Re: [vchkpw] Update: QMail email true origin IP (tracking down a virus!)
looks like its comming from: 66.120.105.146 the dns suggests its a pac bell adsl connection Received: from adsl-66-120-105-146.dsl.sndg02.pacbell.net (HELO entekbuckets.com) (66.120.105.146)
Re: [vchkpw] I'm stumped
Dave Goodrich wrote: Good morning, I've a problem that has been harassing me for a week now. I'm no qmail/vpopmail expert, but I've solved most all my problems over the years with the archives and The qmail Handbook. So I've done my share of troubleshooting and I think I have a pretty good grasp on how qmail vpopmail work. This one has me stumped. I have a user who claims he is not getting emails. I can find the delivery using qmLogsort and the log shows the messages delivered just fine. 2005-03-17 11:33:37.868623500 new msg 3415139 2005-03-17 11:33:37.868763500 info msg 3415139: bytes 9817 from [EMAIL PROTECTED] qp 93531 uid 89 2005-03-17 11:34:37.429451500 end msg 3415139 2005-03-17 11:33:37.877803500 starting delivery 783121: msg 3415139 to local [EMAIL PROTECTED] 2005-03-17 11:34:08.086894500 delivery 783121: success: did_0+0+2/ Looks good, the users .qmail file looks like so, # less /home/vpopmail/domains/x.com/.qmail-alicia\:hitchcock |/home/vpopmail/bin/tls-spamtest.sh [EMAIL PROTECTED] [EMAIL PROTECTED] |/home/vpopmail/bin/vdelivermail '' delete Two program deliveries as it should be. Yet the user claims the message never arrived and the pop3d log is useless other than for mrtg. The tls-spamtest.sh script is a modified version of ifspamh and delivers all spam to the [EMAIL PROTECTED] account, which we check, and the messages are not arriving there. The spamd log shows the message was clean. The odd thing is that I have another user claiming the same thing and again I can find the message. I even changed this users .qmail file to this, # less /home/vpopmail/domains/x.com/.qmail-joel\:daas /home/vpopmail/domains/x.com/0/joel.daas/Maildir/ /home/vpopmail/domains/x.com/0/joeltest/Maildir/ Every message he receives should deliver to the joeltest account *if* the delivery to joel.daas was successful. The logs show this. This delivery doesn't even use vdelivermail so I've effectivly cut everything I could from the delivery process. 2005-03-16 10:55:56.890400500 starting delivery 754144: msg 3415073 to local [EMAIL PROTECTED] 2005-03-16 10:55:57.559319500 delivery 754144: success: did_2+0+0/ Interestingly, the joeltest account has never lost a message. Whenever joel.daas claims he did not receive a message, I can find it in joeltest. Now my take on this is the users have an issue with their mail clients, or they are a bit too quick with the delete button. How do I prove it? I can show where the logs say the message was handed to two programs or delivered to two files, but I can't prove the user got the message beyond that. at the bottom of the .qmail file add a: |/bin/ls -lat /home/vpopmail/domains/x.com/0/joel.daas/Maildir/ /var/log/joel.delivery.log then touch /var/log/joel.delivery.log and chown vpopmail:vchkpw /var/log/joel.delivery.log Now every time he recives a mail, it afterwards gives you a directorylisting, proving that the mail is there before his mail client fetches it. /Kris
Re: [vchkpw] chkusr on gateway mx?
Ken Jones wrote: You could try one of the goodrcptto patches to qmail-smtpd. We have one we use for gateways to exchange servers. Basicly, you export a list of users to a file. Put that file on the gateway machines. With our patch we build a goodrcptto.cdb file. Then qmail-smtpd checks the cdb file and rejects it if it does not exist. I have a qmail+vpopmail+qmail-scanner+clamav+kav+spamassassin server running this kind of gateway to an exchange server. And have been asked to setup this exact thing. I'd be very interested if you could you provide some links / more information? Kris
Re: [vchkpw] 5.4.7 upgrade problems - mysql
from my personal experience: never NEVER EVER run vconvert (unless you are absolutely sure you want to conver t a domain, and then only ONCE, using the correct command the first time to accomplish your task). and then delete vconvert when your system is ready to be used. why? i've personally experienced what its like to lose logins for several mysql domains thanks to me forgetting to never run vconvert. (yea been slapping my self a couple of times with a couple of years bethween). (for the record if anyone should google to this post for the solution: back up the mysql vpopmail database, then convert the domains back to mysql then restore the backup of the mysql database) disclaimer: this might have been fixed long ago, since i have had it deleted on my system for 2 years. Charles Sprickman wrote: Hi, After running through the same upgrade on a test box, I tried it on the production box today. pop and imap continued working fine, but smtp-auth seemed to be borked (probably because I had not yet recompiled it). So then I started poking around with the v* commands. They all spit out some nasty mysql errors: [EMAIL PROTECTED]/usr/local/src/toaster/vpopmail]# ~vpopmail/bin/vuserinfo chip vmysql: sql error[3]: Commands out of sync; You can't run this command now no such user [EMAIL PROTECTED] Segmentation fault [EMAIL PROTECTED]/usr/local/src/toaster/vpopmail]# vdominfo blah.net domain: blah.net uid:90 gid:90 dir:/home/vpopmail/domains/blah.net vmysql: error creating table 'dir_control': Table 'dir_control' already exists users: 0 Segmentation fault (core dumped) Putting my old binaries/libs back brought everything back in order. The test box is running the same version of mysql client libs and the same version of vpopmail. What might be causing this? The only info I found was this mysql doc: http://dev.mysql.com/doc/mysql/en/Commands_out_of_sync.html The vmysql: error creating table 'dir_control': Table 'dir_control' already exists error is interesting... It seems like vpopmail couldn't read the table, so decided it should make a new one. The out of order stuff above makes me think it had another issue reading a table (ie: the commands weren't out of order, but one of them failed). Here's ldd output on the new commands: [EMAIL PROTECTED]/usr/local/src/toaster/vpopmail/vpopmail-5.4.7]# ldd vuserinfo vuserinfo: libmysqlclient.so.12 = /usr/local/lib/mysql/libmysqlclient.so.12 (0x28074000) libz.so.2 = /usr/lib/libz.so.2 (0x28094000) libm.so.2 = /usr/lib/libm.so.2 (0x280a1000) libcrypt.so.2 = /usr/lib/libcrypt.so.2 (0x280bc000) libc.so.4 = /usr/lib/libc.so.4 (0x280d5000) And similar from the working box: [EMAIL PROTECTED]/usr/local/src/toaster]# ldd `which vuserinfo` /usr/local/bin/vuserinfo: libmysqlclient.so.12 = /usr/local/lib/mysql/libmysqlclient.so.12 (0x28074000) libz.so.2 = /usr/lib/libz.so.2 (0x28095000) libm.so.2 = /usr/lib/libm.so.2 (0x280a3000) libcrypt.so.2 = /usr/lib/libcrypt.so.2 (0x280bf000) libc.so.4 = /usr/lib/libc.so.4 (0x280d8000) Any ideas? Thanks, Charles
Re: [vchkpw] reporting on my vpopmail system
im using mysql accounts and i dont have a vpasswd, so i changed line 6 to:
if [ -e ${VIRTUALROOT}/${domain}/.qmail-default ]; then
(all my domains have a .qmail-default)
cream
Bill Gradwohl wrote:
Here's a start to what you might want.
Your criteria is open to interpretation.
I didn't bother prettying it up, and you can add any code you might want.
#!/bin/bash
VIRTUALROOT='/home/vpopmail/domains'
cd ${VIRTUALROOT}
find . -type d -maxdepth 1 | sed 's#^\./##' | while read domain; do
if [ -e ${VIRTUALROOT}/${domain}/vpasswd ]; then
echo
echo Domain - ${domain} - occupies $(du -hs ${domain})
cd ${VIRTUALROOT}/${domain}
find . -type d -maxdepth 1 | sed 's#^\./##' | while read user; do
if [ -d ${VIRTUALROOT}/${domain}/${user}/Maildir ]; then
echo ${user}
echoMaildir/new contains $(ls -1
${user}/Maildir/new|wc -l) messages.
echoAccount occupies $(du -hs ${user})
fi
done
cd -
fi
done
Re: [vchkpw] vpopmail 5.3.16 to 5.4.7
Tom Collins wrote: On Oct 13, 2004, at 1:31 PM, csere matyas wrote: that vmysql.h you are talking about should be in the source tree of the old vpopmail? (which isnt available btw [[= ) You might be able to strace an old binary (like vuserinfo) to find out what username and password it's using to access the database. or he could just revoke the old access grant new permissions to the database :) (or test and see if its using mysql root login) regards Kris
Re: [vchkpw] a couple of (newbie?) questions
Nemir N wrote: Yes, fabulous common sense. Unfortunately, I am in a position where one of my system users needs to get her mail through her shell. I did seem to manage to get the boxes all set up great following Paul Gregg's how-to, however the checkpasswd code refused to compile on my OpenBSD system. It was then that I discovered vpopmail and figured that it would be my salvation. Seems to be, except for this one small problem. If its just one user, and she ONLY uses the shell for email, then you could create a: /home/vpopmail/domains/test.org/.qmail-tutor containing: | /home/vpopmail/bin/vdelivermail '' /home/tutor or simply: /home/tutor/Maildir/ in both cases incomming mail should get delivered to /home/tutor/Maildir/new, but you have to set special permissions to allow user vpopmail or group vchkpw access to the specific users home dir regards Kris
Re: [vchkpw] Re: Need advise on secondary mail server for backup purpose.
At 18:05 06-08-2003 +0800, you wrote: my mailserver1 has been configured properly and it is up and running without any problem. Just do not have the idea of setting up and backup mail server. It isnt really a vpopmail issue, it is a Qmail issue. You put it in rcpthosts on mailserver2, that means it will recive mail for that domain, since it isnt in the local domains, or virtualdomains, it cant deliver it locally, and will try to deliver it remotely. - with standard settings it should keep trying for 5 days, then give up - you dont need vpopmail installed, just a plain Qmail server (somebody please correct me if im wrong)
Re: [vchkpw] Sorry,_no_mailbox_here_by_that_name
It seems to me to be a trend of people with domain names containing a - are reporting problems? Cream At 20:11 11-08-2003 +0200, you wrote: Hi vpopmail mailing list, i have this problem and i hope someone can help me fast, because after an update to 5.3.23, i cannot add any domains. vadddomain always crashed with an segmentation fault. i debugged it and the segfaults were caused by two free(in_domain) and another free(..). i commented them out and recompiled, so i could create the necc. domain directories. NOW the problem is, that he does not seem to recognize the directory. i can add successfully the domain with /home/vpopmail/bin/vadddomain haller-systemservice.net SECRETPW i can also get the infos: -- main:/home/vpopmail/domains/haller-systemservice.net # /home/vpopmail/bin/vuserinfo [EMAIL PROTECTED] name: info passwd: $1$fJye;$2x5VjC3f4XGvatfafLffx. clear passwd: SECRETPW uid:1 gid:0 gecos: info all services available dir: /home/vpopmail/domains/haller-systemservice.net/info quota: 1S,1000C usage: 0% last auth: Mon Aug 11 20:03:38 2003 last auth ip: 217.230.89.187 -- but the mail to [EMAIL PROTECTED] gets always bounces: -- @40003f37d9503b11ece4 new msg 66136 @40003f37d9503b120c24 info msg 66136: bytes 1137 from [EMAIL PROTECTED] qp 10859 uid 502 @40003f37d9503b8a8014 starting delivery 165: msg 66136 to local [EMAIL PROTECTED] @40003f37d9503b8a9f54 status: local 1/10 remote 0/20 @40003f37d9503b8aa33c delivery 165: failure: Sorry,_no_mailbox_here_by_that_name._(#5.1.1)/ @40003f37d9503b8aab0c status: local 0/10 remote 0/20 @40003f37d9510048f1d4 bounce msg 66136 qp 10862 @40003f37d95100490d2c end msg 66136 -- i have another domain haller-systemservice.de which i created before the update. this domain works fine. i checked the file permissions on the files in the directory /home/vpopmail/domains/haller-systemservice.net/ with the same files in the directory /home/vpopmail/domains/haller-systemservice.de/ they are the same, but it does not work. please help main:/ # ll /home/vpopmail/domains/haller-systemservice.net total 17 drwxr-xr-x4 vpopmail vchkpw256 Aug 11 19:27 . drwxr-xr-x 17 vpopmail vchkpw640 Aug 11 19:12 .. -rw-r--r--1 vpopmail vchkpw 34 Aug 11 19:27 .dir-control -rwxr-xr-x1 vpopmail vchkpw 69 Aug 11 19:58 .qmail-default -rw-r-xr-x1 vpopmail vchkpw 0 Aug 11 19:27 .vpasswd.lock drwxr-xr-x3 vpopmail vchkpw 96 Aug 11 19:27 info drwxr-xr-x3 vpopmail vchkpw 96 Aug 11 19:12 postmaster -rw-r-xr-x1 vpopmail vchkpw264 Aug 11 19:27 vpasswd -rw-r-xr-x1 vpopmail vchkpw 2356 Aug 11 19:27 vpasswd.cdb main:/ # ll /home/vpopmail/domains/haller-systemservice.de total 17 drwxr-xr-x5 vpopmail vchkpw288 Aug 11 17:21 . drwxr-xr-x 17 vpopmail vchkpw640 Aug 11 19:12 .. -rw-r--r--1 vpopmail vchkpw 34 Aug 11 17:21 .dir-control -rw-r-xr-x1 vpopmail vchkpw 96 Aug 11 16:10 .qmail-default drwx--xr-x2 vpopmail vchkpw176 Aug 6 19:57 .spamassassin -rw-r-xr-x1 vpopmail vchkpw 0 Mar 12 21:09 .vpasswd.lock drwxr-xr-x3 vpopmail vchkpw 96 Mar 11 14:23 info drwxr-xr-x3 vpopmail vchkpw 96 Mar 11 14:22 postmaster -rw-r-xr-x1 vpopmail vchkpw264 Mar 12 21:09 vpasswd -rw-r-xr-x1 vpopmail vchkpw 2356 Mar 12 21:09 vpasswd.cdb -- Mit freundlichen GrĂ¼ssen Mike Robin Haller mailto:[EMAIL PROTECTED] Cream[DONut] - www.donut.dk www.nethouse2000.dk - admin
Re: [vchkpw] Conversion to mysql..?
I have had catastrophic consequenses in the past by runnning vconvert without any options.. shouldnt even run ./vconvert --help (was 3 and 2 years ago, and it lost alot of user login/passwords) the command works, just be sure you use the right command from the start and when you are done, then rename vconvert it to vconvert.DONT_RUN, and chmod to 000 (stupid as i was i had forgotten about the first incident, and just ran the file again, losing alot of accounts again. (i think it defaults to converting cdb to mysql, thereby replacing the already existing domain in the database (well its 2+ years ago, and my memory about it isnt totally clear, just be carefull) Kris At 16:02 29-07-2003 -0700, you wrote: I'm converting an existing vpopmail / qmail installation to one using mysql. Is there anything in particular I need to look out for, anything in particular I need to do, and are there any tools to allow doing that? Harry Cream[DONut] - www.donut.dk www.nethouse2000.dk - admin
RE: [vchkpw] Spam Protection with vpopmail and qmail
Jeff, That sounds very interesting in regards to a project im currently working on, do you know if it would be possible to setup with smtproutes: 1. if it find virus in a mail, instead of relaying to original [EMAIL PROTECTED], it transfers it to another server/domain/account (fx. setup a vpopmail account on the relay server called [EMAIL PROTECTED]) 2. same as above, just for spam mails instead (spamassasin score = 5) and to [EMAIL PROTECTED] 3. if you just relay scan why dont you use Messagewall? 4. OT: does anyone know if ClamAV works with Squid? (viruscanning http transfers) Regards Cream At 16:23 26-06-2003 -0400, you wrote: Gonzo, I highly suggest installing qmail-scanner and reading the howto for using spam assassin with it. It works perfect. You scan mail prior to the queue stage, and if you configure it right, everything is hidden in the headers. I scan it this way for over 5000 people and most of them don't even realize its hidden in the headers. This also lets you do it on a separate machine, so if you want to hand it off to a machine with /var/qmail/control/smtproutes you can. qmail-scanner is not as hard to setup as it appears. It requires the QMAILQUEUE patch. -jeff -Original Message- From: Gonzo [mailto:[EMAIL PROTECTED] Sent: Thursday, June 26, 2003 4:09 PM To: [EMAIL PROTECTED] Subject: [vchkpw] Spam Protection with vpopmail and qmail Hello. I have qmail with vpopmail installed. I don't know how to filter out spam mails. SpamAssassin seems to not support virtual domains and even if it would support them, how to tell procmail to filter mails for vpopmail? Gonzo Cream[DONut] - www.donut.dk www.nethouse2000.dk - admin
Re: [vchkpw] Spam Protection with vpopmail and qmail
Nice, that looks like a very nice toaster (so nice im going to dedicate a machine to testing it out), only 2 comments 1. when installing SpamAssasin you should always install Razor2 first (spamassasin will automaticaly use it, and razor is great for those clever spammers that uses tricks) http://razor.sourceforge.nethttphttp://razor.sourceforge.net://razor.sourceforge.net 2. its a pretty old file, a few of the titles have new versions out, so you should check every site before downloading. Cream At 17:57 26-06-2003 -0400, you wrote: I have not tried the full implementation of SA yet with my domains as I am on a temp test of seeing how much mail actually gets tagged as spam, and so far I am impressed .. it is only missing 1 out of every 30 or so, but if you go here ... http://www.jerfu.com/toaster/FullToaster_1.0.6.html there is instructions on how to edit vopmail, and create the sorting script. Regards, Rob G [EMAIL PROTECTED] Cream[DONut] - www.donut.dk www.nethouse2000.dk - admin
Re: [vchkpw] Antivirus Scanner
www.messagewall.org i use it as mail relay, and its very good, it has basic spam filter, and nativly reads openantivirus definition files. (check out the MW faq for AV updates, as openantivirus is a bit slow, MW hourly compiles a combined definition file from OpenAntivirus and ClamAV's databases) Regards Kris At 03:37 PM 6/11/2003 +, you wrote: Hi guys, do anyone know a good antivirus scanner that can be installed on linux but not directly in the machine with the email server? and that works with qmail+vpopmail? eg: Firewall---Antivirus Mail scanner---Qmail+Vpopmail Mailserver Thanks again -- Cream[DONut] - www.donut.dk www.nethouse2000.dk - admin
Re: [vchkpw] How many inodes is enough?
At 07:40 AM 6/11/2003 +0200, you wrote: You should use a filesystem with dynamic Inode allocation. I use XFS - it is incredibel fast and a journaling filesystem. It is even NFS-proof, so you can export your vpopmail-home to multiple hosts. IMHO you should not use ext[23], because hosting 1.500.000 emails, stored in Maildirs, you will not see a good performance. Jens Jahr I can confirm this to some extend, due to a loop in a antivirus product, i ended up filling a little over 100gb with 5kb mails (thats roughly 20.000.000.000 emails) in the postmaster@ account. on the 1.13ghz p4 512mb Qmail didnt have any problems handeling the mails in que, and delivering them to the account, but sqwebmail timed out when trying to index / count them, also the ext3 file system took so long on a ls that i after a long time eventually gave up and killed the process, and rm -rf'ed the new dir. the lesson is as Jens points out, if you are going to use maildirs, you should use a file system thats geared to handeling huge amounts of small files. Kris Cream[DONut] - www.donut.dk www.nethouse2000.dk - admin
