Re: [vchkpw] NFS and vpopmail
On May 11, 2006, at 10:11 PM, Jeremy Kister wrote: by the phrase entire qmail service, I take it you did not install via LifeWithQmail ? Well the qmailrocks install - which from reading both LWQ and qmailrocks (as far as a basic install goes) qmailrocks seems to be builds upon the LWQ install - could be wrong though. In either case, are you using vpopmaild? I know little about it more than how to spell it, but if you're using it I could imagine it's part of your problem. Could it be an invalid/missing option in my NFS exports or the way I'm trying to mount the NFS share? unlikely. I kind of figured that and felt silly after I hit send. Matt
Re: [vchkpw] NFS and vpopmail
On May 11, 2006, at 10:23 PM, Rick Widmer wrote: I thought that was it too so I did a kill -HUP qmail-send but still nothing. I also stopped/started the entire qmail service (going along with what Rick was saying) and still nothing. Could it be an invalid/missing option in my NFS exports or the way I'm trying to mount the NFS share? Matt How are you updating the files in /var/qmail/control that change when adding/removing a domain? I'm using the vadddomain command. /var/qmail/control is mounted on the NFS share so it should be updated - right? Matt
Re: [vchkpw] NFS and vpopmail
yes MT wrote: On May 11, 2006, at 10:23 PM, Rick Widmer wrote: I thought that was it too so I did a kill -HUP qmail-send but still nothing. I also stopped/started the entire qmail service (going along with what Rick was saying) and still nothing. Could it be an invalid/missing option in my NFS exports or the way I'm trying to mount the NFS share? Matt How are you updating the files in /var/qmail/control that change when adding/removing a domain? I'm using the vadddomain command. /var/qmail/control is mounted on the NFS share so it should be updated - right? Matt
Re: [vchkpw] NFS and vpopmail
Remo Mattei wrote: yes MT wrote: On May 11, 2006, at 10:23 PM, Rick Widmer wrote: I thought that was it too so I did a kill -HUP qmail-send but still nothing. I also stopped/started the entire qmail service (going along with what Rick was saying) and still nothing. Could it be an invalid/missing option in my NFS exports or the way I'm trying to mount the NFS share? Matt How are you updating the files in /var/qmail/control that change when adding/removing a domain? I'm using the vadddomain command. /var/qmail/control is mounted on the NFS share so it should be updated - right? Matt Hummm, Are the system times all within 1 second of each other on all the machines ? Rick
Re: [vchkpw] NFS and vpopmail
On May 12, 2006, at 6:58 AM, Rick Macdougall wrote: Hummm, Are the system times all within 1 second of each other on all the machines ? Rick The dates were way off - several months. I synced all three servers up with our NTP server - same error: May 12 07:18:03 mail2 vpopmail[15323]: vchkpw-smtp: vpopmail user not found [EMAIL PROTECTED]:10.5.4.41 If I do `vuserinfo [EMAIL PROTECTED] on each machine it will print the postmaster info. So each machine does see that it exists - just not sure after that. Matt
Re: [vchkpw] NFS and vpopmail
On May 12, 2006, at 7:43 AM, MT wrote: On May 12, 2006, at 6:58 AM, Rick Macdougall wrote: Hummm, Are the system times all within 1 second of each other on all the machines ? Rick Oh and a side note - maybe this will help? I can pull the off each server just fine - it only errors when I send the mail. Matt
Re: [vchkpw] NFS and vpopmail
On May 12, 2006, at 7:56 AM, MT wrote: On May 12, 2006, at 7:43 AM, MT wrote: On May 12, 2006, at 6:58 AM, Rick Macdougall wrote: Hummm, Are the system times all within 1 second of each other on all the machines ? Rick Oh and a side note - maybe this will help? I can pull the off each server just fine - it only errors when I send the mail. Matt Well I think I got it. I started from scratch, recompiled qmail and patched using John Simpsons all-in-one patch v. 1.5 - now it works. I'm going to format and do a fresh install to test it again. I'll post back. Matt
Re: [vchkpw] NFS and vpopmail
On May 12, 2006, at 6:43 AM, MT wrote: May 12 07:18:03 mail2 vpopmail[15323]: vchkpw-smtp: vpopmail user not found [EMAIL PROTECTED]:10.5.4.41 If I do `vuserinfo [EMAIL PROTECTED] on each machine it will print the postmaster info. So each machine does see that it exists - just not sure after that. The qmail-smtpd process doesn't have the correct permissions to read the vpasswd file for the domain (or the vpopmail.mysql file with the MySQL login info). -- Tom Collins - [EMAIL PROTECTED] QmailAdmin: http://qmailadmin.sf.net/ Vpopmail: http://vpopmail.sf.net/
Re: [vchkpw] NFS and vpopmail
On May 12, 2006, at 9:01 AM, Tom Collins wrote: On May 12, 2006, at 6:43 AM, MT wrote: May 12 07:18:03 mail2 vpopmail[15323]: vchkpw-smtp: vpopmail user not found [EMAIL PROTECTED]:10.5.4.41 If I do `vuserinfo [EMAIL PROTECTED] on each machine it will print the postmaster info. So each machine does see that it exists - just not sure after that. The qmail-smtpd process doesn't have the correct permissions to read the vpasswd file for the domain (or the vpopmail.mysql file with the MySQL login info). So I'm still reinstalling - nice POS hardware I'm given to use (but that's another story). If anyone could tell me please, what should the permissions be? This is the setup I did: On the NFS server I created /home/domains, /home/users, /home/control I created user/group vpopmail:vchkpw and group qmail. The directories on the NFS server looks like this: drwxr-xr-x 2 root qmail 584 May 12 07:33 control drwxr-xr-x 3 vpopmail vchkpw 160 May 12 07:33 domains drwxr-xr-x 2 root qmail 128 May 12 07:33 users On the mail servers / NFS clients I created directories /mnt/ domains, /mnt/control, /mnt/users Do I change the permissions on the client to? (example) drwxr-xr-x 3 vpopmail vchkpw 160 May 12 07:33 domains Have I got my permissions COMPLETELY screwed up? I know this is more of an NFS question rather than vpopmail - but I figure that anyone who has a working NFS/vpopmail setup should know. thanks, Matt
Re: [vchkpw] NFS and vpopmail
Have I got my permissions COMPLETELY screwed up? I know this is more of an NFS question rather than vpopmail - but I figure that anyone who has a working NFS/vpopmail setup should know. The big thing with NFS is make sure that the UID and GID are the _SAME_ on all machines. thanks, Matt Dave
Re: [vchkpw] NFS and vpopmail
On May 12, 2006, at 11:30 AM, Dave Weiner wrote: Have I got my permissions COMPLETELY screwed up? I know this is more of an NFS question rather than vpopmail - but I figure that anyone who has a working NFS/vpopmail setup should know. The big thing with NFS is make sure that the UID and GID are the _SAME_ on all machines. On the NFS /etc/passwd /etc/group has entry: vpopmail:x:1000:1000::/home/vpopmail:/bin/bash vchkpw:!:1000: On the clients it's: vpopmail:x:1007:1002::/home/vpopmail:/sbin/nologin vchkpw:!:1002: That could explain why after mounting the share on the client it gave the mount a user/group of alias:nofiles I'll try making them use the same UID/GID
Re: [vchkpw] NFS and vpopmail
On May 12, 2006, at 10:22 AM, MT wrote: The qmail-smtpd process doesn't have the correct permissions to read the vpasswd file for the domain (or the vpopmail.mysql file with the MySQL login info). So I'm still reinstalling - nice POS hardware I'm given to use (but that's another story). If anyone could tell me please, what should the permissions be? This is the setup I did: Just make sure qmail-smtpd runs as user vpopmail. -- Tom Collins - [EMAIL PROTECTED] QmailAdmin: http://qmailadmin.sf.net/ Vpopmail: http://vpopmail.sf.net/
Re: [vchkpw] NFS and vpopmail
On May 12, 2006, at 11:47 AM, Tom Collins wrote: On May 12, 2006, at 10:22 AM, MT wrote: The qmail-smtpd process doesn't have the correct permissions to read the vpasswd file for the domain (or the vpopmail.mysql file with the MySQL login info). So I'm still reinstalling - nice POS hardware I'm given to use (but that's another story). If anyone could tell me please, what should the permissions be? This is the setup I did: Just make sure qmail-smtpd runs as user vpopmail. Alright, after a (testing) reboot it seems to be working. Thanks for your help Jeremy, Rick, Rick, Remo, Tom, and Dave. Matt
Re: [vchkpw] NFS and vpopmail
On 2006-05-11, at 1800, Jeremy Kister wrote: On 5/11/2006 5:55 PM, MT wrote: sends hup signal to qmail-send to accept new domain So I have /home/vpopmail/domains, /var/qmail/control/, /var/qmail/ users on my NFS. [...] I have to delete / add the domain on 10.0.0.2 to get it to work - but then 10.0.0.1 will give me the same error. Do you have something on 10.0.0.2 that will hup qmail-send when the /var/qmail/users/assign file changes ? you don't need to HUP qmail-send when users/assign changes, you need to run qmail-newu. qmail-lspawn reads users/cdb, users/assign is just a text file which is used to build users/cdb. the only two programs which do anything with users/assign are qmail- newu and qmail-pw2u. -- | John M. Simpson - KG4ZOW - Programmer At Large | | http://www.jms1.net/ [EMAIL PROTECTED] | -- | Mac OS X proves that it's easier to make UNIX | | pretty than it is to make Windows secure. | -- PGP.sig Description: This is a digitally signed message part
Re: [vchkpw] NFS and vpopmail
On 2006-05-12, at 1347, Tom Collins wrote: On May 12, 2006, at 10:22 AM, MT wrote: The qmail-smtpd process doesn't have the correct permissions to read the vpasswd file for the domain (or the vpopmail.mysql file with the MySQL login info). So I'm still reinstalling - nice POS hardware I'm given to use (but that's another story). If anyone could tell me please, what should the permissions be? This is the setup I did: Just make sure qmail-smtpd runs as user vpopmail. are you the one who came up with this idea, or did you get the idea from somebody else? can you explain to me WHY this is supposedly necessary? even when i was using vchkpw to support AUTH, i just made vchkpw setuid so it always runs as the vpopmail user, and left qmail-smtpd running as qmaild, as djb intended. (i'm now using a cdb file to support AUTH- much faster, no fork/exec or userid headaches, and much easier to make it work across multiple servers- just copy the cdb file to the other servers and it's done. patch coming soon.) -- | John M. Simpson - KG4ZOW - Programmer At Large | | http://www.jms1.net/ [EMAIL PROTECTED] | -- | Mac OS X proves that it's easier to make UNIX | | pretty than it is to make Windows secure. | -- PGP.sig Description: This is a digitally signed message part
Re: [vchkpw] NFS and vpopmail
On 5/12/2006 3:01 PM, John Simpson wrote: you don't need to HUP qmail-send when users/assign changes, you need to run qmail-newu. qmail-lspawn reads users/cdb, users/assign is just a text file which is used to build users/cdb. I simply infer that the control files have changed when the assign file has changed. -- Jeremy Kister http://jeremy.kister.net./
Re: [vchkpw] NFS and vpopmail
On Friday 12 May 2006 12:10, John Simpson wrote: On 2006-05-12, at 1347, Tom Collins wrote: On May 12, 2006, at 10:22 AM, MT wrote: The qmail-smtpd process doesn't have the correct permissions to read the vpasswd file for the domain (or the vpopmail.mysql file with the MySQL login info). So I'm still reinstalling - nice POS hardware I'm given to use (but that's another story). If anyone could tell me please, what should the permissions be? This is the setup I did: Just make sure qmail-smtpd runs as user vpopmail. are you the one who came up with this idea, or did you get the idea from somebody else? can you explain to me WHY this is supposedly necessary? if you use the chkuser patch you have to. Either that or make your vpasswd.cdb files readable by the qmaild user. -Jeremy -- Jeremy Kitchen ++ [EMAIL PROTECTED] http://ipaction.org/ -- defend your rights to fair use pgpLpYH5bpzBl.pgp Description: PGP signature
Re: [vchkpw] NFS and vpopmail
On 2006-05-12, at 1512, Jeremy Kister wrote: On 5/12/2006 3:01 PM, John Simpson wrote: you don't need to HUP qmail-send when users/assign changes, you need to run qmail-newu. qmail-lspawn reads users/cdb, users/ assign is just a text file which is used to build users/cdb. I simply infer that the control files have changed when the assign file has changed. ah... okay, i see. i do the same thing, but i use control/locals and control/ virtualdomains to tell when to send the HUP, since these are the two files which are actually re-read when a HUP is received. actually, i have one script which does it all- compares the timestamps on users/assign and users/cdb and runs qmail-newu when appropriate... the same for control/morercpthosts and control/ morercpthosts.cdb, and it also builds validrcptto.cdb and auth.cdb (both files relating to my patches) as well. i have a daemontools service which waits for input on a named pipe and then runs the updater script (so that any process, running as any userid, can touch /tmp/update-qmail and trigger the updater script), a cron job which does the touch every half hour, and a vpopmail onchange script which also does the same touch operation whenever a mailbox is added, password changed, or whatever. everything pretty much runs itself. -- | John M. Simpson - KG4ZOW - Programmer At Large | | http://www.jms1.net/ [EMAIL PROTECTED] | -- | Mac OS X proves that it's easier to make UNIX | | pretty than it is to make Windows secure. | -- PGP.sig Description: This is a digitally signed message part
Re: [vchkpw] NFS and vpopmail
On 5/11/2006 5:55 PM, MT wrote: sends hup signal to qmail-send to accept new domain So I have /home/vpopmail/domains, /var/qmail/control/, /var/qmail/ users on my NFS. [...] I have to delete / add the domain on 10.0.0.2 to get it to work - but then 10.0.0.1 will give me the same error. Do you have something on 10.0.0.2 that will hup qmail-send when the /var/qmail/users/assign file changes ? I use this code every hour in cron: #!/bin/sh PATH=/usr/local/bin:/usr/bin:/bin if [ -s /var/tmp/last.var-qmail-users-assign ] ; then cmp /var/qmail/users/assign /var/tmp/last.var-qmail-users-assign /dev/null 21 if [ $? -gt 0 ] ; then svc -h /service/qmail-send cp /var/qmail/users/assign /var/tmp/last.var-qmail-users-assign fi else echo no valid /var/tmp/last.var-qmail-users-assign mkdir -p /var/tmp/ cp /var/qmail/users/assign /var/tmp/last.var-qmail-users-assign fi -- Jeremy Kister http://jeremy.kister.net./
Re: [vchkpw] NFS and vpopmail
Jeremy Kister wrote: On 5/11/2006 5:55 PM, MT wrote: sends hup signal to qmail-send to accept new domain So I have /home/vpopmail/domains, /var/qmail/control/, /var/qmail/ users on my NFS. [...] I have to delete / add the domain on 10.0.0.2 to get it to work - but then 10.0.0.1 will give me the same error. Do you have something on 10.0.0.2 that will hup qmail-send when the /var/qmail/users/assign file changes ? I use this code every hour in cron: #!/bin/sh PATH=/usr/local/bin:/usr/bin:/bin if [ -s /var/tmp/last.var-qmail-users-assign ] ; then cmp /var/qmail/users/assign /var/tmp/last.var-qmail-users-assign /dev/null 21 if [ $? -gt 0 ] ; then svc -h /service/qmail-send cp /var/qmail/users/assign /var/tmp/last.var-qmail-users-assign fi else echo no valid /var/tmp/last.var-qmail-users-assign mkdir -p /var/tmp/ cp /var/qmail/users/assign /var/tmp/last.var-qmail-users-assign fi I was just about to suggest the same thing but it looks like a qmail-smtpd error, not a qmail-send error He wrote: --- If I then set my MUA up to send/receive against 10.0.0.2 it fails and the logs report: vpopmail[4034]: vchkpw-smtp: vpopmail user not found [EMAIL PROTECTED]:10.5.4.41 --- That looks like a smtp-auth session (ie qmail-smtpd) to me. but yah, he does need to hup qmail-send on the other server after adding a new domain. Rick
Re: [vchkpw] NFS and vpopmail
On May 11, 2006, at 4:00 PM, Jeremy Kister wrote: Do you have something on 10.0.0.2 that will hup qmail-send when the /var/qmail/users/assign file changes ? Thanks Jeremy, I thought that was it too so I did a kill -HUP qmail-send but still nothing. I also stopped/started the entire qmail service (going along with what Rick was saying) and still nothing. Could it be an invalid/missing option in my NFS exports or the way I'm trying to mount the NFS share? Matt
Re: [vchkpw] NFS and vpopmail
On 5/11/2006 7:18 PM, MT wrote: I thought that was it too so I did a kill -HUP qmail-send but still nothing. I also stopped/started the entire qmail service (going along with what Rick was saying) and still nothing. by the phrase entire qmail service, I take it you did not install via LifeWithQmail ? In either case, are you using vpopmaild? I know little about it more than how to spell it, but if you're using it I could imagine it's part of your problem. Could it be an invalid/missing option in my NFS exports or the way I'm trying to mount the NFS share? unlikely. -- Jeremy Kister http://jeremy.kister.net./
Re: [vchkpw] NFS and vpopmail
MT wrote: On May 11, 2006, at 4:00 PM, Jeremy Kister wrote: Do you have something on 10.0.0.2 that will hup qmail-send when the /var/qmail/users/assign file changes ? Thanks Jeremy, I thought that was it too so I did a kill -HUP qmail-send but still nothing. I also stopped/started the entire qmail service (going along with what Rick was saying) and still nothing. Could it be an invalid/missing option in my NFS exports or the way I'm trying to mount the NFS share? Matt How are you updating the files in /var/qmail/control that change when adding/removing a domain?
