Re: [vchkpw] Newbie trying to figure vpopmail to popb4smtp.
Steve, the SMTP-AUTH functionality is added to qmail as a patch. With SMTP-AUTH and
VPOPmail, you are able to authenticate virtual domain users into a _temporary_ mode to
run your system as a relay based upon their IP being added by VPOPmail into a table
of recently authenticated IPs. This IP list expires fairly quickly and only makes
eligible those hosts who have authenticated. Your system is never a fully open relay.
Qmail's rules about locals, rcpthosts, etc are always obeyed by qmail. Vpopmail adds
the IPs to a faked holding table of auth'd ips (oversimplification???)
Read up on the SMTP-AUTH patch, you'll get the hang of it. Vpopmail rocks for serving
virtual domains. Squirrelmail can be applied really easily to a working vpopmail
implementation - and it doesn't change anything about your relay settings (to my
limited knowledge).
Dave.
-- Original Message --
From: Steve Schofield [EMAIL PROTECTED]
Date: Wed, 26 Feb 2003 02:20:31 -0500
i'm trying to configure my vpopmail + squirrelmail + qmail to not be an open
relay. The only way i've found to control this is put restricted domains in
the rcptshosts file. A concept of popb4smtp seems to be slipping through my
fingers. I've read the /usr/local/vpopmail/docs switches. From the doc's,
it will dynamically add the user so they can relay.
--enable-roaming-users=y \
--enable-relay-clear-minutes=${RELAYCLEAR}
Once I tried to implement. When I test this concept out, its an open
relay. What am I missing? Once frustrated newbie!
**
* Steve Schofield
* [EMAIL PROTECTED]
*
* Microsoft MVP - ASP.NET
* http://www.aspfree.com
*
**
RE: [vchkpw] Newbie trying to figure vpopmail to popb4smtp.
One thing that might be confusing Steve, is the messages that qmail sends to
you when you're not allowed to relay. Instead of saying you're not allowed
to relay it says sorry, that domain isn't in my list of allowed rcpthosts
This can be misleading, thinking that you have to put every domain you want
to send to in rcpthosts.
SMTP is basically, one server (or client) passing off a message to another
server. The rcpthosts file in qmail is a list of domains qmail will accept
mail for, from ANY ip address on the internet. qmail is assuming that any
domain in rcpthosts is a local one. It doesn't have to be, but that's sort
of the assumption. So when I send an email to your server, to a domain
that's local to you, qmail will happily accept and deliver it. But, let's
say I try to send _through_ your server out to somebody elses, say...
yahoo.com. That's relay. I'm relaying a message from my computer, to your
server, and asking your server not to deliver it locally, but to send it off
to somebody else. If your server allows this type of activity from anyone,
your server is open relay, because it will happily relay any message from
anyone, to any other server on the net. There are several ways to control
relay.
The easiest, and most basic way, is by IP address. qmail has a tcp.smtp.cdb
file, which is a compiled version of the tcp.smtp text file that you write
(cdb is a simple, fast, file system based database format). That file
contains a list of rules for qmail-smtpd to follow, such as what IP's to
allow and/or deny, and also what variables to pass on with their
connections. One of these variables is RELAYCLIENT. If the IP gets passed
on with this RELAYCLIENT variable, then qmail will allow that IP to relay
through the server. If it doesn't, qmail won't allow it to relay. Managing
a strictly IP based relay is a full time job sometimes, so they created
programs and protocols to make it a bit easier.
The basis of relay is this. You only want to allow people who are your
customers and/or clients to relay through the server. People you have some
form of control and/or communication with, in order to control spam and
other forms of relay abuse. vpopmail supports a feature it calls roaming
users which is pop before smtp. A client pops their mail, vpopmail records
their ip address and time stamps it, then adds it to the relay
automatically. The IP's are selectively removed from the relay every X
minutes, as defined when you compile vpopmail.
Another option is to support the SMTP-AUTH patch. qmail doesn't support
this by default, so you'll need to download a patch for qmail and patch your
source. But this protocol allows users to send a username and password
across in order to verify their authenticity. There are several patches out
for qmail that allow support for this, but I recommend:
http://members.elysium.pl/brush/qmail-smtpd-auth/
If you plan on using it, read the FAQ, it explains how to impliment it with
vpopmail.
Sorry for the long winded email, but I hope that helps to clear things up.
SMTP can be confusing ;).
-Clayton
-Original Message-
From: David Richardson [mailto:[EMAIL PROTECTED]
Sent: Wednesday, February 26, 2003 5:26 AM
To: [EMAIL PROTECTED]; Steve Schofield
Subject: Re: [vchkpw] Newbie trying to figure vpopmail to popb4smtp.
Steve, the SMTP-AUTH functionality is added to qmail as a patch. With
SMTP-AUTH and VPOPmail, you are able to authenticate virtual domain users
into a _temporary_ mode to run your system as a relay based upon their IP
being added by VPOPmail into a table of recently authenticated IPs. This
IP list expires fairly quickly and only makes eligible those hosts who have
authenticated. Your system is never a fully open relay. Qmail's rules
about locals, rcpthosts, etc are always obeyed by qmail. Vpopmail adds the
IPs to a faked holding table of auth'd ips (oversimplification???)
Read up on the SMTP-AUTH patch, you'll get the hang of it. Vpopmail rocks
for serving virtual domains. Squirrelmail can be applied really easily to a
working vpopmail implementation - and it doesn't change anything about your
relay settings (to my limited knowledge). Dave.
-- Original Message --
From: Steve Schofield [EMAIL PROTECTED]
Date: Wed, 26 Feb 2003 02:20:31 -0500
i'm trying to configure my vpopmail + squirrelmail + qmail to not be an
open relay. The only way i've found to control this is put restricted
domains in the rcptshosts file. A concept of popb4smtp seems to be
slipping through my fingers. I've read the /usr/local/vpopmail/docs
switches. From the doc's, it will dynamically add the user so they can
relay. --enable-roaming-users=y \
--enable-relay-clear-minutes=${RELAYCLEAR}
Once I tried to implement. When I test this concept out, its an open
relay. What am I missing? Once frustrated newbie!
**
* Steve Schofield
* [EMAIL PROTECTED]
*
* Microsoft
[vchkpw] vpopmail + mysql. Basic question.
Sorry for the basic question but i can't figure how they work together. If i add a vpopmail user ( ~vpopmail/bin/vadduser [EMAIL PROTECTED] ), it will saved in mysql db. All right. But if i add a mysql record will it added to vpopmail users? What's about fields like pw_passwd? Tnx in advance. -- cris
Re: [vchkpw] vpopmail + mysql. Basic question.
using vadduser not only adds the row to the table, but creates the directory structure for vdelivermail to put mail into. It also encrypts the password field. So you should either use the vadduser program or the vpopmail vadduser() API routine. Brian Sorry for the basic question but i can't figure how they work together. If i add a vpopmail user ( ~vpopmail/bin/vadduser [EMAIL PROTECTED] ), it will saved in mysql db. All right. But if i add a mysql record will it added to vpopmail users? What's about fields like pw_passwd? Tnx in advance. -- cris
[vchkpw] patch for vpopmail-5.3.18
Here's a patch for vpopmail 5.3.18. This fixes a bug in the vmysql.c file to increase the SQL buffer size to 2K rather than 600 bytes. It also updates maildirquota.c to *only* set the following functions as global: int readdomainquota(const char *dir, long *sizep, int *cntp); int readuserquota(const char* dir, long *sizep, int *cntp); int domain_over_maildirquota(const char *userdir); int user_over_maildirquota(const char *dir, const char *quota); void add_warningsize_to_quota( const char *dir, const char *quota); int vmaildir_readquota(const char *dir, const char *quota); Note that the function maildir_readquota() was renamed to vmaildir_readquota() so it won't clash with courier. It was also renamed in vdelivermail.c and vuserinfo.c. All the rest of the functions in maildirquota.c were made static. The object maildirquota.o was added to libvpopmail.a. This way we can use the maildir quota functions in the library. This will allow integration of the quota functions to qmailadmin, vqsignup, vqadmin, etc. Brian diff -c vpopmail-5.3.18/Makefile.am vpopmail-5.3.18.new/Makefile.am *** vpopmail-5.3.18/Makefile.am Mon Oct 21 14:59:13 2002 --- vpopmail-5.3.18.new/Makefile.am Wed Feb 26 11:34:06 2003 *** *** 4,10 noinst_LIBRARIES=libvpopmail.a ! COMMONSOURCES=vpopmail.c md5.c bigdir.c vauth.c file_lock.c vpalias.c seek.c vlimits.c CONFIG_CLEAN_FILES=vauth.c libvpopmail_a_SOURCES=$(COMMONSOURCES) --- 4,10 noinst_LIBRARIES=libvpopmail.a ! COMMONSOURCES=vpopmail.c md5.c bigdir.c vauth.c file_lock.c vpalias.c seek.c vlimits.c maildirquota.c CONFIG_CLEAN_FILES=vauth.c libvpopmail_a_SOURCES=$(COMMONSOURCES) diff -c vpopmail-5.3.18/Makefile.in vpopmail-5.3.18.new/Makefile.in *** vpopmail-5.3.18/Makefile.in Thu Feb 20 16:17:24 2003 --- vpopmail-5.3.18.new/Makefile.in Wed Feb 26 11:34:23 2003 *** *** 76,82 noinst_LIBRARIES = libvpopmail.a ! COMMONSOURCES = vpopmail.c md5.c bigdir.c vauth.c file_lock.c vpalias.c seek.c vlimits.c CONFIG_CLEAN_FILES = vauth.c libvpopmail_a_SOURCES = $(COMMONSOURCES) --- 76,82 noinst_LIBRARIES = libvpopmail.a ! COMMONSOURCES = vpopmail.c md5.c bigdir.c vauth.c file_lock.c vpalias.c seek.c vlimits.c maildirquota.c CONFIG_CLEAN_FILES = vauth.c libvpopmail_a_SOURCES = $(COMMONSOURCES) *** *** 162,168 LIBS = @LIBS@ libvpopmail_a_DEPENDENCIES = cdb/*.o libvpopmail_a_OBJECTS = vpopmail.o md5.o bigdir.o vauth.o file_lock.o \ ! vpalias.o seek.o vlimits.o AR = ar PROGRAMS = $(vpopmailbin_PROGRAMS) --- 162,168 LIBS = @LIBS@ libvpopmail_a_DEPENDENCIES = cdb/*.o libvpopmail_a_OBJECTS = vpopmail.o md5.o bigdir.o vauth.o file_lock.o \ ! vpalias.o seek.o vlimits.o maildirquota.o AR = ar PROGRAMS = $(vpopmailbin_PROGRAMS) Common subdirectories: vpopmail-5.3.18/attic and vpopmail-5.3.18.new/attic Common subdirectories: vpopmail-5.3.18/cdb and vpopmail-5.3.18.new/cdb Common subdirectories: vpopmail-5.3.18/contrib and vpopmail-5.3.18.new/contrib Common subdirectories: vpopmail-5.3.18/convert and vpopmail-5.3.18.new/convert Common subdirectories: vpopmail-5.3.18/doc and vpopmail-5.3.18.new/doc Common subdirectories: vpopmail-5.3.18/ldap and vpopmail-5.3.18.new/ldap diff -c vpopmail-5.3.18/maildirquota.c vpopmail-5.3.18.new/maildirquota.c *** vpopmail-5.3.18/maildirquota.c Thu Feb 20 16:43:07 2003 --- vpopmail-5.3.18.new/maildirquota.c Wed Feb 26 12:28:30 2003 *** *** 33,39 #include maildirquota.h #include config.h ! static char *makenewmaildirsizename(const char *, int *); static int countcurnew(const char *, time_t *, off_t *, unsigned *); static int countsubdir(const char *, const char *, --- 33,39 #include maildirquota.h #include config.h ! /* private functions - no name clashes with courier */ static char *makenewmaildirsizename(const char *, int *); static int countcurnew(const char *, time_t *, off_t *, unsigned *); static int countsubdir(const char *, const char *, *** *** 40,56 time_t *, off_t *, unsigned *); static int statcurnew(const char *, time_t *); static int statsubdir(const char *, const char *, time_t *); ! static intdoaddquota(const char *, int, const char *, long, int, int); ! static int docheckquota(const char *dir, ! int *maildirsize_fdptr, ! const char *quota_type, ! long xtra_size, ! int xtra_cnt, int *percentage); static int docount(const char *, time_t *, off_t *, unsigned *); ! int readdomainquota(const char *dir, long *sizep, int *cntp); ! int readuserquota(const char* dir, long *sizep, int *cntp); ! int deliver_quota_warning(const char *dir); #define NUMBUFSIZE 60 #define MDQUOTA_SIZE'S' /* Total size of all messages in maildir */ #define MDQUOTA_BLOCKS 'B' /* Total # of blocks for all messages in --- 40,59 time_t *, off_t
Re: [vchkpw] vpopmail extension modules
Jesse Guardiani said: On Tuesday 25 February 2003 03:06, Doug Clements wrote: - Original Message - From: Jesse Guardiani [EMAIL PROTECTED] To: Doug Clements [EMAIL PROTECTED]; vpopmail [EMAIL PROTECTED] Sent: Sunday, February 23, 2003 6:47 PM Subject: Re: [vchkpw] vpopmail extension modules snip Does GPL mean that you absolutely HAVE to distribute and publish your code? (I don't think it does... I could be wrong though...) If you change vpopmail (or any other GPL-licensed code), yes, you have to make it available to the public. I just read the GNU license. I don't see anything that says that I HAVE to distribute my changes. There are terms and conditions forced upon me if I DO distribute, but nothing about absolutely having to give people my code. :) Did I miss something? Nope. That matches my understanding as well. The GPL means you can't distribute binary-only versions. The source code has to be available to anyone who get's the software. You can even sell it, as long as you include the source when you do. snip --Doug
Re: [vchkpw] vpopmail + mysql. Basic question.
On Wednesday 26 February 2003 17:33, Brian Kolaci wrote: using vadduser not only adds the row to the table, but creates the directory structure for vdelivermail to put mail into. It also encrypts the password field. So you should either use the vadduser program or the vpopmail vadduser() API routine. well.. not really. vchkpw for example creates the maildir, if it's missing, and so does vdelivermail. so if you just want to _create_ users by adding them to the mysql table, this is just fine. just if you want to delete the users thas way, it will keep their Maildirs in place. -- Best Regards --- Justin Heesemannionium Technologies [EMAIL PROTECTED]www.ionium.org
Re: [vchkpw] vpopmail + mysql. Basic question.
On Wednesday 26 February 2003 22:29, Justin Heesemann wrote: On Wednesday 26 February 2003 17:33, Brian Kolaci wrote: using vadduser not only adds the row to the table, but creates the directory structure for vdelivermail to put mail into. It also encrypts the password field. So you should either use the vadduser program or the vpopmail vadduser() API routine. well.. not really. vchkpw for example creates the maildir, if it's missing, and so does vdelivermail. so if you just want to _create_ users by adding them to the mysql table, this is just fine. just if you want to delete the users thas way, it will keep their Maildirs in place. add: i don't know, when this was introduced.. i'm speaking of 5.3.18 here (but i think this was already in some earlier versions) -- Best Regards --- Justin Heesemannionium Technologies [EMAIL PROTECTED]www.ionium.org
Re: [vchkpw] vpopmail + mysql. Basic question.
On Wednesday 26 February 2003 17:33, Brian Kolaci wrote: using vadduser not only adds the row to the table, but creates the directory structure for vdelivermail to put mail into. It also encrypts the password field. So you should either use the vadduser program or the vpopmail vadduser() API routine. well.. not really. vchkpw for example creates the maildir, if it's missing, and so does vdelivermail. so if you just want to _create_ users by adding them to the mysql table, this is just fine. just if you want to delete the users thas way, it will keep their Maildirs in place. Didn't know the recovery code was there. That's great. I've had instances in my old version where it wouldn't deliver mail because the maildir was missing, but now that I think about it, I haven't seen that problem for awhile. Thanks, Brian
Re: [vchkpw] qmail+vpopmail+mysql+courier-imap+gentoo empty relay table with roamingusers enabled
On Thursday 27 February 2003 01:26, bob ketterhagen wrote: Howdy, I have spent all day trying to figure out why my relay table in the vpopmail database is empty. I have previously had this same setup in gentoo a few months ago and never had a single problem. Currently I have rebuilt checked and rebuilt everything numerous time even from scratch and my database continues to stay empty. If i manually add the ip_addr and timestamp it works fine but it is not working properly like everyother server I have with this setup. I can't even isolate whether it is courier-imap or vpopmail. If anyone would like to enlighten me on what exactly my problem is that would be wonderful. well .. you can. just stop courier-imap and try to authentificate via pop3 (or keep courier running.. shouldn't matter) so now that we do know, that it's vpopmails fault, it would be very nice if you told us the vpopmail configuration string (or is it the vpopmail-5.2.1-r4.ebuild ? still.. many list members don't use gentoo) and your /service/qmail-pop3d/run file would be nice too :) I am using courier-imap 1.7.0 and vpopmail 5.2.1. -- Best Regards --- Justin Heesemannionium Technologies [EMAIL PROTECTED]www.ionium.org
Re: [vchkpw] qmail+vpopmail+mysql+courier-imap+gentoo empty relaytable with roamingusers enabled
This vpopmail-5.2.1-r4.ebuild everything is default nothing special, I have it working on numerous other servers with not a single problem. It' s just the newest mailserver I have built that I am having this problem on. I can send myself email and recieve it. I can remove the relay table, check my email and it readds it but, it continues to stay empty. bob On Wed, 2003-02-26 at 20:08, Justin Heesemann wrote: On Thursday 27 February 2003 01:26, bob ketterhagen wrote: Howdy, I have spent all day trying to figure out why my relay table in the vpopmail database is empty. I have previously had this same setup in gentoo a few months ago and never had a single problem. Currently I have rebuilt checked and rebuilt everything numerous time even from scratch and my database continues to stay empty. If i manually add the ip_addr and timestamp it works fine but it is not working properly like everyother server I have with this setup. I can't even isolate whether it is courier-imap or vpopmail. If anyone would like to enlighten me on what exactly my problem is that would be wonderful. well .. you can. just stop courier-imap and try to authentificate via pop3 (or keep courier running.. shouldn't matter) so now that we do know, that it's vpopmails fault, it would be very nice if you told us the vpopmail configuration string (or is it the vpopmail-5.2.1-r4.ebuild ? still.. many list members don't use gentoo) and your /service/qmail-pop3d/run file would be nice too :) I am using courier-imap 1.7.0 and vpopmail 5.2.1. signature.asc Description: This is a digitally signed message part
[vchkpw] quota's and ALL QUOTA's
Hi all... I have installed: gentoo + qmail + qmail-scanner + vpop + mysql + courier-imap + squirrellmail. All it's working fine, only quota indicate a value every day greater.. I ask myself if yet of I number indicated everything works well?? QUOTA it's really functional in vpop (5.2.1)??? And be the other said, i have squirrellmail with courier-imap, and again, i question QUOTA of vpop, courier, squirellmail+qmail-scaner (with spamassasin) en every other; It's posible work with a real QUOTA (by linux) with VPOP to really use the space correspondig to the specific user's It is, only in your directory work imap, squirell, mails of qmail, and all other information??? thanks
[vchkpw] SpamArrest
Hi, everyone. Im going to be sending this message to all the mailing lists today. If your email address is being handled by SpamArrest, you will be unsubscribed from our lists. SpamArrest, while doing it's best to block spam, is also spamming people who send messages to people using their services. We dont want this bothering people on our mailing lists, so if we find out, you will be unsubscribed without notice. Thanks! -- mailto:[EMAIL PROTECTED] Matt Brookings - Chief Technical Officer Inter7 Internet Technologies, Inc. www.inter7.com - 847-492-0470 Prices at http://www.inter7.com/prices
[vchkpw] qmail+vpopmail+mysql+courier-imap+gentoo empty relay table withroamingusers enabled
Howdy, I have spent all day trying to figure out why my relay table in the vpopmail database is empty. I have previously had this same setup in gentoo a few months ago and never had a single problem. Currently I have rebuilt checked and rebuilt everything numerous time even from scratch and my database continues to stay empty. If i manually add the ip_addr and timestamp it works fine but it is not working properly like everyother server I have with this setup. I can't even isolate whether it is courier-imap or vpopmail. If anyone would like to enlighten me on what exactly my problem is that would be wonderful. I am using courier-imap 1.7.0 and vpopmail 5.2.1. bob signature.asc Description: This is a digitally signed message part
