Re: Is it possible to use qpopper with ssh?
Hello, Thank you very much, works fine for me too. Is it vulnerable to make a non-ssl connection from the pop server to itself? If needed I could use "ssh my.pop.server.net telnet -z ssl localhost 995". Have a nice day, Jean-Bernard On Fri, 17 Jun 2005 13:21:12 -0700 Ken A <[EMAIL PROTECTED]> wrote: > So how about "ssh my.pop.server.net telnet localhost 110" > Works for me. > Ken
Re: Is it possible to use qpopper with ssh?
[EMAIL PROTECTED] wrote: On Fri, 17 Jun 2005 07:56:59 -0700 Ken A <[EMAIL PROTECTED]> wrote: [EMAIL PROTECTED] wrote: Hello, Is it possible to use qpopper through a ssh connection ? Like: ssh my.pop.server.net /usr/sbin/in.qpopper no. using ssh that way doesn't give you the ability to run interactive commands on the remote host. It would be the same for any daemon that required an interactive session; sendmail, telnet, etc.. I give a more detailed sample of what I did at the end of the message. Well, you are correct. I had not tried it, just assumed it wouldn't work. Duh.. So how about "ssh my.pop.server.net telnet localhost 110" Works for me. Ken If you really wanted to do this, you could create a perl script that uses Mail::Pop3 to send the contents of a mailbox back using a single command line like: "ssh my.pop.server.net /usr/local/bin/getmymail.pl $user $pass $function" Function could be something like 'delete 1' or 'list all', etc.. You could store the passwords on the qpopper server or pass them on the command line - either way is insecure! The script would have to handle all possible responses from qpopper. Not sure why this would ever be a good idea... Ken That is a good suggestion, maybe the script allready exists (if you know one such thing, tell it to me, please!) and maybe they are ways to solve the security issues. I would just have prefered to use directly qpopper to do it, just to be sure it have a bsolutly the good behavior for clients. Have a nice day, Jean-Bernard Example (useless) of qpopper successfully used through a ssh connection truite:~> ssh ernesto /usr/sbin/in.qpopper [EMAIL PROTECTED]'s password: +OK Qpopper (version 4.0.4) at ernesto.ras.eu.org starting. <[EMAIL PROTECTED]> CAPA +OK Capability list follows TOP USER LOGIN-DELAY 0 EXPIRE 0 UIDL RESP-CODES AUTH-RESP-CODE X-MANGLE X-MACRO X-LOCALTIME Fri, 17 Jun 2005 20:42:44 +0200 IMPLEMENTATION Qpopper-version-4.0.4 . EXIT -ERR Unknown command: "exit". QUIT +OK Pop server at ernesto.ras.eu.org signing off. Example of qpopper used through a ssh connection: the PASS problem! truite:~> ssh ernesto /usr/sbin/in.qpopper [EMAIL PROTECTED]'s password: +OK Qpopper (version 4.0.4) at ernesto.ras.eu.org starting. <[EMAIL PROTECTED]> USER * +OK Password required for *. PASS * -ERR [AUTH] PAM authentication failed for user "*": Authentication service cannot retrieve authentication info. (9) +OK Pop server at ernesto.ras.eu.org signing off. Example of sendmail used on a remote server using a ssh connection truite:~> ssh ernesto /usr/sbin/sendmail Jean-Bernard.ADDOR [EMAIL PROTECTED]'s password: test ssh Here I used ctrl-D to terminate the connection, the message has been delivered.
Re: Is it possible to use qpopper with ssh?
On Fri, 17 Jun 2005 07:56:59 -0700 Ken A <[EMAIL PROTECTED]> wrote: > > > [EMAIL PROTECTED] wrote: > > Hello, > > > > Is it possible to use qpopper through a ssh connection ? Like: > > > > ssh my.pop.server.net /usr/sbin/in.qpopper > > no. using ssh that way doesn't give you the ability to run interactive > commands on the remote host. It would be the same for any daemon that > required an interactive session; sendmail, telnet, etc.. I give a more detailed sample of what I did at the end of the message. > If you really wanted to do this, you could create a perl script that > uses Mail::Pop3 to send the contents of a mailbox back using a single > command line like: > "ssh my.pop.server.net /usr/local/bin/getmymail.pl $user $pass $function" > Function could be something like 'delete 1' or 'list all', etc.. > You could store the passwords on the qpopper server or pass them on the > command line - either way is insecure! The script would have to handle > all possible responses from qpopper. > Not sure why this would ever be a good idea... > > Ken That is a good suggestion, maybe the script allready exists (if you know one such thing, tell it to me, please!) and maybe they are ways to solve the security issues. I would just have prefered to use directly qpopper to do it, just to be sure it have abs olutly the good behavior for clients. Have a nice day, Jean-Bernard Example (useless) of qpopper successfully used through a ssh connection truite:~> ssh ernesto /usr/sbin/in.qpopper [EMAIL PROTECTED]'s password: +OK Qpopper (version 4.0.4) at ernesto.ras.eu.org starting. <[EMAIL PROTECTED]> CAPA +OK Capability list follows TOP USER LOGIN-DELAY 0 EXPIRE 0 UIDL RESP-CODES AUTH-RESP-CODE X-MANGLE X-MACRO X-LOCALTIME Fri, 17 Jun 2005 20:42:44 +0200 IMPLEMENTATION Qpopper-version-4.0.4 . EXIT -ERR Unknown command: "exit". QUIT +OK Pop server at ernesto.ras.eu.org signing off. Example of qpopper used through a ssh connection: the PASS problem! truite:~> ssh ernesto /usr/sbin/in.qpopper [EMAIL PROTECTED]'s password: +OK Qpopper (version 4.0.4) at ernesto.ras.eu.org starting. <[EMAIL PROTECTED]> USER * +OK Password required for *. PASS * -ERR [AUTH] PAM authentication failed for user "*": Authentication service cannot retrieve authentication info. (9) +OK Pop server at ernesto.ras.eu.org signing off. Example of sendmail used on a remote server using a ssh connection truite:~> ssh ernesto /usr/sbin/sendmail Jean-Bernard.ADDOR [EMAIL PROTECTED]'s password: test ssh Here I used ctrl-D to terminate the connection, the message has been delivered.
Re: Is it possible to use qpopper with ssh?
Hello, Thanks for your reply. I am may be a bit too lazy to establish a ssh tunnel at each modem connection, but I am convinced I would find how to make it. That is a good suggestion. I was far to think about different username and password for ssh and pop, in m y case that is all the same, that is a different situation. Both situations may need different configurations. I would prefer a command to use on the remote server than a tunnel. May be I could find a script to do it, I would prefere to use the same code as the regular pop internet server, that would make it esier for the clients. The major problem is that then I start /usr/sbin/in.qpopper through ssh it run with my user permission, not root, so it cannot access the password file. Have a nice day, Jean-Bernard On Fri, 17 Jun 2005 08:09:48 -0400 Daniel Senie <[EMAIL PROTECTED]> wrote: > At 04:10 PM 6/16/2005, [EMAIL PROTECTED] wrote: > >Hello, > > > >Is it possible to use qpopper through a ssh connection ? Like: > > > >ssh my.pop.server.net /usr/sbin/in.qpopper > > > >I made a try and I have the impression I have to start with USER and PASS > >commands, even if I am alredy loged throught ssh, which is in itself not a > >big problem. The problem I noticed is with the PASS command qpopper > >complains about accessing the password > > file and die and the connection is broken. > > > >Any suggestion ? Can I do that with qpopper or do I need to compile > >another popd, which one ? > > You're configuring a tunnel using SSH for the POP traffic. The POP server > software (qpopper) doesn't have any special knowledge of this. To it, the > POP session is originating on the end of the SSH tunnel nearest to it. So > qpopper would still need username and password. > > This is as it should be anyway, I would think. Consider that you might have > multiple POP accounts active on a mail server that you check from your > laptop. You could use SSH to establish a tunnel to transport the POP > traffic, then check email for the multiple accounts. POP server would need > the username and password for each anyway. > > Also consider that in some server configurations, the login name space used > by SSH and the mailbox name space used by qpopper might be independent of > one another. > > Dan >
Re: Is it possible to use qpopper with ssh?
Hello, Thanks for your reply. I am using a modem connection and the sylpheed client. As many modem users working offline, I make a lot of short modem connections. At the time, my client supports any command for sending. This was probably done to use the local "s endmail" command on unix systems, but I often use it to send to remote sendmail server where I have shell access. Do do it I just replaced the "sendmail" command by "ssh remote.server.org sendmail --some-options". This allows for compression which may be interesting for long text messages over a slow modem connexion. As the "ssh" command is inside the configuration of the client, there is no need to establish a ssh tunnel after each modem connection, you just start the modem and send through the regular c ommand of the client. At some point I remembered that the "pine" client could be configured to use a "ssh remote.server.org /usr/lib/rpopd" command to access a pop (or imap) server. Then I asked me if this approach could work with Qpopper, because I have an mail account on a s erver which uses Qpopper, and to which I can ssh. As suggested a tunnel would allow me to use compression, but I would have to start it manually after each modem connection, the "ssh" command would be configured into the client and would reduce the number of manipulations at each connection. Have a nice day, Jean-Bernard On Thu, 16 Jun 2005 23:24:50 -0400 "Alan W. Rateliff, II" <[EMAIL PROTECTED]> wrote: > > -Original Message- > > From: [EMAIL PROTECTED] > > [mailto:[EMAIL PROTECTED] > > Sent: Thursday, June 16, 2005 4:11 PM > > To: Subscribers of Qpopper > > Subject: Is it possible to use qpopper with ssh? > > > > Hello, > > > > Is it possible to use qpopper through a ssh connection ? Like: > > > > ssh my.pop.server.net /usr/sbin/in.qpopper > > > > I made a try and I have the impression I have to start with > > USER and PASS commands, even if I am alredy loged throught > > ssh, which is in itself not a big problem. The problem I > > noticed is with the PASS command qpopper complains about > > accessing the password > > file and die and the connection is broken. > > I'm not quite sute what you're trying to accomplish, and I have a couple of > theories on why this fails. Why not just create a tunnel through SSH to > access a QPopper running in inetd or as a stand-alone server on the far end? > > -- >Alan W. Rateliff, II: RATELIFF.NET > Independent Technology Consultant :[EMAIL PROTECTED] > (Office) 850/350-0260: (Mobile) 850/559-0100 > - > [System Administration][IT Consulting][Computer Sales/Repair] > > >
Re: Is it possible to use qpopper with ssh?
[EMAIL PROTECTED] wrote: Hello, Is it possible to use qpopper through a ssh connection ? Like: ssh my.pop.server.net /usr/sbin/in.qpopper no. using ssh that way doesn't give you the ability to run interactive commands on the remote host. It would be the same for any daemon that required an interactive session; sendmail, telnet, etc.. If you really wanted to do this, you could create a perl script that uses Mail::Pop3 to send the contents of a mailbox back using a single command line like: "ssh my.pop.server.net /usr/local/bin/getmymail.pl $user $pass $function" Function could be something like 'delete 1' or 'list all', etc.. You could store the passwords on the qpopper server or pass them on the command line - either way is insecure! The script would have to handle all possible responses from qpopper. Not sure why this would ever be a good idea... Ken I made a try and I have the impression I have to start with USER and PASS commands, even if I am alredy loged throught ssh, which is in itself not a big problem. The problem I noticed is with the PASS command qpopper complains about accessing the passwo rd file and die and the connection is broken. Any suggestion ? Can I do that with qpopper or do I need to compile another popd, which one ? Have a nice day, Jean-Bernard
Re: Is it possible to use qpopper with ssh?
At 04:10 PM 6/16/2005, [EMAIL PROTECTED] wrote: Hello, Is it possible to use qpopper through a ssh connection ? Like: ssh my.pop.server.net /usr/sbin/in.qpopper I made a try and I have the impression I have to start with USER and PASS commands, even if I am alredy loged throught ssh, which is in itself not a big problem. The problem I noticed is with the PASS command qpopper complains about accessing the password file and die and the connection is broken. Any suggestion ? Can I do that with qpopper or do I need to compile another popd, which one ? You're configuring a tunnel using SSH for the POP traffic. The POP server software (qpopper) doesn't have any special knowledge of this. To it, the POP session is originating on the end of the SSH tunnel nearest to it. So qpopper would still need username and password. This is as it should be anyway, I would think. Consider that you might have multiple POP accounts active on a mail server that you check from your laptop. You could use SSH to establish a tunnel to transport the POP traffic, then check email for the multiple accounts. POP server would need the username and password for each anyway. Also consider that in some server configurations, the login name space used by SSH and the mailbox name space used by qpopper might be independent of one another. Dan
RE: Is it possible to use qpopper with ssh?
> -Original Message- > From: [EMAIL PROTECTED] > [mailto:[EMAIL PROTECTED] > Sent: Thursday, June 16, 2005 4:11 PM > To: Subscribers of Qpopper > Subject: Is it possible to use qpopper with ssh? > > Hello, > > Is it possible to use qpopper through a ssh connection ? Like: > > ssh my.pop.server.net /usr/sbin/in.qpopper > > I made a try and I have the impression I have to start with > USER and PASS commands, even if I am alredy loged throught > ssh, which is in itself not a big problem. The problem I > noticed is with the PASS command qpopper complains about > accessing the password > file and die and the connection is broken. I'm not quite sute what you're trying to accomplish, and I have a couple of theories on why this fails. Why not just create a tunnel through SSH to access a QPopper running in inetd or as a stand-alone server on the far end? -- Alan W. Rateliff, II: RATELIFF.NET Independent Technology Consultant :[EMAIL PROTECTED] (Office) 850/350-0260: (Mobile) 850/559-0100 - [System Administration][IT Consulting][Computer Sales/Repair]
