RE: [vchkpw] vchkpw and courier 2.2.2 (probably a bug)
Michael Bowe wrote: Try something simple like telnet 127.0.0.1 pop3 user [EMAIL PROTECTED] pass password I've tried with courier pop3. observe# telnet 127.0.0.1 110 Trying 127.0.0.1... Connected to 127.0.0.1. Escape character is '^]'. +OK Hello there. USER [EMAIL PROTECTED] +OK Password required. PASS test +OK logged in. LIST +OK POP3 clients that break here, they violate STD53. . QUIT +OK Bye-bye. Connection closed by foreign host I couldn't donwload my emails, in /var/log/maillog I see: Jan 14 10:23:22 observe pop3d: LOGIN, [EMAIL PROTECTED], ip=[:::192.168.0.15] Jan 14 10:23:24 observe pop3d: LOGOUT, [EMAIL PROTECTED], ip=[:::192.168.0.15], top=0, retr=0 192.168.0.15 is my local ip. Is the :: problem that Tom said about clearopensmtp? Thanks Andrea
[vchkpw] unsubscribe paolo@buongiorno.it
unsubscribe [EMAIL PROTECTED]
RE: [vchkpw] vchkpw and courier 2.2.2 (probably a bug)
Hi, On Wed, 2004-01-14 at 11:24, Andrea Riela wrote: Try something simple like telnet 127.0.0.1 pop3 user [EMAIL PROTECTED] pass password I've tried with courier pop3. observe# telnet 127.0.0.1 110 Trying 127.0.0.1... Connected to 127.0.0.1. Escape character is '^]'. +OK Hello there. USER [EMAIL PROTECTED] +OK Password required. PASS test +OK logged in. LIST +OK POP3 clients that break here, they violate STD53. Is this an error or a warning? It does return +OK and nothing seems wrong about the output? Is there actually any mail waiting? Please double-check. /Anders
[vchkpw] Courier IMAP + Outlook Express Feedbacks
Hi all! I'm working on a quite critical email project. We want to use Imap in order to reduce client management complexity (email backups, etc...). I'm using very happily Courier Imap and Mozilla since 2 years now so I'm very confident with Mozilla and Courier Imap interoperability. But now we would need to deploy IMAP to 300 users and we need also to select an IMAP client. The more obvious choise would be outlook express (for a number of reason). I've tested for a couple of days OE 6 without any serious problem. The only drawback is that it tries to always download attachments from the server even if I click on them. The questions are: - What is your experience with the combination of OE and Courier Imap? - is the Imap interoperability robust enough to use it in a production environment? - Which are the release combinations that can be considered stable? Thanks to everyone for feedbacks! Ciao Paolo
RE: [vchkpw] vchkpw and courier 2.2.2 (probably a bug)
Anders Brander wrote: +OK POP3 clients that break here, they violate STD53. Is this an error or a warning? It does return +OK and nothing seems wrong about the output? Is there actually any mail waiting? Please double-check. I don't know, in my opinion is a bug, I've never seen that with qmail-pop3d, only with courier-imap pop3 and pop3-ssl. There's probably a problem. Another thing: When I try to download the emails through courier-imap pop3, I couldn't, and in my /var/log/maillog I've something like: Jan 14 10:23:07 observe pop3d: Connection, ip=[:::192.168.17.13] Jan 14 10:23:06 observe pop3d: LOGIN, [EMAIL PROTECTED], ip=[:::192.168.17.13] Jan 14 10:23:06 observe pop3d: LOGOUT, [EMAIL PROTECTED], ip=[:::192.168.17.13], top=0, retr=0 Jan 14 10:23:06 observe pop3d: Connection, ip=[:::192.168.17.13] Jan 14 10:23:06 observe pop3d: LOGIN, [EMAIL PROTECTED], ip=[:::192.168.17.13] Jan 14 10:23:06 observe pop3d: LOGOUT, [EMAIL PROTECTED], ip=[:::192.168.17.13], top=0, retr=0 Jan 14 10:23:06 observe pop3d: Connection, ip=[:::192.168.17.13] Jan 14 10:23:06 observe pop3d: LOGIN, [EMAIL PROTECTED], ip=[:::192.168.17.13] Jan 14 10:23:07 observe pop3d: LOGOUT, [EMAIL PROTECTED], ip=[:::192.168.17.13], top=0, retr=0 And so on. What's that? Thanks Andrea
RE: [vchkpw] vchkpw and courier 2.2.2 (probably a bug)
On Wed, 2004-01-14 at 10:10, Andrea Riela wrote: Anders Brander wrote: +OK POP3 clients that break here, they violate STD53. I don't know, in my opinion is a bug, I've never seen that with qmail-pop3d, only with courier-imap pop3 and pop3-ssl. There's probably a problem. what exactly is a bug? It states clearly that POP3 clients that break here, they violate STD53 That is courier saying that. It doesn't HAVE to be there, but it can be. Another thing: When I try to download the emails through courier-imap pop3, I couldn't, and in my /var/log/maillog I've something like: Jan 14 10:23:07 observe pop3d: Connection, ip=[:::192.168.17.13] Jan 14 10:23:06 observe pop3d: LOGIN, [EMAIL PROTECTED], ip=[:::192.168.17.13] Jan 14 10:23:06 observe pop3d: LOGOUT, [EMAIL PROTECTED], ip=[:::192.168.17.13], top=0, retr=0 Jan 14 10:23:06 observe pop3d: Connection, ip=[:::192.168.17.13] Jan 14 10:23:06 observe pop3d: LOGIN, [EMAIL PROTECTED], ip=[:::192.168.17.13] Jan 14 10:23:06 observe pop3d: LOGOUT, [EMAIL PROTECTED], ip=[:::192.168.17.13], top=0, retr=0 Jan 14 10:23:06 observe pop3d: Connection, ip=[:::192.168.17.13] Jan 14 10:23:06 observe pop3d: LOGIN, [EMAIL PROTECTED], ip=[:::192.168.17.13] Jan 14 10:23:07 observe pop3d: LOGOUT, [EMAIL PROTECTED], ip=[:::192.168.17.13], top=0, retr=0 they look like successful logins to me. You have an MUA issue, and are blaming courier for it. Try a different MUA. -Jeremy -- Jeremy Kitchen Systems Administrator [EMAIL PROTECTED] Kitchen @ #qmail on EFNet - Join the party! . Inter7 Internet Technologies, Inc. www.inter7.com 866.528.3530 toll free 847.492.0470 int'l 847.492.0632 fax GNUPG key ID: 93BDD6CE
RE: [vchkpw] vchkpw and courier 2.2.2 (probably a bug)
Jeremy Kitchen wrote: It states clearly that POP3 clients that break here, they violate STD53 That is courier saying that. It doesn't HAVE to be there, but it can be. It's a courier bug, for you? Another thing: they look like successful logins to me. You have an MUA issue, and are blaming courier for it. Try a different MUA. Wich MUA, for example? I need a pop3+ssl to connect to vpopmail for roaming through my smtp relay. I've tried with qmail-pop3d with ucspi-ssl, auth is ok, I could download my emails, but the roaming doesn't work. With courier (2.2.1) I've problems to connect to vpopmail, or (now:2.2.2.20040112) I couldn't donwload the emails (I don't know if the roaming works). Courier+relay-ctrl has a bug: an user with password wrong opens the smtp relay. Well, what I've to try? All advices are appreciates to me. Thanks Andrea
RE: [vchkpw] vchkpw and courier 2.2.2 (probably a bug)
On Wed, 2004-01-14 at 10:28, Andrea Riela wrote: Jeremy Kitchen wrote: It states clearly that POP3 clients that break here, they violate STD53 That is courier saying that. It doesn't HAVE to be there, but it can be. It's a courier bug, for you? no, I'm asking you, what do you think is the 'bug'. Not asking about code, what is jumping out at you and indicating a bug? I didn't see anything in your report that showed anything that looked like a bug. Another thing: they look like successful logins to me. You have an MUA issue, and are blaming courier for it. Try a different MUA. Wich MUA, for example? whichever one you're having the problem with. I assume you are mailing the list because you are having a problem, am I incorrect? -Jeremy -- Jeremy Kitchen Systems Administrator [EMAIL PROTECTED] Kitchen @ #qmail on EFNet - Join the party! . Inter7 Internet Technologies, Inc. www.inter7.com 866.528.3530 toll free 847.492.0470 int'l 847.492.0632 fax GNUPG key ID: 93BDD6CE
Re: [vchkpw] spam assassin enable/disable per domain flag
Ken Jones wrote: I was wondering where the best place to put a domain wide enable/disable flag for spamassassin would be. What do you folks think? The idea would be to have a file checked by vdelivermail. If spam assassin is enabled, vdelivermail calls spamc before dropping the email into the users Maildir. Then the setup would be backwardly compatible with current sites. And they could enable/disable spam assassin by just updating the configuration file. Instead of checking for a file, why not use the extra space in the vpopmail gecos fields to store spam settings for that user? I've already got a bunch of files hanging around in each home directory (hopefully less if this spamassassin integration works). Another thing to consider is where to put the spam. Some of our users like it to go to the Trash folder, some like it to go to the Spam folder. This should be customizable somehow for vdelivermail. Actually, now that I think about it, I probably wouldn't even use the vdelivermail integration for spamassassin. I already call a .qmail file to do all the maildrop filtering and everything that vdelivermail can't do, so there's no need to spawn another vdelivermail just to filter spam when I can call spamc from maildrop. I still think the setting should go in a gecos field though :) --Doug
[vchkpw] Re: vchkpw and courier 2.2.2 (probably a bug)
Hello Andrea, On Wednesday, January 14, 2004 at 5:10:16 PM you wrote (at least in part): When I try to download the emails through courier-imap pop3, I couldn't, and in my /var/log/maillog I've something like: Jan 14 10:23:07 observe pop3d: Connection, ip=[:::192.168.17.13] Jan 14 10:23:06 observe pop3d: LOGIN, [EMAIL PROTECTED], ip=[:::192.168.17.13] Jan 14 10:23:06 observe pop3d: LOGOUT, [EMAIL PROTECTED], ip=[:::192.168.17.13], top=0, retr=0 What the h*** makes you assume you can't download your mails??? I don't doubt you can't, but you haven't shown /ANY/ line of log or something that shows the error. All you've shown is lines with successful logins and a LIST that returned with no mails. So - are you sure there actually are mails in users mailbox (-dir)? - are you sure courier-pop3d looks in the right place? IOW: make sure there's at least a test mail in test-users Maildir. And than insert a 'strace', 'ktrace' or whatever-trace in your 'courier-pop3' startup, which logs file and directory actions so you can have a look if 1.) Courier changes to the correct directory. 2.) Courier opens the correct 'Maildir' and 'Maildir/new' directories. -- Best regards Peter Palmreuther All great discoveries are made by mistake.
Re: [vchkpw] spam assassin enable/disable per domain flag
On Wed, 2004-01-14 at 11:18, Doug Clements wrote: Ken Jones wrote: I was wondering where the best place to put a domain wide enable/disable flag for spamassassin would be. What do you folks think? The idea would be to have a file checked by vdelivermail. If spam assassin is enabled, vdelivermail calls spamc before dropping the email into the users Maildir. Then the setup would be backwardly compatible with current sites. And they could enable/disable spam assassin by just updating the configuration file. Instead of checking for a file, why not use the extra space in the vpopmail gecos fields to store spam settings for that user? This'd be awesome as a place to store the boolean controlling whether we call spam assassin or not. I've already got a bunch of files hanging around in each home directory (hopefully less if this spamassassin integration works). Another thing to consider is where to put the spam. Some of our users like it to go to the Trash folder, some like it to go to the Spam folder. This should be customizable somehow for vdelivermail. This makes more sense to use something like Maildrop for. Why reinvent the wheel when you can easily use Maildrop to check the spam status and then deliver where you want? Actually, now that I think about it, I probably wouldn't even use the vdelivermail integration for spamassassin. I already call a .qmail file to do all the maildrop filtering and everything that vdelivermail can't do, so there's no need to spawn another vdelivermail just to filter spam when I can call spamc from maildrop. I like being able to toggle spamassassin above maildrop, because calling maildrop is heavier than checking something you've already pulled from a database. I personally have users who have maildrop without spamassassin, spamassassin without maildrop, and both. This way I can call just those pieces I need. I still think the setting should go in a gecos field though :) --Doug Also, any idea how quickly we could see versions of this? I'm on the cusp of deploying a spamassassin integrated setup to my users, and this'd allow me to streamline it and make it more reliable, so I'd be very interested in helping make this work (either through testing or code or ideas or moral support or whatever). -- Nicholas harring [EMAIL PROTECTED] Webley Systems, Inc.
[vchkpw] Re: Ucspi-ssl?
Hello Andrea, On Wednesday, January 14, 2004 at 2:43:23 AM you wrote (at least in part): Hi folks, Have you ever been using ucspi-ssl to connect to pop3 service with ssl? I've tested that, and it works fine with vchkpw. The problem is the roaming: after the pop3 connection (with ssl), I look my /home/vpopmail/etc: the open-smtp is blank, and I've a lot .tmp files (one for one connection; like open-smtp.tmp.num, where num is a random number). If you don't find any error logs about vchkpw failed to write data to 'open-smtp' insert a 'strace' or similar behind ssl-listener and let it log all file open/read/write actions. You should see the error code, and maybe even a short note printed by vchkpw, why it failed to finish it's work. Maybe a permission problem? Is ssl-listener or vchkpw not started as 'root' or 'vpopmail' (or whatever your vpopmail user is named)??? -- Best regards Peter Palmreuther Sex hasn't been the same since women started enjoying it.
RE: [vchkpw] vchkpw and courier 2.2.2 (probably a bug)
I assume you are mailing the list because you are having a problem, am I incorrect? No, I'm incorrect. When I've seen +OK POP3 clients that break here, they violate STD53. I've supposed that's a bug, or that's a strange thing, a problem? Well, I couldn't donwload my emails with courier, and I'm checking my system. The :::192.168.17.13 for me is a strange thing too. But, If you say no, I agree with you. Then, where is my problem? Pop3 and pop3-ssl don't completely work. The auth is ok (thanks to Michael Bowe, for the patch), but I couldn't download the emails. Now I try with imap, but I need the pop3 service. Andrea
Re: [vchkpw] spam assassin enable/disable per domain flag
On Jan 14, 2004, at 10:26 AM, Nick Harring wrote: Instead of checking for a file, why not use the extra space in the vpopmail gecos fields to store spam settings for that user? This'd be awesome as a place to store the boolean controlling whether we call spam assassin or not. The GECOS field is currently used to store the user's real name. You could store the boolean as a flag in the pw_gid field though. -- Tom Collins - [EMAIL PROTECTED] QmailAdmin: http://qmailadmin.sf.net/ Vpopmail: http://vpopmail.sf.net/ Info on the Sniffter hand-held Network Tester: http://sniffter.com/
Re: [vchkpw] vchkpw and courier 2.2.2 (probably a bug)
On Jan 14, 2004, at 10:26 AM, Andrea Riela wrote:
The :::192.168.17.13 for me is a strange thing too. But, If you
say
no, I agree with you.
Here's the patch to fix that, currently in CVS, that will be in the
next release (which will probably be out by the end of the week).
Courier might still log that IPv6 address, but the opensmtp file will
have the correct IPv4 address.
Update of /cvsroot/vpopmail/vpopmail
In directory sc8-pr-cvs1:/tmp/cvs-serv13384
Modified Files:
vchkpw.c vpopmail.c
Log Message:
log IPv4 address instead if IPv6 address in lastlog table (and fix bug
in related get_remote_ip() code in vpopmail.c) [876019]
Index: vchkpw.c
===
RCS file: /cvsroot/vpopmail/vpopmail/vchkpw.c,v
retrieving revision 1.10
retrieving revision 1.11
diff -u -d -r1.10 -r1.11
--- vchkpw.c13 Jan 2004 06:09:18 - 1.10
+++ vchkpw.c13 Jan 2004 15:59:42 - 1.11
@@ -105,7 +105,7 @@
{
char *tmpstr;
- if ( (IpAddr = getenv(TCPREMOTEIP)) == NULL) IpAddr=;
+ if ( (IpAddr = get_remote_ip()) == NULL) IpAddr=;
if ( (tmpstr = getenv(TCPLOCALPORT)) == NULL) LocalPort = 110;
else LocalPort = atoi(tmpstr);
Index: vpopmail.c
===
RCS file: /cvsroot/vpopmail/vpopmail/vpopmail.c,v
retrieving revision 1.27
retrieving revision 1.28
diff -u -d -r1.27 -r1.28
--- vpopmail.c 13 Jan 2004 05:24:18 - 1.27
+++ vpopmail.c 13 Jan 2004 15:59:42 - 1.28
@@ -3058,7 +3058,7 @@
char *p;
ipenv = getenv(TCPREMOTEIP);
- if ((ipenv == NULL) || (strlen(ipenv) sizeof(ipaddr))) return
ipenv;
+ if ((ipenv == NULL) || (strlen(ipenv) sizeof(ipbuf))) return ipenv;
strcpy (ipbuf, ipenv);
ipaddr = ipbuf;
--
Tom Collins - [EMAIL PROTECTED]
QmailAdmin: http://qmailadmin.sf.net/ Vpopmail: http://vpopmail.sf.net/
Info on the Sniffter hand-held Network Tester: http://sniffter.com/
RE: [vchkpw] vchkpw and courier 2.2.2 (probably a bug)
Andrea Riela wrote: Then, where is my problem? Pop3 and pop3-ssl don't completely work. The auth is ok (thanks to Michael Bowe, for the patch), but I couldn't download the emails. Sorry Jeremy, sorry Peter, I'm stupid. I need a beer :) Here, all works fine with courier-pop3. Now I check the roaming with vpopmail. The courier-pop3s, instead, doesn't work: I couldn't download the emails. After openssl s_client -connect 127.0.0.1:995, and USER (correct or not) and PASS (correct or not), the session is closed. That's normal? Thanks Andrea
RE: [vchkpw] Re: Ucspi-ssl?
Peter Palmreuther wrote: If you don't find any error logs about vchkpw failed to write data to 'open-smtp' insert a 'strace' or similar behind ssl-listener and let it log all file open/read/write actions. You should see the error code, and maybe even a short note printed by vchkpw, why it failed to finish it's work. Could you send me an example? Something like 'strace openssl s_client -connect 127.0.0.1:995'? Maybe a permission problem? Is ssl-listener or vchkpw not started as 'root' or 'vpopmail' (or whatever your vpopmail user is named)??? My /home/vpopmail/etc: observe# ls -la total 10 drwxr-xr-x 2 root wheel512 Jan 14 17:40 . drwxr-xr-x 8 root wheel512 Jan 12 01:10 .. -rw-r--r-- 1 root wheel 25 Jan 12 12:13 inc_deps -rw-r--r-- 1 root wheel 34 Jan 12 12:13 lib_deps -rw-r--r-- 1 vpopmail vchkpw 0 Jan 14 17:40 open-smtp -rw-r--r-- 1 root wheel 0 Jan 12 01:39 open-smtp.lock -rw-r--r-- 1 root wheel454 Jan 12 01:07 tcp.smtp -rw-r--r-- 1 vpopmail vchkpw 2352 Jan 14 17:40 tcp.smtp.cdb -rw-r--r-- 1 vpopmail vchkpw 1107 Jan 12 01:09 vlimits.default After a connection via pop3-ssl, I've this /home/vpopmail/etc: observe# ls -la total 10 drwxr-xr-x 2 root wheel512 Jan 14 19:03 . drwxr-xr-x 8 root wheel512 Jan 12 01:10 .. -rw-r--r-- 1 root wheel 25 Jan 12 12:13 inc_deps -rw-r--r-- 1 root wheel 34 Jan 12 12:13 lib_deps -rw-r--r-- 1 vpopmail vchkpw 0 Jan 14 18:40 open-smtp -rw-r--r-- 1 root wheel 0 Jan 14 19:03 open-smtp.lock -rw-r--r-- 1 root wheel 0 Jan 14 19:03 open-smtp.tmp.4634 -rw-r--r-- 1 root wheel454 Jan 12 01:07 tcp.smtp -rw-r--r-- 1 vpopmail vchkpw 2352 Jan 14 18:40 tcp.smtp.cdb -rw-r--r-- 1 vpopmail vchkpw 1107 Jan 12 01:09 vlimits.default And the open-smtp is blank (and roaming doesn't work). My pstree: | | |-+- 04259 root supervise qmail-pop3s | | | \--- 01717 root /usr/local/bin/sslserver -v -R -H -l 0 0 995 /var/qmail/ | | \-+- 32362 root supervise log | | \--- 20434 qmaill multilog t /var/log/qmail/pop3s My runscript: Irun Row 1 Col 17:08 Ctrl-K H for help #!/bin/sh CAFILE=/usr/local/ssl/certs/pop3s.cert CERTFILE=/usr/local/ssl/certs/pop3s.cert KEYFILE=/usr/local/ssl/certs/pop3s.key DHFILE=/usr/local/ssl/certs/dh1024.pem export CAFILE CERTFILE KEYFILE DHFILE exec /usr/local/bin/softlimit -m 380 \ /usr/local/bin/sslserver -v -R -H -l 0 0 995 /var/qmail/bin/qmail-popup \ nesys.it /home/vpopmail/bin/vchkpw /var/qmail/bin/qmail-pop3d Maildir 21 Thanks for all Regards Andrea
[vchkpw] Good times!
Hi. I just wanted to let you all know I'm very happy with this developing model. Ken did a great job with this, but I must say _this_ is something very different from what I'm used to regarding this software. The development is flourishing! It's exploading! Keep it up guys!
[vchkpw] Mailer Daemons
Greetings - Recently I am getting a few emails that get returned saying Connected to 207.155.248.45 but sender was rejected. Remote host said: 550 Invalid domain terabytellc.com or...that a host that is being sent the email to can not be found by our email server.could this be a reverse DNS issue? thanks, Marty
Re: [vchkpw] Mailer Daemons
martin said: Greetings - Recently I am getting a few emails that get returned saying Connected to 207.155.248.45 but sender was rejected. Remote host said: 550 Invalid domain terabytellc.com or...that a host that is being sent the email to can not be found by our email server.could this be a reverse DNS issue? thanks, Marty terabytellc.com points to a 64.186 address. Not sure where your picking up 207.155.248.45 from? mail.terabytellc.cominternet address = 64.186.34.68 Jake
Re: [vchkpw] Mailer Daemons
Jake S wrote: martin said: Greetings - Recently I am getting a few emails that get returned saying Connected to 207.155.248.45 but sender was rejected. Remote host said: 550 Invalid domain terabytellc.com or...that a host that is being sent the email to can not be found by our email server.could this be a reverse DNS issue? thanks, Marty terabytellc.com points to a 64.186 address. Not sure where your picking up 207.155.248.45 from? mail.terabytellc.cominternet address = 64.186.34.68 Jake . 207.155.248.45 is the server that rejected the email back to me saying that terabytellc.com was not a valid domain oddly enough..I have been able to send to that email server before...this whole issue seems to come and go thanks, Marty
Re: [vchkpw] spam assassin enable/disable per domain flag
On Wednesday 14 January 2004 11:40 am, Tom Collins wrote: You could store the boolean as a flag in the pw_gid field though. Great idea Tom! Here are my proposed changes for vdelivermail: New and unused pw_gid bit for disable/enable spam filtering. #define NO_SPAM_FILTER 0x4000 Currently the last defined bit is QA_ADMIN 0x2000 If --enable-spamassassin=y on configure: bit 0 = spam assassin enabled (current default) bit 1 = spam assassin disabled So, if the system admin wants to enable spam assassin it will automatically be turned on for all current and new users. Then individual users could have it turned off. If --enable-spamassassin=no (default) bit is ignored. same as all current versions. Here is the proposed vdelivermail logic: 1) get the user record (as normal) 2) If --enable-spamassassin=y was set on configure and delivering to the users Maildir and the no_spam_filter flag is 0 (default) then: vfork spamc -f [EMAIL PROTECTED], setup the file descriptors to write to spamc and read it's output. write the email to spamc read spamc output and write into the normal email file. 3) continue processing as normal with spamd started with the -v option (vpopmail support) spamd will look in the vpopmail users directory for a .spamassassin directory for personalized settings, local.cf file. Qmailadmin and vqadmin can be modified to operate on this directory/file. This is specifically for sites where the user picks up email from their inbox and has their email client do the filtering. I think the current maildrop method would work best for IMAP sites that want the email delivered into a different folder. Timeframe: If this sounds reasonable I will look at implementing it over the weekend into vpopmail (cvs or patch). Then I'll look at vqadmin. qmailadmin will probably be the most work so we could do that afterwards. Ken Jones
Re: [vchkpw] spam assassin enable/disable per domain flag
At 09:40 AM 1/14/2004, Tom Collins wrote: On Jan 14, 2004, at 10:26 AM, Nick Harring wrote: Instead of checking for a file, why not use the extra space in the vpopmail gecos fields to store spam settings for that user? This'd be awesome as a place to store the boolean controlling whether we call spam assassin or not. The GECOS field is currently used to store the user's real name. You could store the boolean as a flag in the pw_gid field though. What's wrong with making another column in the table? Seems like some fields are doing double duty and that could lead to confusion during later development.
Re: [vchkpw] spam assassin enable/disable per domain flag
Ken Jones wrote: On Wednesday 14 January 2004 11:40 am, Tom Collins wrote: snip-- with spamd started with the -v option (vpopmail support) spamd will look in the vpopmail users directory for a .spamassassin directory for personalized settings, local.cf file. Qmailadmin and vqadmin can be modified to operate on this directory/file. This is specifically for sites where the user picks up email from their inbox and has their email client do the filtering. I think the current maildrop method would work best for IMAP sites that want the email delivered into a different folder. Hi, I can't speak for anyone else, but the 15 or 20 qmail/vpopmail servers that I've installed or manage all use MySQL preferences rather than .spamassassin/user_prefs flat files. Just something to keep in mind if you are adding per user pref options to qmailadmin, it would be nice to be able to disable (or update the mysql database, but I know that would add a lot of extra work) the user prefs option but still have the ability to turn on and off the actual scanning. Regards, Rick
[vchkpw] Re: Ucspi-ssl?
Hello Andrea, On Wednesday, January 14, 2004 at 7:08:39 PM you wrote (at least in part): If you don't find any error logs about vchkpw failed to write data to 'open-smtp' insert a 'strace' or similar behind ssl-listener ... Could you send me an example? Something like 'strace openssl s_client -connect 127.0.0.1:995'? In your 'run' script give this a try: [...] /usr/local/bin/sslserver -v -R -H -l 0 0 995 \ strace -f -s 4096 -o /tmp/ssl-pop3.log \ /var/qmail/bin/qmail-popup \ [...] Don't let this run when real users try to log in, the password will be in '/tmp/ssl-pop3.log'. Use this only with test accounts, if you intend to publish the log (or relevant excerpts from it) in this list. If you don't intend to do this we will probably not be able to help. Maybe a permission problem? Is ssl-listener or vchkpw not started as 'root' or 'vpopmail' (or whatever your vpopmail user is named)??? My /home/vpopmail/etc: [...] After a connection via pop3-ssl, I've this /home/vpopmail/etc: [...] Looks like vchkpw is run as root, therefore a pure problem with permissions is more or less unlikely. -- Best regards Peter Palmreuther No problem is so formidable that you can't just walk away from it.
[vchkpw] How to make open-smtp owned by vpopmail:vchkpw ?
Hello: In vpopmail's README it is recommended that if all of your pop email accounts are under virtual domains, you can increase the security of your pop server by running it under the uid and gid of vpopmail/vchkpw using the tcpserver -u and -g options. How to do this? If I change qmail-pop3d/run with tcpserver ... -u 89 -g 89 ... where uid=89(vpopmail) gid=89(vchkpw), I got this error: $ fetchmail -p APOP -c -u fetchmail -p APOP -c -u [EMAIL PROTECTED] x.x Enter password for [EMAIL PROTECTED]: fetchmail: Authorization failure on [EMAIL PROTECTED] Any hint? -- Alejandro Aguilar Sierra [EMAIL PROTECTED]
[vchkpw] checkuser patch
We trying to setup a Smart Host mail router but kludge the checkuser patch and vpopmail to verify the domain and user name before smpt'ing the mail to the appropriate mailserver. However, we're getting stuck - the server keeps trying to deliver the mail locally even though we have smtproutes setup. We'd like to keep the junk from being pushed through the smarthost (we get about 60K messages a day to non-existent usernames) - and the checkuser patch seemed to be the answer. We thought that having smtproutes setup would prevent local delivery. Does anyone know of any other patches or have any thoughts on how this could be done? Best Regards, Jeff Koch, Intersessions
Re: [vchkpw] checkuser patch
On Jan 14, 2004, at 12:47 PM, Jeff Koch wrote: We trying to setup a Smart Host mail router but kludge the checkuser patch and vpopmail to verify the domain and user name before smpt'ing the mail to the appropriate mailserver. However, we're getting stuck - the server keeps trying to deliver the mail locally even though we have smtproutes setup. If I recall correctly, if the domain is in control/virtualhosts, then it will be delivered locally. -- Tom Collins - [EMAIL PROTECTED] QmailAdmin: http://qmailadmin.sf.net/ Vpopmail: http://vpopmail.sf.net/ Info on the Sniffter hand-held Network Tester: http://sniffter.com/
Re: [vchkpw] checkuser patch
Tom Collins wrote: On Jan 14, 2004, at 12:47 PM, Jeff Koch wrote: We trying to setup a Smart Host mail router but kludge the checkuser patch and vpopmail to verify the domain and user name before smpt'ing the mail to the appropriate mailserver. However, we're getting stuck - the server keeps trying to deliver the mail locally even though we have smtproutes setup. If I recall correctly, if the domain is in control/virtualhosts, then it will be delivered locally. Hi, And reading through the qmail-chkuser patch and the vpopmail source code, it appears that if the domain is in rcpthosts (or morercpthosts) and in the users/assign file, but not in virtualdomains, then it *should* function as you want it to. Note I haven't tested this, I just looked at how the chkuser patch checked for a local domain and how vpopmail vget_real_domain function worked. Regards, Rick
Re: [vchkpw] checkuser patch
Can you explain better what are you trying to do? How the patched qmail-smtpd is run? Have both servers the same domains declared and the same users data base? Tonino At 14/01/2004 14/01/2004 -0500, Jeff Koch wrote: We trying to setup a Smart Host mail router but kludge the checkuser patch and vpopmail to verify the domain and user name before smpt'ing the mail to the appropriate mailserver. However, we're getting stuck - the server keeps trying to deliver the mail locally even though we have smtproutes setup. We'd like to keep the junk from being pushed through the smarthost (we get about 60K messages a day to non-existent usernames) - and the checkuser patch seemed to be the answer. We thought that having smtproutes setup would prevent local delivery. Does anyone know of any other patches or have any thoughts on how this could be done? Best Regards, Jeff Koch, Intersessions [EMAIL PROTECTED]Interazioni di Antonio Nati http://www.interazioni.it [EMAIL PROTECTED]
Re: [vchkpw] checkuser patch
Exactly - I tried it and it works perfectly. Thanks to both of you. At 03:06 PM 1/14/2004, you wrote: Tom Collins wrote: On Jan 14, 2004, at 12:47 PM, Jeff Koch wrote: We trying to setup a Smart Host mail router but kludge the checkuser patch and vpopmail to verify the domain and user name before smpt'ing the mail to the appropriate mailserver. However, we're getting stuck - the server keeps trying to deliver the mail locally even though we have smtproutes setup. If I recall correctly, if the domain is in control/virtualhosts, then it will be delivered locally. Hi, And reading through the qmail-chkuser patch and the vpopmail source code, it appears that if the domain is in rcpthosts (or morercpthosts) and in the users/assign file, but not in virtualdomains, then it *should* function as you want it to. Note I haven't tested this, I just looked at how the chkuser patch checked for a local domain and how vpopmail vget_real_domain function worked. Regards, Rick Best Regards, Jeff Koch, Intersessions
Re: [vchkpw] checkuser patch
We're setting up a smart-host mail router to just handle qmail scanning. The mail will then go to the appropriate mailserver where spam filtering will be done and the mail dropped into vpopmail accounts. We get about 50-60K spam emails per day that are addressed to real domains but non-existent users. We need to be able to reject emails to non-existent users at the entry to the smart host mail router so that we don't waste time virus scanning them or delivering them to the mailservers. The checkuser patch has the functionality to accomplish this as long as we setup a mirror of vpopmail on the smart-host mail router. So we'll use the checkuser patch and setup domains and users with vpopmail on the smart host mail router so that we can reject email to non-existent users. We'll write some programs to keep vpopmail on the smart-host mail router in sync with the vpopmails on the mailservers. Of course if the checkuser patch could consult a mysql database instead it would be cleaner but gotta live with what we have. If anyone has a better solution let me know. At 03:17 PM 1/14/2004, you wrote: Can you explain better what are you trying to do? How the patched qmail-smtpd is run? Have both servers the same domains declared and the same users data base? Tonino At 14/01/2004 14/01/2004 -0500, Jeff Koch wrote: We trying to setup a Smart Host mail router but kludge the checkuser patch and vpopmail to verify the domain and user name before smpt'ing the mail to the appropriate mailserver. However, we're getting stuck - the server keeps trying to deliver the mail locally even though we have smtproutes setup. We'd like to keep the junk from being pushed through the smarthost (we get about 60K messages a day to non-existent usernames) - and the checkuser patch seemed to be the answer. We thought that having smtproutes setup would prevent local delivery. Does anyone know of any other patches or have any thoughts on how this could be done? Best Regards, Jeff Koch, Intersessions [EMAIL PROTECTED]Interazioni di Antonio Nati http://www.interazioni.it [EMAIL PROTECTED] Best Regards, Jeff Koch, Intersessions
Re: [vchkpw] checkuser patch
On Wed, 2004-01-14 at 15:26, Jeff Koch wrote: We're setting up a smart-host mail router to just handle qmail scanning. The mail will then go to the appropriate mailserver where spam filtering will be done and the mail dropped into vpopmail accounts. We get about 50-60K spam emails per day that are addressed to real domains but non-existent users. We need to be able to reject emails to non-existent users at the entry to the smart host mail router so that we don't waste time virus scanning them or delivering them to the mailservers. The checkuser patch has the functionality to accomplish this as long as we setup a mirror of vpopmail on the smart-host mail router. Why don't you just use vpopmail with users stored in mysql, then have each server query the mysql server? You can even use MySQL replication to run local read only copies of the database for efficiency. So we'll use the checkuser patch and setup domains and users with vpopmail on the smart host mail router so that we can reject email to non-existent users. We'll write some programs to keep vpopmail on the smart-host mail router in sync with the vpopmails on the mailservers. This'd be called MySQL and replication. Of course if the checkuser patch could consult a mysql database instead it would be cleaner but gotta live with what we have. If anyone has a better solution let me know. I run a cluster of qmail/vpopmail using mysql replication and NFS, and it all works flawlessly. I'm planning on integrating the chkuser patch shortly to start reducing the volume of queued bounces I have to deal with. At 03:17 PM 1/14/2004, you wrote: Can you explain better what are you trying to do? How the patched qmail-smtpd is run? Have both servers the same domains declared and the same users data base? Tonino At 14/01/2004 14/01/2004 -0500, Jeff Koch wrote: We trying to setup a Smart Host mail router but kludge the checkuser patch and vpopmail to verify the domain and user name before smpt'ing the mail to the appropriate mailserver. However, we're getting stuck - the server keeps trying to deliver the mail locally even though we have smtproutes setup. We'd like to keep the junk from being pushed through the smarthost (we get about 60K messages a day to non-existent usernames) - and the checkuser patch seemed to be the answer. We thought that having smtproutes setup would prevent local delivery. Does anyone know of any other patches or have any thoughts on how this could be done? Best Regards, Jeff Koch, Intersessions [EMAIL PROTECTED]Interazioni di Antonio Nati http://www.interazioni.it [EMAIL PROTECTED] Best Regards, Jeff Koch, Intersessions
RE: [vchkpw] checkuser patch
Of course if the checkuser patch could consult a mysql database instead it would be cleaner but gotta live with what we have. If anyone has a better solution let me know. I run a cluster of qmail/vpopmail using mysql replication and NFS, and it all works flawlessly. I'm planning on integrating the chkuser patch shortly to start reducing the volume of queued bounces I have to deal with. To further Nick's comments... This (vpopmail front end servers with a common NFS store and users in mysql) is how we run now and it works great. The checkuser patch works perfectly with mysql because it makes calls to the libvpopmail.a to handle lookups, so if you have vpopmail compiled with the correct settings for mysql (vmysql.h and appropriate configure options) it works perfectly. A couple of gotchas though... If you are running a high concurrency on qmail-smtpd be sure that your mysql server has a similar max connection limit. If the checkuser cannot talk to the mysql server (too many connections) it will send out a rejection notice for a valid user (chkuser - 5.1.1 I think, been a while since I have seen one . Been there, done that, bought the cheap t-shirt.) I was never able to get the checkuser patch and our smtp-auth patch to work together. So if you are using an smtp-auth patch verify that both work together before moving it into production. And yes... It really does cut down on the double bounces... Previously before using the patch our qmail-queue use to run about 13K to 15K messages (and that was with a 2 day expire instead of the stock 7 day queuelength). We now run (combined among our servers) ~2000. Big difference. And we are very pleased with the checkuser patch... I worry about harvesting attacks against our server, as it lets the spammer know right away which address is valid and which isn't... But that really is a problem with the SMTP spec... Not the checkuser patch... We have been running the checkuser patch since July 2003 and have had no problems other than the SMTP-AUTH and mysql max_connections issues. Tom Walsh Network Administrator http://www.ala.net/
RE: [vchkpw] vpopmail variable
I apologize in advance if this is formatted goofy or comes out wrong. First time poster long time listener:) (Stupid Outlook) I'm not sure if this is a Maildrop or vpopmail issue. vpopmail 5.4-rc1 Maildrop 1.5.2 FreeBSD 4.4 My .qmail-default pipes all inbound mail to maildrop using the following command: | /usr/local/bin/maildrop .qmail-default-mailfilter The mailfilter file contains the following variable (among others): VHOME=`/usr/local/vpopmail/bin/vuserinfo -d [EMAIL PROTECTED] This doesn't seem to be working as I maildrop errors out because it can't find the home directory. What I haven't been able to find about vpopmail is whether or not it sets certain variable that can be used in .qmail or .mailfilter scripts. Are these variable available and, if so, where can I find a list of them? I ran into this problem before and always figured it was a problem on the handoff between qmail and maildrop. If I remember correctly the $EXT and $HOST are qmail environment variables, someone can correct me if I am wrong. In my case the $EXT variable was not being set. We initially had a clumsy awk command to manually set the line. Once we upgraded Maildrop the problem went away. To test try spitting the values to a log file with something like the following in your maildrop filter: logfile /usr/local/vpopmail/maildroplog log EXT is $EXT log HOST is $HOST log VHOME is $VHOME Of course put the VHOME log line after the line where you set it... I am currently using maildrop 1.6.3. As far as I know in this configuration, vpopmail doesn't have much to do with these variables other than trying to use them in the VHOME line. Hope this helps in some way. I never could find any info on this and just worked around until one day it started working after an upgrade.
Fwd: Re: [vchkpw] checkuser patch
Thanks Nick - I guess the question is whether the checkuser patch will query the mysql database or whether it determines valid domains/users/aliases/mailinglists by querying /etc/control/assign. From reading the vpopmail.mysql docs it appears only the contents of vpasswd is stored in the mysql database which would not be sufficient to provide the functionality we need - since that would exclude aliases and mailinglists. At 04:33 PM 1/14/2004, you wrote: On Wed, 2004-01-14 at 15:26, Jeff Koch wrote: We're setting up a smart-host mail router to just handle qmail scanning. The mail will then go to the appropriate mailserver where spam filtering will be done and the mail dropped into vpopmail accounts. We get about 50-60K spam emails per day that are addressed to real domains but non-existent users. We need to be able to reject emails to non-existent users at the entry to the smart host mail router so that we don't waste time virus scanning them or delivering them to the mailservers. The checkuser patch has the functionality to accomplish this as long as we setup a mirror of vpopmail on the smart-host mail router. Why don't you just use vpopmail with users stored in mysql, then have each server query the mysql server? You can even use MySQL replication to run local read only copies of the database for efficiency. So we'll use the checkuser patch and setup domains and users with vpopmail on the smart host mail router so that we can reject email to non-existent users. We'll write some programs to keep vpopmail on the smart-host mail router in sync with the vpopmails on the mailservers. This'd be called MySQL and replication. Of course if the checkuser patch could consult a mysql database instead it would be cleaner but gotta live with what we have. If anyone has a better solution let me know. I run a cluster of qmail/vpopmail using mysql replication and NFS, and it all works flawlessly. I'm planning on integrating the chkuser patch shortly to start reducing the volume of queued bounces I have to deal with. At 03:17 PM 1/14/2004, you wrote: Can you explain better what are you trying to do? How the patched qmail-smtpd is run? Have both servers the same domains declared and the same users data base? Tonino At 14/01/2004 14/01/2004 -0500, Jeff Koch wrote: We trying to setup a Smart Host mail router but kludge the checkuser patch and vpopmail to verify the domain and user name before smpt'ing the mail to the appropriate mailserver. However, we're getting stuck - the server keeps trying to deliver the mail locally even though we have smtproutes setup. We'd like to keep the junk from being pushed through the smarthost (we get about 60K messages a day to non-existent usernames) - and the checkuser patch seemed to be the answer. We thought that having smtproutes setup would prevent local delivery. Does anyone know of any other patches or have any thoughts on how this could be done? Best Regards, Jeff Koch, Intersessions [EMAIL PROTECTED]Interazioni di Antonio Nati http://www.interazioni.it [EMAIL PROTECTED] Best Regards, Jeff Koch, Intersessions Best Regards, Jeff Koch, Intersessions Best Regards, Jeff Koch, Intersessions
[vchkpw] imap and vpopmail
Hi, i have a little question about vpopmail and imap, i have been using it since a while but recently i got a problem, vpopmail has added new directory (0) and put all new domains in it , but the problem is that all domains there doesn t work with courier-imap, in fact imap only check the main directory of vpopmail (i have try the vchkpw2userdb to see and no domain that are in the 0 appear) has anyone got that problem and any solutions? thanks
RE: [vchkpw] Re: Ucspi-ssl?
Peter Palmreuther wrote: [...] /usr/local/bin/sslserver -v -R -H -l 0 0 995 \ strace -f -s 4096 -o /tmp/ssl-pop3.log \ /var/qmail/bin/qmail-popup \ [...] Don't let this run when real users try to log in, the password will be in '/tmp/ssl-pop3.log'. Use this only with test accounts, if you intend to publish the log (or relevant excerpts from it) in this list. If you don't intend to do this we will probably not be able to help. Yes I would. But I've ktrace, not strace. Wich command I've to insert in my runscript? Like that? [...] /usr/local/bin/sslserver -v -R -H -l 0 0 995 \ ktrace -f /tmp/ktrace.out \ /var/qmail/bin/qmail-popup \ [...] observe# ktrace usage: ktrace [-aCcdi] [-f trfile] [-g pgid] [-p pid] [-t [ceinsw]] ktrace [-adi] [-f trfile] [-t [ceinsw]] command Looks like vchkpw is run as root, therefore a pure problem with permissions is more or less unlikely. -rwx--x--x 1 vpopmail vchkpw 73728 Jan 12 12:13 vchkpw Probably I've to insert -u 89 -g 89 in my sslserver? Thanks Andrea
RE: [vchkpw] Re: Ucspi-ssl? -- test
This is my test: The runscript - #!/bin/sh CAFILE=/usr/local/ssl/certs/pop3s.cert CERTFILE=/usr/local/ssl/certs/pop3s.cert KEYFILE=/usr/local/ssl/certs/pop3s.key DHFILE=/usr/local/ssl/certs/dh1024.pem export CAFILE CERTFILE KEYFILE DHFILE exec /usr/local/bin/softlimit -m 380 \ /usr/local/bin/sslserver -v -R -H -l 0 0 995 ktrace -f /tmp/ktrace.out /var/qmail/bin/qmail-popup \ nesys.it /home/vpopmail/bin/vchkpw /var/qmail/bin/qmail-pop3d Maildir 21 Test observe# openssl s_client -connect 127.0.0.1:995 CONNECTED(0004) cut --- +OK [EMAIL PROTECTED] USER [EMAIL PROTECTED] +OK PASS test +OK LIST +OK . QUIT DONE observe# kdump -f ktrace.out kdump.out The result --- 5752 ktrace RET ktrace 0 5752 ktrace CALL execve(0xcfbfd8e6,0xcfbfd884,0xcfbfd89c) 5752 ktrace NAMI /var/qmail/bin/qmail-popup 5752 qmail-popup EMUL native 5752 qmail-popup RET execve 0 5752 qmail-popup CALL open(0x10e5,0,0) 5752 qmail-popup NAMI /usr/libexec/ld.so 5752 qmail-popup RET open 3 5752 qmail-popup CALL read(0x3,0xcfbfd90c,0x20) 5752 qmail-popup GIO fd 3 read 32 bytes [EMAIL PROTECTED] \0\0\0\0\0\0\0\0\0\0 \0\0\0\0\0\0\0\0\0\0\0 5752 qmail-popup RET read 32/0x20 5752 qmail-popup CALL mmap(0,0xf000,0x5,0x2,0x3,0,0,0) 5752 qmail-popup RET mmap 1073762304/0x40005000 5752 qmail-popup CALL mmap(0x40012000,0x2000,0x7,0x12,0x3,0,0xd000,0) 5752 qmail-popup RET mmap 1073815552/0x40012000 5752 qmail-popup CALL issetugid 5752 qmail-popup RET issetugid 0 5752 qmail-popup CALL __sysctl(0xcfbfd77c,0x2,0x40013a08,0xcfbfd778,0,0) 5752 qmail-popup RET __sysctl 0 5752 qmail-popup CALL mmap(0,0x8000,0x3,0x1004,0x,0,0,0) 5752 qmail-popup RET mmap 1073823744/0x40014000 5752 qmail-popup CALL open(0x40006b74,0,0) 5752 qmail-popup NAMI /var/run/ld.so.hints 5752 qmail-popup RET open 4 5752 qmail-popup CALL fstat(0x4,0xcfbfd724) 5752 qmail-popup RET fstat 0 5752 qmail-popup CALL mmap(0,0x1bcb,0x1,0x4,0x4,0,0,0) 5752 qmail-popup RET mmap 1073856512/0x4001c000 5752 qmail-popup CALL open(0x4001d093,0,0) 5752 qmail-popup NAMI /usr/lib/libc.so.29.0 5752 qmail-popup RET open 5 5752 qmail-popup CALL read(0x5,0xcfbfd804,0x20) 5752 qmail-popup GIO fd 5 read 32 bytes [EMAIL PROTECTED] \0\0\0\0\0\0\0\0\0\0\0 5752 qmail-popup RET read 32/0x20 5752 qmail-popup CALL mmap(0,0xbd6f0,0x5,0x4,0x5,0,0,0) 5752 qmail-popup RET mmap 1073864704/0x4001e000 5752 qmail-popup CALL mprotect(0x400a4000,0x9000,0x7) 5752 qmail-popup RET mprotect 0 5752 qmail-popup CALL mmap(0x400ad000,0x2e6f0,0x3,0x1014,0x,0,0,0) 5752 qmail-popup RET mmap 1074450432/0x400ad000 5752 qmail-popup CALL close(0x5) 5752 qmail-popup RET close 0 5752 qmail-popup CALL __sysctl(0xcfbfd72c,0x2,0x400abb6c,0xcfbfd728,0,0) 5752 qmail-popup RET __sysctl 0 5752 qmail-popup CALL __sysctl(0xcfbfd72c,0x2,0x400abb70,0xcfbfd728,0,0) 5752 qmail-popup RET __sysctl 0 5752 qmail-popup CALL __sysctl(0xcfbfd72c,0x2,0x400abb74,0xcfbfd728,0,0) 5752 qmail-popup RET __sysctl 0 5752 qmail-popup CALL __sysctl(0xcfbfd72c,0x2,0x400abb78,0xcfbfd728,0,0) 5752 qmail-popup RET __sysctl 0 5752 qmail-popup CALL __sysctl(0xcfbfd72c,0x2,0x400abb7c,0xcfbfd728,0,0) 5752 qmail-popup RET __sysctl 0 5752 qmail-popup CALL __sysctl(0xcfbfd72c,0x2,0x400abb80,0xcfbfd728,0,0) 5752 qmail-popup RET __sysctl 0 5752 qmail-popup CALL __sysctl(0xcfbfd72c,0x2,0x400abb84,0xcfbfd728,0,0) 5752 qmail-popup RET __sysctl 0 5752 qmail-popup CALL __sysctl(0xcfbfd72c,0x2,0x400abb88,0xcfbfd728,0,0) 5752 qmail-popup RET __sysctl 0 5752 qmail-popup CALL munmap(0x4001c000,0x1bcb) 5752 qmail-popup RET munmap 0 5752 qmail-popup CALL close(0x4) 5752 qmail-popup RET close 0 5752 qmail-popup CALL close(0x3) 5752 qmail-popup RET close 0 5752 qmail-popup CALL __sysctl(0xcfbfd8b4,0x2,0x400db6e8,0xcfbfd8b0,0,0) 5752 qmail-popup RET __sysctl 0 5752 qmail-popup CALL readlink(0x400655f6,0xcfbfd80c,0x3f) 5752 qmail-popup NAMI /etc/malloc.conf 5752 qmail-popup RET readlink -1 errno 2 No such file or directory 5752 qmail-popup CALL issetugid 5752 qmail-popup RET issetugid 0 5752 qmail-popup CALL mmap(0,0x1000,0x3,0x1002,0x,0,0,0) 5752 qmail-popup RET mmap 1073856512/0x4001c000 5752 qmail-popup CALL break(0x5558) 5752 qmail-popup RET break 0 5752 qmail-popup CALL break(0x5558) 5752 qmail-popup RET break 0 5752 qmail-popup CALL break(0x7000) 5752 qmail-popup RET break 0 5752 qmail-popup CALL break(0x7000) 5752 qmail-popup RET break 0 5752 qmail-popup CALL break(0x8000) 5752 qmail-popup RET break 0 5752 qmail-popup CALL mmap(0,0x1000,0x3,0x1002,0x,0,0,0) 5752 qmail-popup RET mmap 1073860608/0x4001d000 5752 qmail-popup CALL mprotect(0x4001d000,0x1000,0x1) 5752 qmail-popup RET mprotect 0 5752 qmail-popup CALL
RE: [vchkpw] Re: Ucspi-ssl? -- test [2]
Another test, with: exec /usr/local/bin/softlimit -m 380 \ /usr/local/bin/sslserver -u 89 -g 89 -v -R -H -l 0 0 995 ktrace -f /tmp/ktrace.out /var/qmail/bin/qmail-popup \ nesys.it /home/vpopmail/bin/vchkpw /var/qmail/bin/qmail-pop3d Maildir 21 Now I've resolved the .tmp files problem. Now I haven't the open-smtp.tmpnum. But my open-smtp is blank. It's fine that directory (as permissions)? observe# ls -la total 10 drwxr-xr-x 2 root wheel 1024 Jan 15 01:24 . drwxr-xr-x 8 root wheel512 Jan 12 01:10 .. -rw-r--r-- 1 root wheel 25 Jan 12 12:13 inc_deps -rw-r--r-- 1 root wheel 34 Jan 12 12:13 lib_deps -rw-r--r-- 1 vpopmail vchkpw 0 Jan 15 00:40 open-smtp -rw-r--r-- 1 root wheel 0 Jan 15 01:22 open-smtp.lock -rw-r--r-- 1 root wheel454 Jan 12 01:07 tcp.smtp -rw-r--r-- 1 root wheel 2352 Jan 15 00:59 tcp.smtp.cdb -rw-r--r-- 1 vpopmail vchkpw 1107 Jan 12 01:09 vlimits.default My test --- Connect with Outlook -- 995, user [EMAIL PROTECTED], pass test There's an email, I've downloaded that. But no roaming enabled. Result -- 31443 ktrace RET ktrace 0 31443 ktrace CALL execve(0xcfbfd862,0xcfbfd800,0xcfbfd818) 31443 ktrace NAMI /var/qmail/bin/qmail-popup 31443 qmail-popup EMUL native 31443 qmail-popup RET execve 0 31443 qmail-popup CALL open(0x10e5,0,0) 31443 qmail-popup NAMI /usr/libexec/ld.so 31443 qmail-popup RET open 3 31443 qmail-popup CALL read(0x3,0xcfbfda34,0x20) 31443 qmail-popup GIO fd 3 read 32 bytes [EMAIL PROTECTED] \0\0\0\0\0\0\0\0\0\0 \0\0\0\0\0\0\0\0\0\0\0 31443 qmail-popup RET read 32/0x20 31443 qmail-popup CALL mmap(0,0xf000,0x5,0x2,0x3,0,0,0) 31443 qmail-popup RET mmap 1073762304/0x40005000 31443 qmail-popup CALL mmap(0x40012000,0x2000,0x7,0x12,0x3,0,0xd000,0) 31443 qmail-popup RET mmap 1073815552/0x40012000 31443 qmail-popup CALL issetugid 31443 qmail-popup RET issetugid 0 31443 qmail-popup CALL __sysctl(0xcfbfd8a4,0x2,0x40013a08,0xcfbfd8a0,0,0) 31443 qmail-popup RET __sysctl 0 31443 qmail-popup CALL mmap(0,0x8000,0x3,0x1004,0x,0,0,0) 31443 qmail-popup RET mmap 1073823744/0x40014000 31443 qmail-popup CALL open(0x40006b74,0,0) 31443 qmail-popup NAMI /var/run/ld.so.hints 31443 qmail-popup RET open 4 31443 qmail-popup CALL fstat(0x4,0xcfbfd84c) 31443 qmail-popup RET fstat 0 31443 qmail-popup CALL mmap(0,0x1bcb,0x1,0x4,0x4,0,0,0) 31443 qmail-popup RET mmap 1073856512/0x4001c000 31443 qmail-popup CALL open(0x4001d093,0,0) 31443 qmail-popup NAMI /usr/lib/libc.so.29.0 31443 qmail-popup RET open 5 31443 qmail-popup CALL read(0x5,0xcfbfd92c,0x20) 31443 qmail-popup GIO fd 5 read 32 bytes [EMAIL PROTECTED] \0\0\0\0\0\0\0\0\0\0\0 31443 qmail-popup RET read 32/0x20 31443 qmail-popup CALL mmap(0,0xbd6f0,0x5,0x4,0x5,0,0,0) 31443 qmail-popup RET mmap 1073864704/0x4001e000 31443 qmail-popup CALL mprotect(0x400a4000,0x9000,0x7) 31443 qmail-popup RET mprotect 0 31443 qmail-popup CALL mmap(0x400ad000,0x2e6f0,0x3,0x1014,0x,0,0,0) 31443 qmail-popup RET mmap 1074450432/0x400ad000 31443 qmail-popup CALL close(0x5) 31443 qmail-popup RET close 0 31443 qmail-popup CALL __sysctl(0xcfbfd854,0x2,0x400abb6c,0xcfbfd850,0,0) 31443 qmail-popup RET __sysctl 0 31443 qmail-popup CALL __sysctl(0xcfbfd854,0x2,0x400abb70,0xcfbfd850,0,0) 31443 qmail-popup RET __sysctl 0 31443 qmail-popup CALL __sysctl(0xcfbfd854,0x2,0x400abb74,0xcfbfd850,0,0) 31443 qmail-popup RET __sysctl 0 31443 qmail-popup CALL __sysctl(0xcfbfd854,0x2,0x400abb78,0xcfbfd850,0,0) 31443 qmail-popup RET __sysctl 0 31443 qmail-popup CALL __sysctl(0xcfbfd854,0x2,0x400abb7c,0xcfbfd850,0,0) 31443 qmail-popup RET __sysctl 0 31443 qmail-popup CALL __sysctl(0xcfbfd854,0x2,0x400abb80,0xcfbfd850,0,0) 31443 qmail-popup RET __sysctl 0 31443 qmail-popup CALL __sysctl(0xcfbfd854,0x2,0x400abb84,0xcfbfd850,0,0) 31443 qmail-popup RET __sysctl 0 31443 qmail-popup CALL __sysctl(0xcfbfd854,0x2,0x400abb88,0xcfbfd850,0,0) 31443 qmail-popup RET __sysctl 0 31443 qmail-popup CALL munmap(0x4001c000,0x1bcb) 31443 qmail-popup RET munmap 0 31443 qmail-popup CALL close(0x4) 31443 qmail-popup RET close 0 31443 qmail-popup CALL close(0x3) 31443 qmail-popup RET close 0 31443 qmail-popup CALL __sysctl(0xcfbfd9dc,0x2,0x400db6e8,0xcfbfd9d8,0,0) 31443 qmail-popup RET __sysctl 0 31443 qmail-popup CALL readlink(0x400655f6,0xcfbfd934,0x3f) 31443 qmail-popup NAMI /etc/malloc.conf 31443 qmail-popup RET readlink -1 errno 2 No such file or directory 31443 qmail-popup CALL issetugid 31443 qmail-popup RET issetugid 0 31443 qmail-popup CALL mmap(0,0x1000,0x3,0x1002,0x,0,0,0) 31443 qmail-popup RET mmap 1073856512/0x4001c000 31443 qmail-popup CALL break(0x5558) 31443 qmail-popup RET break 0 31443 qmail-popup CALL break(0x5558) 31443 qmail-popup RET break 0 31443 qmail-popup CALL break(0x7000) 31443
[vchkpw] spamassassin patch ready ahead of schedule
Tom Collins sent me the FreeBSD ports patch with code to enable spamassassin. It pretty much did the whole job except for the pw_gid flags, some configure.in changes and a new vmoduser option to disable spam assassin. So the patch is ready ahead of schedule, whoo hoo! I'm running it on our mail server now and it seems to be working just fine. The patch is up on source forge RequestID 877367 Summary spamassassin patch against cvs One thing to note. If you start spamd with the -c option it should automatically create the users .spamassassin directory where bayes files can be kept. Be careful about allowing bayes, the files can get over 1M. I'm running spamd with these options -d -c -v -uvpopmail Currently my .spamassassin directory has these files: |bayes_journal bayes_seen bayes_toks user_prefs| The user_prefs file is where we can have qmailadmin/vqadmin support required_hits, safe_report and whitelists I'll try to write up a README.spamassassin tomorrow. Ken Jones
Re: [vchkpw] spamassassin patch ready ahead of schedule
Good deal.. I would like to look at this. -John - Original Message - From: Ken Jones [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Wednesday, January 14, 2004 10:01 PM Subject: [vchkpw] spamassassin patch ready ahead of schedule Tom Collins sent me the FreeBSD ports patch with code to enable spamassassin. It pretty much did the whole job except for the pw_gid flags, some configure.in changes and a new vmoduser option to disable spam assassin. So the patch is ready ahead of schedule, whoo hoo! I'm running it on our mail server now and it seems to be working just fine. The patch is up on source forge RequestID 877367 Summary spamassassin patch against cvs One thing to note. If you start spamd with the -c option it should automatically create the users .spamassassin directory where bayes files can be kept. Be careful about allowing bayes, the files can get over 1M. I'm running spamd with these options -d -c -v -uvpopmail Currently my .spamassassin directory has these files: |bayes_journal bayes_seen bayes_toks user_prefs| The user_prefs file is where we can have qmailadmin/vqadmin support required_hits, safe_report and whitelists I'll try to write up a README.spamassassin tomorrow. Ken Jones
