Re: [vchkpw] Simscan clamav error
Title: Re: [vchkpw] Simscan clamav error I think /var/qmail/simscan directory should be setgid. Clamav creates files with 600 permissions, so group members can't access them. This is from my server: drwxr-s--- 71 simscan simscan 4096 Mar 1 11:34 simscan Clamd is running as simscan. Tren Blackburn wrote: What user is clamd running as? - Original Message - From: Andrew Simonasi...@i3tcorp.com To:vchkpw@inter7.comvchkpw@inter7.com Sent: Sun Feb 28 12:53:58 2010 Subject: [vchkpw] Simscan clamav error Hi all, I've just built out a new mail system using vpopmail and simscan on the latest version of Ubuntu. Everything is working well with one exception. When I check the clamav.log I see the following error WARNING: lstat() failed on: /var/qmail/simscan/. /var/qmail/simcan has simscan:simscan as the owner and the group. And clamav is a member of the simscan group. And the permission seem correct. Any suggestions ? Andrew -- Best regards, Pavel mailto:bal...@msmu.ru !DSPAM:4b8b7ce632711591472733!
Re[2]: [vchkpw] vdeliver perimission denied for vadddomain -u
Hello Michael, I'm not sure how it will affect security, but perhaps you could make mike4 and other users who need access to vpopmail.mysql members of vchkpw group? In linux it should be "usermod -a -G vchkpw mike4" And you can use "groups mike4" command to see in which groups mike4 is. Friday, December 4, 2009, 3:47:57 PM, you wrote: Jukka, Good point, but vpopmail.mysql is already group vchkpw and mode 640 doesn't work. I tried and it gives: @40004b19000104a3957c delivery 37: deferral: vmysql:_can't_read_settings_from_/usr/local/hcp/vpopmail/etc/vpopmail.mysql/vdelivermail:_deferred,_database_down/ Any other ideas? Thanks, Michael. Date: Fri, 4 Dec 2009 10:09:44 +0200 From: jukka.kurk...@tjc.fi To: vchkpw@inter7.com Subject: Re: [vchkpw] vdeliver perimission denied for vadddomain -u rather change the group of vpopmail.mysql to vchkpw and let it be in mode 640.. it contains the password for the database, and if anyone who don't need to know it has shell access, its a security risk. ++jukka Have more than one Hotmail account?Link them together to easily access both. -- Best regards, Pavel mailto:bal...@msmu.ru !DSPAM:4b19109d32711976249256!
Re[2]: [vchkpw] vdeliver perimission denied for vadddomain -u
Hmmm, I've created a test domain belonging to user balrog, and although vpopmail.mysql file is accesible, messages are not delivered until I change its permissions to 644:
permissions:
/home/vpopmail 40711
/home/vpopmail/etc 40755
/home/vpopmail/etc/vpopmail.mysql 100640
[bal...@mail ~]$ id
uid=508(balrog) gid=508(balrog) groups=502(vchkpw),508(balrog)
[bal...@mail ~]$ cat /home/vpopmail/etc/vpopmail.mysql
localhost|0|vpopmail||vpopmail
Attempt to send mail results in this error in qmail-send log:
deferral: vmysql:_can't_read_settings_from_/home/vpopmail/etc/vpopmail.mysql/vdelivermail:_deferred,_database_down/
When vpopmail.mysql is made 644, then messages are delivered nicely.
Further testing revealed that although user "balrog" is a member of vchkpw group and can access vpopmail.mysql (see above), this file is not available to him while vdelivermail is running:
15730 open("/home/vpopmail/etc/vpopmail.mysql", O_RDONLY) = -1 EACCES (Permission denied)
If I change group of vpopmail.mysql to balrog, then mail gets delivered in this domain.
Could it be that vdelivermail ignores groups? Is it possible at all?
Friday, December 4, 2009, 4:49:30 PM, you wrote:
Jukka,
To clarify, the user was part of 'vhckpw' group before I tried reverting to mode 640.
So still having the issue. At the moment it's working with mode 644.
Mike.
Date: Fri, 4 Dec 2009 15:45:30 +0200
From: jukka.kurk...@tjc.fi
To: vchkpw@inter7.com
Subject: Re: [vchkpw] vdeliver perimission denied for vadddomain -u
Thats kind of odd.. did you make sure the user (mike4 i guess) is in
that group?
++jukka
Michael Mussulis wrote:
Add other email accounts to Hotmail in 3 easy steps.Find out how.
--
Best regards,
Pavel mailto:bal...@msmu.ru
!DSPAM:4b192a3232712125865721!
Re[10]: [vchkpw] Issues with vpopmail
Hello. 1) To use maildirsize files you have to configure vpopmail without --enable-domainquotas option. Then each user with defined quota will have file called maildirsize in his maildir. E.g. /home/vpopmail/domains/example.com/username/Maildir/maildirsize This file contains information about disk space usage and is updated every time user deletes messages via pop3/imap or new message arrives. You can read more about this method here: http://www.inter7.com/courierimap/README.maildirquota.html 2) Regarding messages w/o fields - what is in .qmail-default file in /home/vpopmail/domains/your-domain directory? Could you post all contents of this message (if it's not too big) here? 3) Honestly, I've never uninstalled vpopmail, but I think that if you remove domain name from /var/qmail/control/virtualdomains then mail for this domain will not be processed by vpopmail. But there are no other options for virtual domains with qmail. Vmailmgr is way obsolete imho. Also you could try 'make uninstall' :) Friday, November 27, 2009, 12:28:32 PM, you wrote: can you please explain what do you mean by "old-fashioned quotas, which are using maildirsize file in user's directory" and how can i set that Any suggestions why i am getting empty mails without sender, recipient, subject and content... what should i look for to rectify this?? thirdly how i can uninstall vpopmail completely from my server. Thanks. -- Best regards, Pavel mailto:bal...@msmu.ru !DSPAM:4b0fa64632713574113911!
Re[12]: [vchkpw] Issues with vpopmail
Hmm, strange. Are you sure there is no .qmail-default file in the domain directory and it is located in user's dir? And, imho, path /home/vpopmail/~vpopmail... looks pretty strange. And how does the message without 'from','subject' etc fields looks like? I think header lines would be enough. Friday, November 27, 2009, 2:12:38 PM, you wrote: i have .qmail-default in /home/vpopmail/~vpopmail/domains/user/example.com directory. and this file contains: | /home/vpopmail/bin/vdelivermail '' bounce-no-mailbox Regards Hello. 1) To use maildirsize files you have to configure vpopmail without --enable-domainquotas option. Then each user with defined quota will have file called maildirsize in his maildir. E.g. /home/vpopmail/domains/example.com/username/Maildir/maildirsize This file contains information about disk space usage and is updated every time user deletes messages via pop3/imap or new message arrives. You can read more about this method here: http://www.inter7.com/courierimap/README.maildirquota.html 2) Regarding messages w/o fields - what is in .qmail-default file in /home/vpopmail/domains/your-domain directory? Could you post all contents of this message (if it's not too big) here? 3) Honestly, I've never uninstalled vpopmail, but I think that if you remove domain name from /var/qmail/control/virtualdomains then mail for this domain will not be processed by vpopmail. But there are no other options for virtual domains with qmail. Vmailmgr is way obsolete imho. Also you could try 'make uninstall' :) Friday, November 27, 2009, 12:28:32 PM, you wrote: can you please explain what do you mean by "old-fashioned quotas, which are using maildirsize file in user's directory" and how can i set that Any suggestions why i am getting empty mails without sender, recipient, subject and content... what should i look for to rectify this?? thirdly how i can uninstall vpopmail completely from my server. Thanks. -- Best regards, Pavel mailto:bal...@msmu.ru !DSPAM:4b0fbcaf32711185212129!
Re[8]: [vchkpw] Issues with vpopmail
Hello. I would also recommend reading qmailtoaster and shupp.org/toaster resources as Eric and Remo suggested. Apart from that, I can only share my vusaged and vusagec configs, which were working while I tested them. However, I chose to use old-fashioned quotas, which are using maildirsize file in user's directory (vpopmail is compiled without --enable-domainquotas option). Please take a note that directive 'Disable' in vusagec.conf requires patch which is available on this list in thread 'patch to disable vusaged'. My vusagec.conf: --start file-- Global: Disable = 1; Server: Filename = /tmp/vusaged.sock; Timeout = 1; --end file-- My vusaged.conf: --start file-- Log: Level = 1; Socket: Filename = /tmp/vusaged.sock; UID = vpopmail; GID = vchkpw; Client timeout = 5; // Inactivity timeout in seconds Poll timeout = 1; Detect client timeout = 4; Queue: Workers = 10; Max queue size = 1000; Polling: Use Maildir++ format = True; Directory minimum poll time = 120; Count directory entry size = False; Age Factor = 1; --end file-- Thursday, November 26, 2009, 12:47:11 PM, you wrote: Hi Pavel thanks for replying. i want to explain my whole scenario so that it will be easier to suggest what should i do firstly i configured qmail server and qmail-pop3d with Maildir format. it was working fine. and than i need to set user quotas so i googled and found vpopmail. i installed it and created new domain, user and set user quota. but i was getting error in running vusaged (/vusaged: error while loading shared libraries: libev.so.3: cannot open shared object file: No such file or directory) so i commented out Listen line in vusaged.conf file than i got this: #./vusaged config: using /home/vpopmail/etc/vusaged.conf socket: listening on /tmp/vusaged.sock vusaged: begin controller: stage one controller: stage two so i think it is working fine now. but now my problem is in log file i am getting this error: delivery 13: success: client_connect:_connect_failed:_13/client_connect:_connect_failed:_13/client_connect:_connect_failed:_13/tcprules:_fatal:_unable_to_parse_this_line:_Received:_(qmail_4552_invoked_from_network);_25_Nov_2009_09:46:36_-/client_connect:_connect_failed:_13/did_0+0+1/ and in mailbox also, i get an empty mail without any to: from: subject and content. vdominfo is working fine but in vuserinfo i get the same error saying: client_connect: connect failed: 13 i dont know what should i do... i am configuring mail server for the first time and i am not so clear about the internal processes so if anyone can help me in understanding what vusaged and vusagec do (any link which have all the explanation) and what should i do to get my mails with all attributes rather than a blank mail hoping to get any solution to my problem Thanks -- Best regards, Pavel mailto:bal...@msmu.ru -- Best regards, Pavel mailto:bal...@msmu.ru !DSPAM:4b0f830d32714894957029!
Re[2]: [vchkpw] Issues with vpopmail
Hello. I guess you should use either Filename = or Listen = directives in vusaged.conf. Try, for example, commenting out line with "listen" by putting // in the beginning: // Listen = 0.0.0.0:189; HTH. Wednesday, November 25, 2009, 9:56:37 AM, you wrote: i hav given the following commands: # ln /usr/local/lib/libev.so.3.0.0 /lib/libev.so.3 # ldconfig /lib/ # ldconfig /lib/libev.so.3 Now i hav libev.so.3 in both /usr/local/lib and /lib than i tried to run vusaged command without any reinstall or service restart and i am getting this error: # ./vusaged config: using /home/vpopmail/etc/vusaged.conf socket_init: invalid configuration: Can't use both Socket::Filename and Socket::Listen socket_init failed Can u help me in doing proper configuration. any help will be appreciated Thanks. --- OnWed, 11/25/09, Remo Matteir...@italy1.comwrote: From: Remo Mattei r...@italy1.com Subject: Re: [vchkpw] Issues with vpopmail To: vchkpw@inter7.com, m...@inter7.com Date: Wednesday, November 25, 2009, 5:43 AM Did you try to add the link into the library ldconfig? Looks like ld does not know where the library is.. I would add the path and then try to reinstall vpopmail to make sure just rerun it on top.. Just my 2 cents. Remo On 11/24/09 10:33 PM, "abc Xyz" a_xy...@yahoo.com wrote: Thanks for the replying Matt but i have already tried it but i am getting the same error again. so any other suggestions. Thanks. --- OnTue, 11/24/09, Matt Brookingsm...@inter7.comwrote: From: Matt Brookings m...@inter7.com Subject: Re: [vchkpw] Issues with vpopmail To: vchkpw@inter7.com Date: Tuesday, November 24, 2009, 4:16 PM -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 abc Xyz wrote: i am having a problem with vpopmail server. when i try to run vusaged iget the folloeing error. #./vusaged ./vusaged: error while loading shared libraries: libev.so.3: cannot open shared object file: No such file or directory Try running /sbin/ldconfig. The ev library needs to be in the dynamic linkers path. - -- /* Matt Brookings m...@inter7.com /mc/compose?to=m...@inter7.com GnuPG Key FAE0672C Software developer Systems technician Inter7 Internet Technologies, Inc. (815)776-9465 */ -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.9 (GNU/Linux) Comment: Using GnuPG with Mozilla -http://enigmail.mozdev.org iEYEARECAAYFAksMBs0ACgkQIwet2/rgZyww3ACggqhLDQoZ/Y6DQZXMdZ6y2Wgu fd8AoIMcAjhQ+wjpgBkDt5Txi4807BLf =xtFA -END PGP SIGNATURE- -- Best regards, Pavel mailto:bal...@msmu.ru !DSPAM:4b0ce81632714568834126!
Re: [vchkpw] dovecot and vpopmail
Hello Christian, Friday, November 20, 2009, 11:40:28 AM, you wrote: CL Hi, CL I'm trying to set up dovecot with vpopmail on a Debian Lenny system. I CL have modified the package from dotdeb.org to use MySQL. Now, that gives CL me binaries that work fine (i.e. vchkpw, vadd..., etc. work fine) but CL dovecot just doesn't want to do the authentication right. skip CL I tried a web search but I only found posts describing the same problem CL never a solution. CL Cheers, CL Christian Sorry if this solution is unacceptable, but why bother with packages? Both vpopmail and dovecot compile nicely from sources and you can tune them to your liking. -- Best regards, Pavelmailto:bal...@msmu.ru !DSPAM:4b06608832717179362923!
[vchkpw] vusaged, quota and 5.4.28
Hello. I can't figure how to set up malibox quota with 5.4.28. Maybe someone could provide me with advice? In short, the problem is that if I start vusaged, then messages are rejected with 'user is over quota' message although quota is not reached (vuserinfo reports 15% usage). And if I don't start vusaged, than information about every new message is written twice in maildirsize file. I've seen posts about this problem and people suggest to revert to 5.4.23, but I can't find its tarball :( Vpopmail 5.4.28: #~vpopmail/bin/vuserinfo postmas...@ skip quota: 1048576S usage: 15% # ~vpopmail/bin/vusagec postmas...@ postmas...@xxx: 164915 byte(s) in 9 file(s) This information is perfectly correct - there are 9 files in the mailbox which occupy 164915 bytes. And it is indeed 15% of 1Mb quota. However, if I send a new message to this user (970 bytes), it returns with 'user is over quota': Hi. This is the qmail-send program at mail0. I'm afraid I wasn't able to deliver your message to the following addresses. This is a permanent error; I've given up. Sorry it didn't work out. postmas...@: user is over quota What additional info can I provide to help solve this problem? I guess this problem was also mentioned in this post: http://www.mail-archive.com/vchkpw@inter7.com/msg27155.html Thanks in advance ! P.S. Perhaps someone could share tarball of 5.4.23 version with me? :) -- Best regards, Pavel mailto:bal...@msmu.ru !DSPAM:4ae8610532711967020485!
