[vchkpw] vpopmail uid/gid 89
Can somebody explain what I need to do in order to change the uid/gid for vpopmail to something other than 89.89. I have poured over the archives looking for a way, but I can't find anything that explains how. Is there some special reason it needs to be 89? I have tried going into some of the config files and I found a couple of places where it specifies 89.89 for the uid/gid. I have even tried changing these to what I want them to be, but now my qmail isn't working. Looking at some of my files, I discovered some of them are owned by user 89 and group 89, so I have changed those to vpopmail.vchkpw. And of course, I have changed /etc/passwd /etc/group to reflect the uid/gid I want to use. Is there something I am missing? _ Is your computer infected with a virus? Find out with a FREE computer virus scan from McAfee. Take the FreeScan now! http://clinic.mcafee.com/clinic/ibuy/campaign.asp?cid=3963
Re: [vchkpw] Re: Inserting new users via mysql-insert into the vpopmail database
Hejsa, On Fri, 2003-11-07 at 00:21, Tom Collins wrote: Narrowing the possible scope for each letter to 64 from some larger group but increasing the entropy that goes into selecting each character seems like a good idea to me. Remember that we're only selecting 8 random characters -- that's about 40-bits of random numbers. No one has shown that the current method results in a limited set of possible passwords. I'm not arguing against using /dev/[u]random, I'm just saying that it's possible to over-engineer a random password generator... Let's calculate some randomness :) (8 characters from a 128 letter pool: 56 bits) 8 characters from a 80 letter pool: 50 bits 8 characters from a 64 letter pool: 48 bits I'll say it's an acceptable loss eliminating those letters that can easily be confused... Making use of /dev/urandom and/or /dev/random will be high on our priority list for the 5.5 development series. You wan't patches? That would be a nice project for little me... /Anders
RE: [vchkpw] vpopmail uid/gid 89
It can be any number. The only thing that you will run into is that a lot of scripts refer to that number and it is used in any rpm's that you find. Where did it come from you ask? It has been reserved for use by FreeBSD and it has just become the standard. Ross Davis DataAnywhere.net 250-470-9192 -Original Message- From: Don Walters [mailto:[EMAIL PROTECTED] Sent: Thursday, November 06, 2003 11:23 PM To: [EMAIL PROTECTED] Subject: [vchkpw] vpopmail uid/gid 89 Can somebody explain what I need to do in order to change the uid/gid for vpopmail to something other than 89.89. I have poured over the archives looking for a way, but I can't find anything that explains how. Is there some special reason it needs to be 89? I have tried going into some of the config files and I found a couple of places where it specifies 89.89 for the uid/gid. I have even tried changing these to what I want them to be, but now my qmail isn't working. Looking at some of my files, I discovered some of them are owned by user 89 and group 89, so I have changed those to vpopmail.vchkpw. And of course, I have changed /etc/passwd /etc/group to reflect the uid/gid I want to use. Is there something I am missing? _ Is your computer infected with a virus? Find out with a FREE computer virus scan from McAfee. Take the FreeScan now! http://clinic.mcafee.com/clinic/ibuy/campaign.asp?cid=3963
[vchkpw] patch for vdelivermail?
How can I patch vdelivermail to use a special envelope-sender when sending mail to a valias address? Anybody out there with such insights? Thanks Klaus The Problem I am working on: I am using qmail with vpopmail. Using the valias functionality, I provide users an alias email address on our mail server. However, if e.g. the users email address is not valid or his account is full, the relayed message will bounce. Unfortunately, the bounced message will then also contain the users original email address. And thus his identity is no longer protected. Is there any chance that I can use the valias relaying technique without up the privacy of the user when a bounce occurs? Thanks a lot Klaus --- part of the bounce Hi. This is the qmail-send program at sun. I'm afraid I wasn't able to deliver your message to the following addresses. This is a permanent error; I've given up. Sorry it didn't work out. [EMAIL PROTECTED]: 217.72.192.149 does not like recipient. Remote host said: 550 Unknown local part 34985785753857984 in [EMAIL PROTECTED] Giving up on --- log file --- 2003-11-06 21:09:38.841125500 info msg 6532: bytes 1217 from [EMAIL PROTECTED] qp 21688 uid 504 2003-11-06 21:09:38.981216500 starting delivery 218: msg 6532 to local [EMAIL PROTECTED] 2003-11-06 21:09:38.981235500 status: local 1/10 remote 0/20 2003-11-06 21:09:39.115389500 new msg 6534 2003-11-06 21:09:39.115498500 info msg 6534: bytes 1319 from [EMAIL PROTECTED] qp 21693 uid 89 2003-11-06 21:09:39.225814500 starting delivery 219: msg 6534 to remote [EMAIL PROTECTED] 2003-11-06 21:09:39.225832500 status: local 1/10 remote 1/20 2003-11-06 21:09:39.225886500 delivery 218: success: vdelivermail:_valiases_processed/did_0+0+1/ 2003-11-06 21:09:39.226298500 status: local 0/10 remote 1/20 2003-11-06 21:09:39.228225500 end msg 6532 2003-11-06 21:09:39.295339500 delivery 219: failure: 217.72.192.149_does_not_like_recipient./Remote_host_said:_550_Unknown_local_ part_34985785753857984_in_[EMAIL PROTECTED]/Giving_up_on_217. 72.192.149./ 2003-11-06 21:09:39.296037500 status: local 0/10 remote 0/20 2003-11-06 21:09:39.401720500 bounce msg 6534 qp 21695 2003-11-06 21:09:39.401978500 end msg 6534 2003-11-06 21:09:39.402656500 new msg 6581 2003-11-06 21:09:39.402749500 info msg 6581: bytes 1975 from qp 21695 uid 509 2003-11-06 21:09:39.524934500 starting delivery 220: msg 6581 to remote [EMAIL PROTECTED] 2003-11-06 21:09:39.524952500 status: local 0/10 remote 1/20
Re: [vchkpw] vpopmail uid/gid 89
Il giorno Friday 07 November 2003 08:23, Don Walters mi scriveva: I have tried going into some of the config files and I found a couple of places where it specifies 89.89 for the uid/gid. I have even tried changing these to what I want them to be, but now my qmail isn't working. Looking at some of my files, I discovered some of them are owned by user 89 and group 89, so I have changed those to vpopmail.vchkpw. And of course, I have changed /etc/passwd /etc/group to reflect the uid/gid I want to use. Is there something I am missing? User and group are vpopmail and vchkpw. UID and GID are specified in your operating system's configuration file. Usually they are not in /etc/passwd but in another file, readeable only by root (master.passwd, shadow, something_else). You must read you man pages about passwd. -- cris
Re: [vchkpw] Re: Inserting new users via mysql-insert into the vpopmail database
On Friday, November 7, 2003, at 06:54 PM, Anders Brander wrote: Making use of /dev/urandom and/or /dev/random will be high on our priority list for the 5.5 development series. You wan't patches? That would be a nice project for little me... Yep, if you can come up with a patch that checks for the device file and defines a macro in config.h in addition to adding the code. Take a look at how other things work in configure.in to get an idea of how to accomplish that. It should read enough bytes to built a salt or generate a random password (depending on which function is called). I would suggest creating a function in vpopmail to read the random bits into an array of some sort, and have all function that need random data make use of that function. This way, we can keep the random code in one place -- either /dev/[u]random or srand[om]/rand[om]. -- Tom Collins - [EMAIL PROTECTED] Note: The Tom Logic offices will be closed October 23 to November 18. QmailAdmin: http://qmailadmin.sf.net/ Vpopmail: http://vpopmail.sf.net/ Info on the Sniffter hand-held Network Tester: http://sniffter.com/
[vchkpw] question about adding a new domain
Hi all, Ok i'm got vpopmail installed on my qmail server, now i have a quick question about adding domains when setting up a new domain do i set it up as just vadddomain domain.com or as vadddomain mail.domain.com ( assuming mail. is the mx record in dns ) I think it is the first one but jsut want to be sure, since i m adding about 40 domains and don't want to do it all then have to redo :) Cheers, Gary
Re: [vchkpw] question about adding a new domain
Gary wrote: Hi all, Ok i'm got vpopmail installed on my qmail server, now i have a quick question about adding domains when setting up a new domain do i set it up as just vadddomain domain.com or as vadddomain mail.domain.com ( assuming mail. is the mx record in dns ) Hi, What ever the @domain part is on your email address. If you use [EMAIL PROTECTED] then vadddomain domain.com password If you use [EMAIL PROTECTED] then vadddomain mail.domain.com password Regards, Rick
Re: [vchkpw] question about adding a new domain
Gary wrote: Hi all, Ok i'm got vpopmail installed on my qmail server, now i have a quick question about adding domains when setting up a new domain do i set it up as just vadddomain domain.com or as vadddomain mail.domain.com ( assuming mail. is the mx record in dns ) Hi, What ever the @domain part is on your email address. If you use [EMAIL PROTECTED] then vadddomain domain.com password If you use [EMAIL PROTECTED] then vadddomain mail.domain.com password Regards, Rick Thanks Rick that is what I thought, but just needed to be sure.
Re: [vchkpw] vpopmail uid/gid 89
On a lot of systems these days you can run vipw to edit the password file and change the UID. vipw will update the shadow password file too (if you use shadow passwords). I have vipw (I'm running RH9) but it seems to be just a incantation of the vi editor that takes me through the files and allows me to edit them. /etc/shadow doesn't seem to have any uid/gid in there, but I could be wrong. I think I smell an enhancement to vpopmail just waiting to happen. Wouldn't it be nice if I could specify the uid/gid when I run --configure?? I mean, that's kind of a grand assumption that every single user everywhere who installs vpopmail will always want the uid/gid to be 89. _ Is your computer infected with a virus? Find out with a FREE computer virus scan from McAfee. Take the FreeScan now! http://clinic.mcafee.com/clinic/ibuy/campaign.asp?cid=3963
Re: [vchkpw] vpopmail uid/gid 89
On Friday 07 November 2003 12:35 pm, Don Walters wrote: On a lot of systems these days you can run vipw to edit the password file and change the UID. vipw will update the shadow password file too (if you use shadow passwords). I have vipw (I'm running RH9) but it seems to be just a incantation of the vi editor that takes me through the files and allows me to edit them. /etc/shadow doesn't seem to have any uid/gid in there, but I could be wrong. I think I smell an enhancement to vpopmail just waiting to happen. Wouldn't it be nice if I could specify the uid/gid when I run --configure?? I mean, that's kind of a grand assumption that every single user everywhere who installs vpopmail will always want the uid/gid to be 89. The configure script looks up the vpopmail user and gets the uid/gid. Since there was no portable way to look up the uid/gid, configure actually compiles and runs a C program that uses the portable getpwnam() call. So whatever the vpopmail user/group is, configure will figure it out and put it in the headers. The only problem is if you configure it on one machine and then install the compiled binaries on another machine that has a different uid/gid for vpopmail/vchkpw. The other alternative is to have the vpopmail library look up the uid/gid from /etc/passwd every time a program runs that uses the vpopmail lib. For efficency, that lookup is done once at compile time. Ken Jones
[vchkpw] vchkpw not logging errors
The problem: I can't log into any of my vpopmail accounts (just building this out for the first time) and nothing is being logged in /var/log/messages (or anywhere else in /var/log) regarding why my authentication is failing. Does anyone have any ideas about anywhere an error message about the error might get logged? Or has anyone run accross this problem before? Thanks! The details: Ok - pop3d is working: --- telnet localhost 110 Trying 127.0.0.1... Connected to localhost. Escape character is '^]'. +OK 29721.1068190580@servername>> user my user name>@my virtual domain> +OK pass my pass> -ERR authorization failed Connection closed by foreign host. -- /var/log/qmail/pop3d/current tells me: --- @40003fab4b7e0729a034 tcpserver: status: 1/20 @40003fab4b7e072b6554 tcpserver: pid 29721 from 127.0.0.1 @40003fab4b7e072dfd64 tcpserver: ok 29721 o:127.0.0.1:110 :127.0.0.1::33145 @40003fab4b99371422c4 tcpserver: end 29721 status 256 @40003fab4b9937143a34 tcpserver: status: 0/20 --- /var/qmail/vpopmail/bin/vuserinfo tells me: --- name: user name> passwd: encrypted pass> clear passwd: pass> uid:0 gid:0 all services available dir: /var/qmail/vpopmail/domains/domain name>/user name> quota: NOQUOTA usage: NOQUOTA account created: Thu Nov 6 22:18:11 2003 last auth: Never logged in a select * from vpopmail where pw_name='user name>' tells me everything is there. ps waux --cols=100 | grep readproc tells me: readproctitle service errors: ... --- and vpopmail was compiled with: ./configure --enable-mysql=y --enable-md5-passwords=y --enable-logging=p --enable-auth-logging=y --enable-ip-alias-domains=y --enable-valias=y --enable-mysql-logging=y and it is version 5.2.1
Re: [vchkpw] vpopmail uid/gid 89
Don Walters wrote: I have vipw (I'm running RH9) but it seems to be just a incantation of the vi editor that takes me through the files and allows me to edit them. Essentially it *is* a wrapper but it also does some file-locking and other housekeeping... RH also has pwd_conv to manually create /etc/shadow from /etc/passwd. -- Aj. Systems Administrator / Developer
Re: [vchkpw] vchkpw not logging errors
I ran tail -f /var/log/maillog and then ran telnet localhost 110 as before and received no authentication logging. /var/log/maillog does contain the following with a tail -n 20 /var/log/maillog: Nov 6 22:25:48 webserver2 spamd[26758]: connection from localhost [127.0.0.1] at port 56571 Nov 6 22:25:48 webserver2 spamd[13171]: info: setuid to root succeeded Nov 6 22:25:48 webserver2 spamd[13171]: Still running as root: user not specified with -u, not found, or set to root. Fall back to nobody. Nov 6 22:25:48 webserver2 spamd[13171]: processing message [EMAIL PROTECTED] for root:99. Nov 6 22:25:48 webserver2 spamd[13171]: clean message (0.0/6.0) for root:99 in 0.1 seconds, 303 bytes. Nov 6 22:25:48 webserver2 spamd[26758]: connection from localhost [127.0.0.1] at port 56572 Nov 6 22:25:48 webserver2 spamd[13181]: info: setuid to root succeeded Nov 6 22:25:48 webserver2 spamd[13181]: Still running as root: user not specified with -u, not found, or set to root. Fall back to nobody. Nov 6 22:25:48 webserver2 spamd[13181]: processing message [EMAIL PROTECTED] for root:99. Nov 6 22:25:48 webserver2 spamd[13181]: clean message (0.0/6.0) for root:99 in 2.4 seconds, 303 bytes. Nov 6 22:25:48 webserver2 spamd[26758]: connection from localhost [127.0.0.1] at port 56573 Nov 6 22:25:48 webserver2 spamd[13195]: info: setuid to root succeeded Nov 6 22:25:48 webserver2 spamd[13195]: Still running as root: user not specified with -u, not found, or set to root. Fall back to nobody. Nov 6 22:25:48 webserver2 spamd[13195]: processing message 9PS291LhupY for root:99. Nov 6 22:25:49 webserver2 spamd[13195]: identified spam (14.3/6.0) for root:99 in 1.2 seconds, 1544 bytes. Nov 6 22:25:50 webserver2 spamd[26758]: connection from localhost [127.0.0.1] at port 56574 Nov 6 22:25:50 webserver2 spamd[13246]: info: setuid to root succeeded Nov 6 22:25:50 webserver2 spamd[13246]: Still running as root: user not specified with -u, not found, or set to root. Fall back to nobody. Nov 6 22:25:51 webserver2 spamd[13246]: checking message 9PS291LhupY for root:99. Nov 6 22:25:51 webserver2 spamd[13246]: identified spam (14.3/6.0) for root:99 in 0.6 seconds, 1544 bytes. so spamd can definitely write here. Thanks for the follow up! On Friday, November 7, 2003, at 01:55 PM, Ajai Khattri wrote: Fred Tucker wrote: The problem: I can't log into any of my vpopmail accounts (just building this out for the first time) and nothing is being logged in /var/log/messages (or anywhere else in /var/log) regarding why my authentication is failing. Does anyone have any ideas about anywhere an error message about the error might get logged? What's in /var/log/maillog ? -- Aj. Systems Administrator / Developer Fred Tucker Senior Software Developer/Network Admin Rocket Science Group, LLC 404-936-6857 [EMAIL PROTECTED] www.rocketsciencegroup.com
[vchkpw] Mysql database: vpopmail courier-imap virtual domains...
Hi list, Sorry to disturb you all :) Well, i'm trying to install on a debian 3.0 stable woody the nice combinaison of: Qmail / vpopmail / mysql / squirrelmail. I've followed the howto http://www.pipeline.com.au/staff/mbowe/isp/webmail-server.htm; but ran into a big problem I think I won't be able to solve alone... I don't know what I did wrong, but it seems that vpopmail authmysql don't use the same tables in my database: Vpopmail add the domains like this: (when using the vadddomain toto.com) Tables_in_vpopmail -- Toto_com Dir_control Lastauth Xx.com Test_com Valias Well, I think this is ok.. I add users like this: vadduser [EMAIL PROTECTED], and I can find him and his password in the test_com table. What I don't understand is when I try to log in from an IMAP client (squirrelmail or any other I had on the hands) is that the SQL query is: SELECT id, crypt, , uid, gid, home, ,,name FROM passwd WHERE id=toto; Could be ok, but the problem is there are no table passwd :/ I mean, I don't have a table that regroup the login datas of all my virtual domains. So maybe one of you has an illuminating light to spot on my face so I can come back to the light side, far from where i'm ;) PS: I found out that the courier authmysqlrc file had parameterable fields, but only for ONE domain, didn't figured out where was the mistake: is it on the authmysqld side, or in the vpopmail side ? List: i'm lost :( / help :) Sorry for the noise my question will put in the list ;) Thx __ Marc Lecuyer Far from beeing an admin :) [EMAIL PROTECTED]
Re: [vchkpw] vchkpw not logging errors
Ok - so I got the first part of the problem fixed after running some straces and I apologize for not finding this earlier: /var/qmail/supervise/qmail-pop3d/run was still looking at /bin/checkpasswd. So that is now fixed and I have a new message: error while loading shared libraries: libc.so.6: failed to map segment from shared object: Cannot allocate memory So... I figured that had to do with the softlimit in the run script so I increased that and now everything is working. I do appologize for the trouble.
Re: [vchkpw] vpopmail uid/gid 89
Don Walters wrote: On a lot of systems these days you can run vipw to edit the password file and change the UID. vipw will update the shadow password file too (if you use shadow passwords). I have vipw (I'm running RH9) but it seems to be just a incantation of the vi editor that takes me through the files and allows me to edit them. /etc/shadow doesn't seem to have any uid/gid in there, but I could be wrong. I think I smell an enhancement to vpopmail just waiting to happen. Wouldn't it be nice if I could specify the uid/gid when I run --configure?? I mean, that's kind of a grand assumption that every single user everywhere who installs vpopmail will always want the uid/gid to be 89. _ Is your computer infected with a virus? Find out with a FREE computer virus scan from McAfee. Take the FreeScan now! http://clinic.mcafee.com/clinic/ibuy/campaign.asp?cid=3963 I think we should not mess with that what is generally accepted. If you want a differen uid/gid, create the user and group before hand with the uid/gid you want, and then compile vpopmail. It will not use the uid/gid you specify.
Re: [vchkpw] Mysql database: vpopmail courier-imap virtual domains...
- Original Message - From: Marc Lécuyer [EMAIL PROTECTED] Hi list, Sorry to disturb you all :) Well, i'm trying to install on a debian 3.0 stable woody the nice combinaison of: Qmail / vpopmail / mysql / squirrelmail. I've followed the howto http://www.pipeline.com.au/staff/mbowe/isp/webmail-server.htm; but ran into a big problem I think I won't be able to solve alone... I don't know what I did wrong, but it seems that vpopmail authmysql don't use the same tables in my database: Make sure you configure courier-imap --without-authmysql --with-authvchkpw Basically you want courier to auth passwords using the vchkpw (vpopmail) system, not via it's own method of storing accounts in mysql Michael.