[qmailtoaster] How to install QT on top of sendmail?
Hi All! (I couldn't find instructions for installing Qmail Toaster on top of an existing Sendmail server, so I'm asking here. (I'll add a wiki page for it once I've boiled it down.)) I have a RHEL 4 server running Sendmail/Dovecot with 500 passwd-based email accounts. I will be installing QT on the _same machine_ and will be migrating all accounts to virtual users. I'm comfortable installing QT, and migrating users and existing mail. My question is this: how do I install QT (Qmail/Courier) so it runs side-by-side with Sendmail/Dovecot so I can *test* that it works and get it tuned before disabling Sendmail? Ideally migrating our many domains one at a time, to ease technical and support issues. Is this possible? Perhaps setup a new IP (mail2.strangecode.com) and bind Qmail and Courier to this IP? (The long story is that we had all these users on an old server, and already had QT installed on the new server and *WERE* planning to migrate domains in batches (updating MX records to the new server) BUT the old server crashed and we had to do a quick emergency migration to the new server, and stayed with sendmail because we hadn't yet informed our users of the username - [EMAIL PROTECTED] change.) Thanks in advance. Quinner - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] How to install QT on top of sendmail?
Wow. That doesn't sound good! =( I'm actually totally surprised. I _honestly_ thought this would have been a common migration process. You're telling me *nobody* has ever upgraded from sendmail to QT, on the same machine? I will need to find _some_ solution. What are my options, as painful as they might be? Quinn On Tue, 26 Sep 2006 12:50:55 -0700, Erik Espinoza wrote: Sounds like somebody likes pain . . . Without virtualization, you can't do this. Erik On 9/26/06, Quinn Comendant [EMAIL PROTECTED] wrote: Hi All! (I couldn't find instructions for installing Qmail Toaster on top of an existing Sendmail server, so I'm asking here. (I'll add a wiki page for it once I've boiled it down.)) I have a RHEL 4 server running Sendmail/Dovecot with 500 passwd-based email accounts. I will be installing QT on the _same machine_ and will be migrating all accounts to virtual users. I'm comfortable installing QT, and migrating users and existing mail. My question is this: how do I install QT (Qmail/Courier) so it runs side-by-side with Sendmail/Dovecot so I can *test* that it works and get it tuned before disabling Sendmail? Ideally migrating our many domains one at a time, to ease technical and support issues. Is this possible? Perhaps setup a new IP (mail2.strangecode.com) and bind Qmail and Courier to this IP? (The long story is that we had all these users on an old server, and already had QT installed on the new server and *WERE* planning to migrate domains in batches (updating MX records to the new server) BUT the old server crashed and we had to do a quick emergency migration to the new server, and stayed with sendmail because we hadn't yet informed our users of the username - [EMAIL PROTECTED] change.) Thanks in advance. Quinner - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] How to install QT on top of sendmail?
I knew there would be a way. ;P I think using the method of a dedicated IP address for Qmail SMTP would be necessary in order to test the Simscan (and thus ClamAV and Spamassassin) functionality. Using procmail to pass messages to qmail-inject would be much easier but would bypass the Simscan chain, no? I'm actually not afraid to modify the SRPMs to make this work the way it needs to. I understand QT is a rounded corner system (nice terminology ;-). I'm actually excited to use QT mainly for the security updates and ease of maintaining RPMs, as well as the awesome community around it. Then once the migration is complete, I will be able to use the rounded corner RPMs. Since this is a essential upgrade to our business I am more than happy to pay for consulting and/or installation assistance. I'm not familiar with the names behind this project and who might be available, so I'd be happy if they came forth so we can discuss. Any answer to my question regarding Dovecot? I'm less concerned with POP/IMAP. Do you think I should expect any errors with courier as a drop-in replacement for Dovecot? It worked on the first try for me during my original testing. Or, what about continuing to use Dovecot? Has anyone used QT with Dovecot? It seems to be a pretty good/light-weight software. Thanks Q On Tue, 26 Sep 2006 21:26:53 -0400, Jake Vickers wrote: There are ways. Patch/modify the source for Toaster. this will cover your first 3 suggestions. Toaster by default (unless you modify the source) gloams on the first IP it sees, and I believe answers all of them. Meaning it'll send on the first IP, but receive on all. You could shut down the smtp daemon, and configure sendmail to inject the messages using qmail-inject. Some scripting involved there. I've never used sendmail, so I can't even begin to tell you where to start. Similar thing with procmail. Firewall rules won't work unless you modify the qmail source. If you're going to get that far into it, you probably don't want our pre-cooked, rounded corner version of the QMail install. What we distribute here is a turn-key system. We usually don't modify the source for special circumstances - mainly just for updates and new versions of supported OSes. A few of us do some work on the side, but not for free. What you get for free is what you see. Sorry. - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] How to install QT on top of sendmail?
Ok, ok...I see where this is going. I can do it on two machines. ;P Dovecot doesn't support the vpopmail authentication system used with the QmailToaster. Therefore, we can't use Dovecot with the QmailToaster. Is it that Dovecot doesn't support vpopmail at all or just the way that QmailToaster implements it? From this FAQ entry, it seems Dovecot does support vpopmail: http://wiki.dovecot.org/QuestionsAndAnswers#head-153aa253aff40951a05cf238da4245b1cc1a4665 I consult on the side via ForceNetworks(.com), but seriously this is a two machine migration. To shoehorn the process into one machine would far exceed the cost of the second (and most likely third and fourth) machine. I'm currently hosting with Rackspace, and we'd be paying about $500/mo for an additional machine that would be adequate. The second server I have is old and isn't up for the job, but would be perfect for a temporary migration job. Thanks for the help, I *really* appreciate it. Quinn - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] How to install QT on top of sendmail?
Dovecot doesn't support the vpopmail authentication system used with the QmailToaster. Therefore, we can't use Dovecot with the QmailToaster. Is it that Dovecot doesn't support vpopmail at all or just the way that QmailToaster implements it? From this FAQ entry, it seems Dovecot does support vpopmail: http://wiki.dovecot.org/QuestionsAndAnswers#head-153aa253aff40951a05cf238da4245b1cc1a4665 I also found this, where Dovecot was successfully used with QT: http://www.akshaymehta.com/2006/07/20/installing-dovecot-and-qmail-and-vpopmail-on-centos4/ Q - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] How to install QT on top of sendmail?
On Tue, 26 Sep 2006 21:29:48 -0700, Erik Espinoza wrote: Cool. Very nice. Perhaps if there is some interest, I will develop a Dovecot qt package, but I don't really see the point. Perhaps you could help me understand. Are there any particular reasons why you want to use Dovecot over Courier? I actually don't have that much experience with Dovecot, but more than Courier. I would vote in favor of using Dovecot for the following reasons: - It is part of the RHEL 4 distribution. It is already installed, and I can trust the source. Patches are automatically available via up2date. (Obviously this is only something that applies to RHEL people, but is important for me.) - It is very easy to configure. - It is _supposedly_ more modular, secure, and reliable than courier. See: http://www.dovecot.org/doc/ Since this is already installed and running, and apparently hooks into vpopmail, I will probably just keep on using it. What about you, any particular reason for me to use Courier (or more specifically, the QT Courier package)? Quinn - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
[qmailtoaster] overquota.msg typo
Typo in /home/vpopmail/domains/.overquota.msg: This user has exceeded there mail quota. there = their Q - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] How to install QT on top of sendmail?
I've decided to go for the two-machine migration approach, but with a twist. 1) build a qmailtoaster on a second box 2) migrate the sendmail solution gradually to it 3) put the other box into production for a short time 4) build a qmailtoaster on the production box in an identical way to the second box 5) turn mail off both machines, copy all mail data and configuration to the production box 6) retire the other box Or to put it simply, this: Sendmail - Qmail - Qmail instead of this: Sendmail - Sendmail - Qmail Because I find the Qmail - Qmail migration simpler than Sendmail - Sendmail, and installing QT is much easier than setting up Sendmail + extras. ;P Today I installed QT on the second machine. It was *suspiciously* easy ;P and have a test domain pointed to it. Wow, it just works! Qmail Toaster is awesome! Quinn On Tue, 26 Sep 2006 20:10:21 -0400, Steve Huff wrote: so you have the old sendmail solution running on your production hardware right now? here's my suggestion: 1) build another box 2) migrate the sendmail solution to it 3) put the other box into production for a short time 4) build your qmailtoaster on the production box 5) migrate gradually 6) retire the other box - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
[qmailtoaster] Fwd: failure notice (from [EMAIL PROTECTED])
Some hours after I brought my new QT online, I received this message,
and with it I as my first bag-o-questions.
1. Qmail tried sending the original cron error to [EMAIL PROTECTED]
Where did it get this? Is it a virtual user, or from /etc/aliases?
[EMAIL PROTECTED]/0 ~]$egrep ^root /etc/aliases
root: [EMAIL PROTECTED]
2. What are the relationships between vpopmail users, unix accounts,
and /etc/aliases? What is the chain that determines message delivery?
3. Where did [EMAIL PROTECTED] come from?
4. Where did strangecode.com come from? Has that automatically been
compiled-in as the default domain by the toaster?
5. And the original cause of this error is, I'm guessing, because the
clamd log files were empty?
Much appreciation from Chico CA @ 1am.
Quinn
- Begin forwarded message -
Subject: failure notice
Date: 5 Oct 2006 00:45:15 -
From: [EMAIL PROTECTED]
To: [EMAIL PROTECTED]
Hi. This is the qmail-send program at one.strangecode.com.
I tried to deliver a bounce message to this address, but the bounce
bounced!
[EMAIL PROTECTED]:
User and password not set, continuing without authentication.
72.3.142.43 does not like recipient.
Remote host said: 553 5.3.0 [EMAIL PROTECTED]... No such user
here
Giving up on 72.3.142.43.
--- Below this line is the original bounce.
Return-Path:
Received: (qmail 27405 invoked for bounce); 5 Oct 2006 00:45:15 -
Date: 5 Oct 2006 00:45:15 -
From: [EMAIL PROTECTED]
To: [EMAIL PROTECTED]
Subject: failure notice
Hi. This is the qmail-send program at one.strangecode.com.
I'm afraid I wasn't able to deliver your message to the following
addresses.
This is a permanent error; I've given up. Sorry it didn't work out.
[EMAIL PROTECTED]:
Connected to 72.3.142.43 but sender was rejected.
Remote host said: 553 5.3.0 [EMAIL PROTECTED]... No such user
here
--- Below this line is a copy of the message.
Return-Path: [EMAIL PROTECTED]
Received: (qmail 18658 invoked by uid 0); 5 Oct 2006 00:30:03 -
Date: 5 Oct 2006 00:30:02 -
Message-ID: [EMAIL PROTECTED]
From: [EMAIL PROTECTED] (Cron Daemon)
To: [EMAIL PROTECTED]
Subject: Cron [EMAIL PROTECTED] env LANG=C /usr/bin/mrtg
/usr/share/toaster/mrtg/qmailmrtg.cfg 21 /dev/null
X-Cron-Env: SHELL=/bin/bash
X-Cron-Env: PATH=/sbin:/bin:/usr/sbin:/usr/bin
X-Cron-Env: MAILTO=root
X-Cron-Env: HOME=/
X-Cron-Env: LOGNAME=root
X-Cron-Env: USER=root
WARNING: Problem with External get '/usr/bin/qmailmrtg C
/var/log/qmail/clamd':
Expected a Number for 'in' but got 'failed to open dir
/var/log/qmail/clamd'
WARNING: Problem with External get '/usr/bin/qmailmrtg C
/var/log/qmail/clamd':
Expected a Number for 'out' but nothing'
ERROR: Target[clamd][_IN_] ' $target-[2]{$mode} ' did not eval into
defined data
ERROR: Target[clamd][_OUT_] ' $target-[2]{$mode} ' did not eval into
defined data
-
QmailToaster hosted by: VR Hosted http://www.vr.org
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] Fwd: failure notice (from [EMAIL PROTECTED])
I answered this one myself: /var/qmail/control/defaultdomain blush Obviously I'm new to Qmail. Q On Thu, 5 Oct 2006 01:20:16 -0700, Quinn Comendant wrote: 4. Where did strangecode.com come from? Has that automatically been compiled-in as the default domain by the toaster? - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
[qmailtoaster] Directory missing: /var/run/clamav
I had errors in my /var/log/clamav/freshclam.log that indicated that the directory /var/run/clamav should exist but didn't. I created the dir and the errors disappeared. Was this intentionally left out of the RPMs? Quinn -- ERROR: Can't save PID to file /var/run/clamav/freshclam.pid: No such file or directory freshclam daemon 0.88.4 (OS: linux-gnu, ARCH: i386, CPU: i386) ClamAV update process started at Wed Oct 4 19:31:25 2006 main.cvd updated (version: 40, sigs: 64138, f-level: 8, builder: tkojm) daily.cvd updated (version: 1997, sigs: 7360, f-level: 8, builder: ccordes) Database updated (71498 signatures) from db.local.clamav.net (IP: 129.250.169.81) -- - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
[qmailtoaster] unable to chdir to /var/qmail/supervise/smtpd: file does not exist
I was testing out all the qmailctl functionality, and noticed an error with cont: [EMAIL PROTECTED]/0 control]$qmailctl cont Continuing qmail-send Continuing qmail-smtpd svc: warning: unable to chdir to /var/qmail/supervise/smtpd: file does not exist Perhaps the directory has a different name? [EMAIL PROTECTED]/0 control]$ls -ald /var/qmail/supervise/smtp* drwx-T 4 qmaill qmail 4096 Oct 4 19:09 /var/qmail/supervise/smtp Below is the full transcript of my testing... Quinn [EMAIL PROTECTED]/0 control]$qmailctl help stop -- stops mail service (smtp connections refused, nothing goes out) start -- starts mail service (smtp connection accepted, mail can go out) pause -- temporarily stops mail service (connections accepted, nothing leaves) cont -- continues paused mail service stat -- displays status of mail service cdb -- rebuild the tcpserver cdb file for smtp restart -- stops and restarts smtp, sends qmail-send a TERM restarts it doqueue -- sends qmail-send ALRM, scheduling queued messages for delivery reload -- sends qmail-send HUP, rereading locals and virtualdomains queue -- shows status of queue alrm -- same as doqueue hup -- same as reload [EMAIL PROTECTED]/0 control]$qmailctl stop Stopping qmail-toaster: svscan qmail logging. [EMAIL PROTECTED]/0 control]$qmailctl start Starting qmail-toaster: svscan. [EMAIL PROTECTED]/0 control]$qmailctl pause Pausing qmail-send Pausing qmail-smtpd [EMAIL PROTECTED]/0 control]$qmailctl cont Continuing qmail-send Continuing qmail-smtpd svc: warning: unable to chdir to /var/qmail/supervise/smtpd: file does not exist [EMAIL PROTECTED]/0 control]$qmailctl stat authlib: up (pid 10534) 12 seconds clamd: up (pid 10582) 11 seconds imap4: up (pid 10528) 12 seconds imap4-ssl: up (pid 10603) 11 seconds pop3: up (pid 10539) 12 seconds pop3-ssl: up (pid 10577) 11 seconds send: up (pid 10550) 12 seconds smtp: up (pid 10566) 11 seconds, paused spamd: up (pid 10546) 12 seconds authlib/log: up (pid 10536) 11 seconds clamd/log: up (pid 10584) 11 seconds imap4/log: up (pid 10531) 12 seconds imap4-ssl/log: up (pid 10609) 11 seconds pop3/log: up (pid 10542) 12 seconds pop3-ssl/log: up (pid 10580) 11 seconds send/log: up (pid 10552) 11 seconds smtp/log: up (pid 10573) 11 seconds spamd/log: up (pid 10548) 12 seconds [EMAIL PROTECTED]/0 control]$qmailctl cdb Reloaded /etc/tcprules.d/tcp.smtp Reloaded /var/qmail/control/badmimetypes.cdb Reloaded /var/qmail/control/badloadertypes.cdb Reloaded /var/qmail/control/simversions.cdb Reloaded /var/qmail/control/simcontrol.cdb [EMAIL PROTECTED]/0 control]$qmailctl restart Restarting qmail: * Stopping qmail-smtpd. * Sending qmail-send SIGTERM and restarting. * Restarting qmail-smtpd. [EMAIL PROTECTED]/0 control]$qmailctl doqueue Sending ALRM signal to qmail-send. [EMAIL PROTECTED]/0 control]$qmailctl reload Sending HUP signal to qmail-send. [EMAIL PROTECTED]/0 control]$qmailctl queue messages in queue: 0 messages in queue but not yet preprocessed: 0 [EMAIL PROTECTED]/0 control]$qmailctl alrm Sending ALRM signal to qmail-send. [EMAIL PROTECTED]/0 control]$qmailctl hup Sending HUP signal to qmail-send. - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
[qmailtoaster] qmailadmin - CSS/XHTML?
I thought I'd ask before setting upon the task myself: has anybody taken the qmailadmin templates and converted to them to valid XHTML so that CSS can easily update the design? Q - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] Fwd: failure notice (from [EMAIL PROTECTED])
On Thu, 05 Oct 2006 08:48:30 -0400, Jake Vickers wrote: As a side note, you can define what email addresses to send email to [EMAIL PROTECTED] and [EMAIL PROTECTED] by changing the .qmail files in /var/qmail/alias/ and sending them to a real email address. I usually just sym link .qmail-root to .qmail-anonymous since I have them going to the same place (as Erik said, for cron jobs). I see how this works. Does anybody recommend giving all unix accounts/pseudo-accounts on the machine have an alias? As it is, none will receive mail, for example: `echo 'Hey you!' | mail apache -s 'msg to apache'` results in a failure notice. Below are all the pseudo account aliases from my /etc/aliases. Which incidentally isn't technically part of sendmail... [EMAIL PROTECTED]/0 ~]$rpm -qf /etc/aliases setup-2.5.37-1.3 But Qmail definitely doesn't use it. Q -- # Basic system aliases -- these MUST be present. mailer-daemon: postmaster postmaster: root # General redirections for pseudo accounts. bin:root daemon: root adm:root lp: root sync: root shutdown: root halt: root mail: root news: root uucp: root operator: root games: root gopher: root ftp:root nobody: root radiusd:root nut:root dbus: root vcsa: root canna: root wnn:root rpm:root nscd: root pcap: root apache: root webalizer: root dovecot:root fax:root quagga: root radvd: root pvm:root amanda: root privoxy:root ident: root named: root xfs:root gdm:root mailnull: root postgres: root sshd: root smmsp: root postfix:root netdump:root ldap: root squid: root ntp:root mysql: root desktop:root rpcuser:root rpc:root nfsnobody: root ingres: root system: root toor: root manager:root dumper: root abuse: root # mailman aliases mailman:postmaster mailman-owner: mailman newsadm:news newsadmin: news usenet: news ftpadm: ftp ftpadmin: ftp ftp-adm:ftp ftp-admin: ftp www:webmaster webmaster: root noc:root security: root hostmaster: root info: postmaster marketing: postmaster sales: postmaster support:postmaster # trap decode to catch security attacks decode: root # Person who should get root's mail #root: marc backup: root root: [EMAIL PROTECTED] - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
RE: [qmailtoaster] qmailadmin - CSS/XHTML?
I googled qmailadmin templates and found only one set of modified templates, slightly prettier but even worse code -- more tables and font tags added. I will be launching QmailAdmin to our users in 2 weeks, and so I take the initiative and will hire a XHTML/CSS geek that I work with to rebuild the templates. The idea will be to format them in pure XHTML so that any design whatever can be applied to it. Once done I'll contribute to the list. As for a consistent admin interface, I think that is very important -- and very *easy* if we start out the right way. However, I see the interfaces into two categories: 1. Public admin interfaces, as used by our customers. This includes only QmailAdmin for now, but which we will be incorporating into our hosting control panel with a basic spamassassin settings form, support ticketing system, and a knowledgebase. 2. Qmail Toaster admin interfaces. These will only be used by our few administrators who manage the mail server. I'm less concerned with the consistency of this interface. None of our paying customers will ever see them. But of course, as administrators OUR joy is also important! Although I personally will probably rarely use the admin-toaster, instead relying on command-line tools. I do think that some QT admins would find it useful to add to and customize the toaster-admin interface to their liking. If the toaster-admin is built using standard web technologies (i.e. NOT compiled C) and structured in a way that facilitates extension, then it would be easy to add custom screens like the SA stats, or whatever said admin chooses. The current admin-toaster interface doesn't suck, but it could use an improved navigation interface, especially if additional components/pages are added. I'm happy to join in to help move this along. Q On Thu, 5 Oct 2006 22:41:24 +0100, Jon Darrington wrote: Not that I know of, though if you search for a post from Jake Vickers - Call to C programmers - he obviously has plans to rewrite vqAdmin. I have also been thinking about some additions to the mrtg monitoring for disk space, mem and cpu load; and have been using a perl script http://www.rulesemporium.com/programs/sa-stats.txt to analyze which rules are most hit by spam so I can check the scores and modify one or two. I was thinking of converting this to php and outputting XHTML again to use CSS on it. These are still just ideas - and I was just going to look a packaging them up as an rpm to add onto the current install. It might be worth having a look at combining the efforts and developing a new modern look and feel to a consistent admin interface, possibly with a menu bar down the side, I don't know what your thoughts are. Jon -Original Message- From: Quinn Comendant [mailto:[EMAIL PROTECTED] Sent: 05 October 2006 22:07 To: qmailtoaster-list@qmailtoaster.com Subject: [qmailtoaster] qmailadmin - CSS/XHTML? I thought I'd ask before setting upon the task myself: has anybody taken the qmailadmin templates and converted to them to valid XHTML so that CSS can easily update the design? Q - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] How to install QT on top of sendmail?
do you know about Jake's backup script? http://www.v2gnu.com/qmail/backup-restore.html it may come in handy when migrating your config from one toaster to the other :) -steve --- I'd definitely use Jake's script. Moving queues can be tricky (unless they're empty!). I'm aware of the queue-moving trickiness. I read through Jake's scripts, but cannot find where it actually copies the queue. It does backup /var/qmail/control/queue* but the queue files I will want to copy are /var/qmail/queue, no? Actually, when it comes time for me to move to the production server, I was just going to rsync the following directories: /var/qmail/alias /var/qmail/control /var/qmail/queue /var/qmail/supervise /var/qmail/users /home/vpopmail /etc/mail/spamassassin/* Then run the queue_repair.py script. Any reason that shouldn't work? Anything I'm missing? Also copy the database across. I enjoy the following technique, called from the destination server: ssh -C [EMAIL PROTECTED] mysqldump --databases -u $MYSQLUSER -p$MYSQLPASS vpopmail | mysql -u root; Q - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
RE: [qmailtoaster] qmailadmin - CSS/XHTML?
I met with our xhtml/css guy today. We decided upon the following plan. It's pretty obvious what needs to happen, but I thought I would run the game plan past y'all since this work might end up in the qmailadmin rpm. - Rebuild (most) everything as XHTML. (We will not be changing the list tables -- View email accounts, etc -- generated from the compiled C code, which will end up being invalid XHTML 1.1, but oh well...) - Build global navigation bar (see below for example) as part of header.html. - Add short HTML comments after all the ##x variables to show what prints there. - Make all link-names/functions/page-titles consistent. (Add/Edit/Delete versus New/Modify/Delete, etc.) - Rearranging items on the page to make it more intuitive. - Add help text for most elements to describe what they do. (This will be obviously not part of qmailadmin's localization system. It will be hard-coded english text in the templates. For our purposes adding help messages is essential, even if, annoyingly, they will still be english if the page is viewed from a non-english browser. We'll avoid 100 support requests by simply explaining how this thing works. What is a Mail Robot anyways???) - Tag all elements with class=/id= names to make it easier to style with CSS. - Apply minimal CSS. Global nav links will be this. - Mail Administration Home Accounts [+] Aliases [+] Robots [+] Mailing lists [+] [EMAIL PROTECTED] (edit) (delete) Logout - Current site map is this. (And possible renamed titles.) Structure can't change of course unless we hack the C. The scope of our rewrite will be limited to the html templates. - home Email accounts (list) - Accounts Set catchall email deleted (function) Set catchall email bounced (function) Set catchall email to account (form) Create email account (form) - Add account Modify user (form) - Edit Delete account (function with confirm) - Delete Forward accounts/aliases (list) - Aliases Add new forward (form) - Add alias Modify forward (form) - Edit Delete (function with confirm) - Delete Mail robots (list) New mail robot (form) - Add robot Modify (form) - Edit Delete (function with confirm) - Delete Mailing lists (list) Add mailing list (form) Modify (form) - Edit Delete (function with confirm) - Delete Show subscribers (list) Add subscriber (form) Delete subscriber (function with confirm) Show moderators Add moderator (form) Delete moderator (function with confirm) Refresh menu (???) - Remove this? Logout Quicklinks (form) If any other suggestions, send forth! Otherwise...I proceed. Quinn On Thu, 5 Oct 2006 15:14:32 -0700, Quinn Comendant wrote: I will be launching QmailAdmin to our users in 2 weeks, and so I take the initiative and will hire a XHTML/CSS geek that I work with to rebuild the templates. The idea will be to format them in pure XHTML so that any design whatever can be applied to it. Once done I'll contribute to the list. - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
[qmailtoaster] POP-TSL versus POP-SSL
Is POP with STARTTLS not available with the Qmail Toaster? For me only POP over SSL using port 995 is working. I've read on this list that SMTP over SSL is depreciated in favor of SMTP over TSL. So why not POP over TLS? Quinn - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
[qmailtoaster] many-domains breaks POP-SSL?
I'd like to enable many-domains. I got it working (rebuild the RPMs, dropped the mysql db, readd test user), but then POP over SSL stopped working. I get the following error from my POP client: Failed in authentication for user (null) on mail.hoodwink.us: -ERR Login failed. And this in the pop3-ssl log: 2006-10-07 20:40:49.716377500 tcpserver: status: 1/40 2006-10-07 20:40:49.716384500 tcpserver: pid 17224 from 63.195.16.136 2006-10-07 20:40:49.716387500 tcpserver: ok 17224 one.strangecode.com:216.110.45.174:995 :63.195.16.136::41161 2006-10-07 20:40:49.721784500 couriertls: @localstatedir@/couriersslcache: No such file or directory 2006-10-07 20:40:49.814726500 DEBUG: Connection, ip=[63.195.16.136] 2006-10-07 20:40:50.039735500 INFO: LOGIN FAILED, [EMAIL PROTECTED], ip=[63.195.16.136] 2006-10-07 20:40:55.111545500 DEBUG: Unexpected SSL connection shutdown. 2006-10-07 20:40:55.111947500 DEBUG: Disconnected, ip=[63.195.16.136] 2006-10-07 20:40:55.111954500 tcpserver: end 17224 status 0 2006-10-07 20:40:55.111957500 tcpserver: status: 0/40 But normal POP3 works fine (from /var/log/maillog): Oct 7 20:43:13 one vpopmail[17242]: vchkpw-pop3: (PLAIN) login success [EMAIL PROTECTED]:63.195.16.136 If I rebuild the vpopmail RPMs with many-domains disabled (and again, drop the vpopmail database, and readd my test user) then POP3-SSL works fine. Why? Do I need to modify any other components of QT? Is virtual domain info stored anywhere outside of the mysql database? Quinn - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
[qmailtoaster] roaming-users still an easy option?
I'd like to enable support for roaming users. Is there still a --with roaming flag available in QT? I read somewhere on the list roaming is not installed by default, but didn't know if this meant it was completely removed from the project. We have 500 users, most of which are currently using pop-before-smtp on our sendmail server. I would of course love to switch them to SMTP-AUTH but am simply weighing the user support factor. Quinn - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] many-domains breaks POP-SSL?
Ah, of course. Not dynamically linked. But it still doesn't work. I get this error in the smtp log: vmysql: sql error[3]: Table 'vpopmail.hoodwink_us' doesn't exist I AM able to authenticate with POP-SSL successfully now. But message delivery is broken. So then I rebuilt the qmail-toaster RPM and...it works! Is there anything else I need to rebuild? Maybe I will just rebuild all the package in the correct order just to be sure. Quinn On Sat, 7 Oct 2006 18:57:56 -0700, Erik Espinoza wrote: Courier-authlib uses vpopmail libs to talk to the db. It needs to be rebuilt as well. On 10/7/06, Quinn Comendant [EMAIL PROTECTED] wrote: I'd like to enable many-domains. I got it working (rebuild the RPMs, dropped the mysql db, readd test user), but then POP over SSL stopped working. - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] many-domains breaks POP-SSL?
I'm not sure if this is related, but I notice vdominfo reports zero users (when there should be two plus postmaster): [EMAIL PROTECTED]/0 qmail]$vdominfo domain: hoodwink.us uid:89 gid:89 dir:/home/vpopmail/domains/hoodwink.us users: 0 [EMAIL PROTECTED]/0 qmail]$vpopbull -Vn [EMAIL PROTECTED] [EMAIL PROTECTED] [EMAIL PROTECTED] Quinn On Sun, 8 Oct 2006 01:05:32 -0700, Quinn Comendant wrote: Ah, of course. Not dynamically linked. But it still doesn't work. I get this error in the smtp log: vmysql: sql error[3]: Table 'vpopmail.hoodwink_us' doesn't exist I AM able to authenticate with POP-SSL successfully now. But message delivery is broken. So then I rebuilt the qmail-toaster RPM and...it works! Is there anything else I need to rebuild? Maybe I will just rebuild all the package in the correct order just to be sure. Quinn On Sat, 7 Oct 2006 18:57:56 -0700, Erik Espinoza wrote: Courier-authlib uses vpopmail libs to talk to the db. It needs to be rebuilt as well. On 10/7/06, Quinn Comendant [EMAIL PROTECTED] wrote: I'd like to enable many-domains. I got it working (rebuild the RPMs, dropped the mysql db, readd test user), but then POP over SSL stopped working. - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] Spamassassin user preferences
I also was wondering about this. With unix accounts + sendmail every user has their own SA config file at ~/.spamassassin/user_prefs. But with vpopmail I don't think SA knows where to look for the file. I think the best option is to move all SA configuration into MySQL and then it can be managed by the user via a web-based interface. Does anybody know how this works? I will check into it and report back. Quinn On Fri, 29 Sep 2006 11:17:30 -0700, Eric Shubes wrote: There is some user level control available in /var/qmail/control/simcontrol. You can vary the level at which spam is dropped (spam_hits setting). See http://wiki.qmailtoaster.com/index.php/Simscan I don't know if you can adjust the score at which something is considered spam or not though. Please let us know what you find out (and update the wiki accordingly!). ;) - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] MYSQL help
Hi Craig I've tried setting up replication before but was frightened by its complexity. I might suggest just using mysqldump. The vpopmail table should not be updated that frequently (only when accounts are added/edited/deleted), is probably not too large (how many users?), and your second server is not live. So copying the vpopmail table every ten minutes or so should be fine. You can run a command to pull the data across from the second server over a ssh tunnel: ssh -C [EMAIL PROTECTED] mysqldump --databases -u USERNAME -pPASSWORD vpopmail | mysql -u -pPASSWORD; Quinn On Mon, 9 Oct 2006 15:33:41 +0100, Craig Smith wrote: How do I go about configuring mysql to specifically replicate the vpopmail database to my backup server so that the backup server always has an up to date copy of the mysql database? I can manage without that, but I think it would be more efficient method. - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] many-domains breaks POP-SSL?
On Mon, 09 Oct 2006 11:38:56 -0700, Eric Shubes wrote: Quinn, Would you care to report this to the fine folks at inter7 (http://www.inter7.com/index.php?page=vpopmail) and follow up? Reported: http://sourceforge.net/tracker/index.php?func=detailaid=1574817group_id=85937atid=577798 Also, a poster on the vpopmail list has a tip how to correct this count, although I don't really see the point to doing this if you can simply issue a mysql query to get the current count. From: Adam Cantwell [EMAIL PROTECTED] I have noticed the problem Shubes reports many times before. Always when I have migrated from one server to another. My procedure for migrating is to tar up the vpopmail/domains directory and export the vpopmail database. Then, untar the directory on the new server and import the database. In this scenario, vdominfo reported correct user counts on the old server, and outrageous numbers like 2147483637 on the new server. If I go into the database and manually correct the user counts for each domain in the cur_users field of the dir_control table, the counts display accurately and increment correctly when new users are added from that point on. When I migrate, however, if I do a vadduser for each mailbox on the new server and then untar the domains directory, the counts are accurate. This is obviously not practical. Anyhow, just letting you know you are not seeing things. Q - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
[qmailtoaster] virus stats
Have y'all considered adding something like this to the admin-toaster? http://www.limelyte.com/software.php?p=virusstats Q - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] Spamassassin user preferences
I've got mysql-based SA user prefs working. Here are the changes necessary to
add this to the qmail toaster.
1. Add --enable-spamc-user option to %configure in the simscan-toaster.spec
2. Add -q to the spamd run file. Here's mine:
[EMAIL PROTECTED] ~]$cat /var/qmail/supervise/spamd/run
#!/bin/sh
exec /usr/bin/spamd -q -x -u vpopmail -s stderr -P -m 15 --min-spare=2
--max-spare=5 --max-conn-per-child=50 --timeout-child=20 --timeout-tcp=20 21
3. Add a new spamassassin cf file with user_score parameters. Here's mine:
[EMAIL PROTECTED] ~]$cat /etc/mail/spamassassin/sql.cf:
user_scores_dsn DBI:mysql:spamassassin:localhost
user_scores_sql_username spamassassin
user_scores_sql_password sSeEcCrReEtT
user_scores_sql_custom_query SELECT preference, value FROM _TABLE_ WHERE
username = _USERNAME_ OR username = '$GLOBAL' OR username =
CONCAT('%',_DOMAIN_) ORDER BY username ASC
4. Have a script that creates a mysql database. Here are the commands necessary:
CREATE DATABASE `spamassassin`;
GRANT ALL ON `spamassassin`.* TO 'spamassassin'@'localhost' IDENTIFIED BY
'sSeEcCrReEtT';
USE spamassassin;
CREATE TABLE userpref (
username VARCHAR(255) NOT NULL DEFAULT '',
preference VARCHAR(30) NOT NULL DEFAULT '',
value VARCHAR(100) NOT NULL DEFAULT '',
prefid INT(11) UNSIGNED NOT NULL AUTO_INCREMENT,
PRIMARY KEY (prefid),
INDEX (username)
) ENGINE=MyISAM;
5. Include the SquirrelMail plugin. I don't know how to do this since I don't
use it. I found the Horde group has a spamassassin configuration plugin called
SAM that is simple and works.
Quinn
I'll get this going on my migration server and report back.
Quinn
On Mon, 09 Oct 2006 12:21:06 -0700, Eric Shubes wrote:
I'd like to see the basic toaster move in this direction. What will
it take
to make this happen?
-
QmailToaster hosted by: VR Hosted http://www.vr.org
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
[qmailtoaster] spamassassin site-wide bayes?
Is it true that because spamassassin always runs as user vpopmail thus keeping its bayes and auto-whitelist database in /home/vpopmail/.spamassassin/ this has the same functionality as using site-wide bayes database? Would there be any advantage to using real site-wide bayes settings? Maybe just to keep the databases in /var? A related question is whether it would be better to keep all bayes and AWL data in a MySQL database. As far as I understand it, this would only be preferred in two cases: 1. You wanted to setup per-user bayes/AWL. Which begs the question: is per-user bayes more accurate than site-wide? 2. You have multiple mail hosts (MX hosts) each with SA. In this case it might be easiest to have them all share one MySQL database. http://wiki.apache.org/spamassassin/SiteWideBayesSetup Quinn - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] convert mailbox to maildir and switch to qmailtoaster from vanilla qmail
I've used a utility called mb2md, from: http://batleth.sapienti-sat.org/projects/mb2md/ But the current version fails to create the infofile 'maildirfolder' inside subdirs, so you'll have to run a script like: # Create empty .subdir/maildirfolder files as required # by the Maildir++ format. for msubdir in /home/vpopmail/domains/*/*/Maildir/.*; do echo `basename $msubdir` | egrep -vq '^(\.|\.\.)$' if [[ $? == 0 ]]; then touch $msubdir/maildirfolder fi done Quinn On Sat, 14 Oct 2006 16:56:35 +0200 (CEST), [EMAIL PROTECTED] wrote: As i mentioned in a subject, is there a easy way to convert current mailbox users to maildirs and switch to qmailtoaster distro? As for convert mailbox to maildirs: 2md (http://home.uninet.ee/~ragnar/2md/) worked fine for me. Thank you, Igor - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] DEVEL PACKAGE: spamassassin-toaster-3.1.7-1.3.5.src.rpm
Isn't this what procmail or maildrop are for? BTW, I've been meaning to ask: I never installed maildrop on my Toaster, as we have a bunch of procmailrc scripts and will just be piping email to procmail. Does the maildrop-toaster package include any critical functionality? Q On Sun, 15 Oct 2006 00:25:47 -0700, Erik Espinoza wrote: OT, I am getting tons of Undelivered Mail, is there any plans on setting up any kind of Email Rules per user so that we can get rid of all of these emails. They are even worse than the amount of spam coming through the filters. Seems like the best way to do that would be to implement Sieve Filtering: http://en.wikipedia.org/wiki/Sieve_-_mail_filtering_language It's even supported by SquirrelMail. Unfortunately I have no Cyrus IMAP + vpopmail info. Erik - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] DEVEL PACKAGE: spamassassin-toaster-3.1.7-1.3.5.src.rpm
Ah, yes. In my fairyland world I always thought maybe procmail/maildrop could just pull the scripts out of a database. I dunno. But it does look like Sieve is getting a head-start in this way. There are a number of web-based GUIs for managing Sieve scripts: http://sieve.info/implementations Including one for Squirrelmail, and one for Horde/IMP (Ingo, which I was already using...didn't even know it used Sieve ;) There isn't an implementation for Courier, but there is GNU Mailutils which apparently can be called from maildrop: http://mail.opengroupware.org/pipermail/developer/2003-October/000591.html http://www.gnu.org/software/mailutils/ Whether or not mailutils' implementation of Sieve can pull scripts out of the database used by Squirrelmail or Ingo is another question (and if not you might as well just use procmail/maildrop?) Q On Sun, 15 Oct 2006 15:15:06 -0700, Erik Espinoza wrote: Isn't this what procmail or maildrop are for? Yes, but its hard to handle maildrop/procmail when users don't have remote access. Sieve is a protocol that can be modified via a web page easily. - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] DKIM
Eric (and all) I did some brief research on DKIM. To start, from the FAQ: Q: DKIM is claimed to be an upgrade of Yahoo's DomainKeys. What is different and why should I upgrade? A: DKIM is the result of a multi-company effort to enhance DomainKeys for broader adoption, better security, and more flexibility. NOTE: DKIM is upward compatible with existing DomainKeys DNS records, so that a DKIM module does not automatically require additional DNS administration! (Read the rest of the FAQ here: http://mipassoc.org/dkim/info/dkim-faq.html) In other research, I found the following: - DKIM is a merger of Yahoo's Domain Keys and Cisco's IIM (Identified Internet Mail). - DKIM is widely considered to be Domain Keys' successor. - DKIM is the subject of a new IETF Working Group intending to make it an IETF standard. - DKIM is available as a Spamassassin plugin: Mail::DKIM (from CPAN) If this module is installed, and you enable the DKIM plugin, SpamAssassin will perform Domain Keys Identified Mail lookups when DKIM information is present in the message headers. http://search.cpan.org/src/DOS/Mail-SpamAssassin-3.1.6/INSTALL It seems worth exploring further as an addition to the Qmail Toaster. Some questions I would like to answer first: - Does upward compatible mean that if we use DKIM we will automatically be validated by Domain Keys servers? - Can we completely replace QT's Domain Keys implementation with DKIM? - Would it then be redundant to run Spamassassin's Mail::DomainKeys and Mail::DKIM plug-ins simultaneously? - If the QT implementation of DKIM differs greatly from Domain Keys (key generation scripts, file locations, etc) what is the migration path for users who currently use QT with Domain Keys? - Should I start using Domain Keys for my domains, or wait and use DKIM? Quinn On Fri, 29 Sep 2006 09:02:27 -0700, Eric Shubes wrote: Sorry, I didn't pay close attention. I thought DKIM was the same as domainkeys. Can you point me to a web page describing DKIM? Stanley Robins wrote: oh, but does setting up domainkeys means i will also have support for DKIM. ? also if you know of any techical differences as it seems very similar to me. thanks On 9/28/06, * Eric Shubes* [EMAIL PROTECTED] mailto:[EMAIL PROTECTED] wrote: Stanley Robins wrote: Hi all I have my old installation.. the one before domain keys implementation, and i just read abt DKIM, but cant much difference abt it in regards to domain keys from yahoo, do you guys know anything abt it ? and is it necessary to implement on mail server, all my new server installations will be qmailtoaster domainkeys.. Also Thanks to Jake, Erik, Nick and all others at mailing Lists. Thanks It's not exactly necessary. On incoming email, it would prevent spam coming from a spoofed domain which uses DK. On outgoing email to yahoo, it would allow delivery to the recipient's inbox instead of bulk folder. That's all I'm aware of. -- -Eric 'shubes' -- -Eric 'shubes' - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
[qmailtoaster] BIND caching server?
I asked the techs at Rackspace (where we have our qmail toaster) how to, and if they would recommend, setting up a caching name server. They replied to the contrary: To be honest, this may not provide you with any performance increase, and may even degrade performance, as doing this will incur an initial lookup delay on any non-cached domain, whereas using our caching nameservers you are pretty unlikely to get a cache miss on any given domain. Are they nuts? (They are sometimes.) But they have local-cachine nameservers they provide, which, from my server, have ping latencies from 0.1-0.2 ms. Quinn - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] Can I switch something to reject unknown users at SMTP Connection?
I just did a quick test on my recent QT install. A message is rejected if _any_ of the recipients does not exist (I tested with one known existing, and one unknown). 2006-10-19 03:26:58.715665500 tcpserver: status: 1/100 2006-10-19 03:26:58.715673500 tcpserver: pid 1636 from 63.195.16.136 2006-10-19 03:26:58.715676500 tcpserver: ok 1636 one.strangecode.com:216.110.45.174:25 :63.195.16.136::45715 2006-10-19 03:27:02.572451500 CHKUSER accepted sender: from [EMAIL PROTECTED]:[EMAIL PROTECTED]: remote lovemachine.local.localdomain:unknown:63.195.16.136 rcpt : sender accepted 2006-10-19 03:27:02.656266500 CHKUSER accepted rcpt: from [EMAIL PROTECTED]:[EMAIL PROTECTED]: remote lovemachine.local.localdomain:unknown:63.195.16.136 rcpt [EMAIL PROTECTED] : found existing recipient 2006-10-19 03:27:02.730429500 CHKUSER rejected rcpt: from [EMAIL PROTECTED]:[EMAIL PROTECTED]: remote lovemachine.local.localdomain:unknown:63.195.16.136 rcpt [EMAIL PROTECTED] : not existing recipient 2006-10-19 03:27:03.806642500 tcpserver: end 1636 status 0 2006-10-19 03:27:03.806650500 tcpserver: status: 0/100 Q On Wed, 18 Oct 2006 10:50:56 -0700, Eric Shubes wrote: I used to think so too, but now I'm not so sure. I'm wondering if it would be feasible to do what Jim's suggesting. What if an email comes in with a valid address and an invalid address. You'd want the valid address to be delivered, right? In that case, the message would have to be accepted to the valid address, and bounced to the invalid one. I think this may be why it's necessary to complete the smtp session even if there is an invalid address. Just a though. - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] Can I switch something to reject unknown users at SMTP Connection?
Hmmm, we have different results in our tests. I did exactly the same thing (recipient: some nonexisting account, bcc: existing account) and the message is denied with a 511 sorry, no mailbox here by that name (#5.1.1 - chkuser). But now I see what is making the difference: In my test I am sending mail directly to the SMTP port of my QT machine. If I send the test email above via a 3rd-party SMTP gateway (mail.gmail.com, etc) the message IS delivered to the existing user, and a bounce message IS returned to the sender: - The following addresses had permanent fatal errors - [EMAIL PROTECTED] (reason: 511 sorry, no mailbox here by that name (#5.1.1 - chkuser)) I noticed the value set in my .qmail-default for this domain is: [EMAIL PROTECTED]/0 ~]$cat /home/vpopmail/domains/hoodwink.us/.qmail-default | /home/vpopmail/bin/vdelivermail '' bounce-no-mailbox (This is the default value for a a domain created with vadddomain.) Q On Thu, 19 Oct 2006 11:10:11 +0200, Igor Smitran wrote: As far as i know, qmail will make differrent connection for every rcpt to and bounces will be made only for those that do not exist. My test was: create one email like this: recipient: some nonexisting account bcc: existing account mail will be delivered to existing account bounce will be made for nonexisting account Igor - Original Message - From: Quinn Comendant [EMAIL PROTECTED] To: qmailtoaster-list@qmailtoaster.com Sent: Thursday, October 19, 2006 10:29 AM Subject: Re: [qmailtoaster] Can I switch something to reject unknown users at SMTP Connection? I just did a quick test on my recent QT install. A message is rejected if _any_ of the recipients does not exist (I tested with one known existing, and one unknown). 2006-10-19 03:26:58.715665500 tcpserver: status: 1/100 2006-10-19 03:26:58.715673500 tcpserver: pid 1636 from 63.195.16.136 2006-10-19 03:26:58.715676500 tcpserver: ok 1636 one.strangecode.com:216.110.45.174:25 :63.195.16.136::45715 2006-10-19 03:27:02.572451500 CHKUSER accepted sender: from [EMAIL PROTECTED]:[EMAIL PROTECTED]: remote lovemachine.local.localdomain:unknown:63.195.16.136 rcpt : sender accepted 2006-10-19 03:27:02.656266500 CHKUSER accepted rcpt: from [EMAIL PROTECTED]:[EMAIL PROTECTED]: remote lovemachine.local.localdomain:unknown:63.195.16.136 rcpt [EMAIL PROTECTED] : found existing recipient 2006-10-19 03:27:02.730429500 CHKUSER rejected rcpt: from [EMAIL PROTECTED]:[EMAIL PROTECTED]: remote lovemachine.local.localdomain:unknown:63.195.16.136 rcpt [EMAIL PROTECTED] : not existing recipient 2006-10-19 03:27:03.806642500 tcpserver: end 1636 status 0 2006-10-19 03:27:03.806650500 tcpserver: status: 0/100 Q On Wed, 18 Oct 2006 10:50:56 -0700, Eric Shubes wrote: I used to think so too, but now I'm not so sure. I'm wondering if it would be feasible to do what Jim's suggesting. What if an email comes in with a valid address and an invalid address. You'd want the valid address to be delivered, right? In that case, the message would have to be accepted to the valid address, and bounced to the invalid one. I think this may be why it's necessary to complete the smtp session even if there is an invalid address. Just a though. - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] Password size limit
This sucks. Have you posted this bug to the vpopmail (vchkpw@inter7.com) or qmailadmin mailing list? I wonder if it is as simple as changing the database specification in mysql.h to have larger password fields? Quinn On Wed, 25 Oct 2006 09:59:00 -0500, Ryan Gibbons wrote: Just ran across this, and not sure who else knows about it. There is a password limit of 16 chars. If you try to create a user with a longer password, then the admin-toaster script errors out, even the qmailadmin fails, both without any messages as to why. If you user is already created and you try to change the password to something longer, it says it changes it, but it really doesn't. I have played with this multiple ways and never found a warning as to why this was happening. I check the database and verified that there is a 16 char limit on the clear password which causes all the scripts to do weird things. Not sure what needs to be done, but either proper warnings need to be inserted into the scripts, or the database needs to increase the field size, or possibly both. - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] bayes getting corrupt
Would this be a good reason to use the MySQL Bayes storage engine? Q On Tue, 24 Oct 2006 11:45:31 -0700, Eric Shubes wrote: Jared Markell wrote: Does anyone else have the problem of the Bayes database getting corrupt very often? My database has problems quite frequently, I usually have to delete the .spamassassin folder once every 3 days, and the only way to keep the server stable is just to disable Bayes checking all together. However, Bayes helps a lot and I would like to keep it if I could trust it not to corrupt and clog up the email server. Anyone else have these problems and/or have a solution? *Jared * ** I have this problem too. I've been renaming .spamassassin when it starts happening, so I have the old files to do some diagnostics with. I simply haven't gotten around to it, but would like very much to get it fixed. It seems to be ok until the point where tokens are due to expire. I'm guessing that the expiration process has a problem, but don't rightly know. Any cdb gurus here, or does anyone know of a fix in this area? -- -Eric 'shubes' - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
[qmailtoaster] Qmail options to block at port
Hey y'all An associate of mine has experience with postfix, and was wondering if qmail blocks messages at SMTP that fail to meet valid criteria. See the postfix log summary generated from his machine, below. I'm aware the qmail toaster comes with support to use the following facilities to block bad messages: RBLs, SPF, domainkeys, simscan, clamav, spamassassin, SURBL. But does it block messages such as the Host not found or other criteria? If not how to configure? I'm aware Greylisting isn't part of the qmailtoaster. The second question, does anyone know of any utilities that can generate reports like this from the qmail logs? Thanks! Q pflogsumm /var/log/mail.log ... message reject detail - RCPT blocked using bl.spamcop.net (total: 19) 12 ocn.ne.jp 6 alpha-net.ne.jp 1 btopenworld.com cannot find your hostname (total: 25) 23 72.35.236.66 1 218.232.129.208 1 221.141.51.93 Client host rejected: Greylisted (total: 7) 3 horsepowerfreaks.com 2 britecast.com 2 campaignmonitor.com Helo command rejected: Host not found (total: 4) 2 80-219-113-121.dclient.hispeed.ch 2 ocn.ne.jp Helo command rejected: need fully-qualified hostname (total: 1) 1 hinet.net - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
[qmailtoaster] Roaming users isn't working.
Hi y'all How can I troubleshoot why roaming users isn't working for me? I've compiled vpopmail with --enable-roaming-users, and recompiled everything else after installing. But I still get a 553 sorry, that domain isn't in my list of allowed rcpthosts (#5.5.3 - chkuser). I'm not quite sure the mechanisms that allow this to work. vchkpw intercepts a pop/imap connection and appends the remote IP to a cdb file used by chkuser? Thanks for any direction pointing. Q rpm -qa | grep toaster libdomainkeys-toaster-0.68-1.3.1 courier-imap-toaster-4.1.1-1.3.2 ezmlm-cgi-toaster-0.53.324-1.3.1 spamassassin-toaster-3.1.4-1.3.2 vpopmail-toaster-5.4.13-1.3.5 clamav-toaster-0.88.4-1.3.3 simscan-toaster-1.2-1.3.2 daemontools-toaster-0.76-1.3.1 autorespond-toaster-2.0.4-1.3.1 ezmlm-toaster-0.53.324-1.3.1 isoqlog-toaster-2.1-1.3.1 courier-authlib-toaster-0.58-1.3.2 qmail-toaster-1.03-1.3.5 ucspi-tcp-toaster-0.88-1.3.1 qmail-pop3d-toaster-1.03-1.3.5 control-panel-toaster-0.5-1.3.1 qmailmrtg-toaster-4.2-1.3.1 ripmime-toaster-1.4.0.6-1.3.1 qmailadmin-toaster-1.2.9-1.3.1 - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
[qmailtoaster] included spamassassin local.cf has deprecated option
The spamassassin local.cf file included with the qmail toaster has the required_hits option instead of the new required_score one. Not really bad but... required_score n.nn (default: 5) Set the score required before a mail is considered spam. n.nn can be an integer or a real number. 5.0 is the default setting, and is quite aggressive; it would be suitable for a single-user setup, but if you're an ISP installing SpamAssassin, you should probably set the default to be more conservative, like 8.0 or 10.0. It is not recommended to automatically delete or discard messages marked as spam, as your users will complain, but if you choose to do so, only delete messages with an exceptionally high score such as 15.0 or higher. This option was previously known as required_hits and that name is still accepted, but is deprecated. Q - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] Roaming users isn't working.
I want to use POP-before-SMTP for our infinite monkeys (although we still suggest using SMTP-AUTH -- not all follow directions). Setting --enable-roaming-users should turn this on in vpopmail (according to all the docs I read). Message ARE being relayed and delivered to all the domains in /var/qmail/control/rcpthosts from roaming users. But messages to domains not in rcpthosts are not accepted for delivery. Anybody here get this working? I know it was part of the qmail toaster in the past. Quinn On Tue, 31 Oct 2006 08:29:31 -0700, Eric Shubes wrote: I don't know about roaming users per se. What are you trying to accomplish? That being said, have you looked into /var/qmail/control/rcpthosts? Quinn Comendant wrote: Hi y'all How can I troubleshoot why roaming users isn't working for me? I've compiled vpopmail with --enable-roaming-users, and recompiled everything else after installing. But I still get a 553 sorry, that domain isn't in my list of allowed rcpthosts (#5.5.3 - chkuser). I'm not quite sure the mechanisms that allow this to work. vchkpw intercepts a pop/imap connection and appends the remote IP to a cdb file used by chkuser? Thanks for any direction pointing. Q rpm -qa | grep toaster libdomainkeys-toaster-0.68-1.3.1 courier-imap-toaster-4.1.1-1.3.2 ezmlm-cgi-toaster-0.53.324-1.3.1 spamassassin-toaster-3.1.4-1.3.2 vpopmail-toaster-5.4.13-1.3.5 clamav-toaster-0.88.4-1.3.3 simscan-toaster-1.2-1.3.2 daemontools-toaster-0.76-1.3.1 autorespond-toaster-2.0.4-1.3.1 ezmlm-toaster-0.53.324-1.3.1 isoqlog-toaster-2.1-1.3.1 courier-authlib-toaster-0.58-1.3.2 qmail-toaster-1.03-1.3.5 ucspi-tcp-toaster-0.88-1.3.1 qmail-pop3d-toaster-1.03-1.3.5 control-panel-toaster-0.5-1.3.1 qmailmrtg-toaster-4.2-1.3.1 ripmime-toaster-1.4.0.6-1.3.1 qmailadmin-toaster-1.2.9-1.3.1 -- -Eric 'shubes' - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
[qmailtoaster] mail is looping error in some cases when using bounce-no-mailbox
Here is a problem I discovered, and I'm not sure if this is just an architectural issue with Qmail or a real problem. I receive a mail is looping failure notice whenever I redirect a message to myself, or even if I sent it to my address from my gmail account (but the original message was sent to @strangecode.com). I can send myself mail fine, just not redirect. I can redirect to other @strangecode.com users fine. I found that if I were to change the .qmail-default line for my domain from: | /home/vpopmail/bin/vdelivermail '' bounce-no-mailbox to: [EMAIL PROTECTED] I would receive the message at my gmail account. So it is the bounce-no-mailbox command that is causing the loop? But why? [EMAIL PROTECTED] is a valid address and as I said I can send mail to myself, just not redirect. The failure notice message is below. Thanks for any light you can shed! Quinn PS: You guys are going to hear from my more often now. I just brought my qmail toaster online last weekend and have begun migrating all our users in batches. I really appreciate all the help! = Hi. This is the qmail-send program at one.strangecode.com. I'm afraid I wasn't able to deliver your message to the following addresses. This is a permanent error; I've given up. Sorry it didn't work out. [EMAIL PROTECTED]: mail is looping --- Below this line is a copy of the message. Return-Path: [EMAIL PROTECTED] Received: (qmail 24266 invoked by uid 89); 1 Nov 2006 02:38:07 - Received: by simscan 1.2.0 ppid: 24249, pid: 24261, t: 0.2744s scanners: attach: 1.2.0 clamav: 0.88.4/m:40/d:2131 Received: from unknown (HELO lovemachine.local.localdomain) ([EMAIL PROTECTED]@63.195.16.136) by one.strangecode.com with ESMTPA; 1 Nov 2006 02:38:06 - Resent-From: Quinn Comendant [EMAIL PROTECTED] Resent-To: Quinn Comendant [EMAIL PROTECTED] Resent-Date: Tue, 31 Oct 2006 18:37:51 -0800 Resent-Message-ID: [EMAIL PROTECTED] Delivered-To: [EMAIL PROTECTED] Delivered-To: [EMAIL PROTECTED] DomainKey-Status: no signature X-Spam-Checker-Version: SpamAssassin 3.1.4 (2006-07-25) on one.strangecode.com X-Spam-Level: ** X-Spam-Status: No, score=2.9 required=5.0 tests=BAYES_50,DK_POLICY_SIGNSOME, FROM_LOCAL_NOVOWEL autolearn=no version=3.1.4 Received-SPF: none (one.strangecode.com: domain at ecc.net does not designate permitted sender hosts) Date: Tue, 31 Nov 2006 06:11:54 +0300 From: Callie Bowling [EMAIL PROTECTED] X-Mailer: The Bat! (v3.60.07) UNREG / CD5BF9353B3B7091 X-Priority: 3 (Normal) Message-ID: [EMAIL PROTECTED] To: [EMAIL PROTECTED] Subject: Feel young MIME-Version: 1.0 Content-Type: text/plain; charset=Windows-1252 Content-Transfer-Encoding: 8bit X-Spam: Not detected Wallst.net Features RREF CEO In An Interview to discuss Successful Testing of Anti Weaponized-Biochemical Solution! Compnay: Red Reef Laboratories Inc. Symblo, RREF Prcie: 0.56! RREF CEO in interview told investors that the testing of Bioclear was successful against Weaponized Biochemical‚s like anthrax. Testing was preformed by the US Military and has provided exciting prospects in the protection against terrorist biochemical attacks. Go to wallst.net and listen to the interview, hear it from the CEO himself and then get on RREF first thing Tuesday morning! I hope it was a helper.I'll email you later this week. Callie Bowling. certainly done our best; and most fortunately having it in our power to introduce you to very superiorsuch as vanity and pride.
[qmailtoaster] vpopmail login fail before login success?
I'm getting more familiar with the logs and trying to understand what is happening. I see in the /var/log/maillog two auth attempts for each pop/imap/smtp connection, for example, here is me sending mail (vchkpw-smtp): Nov 1 23:17:14 one vpopmail[23591]: vchkpw-smtp: password fail (pass: '7179c6afc2835c47c3b2523f9ef55c5f') [EMAIL PROTECTED]:63.195.16.136 Nov 1 23:17:19 one vpopmail[23598]: vchkpw-smtp: (PLAIN) login success [EMAIL PROTECTED]:63.195.16.136 And a vchkpw-pop3 example: Nov 1 23:29:02 one vpopmail[24583]: vchkpw-pop3: password fail (pass: 'a8ea6c78d4e620cd9d40df0b1f865f40') [EMAIL PROTECTED]:71.202.165.159 Nov 1 23:29:02 one vpopmail[24586]: vchkpw-pop3: (PLAIN) login success [EMAIL PROTECTED]:71.202.165.159 It's as if mail clients are trying with one protocol and failing, before trying the next kind. My user account only does this for vchkpw-smtp connections. Perhaps my email client sends the correct authentication type the first time? Quinn - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] Roaming users isn't working.
I found more info from the vchkpw list. The IP addresses are stored in the database rather than /home/vpopmail/etc/open-smtp when using mysql. And...my database contains the IPs! mysql select * from relay; +++ | ip_addr| timestamp | +++ | 83.167.100.41 | 1162456105 | | 69.236.80.73 | 1162455951 | | 63.195.16.136 | 1162445324 | | 67.161.162.12 | 1162455940 | | 71.139.185.158 | 1162449362 | | 71.202.165.159 | 1162447742 | | 208.53.81.33 | 1162454384 | | 24.61.40.57| 1162455976 | +++ 8 rows in set (0.00 sec) Now checking tcp.smtp.cdb... [EMAIL PROTECTED]/0 ~]$grep 63.195.16.136 /etc/tcprules.d/tcp.smtp.cdb Binary file /etc/tcprules.d/tcp.smtp.cdb matches And my IP address is found! So...it *should* be working, but it's not. Arrr! Quinn On Wed, 1 Nov 2006 01:12:09 -0800, Erik Espinoza wrote: It was removed from the QmailToaster in favor of SMTP-AUTH. Hopefully you'll be able to get this working after rebuilding the qmail-toaster package. - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] Roaming users isn't working.
UPDATE: I discovered the whole system DOES work if I connect via POP3, but if I connect via POP3-SSL my IP address is *not* added to the vpopmail.relay database. I see that my POP3-SSL run doesn't call /home/vpopmail/bin/vchkpw, which would explain why POP3-SSL connection IPs aren't being added to the database. So my question should then be: How to get Courier SSL connections to pass the connect message to vpopmail? I assume this is an issue for IMAP and IMAP-SSL users as well. Quinn On Thu, 2 Nov 2006 00:36:01 -0800, Quinn Comendant wrote: I found more info from the vchkpw list. The IP addresses are stored in the database rather than /home/vpopmail/etc/open-smtp when using mysql. And...my database contains the IPs! mysql select * from relay; +++ | ip_addr| timestamp | +++ | 83.167.100.41 | 1162456105 | | 69.236.80.73 | 1162455951 | | 63.195.16.136 | 1162445324 | | 67.161.162.12 | 1162455940 | | 71.139.185.158 | 1162449362 | | 71.202.165.159 | 1162447742 | | 208.53.81.33 | 1162454384 | | 24.61.40.57| 1162455976 | +++ 8 rows in set (0.00 sec) Now checking tcp.smtp.cdb... [EMAIL PROTECTED]/0 ~]$grep 63.195.16.136 /etc/tcprules.d/tcp.smtp.cdb Binary file /etc/tcprules.d/tcp.smtp.cdb matches And my IP address is found! So...it *should* be working, but it's not. Arrr! Quinn On Wed, 1 Nov 2006 01:12:09 -0800, Erik Espinoza wrote: It was removed from the QmailToaster in favor of SMTP-AUTH. Hopefully you'll be able to get this working after rebuilding the qmail-toaster package. - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] vpopmail login fail before login success?
I'm using GyazMail, which has an option to specify SSL or TLS explicitly. I'm using SSL for pop3 and TLS for smtp, but still getting two log entries for SMTP. The log entries show duplicate login entries for about 20 other users, most of which I would guess are using Apple Mail. Actually, I'd guess this is not a SSL versus TLS issue, but rather the format the password is sent in, CRAM-MD5 versus PLAIN. I doubt anything can be done about it, I was just wondering if it was indicative of a greater problem. Thanks, Quinn On Thu, 02 Nov 2006 07:30:04 -0700, Eric Shubes wrote: Which mail client? Perhaps the client is configured to use TLS if available, so it tries with TLS, fails, then tries without. Just a guess. - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] Roaming users isn't working.
Further research turned up some threads that indicate that this is maybe just not supported with courier anymore? Can anybody confirm this? http://www.mail-archive.com/vchkpw@inter7.com/msg20495.html http://www.mail-archive.com/vchkpw@inter7.com/msg21945.html http://www.mail-archive.com/vchkpw@inter7.com/msg23726.html http://www.mail-archive.com/vchkpw@inter7.com/msg20745.html That is probably the final nail in this thread for me. I've been weighing the hassle between to enable roaming-users versus instructing all our users to reconfigure their MUAs to use SMTP-AUTH. Ok ok ok... Quinn On Thu, 2 Nov 2006 15:01:27 -0800, Quinn Comendant wrote: So my question should then be: How to get Courier SSL connections to pass the connect message to vpopmail? I assume this is an issue for IMAP and IMAP-SSL users as well. - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
[qmailtoaster] How does qmail determine if a domain is local?
Hey how exactly does the qmail toaster determine if a email address is a local domain? I'm used to sendmail's /etc/mail/local-host-names config. Is it the /var/qmail/control/virtualdomains? I don't think so because I have a domain in there that is actually still hosted on a different server and mail from server A (qmail) still goes to server B. Does qmail query for MX records each time? Quinn - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
[qmailtoaster] valias to sa-learn
I'm trying to create an alias that pipes a message to sa-learn. I've created the alias: [EMAIL PROTECTED]/1 ~]$valias -s strangecode.com | grep spam [EMAIL PROTECTED] - |sa-learn --ham --no-sync [EMAIL PROTECTED] - |sa-learn --spam --no-sync That didn't work, so I tried this: [EMAIL PROTECTED]/1 ~]$valias -s strangecode.com | grep spam [EMAIL PROTECTED] - |/root/bin/learnham [EMAIL PROTECTED] - |/root/bin/learnspam And those scripts are something like: [EMAIL PROTECTED]/1 ~]$cat /root/bin/learnham #!/bin/sh sa-learn --spam --no-sync -D /tmp/learnspam.log And they work fine is fed spam directly... [EMAIL PROTECTED]/1 ~]$bin/learnspam EOF ...spam here... EOF [EMAIL PROTECTED]/1 ~]$head /tmp/learnspam.log [8532] dbg: logger: adding facilities: all ... Learned tokens from 1 message(s) (1 message(s) examined) So I assume I setup the aliases wrong? Do the scripts need to be owned by vpopmail or something? Thanks! Quinn - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] valias to sa-learn
The messages I send to a '|/some/program' alias just get stuck in the queue: 4 Nov 2006 06:51:25 GMT #5686481 2498 [EMAIL PROTECTED] local [EMAIL PROTECTED] I can't find any errors in any of the /var/log/qmail logs, and I don't receive a bounce. Any ideas what I am doing wrong? Quinn On Fri, 3 Nov 2006 23:06:41 -0800, Quinn Comendant wrote: I'm trying to create an alias that pipes a message to sa-learn. I've created the alias: [EMAIL PROTECTED]/1 ~]$valias -s strangecode.com | grep spam [EMAIL PROTECTED] - |sa-learn --ham --no-sync [EMAIL PROTECTED] - |sa-learn --spam --no-sync That didn't work, so I tried this: [EMAIL PROTECTED]/1 ~]$valias -s strangecode.com | grep spam [EMAIL PROTECTED] - |/root/bin/learnham [EMAIL PROTECTED] - |/root/bin/learnspam And those scripts are something like: [EMAIL PROTECTED]/1 ~]$cat /root/bin/learnham #!/bin/sh sa-learn --spam --no-sync -D /tmp/learnspam.log And they work fine is fed spam directly... [EMAIL PROTECTED]/1 ~]$bin/learnspam EOF ...spam here... EOF [EMAIL PROTECTED]/1 ~]$head /tmp/learnspam.log [8532] dbg: logger: adding facilities: all ... Learned tokens from 1 message(s) (1 message(s) examined) So I assume I setup the aliases wrong? Do the scripts need to be owned by vpopmail or something? Thanks! Quinn - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] Backup and restore scripts
I've written a simple backup script that copies a list of files locally (attached, with restore script too). See therein for the files I've decided were important. Quinn restore.sh Description: Binary data backup.sh Description: Binary data On Sun, 05 Nov 2006 19:47:17 -0500, Jake Vickers wrote: In preparation for the roll-out of QTP-0.2, I am going through and updating the backup/restore scripts. In the new update, it will now be backing up your Squirrelmail user prefs and address books, as well as your old /etc/tcprules.d/tcp.smtp file, and all the new control files located in /var/qmail/control (such as your tap file, etc.). Is there anything else anyone can think of that it should be backing up from your old Toaster install? If so, please let me know! Thanks! - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
[qmailtoaster] 2006-11-06 02:17:42.679281500 ERR: /etc/courier/shared/index: Permission denied
I'm getting these errors in my imap4 logs: 2006-11-06 02:17:42.679281500 ERR: /etc/courier/shared/index: Permission denied I assume because I don't have any users using shared maildirs? Is there a way to turn off shared, or should I just ignore the errors? Thanks, Quinn - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
[qmailtoaster] Help! - failure notice
Help! Where does one begin to troubleshoot something like this? Quinn - Begin forwarded message - Subject: failure notice Date: 6 Nov 2006 14:54:34 - From: [EMAIL PROTECTED] To: [EMAIL PROTECTED] Hi. This is the qmail-send program at one.strangecode.com. I'm afraid I wasn't able to deliver your message to the following addresses. This is a permanent error; I've given up. Sorry it didn't work out. [EMAIL PROTECTED]: mail is looping --- Below this line is a copy of the message. Return-Path: [EMAIL PROTECTED] Received: (qmail 9221 invoked by uid 89); 6 Nov 2006 14:54:34 - Delivered-To: [EMAIL PROTECTED] Received: (qmail 9215 invoked by uid 89); 6 Nov 2006 14:54:34 - Received: by simscan 1.2.0 ppid: 9185, pid: 9210, t: 0.2091s scanners: attach: 1.2.0 clamav: 0.88.5/m:40/d:2153 Received: from unknown (HELO lovemachine.local.localdomain) ([EMAIL PROTECTED]@63.195.16.136) by one.strangecode.com with ESMTPA; 6 Nov 2006 14:54:34 - Date: Mon, 6 Nov 2006 06:54:27 -0800 From: Quinn Comendant [EMAIL PROTECTED] To: Jennifer Castoldi [EMAIL PROTECTED] Message-ID: [EMAIL PROTECTED] Subject: test A Mime-Version: 1.0 (GMessage framework 1.3.9) Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-Mailer: GyazMail version 1.3.9b5 asdf - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] Help! - failure notice
Humph! I had a valias pointing to an alias domain pointing back to the valias. Loop-d-loo. Q On Mon, 06 Nov 2006 09:22:27 -0700, Eric Shubes wrote: I dunno. Seriously! What causes a message to loop? domain configuration(s)? I'd start with DNS MX records, I suppose. Follow the route. Quinn Comendant wrote: Help! Where does one begin to troubleshoot something like this? Quinn - Begin forwarded message - Subject: failure notice Date: 6 Nov 2006 14:54:34 - From: [EMAIL PROTECTED] To: [EMAIL PROTECTED] Hi. This is the qmail-send program at one.strangecode.com. I'm afraid I wasn't able to deliver your message to the following addresses. This is a permanent error; I've given up. Sorry it didn't work out. [EMAIL PROTECTED]: mail is looping --- Below this line is a copy of the message. Return-Path: [EMAIL PROTECTED] Received: (qmail 9221 invoked by uid 89); 6 Nov 2006 14:54:34 - Delivered-To: [EMAIL PROTECTED] Received: (qmail 9215 invoked by uid 89); 6 Nov 2006 14:54:34 - Received: by simscan 1.2.0 ppid: 9185, pid: 9210, t: 0.2091s scanners: attach: 1.2.0 clamav: 0.88.5/m:40/d:2153 Received: from unknown (HELO lovemachine.local.localdomain) ([EMAIL PROTECTED]@63.195.16.136) by one.strangecode.com with ESMTPA; 6 Nov 2006 14:54:34 - Date: Mon, 6 Nov 2006 06:54:27 -0800 From: Quinn Comendant [EMAIL PROTECTED] To: Jennifer Castoldi [EMAIL PROTECTED] Message-ID: [EMAIL PROTECTED] Subject: test A Mime-Version: 1.0 (GMessage framework 1.3.9) Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-Mailer: GyazMail version 1.3.9b5 asdf -- -Eric 'shubes' - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
[qmailtoaster] bayes_* permissions
How do you guys keep reins on your /home/vpopmail/.spamassassin/* files? I find that after running sa-learn --sync, etc the bayes_toks file becomes root:root 600, and I get these errors in the spamd log: 2006-11-06 18:15:15.237817500 [2] info: spamd: connection from localhost [127.0.0.1] at port 47865 2006-11-06 18:15:15.244756500 [2] warn: bayes: cannot open bayes databases /home/vpopmail/.spamassassin/bayes_* R/O: tie failed: Permission denied 2006-11-06 18:15:15.258772500 [2] info: spamd: processing message [EMAIL PROTECTED] for [EMAIL PROTECTED]:89 2006-11-06 18:15:15.260484500 [2] warn: bayes: cannot open bayes databases /home/vpopmail/.spamassassin/bayes_* R/O: tie failed: Permission denied 2006-11-06 18:15:15.671482500 [2] warn: bayes: cannot open bayes databases /home/vpopmail/.spamassassin/bayes_* R/O: tie failed: Permission denied I tried setting chown vpopmail:vchkpw and setting chmod 666, but something keep setting it back to root:root. Huh? Q - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
[qmailtoaster] (repost) running sa-learn from valias
I'm trying to create an alias that pipes a message to sa-learn. I've created the alias: [EMAIL PROTECTED]/1 ~]$valias -s strangecode.com | grep spam [EMAIL PROTECTED] - |sa-learn --ham --no-sync [EMAIL PROTECTED] - |sa-learn --spam --no-sync That didn't work, so I tried this: [EMAIL PROTECTED]/1 ~]$valias -s strangecode.com | grep spam [EMAIL PROTECTED] - |/root/bin/learnham [EMAIL PROTECTED] - |/root/bin/learnspam And those scripts are something like: [EMAIL PROTECTED]/1 ~]$cat /root/bin/learnham #!/bin/sh sa-learn --spam --no-sync -D /tmp/learnspam.log And they work fine is fed spam directly... [EMAIL PROTECTED]/1 ~]$bin/learnspam EOF ...spam here... EOF [EMAIL PROTECTED]/1 ~]$head /tmp/learnspam.log [8532] dbg: logger: adding facilities: all ... Learned tokens from 1 message(s) (1 message(s) examined) So I assume I setup the aliases wrong? I tried setting the ownership of the scripts to vpopmail, playing with permissions. I see the messages I send to [EMAIL PROTECTED] in the queue. (So, a related qmail question: how do I tell what reason a message is in the queue?) Thanks! Quinn - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] bayes_* permissions
Well, good! At least I didn't do anything wrong. Do you have a cron job running spammassassin or sa-learn? If you're running sa-learn, you'll need to use the '-u vpopmail' and that should work. I do have a cron job, and I can fix that to run as user vpopmail. I've been trying to find a way to run spamassassin -D --lint as vpopmail though, and haven't been successful. Does anyone know of a way to do this? If not, I'd say that the basic toaster is broken (jmho) and needs a fix. I know you could try running with: sudo -u vpopmail spamassassin -D --lint That should work even though vpopmail doesn't have a shell. Quinn - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] bayes_* permissions
Whoops. Try -H. By default sudo does not modify the $HOME variable, leaving set to root... -H The -H (HOME) option sets the HOME environment variable to the homedir of the target user (root by default) as specified in passwd(5). By default, sudo does not modify HOME. Or, if you have your bayes_path and autowhitelist path set in your config, you can run spamassassin (spamc, spamd) with the -C option: -C path, --configpath=path, --config-file=path Path to standard configuration dir Q On Mon, 06 Nov 2006 19:08:02 -0700, Eric Shubes wrote: So, how do I get it to use /home/vpopmail instead of /root for these? I'm guessing that there might be something in local.cf I can set (similar to bayes_path), but I gotta go for now. - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
[qmailtoaster] MAIL env variable
On my RHEL 4 system, it comes with the MAIL variable set in /etc/profile: MAIL=/var/spool/mail/$USER What should this be set to for the qmail toaster? MAILDIR=$HOME/Maildir/ ? Q - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] bayes_* permissions
It's not necessary, but it's a pretty darned good idea. Are you running any periodical (cron) sync or expire options with sa-learn? Training mechanisms? I'm venturing to setup a setup within Horde/IMP so users can flag spam/ham message to help train the database. But I'm still a bit short in the know-how of executing scripts via valias (see my related thread). Configuring and tuning SA is a top priority for the QT in my opinion. Q On Mon, 06 Nov 2006 22:01:25 -0700, Eric Shubes wrote: I guess thing to know is that you don't want to run spamassassin (or sa-learn) as root. Must be as vpopmail user. Is that it? - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] .qmail-default
I was exploring this yesterday. I found the latest version of QmailAdmin does add/change/delete user's .qmail files. But I found a solution! Example for [EMAIL PROTECTED]: QmailAdmin will modify the following .qmail file (so if you edit this file vi CLI expect your changes to be overwritten/deleted): /home/vpopmail/domains/example.com/bob/.qmail But you can create a default .qmail file for this user that QmailAdmin will NOT overwrite here: /home/vpopmail/domains/example.com/.qmail-bob And they seem to work the same. I'm not totally sure how this works (I'm new to qmail) but it seems the files at example.com/.qmail-username work the same as /var/qmail/alias/.qmail-username. Can someone confirm? I was doing this because I needed to setup many .procmailrc scripts for our users. I created a tool to help add/edit/remove .procmailrc scripts for users via CLI. (And I assume it could be modified for maildrop?) I've attached it to this email to share. vprocmail goes somewhere convenient like /root/bin/vprocmail. And the two templates go here (rename them to begin with a dot): /home/vpopmail/domains/.procmailrc-template /home/vpopmail/domains/.qmail-user-template Q vprocmail.sh Description: Binary data qmail-user-template Description: Binary data procmailrc-template Description: Binary data On Tue, 7 Nov 2006 21:20:35 +0100 (CET), [EMAIL PROTECTED] wrote: Qmailadmin (at least older versions) tend to mesh with .qmail and undoing what i've done via CLI. - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] (repost) running sa-learn from valias
It's true. It is a better idea to deliver to a mailbox so you can save the messages if you ever need to retrain SA. I found my original problem now... /root/bin directory was not searchable by user vpopmail (chmod 700) so qmail-local could not execute the program. Thanks! Quinn On Tue, 07 Nov 2006 06:53:16 -0500, Jake Vickers wrote: Quinn Comendant wrote: I'm trying to create an alias that pipes a message to sa-learn. I've created the alias: [EMAIL PROTECTED]/1 ~]$valias -s strangecode.com | grep spam [EMAIL PROTECTED] - |sa-learn --ham --no-sync [EMAIL PROTECTED] - |sa-learn --spam --no-sync That didn't work, so I tried this: [EMAIL PROTECTED]/1 ~]$valias -s strangecode.com | grep spam [EMAIL PROTECTED] - |/root/bin/learnham [EMAIL PROTECTED] - |/root/bin/learnspam Sorry, I replied to you on the vpopmail mailing list. The maildrop and qmailadmin package have been modified so that you can use the automatic spam detection flag to learn SPAM from. When you recompile these packages, include the flag: --define 'spambox 1' and you will see a check box in qmailadmin that allows you to turn on spam detection. What this does is run that user's mail through the /etc/mail/mailfilter script, which will learn from spam that scores above 15 or so (don't remember what the default score is) as well as put it in the user's spam folder. If you want to use the separate email addresses like you listed above, leave them as valid email addresses and run a script on them in the background with cron, something like this: /usr/bin/sa-learn --spam /home/vpopmail/domains/v2gnu.com/jake/Maildir/.Spam/cur/* rm -rf /home/vpopmail/domains/v2gnu.com/jake/Maildir/.Spam/cur/* /usr/bin/sa-learn --spam /home/vpopmail/domains/v2gnu.com/jake/Maildir/.Spam/new/* rm -rf /home/vpopmail/domains/v2gnu.com/jake/Maildir/.Spam/new/* And then do the same thing for your ham mails, but use the --ham flag instead of the --spam flag for sa-learn. - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] (repost) running sa-learn from valias
Not a typical directory. I have a habit of creating a directory structure for each of my unix user accounts that does mirror typical unix directory structures. In /root/bin I put all the admin scripts that I create that are used by all administrators of the server. Also, on my Mac laptop, I have: /Users/q/bin - for local scripts and binary that only user q uses. /Users/q/src - source code, software downloads. /Users/q/etc - configuration files that I need to access. /Users/q/var/log - logs from scripts in ~/bin. It makes it much easier to backup and restore if I reinstall the OS (easier than putting your binaries and scripts into /usr/local/bin) but is only useful if you will be the only user that needs to access these scripts. Quinn On Tue, 07 Nov 2006 15:04:23 -0700, Eric Shubes wrote: Just out of curiosity, what is it that would be in a /root/bin directory? That's not a typical directory, is it? Quinn Comendant wrote: It's true. It is a better idea to deliver to a mailbox so you can save the messages if you ever need to retrain SA. I found my original problem now... /root/bin directory was not searchable by user vpopmail (chmod 700) so qmail-local could not execute the program. Thanks! Quinn On Tue, 07 Nov 2006 06:53:16 -0500, Jake Vickers wrote: Quinn Comendant wrote: I'm trying to create an alias that pipes a message to sa-learn. I've created the alias: [EMAIL PROTECTED]/1 ~]$valias -s strangecode.com | grep spam [EMAIL PROTECTED] - |sa-learn --ham --no-sync [EMAIL PROTECTED] - |sa-learn --spam --no-sync That didn't work, so I tried this: [EMAIL PROTECTED]/1 ~]$valias -s strangecode.com | grep spam [EMAIL PROTECTED] - |/root/bin/learnham [EMAIL PROTECTED] - |/root/bin/learnspam Sorry, I replied to you on the vpopmail mailing list. The maildrop and qmailadmin package have been modified so that you can use the automatic spam detection flag to learn SPAM from. When you recompile these packages, include the flag: --define 'spambox 1' and you will see a check box in qmailadmin that allows you to turn on spam detection. What this does is run that user's mail through the /etc/mail/mailfilter script, which will learn from spam that scores above 15 or so (don't remember what the default score is) as well as put it in the user's spam folder. If you want to use the separate email addresses like you listed above, leave them as valid email addresses and run a script on them in the background with cron, something like this: /usr/bin/sa-learn --spam /home/vpopmail/domains/v2gnu.com/jake/Maildir/.Spam/cur/* rm -rf /home/vpopmail/domains/v2gnu.com/jake/Maildir/.Spam/cur/* /usr/bin/sa-learn --spam /home/vpopmail/domains/v2gnu.com/jake/Maildir/.Spam/new/* rm -rf /home/vpopmail/domains/v2gnu.com/jake/Maildir/.Spam/new/* And then do the same thing for your ham mails, but use the --ham flag instead of the --spam flag for sa-learn. -- -Eric 'shubes' - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] bayes_* permissions
Actually I think I was wrong on this. For sa-learn, -C is for the *distributed* config files (i.e. /usr/share/spamassassin)... -C path, --configpath=path, --config-file=path Use the specified path for locating the distributed configuration files. Ignore the default directories (usually /usr/share/spamassassin or similar). --siteconfigpath=path Use the specified path for locating site-specific configuration files. Ignore the default directories (usually /etc/mail/spamassassin or similar). Quinn On Mon, 6 Nov 2006 18:42:48 -0800, Quinn Comendant wrote: Whoops. Try -H. By default sudo does not modify the $HOME variable, leaving set to root... -H The -H (HOME) option sets the HOME environment variable to the homedir of the target user (root by default) as specified in passwd(5). By default, sudo does not modify HOME. Or, if you have your bayes_path and autowhitelist path set in your config, you can run spamassassin (spamc, spamd) with the -C option: -C path, --configpath=path, --config-file=path Path to standard configuration dir Q On Mon, 06 Nov 2006 19:08:02 -0700, Eric Shubes wrote: So, how do I get it to use /home/vpopmail instead of /root for these? I'm guessing that there might be something in local.cf I can set (similar to bayes_path), but I gotta go for now. - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
[qmailtoaster] disabling CHKUSER_RCPT_MX?
Is there an easy way to disable CHKUSER_RCPT_MX or do I need to recompile chkuser? It seems this one should be disabled by default. It is pretty annoying to be sending an email to a couple dozen people and not be able to send because one domain is wrong -- then having to go over the list manually with your human eye-balls. That's the job of the computer tell me which domain is missing MX records (even if via a bounce message). Quinn - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] disabling CHKUSER_RCPT_MX?
Ok, that was easy enough. Actually instead of modifying the sleep length, I found it more convenient to just stop the rpmbuild job (control z) and edit chkuser_settings.h, the restart the rpmbuild job (fg return). Regarding disabling CHKUSER_RCPT_MX. And regrets to doing so? Works great for me, but I'm not completely aware if this opens any security exploits. Quinn On Wed, 8 Nov 2006 14:56:26 +0800, Bill Kwok wrote: You have to rebuild qmail. See the procedure provided by Nick Hemmesch: Nick Hemmesch wrote: The easy way: rpm -Uvh qmail-toaster*.src.rpm cd /usr/src/redhat/SPECS (assuming you are using CentOS 4) edit qmail-toaster.spec find 'sleep 5' (should be line 606) change 5 to 300 (5 seconds to 300 seconds) rpmbuild -bb --with cnt40 qmail-toaster.spec When the build process pauses, make your changes. You have 5 minutes. edit /usr/src/redhat/BUILD/qmail- 1.03/chkuser_settings.h as you wish Save your changes and wait for the 300 seconds to expire and watch it build. cd ../RPMS/i386/ qmailctl stop rpm -Uvh --replacefiles --replacepkgs qmail-*.rpm qmailctl start On 11/8/06, Lucian Cristian [EMAIL PROTECTED] wrote: Quinn Comendant wrote: Is there an easy way to disable CHKUSER_RCPT_MX or do I need to recompile chkuser? It seems this one should be disabled by default. It is pretty annoying to be sending an email to a couple dozen people and not be able to send because one domain is wrong -- then having to go over the list manually with your human eye-balls. That's the job of the computer tell me which domain is missing MX records (even if via a bounce message). Quinn - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] I couldn't disable it even if I disabled the lines in chkuser_settings.h and recompiled it. - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] -- Best regards, Bill - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] RBL blocks my roaming users
Nice work guys! I really look forward to this patch being included in the RPMs. I had this problem with two clients today in fact. I had to disable the list.dsbl.org in order for them to send mail from their comcast network. Thanks! Q On Wed, 8 Nov 2006 14:39:57 -0800, Erik Espinoza wrote: I'll have this patched and on the site later this week. - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
[qmailtoaster] forwarding mail for real users to their virtual counterpart
Since I've migrated all my users email into the toaster there remains about 150 real users (/etc/passwd, /home/username, etc) with websites or ftp access, etc. What is the best way to forward mail that is sent directly to this user to their virtual counterpart? Mail to these users will continue to be sent when warnquota runs and they are over quota or when they have cron scripts run, just for two examples. If I run warnquota now, I see this in /var/log/qmail/send/current: 2006-11-10 03:05:44.290842500 starting delivery 130: msg 12110977 to local [EMAIL PROTECTED] 2006-11-10 03:05:44.290851500 status: local 1/10 remote 0/60 2006-11-10 03:05:44.294578500 delivery 130: deferral: Unable_to_chdir_to_maildir._(#4.2.1)/ This message to user mmartin should actually be forwarded to the virtual user [EMAIL PROTECTED] and certainly NOT [EMAIL PROTECTED] as qmail-local is attempting to. Ideas? With sendmail I would have just added a /home/mmartin/.forward file. Quinn - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
[qmailtoaster] forwarding mail for real users to their virtual counterpart
Since I've migrated all my users email into the toaster there remains about 150 real users (/etc/passwd, /home/username, etc) with websites or ftp access, etc. What is the best way to forward mail that is sent directly to this user to their virtual counterpart? Mail to these users will continue to be sent when warnquota runs and they are over quota or when they have cron scripts run, just for two examples. If I run warnquota now, I see this in /var/log/qmail/send/current: 2006-11-10 03:05:44.290842500 starting delivery 130: msg 12110977 to local [EMAIL PROTECTED] 2006-11-10 03:05:44.290851500 status: local 1/10 remote 0/60 2006-11-10 03:05:44.294578500 delivery 130: deferral: Unable_to_chdir_to_maildir._(#4.2.1)/ This message to user mmartin should actually be forwarded to the virtual user [EMAIL PROTECTED] and certainly NOT [EMAIL PROTECTED] as qmail-local is attempting to. With sendmail I would have just added a /home/mmartin/.forward file. I tried adding /var/qmail/alias/.qmail-mmartin -- but didn't work. Ideas? Quinn - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] forwarding mail for real users to their virtual counterpart
A related error with messages intended for [EMAIL PROTECTED] --- Hi. This is the qmail-send program at two.strangecode.com. I'm afraid I wasn't able to deliver your message to the following addresses. This is a permanent error; I've given up. Sorry it didn't work out. [EMAIL PROTECTED]: Sorry, I couldn't find any host named localhost.mailserver.strangecode.com. (#5.1.2) --- Below this line is a copy of the message. [...] On Fri, 10 Nov 2006 09:57:26 -0800, Quinn Comendant wrote: With sendmail I would have just added a /home/mmartin/.forward file. I tried adding /var/qmail/alias/.qmail-mmartin -- but didn't work. Ideas? - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] forwarding mail for real users to their virtual counterpart
I'm still trying to troubleshoot this... On a qmail system, what is the difference between these two? echo hello | mail -s 'testing1' root; echo hello | formail -A 'Subject: testing2' | sendmail root; Q On Fri, 10 Nov 2006 10:00:53 -0800, Quinn Comendant wrote: Return-Path: [EMAIL PROTECTED] Delivered-To: [EMAIL PROTECTED] From [EMAIL PROTECTED] Fri Nov 10 18:02:24 2006 Return-Path: [EMAIL PROTECTED] Delivered-To: [EMAIL PROTECTED] Received: (qmail 23776 invoked by uid 89); 10 Nov 2006 18:02:24 - Delivered-To: [EMAIL PROTECTED] Received: (qmail 23769 invoked by uid 89); 10 Nov 2006 18:02:24 - DomainKey-Status: no signature Received: by simscan 1.2.0 ppid: 23659, pid: 23665, t: 5.6275s scanners: attach: 1.2.0 clamav: 0.88.5/m:41/d:2183 spam: 3.1.7 X-Spam-Checker-Version: SpamAssassin 3.1.7 (2006-10-05) on mailserver.strangecode.com X-Spam-Level: X-Spam-Status: No, score=-2.6 required=3.2 tests=BAYES_00,DK_POLICY_SIGNSOME autolearn=ham version=3.1.7 Received: from unknown (HELO ns1.qmailtoaster.com) (38.99.66.144) by mailserver.strangecode.com with (DHE-RSA-AES256-SHA encrypted) SMTP; 10 Nov 2006 18:02:18 - Received-SPF: pass (mailserver.strangecode.com: SPF record at qmailtoaster.com designates 38.99.66.144 as permitted sender) Received: (qmail 811 invoked by uid 89); 10 Nov 2006 18:02:05 - Mailing-List: contact [EMAIL PROTECTED]; run by ezmlm Precedence: bulk List-Post: mailto:qmailtoaster-list@qmailtoaster.com List-Help: mailto:[EMAIL PROTECTED] List-Unsubscribe: mailto:[EMAIL PROTECTED] List-Subscribe: mailto:[EMAIL PROTECTED] Reply-To: qmailtoaster-list@qmailtoaster.com Delivered-To: mailing list qmailtoaster-list@qmailtoaster.com Received: (qmail 805 invoked by uid 89); 10 Nov 2006 18:02:05 - Received-SPF: none (ns1.qmailtoaster.com: domain at strangecode.com does not designate permitted sender hosts) Date: Fri, 10 Nov 2006 10:00:53 -0800 From: Quinn Comendant [EMAIL PROTECTED] To: qmailtoaster-list@qmailtoaster.com Message-ID: [EMAIL PROTECTED] In-Reply-To: [EMAIL PROTECTED] References: [EMAIL PROTECTED] Mime-Version: 1.0 (GMessage framework 1.3.9) Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-Mailer: GyazMail version 1.3.9b5 Subject: Re: [qmailtoaster] forwarding mail for real users to their virtual counterpart A related error with messages intended for [EMAIL PROTECTED] --- Hi. This is the qmail-send program at two.strangecode.com. I'm afraid I wasn't able to deliver your message to the following addresses. This is a permanent error; I've given up. Sorry it didn't work out. [EMAIL PROTECTED]: Sorry, I couldn't find any host named localhost.mailserver.strangecode.com. (#5.1.2) --- Below this line is a copy of the message. [...] On Fri, 10 Nov 2006 09:57:26 -0800, Quinn Comendant wrote: With sendmail I would have just added a /home/mmartin/.forward file. I tried adding /var/qmail/alias/.qmail-mmartin -- but didn't work. Ideas? - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
[qmailtoaster] qt addition
This might be useful to add to the toaster: http://www.interazioni.it/opensource/chkuser/documentation/logging_summary.html Q - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
[qmailtoaster] more bayes permissions woes SA SQL evangelism
As clever as I was running `sudo -H -u vpopmail sa-learn --sync` somehow my bayes_tok and bayes_journal files continue to be changed to root ownership. I will continue to try to find why this is. But for this and other reasons I am exploring the bayes SQL option. I came across this in the ANNOUNCE: SpamAssassin 3.1.0 available! email: SQL storage is now recommended for Bayes, instead of DB_File. http://mail-archives.apache.org/mod_mbox/spamassassin-announce/200509.mbox/[EMAIL PROTECTED] I just wanted to wanted to mention this because I know on the SA wiki it says something about bayes SQL being in beta but that is apparently nonsense. The bayes SQL engine can do per-user bayes data (which is more accurate) which I am very interested in. I've also been using simscan's spamc user setting turned on with SA SQL per-user preferences. That works great...although I haven't found a fantastic web-based control panel yet. The limitation of multiple rcpts bypassing any user preferences seems to be occurring for about 11% of all emails: [EMAIL PROTECTED]/0 ~]$egrep 'user=[^,]+@' spamd/current | wc -l 100533 [EMAIL PROTECTED]/0 ~]$egrep 'user=clamav' spamd/current | wc -l 11154 We might explore these SQL options with spamassassin and consider the viability of having the toaster use them by default. Quinn - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] forwarding mail for real users to their virtual counterpart
Well you guys never answered my question, so I had to learn something on my own again (dang) ;-) I found a solution! Mail to local users STILL is delivered to local users! (Whaaa?) Yeah, mail to [EMAIL PROTECTED] or `echo 'hello' | mail j` actually sends mail to a local user. The user would still be able to check this mail using their /etc/passwd file and old username if vpopmail was compiled to allow it, but currently it wont: system passwords = OFF --disable-passwd (default) So mail is delivered into ~/Maildir for each user. But they cannot check this mail. So, we must do a forward. To forward a real local user to a remote address, you give the user a ~/.qmail file. This is the qmail-version of the .forward file. So, for example... [EMAIL PROTECTED]/0 control]$cat /home/j/.qmail [EMAIL PROTECTED] It *does not work* to put the qmail file in: /var/qmail/alias/.qmail-j because this place only works for users that don't exist (local or virtual). So now I will make a script to go through all local user home directories, and create the necessary Maildir and .qmail file and direct to their main email address (e.g. /home/j/.qmail - [EMAIL PROTECTED]). Quinn On Fri, 10 Nov 2006 13:50:44 -0800, Quinn Comendant wrote: I'm still trying to troubleshoot this... On a qmail system, what is the difference between these two? echo hello | mail -s 'testing1' root; echo hello | formail -A 'Subject: testing2' | sendmail root; Q On Fri, 10 Nov 2006 10:00:53 -0800, Quinn Comendant wrote: Return-Path: [EMAIL PROTECTED] Delivered-To: [EMAIL PROTECTED] From [EMAIL PROTECTED] Fri Nov 10 18:02:24 2006 Return-Path: [EMAIL PROTECTED] Delivered-To: [EMAIL PROTECTED] Received: (qmail 23776 invoked by uid 89); 10 Nov 2006 18:02:24 - Delivered-To: [EMAIL PROTECTED] Received: (qmail 23769 invoked by uid 89); 10 Nov 2006 18:02:24 - DomainKey-Status: no signature Received: by simscan 1.2.0 ppid: 23659, pid: 23665, t: 5.6275s scanners: attach: 1.2.0 clamav: 0.88.5/m:41/d:2183 spam: 3.1.7 X-Spam-Checker-Version: SpamAssassin 3.1.7 (2006-10-05) on mailserver.strangecode.com X-Spam-Level: X-Spam-Status: No, score=-2.6 required=3.2 tests=BAYES_00,DK_POLICY_SIGNSOME autolearn=ham version=3.1.7 Received: from unknown (HELO ns1.qmailtoaster.com) (38.99.66.144) by mailserver.strangecode.com with (DHE-RSA-AES256-SHA encrypted) SMTP; 10 Nov 2006 18:02:18 - Received-SPF: pass (mailserver.strangecode.com: SPF record at qmailtoaster.com designates 38.99.66.144 as permitted sender) Received: (qmail 811 invoked by uid 89); 10 Nov 2006 18:02:05 - Mailing-List: contact [EMAIL PROTECTED]; run by ezmlm Precedence: bulk List-Post: mailto:qmailtoaster-list@qmailtoaster.com List-Help: mailto:[EMAIL PROTECTED] List-Unsubscribe: mailto:[EMAIL PROTECTED] List-Subscribe: mailto:[EMAIL PROTECTED] Reply-To: qmailtoaster-list@qmailtoaster.com Delivered-To: mailing list qmailtoaster-list@qmailtoaster.com Received: (qmail 805 invoked by uid 89); 10 Nov 2006 18:02:05 - Received-SPF: none (ns1.qmailtoaster.com: domain at strangecode.com does not designate permitted sender hosts) Date: Fri, 10 Nov 2006 10:00:53 -0800 From: Quinn Comendant [EMAIL PROTECTED] To: qmailtoaster-list@qmailtoaster.com Message-ID: [EMAIL PROTECTED] In-Reply-To: [EMAIL PROTECTED] References: [EMAIL PROTECTED] Mime-Version: 1.0 (GMessage framework 1.3.9) Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-Mailer: GyazMail version 1.3.9b5 Subject: Re: [qmailtoaster] forwarding mail for real users to their virtual counterpart A related error with messages intended for [EMAIL PROTECTED] --- Hi. This is the qmail-send program at two.strangecode.com. I'm afraid I wasn't able to deliver your message to the following addresses. This is a permanent error; I've given up. Sorry it didn't work out. [EMAIL PROTECTED]: Sorry, I couldn't find any host named localhost.mailserver.strangecode.com. (#5.1.2) --- Below this line is a copy of the message. [...] On Fri, 10 Nov 2006 09:57:26 -0800, Quinn Comendant wrote: With sendmail I would have just added a /home/mmartin/.forward file. I tried adding /var/qmail/alias/.qmail-mmartin -- but didn't work. Ideas? - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED
[qmailtoaster] httpd toaster.conf depreciated line?
What's this line in /etc/httpd/conf/toaster.conf do? ScriptAlias /mail/ /usr/share/toaster/cgi-bin/ The directory /usr/share/toaster/cgi-bin/ doesn't exist for me. Oh, I know...is it qadmin? I never installed that. Also, not sure how this applied to other distros, but on RHEL 4 the usual place to put a httpd conf file is inside the /etc/httpd/conf.d/ directory. All files in there are loaded automatically, so adding a line to httpd.conf isn't necessary. Quinn - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] using (dot) .qmail instead of simscan
I too am confronting the issues with simscan not knowing the actual destination user account. I haven't setup SQL bayes (yet -- I hope to soon) but I am using per-user SQL user prefs. I have been living with this limitation because blocking spam at the SMTP level is very important (IMHO) both for simply keeping 90% of incoming mail off the server, and also for informing senders that their messages were not received (instead of dropping them into a void). The solution I've been considering is to run two instances of spamassassin: one through simscan, with a global bayes db blocking messages scoring about XX (I'm using 8 actually), and a second instance executed after mail has entered the system (at the mail-delivery level) that uses per-user bayes and prefs. Yes, scanning some messages twice. The disadvantages of this I can think of are: - more server load - more complex administration - bayes may not be trained as accurately because most mail will be ham (?) The advantages: + SMTP-level blocking of most spam + per-user bayes and prefs + two layers of SA bayes filtering might catch more spam (?) Maybe the simcan-level SA can run all the non-bayes tests, and use mailfilter to rewrite the X-Spam-* headers as X-Spam-A-*, while the qmail-level SA can run nothing BUT the bayes tests and have its headers rewriten as to X-Spam-B-*, the add the scores together into X-Spam-Status. This would help server load by splitting the work between the two SAs, and you could see headers for each. I'm sure a very clever (and simple, as opposed to the above) solution to this soon. DSPAM support might help! Specific comments: So I found a solution that works. But I'm not sure if there are negative implications in doing this (i.e. Performance issues, dropped emails, etc). The load on SA will be the same but I think the load on all the other qmail processes will increase. 2. Created a .qmail file in my account folder (/home/vpopmail/domains/somedomain.com/someuser/) that contains the following: Be aware this file will be overwritten or deleted by QmailAdmin when the user edits any of their forwards/autoresponder settings! It would be better to place the file at: /home/vpopmail/domains/somedomain.com/.qmail-someuser |/usr/bin/spamc -u [EMAIL PROTECTED] | /var/qmail/bin/preline /usr/bin/maildrop -A 'Content-Filter: maildrop-toaster' /etc/mail/mailfilter It sure would be easier if you could just have one global .qmail file. I'm not sure how to do that, but you could use $(echo $RECIPIENT | sed -r 's/[^-]+-//') in place of [EMAIL PROTECTED] It seems to work great. I just wonder once I put it into production with over 100 domains how well it will work. I know I'll have to write some scripts to update everyone's .qmail file, but that is fine as long as I know it will work under a load. Let us know how it works! Quinn - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] question regarding vpopmail-toaster
Hi Manoj Changing these options will enable vpopmail to authenticate against users in /etc/passwd. I haven't done this myself, but as I understand it, vpopmail will then be able to find where to deliver mail by getting the user's home path from /etc/passwd and delivering mail to ~/Maildir instead of into the virtual users directories under /home/vpopmail/domains. I'm not 100% certain on this. Also, if users don't have mail stored under ~/Maildir (in Maildir++ format) you will need to migrate mail to these user maildirs. What kind of mail system are you migrating from? I recently did a complex migration from a 6-year-old sendmail server to qmail toaster so I know all the tricks. ;) Quinn - Strangecode :: Internet Consultancy http://www.strangecode.com/ +1 530 624 4410 On Mon, 13 Nov 2006 12:05:52 -0800, Erik Espinoza wrote: http://www.mail-archive.com/qmailtoaster-list@qmailtoaster.com/msg09071.html Install the vpopmail rpm and edit the spec file. Under configure change --disable-passwd to --enable-passwd and rebuild the rpm. Continue as per usual install. Since this will modify the vpopmail libs, please ensure that you recompile the courier packages as well. Or better yet, start from scratch. Erik On 11/13/06, Manoj Katwal [EMAIL PROTECTED] wrote: Hi Erik, Thanks again for the super prompt reply. I am comfortable with modifyingthe rpm spec files. I will follow your directions and try to find out the archive that explains the trick. Best regards, M Katwal - Original Message - From: Erik Espinoza [EMAIL PROTECTED] To: qmailtoaster-list@qmailtoaster.com Sent: Monday, November 13, 2006 11:21 AM Subject: Re: [qmailtoaster] question regarding vpopmail-toaster Hello Manoj Thank you for your prompt reply. Is there a way we can tweak vpopmail so that I can use existing local users without having to create new users? OR is it possible to migrate all of my users to vpopmail users without having to change their password and still be able to manage all of my users that would point the primary domain (by creating new thru vpopmail)? Tweaking vpopmail to use local users is fairly simple, if you are comfortable with modifying rpm spec files. I think Quinn sent the options that need to be changed. I'll dig it up when I get a chance, or perhaps you can check out the archive. It was literally in the last two days or so. I know that Jake has a few scripts to convert local users to vpopmail users, so maybe he'll chime in on that one. any help or suggestion is appreciated. Thanks. No Problem. - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] [Fwd: [simscan] [PATCH] Updated greylisting patch for simscan 1.2]
+1 Yay! Greylisting! Quinn On Mon, 13 Nov 2006 12:20:20 -0700, Eric Shubes wrote: EE, What are the chances of including this patch in the basic simscan-toaster? While I'm inclined to believe that greylisting is best implemented at the firewall, what are the drawbacks to having it in the toaster? Original Message Subject: [simscan] [PATCH] Updated greylisting patch for simscan 1.2 Date: Mon, 13 Nov 2006 20:10:55 +0100 From: Florian G. Pflug [EMAIL PROTECTED] Reply-To: [EMAIL PROTECTED] To: [EMAIL PROTECTED] Hi I've updates the greylisting patch to simscan 1.2 It now uses log_message log initial blocking, and the first successfull attempt by a sender. greetings, Florian Pflug !DSPAM:4558c2c627411592547952! -- -Eric 'shubes' - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] question regarding vpopmail-toaster
Most certainly. I will do it when I have a free afternoon -- although those are getting rare these days. I also have a collection of shell and perl scripts (some quite large) I used to automate my sendmail-qmail transfer, although any who uses them will most certainly need to read and fully understand them before trusting them with their data. I'm happy to contribute, but would like to clean them up slightly and provide a disclaimer. ;P Quinn On Mon, 13 Nov 2006 14:13:32 -0700, Eric Shubes wrote: There is a placeholder on the wiki for upgrading from sendmail. Would you care to get the content started? - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] Need help with spam
I'm not sure about your specific environment, but in my experience the things that helped me the most in blocking spam are: - enable network tests - enable the URIDNSBL plugin (init.pre) - using sa-update with the spamassassin and SARE rule sets. The SARE rules helped the most with stock quote spams. I have most of the other plugins running, as well as having installed Pyzor and FuzzyOCR. I'm pretty happy so far! The one thing I would want is better spam processing performance. If a huge wash of spam hits the server, the server load goes up to 2 or 3 (shouldn't happen on a dual-core 3.2GHz receiving as little mail as we do). Here is the output from the sa-stats program (http://www.rulesemporium.com/programs/sa-stats-1.0.txt) from my server for the past 24 hours: Email: 5034 Autolearn: 417 AvgScore: 12.18 AvgScanTime: 6.02 sec Spam: 3518 Autolearn: 341 AvgScore: 18.24 AvgScanTime: 6.11 sec Ham: 1516 Autolearn:76 AvgScore: -1.89 AvgScanTime: 5.79 sec Time Spent Running SA: 8.41 hours Time Spent Processing Spam:5.97 hours Time Spent Processing Ham: 2.44 hours TOP SPAM RULES FIRED -- RANKRULE NAME COUNT %OFMAIL %OFSPAM %OFHAM -- 1HTML_MESSAGE 279669.47 79.48 46.24 2URIBL_BLACK 157732.20 44.832.90 3RCVD_IN_SORBS_DUL153030.91 43.491.72 4URIBL_JP_SURBL 138927.59 39.480.00 5RCVD_IN_NJABL_DUL138728.01 39.431.52 6MY_CID_AND_STYLE 136227.10 38.720.13 7SARE_GIF_ATTACH 133527.55 37.953.43 8EXTRA_MPART_TYPE 122924.89 34.931.58 9TVD_FW_GRAPHIC_ID1 120123.86 34.140.00 10PART_CID_STOCK 119723.78 34.030.00 11MY_CID_ARIAL_STYLE 114122.67 32.430.00 12MY_CID_AND_ARIAL2114122.69 32.430.07 13URIBL_OB_SURBL 102720.44 29.190.13 14MIME_HTML_ONLY 100422.77 28.549.37 15SARE_GIF_STOX 96319.19 27.370.20 16URIBL_SC_SURBL93718.63 26.630.07 17HTML_IMAGE_ONLY_2882716.71 23.510.92 18URIBL_WS_SURBL80616.29 22.910.92 19URIBL_SBL 79315.85 22.540.33 20PART_CID_STOCK_LESS 68113.53 19.360.00 -- TOP HAM RULES FIRED -- RANKRULE NAME COUNT %OFMAIL %OFSPAM %OFHAM -- 1HTML_MESSAGE 70169.47 79.48 46.24 2NO_REAL_NAME 66514.882.39 43.87 3MIME_HTML_ONLY14222.77 28.549.37 4BAYES_00 130 2.740.238.58 5AWL 128 3.060.748.44 6HTML_FONT_BIG 128 9.249.588.44 7SPF_HELO_PASS 59 4.594.893.89 8HTML_IMAGE_RATIO_0253 2.822.533.50 9SARE_UNI 52 1.230.283.43 10SARE_GIF_ATTACH5227.55 37.953.43 11INFO_TLD 50 3.082.983.30 12HTML_TAG_EXIST_TBODY 45 1.150.372.97 13URIBL_BLACK4432.20 44.832.90 14MISSING_HB_SEP 41 1.611.142.70 15USER_IN_WHITELIST 35 0.700.002.31 16UNPARSEABLE_RELAY 35 3.323.752.31 17EMPTY_MESSAGE 32 1.130.712.11 18FORGED_RCVD_HELO 27 3.954.891.78 19RCVD_IN_SORBS_DUL 2630.91 43.491.72 20BAYES_50 26 0.870.511.72 -- Quinn On Mon, 13 Nov 2006 15:24:55 -0600, Ryan Gibbons wrote: My server (not just my domain) is getting hit hard with spam related to stock quotes. It is plan text, no links no html, and of course the envlope changes each time. I have go through with sa-learn and try to mark them individually but they are still getting through, some are even being learned as ham b/c they are
RE: [qmailtoaster] upgrade script
Maybe doing in drugs is worth trying, maybe it imporove the carefullness. ;P Q On Mon, 13 Nov 2006 18:15:16 +0100, David Sánchez Martín wrote: Certainy, out alert system, I thinks BTW i'm not in drugs, just typed uncarefully :-D - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] Need help with spam
No, it is spamassassin-toaster. I just modified these two lines in sa-stats:
if (!defined $LOG_DIR) { $LOG_DIR=/var/log/qmail/spamd }
if (!defined $FILE) { $FILE='^current$' } # regex
It seems to work though.
Quinn
On Mon, 13 Nov 2006 19:12:02 -0500, Jake Vickers wrote:
Not to be off-topic Quinn, but did you install SA from source? I
thought the sa-stats.pl script couldn't be used since Qmail doesn't
use syslog time.
-
QmailToaster hosted by: VR Hosted http://www.vr.org
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] Need help with spam
Good to know. I haven't explored to much, but I'll start by setting use_pyzor 0 and seeing if the scan time speeds up. My AvgScanTime is roughly 3x as much as yours. What is your SA configuration? Plugins? local.cf? Why so fast? Q On Tue, 14 Nov 2006 01:21:13 +0100, Philip Nix Guru wrote: Email: 117563 Autolearn: 27505 AvgScore: 8.43 AvgScanTime: 1.90 sec Spam: 70393 Autolearn: 15034 AvgScore: 14.18 AvgScanTime: 1.84 sec Ham: 47170 Autolearn: 12471 AvgScore: -0.16 AvgScanTime: 1.99 sec - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] Suexec apache2 qmailadmin
Jeremy Suexec follows a stringent set of criteria before it will execute a CGI. Check this list of 20 criterion and see if you've configured qmailadmin to pass all of them: http://httpd.apache.org/docs/2.0/suexec.html#model Quinn - Strangecode :: Internet Consultancy http://www.strangecode.com/ +1 530 624 4410 On Mon, 13 Nov 2006 20:07:04 -0600, Jeremy Runner wrote: That didn't work. I think you have to set SuexecUserGroup to which user you want to have access but this is set in the VirtualHost directive. I found this link but I'm not sure if it applies. http://www.shupp.org/toaster/trustix_notes.eml.html Quinn Comendant wrote: Do you know if it is possible to disable suexec for one specific site? In my opinion it is safe to run qmailadmin under user apache/www/nobody. Otherwise, it should work to copy the /usr/share/qmailadmin directory to /var/www/qmailadmin and adjust the paths in /etc/httpd/conf/toaster.conf accordingly. I don't think suexec will let you run it through a symlink. Quinn - Strangecode :: Internet Consultancy http://www.strangecode.com/ +1 530 624 4410 On Mon, 13 Nov 2006 19:05:48 -0600, Jeremy Runner wrote: Now that I have qmailtoaster running and doing so well, I'm trying to get qmailadmin working. I have apache2 configured with suexec. All cgi scripts have to be in /var/www and a virtual host has to be configured to set SuexecUserGroup to run cgi scripts. How can I get qmailadmin working in this environment so that it will be available for all virtual domains I have and not just one. Hope I'm not too confusing. - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] using (dot) .qmail instead of simscan
It should work the same as the normal .qmail file. Try something simple, just to be sure the file works. Create a .qmail-username file with the following for testing: [EMAIL PROTECTED] Send an email to username and see if the message is forwarded. Also try fixing the perms on this file: chown vpopmail:vchkpw .qmail-username chmod 600 .qmail-username Q On Tue, 14 Nov 2006 08:24:19 -0600, Matt Decker wrote: I tried your suggestion above and it didn't work for me. Do I need to modify the statement below to work in this file? I modified my mailfilter script to point to the correct mail folder for delivery (it uses `pwd` to get the current folder, so it won't work right unless you append the username to the end of the path) which didn't work either. Just asking if .qmail-someuser should have a different format than the one below. Any clue? |/usr/bin/spamc -u [EMAIL PROTECTED] | /var/qmail/bin/preline /usr/bin/maildrop -A 'Content-Filter: maildrop-toaster' /etc/mail/mailfilter - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] using (dot) .qmail instead of simscan
The current version of qmailadmin doesn't do this for me. What version are you running? Have you customized the install at all via qmailadmin-toaster.spec? Quinn On Tue, 14 Nov 2006 08:16:03 -0600, Matt Decker wrote: Whenever someone updates their password their folder location is appended to the .qmail file which causes them to get double emails. Is this corrected in the new version? I basically worked around this by creating my own password change PHP script. - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] Suexec apache2 qmailadmin
Jeremy Runner wrote:
I'm using Virtualmin to do web hosting. It creates the httpd.conf as
follows using suexec.
Do you have shell access to the machine (or will virtualmin let you) change
this VirthostHost to something more custom? Be warned that VirtualMin might
overwrite your hand-edited changes should you attempt to manage the server
using both methods. Not sure how to deal with your suexec issue yet, but to
serve an application (like qmailadmin) to multiple clients, I would recommend
something like the following.
Set XXX.XXX.XXX.XXX to your IP (or preferably a unique IP so you can generate a
self-signed certificate for all domains).
VirtualHost XXX.XXX.XXX.XXX:80
ServerName mailserver.yourdomain.com:80
ServerAlias mailserver.clientdomain1.com:80
ServerAlias mailserver.clientdomain2.com:80
ServerAlias mailserver.clientdomain3.com:80
# ...etc
RewriteEngine on
RewriteRule ^/+$ /qmailadmin/index.cgi [R]
Directory /usr/share/qmailadmin
AddHandler cgi-script .cgi
AddHandler cgi-script qmailadmin
DirectoryIndex index.cgi qmailadmin index.html
Options +Indexes FollowSymLinks +ExecCGI
Order allow,deny
Allow from all
/Directory
/VirtualHost
All scripts must reside in /home/{somedomain}.
Why is that? I'd be inclined to put them in
/home/vpopmail/domains/{somedomain}/ (but what do I know?).
No way! Keep your mail system seperate from your web system. Some day you may
need to move your qmail toaster to a seperate machine and that will be very
easy if you don't mix hosted sites with your domains.
Suexec requires CGI directories to be within a couple levels of the root path
it was compiled with (I assume yours was /home) so you must keep sites under
/home/site or /home/username/sitename.
Is there any way to get virtualmin (or whatever it is that requires it) to
require /home/vpopmail/domains/{somedomain} instead of simply
/home/{somedomain}?
What does your /etc/httpd/conf/toaster.conf say? Shouldn't they all pick
this up and run the scripts from /usr/share/toaster/htdocs/scripts/ ?
I agree, with the toater.conf, this should just simply work if the
toaster.conf is in fact included by the server. Keep in mind that toaster.conf
is included by apache into the global scope, not for any particular
VirtualHost, so the domain that it might need to be accessed with is the
default hostname configured into apache's httpd.conf (the ServerName directive
that is not within a VirtualHost directive).
If I put the scripts in
a folder belonging to that domain, only that domain will be able to use
it. I would like to be able to run the qmailadmin scripts from all
domains but I haven't figured out how to make it work yet with suexec.
Did you check that list of 20 requirements before suexec works? Your answer
lies there I reckon.
It's late here so I apologize if I'm rambling.
Quinn
-
QmailToaster hosted by: VR Hosted http://www.vr.org
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
[qmailtoaster] Fwd: fyi: spamhaus' SBL-XBL dnsbl being replaced by ZEN
New spamhaus dnsbl: http://www.spamhaus.org/zen/ Q - Begin forwarded message - Subject: fyi: spamhaus' SBL-XBL dnsbl being replaced by ZEN Date: Wed, 15 Nov 2006 11:51:02 -0800 From: snowcrash+spamassassin [EMAIL PROTECTED] To: users@spamassassin.apache.org http://www.spamhaus.org/zen/ steve linford of spamhaus has recommended that people switch now: Is there any reason not to change? None, I advise everyone to change now. The SBL-XBL zone will continue to exist for some time but will not of course contain the new PBL DNSBL and will not contain other future DNSBLs we may release. ZEN is designed to be safely hard-coded into spam filter appliances and commercial filters. i presume this will have effects on the SBL- XBL- related rules here. - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] qtp feature suggestion
I thought about this, stopped thinking about it, now am thinking about it again. In /etc/php.ini there is a config option: sendmail_path = Which can be set to a shell wrapper script: #!/bin/sh sed s/\r\n?/\n/g | qmail-inject Which should work in all cases. Maybe. You would hope so. There are other reasons to use one of the more elaborate replacements for qmail-inject: handling not just bad line endings (and again, I'm not even sure this IS a feature of new-inject) but gracefully supporting messages with garbled or less-than-perfect headers and formatting. Unlike qsmtpd, which in its original form is said to fail and deny incoming messages with only LF (\n) endings and give the sender an error message, qmail-inject issues no such error and will just pass the message through. Does qmail-inject have a log file? Quinn On Wed, 15 Nov 2006 13:04:58 -0700, Eric Shubes wrote: You could simply pipe the messages through 'dos2unix' to fix this. I don't know off hand where you'd pipe it in though. - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] qtp feature suggestion
On Wed, 15 Nov 2006 14:06:00 -0700, Eric Shubes wrote: I'm thinking you're on to something here. We should probably find the 'best' sendmail/qmail-inject replacement available and include it in the toaster. Are you volunteering? I agree. I'm totally unqualified to make a call on this. I'll help volunteer -- but not few a few week, I've been slammed lately. Q - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] CentOS 4.4 Install
Some installs have the noexec option set for the /tmp partition, which causes scripts to fail. Edit /etc/fstab and remove noexec if it is on the /tmp partition and reboot. This could also be fixed by calling the script with a specified shell interpreter: sh /var/tmp/rpm-tmp.1738 Quinn On Wed, 15 Nov 2006 17:57:07 -0800 (PST), Shelly wrote: error: Bad exit status from /var/tmp/rpm-tmp.1738 (%prep) RPM build errors: Bad exit status from /var/tmp/rpm-tmp.1738 (%prep) - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
[qmailtoaster] Mailman gotcha with CHKUSER_RCPTLIMIT
Surprise! If you run mailman with the qmail toaster, chkuser will block mailman's sending of messages with the following error: 2006-11-16 15:12:54.424020500 CHKUSER rejected intrusion: from [EMAIL PROTECTED]:: remote two.strangecode.com:unknown:72.32.88.155 rcpt [EMAIL PROTECTED] : rcpt ignored, session over INTRUSION threshold Mailman apparently does not send from 127.0.0.1 so I needed to add the following line to /etc/tcprules.d/tcp.smtp: 72.32.88.155:allow,RELAYCLIENT=,DKSIGN=/var/qmail/control/domainkeys/%/private In other words, no CHKUSER_RCPTLIMIT is specified. 72.32.88.155 is the IP address that I route mail from (my primary server IP seemed to have trouble with blacklisting). Actually, maybe mailman normally *does* send messages from 127.0.0.1 but my routing rules have changed this. Can anybody confirm this? If mailman normally sends messages from an IP other than 127.0.0.1, should we include this exception in /etc/tcprules.d/tcp.smtp ? Quinn - Strangecode :: Internet Consultancy http://www.strangecode.com/ +1 530 624 4410 - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
[qmailtoaster] Mailman gotcha with CHKUSER_RCPTLIMIT
Surprise! If you run mailman with the qmail toaster, chkuser will block mailman's sending of messages with the following error: 2006-11-16 15:12:54.424020500 CHKUSER rejected intrusion: from [EMAIL PROTECTED]:: remote two.strangecode.com:unknown:72.32.88.155 rcpt [EMAIL PROTECTED] : rcpt ignored, session over INTRUSION threshold Mailman apparently does not send from 127.0.0.1 so I needed to add the following line to /etc/tcprules.d/tcp.smtp: 72.32.88.155:allow,RELAYCLIENT=,DKSIGN=/var/qmail/control/domainkeys/%/private In other words, no CHKUSER_RCPTLIMIT is specified. 72.32.88.155 is the IP address that I route mail from (my primary server IP seemed to have trouble with blacklisting). Actually, maybe mailman normally *does* send messages from 127.0.0.1 but my routing rules have changed this. Can anybody confirm this? If mailman normally sends messages from an IP other than 127.0.0.1, should we include this exception in /etc/tcprules.d/tcp.smtp ? Quinn - Strangecode :: Internet Consultancy http://www.strangecode.com/ +1 530 624 4410 - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] using (dot) .qmail instead of simscan
This might work better then:
$(echo $RECIPIENT | sed -E s/^${HOST}-([EMAIL PROTECTED])+.*/[EMAIL
PROTECTED]/)
This is assuming no usernames have a - in their username.
Q
On Sat, 18 Nov 2006 13:14:28 -0600, Matt Decker wrote:
The following doesn't work in a few cases:
$(echo $RECIPIENT | sed -r 's/[^-]+-//') in place of
[EMAIL PROTECTED] in your .qmail file
-
QmailToaster hosted by: VR Hosted http://www.vr.org
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
[qmailtoaster] qmail options for filtering duplicate emails?
If one message is CC'ed to both quinn@ and hosting@ (both being forwards delivered to the same inbox) I will receive two messages. Is this normal for qmail/vpopmail? When I was running sendmail it would detect the messages were being delivered to the same inbox and would only deliver it once. I see there is a `formail -D` option, but I don't feel using that is the best way. Idears? Quinn - Strangecode :: Internet Consultancy http://www.strangecode.com/ +1 530 624 4410 - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
[qmailtoaster] blocked but no error?
I'm trying to send a message to an address on my server, it fails -- but without any errors in the smtp log. My email client program responds with: 554 mail server permanently rejected message (#5.3.0) But the only lines relating to this message transmission in the smtp log are: 2006-11-27 15:52:01.820334500 CHKUSER accepted sender: from [EMAIL PROTECTED]:[EMAIL PROTECTED]: remote [192.168.1.122]:unknown:75.20.187.46 rcpt : sender accepted 2006-11-27 15:52:01.890538500 CHKUSER accepted rcpt: from [EMAIL PROTECTED]:[EMAIL PROTECTED]: remote [192.168.1.122]:unknown:75.20.187.46 rcpt [EMAIL PROTECTED] : found existing recipient Isn't this a chkuser error? Shouldn't chkuser log something? What am I missing? Because my real question is...why is this message failing? Quinn - Strangecode :: Internet Consultancy http://www.strangecode.com/ +1 530 624 4410 - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] blocked but no error?
Disabling qmail-dk and using qmail-queue.orig fixed my problem. I see a few other people experienced the same problem. This seems like a *critical* announcement -- to make a loud noise on the list and www to suggest all to disable this -- and to update the SRPMs so people are not installing a broken qmail-queue. Alexey's offer to explore fixing this bug is greatly appreciated. Quinn On Tue, 28 Nov 2006 05:31:07 +0300, Alexey Loukianov wrote: Isn't this a chkuser error? Shouldn't chkuser log something? What am I missing? Because my real question is...why is this message failing? It is not. Checkout this thread: http://www.mail-archive.com/qmailtoaster-list@qmailtoaster.com/msg09460.html http://www.mail-archive.com/qmailtoaster-list@qmailtoaster.com/msg09360.html And try to turn off DomainKeys checking as described in: http://www.mail-archive.com/qmailtoaster-list@qmailtoaster.com/msg09467.html Mail here please it it won't help, I'll provide you with instructions how to get DK support back on. - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
[qmailtoaster] Fwd: Re: multilog s16777215 limit
Here is a response from the qmail@list.cr.yp.to list that might be useful for
y'all looking for managing log files differently. I know this has come up
before.
Quinn
- Begin forwarded message -
Subject: Re: multilog s16777215 limit
Date: Tue, 28 Nov 2006 17:01:59 -0500
From: John Simpson [EMAIL PROTECTED]
To: qmail@list.cr.yp.to
On 2006-11-27, at 2013, Quinn Comendant wrote:
I just learned that multilog has a maximum file size limit of 16777215
bytes. For me that hardly saves 5 hours of SMTP traffic. I'm looking for a
way to save 24 hours of data rather than doing it by a filesize limit...
any way to do this? Either a 24hours limit or a larger size limit? Yes, I
know the logs are rolled back and I can cat them together, but I'm looking
for convenience. 16 MB is a tiny log file.
this is a script that i run as a cron job every hour. it goes through
/service/*/log/main and finds all of the @*.[su] files, runs them through
tai64nlocal, and adds them to /var/log/{service}.-MM-DD automatically...
which gives me per-day log files for all of the services i manage using
daemontools.
if you run it with the -a parameter, it sends an ALRM signal to each multilog
process and waits two seconds before looking for @*.[su] files, so it can
force a cut-off at midnight if you have a need for such a thing.
i also run all of my multilog processes with n1024 s1048576. none of my
services come anywhere close to 1GB per hour of log data, so i've never been an
issue- although if i did have a high-traffic service, i would raise these
parameters accordingly, or just run this script more often.
i know it's not as automatic as you would like, but it's already written, it
works, and it's free (in the GPLv2 sense of the word.)
http://qmail.jms1.net/scripts/convert-multilog
--
| John M. Simpson - KG4ZOW - Programmer At Large |
| http://www.jms1.net/ [EMAIL PROTECTED] |
--
| Mac OS X proves that it's easier to make UNIX |
| pretty than it is to make Windows secure. |
--
PGP.sig
Description: Binary data
-
QmailToaster hosted by: VR Hosted http://www.vr.org
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
RE: [qmailtoaster] Exchange
And of course your clients will need to update the MX records of their domain to point to your server's IP. Quinn On Tue, 28 Nov 2006 21:59:54 -0500, Ron Jones wrote: All you've got to do is install the Qmailtoaster server. Don't configure any domains. First, add the domain that Exchange is handling mail for to the /var/qmail/control/rcpthosts file Then, add the domain:ip address of the exchange server to /var/qmail/control/smtproutes - it will look something like this - mydomain.com:192.168.0.1 If you've got an ISP that won't let traffic through on port 25, just add an extra line to /var/qmail/control/smtproutes that looks like the following - :smtp.myispmailserver.com These simple entries should take care of handling the mail correctly, now all you've got to do is set up the spam filter to be as permissive/restrictive as your situation requires. Ron Jones P 678.921.0318 C 770.378.3647 www.tftgi.com -Original Message- From: Kyle Quillen [mailto:[EMAIL PROTECTED] Sent: Tuesday, November 28, 2006 9:10 PM To: qmailtoaster-list@qmailtoaster.com Subject: [qmailtoaster] Exchange Hey all, Quick question that will probably be an easy answer. I have a client that wants to have my qmail server scan their incoming mail and then have it forwarded onto their exchange 2003 server. How would this be setup? Thanks much Kyle Q - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
[qmailtoaster] spam wild turkey chase
Hi y'all I got a pickle for ya: How can messages be connected between the smtp and spamd logs? I have someone unable to send mail to our server because simscan/spamassassin is blocking them with a 554 Your email is considered spam (19.00 spam-hits) message. I can find her messages coming in the smtp log with the simscan error that indicates the blocked message. But how can I find which message this relates to in the spamd log? I can't see any info that correlates, not a message ID, process ID, or anything. Spamassassin logs a MID like [EMAIL PROTECTED] but that doesn't show up in the smtp log. The sender address isn't logged. The recipient address receives a lot of spam, so it is pretty hard to wade through. Any ideas? Another question (probably better to ask the simscan list): would it be possible to return the full Spamassassin X-Spam-Report output with the 554 error? That would make this a lot easier, and possibly allow the message sender to correct *their* problem (gz, can you believe it? Attaching .gif images to an email??? What were they thinking!? ;-) Well, I guess it would be bad to give too many details to the *real* spammers! Thanks fellas, Quinn - Strangecode :: Internet Consultancy http://www.strangecode.com/ +1 530 624 4410 - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
