dear all,
How can I make vpopmail not to display passwords in clear text.im using
vqadmin as user management interface.
Regards
Rizwan Iqbal Malik
server1# qmail-qread | grep remote | wc -l
0
server2# qmail-qread | grep remote | wc -l
754
h
# find /var/qmail/queue/mess/ -type f -exec grep '^[EMAIL PROTECTED]:$' {} \;
| grep -v Binary | cut -d '@' -f 2 | cut -d '' -f 1 | sort | uniq
| wc -l
19
Only 19 domains out of:
# cat
On Friday 17 June 2005 09:49, Rizwan Iqbal Malik wrote:
How can I make vpopmail not to display passwords in clear text.im
using vqadmin as user management interface.
Recompile vpopmail with cleartext passwords disabled. And/or you
can do it manually by deleting the cleartext passwords out of
Hi Casey,
I don't know if I understood very well all these evidences you have shown. But
appears to me you are not using the Chkuser patch, right? If not, chkuser is a
patch to qmail-smtpd that enables it to check the existence of a local user
before accepting the message. Without it,
Hello,i'm getting this error when telneting to 110,
on freebsd 5.3,vpopmail 5.4.10+mysql-4.1.12
freebsd# telnet localhost 110
Trying 127.0.0.1...
Connected to localhost.
Escape character is '^]'.
+OK 2948.1119011293@/home/vpopmail/bin/vchkpw
user testusr
+OK
pass 123
-ERR this user has no
On Fri, 2005-06-17 at 19:02 +0600, Ruslan Molbashev wrote:
Hello,i'm getting this error when telneting to 110,
on freebsd 5.3,vpopmail 5.4.10+mysql-4.1.12
freebsd# telnet localhost 110
Trying 127.0.0.1...
Connected to localhost.
Escape character is '^]'.
+OK
Hi guys,
I'm editing my Simscan + ClamAV + Chkuser installation guide at:
http://www.qmailwiki.org/Simscan/Related_Docs/Simscan_ClamAV_Chkuser_Installation_Guide
And I added a new part where I persuade the reader to enable some of chkuser's
features that came disabled by default. To persuade
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Shane Chrisp wrote:
| On Fri, 2005-06-17 at 19:02 +0600, Ruslan Molbashev wrote:
|
|Hello,i'm getting this error when telneting to 110,
|on freebsd 5.3,vpopmail 5.4.10+mysql-4.1.12
|
|freebsd# telnet localhost 110
|Trying 127.0.0.1...
|Connected to
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Bruno Negro wrote:
| a.. CHKUSER_SENDER_FORMAT: checks if the SENDER of each message has the
| username part matching [a-z0-9_-], and the domain part matching
| [a-z0-9-.] with not consecutive -., not leading or ending -. ==
| Great for identifying
Hi Matt, thanks for answering.
| a.. CHKUSER_SENDER_FORMAT: checks if the SENDER of each message has the
| username part matching [a-z0-9_-], and the domain part matching
| [a-z0-9-.] with not consecutive -., not leading or ending -. ==
| Great for identifying spam.
This really doesn't do
Hi folks,
I wanted to get up-to-date with implementing SA on qmail/vpopmail.
I had a look at vpopmail 5.5.1 (because of the SA-support in it), but I
currently doesn't compile. Bug-report was sent.
What are possible implementations of SA on vpopmail?
Currently the cluster counts about 100k
At 15.49 17/06/2005, you wrote:
But now I looking closely to this check I'm recalling some of my customers
like to have e-mails of the format: [EMAIL PROTECTED] I't seems
that this check would block my usernames with the 'user.lastname' syntax,
since it doesn't accept a '.' character in the
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Bruno Negro wrote:
| Hi Matt, thanks for answering.
|
| | a.. CHKUSER_SENDER_FORMAT: checks if the SENDER of each message has
| the
| | username part matching [a-z0-9_-], and the domain part matching
| | [a-z0-9-.] with not consecutive -., not
On Thursday 16 June 2005 02:48 pm, Scott Gamble wrote:
This obviously poses something of a problem in terms of migration. From a
mysql install of vpopmail to a non-mysql install of vpopmail.
First question - I'm going to have to recreate all these email accounts by
hand aren't I...?
nope,
On Friday 17 June 2005 06:19 am, Casey Allen Shobe wrote:
On Friday 17 June 2005 09:49, Rizwan Iqbal Malik wrote:
How can I make vpopmail not to display passwords in clear text.im
using vqadmin as user management interface.
Recompile vpopmail with cleartext passwords disabled. And/or you
Slick!
Wish I'd gotten this yesterday.
D0H!
- Original Message -
Subject: Re: [vchkpw] migration
From: Jeremy Kitchen [EMAIL PROTECTED]
To: vchkpw@inter7.com
Date: 06-17-2005 8:46 am
On Thursday 16 June 2005 02:48 pm, Scott Gamble wrote:
This obviously poses something of
On Friday 17 June 2005 08:43 am, Bruno Negro wrote:
Hi guys,
I'm editing my Simscan + ClamAV + Chkuser installation guide at:
http://www.qmailwiki.org/Simscan/Related_Docs/Simscan_ClamAV_Chkuser_Instal
lation_Guide
And I added a new part where I persuade the reader to enable some of
Tobias Orlamuende wrote:
Hi folks,
I wanted to get up-to-date with implementing SA on qmail/vpopmail.
I had a look at vpopmail 5.5.1 (because of the SA-support in it), but I
currently doesn't compile. Bug-report was sent.
What are possible implementations of SA on vpopmail?
Currently the
sys: Fedora core3, manually compiled vpopmail 3.4.10, RPM Mysql 3.23.59?,
compiled courier imap 4.0.2, compiled qmail-1.03, patched
qmail-ej-cocktail-14.tar.gz, manually patched Tonix' chkuser 2.0.
I have installed vpopmail with roaming/SMTP-AUTH before, again using
Michael Bowe's webmail guide.
ISP Lists wrote:
sys: Fedora core3, manually compiled vpopmail 3.4.10, RPM Mysql 3.23.59?,
compiled courier imap 4.0.2, compiled qmail-1.03, patched
qmail-ej-cocktail-14.tar.gz, manually patched Tonix' chkuser 2.0.
I have installed vpopmail with roaming/SMTP-AUTH before, again using
Michael
At 16.47 17/06/2005, you wrote:
Tonino, are these characters enough even in those cases when somebody
wants to, for example, send a confirmation reply e-mail to some automatic
procedure? Like, confirming a subscribe message for a mailing list or
something like that. How were your tests?
On Jun 17, 2005, at 7:52 AM, Tobias Orlamuende wrote:
What are possible implementations of SA on vpopmail?
Currently the cluster counts about 100k mailboxes with an average of ~
10k
messages an hour.
Simscan (and clamav) is already installed.
Users don't have do have individual settings
On Jun 17, 2005, at 9:43 AM, ISP Lists wrote:
/usr/local/bin/tcpserver \
-H -l [[[my.host.name]]] \
-v -x /etc/tcp.smtp.cdb \
-c 30 -R -u $VPOPMAILUID -g $VPOPMAILGID 0 smtp \
/usr/local/bin/rblsmtpd -b -C \
-r 'sbl-xbl.spamhaus.org:Your message was rejected ' \
You've got an old SMTP AUTH patch that sends the MD5 challenge and
response in the wrong order.
Use the patch from the contrib directory of vpopmail, and then remove
the $LOCAL from your run file, as the newer SMTP AUTH patch does not
use it.
--
Tom Collins - [EMAIL PROTECTED]
Tom Collins wrote:
On Jun 17, 2005, at 7:52 AM, Tobias Orlamuende wrote:
What are possible implementations of SA on vpopmail?
Currently the cluster counts about 100k mailboxes with an average of
~ 10k
messages an hour.
Simscan (and clamav) is already installed.
Users don't have do have
Am Freitag, 17. Juni 2005 19:09 schrieb Tom Collins:
On Jun 17, 2005, at 7:52 AM, Tobias Orlamuende wrote:
What are possible implementations of SA on vpopmail?
Currently the cluster counts about 100k mailboxes with an average of ~
10k
messages an hour.
Simscan (and clamav) is already
Hi Tonino, thanks for answering.
Documentation says it works with ezmlm and mailman.
Please, read the documentation!
Tonino
Dude, let me tell you: I ran a 'find ezmlm' in your whole website and the only
matches I found were these statements (shown bellow) explaining about settings
inside
Am Freitag, 17. Juni 2005 19:22 schrieb Rick Macdougall:
If you don't need individual settings, the easiest is to just have
simscan call spamc. This way, you can reject spam at the SMTP level
instead of bouncing it later on.
You can still use individual settings with simscan calling
Dear all,
does anybody know is there any faq or instruction set to make
upgrade from normal pop-before-smtp to SMTP AUTH with MD5 ?
I have problems with MD5 (plain auth works ok) and donna know whats
wrong because I configured that with instructions written to sbdy
who had problems
Am Freitag, 17. Juni 2005 18:08 schrieb DAve:
Well, not sure if it helps as we currently have less than 10k users on
our system.
We have two avhosts that run MailScanner, these then send the ClamAV
scanned messages down to our toasters running vpopmail. Milter-ahead is
installed and
You've got an old SMTP AUTH patch that sends the MD5 challenge and
response in the wrong order.
Use the patch from the contrib directory of vpopmail, and then remove
the $LOCAL from your run file, as the newer SMTP AUTH patch does not
use it.
--
Tom Collins - [EMAIL PROTECTED]
Tobias Orlamuende wrote:
Am Freitag, 17. Juni 2005 19:22 schrieb Rick Macdougall:
If you don't need individual settings, the easiest is to just have
simscan call spamc. This way, you can reject spam at the SMTP level
instead of bouncing it later on.
You can still use individual
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
|
| Also, I'm not asking about just ezmlm and mailman lists. Maybe there are
| other mailing lists or mail mechanisms that require not common
| characters on the RCPT and/or SENDER addresses.
If I remember correctly, the RFCs state that any
Am Freitag, 17. Juni 2005 20:29 schrieb Rick Macdougall:
[...]
How do you achieve this goal?
How do you let your users manage these settings?
How is performance when using SA with simscan?
Hi,
By using --enable-spamc-user=y with simscan and by using MySQL based
preferences for spamd.
Tobias Orlamuende wrote:
Am Freitag, 17. Juni 2005 20:29 schrieb Rick Macdougall:
[...]
How do you achieve this goal?
How do you let your users manage these settings?
How is performance when using SA with simscan?
Hi,
By using --enable-spamc-user=y with simscan and by using MySQL
On Jun 17, 2005, at 11:21 AM, ISP Lists wrote:
Built as netqmail-1.05, patched SMTP-AUTH from vpopmail contrib, then
manually added Tonix' chkuser 2.0
Everything is VERY happy now.
Did you remember to remove $LOCAL from your qmail-smtpd/run file? If
not, you can now auth with any
Thanks Matt,
I removed that part from the document. I let this for the experienced
administrators to try by themselves.
Bruno
- Original Message -
From: Matt Brookings [EMAIL PROTECTED]
To: vchkpw@inter7.com
Sent: Friday, June 17, 2005 3:52 PM
Subject: Re: [vchkpw] Help with my
On Jun 17, 2005, at 11:21 AM, ISP Lists wrote:
Built as netqmail-1.05, patched SMTP-AUTH from vpopmail contrib, then
manually added Tonix' chkuser 2.0
Everything is VERY happy now.
Did you remember to remove $LOCAL from your qmail-smtpd/run file? If
not, you can now auth with any
We have a threaded mail agent that controls mail clearing, and use
Vpopmail for mail delivery. We want to use some of the internal vpopmail
functionality within our mail clearing agents to allow for trapping bad
mail faster -- the main portion is quota checking.
A review of the vpopmail code in
On Friday 17 June 2005 15:49, Jeremy Kitchen wrote:
but then again.. you shouldn't be using gentoo's qmail ebuilds
anyways, they're just awful.
Why do you feel that way? They work wonderfully for us (currently
using -r15) with no complaints whatsoever. There were a few minor
annoyances with
(please don't top-post)
On Friday 17 June 2005 12:47, Bruno Negro wrote:
But appears to me you are not using the Chkuser patch, right?
We are not, but I don't understand how that matters, since I'm only
seeing these bounce messages coming from a handful of the domains
we host (17).
If not,
On Jun 17, 2005, at 10:35 AM, Tobias Orlamuende wrote:
Seems like Bill is doing quite a lot of work which might make
daily-business-life easier. :-)
Hope he will join this thread.
As a side note, I've been approached by a company interested in
sponsoring me to add features to vdelivermail
On Friday 17 June 2005 13:43, Bruno Negro wrote:
a.. CHKUSER_SENDER_FORMAT: checks if the SENDER of each message
has the username part matching [a-z0-9_-]
No .??? We have many users who opt for addresses like
[EMAIL PROTECTED]
Cheers,
--
Casey Allen Shobe | http://casey.shobe.info
[EMAIL
On Jun 17, 2005, at 12:31 PM, Rod Taylor wrote:
Would there be any interest in applying patches to vpopmail for thread
safety if we submit them? Russell Nelson would be the developer working
on this project, and we would be happy to discuss the changes in depth.
Our immediate concerns are with
On Jun 17, 2005, at 12:40 PM, Casey Allen Shobe wrote:
On Friday 17 June 2005 12:47, Bruno Negro wrote:
But appears to me you are not using the Chkuser patch, right?
We are not, but I don't understand how that matters, since I'm only
seeing these bounce messages coming from a handful of the
On Friday 17 June 2005 13:08, Shane Chrisp wrote:
You can use Maildirmake to create the Maildir if you need to.
Make sure you run it as the vpopmail user though.
Or you can just change ownership...
maildirmake Maildir chown -R vpopmail:vpopmail Maildir
I wonder how you set up the account
No .??? We have many users who opt for addresses like
[EMAIL PROTECTED]
Tonino (chkuser developer) said that . and = are being allowed and the
documentation is outdated.
But, despite of this, the main function of chkuser, that is, checking user
existence before accepting any e-mail is
On Friday 17 June 2005 15:47, Bruno Negro wrote:
Documentation is wrong (I'll correct it soon): '.' and '=' are
accepted in format controls.
Sorry I didn't read this message before my last reply asking about
this...
Guys, with the valid characters now being:
user= [a-z0-9_-.=]
On Friday 17 June 2005 19:56, Casey Allen Shobe wrote:
On Friday 17 June 2005 15:47, Bruno Negro wrote:
Documentation is wrong (I'll correct it soon): '.' and '='
are accepted in format controls.
Sorry I didn't read this message before my last reply asking
about this...
Guys, with the
On Friday 17 June 2005 19:48, Tom Collins wrote:
All other domains have catchall or delete instead of
bounce-no-mailbox?
No. From my original message:
On Friday 17 June 2005 10:18, Casey Allen Shobe wrote:
All accounts look the same as far as I can tell:
# cat
On Friday 17 June 2005 17:42, Sylwester S. Biernacki wrote:
1. I've reconfigured vpopmail and added
--enable-learn-passwords=y and --enable-clear-passwd=y
What is --enable-learn-passwords? If it does what I'm guessing it
does by name and starts recording missing cleartext entries in
On Friday 17 June 2005 19:31, Rod Taylor wrote:
We would prefer to donate patches back to the vpopmail
application, via quality review and other standard approval
processes, than write our own methods to accomplish a similar
task.
That's the spirit! Congratulations!
Cheers,
--
Casey Allen
On Friday, June 17, 2005, 10:06:46 PM, Casey wrote:
On Friday 17 June 2005 17:42, Sylwester S. Biernacki wrote:
1. I've reconfigured vpopmail and added
--enable-learn-passwords=y and --enable-clear-passwd=y
What is --enable-learn-passwords? If it does what I'm guessing it
does by name
Tom Collins writes:
Keep in mind that qmail, vpopmail, courier and other programs all
implement the same maildirquota methods. You would need to make sure
an improved system either doesn't break the other programs, or can be a
drop-in replacement for the old code.
Alas, these calls
Hello Shane,
Friday, June 17, 2005, 7:08:07 PM, you wrote:
SC On Fri, 2005-06-17 at 19:02 +0600, Ruslan Molbashev wrote:
Hello,i'm getting this error when telneting to 110,
on freebsd 5.3,vpopmail 5.4.10+mysql-4.1.12
freebsd# telnet localhost 110
Trying 127.0.0.1...
Connected to
55 matches
Mail list logo