Re: [vchkpw] SMTP Authenticated user is able to anyone in rcpthosts
Hi Devendra, At 18:38 07.06.04 +0530, you wrote: Hi, I am using Erwin Hoffmann's qmail-smtpd-auth-0.4.2. Thanks for using it. I have noticed that once authenticated a user can use [EMAIL PROTECTED] (where server.com is a domain listed in rcpthosts) in the FROM header. Is there any remedy. Yes, thats possible. You can prevent it partially with my SPAMCONTROL patch for Qmail. It includes SMTP Autentication (with some nice logging). In addition you may want to set the environment variable LOCALMFCHEK. For a relayclient (in particular in case of an SMTP authenticated session), you may inforce that the domain part of the Mail From: in the SMTP envelope corresponds with your list of rcpthosts or some arbitary name provided thru the variable LOCALMFCHECK. See: http://www.fehcom.de/qmail/spamcontrol/README_spamcontrol.html section 8.1. A more general discussion about SMTP Authentication can be found at: http://www.fehcom.de/qmail/smptauth.html regards. --eh. Dr. Erwin Hoffmann | FEHCom | http://www.fehcom.de/ Wiener Weg 8, 50858 Cologne | T: +49 221 484 4923 | F: ...24
[vchkpw] dot qmail processing
Hi, I have a question in regards to .qmail file processing. I am trying to setup a simple filtering to move spammed message to another folder using .qmail files. Basically something like that: | condredirect [EMAIL PROTECTED] grep 'Subject: [SPAM]' ./name/Maildir/ For simple address like [EMAIL PROTECTED], creating a .qmail-name in the domain directory works, but for more complex address [EMAIL PROTECTED] .qmail-first.lastname doesn't seem to be processed. Is the syntax of a .qmail file different if there is a . in the address name? Also why do I have to specify the full path for Maildir. In the doc it seems that I should have only to specify ./Maildir/. But doing so doesn't work I am using vpopmail 5.4 TIA Pascal
Re: [vchkpw] dot qmail processing
On Wednesday 09 June 2004 7:53 am, Pascal DeMilly wrote: Hi, I have a question in regards to .qmail file processing. I am trying to setup a simple filtering to move spammed message to another folder using .qmail files. Basically something like that: | condredirect [EMAIL PROTECTED] grep 'Subject: [SPAM]' ./name/Maildir/ For simple address like [EMAIL PROTECTED], creating a .qmail-name in the domain directory works, but for more complex address [EMAIL PROTECTED] .qmail-first.lastname doesn't seem to be processed. Is the syntax of a .qmail file different if there is a . in the address name? Also why do I have to specify the full path for Maildir. In the doc it seems that I should have only to specify ./Maildir/. But doing so doesn't work It might be as simple as . characters are not allowed in .qmail file names. Instead use a : like: .qmail-first:lastname Check the dot-qmail man page. Ken Jones
[vchkpw] Problem adjusting vpopmail.c in 5.4.4
I am currently upgrading from 5.3.30 to 5.4.4. Everything worked great except a little piece of custom code that I use for SPAM filtering. It saves me from having to run maildirmake after every user is added. Everything compiles and installs nicely, however when I do a ./vadduser [EMAIL PROTECTED] I get foo/ Maildir/ new/ cur/ tmp/ What I was hoping for was: foo/ Maildir/ courierimapsubscribed new/ cur/ tmp/ .JunkMail/ new/ cur/ tmp/ I have included the source for what I am doing currently and have done in the past. Any help would be appreciated. At line 2389 I add (my e-mail client wrapped some lines): if (mkdir(.JunkMail,VPOPMAIL_DIR_MODE) == -1) { chdir(calling_dir); return(-1); } if (chdir(.JunkMail) == -1) { chdir(calling_dir); return(-1); } if (mkdir(cur,VPOPMAIL_DIR_MODE) == -1) { chdir(calling_dir); return(-1); } if (mkdir(new,VPOPMAIL_DIR_MODE) == -1) { chdir(calling_dir); return(-1); } if (mkdir(tmp,VPOPMAIL_DIR_MODE) == -1) { chdir(calling_dir); return(-1); } chdir(..); if ( (fs = fopen(courierimapsubscribed, w+))==NULL) { free(courierimapsubscribed); return(0); printf (Error creating IMAP subscribe file.\n); } else { fprintf(fs, INBOX.Sent\n); fprintf(fs, INBOX.Trash\n); fprintf(fs, INBOX.Drafts\n); fprintf(fs, INBOX.JunkMail\n); fclose(fs); } I this currently works under 5.3.30 in the form of: * BEGIN: Create .JunkMail IMAP folder and IMAP subscribe file */ if (mkdir(.JunkMail,VPOPMAIL_DIR_MODE) == -1){ chdir(tmpbuf); free(tmpbuf); free(tmpdir); printf(make_user_dir: error 3\n); return(NULL); } if (chdir(.JunkMail) == -1) { chdir(tmpbuf); free(tmpbuf); free(tmpdir); printf(make_user_dir: error 4\n); return(NULL); } if (mkdir(cur,VPOPMAIL_DIR_MODE) == -1) { chdir(tmpbuf); free(tmpbuf); free(tmpdir); printf(make_user_dir: error 5\n); return(NULL); } if (mkdir(new,VPOPMAIL_DIR_MODE) == -1) { chdir(tmpbuf); free(tmpbuf); free(tmpdir); printf(make_user_dir: error 6\n); return(NULL); } if (mkdir(tmp,VPOPMAIL_DIR_MODE) == -1) { chdir(tmpbuf); free(tmpbuf); free(tmpdir); printf(make_user_dir: error 7\n); return(NULL); } chdir(..); if ( (fs = fopen(courierimapsubscribed, w+))==NULL) { free(courierimapsubscribed); return(0); printf (Error creating IMAP subscribe file.\n); } else { fprintf(fs, INBOX.Sent\n); fprintf(fs, INBOX.Trash\n); fprintf(fs, INBOX.Drafts\n); fprintf(fs, INBOX.JunkMail\n); fclose(fs); } /* END: Create .JunkMail IMAP folder and IMAP subscribe file */ junkmail.diff.txt Description: Mac BinHex archive
Re: [vchkpw] Problem adjusting vpopmail.c in 5.4.4
On Jun 9, 2004, at 8:24 AM, Christopher Tarricone wrote: What I was hoping for was: foo/ Maildir/ courierimapsubscribed new/ cur/ tmp/ .JunkMail/ new/ cur/ tmp/ I have included the source for what I am doing currently and have done in the past. Any help would be appreciated. It's even easier now. Look in the source for this: const char *dirnames[] = {Maildir, Maildir/new, Maildir/cur, Maildir/tmp}; And update it like so: const char *dirnames[] = {Maildir, Maildir/new, Maildir/cur, Maildir/tmp, .JunkMail, .JunkMail/new, .JunkMail/cur, .JunkMail/tmp}; The courierimapsubscribed code should work as included -- consider removing the chdir though so you don't mess up the rest of the code. Also take a look at http://vpopmail.sf.net/. in the patches section I think there's code to copy a skeleton directory for new users. -- Tom Collins - [EMAIL PROTECTED] QmailAdmin: http://qmailadmin.sf.net/ Vpopmail: http://vpopmail.sf.net/ Info on the Sniffter hand-held Network Tester: http://sniffter.com/
RE: [vchkpw] Problem adjusting vpopmail.c in 5.4.4
Tom Collins wrote: Also take a look at http://vpopmail.sf.net/. in the patches section I think there's code to copy a skeleton directory for new users. Ah, that'd be useful: I currently have a script that wraps vadduser, rather than hacking on the source, so this'd make more sense. Cheers, Roger.
Re: [vchkpw] Problem adjusting vpopmail.c in 5.4.4
On Jun 9, 2004, at 8:24 AM, Christopher Tarricone wrote: What I was hoping for was: foo/ Maildir/ courierimapsubscribed new/ cur/ tmp/ .JunkMail/ new/ cur/ tmp/ I have included the source for what I am doing currently and have done in the past. Any help would be appreciated. It's even easier now. Look in the source for this: const char *dirnames[] = {Maildir, Maildir/new, Maildir/cur, Maildir/tmp}; And update it like so: const char *dirnames[] = {Maildir, Maildir/new, Maildir/cur, Maildir/tmp, .JunkMail, .JunkMail/new, .JunkMail/cur, .JunkMail/tmp}; The courierimapsubscribed code should work as included -- consider removing the chdir though so you don't mess up the rest of the code. Also take a look at http://vpopmail.sf.net/. in the patches section I think there's code to copy a skeleton directory for new users. -- Tom Collins - [EMAIL PROTECTED] QmailAdmin: http://qmailadmin.sf.net/ Vpopmail: http://vpopmail.sf.net/ Info on the Sniffter hand-held Network Tester: http://sniffter.com/ That did it!!! Thank you
Re: [vchkpw] Problem adjusting vpopmail.c in 5.4.4
Tom Collins wrote: Also take a look at http://vpopmail.sf.net/. in the patches section I think there's code to copy a skeleton directory for new users. Ah, that'd be useful: I currently have a script that wraps vadduser, rather than hacking on the source, so this'd make more sense. Cheers, Roger. Here is the working diff junkmail.diff.txt Description: Mac BinHex archive
[vchkpw] vpopmail and mysql
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Hello, vlimit don't work with MySQL :( ./configure \ - --prefix=/var/qmail \ - --enable-qmail-newu=/var/qmail/bin/qmail-newu \ - --enable-vpopuser=VPOPUSER \ - --enable-vpopgroup=VPOPGROUP \ - --enable-roaming-users \ - --enable-tcprules-prog=pacth_tcprule \ - --enable-relay-clear-minutes=90 \ - --enable-sqwebmail-pass \ - --enable-qmail-ext \ - --enable-ip-alias-domains \ - --enable-domainquotas \ - --enable-auth-module=mysql \ - --enable-logging=p \ - --enable-auth-logging \ - --enable-mysql-logging \ - --enable-libdir=path_mysql_lib \ - --enable-valias \ - --enable-mysql-logging \ - --enable-clear-passwd \ - --enable-mysql-limits But, table vlimit is still empty and in ~vpopmail/domain/my_domain, i've the .qmailadmin-limits and nothing in MySQL :( and i've too etc/ vlimits.default Could anyone has a solution ? Regards - -- Franck http://www.linuxpourtous.com -BEGIN PGP SIGNATURE- Version: GnuPG v1.2.4 (GNU/Linux) iD8DBQFAx0pJ1zwfep5k9qERAtHqAJ9ilbIiu5fDVEyaF/KLrYY21x/3zgCeLx9E mnaqJwll3CbYsIT1gZu1acM= =kV9I -END PGP SIGNATURE-
Re: [vchkpw] vpopmail and mysql
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Hello, vlimit don't work with MySQL :( ./configure \ - --prefix=/var/qmail \ - --enable-qmail-newu=/var/qmail/bin/qmail-newu \ - --enable-vpopuser=VPOPUSER \ - --enable-vpopgroup=VPOPGROUP \ - --enable-roaming-users \ - --enable-tcprules-prog=pacth_tcprule \ - --enable-relay-clear-minutes=90 \ - --enable-sqwebmail-pass \ - --enable-qmail-ext \ - --enable-ip-alias-domains \ - --enable-domainquotas \ - --enable-auth-module=mysql \ - --enable-logging=p \ - --enable-auth-logging \ - --enable-mysql-logging \ - --enable-libdir=path_mysql_lib \ - --enable-valias \ - --enable-mysql-logging \ - --enable-clear-passwd \ - --enable-mysql-limits But, table vlimit is still empty and in ~vpopmail/domain/my_domain, i've the .qmailadmin-limits and nothing in MySQL :( and i've too etc/ vlimits.default Could anyone has a solution ? Regards - -- Franck http://www.linuxpourtous.com -BEGIN PGP SIGNATURE- Version: GnuPG v1.2.4 (GNU/Linux) iD8DBQFAx0pJ1zwfep5k9qERAtHqAJ9ilbIiu5fDVEyaF/KLrYY21x/3zgCeLx9E mnaqJwll3CbYsIT1gZu1acM= =kV9I -END PGP SIGNATURE- I use MySQL with vpopmail and I do not have a vlimit table. I do have a file in ~/vpopmail/etc/vlimits.default that is read vpopmail and used when I add users via the command line or qmailadmin. I just set mine up this morning and it seems to work for me... ./configure \ --enable-roaming-users=y \ --enable-logging=y \ --enable-clear-passwd=y \ --enable-auth-module=mysql And got this for a result: vpopmail 5.4.4 Current settings --- vpopmail directory = /var/vpopmail uid = 518 gid = 520 roaming users = ON --enable-roaming-users tcpserver file = /var/vpopmail/etc/tcp.smtp open_smtp file = /var/vpopmail/etc/open-smtp rebuild tcpserver file = ON --enable-rebuild-tcpserver-file (default) password learning = OFF --disable-learn-passwords (default) md5 passwords = ON --enable-md5-passwords (default) file locking = ON --enable-file-locking (default) vdelivermail fsync = OFF --disable-file-sync (default) make seekable = ON --enable-make-seekable (default) clear passwd = ON --enable-clear-passwd (default) user dir hashing = ON --enable-users-big-dir (default) address extensions = OFF --disable-qmail-ext (default) ip alias = OFF --disable-ip-alias-domains (default) domain quotas = OFF --disable-domainquotas (default) auth module = mysql --enable-auth-module=mysql mysql replication = OFF --disable-mysql-replication (default) mysql logging = OFF --disable-mysql-logging (default) mysql limits = OFF --disable-mysql-limits (default) MySQL valias = OFF --disable-valias (default) auth inc = -I/usr/include/mysql auth lib = -L/usr/lib/mysql -lmysqlclient -lz -lm system passwords = OFF --disable-passwd (default) pop syslog = show successful and failed login attempts --enable-logging=y auth logging = ON --enable-auth-logging (default) all domains in one SQL table = --enable-many-domains (default)
Re: [vchkpw] vpopmail and mysql
On Jun 9, 2004, at 10:35 AM, Franck wrote: But, table vlimit is still empty and in ~vpopmail/domain/my_domain, i've the .qmailadmin-limits and nothing in MySQL :( and i've too etc/ vlimits.default Could anyone has a solution ? Have you run vmoddomlimits to try setting limits on a domain? I don't think there's any code to convert .qmailadmin-limits files into the MySQL table, if that's what you were expecting. -- Tom Collins - [EMAIL PROTECTED] QmailAdmin: http://qmailadmin.sf.net/ Vpopmail: http://vpopmail.sf.net/ Info on the Sniffter hand-held Network Tester: http://sniffter.com/
[vchkpw] Exhaustive LOG
Hi, Can I have the exhaustiv log with vchkpw? Like w.x.y.x session Open OK SEND USER.. OK SEND PASS.. OK SEND LIST ... OK RETR 1 .. ERROR ERROR BECAUSE Currently, I have customer who connect to my VPOPMAIL Server, see the amount of the Email to retrieve but dont retrieve it and Outlook tell Contact your ADM The only log I see is Connexion..OK [EMAIL PROTECTED]:IP Best Regards Martin _ MSN Search, le moteur de recherche qui pense comme vous ! http://fr.ca.search.msn.com/
Re: [vchkpw] vpopmail and mysql
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 But, table vlimit is still empty and in ~vpopmail/domain/my_domain, i've the .qmailadmin-limits and nothing in MySQL :( and i've too etc/ vlimits.default Could anyone has a solution ? Have you run vmoddomlimits to try setting limits on a domain? I don't think there's any code to convert .qmailadmin-limits files into the MySQL table, if that's what you were expecting. No, i'm only use qmailadmin + vqadmin to manage vpopmail but, if - --enable-mysql-limits is defined, all values must be in MySQL and not in the file no ??? - -- Franck http://www.linuxpourtous.com -BEGIN PGP SIGNATURE- Version: GnuPG v1.2.4 (GNU/Linux) iD8DBQFAx1141zwfep5k9qERAhOhAKC+SaDEbbFlUxg2psXptjSXWdmzGQCfQN2i 6hd+gD2fNaosqSoO6ylPo8Y= =8lmP -END PGP SIGNATURE-
Re: [vchkpw] dot qmail processing
Thanks that did it. Another question. How can I drop a message? (kind of like contredirect /dev/null) Thanks again Pascal On Wed, 2004-06-09 at 07:18, Ken Jones wrote: On Wednesday 09 June 2004 7:53 am, Pascal DeMilly wrote: Hi, I have a question in regards to .qmail file processing. I am trying to setup a simple filtering to move spammed message to another folder using .qmail files. Basically something like that: | condredirect [EMAIL PROTECTED] grep 'Subject: [SPAM]' ./name/Maildir/ For simple address like [EMAIL PROTECTED], creating a .qmail-name in the domain directory works, but for more complex address [EMAIL PROTECTED] .qmail-first.lastname doesn't seem to be processed. Is the syntax of a .qmail file different if there is a . in the address name? Also why do I have to specify the full path for Maildir. In the doc it seems that I should have only to specify ./Maildir/. But doing so doesn't work It might be as simple as . characters are not allowed in .qmail file names. Instead use a : like: .qmail-first:lastname Check the dot-qmail man page. Ken Jones
Re: [vchkpw] dot qmail processing
Pascal DeMilly wrote: Thanks that did it. Another question. How can I drop a message? (kind of like contredirect /dev/null) A .qmail file with a one line comment will discard mail. .qmail-blackhole: -- # -- Rick
Re: [vchkpw] dot qmail processing
But what if I want to drop some mail based on the criteria but accept other for a particular address. On Wed, 2004-06-09 at 14:59, Rick Widmer wrote: Pascal DeMilly wrote: Thanks that did it. Another question. How can I drop a message? (kind of like contredirect /dev/null) A .qmail file with a one line comment will discard mail. .qmail-blackhole: -- # -- Rick
Re: [vchkpw] dot qmail processing
On Wednesday 09 June 2004 5:09 pm, Pascal DeMilly wrote: But what if I want to drop some mail based on the criteria but accept other for a particular address. You might want to look around on the net for the answer to that one. Basicly, you will need to send the email through a program that will make that decision and return the proper exit codes Ken Jones
Re: [vchkpw] Exhaustive LOG
On Wednesday 09 June 2004 1:44 pm, Martin Leduc wrote: Hi, Can I have the exhaustiv log with vchkpw? Like w.x.y.x session Open OK SEND USER.. OK SEND PASS.. OK SEND LIST ... OK RETR 1 .. ERROR ERROR BECAUSE Currently, I have customer who connect to my VPOPMAIL Server, see the amount of the Email to retrieve but dont retrieve it and Outlook tell Contact your ADM The only log I see is Connexion..OK [EMAIL PROTECTED]:IP Look into recordio. You can put it in front of any tcpserver controlled service and it will allow you to log the complete conversation between the client and server. Ken Jones
[vchkpw] problems after upgrading vpomail 5.2.2 to vpopmail 5.4.0
I have a gentoo box with qmail / vpopmail / courier-imap / horde imp for web mail service. Before upgrading the vpopmail to 5.4.0 I was able to change the email password using the horde-passwd component for horde-imp. But after updating vpopmail, know the system refuse to change that password, but everything else is working without problems. I follow this guide: http://www.gentoo.org/doc/en/qmail-howto.xml for installation. Currently I have installed: qmail-1.03 horde-2.2.5 horde-imp-3.2.3 horde-passwd-2.2.1 I got a patch for horde-passwd to enable crypt-md5 http://article.gmane.org/gmane.comp.horde.sork/1114/match=passwd+vpopmail And I would like to know if the encryption changes in the 5.4.x series? _ STOP MORE SPAM with the new MSN 8 and get 2 months FREE* http://join.msn.com/?page=features/junkmail
[vchkpw] Problem with bounce-no-mailbox
Hi I'm having a problem with Vpopmail 5.4.1 on Redhat. I don't think it has been happening until recently. In a nutshell, for domains that have .qmail-default set as | /home/vpopmail/bin/vdelivermail '' bounce-no-mailbox *all* email to that domain is bouncing with 550 sorry, no mailbox here by that name (#5.1.1 - chkusr) If I change the .qmail-default to read | /home/vpopmail/bin/vdelivermail '' /home/vpopmail/domains/vegasforums.com/postmaster mail is delivered without error Any suggestions gratefully received. -- Cheers Alastair --^--^--
Re: [vchkpw] dot qmail processing
A .qmail file with a one line comment will discard mail. .qmail-blackhole: -- # -- Rick Out of curiosity, is this a documented feature? I don't remember ever reading this anywhere. Paul
Re: [vchkpw] SMTP Authenticated user is able to anyone in rcpthosts
At 09/06/04 14:03 (), you wrote: Hi Devendra, At 18:38 07.06.04 +0530, you wrote: Hi, I am using Erwin Hoffmann's qmail-smtpd-auth-0.4.2. Thanks for using it. I have noticed that once authenticated a user can use [EMAIL PROTECTED] (where server.com is a domain listed in rcpthosts) in the FROM header. Is there any remedy. Yes, thats possible. You can prevent it partially with my SPAMCONTROL patch for Qmail. It includes SMTP Autentication (with some nice logging). In addition you may want to set the environment variable LOCALMFCHEK. For a relayclient (in particular in case of an SMTP authenticated session), you may inforce that the domain part of the Mail From: in the SMTP envelope corresponds with your list of rcpthosts or some arbitary name provided thru the variable LOCALMFCHECK. See: http://www.fehcom.de/qmail/spamcontrol/README_spamcontrol.html section 8.1. A more general discussion about SMTP Authentication can be found at: http://www.fehcom.de/qmail/smptauth.html Thanks Erwin, I am already using the following into the /etc/tcp.smtp :allow,LOCALMFCHECK=,MFDNSCHECK=,BADMIMETYPE=,MAXRECIPIENTS=20 As you have rightly said LOCALMFCHECK does prevent it partially with my SPAMCONTROL. If you try to notice what Shouguan Lin had pointed http://night.rdslink.ro/dudu/qmail/ with features o Added my own patch, that checks whether the 'mail from' value is different from the username used for SMTP AUTH, thus preventing source address spoofing. Useful for ISP's that only relay mails from authenticated users. o The 'mail from' verification is now configurable through a knob defined in /var/qmail/control/spoofcheck or in the environment variable $SPOOFCHECK Dr Erwin, You whole Spamcontrol Patch is so good that I have been using it in entirety since quite some time with remarkable results. I am sure that you may be able to add the functionality to stop own spamming clients. Thanks. Devendra Singh __ Devendra Singh IndiaMART InterMESH Limited (Global Gateway to Indian Market Place) B-1, Sector 8, Noida, UP - 201301, India EPABX : +91-120-2424945, +91-120-3094634, +91-9810646342 Fax: +91-120-2424943 http://www.indiamart.com http://www.indiangiftsportal.com http://www.indiantravelportal.com __