.ala.net/
Re: [vchkpw] OT: list question
Hi, It's been hashed out in here before, and no, there is nothing in the RFC mandating the it reverse resolves. Just my $0.2, but I tried doing exactly that for awhile but stopped because it was blocking more legit mail than spam. There are a lot of badly configured DNS servers out there. Regards, Rick Jeff Garvas wrote: Does anyone know why the SMTP server for this list doesn't reverse resolve? I'm thinking of turning on mandatory reverse resolve to cut down on the volume of junk hosts connecting from 80.0.0.0/8 and I noticed that doing so would stop delivery from this mailing list. Does anyone know if reverse DNS of a connecting SMTP server is outlined in any of the SMTP RFCs? If so, I'd like to reference the RFC in my error message. -Jeff
[vchkpw] OT: list question
Does anyone know why the SMTP server for this list doesn't reverse resolve? I'm thinking of turning on mandatory reverse resolve to cut down on the volume of junk hosts connecting from 80.0.0.0/8 and I noticed that doing so would stop delivery from this mailing list. Does anyone know if reverse DNS of a connecting SMTP server is outlined in any of the SMTP RFCs? If so, I'd like to reference the RFC in my error message. -Jeff
Re: [vchkpw] could not connect to mysql update server Access denied for user
At 03:21 AM 06/05/2003, Michael Bowe wrote: Tina, Perhaps take a look at my quick guide to vpopmail with mysql at http://www.pipeline.com.au/staff/mbowe/isp/vpopmail-mysql.htm Also available is a more comprehensive mail server guide at http://www.pipeline.com.au/staff/mbowe/isp/webmail-server.htm Michael. I've probably said it before but it deserves saying again: Mr. Bowe deserves 'wicked-mad-props' for the guides listed above. I've referred to them many times, and I'm running Solaris! Having all the steps written out in excruciating detail, along with having noted all those hundreds of little 'gotchas' that go along with complex installations, makes these guides a 'Must have' for just about anyone using this suite of software. summary of the above: BRAVO! ;^) Paul Theodoropoulos http://www.anastrophe.com http://folding.stanford.edu The Nicest Misanthrope on the Net
Re: [vchkpw] authdaemond
Disable authdaemond -- Remo Mattei --cell 801-209-8554 http://www.italy1.com Freelance Networking-Security/Consultant MCSE, MCP, MCP+I, MCT Linux Trainer & Firewall Development [EMAIL PROTECTED] > From: "Rick van Vliet" <[EMAIL PROTECTED]> > Date: Fri, 6 Jun 2003 06:30:03 -0500 > To: <[EMAIL PROTECTED]> > Subject: [vchkpw] authdaemond > > Good morning/afternoon! > > Running qmail 1.03, vpopmail5.21, with a very small group of users > (ten), three virtual domains. > > When a user changes password in QmailAdmin, I find that I need to > restart authdaemond, before user can log in at Sqwebmail front page. > How should I troubleshoot this? All is running as advertised, except for > this small problem. > > Tell me if I need to include any scripts. > > Thanks > > > >
[vchkpw] Vpopmail/courier-imap with ldap
Hi there, I'm running vpopmail with a cdb backend and courier-imap with the authvchkpw module. I was wondering if many people are using the ldap backend. I was also wondering if it's possible to use ldap for certain domains, and cdb for others. The reason I'm asking is that I have a samba domain running for internal users, and right now their passwords are not synced with vpopmails. I would like to run ldap for our domain, and run cdb for domains that we host. Is this possible? If so, are there any docs that could get me started? Thanks
Re: [vchkpw] MySQL registration from vpopmail
Hello Toyoda. (B (B (Byou are a one big problem. (B (Bbefore made a comand make, do you have modify file vmysql.h. (B (Bin this file chahge de user and pass of user, this is my vmysql.h. see (B (B* Edit to match your set up */ (B#define MYSQL_UPDATE_SERVER "localhost" (B#define MYSQL_UPDATE_USER "root" (B#define MYSQL_UPDATE_PASSWD "cow" (B (B#define MYSQL_READ_SERVER "localhost" (B#define MYSQL_READ_USER "root" (B#define MYSQL_READ_PASSWD "cow" (B (B (Bonly change de user and password, before make and makeinstall. (B (Battacch the file with dump vpopmail database. (B (Bsee you later. (B (Benzo (BEduardo Garcia. (B (BP.D : where are you? in Korea or japon, or near there. i live in costa (Brica, but a im colombian. (B (B (B (B (BToyoda Yasuyuki wrote: (B (B>Hi, (B>I have a problem about (qmail + vpopmail + MySQL) system. (B>My system is qmail + vpopmail + qmailadmin + MySQL. (B> (B>Q1.) (B>I want to register MySQL tables of vpopmail database. (B>I performed the following command. (B> (B>---command start (B>groupadd mysql (B>mkdir -p /usr/local/mysql/var (B>useradd -g mysql -d /usr/local/mysql/var mysql (B>cd /usr/local/src (B>ftp (B>http://www.softagency.co.jp/MySQL/Downloads/MySQL-4.0/mysql-4.0.13.tar.gz (B>tar -xzf mysql-4.0.13.tar.gz (B>rm -f mysql-4.0.13.tar.gz (B>cd mysql-4.0.13 (B>./configure --prefix=/usr/local/mysql --with-charset=ujis (B>-with-extra-charsets=all --with-mysqld-user=mysql (B>make (B>make install (B> (B>/usr/local/mysql/bin/mysql_install_db --user=mysql (B>chown -R mysql /usr/local/mysql/var (B>chgrp -R mysql /usr/local/mysql/var (B>/usr/local/mysql/bin/mysqld_safe --user=mysql & (B>/usr/local/mysql/bin/mysqlshow (B> (B>+---+ (B>| Databases | (B>+---+ (B>| mysql | (B>| test | (B>+---+ (B> (B>cd /usr/local/src/vpopmail-5.2.1 (B>./configure --enable-roaming-users=y --enable-mysql=y (B>--enable-incdir=/usr/local/mysql/include/mysql (B>--enable-libdir=/usr/local/mysql/lib/mysql (B>--enable-sqlincdir=/usr/local/mysql/include/mysql (B>--enable-sqllibdir=/usr/local/mysql/lib/mysql (B>make (B>make install-strip (B>/usr/local/mysql/bin/mysqladmin create vpopmail (B>/usr/local/mysql/bin/mysql (B>mysql > grant select,insert,update,delete,create on vpopmail.* to (B>[EMAIL PROTECTED] identified by 'password'; (B> (B>Query OK, 0 rows affected (0.00 sec) (B> (B>mysql > exit (B> (B>/usr/local/mysql/bin/mysqlshow (B> (B>+---+ (B>| Databases | (B>+---+ (B>| mysql | (B>| test | (B>| vpopmail | (B>+---+ (B> (B>qmail starting. (B> (B>/home/vpopmail/bin/vadddomain good.for.com (B> (B>qmail restarting. (B> (B>setenv LD_LIBRARY_PATH /usr/local/mysql/lib/mysql (B>/home/vpopmail/bin/vconvert -c -m (B> (B>Add user "[EMAIL PROTECTED]" through qmailadmin. (B> (B>/usr/local/mysql/bin/mysqlshow vpopmail (B>Database: vpopmail (B>++ (B>| Tables | (B>++ (B>++ (B> (B>---command finish (B>I created virtual domain(example. good.for.com) to vpopmail. (B>At this time, I think that Automatically Something tables of vpopmail (B>is created in the MySQL. (B>Is my thinking mistake? (B>Do I have to add manually tables of vpopmail to MySQL. (B> (B>Thank you in advance. (B> (B>Yasuyuki Toyoda. (B> (B> (B> (B> (B> (B> (B># MySQL dump 8.14 # # Host: localhostDatabase: vpopmail # # Server version3.23.41 # # Table structure for table 'dir_control' # CREATE TABLE dir_control ( domain char(64) NOT NULL default '', cur_users int(11) default NULL, level_cur int(11) default NULL, level_max int(11) default NULL, level_start0 int(11) default NULL, level_start1 int(11) default NULL, level_start2 int(11) default NULL, level_end0 int(11) default NULL, level_end1 int(11) default NULL, level_end2 int(11) default NULL, level_mod0 int(11) default NULL, level_mod1 int(11) default NULL, level_mod2 int(11) default NULL, level_index0 int(11) default NULL, level_index1 int(11) default NULL, level_index2 int(11) default NULL, the_dir char(160) default NULL, PRIMARY KEY (domain) ) TYPE=MyISAM; # # Dumping data for table 'dir_control' # INSERT INTO dir_control VALUES ('dom_89',1,0,3,0,0,0,61,61,61,0,2,4,0,0,0,''); # # Table structure for table 'lastauth' # CREATE TABLE lastauth ( user char(32) NOT NULL default '', domain char(64) NOT NULL default '', remote_ip char(18) NOT NULL default '', timestamp bigint(20) NOT NULL default '0', PRIMARY KEY (user,domain) ) TYPE=MyISAM; # # Dumping data for table 'lastauth' # # # Table structure for table 'vpopmail' # CREATE TABLE vpopmail ( pw_name char(32) NOT NULL default '', pw_domain char(64) NOT NULL default '', pw_passwd char(40) default NULL, pw_uid int(11) default NULL, pw_gid int(11) default NULL, pw_gec
[vchkpw] authdaemond
Good morning/afternoon! Running qmail 1.03, vpopmail5.21, with a very small group of users (ten), three virtual domains. When a user changes password in QmailAdmin, I find that I need to restart authdaemond, before user can log in at Sqwebmail front page. How should I troubleshoot this? All is running as advertised, except for this small problem. Tell me if I need to include any scripts. Thanks
Re: [vchkpw] libmysqlclient.so.12.o error
Hi, Cream[DONut] Ohhh-- That's good idea! > "ldconfig -m /usr/local/mysql/lib/mysql" <-- would be my best attempt > then ;-) But before reboot -> search directories: /usr/lib:/usr/local/lib:/usr/local/mysql/lib/mysql after reboot -> search directories: /usr/lib:/usr/local/lib Oh my god! Be initialized somewhere when OpenBSD rebooted. Why? Thank you for your advice. Yasuyuki Toyoda Cream[DONut] wrote: "ldconfig -m /usr/local/mysql/lib/mysql" <-- would be my best attempt then :) At 06:16 PM 6/6/2003 +0900, you wrote: Hello, Cream[DONut] Thank you very much for your advice. I tryed your advice. But there's perhaps no concept of ld.so.conf in BSD Please refer the following URL. http://www.my-opensource.org/lists/myoss/2002-04/msg00034.html I ask about OpenBSD3.2 user. "/var/run/ld.so.hints" file is binary file. man ldconfig LDCONFIG(8) OpenBSD System Manager's Manual LDCONFIG(8) NAME ldconfig - configure the shared library cache SYNOPSIS ldconfig [-RUmrsv] [directory ...] DESCRIPTION ldconfig is used to prepare a set of ``hints'' for use by the run-time linker ld.so to facilitate quick lookup of shared libraries available in multiple directories. It scans a set of built-in system directories and any directories specified on the command line (in the given order) look- ing for shared libraries and stores the results in the file /var/run/ld.so.hints to forestall the overhead that would otherwise re- sult from the directory search operations ld.so would have to perform to load the required shared libraries. The shared libraries so found will be automatically available for loading if needed by the program being prepared for execution. This obviates the need for storing search paths within the executable. The LD_LIBRARY_PATH environment variable can be used to override the use of directories (or the order thereof) from the cache or to specify addi- tional directories where shared libraries might be found. LD_LIBRARY_PATH is a `:' separated list of directory paths which are searched by ld.so when it needs to load a shared library. It can be viewed as the run-time equivalent of the -L switch of ld. ldconfig is typically run as part of the boot sequence. The following options are recognized by ldconfig: -R Rescan the previously configured directories. This opens the hints file and fetches the directory list from the header. Any additional pathnames on the command line are also processed. -U Unconfigure directories specified on the command line or remove inaccessible directories from search path if no directories spec- ified. This option cannot be used with -m. -m Merge the result of the scan of the directories given as argu- ments into the existing hints file. The default action is to build the hints file afresh. This option cannot be used with -U. -r List the current contents of ld.so.hints on the standard output. The hints file will not be modified. -s Do not scan the built-in system directory (``/usr/lib'') for shared libraries. -v Switch on verbose mode. Security Special care must be taken when loading shared libraries into the address space of set-user-Id programs. Whenever such a program is run, ld.so will only load shared libraries from the ld.so.hints file. In particular, the LD_LIBRARY_PATH is not used to search for libraries. Thus, the role of ldconfig is dual. In addition to building a set of hints for quick lookup, it also serves to specify the trusted collection of directories from which shared objects can be safely loaded. It is presumed that the set of directories specified to ldconfig are under control of the sys- tem's administrator. ld.so further assists set-user-Id programs by eras- ing the LD_LIBRARY_PATH from the environment. FILES /var/run/ld.so.hints SEE ALSO ld(1), link(5) HISTORY A ldconfig utility first appeared in SunOS 4.0. It appeared in its cur- rent form in NetBSD 0.9a. OpenBSD 3.1 October 3, 1993 Cream[DONut] wrote: 1. you arent supposed to run "/var/www/cgi/qmailadmin" in the console, open it from through the webserver & browser 2. look for the file called "ld.so.conf" and add "/usr/local/mysql/lib/mysql" to the bottom of it (on linux its in /etc/ld.so.conf) 3. then run ldconfig and try opening the file in through the website again (im used to doing it on linux, so it might not be the exact same) regards Kris At 05:05 PM 6/6/2003 +0900, you wrote: Hello, all My system is the following. OpenBSD 3.2 Apache-2.046 qmail-1.03 qmailadmin-1.0.6 vpopmail-5.2.1 I built above system. but I have a error. I performed the following command. - - - - /var/www/cgi/qmailadmin /u
[vchkpw] Bug in vpopmail 5.3.20 ? and Patch
Hi there, I've just compiled vpopmail 5.3.20 on a SuSE Linux 8.2 (gcc 3.3 20030226, glibc 2.3.2) and got the following error: In file included from vconvert.c:32: vmysql.h:50:22: missing terminating " character vmysql.h:57:35: missing terminating " character make[2]: *** [vconvert.o] Fehler 1 make[2]: Leaving directory `/usr/local/src/qmail/vpopmail-5.3.20' make[1]: *** [all-recursive] Fehler 1 make[1]: Leaving directory `/usr/local/src/qmail/vpopmail-5.3.20' make: *** [all-recursive-am] Fehler 2 Seems that there are missing two backslashes in vmysql.h This patch makes it compile: --- vmysql.h2003-03-19 01:27:18.0 +0100 +++ vmysql.h.fixed 2003-06-05 19:16:19.0 +0200 @@ -48,11 +48,11 @@ primary key (pw_name, pw_domain ) " #else #define TABLE_LAYOUT "pw_name char(32) not null, \ -pw_domain char(64) not null, +pw_domain char(64) not null, \ pw_passwd char(40), \ pw_uid int, pw_gid int, \ pw_gecos char(48), \ -pw_dir char(160), +pw_dir char(160), \ pw_shell char(20), \ primary key (pw_name, pw_domain ) " #endif I found the same missing backslahses in older versions, too. Best wishes Alex -- Alex Pleiner zeitform Internet Dienste Fraunhoferstrasse 5 64283 Darmstadt, Germany http://www.zeitform.deTel.: +49 (0)6151 155-635 mailto:[EMAIL PROTECTED]Fax: +49 (0)6151 155-634 GnuPG/PGP Key-ID: 0x613C21EA
Re: [vchkpw] Aliases not working with maildrop & spamassassin?
Hi Alan, On Thu, 5 Jun 2003 09:31:37 -0400 (EDT) Alan Murrell wrote: >> is sent to [EMAIL PROTECTED], qmail just dumps it >> directly into user's mailbox,completely out of the >> spam checking task. > My understanding is that when delivering mail, > vpopmail looks for these files in the following order: > > ~vpopmail/domains/domain.com/.qmail-user > ~vpopmail/domains/domain.com/user/.qmail > ~vpopmail/domains/domain.com/.qmail/default No. It's slightely different. qmail-local looks for ~vpopmail/domains/domain.com/.qmail-user and if this lookup fails it looks for ~vpopmail/domains/domain.com/qmail-default At _THIS_ stage control is given to vpopmail (with default .qmail-default that calls 'vdelivermail'). vdelivermail is the one that looks up the user in vpasswd.cdb and, if present, processes user/.qmail. > So what is happening in your situation, is the > .qmail-test file is prcessed by delivering the mail to > "user", and then no further processing is done That's correct in so far as qmail-local already uses this file and vpopmail never gains control over the delivery process. > I am not sure why this was done this way, Read the qmail documentation and try to understand the "Big qmail picture"[1]. Both together explain how delivery is done in qmail and where vpopmail "steps in". > If I was a coder, I would prolly see if I could change that behaviour > myself :-) If you were a coder and would have understood the qmail delivery system you'd know how you can change this behavior. It's all about _where_ to step in and "why e.g. qmailadmin is not designed to support this kind of interception yet". Creating aliases manually and including spamassassin in the delivery chain ain't a problem, the only problem is keeping this persistent when modifying aliases with qmailadmin. [1] http://www.nrg4u.com/ -- Ciao, Pit
Re: [vchkpw] libmysqlclient.so.12.o error
Hello, Cream[DONut] Thank you very much for your advice. I tryed your advice. But there's perhaps no concept of ld.so.conf in BSD Please refer the following URL. http://www.my-opensource.org/lists/myoss/2002-04/msg00034.html I ask about OpenBSD3.2 user. "/var/run/ld.so.hints" file is binary file. man ldconfig LDCONFIG(8) OpenBSD System Manager's Manual LDCONFIG(8) NAME ldconfig - configure the shared library cache SYNOPSIS ldconfig [-RUmrsv] [directory ...] DESCRIPTION ldconfig is used to prepare a set of ``hints'' for use by the run-time linker ld.so to facilitate quick lookup of shared libraries available in multiple directories. It scans a set of built-in system directories and any directories specified on the command line (in the given order) look- ing for shared libraries and stores the results in the file /var/run/ld.so.hints to forestall the overhead that would otherwise re- sult from the directory search operations ld.so would have to perform to load the required shared libraries. The shared libraries so found will be automatically available for loading if needed by the program being prepared for execution. This obviates the need for storing search paths within the executable. The LD_LIBRARY_PATH environment variable can be used to override the use of directories (or the order thereof) from the cache or to specify addi- tional directories where shared libraries might be found. LD_LIBRARY_PATH is a `:' separated list of directory paths which are searched by ld.so when it needs to load a shared library. It can be viewed as the run-time equivalent of the -L switch of ld. ldconfig is typically run as part of the boot sequence. The following options are recognized by ldconfig: -R Rescan the previously configured directories. This opens the hints file and fetches the directory list from the header. Any additional pathnames on the command line are also processed. -U Unconfigure directories specified on the command line or remove inaccessible directories from search path if no directories spec- ified. This option cannot be used with -m. -m Merge the result of the scan of the directories given as argu- ments into the existing hints file. The default action is to build the hints file afresh. This option cannot be used with -U. -r List the current contents of ld.so.hints on the standard output. The hints file will not be modified. -s Do not scan the built-in system directory (``/usr/lib'') for shared libraries. -v Switch on verbose mode. Security Special care must be taken when loading shared libraries into the address space of set-user-Id programs. Whenever such a program is run, ld.so will only load shared libraries from the ld.so.hints file. In particular, the LD_LIBRARY_PATH is not used to search for libraries. Thus, the role of ldconfig is dual. In addition to building a set of hints for quick lookup, it also serves to specify the trusted collection of directories from which shared objects can be safely loaded. It is presumed that the set of directories specified to ldconfig are under control of the sys- tem's administrator. ld.so further assists set-user-Id programs by eras- ing the LD_LIBRARY_PATH from the environment. FILES /var/run/ld.so.hints SEE ALSO ld(1), link(5) HISTORY A ldconfig utility first appeared in SunOS 4.0. It appeared in its cur- rent form in NetBSD 0.9a. OpenBSD 3.1 October 3, 1993 Cream[DONut] wrote: 1. you arent supposed to run "/var/www/cgi/qmailadmin" in the console, open it from through the webserver & browser 2. look for the file called "ld.so.conf" and add "/usr/local/mysql/lib/mysql" to the bottom of it (on linux its in /etc/ld.so.conf) 3. then run ldconfig and try opening the file in through the website again (im used to doing it on linux, so it might not be the exact same) regards Kris At 05:05 PM 6/6/2003 +0900, you wrote: Hello, all My system is the following. OpenBSD 3.2 Apache-2.046 qmail-1.03 qmailadmin-1.0.6 vpopmail-5.2.1 I built above system. but I have a error. I performed the following command. - - - - /var/www/cgi/qmailadmin /usr/libexec/ld.so: qmailadmin libmysqlclient.so.12.o: No such file or directory - - - - I have libmysqlclient.so.12.o in /usr/local/mysql/lib/mysql. although I reboot OpenBSD, I want to remain library path. Thank you in advance. Yasuyuki Toyoda. Cream[DONut] - www.donut.dk www.nethouse2000.dk - admin .
[vchkpw] Shouldn't a POP3 server support APOP and SASL?
Hi, I try to give some short statements on that topic. qmail-popup supports APOP as its only secure authentication method, Courier's pop3d supports SASL like CRAM-MD5 but no APOP. If authenticating via vchkpw, CRAM-MD5 can't be used. As someone asked in the courier-imap mailinglist for APOP the answer was: "APOP is obsolete". That's true, but APOP is used by many. But there are many losy POP3 clients that support only APOP or CRAM-MD5 as secure authentication methods. AFAIK Eudora speaks CRAM-MD5 but no APOP, some versions of OE (maybe not all?) do the opposite. Please don't throw in POP3 over SSL as an alternative, as client support is even worse than with APOP or CRAM-MD5. Does someone have a pointer to a mail client comparison chart showing their support for secure authentication methods. As a company providing POP3 service I can not force our customers to change there favourite client. I think, a modern POP3 server SHOULD support both APOP and SASL. Is anybody out there (except Vladimir) who agrees? Many users patch qmail-smtpd to have SMTP_AUTH. Does nobody patch qmail-popup, to have CRAM-MD5? Don't you need it? I'm curently running qmail 1.03 and the outdated vpopmail 5.2.1 with the patches from Bill's site (shupp.org) provided by Vladimir. I have SMTP_AUTH and SMTP-after-POP3, I have APOP and CRAM-MD5 and it works fine. Before you say "then shut up and stay with it" (well, you are right), current vpopmail has some nice features and the promised version 5.4 is something I want to use. I don't want to offend anybody. I just have the need to read your opinion. Best wishes Alex -- Alex Pleiner zeitform Internet Dienste Fraunhoferstrasse 5 64283 Darmstadt, Germany http://www.zeitform.deTel.: +49 (0)6151 155-635 mailto:[EMAIL PROTECTED]Fax: +49 (0)6151 155-634 GnuPG/PGP Key-ID: 0x613C21EA
Re: [vchkpw] qmail-smtpd-chkusr Patch Problem
Tom, I suppose you're using the "regular" version, as you speak of setuid. You have to read carefully instructions at www.interazioni.it/qmail. These are the instructions for the regular version: "regular" qmail-smtpd-chkusr must be installed (by default in /var/qmail/bin) with setuid (user qmaild) and setgid (group qnofiles), and executed by tcpserver with -u vpopmail-user and -g vchkpw-group parameters. qmail-smtpd-chkusr starts running with the original qmail-smtpd uid and gid, switching to needed uid and gid only for vpopmail checks on user existance, turning back to the starting uid and gid. You have to set SUID (set-user-ID-on-execution) and SGID (set-group-ID-on-execution) bits on qmail-smtpd-chkusr: chown qmaild qmail-smtpd-chkusr chgrp qnofiles qmail-smtpd-chkusr chmod 6555 qmail-smtpd-chkusr and the result you see should be like (different size and date, of course): -r-sr-sr-x 1 qmaild qnofiles 57056 Feb 14 18:18 qmail-smtpd-chkusr Integrate qmail-smtpd-chkusr in your start files: As example, a real start command for qmail-smtpd-chkusr may be #!/bin/sh -e # # Using splogger to send the log through syslog. exec env - PATH="/var/qmail/bin:/usr/local/bin" \ tcpserver -t 5 -v -p -x \ -u -g -l 0 smtp \ qmail-smtpd-chkusr splogger smtpd & where = vpopmail uid = vchkpw gid = your host.domain (!) = your tcp.permission.to.relay cdb NOTE: if you are using more system users for your domains, the execution uid (which I indicated as vpopmail) should be set to root. Ciao, Tonino At 05/06/03 05/06/03 -0500, Tom Walsh wrote: I have patched my qmail to use the qmail-smtpd-chkusr functionality (on rcpt to: check to see if a user exists on the mail server and if the user doesn't send a 550). I have tested the functionality of qmail-smtpd (compiled with this patch and a couple others) and it works when I run it from the command line. My problem is when I run it from the tcpserver/supervise script the functionality doesn't work. I have managed to get it working by altering the -u and -g on the tcpserver command line to be root. When I do that it works flawlessly. It also works if I set the uid to root and set the gid to qmaild. My question (and I suppose directed at tonix): How can I get this to run with the proper user and group permissions of qmaild? Here are some of the details of my installation. /usr/bin/id -g qmaild 81 cat /etc/group |grep 81 qnofiles:*:81: ./supervise/smtp/run #!/bin/sh PATH=/var/qmail/bin:/usr/local/bin:/usr/bin:/bin export PATH QMAILUID=0 #NOFILESGID=0 #QMAILUID=`/usr/bin/id -u qmaild` NOFILESGID=`/usr/bin/id -g qmaild` exec softlimit -m 800 tcpserver -v -c 384 -p -R -x /usr/home/vpopmail/etc/tcp.smtp.cdb -u $QMAILUID -g $NOFILESGID 0 25 rblsmtpd -b -r relays.osirusoft.com -r relays.ordb.org fixcrio qmail-smtpd mail.ala.net /usr/home/vpopmail/bin/vchkpw /usr/bin/true 2>&1 permissions on qmail-smtpd: -rwxr-xr-x 1 root qmail 128528 Jun 5 16:26 qmail-smtpd I am assuming it has something to do with the setuid that the patch does, but I am unsure. Any pointers? Tom Walsh Network Admin http://www.ala.net/ [EMAIL PROTECTED] Interazioni di Antonio Nati http://www.interazioni.it [EMAIL PROTECTED]
[vchkpw] libmysqlclient.so.12.o error
Hello, all (B (BMy system is the following. (BOpenBSD 3.2 (BApache-2.046 (Bqmail-1.03 (Bqmailadmin-1.0.6 (Bvpopmail-5.2.1 (B (B (BI built above system. (Bbut I have a error. (BI performed the following command. (B (B- - - - (B/var/www/cgi/qmailadmin (B/usr/libexec/ld.so: qmailadmin libmysqlclient.so.12.o: (B No such file or directory (B- - - - (B (BI have libmysqlclient.so.12.o in /usr/local/mysql/lib/mysql. (Balthough I reboot OpenBSD, I want to remain library path. (B (BThank you in advance. (B (BYasuyuki Toyoda.
Re: [vchkpw] Aliases not working with maildrop & spamassassin?
I thought I had solved this problem for a client of mine. At the domain level, qmail seems to read .qmail- then .qmail-default file for delivery instruction. So if your .qmail-test file says /user/Maildir (default by qmailadmin), it'll completely bypass .qmail-default. Yes, your .qmail-test should include like in .qmail-default, which will invoke maildrop but spam tagging rule will be ignored because it can't find you "test" alias in the database. You can choose to fix it at the database schema level, which probably will require a re-architecting the whole system. Fortunately, maildrop can be scripted to manipulate the way mail is delivered. What I've done was added a little code in the mailfilter file: # Environment variables needed import HOME import EXT # user import HOST # domain ALIASTO=$1 if("$xALIAS" ne "x") { EXT=$ALIASTO } and my .qmail-test would say: /path/to/maildrop /path/to/mailfilter user so when maildrop is invoked, mailfilter checks to see if there's a command line option passed to it. If there is, change the environment variable EXT and pass it through spamd. If you choose to do it at the user level, i.e. Maildir/.qmail, it might not work (depending on your mailfilter) because it'll execute maildrop and then delivermail, which would then reads .qmail-ext and .qmail-default, then Maildir/.qmail and the cycle is repeated. Even if you can program your mailfilter to break the cycle, CPU time is wasted in another qmail cycle. Then again, my approach runs into problem when you have a .qmail- file because of the loosely defined .qmail- system, but that's another topic. Dzuy Jasper Metselaar wrote: Hi, I have a real [EMAIL PROTECTED] which is tagged for spam checking. The .qmail-default contains | /usr/local/bin/maildrop which calls maildrop and in mailfilter, runs through spamd to check for spam then pass it back to vdelivermail to deliver to the proper mailbox. Then I created a [EMAIL PROTECTED], which is an alias to [EMAIL PROTECTED] A .qmail-test is created which points to mydomain.com/user/Maildir. When an email is sent to [EMAIL PROTECTED], qmail just dumps it directly into user's mailbox,completely out of the spam checking task. Shouldn't the .qmail-test file's content be the same as the .qmail-default file? How do you enable alias to behave the same as the account that it's aliased to? Of course I can use a forwarder to [EMAIL PROTECTED] instead, but I don't think this is the best wayor? Thanks in advance for your suggestions! Jasper ___
Re: [vchkpw] qmail-smtpd-chkusr Patch Problem
sorry.. i made a typo in pmy prevoius post... the line below should been saying. chmod 6555 qmail-smtpd sorry On 06 Jun 2003 08:08:44 +0200 Lars Gustafson <[EMAIL PROTECTED]> wrote: > > permissions on qmail-smtpd: > > -rwxr-xr-x 1 rootqmail 128528 Jun 5 16:26 qmail-smtpd Never mind the following line. the on on top is the one to use. > chown 6555 /var/qmail/bin/qmail-smtpd > > -- > Lars Gustafson <[EMAIL PROTECTED]> > i3 micro technology ab > > > --