Re: [vchkpw] Silly Qmail (Queue) Syndrome and Spamcontrol Patch
Hi Tom, Thanks. At 08/09/04 20:42 (), you wrote: On Sep 7, 2004, at 11:54 PM, Devendra Singh wrote: c) what Anti-Virus and Anti-Spam tools are you using AntiVirus is clamav-0.75.1 and AntiSpam is SpamAssassin-2.63 with patched version of qmail-scanner Qmail-Scanner-1.23st (st patch) from http://xoomer.virgilio.it/j.toribio/qmail-scanner/. This patched version of qmail-scanner has been used to selectively enable only 20% of the domains to have AntiVirus/AntiSpam enabled. I am also using the --sa-reject option to have spam messages with a score higher than sa-delete (score of 16 in my case) to be rejected before the smtp session is closed. I'd probably point the finger at qmail-scanner. It's a major resource hog and starts a perl instance every time a message comes in. I do agree, in fact I knew. Weighing Options. I use clamav and SpamAssassin as well, but use qscanq (google for it) and qmail-spamc (included with SpamAssassin) to block viruses and score spam on messages at the qmail-queue stage. Unfortunately, without patching, you won't be able to selectively enable it per domain or have an sa-reject option. I would look at qscanq as well as QMVC suggested by Dr Erwin. I would also look for any other options if possible. But, I need to enable / disable AntiVirus AntiSpam for Selective email-addresses (and domains). Also, Clients requirements have forced me to quarantine Spam above certain level and should be intimated to the sender (just in case its's a real sender). If we bounce the spam it will result into a double bounce mostly. Hence rejection is required. You could look at some of the patches Ken Jones of Inter7 has put together to add SpamAssassin integration to vdelivermail. This would offload the spam processing from qmail-smptd, and can be enabled on a per-domain basis. You could then replace qmail-scanner with qscanq to block viruses (for all domains) at the smtpd level. Where can I find those patches by Ken? Any URL please (I tried searching the archives). Some hints: - It might me worthwilhe to reduce the incoming-concurrency. Drop it to 30. Any figures less than 80 would cause lot many Servers not to get smtp connect to our Server during peak time of 0100 to 0500 hrs EDT. Maybe not. You need to determine whether a lower concurrency will reduce the amount of time spent on each message and ultimately allow more connections per hour. Once you start hitting virtual memory, all of the current connections will get bogged down. Take a look at how many messages are processed per hour at 100, and then at 80. If the queue is growing and messages aren't getting delivered, there's not much benefit to queueing the message instead of just not accepting the connection. I am experimenting on it. However, I have got sigh of relief (probably for the time being), by adding sbl-xbl.spamhaus.org to rblsmtpd (I was already using bl.spamcop.net). This has reduced the SMTPD threads a bit. Dr Erwin, May I request Dr Erwin to get reply on my reply to his reply in this thread. I have already tried the newanalyse package on a development (Fedora) Server. It works, great. The qmFind did not compile. One more question Dr Erwin, The SMTP log is more informative after your SpamControl Patch but it lacks the IP addresses in front of the entries. Have I missed something or its like that only. Here is a sample. @400041416592147f8924 Accept::SNDR::Relay_Client: MailFrom: [EMAIL PROTECTED] RcptTo: [EMAIL PROTECTED] @4000414165921589e0bc tcpserver: deny 3214 x.x.xxx:111.222.333.444:25 :218.20.230.246::63771 MAXCONNIP:5 @40004141659217e0a9cc Accept::ORIG::Local_Sender: MailFrom: [EMAIL PROTECTED] RcptTo: [EMAIL PROTECTED] @4000414165921e41b07c Accept::ORIG::Local_Sender: MailFrom: [EMAIL PROTECTED] RcptTo: [EMAIL PROTECTED] @4000414165cb2f16d51c tcpserver: status: 69/80 @4000414165cc0cfb055c Accept::RCPT::Rcpthosts_Rcptto: MailFrom: [EMAIL PROTECTED] RcptTo: [EMAIL PROTECTED] @4000414165cc181127dc tcpserver: status: 70/80 @4000414165f0227f90dc tcpserver: ok 5737 x.x.xxx:111.222.333.444:25 :61.11.87.37::2812 @4000414165f025019c24 tcpserver: ok 5736 x.x.xxx:111.222.333.444:25 :203.145.134.238:dvromafh:2447 @4000414165f026fdc5fc Reject::SNDR::Invalid_Relay: MailFrom: [EMAIL PROTECTED] RcptTo: [EMAIL PROTECTED] @4000414165f02792fd34 tcpserver: ok 5174 x.x.xxx:111.222.333.444:25 :61.1.220.108::1854 @4000414166381540b25c Reject::ORIG::No_DNSMX: MailFrom: [EMAIL PROTECTED] RcptTo: [EMAIL PROTECTED] Thanks. Devendra Singh
[vchkpw] Moving tcp.smtp
I'm trying to implement 'vpopmail roaming users'. The docs say to store the tcp.smtp files in ~vpopmail/etc. I've tried doing so... updating all the qmail control/run files I could find, but it 'breaks' the svr (smtp errors, no mail in/out). Here's what I've done: 1. Physical move: cp /etc/tcp* ~vpopmail/etc cd ~vpopmail/etc chown vpopmail.vchkpw tcp* (wasn't sure who should own 'em... I tried root.root also) 2. Modify qmail files: /var/qmail/supervise/qmail-smtpd/run : changed path: exec /usr/local/bin/softlimit -m 400 \ /usr/local/bin/tcpserver \ -H -l mail.spacefoundation.org \ -v -x ~vpopmail/etc/tcp.smtp.cdb \ -c 20 -R -u $QMAILDUID -g $NOFILESGID 0 smtp \ /usr/local/bin/rblsmtpd -b -C \ /var/qmail/bin/qmailctl : changed in multiple places from: /etc/tcp... -- ~vpopmail/etc/tcp... 3. qmailctl cdb (just to force a new build in the new folder) So what did I miss?? As I said, when I make these changes, it 'breaks'. No smtp. Thanks! -Fred. -- Frederick H. Colclough Director, Information Systems Space Foundation 719-576-8000 http://www.spacefoundation.org --
[vchkpw] Error adding a new domain in qmail using vpopmail
I'm having problems when adding a new domain using vpopmail. It was working just fine until I run: chown vpopmail:vchkpw -R /home/vpopmail/domains so I guess it's a privilegies problem or something The error I'm getting is: [EMAIL PROTECTED] /]# /home/vpopmail/bin/vadddomain test.com Please enter password for postmaster: enter password again: qmail-newu: fatal: bad format in users/assign Error: Domain does not exist /var/qmail/users/assign: [EMAIL PROTECTED] /]# cat /var/qmail/users/assign +test.com-:test.com:89:89:/home/vpopmail/domains/test.com:-::
Re: [vchkpw] Error adding a new domain in qmail using vpopmail
Barbarojo wrote: I'm having problems when adding a new domain using vpopmail. It was working just fine until I run: chown vpopmail:vchkpw -R /home/vpopmail/domains so I guess it's a privilegies problem or something /var/qmail/users/assign: [EMAIL PROTECTED] /]# cat /var/qmail/users/assign +test.com-:test.com:89:89:/home/vpopmail/domains/test.com:-:: Hi, The assign file should end with a line with just a . in it. ie +test.com-:test.com:89:89:/home/vpopmail/domains/test.com:-:: . Regards, Rick
Re: [vchkpw] Re: un-subscribe
On Sep 9, 2004, at 2:14 AM, Jeremy Kitchen wrote: I've always been a fan of having an internet license where you can't get an ISP without taking a short class on common sense and safe internet practices :) I guess not everyone can be helped. An ISP in europe will sell you internet that is firewalled, and the only way to open a port up is to call tech support and get one of the guys on the phone, explain why you need the port open (Enough ports are open for normal day to day stuff), and answer a few questions. So if you answer the questions wrong, you will not have the port opened. So a lot of home servers can be run on that without fear because you know that the owners have at least answered enough questions right that they know how to run the particular server (For instance, mail, or HTTPD). On their IP block, there is no damage done yet cause of spamming. And any PC's that are spamming, even with the port closed, get their internet taken away until they fix the problem, or decide to switch ISP. They offer tech support (walk in) for $50 (one time) and they fix whatever the problem was, and reactivate your internet :). Pretty cool actually. Wish i could remember the name, read about it in the Financiale Telegraaf (Dutch newspaper about finances). -Jeremy X-Istence
RE: [vchkpw] Error adding a new domain in qmail using vpopmail
Thank you so much. Problem solved. It must have been an qmail-1.03 bug... I tried to add a new domain and mismatch a few times the password... the domain directory was created and that's when I starting having the assign file problem. I am sure it wasn't fully written or something -Mensaje original- De: Rick Macdougall [mailto:[EMAIL PROTECTED] Enviado el: Viernes, 10 de Septiembre de 2004 05:43 p.m. Para: [EMAIL PROTECTED] Asunto: Re: [vchkpw] Error adding a new domain in qmail using vpopmail Barbarojo wrote: I'm having problems when adding a new domain using vpopmail. It was working just fine until I run: chown vpopmail:vchkpw -R /home/vpopmail/domains so I guess it's a privilegies problem or something /var/qmail/users/assign: [EMAIL PROTECTED] /]# cat /var/qmail/users/assign +test.com-:test.com:89:89:/home/vpopmail/domains/test.com:-:: Hi, The assign file should end with a line with just a . in it. ie +test.com-:test.com:89:89:/home/vpopmail/domains/test.com:-:: . Regards, Rick
Re: [vchkpw] Moving tcp.smtp
- Original Message - From: Fred Colclough To: [EMAIL PROTECTED] Sent: Saturday, September 11, 2004 3:19 AM Subject: [vchkpw] Moving tcp.smtp I'm trying to implement 'vpopmail roaming users'. The docs say to "store the tcp.smtp files in ~vpopmail/etc". I've tried doing so... updating all the qmail control/run files I could find, but it 'breaks' the svr (smtp errors, no mail in/out). Here's what I've done: 1. Physical move: cp /etc/tcp* ~vpopmail/etc cd ~vpopmail/etc chown vpopmail.vchkpw tcp* (wasn't sure who should own 'em... I tried root.root also) 2. Modify qmail files: /var/qmail/supervise/qmail-smtpd/run : changed path: exec /usr/local/bin/softlimit -m 400 \ /usr/local/bin/tcpserver \ -H -l mail.spacefoundation.org \ -v -x ~vpopmail/etc/tcp.smtp.cdb \ -c 20 -R -u "$QMAILDUID" -g "$NOFILESGID" 0 smtp \ /usr/local/bin/rblsmtpd -b -C \ I remember there being agotcha that the path shouldnt be specified as ~vpopmail, it in fact needs to be thefull path. I know for sure this is the case with the --enable-tcpserver-file configure command, but I am not 100% sure whether it also applies to the qmail-smtp/run file. It wouldnt hurt to update your syntax above to use the full path to the cdb file just in case. /var/qmail/bin/qmailctl : changed in multiple places from: /etc/tcp... -- ~vpopmail/etc/tcp... 3. qmailctl cdb (just to force a new build in the new folder) So what did I miss?? As I said, when I make these changes, it 'breaks'. No smtp. You will need to restart the qmail-smtp supervise process for the changes to to take effect ie qmailctl restart Michael.
Re: [vchkpw] Moving tcp.smtp
Hello Michael, Thanks for the response... but I have restarted qmail... otherwise I wouldn't know that it 'breaks'! :-)I have to revert back to the original settings, do another qmailctrl restart .. to get it operational again! Anyone else out there familiar w/ moving tcp.smtp so I can do roaming users? Thanks! -Fred. -- Frederick H. Colclough Director, Information Systems Space Foundation 719-576-8000 http://www.spacefoundation.org -- On 11 Sep 2004 at 7:14, Michael Bowe wrote: - Original Message - From: Fred Colclough To: [EMAIL PROTECTED] Sent: Saturday, September 11, 2004 3:19 AM Subject: [vchkpw] Moving tcp.smtp I'm trying to implement 'vpopmail roaming users'. The docs say to store the tcp.smtp files in ~vpopmail/etc. I've tried doing so... updating all the qmail control/run files I could find, but it 'breaks' the svr (smtp errors, no mail in/out). Here's what I've done: 1. Physical move: cp /etc/tcp* ~vpopmail/etc cd ~vpopmail/etc chown vpopmail.vchkpw tcp* (wasn't sure who should own 'em... I tried root.root also) 2. Modify qmail files: /var/qmail/supervise/qmail-smtpd/run : changed path: exec /usr/local/bin/softlimit -m 400 \ /usr/local/bin/tcpserver \ -H -l mail.spacefoundation.org \ -v -x ~vpopmail/etc/tcp.smtp.cdb \ -c 20 -R -u $QMAILDUID -g $NOFILESGID 0 smtp \ /usr/local/bin/rblsmtpd -b -C \ I remember there being agotcha that the path shouldnt be specified as ~vpopmail, it in fact needs to be thefull path. I know for sure this is the case with the --enable-tcpserver-file configure command, but I am not 100% sure whether it also applies to the qmail-smtp/run file. It wouldnt hurt to update your syntax above to use the full path to the cdb file just in case. /var/qmail/bin/qmailctl : changed in multiple places from: /etc/tcp... -- ~vpopmail/etc/tcp... 3. qmailctl cdb (just to force a new build in the new folder) So what did I miss?? As I said, when I make these changes, it 'breaks'. No smtp. You will need to restart the qmail-smtp supervise process for the changes to to take effect ie qmailctl restart Michael.
RE: [vchkpw] Error adding a new domain in qmail using vpopmail
You are right... I did add the . at the end of the file and now it lets me add new domains, etc. But for some reason the assign file doesn't have all the accounts I had. I tried to add a new domain and mismatch a few times the password... the domain directory was created and that's when I starting having the assign file problem. So I guess for some reason the assign file was emptied. How can I retrieve all the accounts and domains information from the domain/vpasswd file or the domain/vpasswd.cdb file to the /var/qmail/users/assign file? Is there a script or something I can use for that? -Mensaje original- De: Rick Macdougall [mailto:[EMAIL PROTECTED] Enviado el: Viernes, 10 de Septiembre de 2004 05:43 p.m. Para: [EMAIL PROTECTED] Asunto: Re: [vchkpw] Error adding a new domain in qmail using vpopmail Barbarojo wrote: I'm having problems when adding a new domain using vpopmail. It was working just fine until I run: chown vpopmail:vchkpw -R /home/vpopmail/domains so I guess it's a privilegies problem or something /var/qmail/users/assign: [EMAIL PROTECTED] /]# cat /var/qmail/users/assign +test.com-:test.com:89:89:/home/vpopmail/domains/test.com:-:: Hi, The assign file should end with a line with just a . in it. ie +test.com-:test.com:89:89:/home/vpopmail/domains/test.com:-:: . Regards, Rick
[vchkpw] Re: Moving tcp.smtp
Fred Colclough writes: I'm trying to implement 'vpopmail roaming users'. The docs say to store the tcp.smtp files in ~vpopmail/etc. I've tried doing so... updating all the qmail control/run files I could find, but it 'breaks' the svr (smtp errors, no mail in/out). Here's what I've done: 1. Physical move: cp /etc/tcp* ~vpopmail/etc cd ~vpopmail/etc chown vpopmail.vchkpw tcp* (wasn't sure who should own 'em... I tried root.root also) 2. Modify qmail files: /var/qmail/supervise/qmail-smtpd/run : changed path: exec /usr/local/bin/softlimit -m 400 \ /usr/local/bin/tcpserver \ -H -l mail.spacefoundation.org \ -v -x ~vpopmail/etc/tcp.smtp.cdb \ -c 20 -R -u $QMAILDUID -g $NOFILESGID 0 smtp \ /usr/local/bin/rblsmtpd -b -C \ /var/qmail/bin/qmailctl : changed in multiple places from: /etc/tcp... -- ~vpopmail/etc/tcp... 3. qmailctl cdb (just to force a new build in the new folder) So what did I miss?? As I said, when I make these changes, it 'breaks'. No smtp. Thanks! -Fred. Fred, and this is an I'm not quite sure answer...but- What if you give the directory location as an absolute /home/vpopmail... instead of the virtual location ~vpopmail...? My setup has the path spelled out, and it Just Works. HTH, rick
Re: [vchkpw] Error adding a new domain in qmail using vpopmail
Barbarojo wrote: You are right... I did add the . at the end of the file and now it lets me add new domains, etc. But for some reason the assign file doesn't have all the accounts I had. I tried to add a new domain and mismatch a few times the password... the domain directory was created and that's when I starting having the assign file problem. So I guess for some reason the assign file was emptied. How can I retrieve all the accounts and domains information from the domain/vpasswd file or the domain/vpasswd.cdb file to the /var/qmail/users/assign file? Is there a script or something I can use for that? Hi, Not that I know of. If it's not a lot of domains, it should be easy enough to add them manually to the assign file and then run /var/qmail/bin/qmail-newu, of course making sure the domains are still in rcpthosts (or morercpthosts) and virtualdomains. HTH, Rick
Re: [vchkpw] Re: Moving tcp.smtp
On 10 Sep 2004 at 16:28, Rick van Vliet wrote: Fred Colclough writes: I'm trying to implement 'vpopmail roaming users'. The docs say to store the tcp.smtp files in ~vpopmail/etc. I've tried doing so... updating all the qmail control/run files I could find, but it 'breaks' the svr (smtp errors, no mail in/out). Here's what I've done: 1. Physical move: cp /etc/tcp* ~vpopmail/etc cd ~vpopmail/etc chown vpopmail.vchkpw tcp* (wasn't sure who should own 'em... I tried root.root also) 2. Modify qmail files: /var/qmail/supervise/qmail-smtpd/run : changed path: exec /usr/local/bin/softlimit -m 400 \ /usr/local/bin/tcpserver \ -H -l mail.spacefoundation.org \ -v -x ~vpopmail/etc/tcp.smtp.cdb \ -c 20 -R -u $QMAILDUID -g $NOFILESGID 0 smtp \ /usr/local/bin/rblsmtpd -b -C \ /var/qmail/bin/qmailctl : changed in multiple places from: /etc/tcp... -- ~vpopmail/etc/tcp... 3. qmailctl cdb (just to force a new build in the new folder) So what did I miss?? As I said, when I make these changes, it 'breaks'. No smtp. Thanks! -Fred. Fred, and this is an I'm not quite sure answer...but- What if you give the directory location as an absolute /home/vpopmail... instead of the virtual location ~vpopmail...? My setup has the path spelled out, and it Just Works. HTH, rick Hello Rick! I already thought of that as well... same result! I've gotta be missing something OBVIOUS here... Thanks. -Fred.
[vchkpw] retrieve assign file from vpasswd
Hello everyone. I am using qmail 1.03 and vpopmail 5.2. I have a lot of virtual domains created and I am having quite a problem. I tried to add a new domain and mismatch a few times the password... for some reason the /var/qmail/users/assign file was emptied. The rcpthosts and morercpthosts are fine though. How can I retrieve all the accounts and domains information from the domain/vpasswd file or the domain/vpasswd.cdb file to the /var/qmail/users/assign file? Is there a script or something I can use for that?
Re: [vchkpw] retrieve assign file from vpasswd
On Sep 10, 2004, at 3:49 PM, lists wrote: Hello everyone. I am using qmail 1.03 and vpopmail 5.2. I have a lot of virtual domains created and I am having quite a problem. I tried to add a new domain and mismatch a few times the password... for some reason the /var/qmail/users/assign file was emptied. The rcpthosts and morercpthosts are fine though. How can I retrieve all the accounts and domains information from the domain/vpasswd file or the domain/vpasswd.cdb file to the /var/qmail/users/assign file? Is there a script or something I can use for that? Just restore it from a backup. If you don't backup your server (especially /var/qmail/control and /var/qmail/users), then you should start doing so. It will be difficult to recreate it manually. You could go through all directories in ~vpopmail/domains and at least get those inserted, but I can't think of an easy way to recover alias domains. If you still have the users/cdb file, you might be able to extract the data from there to recreate the assign file. Or, take a look at this: On Sep 3, 2004, at 12:55 PM, Kim Gosselin wrote: I have found a script @ http://www.root0.net/script/index.html ( http://www.root0.net/script/assign_cpeator.sh ) It rebuild the assign file if it was damaged. I have use it here and it works fine. -- Tom Collins - [EMAIL PROTECTED] QmailAdmin: http://qmailadmin.sf.net/ Vpopmail: http://vpopmail.sf.net/ Info on the Sniffter hand-held Network Tester: http://sniffter.com/
