qmail Digest 15 Feb 1999 11:00:00 -0000 Issue 552
Topics (messages 21982 through 21993):
Permissions - what does qmail demand?
21982 by: Chris Green <[EMAIL PROTECTED]>
21984 by: Harald Hanche-Olsen <[EMAIL PROTECTED]>
21987 by: ppiamdn <[EMAIL PROTECTED]>
21988 by: ppiamdn <[EMAIL PROTECTED]>
21990 by: Chris Green <[EMAIL PROTECTED]>
vacation
21983 by: "Peter Samuel" <[EMAIL PROTECTED]>
21986 by: ppiamdn <[EMAIL PROTECTED]>
Some performance numbers
21985 by: Simon Casady <[EMAIL PROTECTED]>
Qmail POP3 Configuration
21989 by: Stephan Müller <[EMAIL PROTECTED]>
The ppiamdn annoyance
21991 by: Harald Hanche-Olsen <[EMAIL PROTECTED]>
21992 by: Mark Delany <[EMAIL PROTECTED]>
21993 by: Vince Vielhaber <[EMAIL PROTECTED]>
Administrivia:
To subscribe to the digest, e-mail:
[EMAIL PROTECTED]
To unsubscribe from the digest, e-mail:
[EMAIL PROTECTED]
To bug my human owner, e-mail:
[EMAIL PROTECTED]
To post to the list, e-mail:
[EMAIL PROTECTED]
----------------------------------------------------------------------
I now seem to have qmail set up to do just about all I want, the
'holdremote' patch is sending non-local mail when the PPP connection
comes up, using tcpserver to set RELAYCLIENT is allowing other
machines on the locla network to send mail.
However I have one final little question (final - ha, ha!), what
permissions does qmail require on users' home directories? I know
there are some requirements but I tried grepping for just about all
the relevant words I could think of in qmail's doc directory and
couldn't find anything to tell me what I wanted.
The problem is that the easiest way to set up Samba shares here on the
local LAN is to allow writing to anywhere on /home, this avoid having
to synchronise Windows logins with Unix user logins and so on. Since
we're a small friendly (!?) family security isn't a problem and having
write enabled everywhere often simplifies things. However qmail
objects, is there any way around this? The simplest answer may well
be to set up a special mail user for each of us which just has the
Maildir directory and nothing else. Does anyone have any better
ideas?
--
Chris Green ([EMAIL PROTECTED])
Home: [EMAIL PROTECTED] Work: [EMAIL PROTECTED]
WWW: http://www.isbd.co.uk/
- Chris Green <[EMAIL PROTECTED]>:
| However I have one final little question (final - ha, ha!), what
| permissions does qmail require on users' home directories?
You must be able to stat() the home dir without any special
privileges. This means all directories above the home must be
executably by anyone (well, you can get away with less, actually).
And the user must own his home directory and should have rwx
privileges (again, you can sometimes get away with a bit less). The
home directory must not be world writable, or (depending on how qmail
was configured during compilation) group writable.
- Harald
Harald Hanche-Olsen wrote:
>
> - Chris Green <[EMAIL PROTECTED]>:
>
> | However I have one final little question (final - ha, ha!), what
> | permissions does qmail require on users' home directories?
>
> You must be able to stat() the home dir without any special
> privileges. This means all directories above the home must be
> executably by anyone (well, you can get away with less, actually).
> And the user must own his home directory and should have rwx
> privileges (again, you can sometimes get away with a bit less). The
> home directory must not be world writable, or (depending on how qmail
> was configured during compilation) group writable.
>
> - Harald
Unsubscribe
Harald Hanche-Olsen wrote:
>
> - Chris Green <[EMAIL PROTECTED]>:
>
> | However I have one final little question (final - ha, ha!), what
> | permissions does qmail require on users' home directories?
>
> You must be able to stat() the home dir without any special
> privileges. This means all directories above the home must be
> executably by anyone (well, you can get away with less, actually).
> And the user must own his home directory and should have rwx
> privileges (again, you can sometimes get away with a bit less). The
> home directory must not be world writable, or (depending on how qmail
> was configured during compilation) group writable.
>
> - Harald
Unsubscribe
On Sun, Feb 14, 1999 at 11:59:22PM +0100, Harald Hanche-Olsen wrote:
> | However I have one final little question (final - ha, ha!), what
> | permissions does qmail require on users' home directories?
>
> You must be able to stat() the home dir without any special
> privileges. This means all directories above the home must be
> executably by anyone (well, you can get away with less, actually).
> And the user must own his home directory and should have rwx
> privileges (again, you can sometimes get away with a bit less). The
> home directory must not be world writable, or (depending on how qmail
> was configured during compilation) group writable.
>
Thanks, the last bit about world/group writable was what I wanted to
know. I think the best approach for me may be to create a set of new
users (e.g. chrismail, user1mail, user2mail, etc.) which can have
the restrictive permissions required for qmail and the Windows MUAs
can then be set up to point at these accounts to collect their mail.
--
Chris Green ([EMAIL PROTECTED])
Home: [EMAIL PROTECTED] Work: [EMAIL PROTECTED]
WWW: http://www.isbd.co.uk/
On Fri, 12 Feb 1999, Len Budney wrote:
> "Peter Samuel" <[EMAIL PROTECTED]> wrote:
> > It doesn't ship as an rpm. It ships as source code and you have to
> > build it yourself. This is a trivial task as all you need to do is
> > modify the Makefile and tell it where you want to install it and where
> > perl lives.
>
> Though it doesn't ship as an RPM, there are user-contributed RPMs.
> You can get the latest on from:
>
> <http://rufus.w3.org/linux/RPM/VByName.html>
None of these is the one I wrote (modified) specifically for use with
qmail. My guess is that they'll all require the use of preline which
will cause failures. (See www.qmail.org for an explanation as to why
it will fail).
Regards
Peter
----------
Peter Samuel [EMAIL PROTECTED]
Technical Consultant or at present:
Uniq Professional Services, [EMAIL PROTECTED]
a division of X-Direct Pty Ltd
Phone: +61 2 9206 3410 Fax: +61 2 9281 1301
"If you kill all your unhappy customers, you'll only have happy ones left"
Peter Samuel wrote:
>
> On Fri, 12 Feb 1999, Len Budney wrote:
>
> > "Peter Samuel" <[EMAIL PROTECTED]> wrote:
> > > It doesn't ship as an rpm. It ships as source code and you have to
> > > build it yourself. This is a trivial task as all you need to do is
> > > modify the Makefile and tell it where you want to install it and where
> > > perl lives.
> >
> > Though it doesn't ship as an RPM, there are user-contributed RPMs.
> > You can get the latest on from:
> >
> > <http://rufus.w3.org/linux/RPM/VByName.html>
>
> None of these is the one I wrote (modified) specifically for use with
> qmail. My guess is that they'll all require the use of preline which
> will cause failures. (See www.qmail.org for an explanation as to why
> it will fail).
>
> Regards
> Peter
> ----------
> Peter Samuel [EMAIL PROTECTED]
> Technical Consultant or at present:
> Uniq Professional Services, [EMAIL PROTECTED]
> a division of X-Direct Pty Ltd
> Phone: +61 2 9206 3410 Fax: +61 2 9281 1301
>
> "If you kill all your unhappy customers, you'll only have happy ones left"
Unsubscribe
Markus Stumpf wrote:
> On Thu, Jan 14, 1999 at 07:37:15AM -0000, D. J. Bernstein wrote:
> > Joe Garcia writes:
> > > Is there any place that I can get some performance numbers
> >
> > Certainly: your own machine! Performance depends on many host-specific
> > factors; it's easier to measure than to extrapolate. All you need to
> > know about tuning is in http://pobox.com/~djb/qmail/faq/efficiency.html.
>
> While we're on the topic ;-)
>
> We have a machine (P133, 64 MB RAM, FreeBSD 2.2) acting as a outgoing
> relay.
>
> We have a customer that creates about 12000 different emails in a bulk
> and feeds them to the relay. They arrive at portions of 20 per SMTP
> connection (remote machine is WinNT) and hit a rather empty qmail queue
> (about 50 messages)
>
> For accounting reasons, we use a extra local delivery to a one line awk
> script that simply outputs Message-Id and the second Received: line from
> the header to the maillog (thus causing about 25000 deliveries for one
> bulk).
>
> I recompiled qmail with conf-spawn set to 250 and set local and remote
> concurrency both to 120.
>
> It takes qmail about 1 hour "to get rid" of most mails (few first time
> deliveries fail because of limitations on the remote sites).
>
> However I noticed that when it all starts there are very few
> qmail-remote processes running. Both queues grow ('messages in queue'
> and 'messages in queue but not yet preprocessed') as mails come in
> but there are still only about 5 to 10 qmail-remote processes.
> However, as soon as the 'messages in queue but not yet preprocessed'
> queue is empty the number on qmail-remotes raises drastically and we
> experience a delivery rate of typically 60-90 per 10 seconds.
>
> Is this normal behaviour, did I make a mistake or is there a way to
> increase delivery rates even with a lot of messages in the preprocessing
> queue?
>
> This is normal behavior. Qmailsend starts one message then processes one
incoming message (todo dir). The preprocessing time prevents your machine
from sending messages fast enough to use very many remotes. As soon ad the
preprocessing is done the rate goes up.
>
> Other than that we are more than happy with qmail on our mail hubs and
> pop servers for about 1.5 years now.
>
> Thanks again Dan!
>
> \Maex
>
> --
> SpaceNet GmbH | http://www.Space.Net/ | In a world without
> Research & Development | mailto:[EMAIL PROTECTED] | walls and fences,
> Joseph-Dollinger-Bogen 14 | Tel: +49 (89) 32356-0 | who needs
> D-80807 Muenchen | Fax: +49 (89) 32356-299 | Windows and Gates?
> On Tue, Feb 02, 1999 at 06:11:09PM -0500, MountaiNet Tech Support
wrote:
> > Ok, I know I will get badgered and flamed over this one, but Im having
a
> > problem setting up Qmail to run for my POP3 server. Ive had no
problems
> > getting it to run up to this point. It delivers messages fine to
Mailbox
> > in any home directory. I changed the line in /var/qmail/rc from
Mailbox to
> > Maildir. It will deliver fine to a Maildir in any home directory now.
If
> > I run /var/qmail/bin/maildirmake /home/username/Maildir it creates
that
> > directory fine. Inside of it i have cur, new, and tmp. It will not
> > deliver to this Maildir. When I try to check e-mail on port 110 I get
the
> > dreaded -ERR this user has no $HOME/Maildir message. I run tcpserver
with
> > the lines:
> Hmm... do you maildirmake as the user or as root? If as root, you'll
have to chown -R
> user /home/username/Maildir after that.
> qmail can't deliver if the maildir is owned by root, and neither can
qmail-pop3d read
> from it.
Possibly you have also the wrong permissions, try: chmod -R 700
/home/XYZ/Maildir
Regards
Stephan
Now ppiamdn is at it again. I am beginning to think that this is not
a sign of incompetence on ppiamdn's part, but a deliberate attempt at
annoying the list. I have no idea why, and I couldn't care less...
Anyway, in an attempt at solving this in a civilized manner, I sent
the following message to [EMAIL PROTECTED] (but I don't include
the attachments here).
If others on the list have already tried this to no avail, or if the
problem continues after this, I guess we should try to get the site
blackholed.
- Harald Hanche-Olsen <[EMAIL PROTECTED]>:
| Dear postmaster,
|
| Please find enclosed a small sampling of email messages from
| ppiamdn@@idola.net.id. These are messages sent by other users to a
| mailing list, and forwarded from ppiamdn back to the list as well as
| the message's originator. I find this unacceptable. I hope you
| agree, and will take steps to stop this from happening in the future.
|
| Sincerely,
|
| - Harald Hanche-Olsen
| Dept of Mathematical Sciences
| The Norwegian University of Science and Technology (NTNU)
| N-7034 Trondheim, NORWAY
| Email: <[EMAIL PROTECTED]>
|
Is it possible that ppiadmn is some sort of bizzare auto-responder script
that some (not very competent) person is playing with?
Is this the first time that Dan uses badmailfrom himself?
Regards.
At 10:25 AM 2/15/99 +0100, Harald Hanche-Olsen wrote:
>Now ppiamdn is at it again. I am beginning to think that this is not
>a sign of incompetence on ppiamdn's part, but a deliberate attempt at
>annoying the list. I have no idea why, and I couldn't care less...
>
>Anyway, in an attempt at solving this in a civilized manner, I sent
>the following message to [EMAIL PROTECTED] (but I don't include
>the attachments here).
>
>If others on the list have already tried this to no avail, or if the
>problem continues after this, I guess we should try to get the site
>blackholed.
>
>- Harald Hanche-Olsen <[EMAIL PROTECTED]>:
>
>| Dear postmaster,
>|
>| Please find enclosed a small sampling of email messages from
>| ppiamdn@@idola.net.id. These are messages sent by other users to a
>| mailing list, and forwarded from ppiamdn back to the list as well as
>| the message's originator. I find this unacceptable. I hope you
>| agree, and will take steps to stop this from happening in the future.
>|
>| Sincerely,
>|
>| - Harald Hanche-Olsen
>| Dept of Mathematical Sciences
>| The Norwegian University of Science and Technology (NTNU)
>| N-7034 Trondheim, NORWAY
>| Email: <[EMAIL PROTECTED]>
>|
>
>
On Mon, 15 Feb 1999, Mark Delany wrote:
> Is it possible that ppiadmn is some sort of bizzare auto-responder script
> that some (not very competent) person is playing with?
>
> Is this the first time that Dan uses badmailfrom himself?
It's doubtful it's any kind of script. Last time (and the time before)
I looked at the headers and noticed it came from a windoze95 client - I
think it was Netscape. I haven't gotten anywhere with the postmaster at
his site either.
Vince.
--
==========================================================================
Vince Vielhaber -- KA8CSH email: [EMAIL PROTECTED] flame-mail: /dev/null
# include <std/disclaimers.h> TEAM-OS2
Online Campground Directory http://www.camping-usa.com
Online Giftshop Superstore http://www.cloudninegifts.com
==========================================================================
