[vchkpw] bindimap.conf
I have a side project going of installing Squirrelmail on the same qmail/vpopmail server i have been working on. I found one reference to a file called /var/qmail/control/bindimap.conf. Unfortunatly my installation i am working with doesnt have this file. Can someone point me to an example file or if somone has used this, enlighten me. Thanks, guys! Tim
[vchkpw] Managing virt domain settings in vpopmail
Hello, and thanks in advance for any info you all can provide. I have been thrown into a situation where i am working on a qmail/vpopmail installation and have never done so before. I am learning, but there is a curve! (being an old hat at sendmail, its not tooo bad :-) Anyway, on the to question: how do i make changes to settings of a vpopmail domain, such as setting the maximum number of users a virt domain may have? I have scoured the manpages online, ran the bin files with --help, and searched google til i was blue in the face... Any help is appreciated! Tim
Re: [vchkpw] Managing virt domain settings in vpopmail
Yeah, after searching this mailing lists archives, i would have thought that too but that file doesnt exist...I am now dazed and confused. [EMAIL PROTECTED] bin]# pwd /home/vpopmail/bin [EMAIL PROTECTED] bin]# ls -lsa total 776 4 drwxr-xr-x2 vpopmail vchkpw 4096 Nov 17 11:10 . 4 drwxr-xr-x9 vpopmail vchkpw 4096 Dec 12 2001 .. 36 -rwx--x--x1 vpopmail vchkpw 35644 Nov 21 2003 clearopensmtp 36 -rwx--x--x1 vpopmail vchkpw 36316 Nov 21 2003 vaddaliasdomain 40 -rwx--x--x1 vpopmail vchkpw 38108 Nov 21 2003 vadddomain 40 -rwx--x--x1 vpopmail vchkpw 36924 Nov 21 2003 vadduser 40 -rwx--x--x1 vpopmail vchkpw 37932 Nov 21 2003 valias 40 -rwx--x--x1 vpopmail vchkpw 39484 Nov 21 2003 vchkpw 40 -rwx--x--x1 vpopmail vchkpw 38428 Nov 21 2003 vconvert 36 -rwx--x--x1 vpopmail vchkpw 35836 Nov 21 2003 vdeldomain 44 -rwx--x--x1 vpopmail vchkpw 41372 Nov 21 2003 vdelivermail 36 -rwx--x--x1 vpopmail vchkpw 35452 Nov 21 2003 vdeloldusers 36 -rwx--x--x1 vpopmail vchkpw 35932 Nov 21 2003 vdeluser 40 -rwx--x--x1 vpopmail vchkpw 37468 Nov 21 2003 vdominfo 36 -rwx--x--x1 vpopmail vchkpw 36252 Nov 21 2003 vipmap 36 -rwx--x--x1 vpopmail vchkpw 35516 Nov 21 2003 vmkpasswd 40 -rwx--x--x1 vpopmail vchkpw 38588 Nov 21 2003 vmoduser 36 -rwx--x--x1 vpopmail vchkpw 36188 Nov 21 2003 vpasswd 40 -rwx--x--x1 vpopmail vchkpw 38204 Nov 21 2003 vpopbull 40 -rwx--x--x1 vpopmail vchkpw 40924 Nov 21 2003 vqmaillocal 36 -rwx--x--x1 vpopmail vchkpw 36284 Nov 21 2003 vsetuserquota 40 -rwx--x--x1 vpopmail vchkpw 39164 Nov 21 2003 vuserinfo On Wed, 17 Nov 2004 08:48:14 -0800, Tom Collins [EMAIL PROTECTED] wrote: On Nov 17, 2004, at 8:26 AM, Tim Grossner wrote: Anyway, on the to question: how do i make changes to settings of a vpopmail domain, such as setting the maximum number of users a virt domain may have? I have scoured the manpages online, ran the bin files with --help, and searched google til i was blue in the face... ~vpopmail/bin/vmoddomlimits -- Tom Collins - [EMAIL PROTECTED] QmailAdmin: http://qmailadmin.sf.net/ Vpopmail: http://vpopmail.sf.net/ Info on the Sniffter hand-held Network Tester: http://sniffter.com/
Re: [vchkpw] Managing virt domain settings in vpopmail
OK i found the file...its in the /home/vpopmail/domains/xxx/ dir. File is .qmailadmin-limits It being a . file i didnt see it before when i was looking, for some reason i didnt do an ls -lsa in that dir. Silly me :-) Anyway, I doubt i end up upgrading this system. Around here change can be bad. Tim
Re: [vchkpw] Managing virt domain settings in vpopmail
LOL this system is looking like its running 5.0.1 The previous admin really was on top of things eh?
[vchkpw] Re: Vpopmail Problems
a new mail message. After I done this, I haven't had the quota usage reporting negative or 0% when the user has mail. Hope this helps Best Regards, Tim Hasson Quoting Abdul Mahzeer [EMAIL PROTECTED]: Tim, Thank you very much for your response, any advice you can give me is greatly appreciated. To answer your questions, first my vpopmail domain is located locally on a ext3 filesystem. Secondly, when i telnet into my imap server and do a getquota ROOT for my user it gives me an output of: a2 getquota ROOT * QUOTA ROOT (STORAGE -166194 20480) a2 OK GETQUOTA Ok. I hope this was the info you are looking for. This whole situation is very bizarre to me. Once again thank you for all your help and I hope to hear from you soon. Warm Regards, Abdul From: Tim Hasson [EMAIL PROTECTED] To: Abdul Mahzeer [EMAIL PROTECTED] Subject: Re: Vpopmail Problems Date: Wed, 15 Oct 2003 13:54:58 -0700 Hi Abdul, I'll try to answer your question tomorrow. I have a test today :) For now, some information would be helpful: 1. do you also store your vpopmail domains on NFS, or is it on local disk partition (ext2/ext3/ufs etc..) 2. For the user you mentioned, can you do the following from command line (to test if you are really getting negative values in the quota usage instead of a valid number - this is the case when user info returns 0% ) # telnet your.imap.server.host 143 login [EMAIL PROTECTED] hispassword getquota ROOT This information will greatly help. Tim Quoting Abdul Mahzeer [EMAIL PROTECTED]: Tim, Sorry to bother you but just recently I've been experiencing similiar maildirsize problems that you mentioned you were having on the vpopmail mailing list. I'm running vpopmail 5.3.23 along with qmail 1.03. Also like you, I've just recently migrated from courier 1.6 to courier 2.0. When i do a vuserinfo -Q [EMAIL PROTECTED] on a user i get an output of 0%. But I know he has over 500 messages on a 20MB quota. Anyway from your post it appears you had the same problem. Did you ever figure out what was causing the problem? Any help on this would be greatly appreciated because i have no clue. Regards, Abdul _ Concerned that messages may bounce because your Hotmail account has exceeded its 2MB storage limit? Get Hotmail Extra Storage! http://join.msn.com/?PAGE=features/es _ Concerned that messages may bounce because your Hotmail account has exceeded its 2MB storage limit? Get Hotmail Extra Storage! http://join.msn.com/?PAGE=features/es Respectfully, Tim Hasson Consultant, AiDA Systems (209) 639-2989 Voice
Re: [vchkpw] Quota problems
`rm user/Maildir/maildirsize` after you have changed the quota. send that user an email, then check if the quota is fixed. If yes, then vqadmin is not deleting the old maildirsize file when changing quotas, which it should. Regards, Tim Quoting Franck [EMAIL PROTECTED]: -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Hello all, I have problem with quota on vqadmin 2.3.4 and vpopmail 5.3.9 The domain name my_domain.com have 1 bytes (~100 Mo) for quota In this domain, i have 5 users who are 1 bytes too. I have updated all users from 10 Mo to 100 Mo. But, when i'm logging in sqwebmail with one of user account, sqwebmail tell me that's the account have 49%. df -h ~vpopmail/domians/my_domain.com/my_user = 7.7 Mo :( What's the solution ? Regards - -- Franck http://www.linuxpourtous.com -BEGIN PGP SIGNATURE- Version: GnuPG v1.2.3 (GNU/Linux) iD8DBQE/iZkK1zwfep5k9qERAr82AKCpWs11BzcqFnzXXZHl2uvEOv9pFwCfUOUc n/f+X6UmfZUdAkbRh1k0TMs= =DjZN -END PGP SIGNATURE-
[vchkpw] [PATCH] maildrop+mysql+vpopmail integration
Hi, I am using qmail-1.03, vpopmail-5.2.1 w/mysql, and maildrop-1.6.2 w/mysql I was having very hard time getting maildrop and vpopmail to read the virtual users from the same table (vpopmail mysql layout). I also realized maildrop was very picky about all the fields that they all have to be set or else things wouldn't work. And since vadduser doesn't add the uid/gid of the mail owner (virtual or unique uid), I made a patch that'll do that. It also replaces vdelivermail in .qmail-default with maildrop, and should automatically create the right table layout if you are installing cleanly. If you are upgrading an existing vpopmail installation that uses mysql, you can simply add the following additional fields to your vpopmail table (if you are using the default many-domains option): `pw_email` varchar(128) NOT NULL default '', `pw_maildir` varchar(180) NOT NULL default 'Maildir', `real_uid` int(16) NOT NULL default '500', `real_gid` int(16) NOT NULL default '500', `pw_status` int(8) NOT NULL default '1', substitute uid/gid default of 500 for your vpopmail/vchkpw uid/gid. and for existing domains, change their .qmail-default to: | /usr/local/bin/maildrop -d [EMAIL PROTECTED] Change your path if it's not /usr/local (and also in a couple places in the patch) Apply the patch: patch -p0 ../vpopmail-5.2.1-maildropmysql.patch maildrop configure options: ./configure --with-etcdir=/usr/local/etc \ --enable-maildrop-uid=root \ --enable-maildrop-gid=wheel \ --without-db \ --enable-maildropmysql \ --with-mysqlconfig=/usr/local/etc/maildropmysql.conf \ --enable-maildirquota You also need to: chown root:wheel /usr/local/bin/maildrop chmod +s /usr/local/bin/maildrop if you want to be able to have a combination of a virtual uid system, and a unique uid system. This is very useful if you would like to run certain domains under a unique uid for OS enforced quotas. maildropmysql.conf hostnamemysql.host.tld port3306 databasevpopmail dbuser vpopmail dbpwsecretpass dbtable vpopmail default_uidnumber 500 default_gidnumber 500 uid_field pw_email uidnumber_field real_uid gidnumber_field real_gid maildir_field pw_maildir homedirectory_field pw_dir quota_field pw_shell mailstatus_fieldpw_status where_clause The only cavaet I couldn't get around for now is that the uid that maps to /etc/passwd must have a valid shell, or else maildrop complains.. Can you have a global maildroprc with SHELL=/bin/sh so that I could disable shell access for those uids? Ideas/Suggestions? Respectfully, Tim Hasson diff -u vpopmail-5.2.1.orig/vadddomain.c vpopmail-5.2.1/vadddomain.c --- vpopmail-5.2.1.orig/vadddomain.cSat Jan 19 23:07:57 2002 +++ vpopmail-5.2.1/vadddomain.c Sun Oct 5 01:59:35 2003 @@ -86,8 +86,7 @@ vget_assign(Domain, a_dir, 156, a_uid, a_gid ); snprintf(TmpBuf1, MAX_BUFF, %s/.qmail-default, a_dir); if ( (fs = fopen(TmpBuf1, w+))!=NULL) { -fprintf(fs, | %s/bin/vdelivermail '' %s\n, VPOPMAILDIR, -BounceEmail); +fprintf(fs, | /usr/local/bin/maildrop -d [EMAIL PROTECTED]); fclose(fs); chown(TmpBuf1, a_uid, a_gid); } else { diff -u vpopmail-5.2.1.orig/vmysql.c vpopmail-5.2.1/vmysql.c --- vpopmail-5.2.1.orig/vmysql.cFri Feb 1 17:43:24 2002 +++ vpopmail-5.2.1/vmysql.c Sun Oct 5 01:41:09 2003 @@ -80,6 +80,9 @@ char EGecos[SMALL_BUFF]; char EClearPass[SMALL_BUFF]; +uid_t real_uid; +gid_t real_gid; + void vcreate_dir_control(char *domain); void vcreate_vlog_table(); void vmysql_escape( char *instr, char *outstr ); @@ -288,6 +291,9 @@ } } +/* get the real_uid and real_gid to add them in mysql for maildrop deliveries */ +vget_assign(domain, dom_dir, 156, real_uid, real_gid ); + if ( pass[0] != 0 ) { mkpasswd3(pass,Crypted, 100); } else { @@ -308,6 +314,7 @@ #ifdef CLEAR_PASS ,EClearPass #endif +, (long unsigned)real_uid, (long unsigned)real_gid ); if (mysql_query(mysql_update,SqlBufUpdate)) { diff -u vpopmail-5.2.1.orig/vmysql.h vpopmail-5.2.1/vmysql.h --- vpopmail-5.2.1.orig/vmysql.hFri Feb 1 18:06:13 2002 +++ vpopmail-5.2.1/vmysql.h Sun Oct 5 02:13:00 2003 @@ -48,6 +48,11 @@ pw_dir char(160), \ pw_shell char(20), \ pw_clear_passwd char(16), \ +pw_email varchar(128) NOT NULL, \ +pw_maildir varchar(180) NOT NULL default \Maildir\, \ +real_uid int(16) NOT NULL default \500\, \ +real_gid int(16) NOT NULL default \500\, \ +pw_status int(8) NOT NULL default \1\, \ primary key (pw_name, pw_domain ) #else #define TABLE_LAYOUT pw_name char(32) not null, \ @@ -57,6 +62,11 @@ pw_gecos char(48), \ pw_dir char(160), pw_shell char(20
[vchkpw] Re: [maildropl] nfs
It is true that maildir was designed to be used over NFS, but I would like to know how many people are using the maildir++ extension (maildirquotas) on nfs in a production environment.. The reason why I ask is because I have been trying to debug a possible race condition with nfs when messages are added to a maildir and not added to maildirsize file. The problem doesn't occur very often but exposes itself after a while when those messages are deleted, and thus subtracted from the quota when they were never added, eventually yielding a negative quota. For some reasons maildrop was not rebuilding those files (or at least not for a few days) so I had to manually rebuild them. The tool I used to rebuild the quotas for all accounts is vuserinfo from vpopmail which shares (almost) the same maildirquota code from courier. From the latest README.maildirquota.txt (comes with maildrop-1.6.2) The current implementation of Maildir++ in Courier inserts whitespace padding on each line so that each line (including the terminating \n) is 14 bytes in size. This minimizes the impact of appending-related bugs in some NFS implementations. daemon1# rm Maildir/maildirsize daemon1# maildirmake -q 1000S Maildir/ daemon1# cat Maildir/maildirsize 1000S 00 daemon1# rm Maildir/maildirsize daemon1# ~vpopmail/bin/vuserinfo [EMAIL PROTECTED] [vuserinfo provides some info for that user and recalculates the quota as is set in the quota column in the mysql db] daemon1# cat Maildir/maildirsize 1000S 0 0 I am still looking in the code (maildirquota.*) in maildrop/maildir/ to find out how this padding is done. If you can point me to it, please let me know.. Respectfully, Tim Hasson Quoting Martin Lohmeier [EMAIL PROTECTED]: -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On Sunday 05 October 2003 22:31, Chris Masters wrote: Hi all, Has anyone experienced any problems with courier-maildrop or courier-imap with maildirs located on an NFS mount? As far as I know, maildir is designed to be used over NFS. Have a look at http://www.qmail.org/man/man5/maildir.html and http://cr.yp.to/proto/ maildir.html by, Martin - -- public key available from http://www.hacktik.org/linux/keys/blackm_at_ferris.dyndns.info Powerd by Debian GNU / Linux -BEGIN PGP SIGNATURE- Version: GnuPG v1.2.3 (GNU/Linux) iD8DBQE/gM4gGxxhbGlQyAkRAiKcAJ9yXTbQG8gL1u1AZeh05yOuGkw1swCfdwh8 /Y+6XUvBXHq1Iwtell3xaM4= =gday -END PGP SIGNATURE- --- This sf.net email is sponsored by:ThinkGeek Welcome to geek heaven. http://thinkgeek.com/sf ___ Courier-maildrop mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/courier-maildrop
[vchkpw] maildrop mysql, and ongoing courier battles
Ok, All I want to do is invoke maildrop from .qmail-default for some domains, and have maildrop read the users homedirs from the mysql db. Apparantly, it doesn't work. I tried virtually everything. I added the -V 9 option to maildrop for debugging, and it always says: @40003f7d5922332596fc delivery 9: deferral: maildrop:_Changing_to_/home/vpopmail/Message_start_at_0_bytes,_envelope_sender= vpopmail/maildrop:_Attempting_.mailfilter/maildrop:_Delivering_to_/var/mail/vpo pmail//usr/local/bin/maildrop:_Unable_to_open_mailbox./ when it should be really changing to /home/vpopmail/domains/somedomain.com/someuser Here is my current config: ./configure --prefix=/usr/local \ --with-etcdir=/usr/local/etc \ --enable-maildrop-uid=root \ --enable-maildrop-gid=wheel \ --without-db \ --enable-maildropmysql \ --with-mysqlconfig=/usr/local/etc/maildropmysql.conf \ --enable-maildirquota I made sure it's suid r00t: # ll /usr/local/bin/maildrop -rwsr-sr-x 1 root wheel 833435 Oct 3 01:17 /usr/local/bin/maildrop # cat /usr/local/etc/maildropmysql.conf | grep -v ^# | grep -v ^$ hostnamemysqlhost port3306 databasevpopmail dbuser vpopmail dbpwmysecretpw dbtable vpopmail default_uidnumber 500 default_gidnumber 500 uid_field pw_email homedirectory_field pw_dir quota_field pw_shell (pw_email is a column that I created in the vpopmail table that concats two columns, pw_name and pw_domain, with '@' in between them - and I simulated maildrop's select query and it works quite well) I even tried putting CONCAT (pw_name, '@', pw_domain) AS pw_email as the uid_field in maildropmysql.conf This doesn't seem to affect it a bit. # id vpopmail uid=500(vpopmail) gid=500(vchkpw) groups=500(vchkpw) # cat .qmail-default | /usr/local/bin/maildrop -V 9 I tried changing .qmail-default to: # cat .qmail-default | /usr/local/bin/maildrop -V 9 -d [EMAIL PROTECTED] But I get this in my qmail-send logs: @40003f7d635e28877ef4 delivery 4: deferral: Invalid_user_specified./ How do I convince maildrop that I am just delivering to the virtual users homedir/Maildir and not trying to start WWIII? I hope I don't have to use that trusted-user related options. The reason is because all my domains right now run under 1 uid (i.e. virtual) and i would like to later add a few domains each with its unique uid. Therefore, I wouldn't like to recompile maildrop everytime I needed to add a new trusted user.. Any info would be helpful.. thanks, tim
RE: [vchkpw] maildrop mysql, and ongoing courier battles
Quoting Tom Walsh [EMAIL PROTECTED]: Just a stab in the dark... but what shell do you have for the user vpopmail? is it a valid shell or something like /bin/nologin? Try using a valid shell for the vpopmail user. maildrop doesn't run setuid so it must be run under the shell of the executing user. At least that is what I encountered when trying to run maildrop from user level dot-qmail files. I read this somewhere on maildrop/courier mailing list. Someone mentioned exactly what you said, but... You could still specify a mailfilter to maildrop from .qmail-default (i.e. | /usr/local/bin/maildrop mailfilter) and in your mailfilter, you would put SHELL=/bin/sh The above would do the same as giving the vpopmail user a shell in /etc/passwd. Nevertheless, I have also just tried what you just said (for the second time) and I still get this in my qmail-send logs: @40003f7e0d3a331d981c delivery 189: deferral: maildrop:_Changing_to_/home/vpopmail/Message_start_at_0_bytes,_envelope_sender= vpopmail/maildrop:_Attempting_.mailfilter/maildrop:_Delivering_to_/var/mail/vpo pmail//usr/local/bin/maildrop:_Unable_to_open_mailbox./ I suspect this problem is caused by code compensation for some admins' stupidity to prevent local DoS in maildrop. Therefore, I believe the only thing I could do right now is recompile maildrop with trusted-users=vpopmail ... If this is the case, then screw it. I dont want to recompile maildrop everytime I want to vadddomain -u uniquedomuid newdomain.com Thanks for your suggestions. If you have any more stabs in the dark, please feel free :)) Respectfully, Tim Hasson
[vchkpw] maildrop, vpopmail, and mysql - was Re: NFS, maildir++ and negative quota
Ok. So it all narrowed down to qmail-local, I think. So, the qmail-local maildir++ patch doesn't work on NFS (or just doesn't work, period) is a possibility. So I switched back to my original qmail-local binary, and modified my /var/qmail/rc script to pipe to deliverquota ./Maildir as the maildrop/maildirquota documentation suggests. I also seen something in the changelog about the 12 byte padding in maildirsize files to avoid nfs appending issues? I believe the vuserinfo program from vpopmail, and possibly other maildir++ related code doesn't do this. Is this bad? Also, I have all my virtual users managed by vpopmail from a mysql databse. maildropmysql.conf seems very powerful from a first glance, but I have one problem: Vpopmail's default mysql table structure has two seperate fields, pw_name and pw_domain and from maildropmysql.conf # UID_FIELD - MySQL attribute which contains the users name (w or w/o domain) uid_field uid Should there be an optional seperate domain field if uid_field only contains the username and not the full email? I guess for now as a workaround I can create a new column call it 'email' for example and on mysql do: UPDATE vpopmail SET full_name = CONCAT(pw_name, '@', pw_domain); and set uid_field in maildropmysql.conf to 'email' Would that be fine? Also, regarding the uidnumber_field and gidnumber_field, are they required? Could maildrop automatically detect who the maildirs are owned by (vpopmail:vchkpw) and write new mail with the correct permissions. I have used the 'to $VHOME/Maildir' from mailfilter called by maildrop from .qmail-default and it I didn't have to give it any special uid/gid other than compiling maildrop with uid root. Quoting Sam Varshavchik [EMAIL PROTECTED]: Well, somehow messages that are added to the maildir are not added to the quota, so when the messages are removed, the subtracted quota becomes negative. I don't have an immediate idea why. Although Maildir++ certainly trades in some known race conditions in favor of lock-free operation, race condition that would lead to such a situations should be very rare. Perhaps NFS exaggerates the conditions that lead to a race condition. But that's pure speculation. What's needed is a reproducible way to create this scenario. One potential workaround you can explore is to forcibly recompute the quota if the apparent quota is negative. Try hacking the quota code to call maildir_quota_recalculate(), just once, if the apparent quota is negative, then try again. Respectfully, Tim Hasson
[vchkpw] mysql auth, dir_control, pw_uid/pw_gid and maildrop
Hi, This is regarding vpopmail-5.2.1 and the mysql auth module: A year ago, or more, I converted all my domains from cdb to mysql using the convert script in contrib. I noticed all users in the vpopmail table contain '1' in the pw_uid and '0' in the pw_gid. Now this is the primary issue. Also, the dir_control table contained rows (domains) that had cur_users set to a big number, like around 2 billion. Others didn't reflect the exact users in the domain. However, newly added domains reflect the number of users and it increments as expected. The dir_control table also always contained a last row that contains 'dom_500' in the domain field (the first field in the dir_control table). I guess this is always set to dom_vpopmailuid ? I noticed the cur_users field in the row that begins with 'dom_500' as the domain gets incremented when I add a new domain. But again, since the conversion, the number was not correct and didn't reflect the number of domains managed by vpopmail. So I manually updated the cur_users rows to reflect the actual number of users in each domain row, and the numbers of domains managed by vpopmail in the dom_500 row. Is that OK? Now I mentioned after the cdb-mysql conversion, the mysql row for each of the users always reflected 1 and 0 for the pw_uid and pw_gid fields, respectively. When I added a new domain, new users (and postmaster) have 0 and 0 for the pw_uid and pw_gid fields. Although /var/qmail/users/assign shows the correct uid/gid of vpopmail (500/500) for all the domains. Shouldn't the pw_uid and pw_gid fields reflect 500/500 just like in assign? The reason why I am concerned is I am looking in using maildrop for delivery and since it supports mysql, I can have it read the users home directly from the vpopmail database instead of running `vuserinfo -d [EMAIL PROTECTED] from a mailfilter script. From maildropmysql.conf : # UIDNUMBER_FIELD - MySQL attribute which contains the system uid to deliver # mail as uidnumber_field uidnumber # GIDNUMBER_FIELD - MySQL attribute which contains the system gid to deliver # mail as gidnumber_field gidnumber Any information, clarifications, suggestions, experiences, or ideas would be greatly appreciated. Respectfully, Tim Hasson
Re: [vchkpw] mysql auth, dir_control, pw_uid/pw_gid and maildrop
Quoting Erik Bourget [EMAIL PROTECTED]: Sorry to not answer your question, but you raise a pet peeve of mine wrt vpopmail - Tim Hasson [EMAIL PROTECTED] writes: So I manually updated the cur_users rows to reflect the actual number of users in each domain row, and the numbers of domains managed by vpopmail in the dom_500 row. Is that OK? dir_control is a horrible black art and one should never mess around with it. It decided where new directories are made, i.e. /domains/foo.bar.net/8/K/z/erik. I know that. That's why I only changed the cur_users because it was already messed up since the migration for the domains migrated. Newly added domains showed the expected increment/decrement behavior when domains/users were added/deleted. So I just basically updated the cur_users for the ones that were off (or way off), period. I guess if it worked for my primary domain with cur_users set to _2 BILLION_ , it'll work when it's only like 15 (15 users in that domain). What in the universe is the point of a __SEVENTEEN COLUMN__ table to represent this information? I agree. No, vpopmail (and I'm really sorry to rant here but I hate vpopmail's mysql database layout) uses the pw_uid for nothing at all and pw_gid to store FLAGS ON AN ACCOUNT. A gid of 1024 means something, like 'don't allow pop access' or 'bounce all mail to this account'. That sucks. What if you want to add a domain with a unique uid that's different from vpopmail's uid ? (for os quota enforcement/security etc..) Do you have to always consult assign/users to get the uid for a domain or user? Then what is the point of the mysql auth module? Also, this would be a perfect place to store the uid/gid of the user, if you wanted to have an option -u username/uid to vadduser just like vadddomain (I guess you would also need a -d ~userhome option so it would work) or even if you have multiple domains that run under a different uid/gid each. For the above mentioned reasons, by intiuition, I would think that the pw_uid and pw_gid would at least reflect the same uid/gid in assign/users - if not even to offer a unique uid per user option. The reason why I am concerned is I am looking in using maildrop for delivery and since it supports mysql, I can have it read the users home directly from the vpopmail database instead of running `vuserinfo -d [EMAIL PROTECTED] from a mailfilter script. From maildropmysql.conf : # UIDNUMBER_FIELD - MySQL attribute which contains the system uid to deliver # mail as uidnumber_field uidnumber # GIDNUMBER_FIELD - MySQL attribute which contains the system gid to deliver # mail as gidnumber_field gidnumber Maildrop will become very upset if the uid and gid are not the same as the 500:500 that you have in qmail-local. Maildrop's MySQL support is not one-to-one with vpopmail's MySQL support. Do as you remarked before and set default_uidnumber and default_gidnumber to 500. From my pervious comments above, you should now understand why I wanted to link the uidnumber_field and gidnumber_field from maildrop with vpopmail's pw_uid and pw_gid fields. Any information, clarifications, suggestions, experiences, or ideas would be greatly appreciated. Use my maildrop MySQL rule filtering patch! vdelivermail is a relic! :) I am not up to speed with you on offering delivery-level-filtering with maildrop to end users quite yet. So for now, they'll have to stick with IMP's webmail filters for moving messages around at login. However, I do use maildrop filters to invoke spamc and scan mail for spam then look for SPAM keyword in the message header, and if it's marked as spam, deliver it to user/Maildir/.BulkMail , else deliver to user/Maildir This is enabled for only one domain from it's .qmail-default file. However, since you mentioned in your earlier email that you have the maildrop maildir autocreation patch seperated, please direct me to it. I guess for now as a workaround for vpopmail's table pw_name and pw_domain incompatibility with maildrop's single uid_field, I can create a new column, and call it 'pw_email' for example and on mysql do: UPDATE vpopmail SET pw_email = CONCAT(pw_name, '@', pw_domain); and set uid_field in maildropmysql.conf to 'pw_email' And also set the other stuff (like the userhome_field etc.) should be ok. - Erik Bourget Respectfully, Tim Hasson
Re: [vchkpw] mysql auth, dir_control, pw_uid/pw_gid and maildrop
Erik, Thank you very much for all your help. I sent a message to chris and hopefully he'll reply. I just have a couple more questions/points to confirm: 1. If using maildrop, bounce all messages flag for a user probablly wouldn't work because it's proprietary to vdelivermail, correct? 2. How does the maildrop maildir auto creation handle inexistent- [EMAIL PROTECTED] ? Does it confirm that the userhome is set in the database before creating dirs? I recall having a problem when using maildrop with a simple mailfilter for delivery (called from .qmail-default) when someone sends a message to any [EMAIL PROTECTED], which would cause messages to be queued and later bounced. So as a temp workaround I added a little if clause to my mailfilter to check if the user's maildir exists first, and if the returncode == 1, then exitcode 100, and echo Sorry, no user here by that name or something like that. Sorry if I am not making much sense or being redundant, but I am getting really tired with this whole vdelivermail/maildrop thing :| Thanks, Tim Quoting Erik Bourget [EMAIL PROTECTED]: Tim Hasson [EMAIL PROTECTED] writes: Quoting Erik Bourget [EMAIL PROTECTED]: [ what do pw_uid and pw_gid do? ] No, vpopmail (and I'm really sorry to rant here but I hate vpopmail's mysql database layout) uses the pw_uid for nothing at all and pw_gid to store FLAGS ON AN ACCOUNT. A gid of 1024 means something, like 'don't allow pop access' or 'bounce all mail to this account'. That sucks. Hell yes! What if you want to add a domain with a unique uid that's different from vpopmail's uid ? (for os quota enforcement/security etc..) Do you have to always consult assign/users to get the uid for a domain or user? Then what is the point of the mysql auth module? The way qmail works, qmail-local is actually run AS THE UID that it finds in the users/cdb file. It's not vpopmail's fault that it can't escape this limitation, it's a (rather reasonable) behavior of qmail. The point of the mysql auth module is to be not used solely in a vpopmail environment. This configuration option does not apply to vpopmail. For the above mentioned reasons, by intiuition, I would think that the pw_uid and pw_gid would at least reflect the same uid/gid in assign/users - if not even to offer a unique uid per user option. You'll find that the intersection of vpopmail thinking and intuition is very small. From my pervious comments above, you should now understand why I wanted to link the uidnumber_field and gidnumber_field from maildrop with vpopmail's pw_uid and pw_gid fields. Well, here's another way you can do it - ALTER TABLE the vpopmail table and add a uidnumber and gidnumber column. vpopmail doesn't do anything as braindead as SELECT * so it won't break, and maildrop can look up in these new fields. You'll have to make sure to update them after every vadduser though (or just modify the vadduser source if you're c-inclined). Any information, clarifications, suggestions, experiences, or ideas would be greatly appreciated. Use my maildrop MySQL rule filtering patch! vdelivermail is a relic! :) However, I do use maildrop filters to invoke spamc and scan mail for spam then look for SPAM keyword in the message header, and if it's marked as spam, deliver it to user/Maildir/.BulkMail , else deliver to user/Maildir This is enabled for only one domain from it's .qmail-default file. However, since you mentioned in your earlier email that you have the maildrop maildir autocreation patch seperated, please direct me to it. I guess for now as a workaround for vpopmail's table pw_name and pw_domain incompatibility with maildrop's single uid_field, I can create a new column, and call it 'pw_email' for example and on mysql do: UPDATE vpopmail SET pw_email = CONCAT(pw_name, '@', pw_domain); and set uid_field in maildropmysql.conf to 'pw_email' You know, you might actually be able to just say CONCAT(pw_name, '@', pw_domain) AS pw_email in maildropmysql.conf itself. I think that it's just sprintf'd into the string in maildrop (which would mean that you can screw yourself over pretty bad with some creative SQL injection...). And also set the other stuff (like the userhome_field etc.) should be ok. You should get in touch with Chris Masters, rotis 23 at yahoo dot com (no space between the rotis and the 23). He seems to have the same motives as you and has created a maildrop patch for himself. It includes the maildir creation and some other minor mysql-ish niceness. - Erik Bourget
Re: [vchkpw] vpopmail+maildrop, sql valias loses mails
Look in syslog (/var/log/messages) when that problem happens. Look for vdelivermail. Do you see any vdelivermail coredumps? If yes, then this is the same problem I had, which is most likely related to vdelivermail not handling certain maildrop exit codes (I dont recall them off hand) So as a workaround, try this: SHELL=/bin/sh import EXT import HOST VHOME=`~vpopmail/bin/vuserinfo -d [EMAIL PROTECTED] `test -d $VHOME/Maildir` if ( $RETURNCODE == 1 ) { echo Sorry, no mailbox here by that name. (#5.1.1) EXITCODE=100 exit } # Default delivery exception { to $VHOME/Maildir/ } Quoting Leto Tokarev [EMAIL PROTECTED]: Hi! vpopmail 5.2.1+seekable maildrop 1.5.1 (same results with mdrop1.6, 1.6.1, vpop5.3.27) .qmail-default: | preline /usr/local/bin/maildrop mailfilter very simple mailfilter: logfile x import EXT import HOST VPOP=| /var/vpopmail/bin/vdelivermail '' bounce-no-mailbox to $VPOP [EMAIL PROTECTED] is a Maildir. valias [EMAIL PROTECTED] - [EMAIL PROTECTED] comes from mysql table. Out of 10 mails sent to [EMAIL PROTECTED] usually 4 lose, 6 gets delivered. What should I look for? I debugged what's happening with vdelivermail: It always gets the mail, and looks up the valias. When things okay, it runs a second delivery, but this time to the final Maildir. Sometimes this step missing. More strange: 100% success when an alias comes from dot-qmail file, or when the valias points to a different domain (no matter if local or remote). Leto Respectfully, Tim Hasson
[vchkpw] [SECURITY] RE: [vchkpw] Matt Simersons tcpserver-mysql patch how-to??
Hi, Then create a file called 'sql' in the qmail control dir with the following layout server localhost port3306 databasevpopmail table relay uservpopmailuser passvpopmailpassword time1800 Add the -S switch to your qmail-smtpd script and restart the servers. Make sure 100% that /var/qmail/control/sql file is either chowned 'qmaild', chgrouped 'nofiles', or BOTH! I forgot about that one time and changed ownership on that file to vpopmail:vchkpw (during a server migration), and started qmail. Apparently I didn't tail qmail-smtpd/log/current while tcpserver was complaining about control/sql file Permission denied. This was for a few days before I found out my mail server was AN OPEN RELAY. fixing the permissions on the sql file and restarting qmail fixed the problem. This is for tcpserver, correct? (Because the current version of vPopmail has a control file like this now. And what does your full smptd line look like now? e.g. I have (no tcpserver patch): env - PATH=/var/qmail/bin:/usr/local/bin \ tcpserver -p -H -l0 -R -c 512 -x \ /var/qmail/vpopmail/etc/tcp.smtp.cdb -u 301 -g 302 \ 0 smtp /var/qmail/bin/qmail-smtpd foo.bar.org \ /var/qmail/vpopmail/bin/vchkpw /bin/true after the patch it would be? env - PATH=/var/qmail/bin:/usr/local/bin \ tcpserver -p -H -l0 -R -c 512 -x \ -S \ 0 smtp /var/qmail/bin/qmail-smtpd foo.bar.org \ /var/qmail/vpopmail/bin/vchkpw /bin/true If you are no longer needing the cdb file (example allowing particular ips/subnets to relay) just omit the -x option. Although I use -S for mysql relay info, I also still use the -x option to call a static file that rarely ever changes: -x /etc/tcp.smtp.cdb I think this is better than depending on the mysql db also for static relayclients (unless they're over a 1000), and also in case of mysql database failure, the static relayclients would still be able to relay mail (because it's read from cdb on disk), while roaming users will fail - better than both client groups failing. Respectfully, Tim Hasson
Re: [vchkpw] Vpopmail and maildrop
HI, This is a problem with 5.2.1 (Stable) I have seen some exitcode changes in Changelog in some devel versions, but I am not sure how they behave quite yet. Quoting Mailing Lists [EMAIL PROTECTED]: Hy guys, I filter my messages through maildrop. The problem is that I want to bounce no_such_user messages back to sender using vdelivermal. So I put a line to |/home/vpopmail/bin/vdelivermail '' bounce-no-mailbox in my maildrop filter script, but no message is bounced! [...] VHOME=/home/vpopmail/domains/$HOST/$EXT VPOP=|/home/vpopmail/bin/vdelivermail '' bounce-no-mailbox `test -d $VHOME/Maildir` if ( $RETURNCODE = 1 ) { to $VPOP exit } Try this if block instead: `test -d $VHOME/Maildir` if ( $RETURNCODE == 1 ) { echo Sorry, no mailbox here by that name. (#5.1.1) EXITCODE=100 exit } Hope this helps.. Respectfully, Tim Hasson
Re: [vchkpw] Re: synchronize control files
Quoting Paul L. Allen [EMAIL PROTECTED]: Tim Hasson writes: I am developing a web based interface on it using php/mysql [...] My worst fear is of a exploit like the recent SSL v2 vulnerability where an unautheticated user, or an anonymous user, could just simply exploit the apache process, and use it as a step stone. You're worried about an obscure SSL vulnerability when you're using PHP? Unless you're planning on a dedicated mail server with no user accounts having webspace, your setup will be wide open. I use safemode, but more importantly open_basedir option. php cannot read/execute files outside the vhost docroot (have a open_basedir restriction per vhost), and User vhost1 in each vhost with suexec for cgi programs (I have not tested the cgi programs part). uniqueuser has no shell access. all files in vhosts root directory is chowned vhost1:nobody by the ftp server on upload, chmod is not allowed, chmod is not in the path in php, and ftp chroot. All ftp users are also virtual. No remote user has any shell access. Without an add-giving the eqvuivalent behaviour of suexec, you need to make any directories and files that you need to modify readable and writeable by the httpd user. So anybody with web space on the server can write some PHP to read and/or trash other people's mail. mail and apache runs as completely different uids/gids. the webserver runs as user nobody and has no access but to read the files. This is because the ftp server chowns the the files on upload to: user: vhostnum group: nobody mode: 750 (user: read/write/exec, group read/execute, world none) The best is done so that the users cannot read any file except in their vhost root (using open_basedir), but definately cannot write because apache doesn't have write permissions, user cannot also chmod the files. php cannot even exec(/bin/cat) because they are chrooted to their vhostroot/ all mail users are virtual Being worried about obscure attacks when you're using PHP is like worrying about somebody 100 yards away striking a match when your clothes are on fire. You did not follow my point correctly. 1. I have read php security docs more than once, and I follow up with mailing list tricks on security (like cross site exploits etc.) and try to stay up with the most current fixes. 2. apache runs as UID/GID nobody. 3. each vhost has its unique username (no shell access) for suexec, if cgi is enabled for that vhost. The SSL vulnerability I mentioned as just an example. And it's not even related to the hosted users. I was talking about something completely different which is a dedicated process or a different apache installation that I run as a different uid for specific administration tasks. No one is allowed to upload or write their own scripts there, and those files are only readable by the user that the 2nd apache install runs as (and group wheel of course). Anyways, you missed my whole point. It's my fault anyway, this is way off vpopmail list topics. My apologies.. -- Paul Allen Softflare Support Respectfully, Tim Hasson
[vchkpw] Fwd: Re: NFS, maildir++ and -ve quota
This is a followup for the problem discussed last week. Is there anyone even running maildir on nfs with maildir++ quotas enabled?? - Forwarded message from Sam Varshavchik [EMAIL PROTECTED] - Date: Mon, 22 Sep 2003 23:55:26 -0400 From: Sam Varshavchik [EMAIL PROTECTED] Reply-To: Sam Varshavchik [EMAIL PROTECTED] Subject: Re: NFS, maildir++ and -ve quota To: Tim Hasson [EMAIL PROTECTED] Tim Hasson writes: Quoting Sam Varshavchik [EMAIL PROTECTED]: Tim Hasson writes: Mr Sam, I have switched over to maildrop instead of vdelivermail, by calling it from .qmail-default for all my domains. Everything looked good for a few days, until I see the problem occuring with one of the users that had the same problem before with vdelivermail. So I ran a shell script that removes any maildirsize file with negatives in it, then recreate the maildirsize file for that user by running vuserinfo -Q [EMAIL PROTECTED] and setting the chown/chgrp vpopmail/vchkpw on the maildirsize file. Just in case some bad stuff stayed around.. I am not familiar with vuserinfo. I can tell you, though, that maildirmake -q should recalculate the current quota. The `vuserinfo -Q [EMAIL PROTECTED] calculates the quota, displays usage percentage on screen, and creates maildirsize in the user's maildir if it does not already exist. Few days, and the problem happens to another account. There is 1.1MB in user/Maildir, his trash is only few kb, but getquota ROOT on courierimap reports -ve value. What exactly is a -ve value? Lousy abbreviations: (-)ve == negative Well, somehow messages that are added to the maildir are not added to the quota, so when the messages are removed, the subtracted quota becomes negative. I don't have an immediate idea why. Although Maildir++ certainly trades in some known race conditions in favor of lock-free operation, race condition that would lead to such a situations should be very rare. Perhaps NFS exaggerates the conditions that lead to a race condition. But that's pure speculation. What's needed is a reproducible way to create this scenario. One potential workaround you can explore is to forcibly recompute the quota if the apparent quota is negative. Try hacking the quota code to call maildir_quota_recalculate(), just once, if the apparent quota is negative, then try again. - End forwarded message - Respectfully, Tim Hasson unnamed Description: PGP signature
[vchkpw] [PATCH] Re: [vchkpw] Is qmail-scanner work properly with vpopmail/qmail
I posted this patch a long while ago, and I posted it several times... Hope someone notices and somehow magically add it to the documentation/faq/code.. Actually, it would be nice as a configure option.. Please see attachement.. Respectfully, Tim Hasson Quoting Raj [EMAIL PROTECTED]: Dear all, I read from qmail-scanner web page (or from somewhere, i think from old FAQ of qmail-scanner but now it is not there.SO what should I assume for that isssues got resolved( if yes then what patches are need to update vpopmail setting)) that qmail-scanner does not work properly with vpopmail. Will you please clarify my this doubt. if it has some issues how can I resolve those by all possible extents.Please do not say this is off topic mail(off mailing list topic). Raj qmailqueue-vpopmail-5.2.1.patch Description: Binary data
Re: [vchkpw] [PATCH] Re: [vchkpw] Is qmail-scanner work properly with vpopmail/qmail
Now it's too late... I think I had some problems with that. For some reason not all mail would get scanned. I believe the pop-before-smtp user's was never scanned. This is probably why I made this patch. I was (and still) running vpopmail with mysql, tcpserver with mysql patch. This has proven useful if some user's computer gets infected with any email worm variant, the system would hopefully stop the legitimate user from using the server as a virus mailer relay, with the overhead costs of course... Respectfully, Tim Hasson Quoting Tom Collins [EMAIL PROTECTED]: On Tuesday, September 23, 2003, at 05:43 AM, Tim Hasson wrote: I posted this patch a long while ago, and I posted it several times... Hope someone notices and somehow magically add it to the documentation/faq/code.. Actually, it would be nice as a configure option.. Why don't you just define QMAIL_QUEUE in the run file for qmail-smtpd? If it's going to be set for all IP addresses, then there's no point in putting it in the tcp.smtp file. When I was running qmail-scanner, it worked just fine. If you add some text describing when/how/why to use your patch, we can include it in the contrib directory if it's still necessary/useful. -- Tom Collins [EMAIL PROTECTED] QmailAdmin: http://qmailadmin.sf.net/ Vpopmail: http://vpopmail.sf.net/ Info on the Sniffter hand-held Network Tester: http://sniffter.com/
Re: [vchkpw] [PATCH] Re: [vchkpw] Is qmail-scanner work properly with vpopmail/qmail
Within a month or two, if this is not already done, i'll do it. Just dont have any time right now.. Quoting Oden Eriksson [EMAIL PROTECTED]: tisdagen den 23 september 2003 14.43 skrev Tim Hasson: I posted this patch a long while ago, and I posted it several times... Hope someone notices and somehow magically add it to the documentation/faq/code.. Actually, it would be nice as a configure option.. No, this is wrong. The best way would be if this value is taken from a config file on-the-fly without the need of re-compilation, as the recent mysql auth config file changes. Maybe also a possibility to have separate config files per domain, that would be awesome! Respectfully, Tim Hasson
Re: [vchkpw] Fwd: Re: NFS, maildir++ and -ve quota
I am also running vpopmail-5.2.1. I have replaced vdelivermail in all .qmail-default for all domains with maildrop (1.5.2) and it seems to work a little better. So far, after removing all old maildirsize files and recreating them, I have not seen the problem again. One way things can get screwed up is if you have aliases that point to a user's maildir directly (as added by qmailadmin). This way, any mail sent to the alias, will be delivered to the Maildir of the user by qmail-local. I have suspicions that the maildir++ patch is buggy, either doesn't recalculate the maildirsize file at all, or just doesn't add the messages. I am not sure if this is related to NFS, it very well could be. Do you offer any sort of quota statistics to the end users? For example, if you offer a graphical quota bar, or just quota usage text to your end users, you'll probablly get some calls which will give you a better idea of how often this breaks. Another good way to check, instead of having your users find out for theirselves, is to write a script that gets a list of all mailboxes (by reiterating through each domain directory in domains) then runs `~vpopmail/bin/vuserinfo -Q [EMAIL PROTECTED] for every email account and checks if this returns 0% usage while the user's Maildir size is more then 1M as reported by `du -sh ~vpopmail/domains/domain.com/username/Maildir`. I already have a shell script that does that, and this is my only way of find out any occurunces of the negative quota usage problem, without logging in to every email account via imap and issuing a 'getquota ROOT' command to see if I get negative value back for storage usage. If you need this script, let me know.. Respectfully, Tim Hasson Quoting Nick Harring [EMAIL PROTECTED]: I've got about 50K boxes on NFS with maildir++. I'm running vpopmail 5.2.1 though. The only problem I've ever seen is every once in a great while Courier-IMAP will return a wildly wrong negative value for number of unread messages, which breaks some other stuff I run, but I doubt there's a correlation. Cheers, Nick Harring
Re: [vchkpw] synchronize control files
Quoting X-Istence [EMAIL PROTECTED]: As i have tinkered with the source code myself, i dont see why qmail would have to be restarted. In the qmail source file, it re-reads the rcpthosts file on every run of it ( qmail-smtpd ), so hot adding shouldnt be a problem at all. X-Istence Don't tinker, READ! daemon1# pwd /downloads/mail/vpopmail-5.2.1 daemon1# grep qmail-send vpopmail.c signal_process(qmail-send, SIGHUP); /* send a HUP signal to qmail-send process to reread control files */ signal_process(qmail-send, SIGHUP); signal_process(qmail-send, SIGHUP); daemon1# Things like that has mislead me in the past, so I am quite anal when it comes to expressing opinions. At times when I mention something I am not 100% sure of, I say Please correct me if I am wrong, or I could be wrong. Also, if I don't have the big-qmail-vpop-picture, I would never make a conclusion like [something] shouldn't be a problem, at all. Respectfully, Tim Hasson
Re: [vchkpw] synchronize control files
Hi, Quoting Dave Weiner [EMAIL PROTECTED]: On Sunday 21 September 2003 08:35 pm, Tim Hasson wrote: I recall a old problem from the days of vpopmail 4.9.x which was a bug in vadddomain not sending a HUP signal to qmail-send to tell it to reread control/rcpthosts. The problem manifested itself when a new domain is added, then you try to send a message to a mailbox at that domain, qmail typically refused the delivery saying something like: Although I am listed as best preference MX for this domain, it's not listed in my rcpthosts, or similar. Suppose you did ./vadddomain on one of the cluster servers running qmail/vpop. Sure if you use NFS, the changes will show from any of the servers running the NFS client. However, only the server which you ran vadddomain on will have it's qmail-send restarted and it will be the only one that will receive mail for that domain. The others will not untill qmail-send is restarted, or the server is rebooted. What I did (back in the 4.5 tree, I believe), was to write a little shell script that would do a svc -h /service/qmail. Then, using daemontools and tcpserver, I setup it up to listen on a unused port and to only accept connections from my master server. The script would return either a OK or FAIL, and all I had to do from the master server was telnet on that port to each of the other servers in the cluster. You could also setup a ssh key for root on the master box, and setup the other boxes in the cluster to allow root to log in using a key and no password, and just write a little wrapper script around vadddomain that calls vadddomain, the ssh's to each of the other boxes in the cluster and does the svc -h /service/qmail. Just make sure you set it up on each of the boxes that root can only ssh in from the master server. However, that's more of a hole than the daemontools/tcpserver solution. Respectfully, Tim Hasson -- Dave Weiner Partner Coyote Technical Services, LLC My setup is a little different. I have a private apache process listening on the master server's real ip (I also have virtual ip managed by LVS for the virtual services) on a high port and runs as a normal user and his private group. Something similar to user nobody group nobody, but seperate. This user is not allowed to do, own, read, write anything else. I am developing a web based interface on it using php/mysql and some perl scripts, and some input validation etc (still in early beta) The normal user that the apache process runs as has a exchange ssh keys setup in his ~/.ssh with each of the servers in the cluster, including localhost, so that he can execute commands like: ssh [EMAIL PROTECTED] ~vpopmail/bin/vadddomain test.com secretpass _only_ after I validate the client supplied input through the web interface. Execution of such commands are mostly limited to the admin user only. The interface also has multi-tiered authentication system, based on MySQL, with user ACL's and limits per level or per user. Multi-tiered auth basically allows for three types of logins; admin, reseller, client. Each of admin, reseller, and client, can have a different level. For example, an admin of level 100 has full privilges such as config services, monitor cluster, add/remove domains, clients, or resellers. An admin of level 20 is like a helpdesk account who can add/edit domains, but cannot delete domains, or edit domains that have been edited by another admin and locked from changes. Also, accounts can be restricted by IP address. Usually, the admin account should be allowed to connect to the interface from only a specified IP address. My worst fear is of a exploit like the recent SSL v2 vulnerability where an unautheticated user, or an anonymous user, could just simply exploit the apache process, and use it as a step stone. So this is not the most secure either. Ideas?? The interface wraps up tinydns, qmail, vpopmail w/ mysql, courier-imap, apache vhosting (w/ extensions such as php, frontpage etc.), pureftpd w/ mysql, maildrop and spamassassin w/mysql prefs for spam filtering. I am still debating over my final decisions in quota handling. I believe the best option would be operating system enforced quotas (by the nfs file server for example), so I could have a client's account map to a user in the system with no shell, and make his vpop domain and apache vhost directory owned by his account. This is best for security (of apache), and for quota enforcement. (The apache files still have to be owned by group nobody so apache can read them. Trying also to force uploaded files with permissions 750 to protect against other mailicious clients cgi scripts trying to read other users php scripts) Sorry for the overwhelming details and for getting off topic, but such a project has always been my dream, and it just doesn't exist. I hope we can go GPL with this soon, after we work out all the security
[vchkpw] NFS, maildir++ and -ve quota
Mr Sam, I have switched over to maildrop instead of vdelivermail, by calling it from .qmail-default for all my domains. Everything looked good for a few days, until I see the problem occuring with one of the users that had the same problem before with vdelivermail. So I ran a shell script that removes any maildirsize file with negatives in it, then recreate the maildirsize file for that user by running vuserinfo -Q [EMAIL PROTECTED] and setting the chown/chgrp vpopmail/vchkpw on the maildirsize file. Just in case some bad stuff stayed around.. Few days, and the problem happens to another account. There is 1.1MB in user/Maildir, his trash is only few kb, but getquota ROOT on courierimap reports -ve value. I sent that user a message, and the -ve value decreased (got closer to zero). So now I removed all maildirsize files, and recreated it for each user on the system. I am running out of thoughts here. If this happens again I am going to pull my hair out :( below is a copy of my .qmail-default, and mailfilter I know the two execs for the mailfilter is very bad, and it's got to be changed. But I'd like to not set MAILDIRQUOTA=value in each user's mailfilter and call maildrop from each user's .qmail file, or set a default MAILDIRQUOTA=value for all users in a domain. Respectfully, Tim Hasson .qmail-default | /usr/local/bin/maildrop mailfilter mailfilter --- SHELL=/bin/sh import EXT import HOST VHOME=`/home/vpopmail/bin/vuserinfo -d [EMAIL PROTECTED] `test -d $VHOME/Maildir` if ( $RETURNCODE == 1 ) { echo Sorry, no mailbox here by that name. (#5.1.1) EXITCODE=100 exit } # Make sure the quota file is in place. # maildrop does not create it if it doesnt exist # Vpopmail also removes it when you change the quota with vsetuserquota `test -s $VHOME/Maildir/maildirsize` if ( $RETURNCODE == 1 ) { `/home/vpopmail/bin/vuserinfo -Q [EMAIL PROTECTED] `test -s $VHOME/Maildir/maildirsize` if ( $RETURNCODE == 0 ) { `/usr/sbin/chown vpopmail:vchkpw $VHOME/Maildir/maildirsize` `/bin/chmod 640 $VHOME/Maildir/maildirsize` } } # Default delivery exception { to $VHOME/Maildir/ }
Re: [vchkpw] Re: maildir++ patch doesn't solve the problem
Quoting Doug Clements [EMAIL PROTECTED]: On Fri, Sep 19, 2003 at 03:57:26PM -0700, Tim Hasson wrote: I am not setting the environment variable MAILDIRQUOTA for some reasons: 1. If user has access to their maildrop filter, or they have shell access, then the MAILDIRQUOTA makes no sense. My users use sqwebmail to access their filter file. I solved the overwriting problem by having maildrop first call a mailfilter-standard file. It includes the mailfilter-quota file, then includes the mailfilter-sqwebmail file. sqwebmail is free to edit it's own filter without messing with the quota settings. I do not use/like sqwebmail, but what you did simplifies a lot of things. sqwebmail doesn't do much special. The only thing I like about it is it access maildir's directly. None of my users have shell access, so I don't have to worry about that. You could make the case that they could still edit their maildrop filter and remove the part where they lookup the quota, as well. 2. I rather have all user information (including quotas) set in vpopmail's mysql db, for administration reasons. I would too, and I do. The authoritative source of info is in the database, and when the users file gets created, the database is consulted for the proper value. When it's updated, a script goes back to update the users file. This also allows for delivery should the database go down, and is less database load in general. This is very nice. Can you elaborate more on the above? Do you mind sharing your script(s)? 3. Eventually, I do not want to use maildrop at all, except maybe for filtering. But I'd like to find a better solution. I find maildrop to work great for final delivery. I call a single program in the users .qmail file, and it takes care of everything. No forking, no external calls, no nothing. I figure if you're going to use it in one place, you might as well standardize and use it everywhere. It's easier to keep up with a single delivery agent than 3, especially when maildrop does everything you need. You're exactly right. As I gave up on a good way to assemble everything together, I thought I should eventually give up either vpop or maildrop.. I'd hate to give vpop up though. And because I do not set the variable MAILDIRQUOTA, my mailfilter contains a section like so: VHOME=`/home/vpopmail/bin/vuserinfo -d [EMAIL PROTECTED] That's an external program that in my opinion doesn't need to be run for every single delivery. Sure. That part I hated most. But in my case, I had no other solutions available. I needed to switch over immediately to maildrop to avoid maildirsize regeneration problems with vdelivermail over nfs. [...] `/home/vpopmail/bin/vuserinfo -Q [EMAIL PROTECTED] That's 2 extra programs per mail delivery, times how many ever mails a day you get. I guess maybe I'm anal about optimizing this sort of thing, but if I can avoid that (and I can) then I will (and I did). Yes, I agree. My excuse here was that the second command would only be run if the maildirsize file was not found. This still has the double exec effect on delivery to accounts with no quota :/ With regard to the url you posted in another message: http://www.geocrawler.com/archives/3/9569/2001/4/0/5564545/ Sqwebmail does have support for updating maildirsize, I knew that, but setting MAILDIRSIZE in the generated filter file doesn't seem to work on my system. No biggy, I don't need it anyway =) Hope your problems are closer to being solved! Thank you! You've been quite helpful :) --Doug Respectfully, Tim Hasson
Re: [vchkpw] Re: maildir++ patch doesn't solve the problem
I am not setting the environment variable MAILDIRQUOTA for some reasons: 1. If user has access to their maildrop filter, or they have shell access, then the MAILDIRQUOTA makes no sense. 2. I rather have all user information (including quotas) set in vpopmail's mysql db, for administration reasons. 3. Eventually, I do not want to use maildrop at all, except maybe for filtering. But I'd like to find a better solution. And because I do not set the variable MAILDIRQUOTA, my mailfilter contains a section like so: VHOME=`/home/vpopmail/bin/vuserinfo -d [EMAIL PROTECTED] [...] `test -s $VHOME/Maildir/maildirsize` if ( $RETURNCODE == 1 ) { `/home/vpopmail/bin/vuserinfo -Q [EMAIL PROTECTED] `test -s $VHOME/Maildir/maildirsize` if ( $RETURNCODE == 0 ) { `/usr/sbin/chown vpopmail:vchkpw $VHOME/Maildir/maildirsize` `/bin/chmod 640 $VHOME/Maildir/maildirsize` } } The vuserinfo -Q [EMAIL PROTECTED] will create the maildirsize file, owned by root (or whatever maildrop runs as), if it does not already exist. This works pretty good. After using maildrop for all deliveries on the NFS volume, I think I am not having the problem with the negated quotas (possibly caused by vdelivermail/qmail-local w/ maildir++ patch not rebuilding maildirsize) any more. It's only been a couple days, so I will wait until monday then I will confirm :) Respectfully, Tim Hasson Quoting Doug Clements [EMAIL PROTECTED]: On Thu, Sep 18, 2003 at 05:10:29PM -0700, Tim Hasson wrote: BTW, I had a problem before where if I changed a user quota using vpop's vsetuserquota, the maildirsize file in the user's maildir will automagically get deleted, but never recreated by maildrop (for the domain I was doing filtering for) So that's why i put the check in mailfilter script to see if maildirsize needs to be recreated. Shouldn't maildrop create the maildirsize file if it doesn't exist? I think when I used vdelivermail, it created maildirsize when a new message was received in the mailbox that didn't have maildirsize in place, but with quota limit on it. Now, as far as I recall, Bill Shupp made the maildir++ patch based on the code from maildrop, so I am not surprised it doesn't recreate the maildirsize file ;-) Respectfully, Tim Hasson Hm.. maildrop creates maildirsize for me. Are you sure you're setting the MAILDIRQUOTA environment variable when you run maildrop? When I create a user, it creates all the maildrop recipes for that user, including one that sets MAILDIRQUOTA (in addition to setting the quota with vsetuserquota, which only seems to set it in the database). I've tested multiple times, and the maildirsize file behavior is what you'd expect; the file gets created on first delivery, and it gets recreated when it gets big. Naturally I don't expect maildrop to directly use vpopmail quota settings, which is why I set the variable. --Doug
Re: [vchkpw] Re: maildir++ patch doesn't solve the problem
Doug, You might also want to look on a previous post by Mr Sam (might be a little outdated but I think it still holds valid): http://www.geocrawler.com/archives/3/9569/2001/4/0/5564545/ The relevant part is: -- So, it is necessary to bootstrap the whole process by manually initializing maildirsize using something like deliverquota, then using sqwebmail to generate .mailfilter that explicitly initialized MAILDIRQUOTA. Then, everything will run by itself... -- Respectfully, Tim Hasson Quoting Tim Hasson [EMAIL PROTECTED]: I am not setting the environment variable MAILDIRQUOTA for some reasons: 1. If user has access to their maildrop filter, or they have shell access, then the MAILDIRQUOTA makes no sense. 2. I rather have all user information (including quotas) set in vpopmail's mysql db, for administration reasons. 3. Eventually, I do not want to use maildrop at all, except maybe for filtering. But I'd like to find a better solution. And because I do not set the variable MAILDIRQUOTA, my mailfilter contains a section like so: VHOME=`/home/vpopmail/bin/vuserinfo -d [EMAIL PROTECTED] [...] `test -s $VHOME/Maildir/maildirsize` if ( $RETURNCODE == 1 ) { `/home/vpopmail/bin/vuserinfo -Q [EMAIL PROTECTED] `test -s $VHOME/Maildir/maildirsize` if ( $RETURNCODE == 0 ) { `/usr/sbin/chown vpopmail:vchkpw $VHOME/Maildir/maildirsize` `/bin/chmod 640 $VHOME/Maildir/maildirsize` } } The vuserinfo -Q [EMAIL PROTECTED] will create the maildirsize file, owned by root (or whatever maildrop runs as), if it does not already exist. This works pretty good. After using maildrop for all deliveries on the NFS volume, I think I am not having the problem with the negated quotas (possibly caused by vdelivermail/qmail-local w/ maildir++ patch not rebuilding maildirsize) any more. It's only been a couple days, so I will wait until monday then I will confirm :) Respectfully, Tim Hasson Quoting Doug Clements [EMAIL PROTECTED]: On Thu, Sep 18, 2003 at 05:10:29PM -0700, Tim Hasson wrote: BTW, I had a problem before where if I changed a user quota using vpop's vsetuserquota, the maildirsize file in the user's maildir will automagically get deleted, but never recreated by maildrop (for the domain I was doing filtering for) So that's why i put the check in mailfilter script to see if maildirsize needs to be recreated. Shouldn't maildrop create the maildirsize file if it doesn't exist? I think when I used vdelivermail, it created maildirsize when a new message was received in the mailbox that didn't have maildirsize in place, but with quota limit on it. Now, as far as I recall, Bill Shupp made the maildir++ patch based on the code from maildrop, so I am not surprised it doesn't recreate the maildirsize file ;-) Respectfully, Tim Hasson Hm.. maildrop creates maildirsize for me. Are you sure you're setting the MAILDIRQUOTA environment variable when you run maildrop? When I create a user, it creates all the maildrop recipes for that user, including one that sets MAILDIRQUOTA (in addition to setting the quota with vsetuserquota, which only seems to set it in the database). I've tested multiple times, and the maildirsize file behavior is what you'd expect; the file gets created on first delivery, and it gets recreated when it gets big. Naturally I don't expect maildrop to directly use vpopmail quota settings, which is why I set the variable. --Doug
Re: [vchkpw] vpopmail 5.3.27 - repost
The 2nd example looks like the output of vqmaillocal (from vpopmail's contrib directory) Respectfully, Tim Hasson Quoting Michael Bowe [EMAIL PROTECTED]: At 01:29 AM 9/19/2003, X-Istence wrote: So then we started getting these messages in our logs: @40003f69830f2c2df1b4 info msg 47: bytes 1153 from * qp 70866 uid 0 @40003f69830f2ca1d1c4 starting delivery 60: msg 47 to local *** @40003f69830f2cae02dc status: local 1/10 remote 0/20 @40003f69830f34a902ac delivery 60: success: did_0+0+1/ @40003f69830f34c072ac status: local 0/10 remote 0/20 @40003f69830f34c0a18c end msg 47 This was basically allready better than having it fail to call vdelivermail, but this is still wrong, as an entry should look like this: @40003f69850e2b908cbc info msg 94300: bytes 5286 from ** qp 41793 uid 0 @40003f69850e2bb94684 starting delivery 4877: msg 94300 to local ** @40003f69850e2bbf0efc status: local 1/10 remote 0/20 @40003f69850e2c7fcebc delivery 4877: success: address:_/usr/local/vpopmail/domains//*/Maildir//quota:_1048 57600/did_0+0+1/ @40003f69850e2c91c07c status: local 0/10 remote 0/20 @40003f69850e2c91d7ec end msg 94300 The messages are NOT being delivered. That is what i meant to prove by the differences in the log files, sorry if i didnt make this clear. The logs on my working 5.3.27 server look like your first example, not the second. Can't say I recall ever seeing anyone post logs that look like your second example Are you sure you didn't apply some sort of patch to your other qmail server to achieve that more detailed logging? Michael.
Re: [vchkpw] Re: maildir++ patch doesn't solve the problem
Try using courier maildrop for delivery instead of vdelivermail. I just switched all my domains (on nfs) .qmail-default's to invoke maildrop instead of vdelivermail also because of problems with maildirsize not being rebuilt and/or getting really screwed up. The problem happened very randomly and cannot be duplicated easily, but happens over days to random accounts/domains that used vdelivermail. I am doing this using two files in each domain directory, .qmail-default and mailfilter (basic version no filtering), both have to be owned by vpopmail and vchkpw, and chmod 700 or it will not work Please let me know if there is a better way.. # cat .qmail-default | /usr/local/bin/maildrop mailfilter # cat mailfilter SHELL=/bin/sh import EXT import HOST VHOME=`/home/vpopmail/bin/vuserinfo -d [EMAIL PROTECTED] `test -d $VHOME/Maildir` if ( $RETURNCODE == 1 ) { echo Sorry, no mailbox here by that name. (#5.1.1) EXITCODE=100 exit } # Make sure the quota file is in place. # Vpopmail does not create it by default. # Vpopmail also removes it when you change the quota. `test -s $VHOME/Maildir/maildirsize` if ( $RETURNCODE == 1 ) { `/home/vpopmail/bin/vuserinfo -Q [EMAIL PROTECTED] `test -s $VHOME/Maildir/maildirsize` if ( $RETURNCODE == 0 ) { `/usr/sbin/chown vpopmail:vchkpw $VHOME/Maildir/maildirsize` `/bin/chmod 640 $VHOME/Maildir/maildirsize` } } # Default delivery exception { to $VHOME/Maildir/ } I have another mailfilter template which does spam filtering with spamassassin 2.55 (w/ mysql prefs per user), which I enable only for a specific domain, or can be modified to do per-user when invoked from user's .qmail file. Quoting o k [EMAIL PROTECTED]: Thanks for your reply. But what can solve the quota update problem? From: Charles Cazabon [EMAIL PROTECTED] To: [EMAIL PROTECTED] Subject: Re: maildir++ patch doesn't solve the problem Date: Sun, 14 Sep 2003 09:14:01 -0600 o k [EMAIL PROTECTED] wrote: Then I patched it: cd qmail-1.03 patch qmail-maildir++.patch Don't. maildir++ is broken by design and violates the letter and spirit of the maildir specification; it also makes the maildir unsafe for use over NFS without locking, which is one of the basic reasons for the existence of maildir. Charles -- --- Charles Cazabon[EMAIL PROTECTED] GPL'ed software available at: http://www.qcc.ca/~charlesc/software/ Read http://www.qcc.ca/~charlesc/writings/12-steps-to-qmail-list-bliss.html --- _ MSN 8 helps eliminate e-mail viruses. Get 2 months FREE*. http://join.msn.com/?page=features/virus Respectfully, Tim Hasson
Re: [vchkpw] Re: maildir++ patch doesn't solve the problem
What pop3 are you using? Hope you're not using qmail-pop3d. Even if you did patch it with the maildir++ patch, I strongly recommend you use the pop3d from the courier-imap package. Please also make sure you compiled couirer maildrop with quota support. Respectfully, Tim Hasson Quoting o k [EMAIL PROTECTED]: Dear sir, I used your mailfilter script I don't know if this patch solves the problem i stated before: The problem is that the quota displayed after I retrieve mails through pop3 is not updated. Thanks From: Tamer Hassan [EMAIL PROTECTED] To: o k [EMAIL PROTECTED] CC: [EMAIL PROTECTED] Subject: Re: [vchkpw] Re: maildir++ patch doesn't solve the problem Date: Thu, 18 Sep 2003 05:11:22 -0700 Try using courier maildrop for delivery instead of vdelivermail. I just switched all my domains (on nfs) .qmail-default's to invoke maildrop instead of vdelivermail also because of problems with maildirsize not being rebuilt and/or getting really screwed up. The problem happened very randomly and cannot be duplicated easily, but happens over days to random accounts/domains that used vdelivermail. I am doing this using two files in each domain directory, .qmail-default and mailfilter (basic version no filtering), both have to be owned by vpopmail and vchkpw, and chmod 700 or it will not work Please let me know if there is a better way.. # cat .qmail-default | /usr/local/bin/maildrop mailfilter # cat mailfilter SHELL=/bin/sh import EXT import HOST VHOME=`/home/vpopmail/bin/vuserinfo -d [EMAIL PROTECTED] `test -d $VHOME/Maildir` if ( $RETURNCODE == 1 ) { echo Sorry, no mailbox here by that name. (#5.1.1) EXITCODE=100 exit } # Make sure the quota file is in place. # Vpopmail does not create it by default. # Vpopmail also removes it when you change the quota. `test -s $VHOME/Maildir/maildirsize` if ( $RETURNCODE == 1 ) { `/home/vpopmail/bin/vuserinfo -Q [EMAIL PROTECTED] `test -s $VHOME/Maildir/maildirsize` if ( $RETURNCODE == 0 ) { `/usr/sbin/chown vpopmail:vchkpw $VHOME/Maildir/maildirsize` `/bin/chmod 640 $VHOME/Maildir/maildirsize` } } # Default delivery exception { to $VHOME/Maildir/ } I have another mailfilter template which does spam filtering with spamassassin 2.55 (w/ mysql prefs per user), which I enable only for a specific domain, or can be modified to do per-user when invoked from user's .qmail file. Quoting o k [EMAIL PROTECTED]: Thanks for your reply. But what can solve the quota update problem? From: Charles Cazabon [EMAIL PROTECTED] To: [EMAIL PROTECTED] Subject: Re: maildir++ patch doesn't solve the problem Date: Sun, 14 Sep 2003 09:14:01 -0600 o k [EMAIL PROTECTED] wrote: Then I patched it: cd qmail-1.03 patch qmail-maildir++.patch Don't. maildir++ is broken by design and violates the letter and spirit of the maildir specification; it also makes the maildir unsafe for use over NFS without locking, which is one of the basic reasons for the existence of maildir. Charles -- --- Charles Cazabon [EMAIL PROTECTED] GPL'ed software available at: http://www.qcc.ca/~charlesc/software/ Read http://www.qcc.ca/~charlesc/writings/12-steps-to-qmail-list-bliss.html --- _ MSN 8 helps eliminate e-mail viruses. Get 2 months FREE*. http://join.msn.com/?page=features/virus Respectfully, Tamer Hassan _ The new MSN 8: advanced junk mail protection and 2 months FREE* http://join.msn.com/?page=features/junkmail
Re: [vchkpw] Re: maildir++ patch doesn't solve the problem
Quoting Doug Clements [EMAIL PROTECTED]: On Thu, Sep 18, 2003 at 05:13:32AM -0700, Tim Hasson wrote: Try using courier maildrop for delivery instead of vdelivermail. I just switched all my domains (on nfs) .qmail-default's to invoke maildrop instead of vdelivermail also because of problems with maildirsize not being rebuilt and/or getting really screwed up. The problem happened very randomly and cannot be duplicated easily, but happens over days to random accounts/domains that used vdelivermail. Tim, Let us know if this actually does fix your problems. Nobody can seem to confirm that vdelivermail or qmail-local will rewrite the maildirsize file, and my initial looking through the code of vdelivermail turns up nothing of the sort. --Doug BTW, I had a problem before where if I changed a user quota using vpop's vsetuserquota, the maildirsize file in the user's maildir will automagically get deleted, but never recreated by maildrop (for the domain I was doing filtering for) So that's why i put the check in mailfilter script to see if maildirsize needs to be recreated. Shouldn't maildrop create the maildirsize file if it doesn't exist? I think when I used vdelivermail, it created maildirsize when a new message was received in the mailbox that didn't have maildirsize in place, but with quota limit on it. Now, as far as I recall, Bill Shupp made the maildir++ patch based on the code from maildrop, so I am not surprised it doesn't recreate the maildirsize file ;-) Respectfully, Tim Hasson
[vchkpw] Re: Quota problem: negative values in Maildir/maildirsize
Hi, I have just confirmed another user in another vpopmail domain with the same maildirsize problem. All mail domains reside on NFS server. The user's Maildir size is around 5 megs, excluding .Trash, as reported by `du` The user's quota is set to '1000' i.e. 10MB. vuserinfo -Q [EMAIL PROTECTED] reports _ 0% _ Courier-imap returns a negative usage value when asked with the getquota ROOT command, for the two users having the problem. The problem started happening again about a week or more after I patched qmail- local with maildir++ patch. I am not using qmail-pop3d. I am using courier-2.0.0 imapd and pop3d, and vpopmail 5.2.1 I believe this problem is a race condition because: 1. The problem happens for a few users, who are also heavy users 2. The problem doesn't occur very often, but also very random. It occured 4 days after I setup the system when using unpatched qmail-local with vpopmail, courier imapd and pop3d. After removing/recreating bad maildirsize files and patching qmail-local, the problem occurs after a week or so. Another intersting link which I think is strongly related: http://www.ultraviolet.org/mail-archives/ldap.2000/1471.html The Important part: I am using qmail-ldap which implements the same quota system as Courier/Sqwebmail, and reportedly, there is a race condition when qmail-pop3d and qmail-local are accessing the maildirsize file at the same time. I guess there's no locking on the file, so it is filled with negative numbers and users' e-mail bounces. I dont think email is bouncing at all though. vuserinfo -Q reports 0% usage, and courier reports negative values, so I believe users could probably get more mail delivered than there quota allows, during the time the maildirsize is corrupted. The maildirsize is not being regenerated automagically, as I would expect. So I manually have to remove those bad maildirsize files, and rerun vuserinfo -Q on the user account to have it recreated. Mr Sam recommended I should try using maildrop as the only delivery agent to see if that fixes the problem. And because the problem is happening on a production system, I will use that as a last option. Any suggestions, ideas, comments? -Tim
[vchkpw] [BUGS] was Re: vpopmail and maildir standards
Please read my comments below Quoting Doug Clements [EMAIL PROTECTED]: On Tue, Sep 16, 2003 at 10:43:59PM -0700, Tim Hasson wrote: Quoting Doug Clements [EMAIL PROTECTED]: On Tue, Sep 16, 2003 at 09:17:48PM -0700, Tim Hasson wrote: 1. Maildir++ doesn't work on NFS, or at least has serious issues with it, thus breaking the whole quota support thing. Works great here. What problems are you seeing? Please see my previous post (few hours ago): Re: Quota problem: negative values in Maildir/maildirsize http://article.gmane.org/gmane.mail.vpopmail/7924 Gotcha. I misread, thinking you were saying the Maildir++ format was problematic on NFS. It appears you mean that the Maildir++ implementation of vpopmail is broken. I use maildrop exclusively for delivery to mailboxes, if they have quotas or not, which is likely why I see no problems. Maildrop was written by Mr Sam, who as far as I know also came up with the Maildir++ spec, so I would hope it's a complete implementation. Maildir++ violates the spirit of Maildirs in that the maildirsize file that keeps track of the quota isn't atomically updatable, like the delivery and normal moving around of mail files is and is therefore succeptable to corruption when used over NFS sans-locking. In one of the referenced mails above, I make the case that this doesn't matter, since the file should be rebuilt regularly anyway, and any problems will be minor and corrected as a matter of course. You seem to be seeing other things, however. It looks possibly like either vdelivermail or the qmail-local patch doesn't rebuild the maildirsize file every so often like the Maildir++ spec requires. Does anyone know either of these? True, I noticed the user's having this problem, their maildirsize doesn't just contain lots of negative values in them (mostly negatives), but also the size of the file 'maildirsize' keeps getting larger and larger and doesn't get rebuilt, so the only thing i can do is manually delete it and recreate it. This is not quite desirable.. That looks like a genuine bug. I don't know why vaddomain would drop privilages before creating the directorys and setting appropriate permissions. That, or I don't understand how it's supposed to work. I think it's a design bug because of the permissions on the domains directory in ~vpopmail. I guess vpopmail changes uid/gid before creating the domain directory under that uid so that it doesnt have to later do chown/chgrp. Moreover, if the ~vpopmail/domains directory had world read/write other than user/group read/write, qmail would probablly refuse delivering any mail to that directory path. Thoughts, ideas? --Doug Respectfully, Tim Hasson
[vchkpw] Re: Quota problem: negative values in Maildir/maildirsize
Dear MrSam, Thanks for all your help, and my apologies if this turns out not to be a courier related problem. I patched qmail-local with maildir++ patch from billshupp.org. Then I ran my little shell script which removed all maildirsize files with negated values in them. Everything worked fine since then, until one of our users called today, complaining her quota is no longer reporting valid values (In our case the webmail reports You have unlimited quota or some totally random results. the maildirsize in that particular user's Maildir looks like this: 1000S 4456505 473 -2429946 -22 42431 173151 1 169837 1 1439 1 17711 -13912 -1 -46605 -1 -4832 -1 48321 -1221 -1 1754591 -175459 -1 -15295 -1 -3574 -1 -8113 -1 35871 -3587 -1 29301 -6633 -1 -13075 -1 -1627 -1 12061 12661 292301 16511 295951 3743 1 2737 1 27371 -2737 -1 -3743 -1 -3351 -2 -570268 -3 13331 52949 1 -1893017 -10 -173151 -1 -169837 -1 23971 -2397 -1 -921818 -1 -52949 -1 3553161 -355316 -1 185381 -18538 -1 24711 -2471 -1 44559 1 -45631 -3 445591 -44559 -1 -29714 -1 14491 Simulating a login to the courier-imap server: # telnet localhost 143 Trying 127.0.0.1... Connected to localhost.aidasystems.com. Escape character is '^]'. * OK [CAPABILITY IMAP4rev1 UIDPLUS CHILDREN NAMESPACE THREAD=ORDEREDSUBJECT THREAD=REFERENCES SORT QUOTA IDLE STARTTLS] Courier-IMAP ready. Copyright 1998- 2003 Double Precision, Inc. See COPYING for distribution information. a login [EMAIL PROTECTED] somepass a getquota ROOT * QUOTA ROOT (STORAGE -1389 9766) a OK GETQUOTA Ok. a logout * BYE Courier-IMAP server shutting down a OK LOGOUT completed Running /home/vpopmail/bin/vuserinfo -Q [EMAIL PROTECTED] (the same user who's having the problem) reports: quota: 1000 usage: 0% last auth: Tue Sep 16 15:22:40 2003 last auth ip: imap Although dishusage shows otherwise: # pwd /home/vpopmail/domains/somedomain.com/myuser/Maildir # ls courierimapsubscribed courierimapuiddb cur maildirsize new tmp # du -sh . 8.1M. # du -s . 8284. I am running courier-imap 2.0.0 (imapd and pop3d), Vpopmail 5.3.2-Stable, Qmail-1.03 (qmail-local patched with Bill Shupp's qmaildir++ patch) Although I am also using maildrop (compiled with quota support) for filtering, it's not in use for that particular user's domain at all. Maildrop is only used on one domain, and invoked from .qmail-default directly for only that domain. This problem only started happening after migration to the new cluster which is composed of 2 real servers running the above mentioned software, and two failover NFS server (linux unfortunately) which hold the entire /home/vpopmail/domains which is mounted on the freebsd servers (the real servers) which are running the pop/imap toasters. The only difference between the old mail server and the new real servers is we were running courier 1.6.2 or 1.6.4 and now we are running 2.0.0. Although I am not sure if that's relevant. Please advise... Respectfully, Tim Hasson Quoting Sam Varshavchik [EMAIL PROTECTED]: Tim Hasson writes: Also, nothing other than vdelivermail, maildrop, and qmail-local delivers to those Maildirs. I am 100% sure of that =) Mail delivered by qmail-local is not going to be added to the current quota. Subsequently, when those messages are removed, their sizes will be subtracted from the quota. And that's how you get negative quotas.
Re: [vchkpw] Re: Quota problem: negative values in Maildir/maildirsize
Hi all, As mentioned earlier in my message (see copy at end of this message), all my mail resides on NFS. Could this be related to the maildirsize files getting negatives and (-)ve Storage imap reply when getquota ROOT? or i.e. Is this the same as the maildirsize gets hosed problem? Please see the following: http://marc.theaimsgroup.com/?l=qmailm=106355226521299w=2 http://article.gmane.org/gmane.mail.vpopmail/7918 In regards to the first post/link: Does Maildir++ really violate the Maildir specification? How? Does it also make Maildir unsafe for use on NFS without locking? Why? Any advise, suggestions, and help is greatly appreciated. Respectfully, Tim Hasson Quoting Tim Hasson [EMAIL PROTECTED]: Dear MrSam, Thanks for all your help, and my apologies if this turns out not to be a courier related problem. I patched qmail-local with maildir++ patch from billshupp.org. Then I ran my little shell script which removed all maildirsize files with negated values in them. Everything worked fine since then, until one of our users called today, complaining her quota is no longer reporting valid values (In our case the webmail reports You have unlimited quota or some totally random results. the maildirsize in that particular user's Maildir looks like this: 1000S 4456505 473 -2429946 -22 42431 173151 1 169837 1 1439 1 17711 -13912 -1 -46605 -1 -4832 -1 48321 -1221 -1 1754591 -175459 -1 -15295 -1 -3574 -1 -8113 -1 35871 -3587 -1 29301 -6633 -1 -13075 -1 -1627 -1 12061 12661 292301 16511 295951 3743 1 2737 1 27371 -2737 -1 -3743 -1 -3351 -2 -570268 -3 13331 52949 1 -1893017 -10 -173151 -1 -169837 -1 23971 -2397 -1 -921818 -1 -52949 -1 3553161 -355316 -1 185381 -18538 -1 24711 -2471 -1 44559 1 -45631 -3 445591 -44559 -1 -29714 -1 14491 Simulating a login to the courier-imap server: # telnet localhost 143 Trying 127.0.0.1... Connected to localhost.aidasystems.com. Escape character is '^]'. * OK [CAPABILITY IMAP4rev1 UIDPLUS CHILDREN NAMESPACE THREAD=ORDEREDSUBJECT THREAD=REFERENCES SORT QUOTA IDLE STARTTLS] Courier-IMAP ready. Copyright 1998- 2003 Double Precision, Inc. See COPYING for distribution information. a login [EMAIL PROTECTED] somepass a getquota ROOT * QUOTA ROOT (STORAGE -1389 9766) a OK GETQUOTA Ok. a logout * BYE Courier-IMAP server shutting down a OK LOGOUT completed Running /home/vpopmail/bin/vuserinfo -Q [EMAIL PROTECTED] (the same user who's having the problem) reports: quota: 1000 usage: 0% last auth: Tue Sep 16 15:22:40 2003 last auth ip: imap Although dishusage shows otherwise: # pwd /home/vpopmail/domains/somedomain.com/myuser/Maildir # ls courierimapsubscribed courierimapuiddb cur maildirsize new tmp # du -sh . 8.1M. # du -s . 8284. I am running courier-imap 2.0.0 (imapd and pop3d), Vpopmail 5.3.2-Stable, Qmail-1.03 (qmail-local patched with Bill Shupp's qmaildir++ patch) Although I am also using maildrop (compiled with quota support) for filtering, it's not in use for that particular user's domain at all. Maildrop is only used on one domain, and invoked from .qmail-default directly for only that domain. This problem only started happening after migration to the new cluster which is composed of 2 real servers running the above mentioned software, and two failover NFS server (linux unfortunately) which hold the entire /home/vpopmail/domains which is mounted on the freebsd servers (the real servers) which are running the pop/imap toasters. The only difference between the old mail server and the new real servers is we were running courier 1.6.2 or 1.6.4 and now we are running 2.0.0. Although I am not sure if that's relevant. Please advise... Respectfully, Tim Hasson Quoting Sam Varshavchik [EMAIL PROTECTED]: Tim Hasson writes: Also, nothing other than vdelivermail, maildrop, and qmail-local delivers to those Maildirs. I am 100% sure of that =) Mail delivered by qmail-local is not going to be added to the current quota. Subsequently, when those messages are removed, their sizes will be subtracted from the quota. And that's how you get negative quotas.
[vchkpw] vpopmail and maildir standards
Hi, I have two very serious issues right now between vpopmail and Maildir standards. 1. Maildir++ doesn't work on NFS, or at least has serious issues with it, thus breaking the whole quota support thing. 2. Because of default permissions on the domains folder, I cannot add new domains with a different system uid, vadddomain fails with permission denied. Well of course, you drop to user-uid, try to chdir into ~vpopmaildomains which is chown vpopmail, chgrp vchkpw, chmod 700, and it will fail. End Result: I am unable to enfore virtual quotas on vpop accounts, and also unable to add domains under a unique system uid to enfore system quotas per domain. Although I need both, I can at least live with one, if either works... So the whole issue is a standard issue. Qmail/Maildir are designed to run on NFS. Why is vpopmail deviating from the standard? Respectfully, Tim Hasson
[vchkpw] Re: vpopmail and maildir standards
Quoting Doug Clements [EMAIL PROTECTED]: On Tue, Sep 16, 2003 at 09:17:48PM -0700, Tim Hasson wrote: 1. Maildir++ doesn't work on NFS, or at least has serious issues with it, thus breaking the whole quota support thing. Works great here. What problems are you seeing? Please see my previous post (few hours ago): Re: Quota problem: negative values in Maildir/maildirsize http://article.gmane.org/gmane.mail.vpopmail/7924 2. Because of default permissions on the domains folder, I cannot add new domains with a different system uid, vadddomain fails with permission denied. Well of course, you drop to user-uid, try to chdir into ~vpopmaildomains which is chown vpopmail, chgrp vchkpw, chmod 700, and it will fail. Are you adding them as root? I don't personally use system quotas with vpopmail, but I know I've seen other people talking on list about them, so I know they work. Did you check the archives on how to set it up? What documentation are you following for system quota setup? So the whole issue is a standard issue. Qmail/Maildir are designed to run on NFS. Why is vpopmail deviating from the standard? Again, it runs fine on NFS here. --Doug daemon1# grep /data1 /etc/fstab terra:/data1/data1 nfs rw 0 0 daemon1# pwd /data1/vpopmail daemon1# ll drwx-- 23 vpopmail vchkpw 4096 Sep 15 22:44 domains daemon1# ll /home/vpopmail/ total 10 drwxr-xr-x 2 vpopmail vchkpw512 Aug 27 02:02 bin drwxr-xr-x 4 vpopmail vchkpw512 Aug 15 18:58 doc lrwxr-xr-x 1 root wheel 23 Aug 17 01:04 domains - /data1/vpopmail/domains drwxr-xr-x 2 vpopmail vchkpw512 Sep 16 22:31 etc drwxr-xr-x 2 vpopmail vchkpw512 Aug 15 18:58 include drwx-- 2 root wheel 512 Aug 15 18:58 lib Note Above: ~vpopmail/domains is a symbolic link to /data1/vpopmail, and /data1 is mounted of the nfs server. daemon1# ./vadddomain vadddomain: usage: vadddomain [options] virtual_domain [postmaster password] options: -v prints the version -q quota_in_bytes (sets the quota for postmaster account) -b (bounces all mail that doesn't match a user, default) -e email_address (forwards all non matching user to this address) -u user (sets the uid/gid based on a user in /etc/passwd) -d dir (sets the dir to use for this domain) -i uid (sets the uid to use for this domain) -g gid (sets the gid to use for this domain) -a sets the account to use APOP, default is POP -O optimize adding, for bulk adds set this for all except the last one -r generate a random password for postmaster daemon1# id test uid=2000(test) gid=2000(users) groups=2000(users) daemon1# ./vadddomain -u test test.com secretpass Error: Unable to chdir to vpopmail/domains/domain directory daemon1# the -d dir flag is really odd. Suppose I did decide to put the domain directory under the user's home directory (/home/test/mail/domain.com) daemon1# ./vadddomain -u test -d /home/test/mail/test.com test.com secretpass Error: Unable to chdir to vpopmail/domains/domain directory daemon1# mkdir -p /home/test/mail/test.com daemon1# chown -R test:users /home/test daemon1# ./vadddomain -u test -d /home/test/mail/test.com test.com secretpass daemon1# ls /home/test/mail/test.com domains daemon1# ls /home/test/mail/test.com/domains/ test.com daemon1# This is not quite desirable.. Respectfully, Tim Hasson
Re: [vchkpw] imap before smtp
On Thu, Sep 11, 2003 at 01:40:02PM -0700, Tom Collins wrote: mr. varshavchik addressed this on the sqwebmail mailing list: http://www.mail-archive.com/[EMAIL PROTECTED]/msg06068.html it's a lovely little rant. As of vpopmail 5.3.8, the buffers are cleared properly and the authdaemon has worked just fine. A beta 5.2.2 release is on SourceForge with the same fix in place. Is there any change between 5.3.5 and 5.3.8 that is relevant to this? It is not obvious from the ChangeLog. I've been running 5.2.1 and authdaemon with just the parse_email() patch (I am the author of the patch) without any problems. We have a very small installation though. Also my patch doesn't clear the buffer, just making sure that the buffer is always terminated properly. Let me know if I am missing something. Thanks, Tim
[vchkpw] Quota problem: negative values in Maildir/maildirsize
Hi, I am using vpopmail-5.2.1, courier-imap-2.0, qmail-1.03. I use both courier- imapd and courier-pop3d instead of qmail-pop3d. A few days after I migrated my users from an old mail server to my new nfs server, users started getting weird quota reulsts on the webmail quota. vuserinfo reported 0% for the usage although du -sh on the user's maildir reported about 3-4 megs. Looking at maildirsize, there was many lines with negative values. telnetting to the imapserver 143, logging in as the user, and issuing a001 getquota ROOT I get also negative USAGE value. While googling for something related to this problem, I found only one post: http://www.geocrawler.com/archives/3/3723/2002/2/350/7883526/ Mr Sam said: - This can happen if mail gets delivered to a mailbox by a delivery agent that does not update the quota tracker. Solution: use deliverquota or maildrop to deliver mail, and make sure that the quota is correctly specified. - This is not the problem for me however. The only programs that deliver to maildirs are vdelivermail, maildrop (both compiled with maildirquota support), and qmail-local. I know qmail-local doesn't support maildirquota++ but this never was a problem, and I confimed it's not the one causing the problem (read below). So looking at the maildirsize file in the maildirs of users having the problem, they all had negative values. So I wrote a little shell script (see at the end of this message) that finds those mailboxes with bad maildirsize files, deletes them, runs /home/vpopmail/bin/vuserinfo -Q [EMAIL PROTECTED] on the accounts for which the maildirsize was deleted to recreate it, and then sets the proper permission (uid/gid vpopmail/vchkpw). This solved the problem. Sending mail from local domain to another local domain, or from a remote domain to a local domain both seem to reflect the _correct_ size now, and instantaneously. Therefore it's not qmail-local? I am suspecting it could be that the file sizes changed slightly when moved over to the nfs server on a ext3 partition with a 4096 blocksize. The filesystem on the old mailserver was ext2 and default blocksize (redhat 6.2). Could this possibly confuse courier-imap and cause it to put negatives in maildirsize? or is it vdelivermail that was confused? Any thoughts, ideas? Best Regards, Tim Hasson Here is the script I used to fix the maildirsize files: #!/bin/sh echo [*] Finding maildirsize files... sizes=`find domains -name maildirsize` echo [*] Finding bad maildirsize files and saving them in badmaildirsize.tmp rm badmaildirsize.tmp for i in $sizes; do if [ ! -z `grep - $i | head -1` ]; then echo $i badmaildirsize.tmp fi done echo [*] Creating [EMAIL PROTECTED] list for whom we recreate maildirsize rm mailboxdir.tmp # get domain.com/user from domain/domain.com/user/Maildir/maildirsize sed s/domains.//g badmaildirsize.tmp | \ sed s/.Maildir.maildirsize//g mailboxdir.tmp rm fixemail.tmp # change domain.com/user to [EMAIL PROTECTED] mailboxlist=`cat mailboxdir.tmp` for mailbox in $mailboxlist; do username=`echo $mailbox | sed s#.*/##` domainname=`echo $mailbox | sed s#/.*##` echo [EMAIL PROTECTED] fixemail.tmp done rm mailboxdir.tmp # we dont need it anymore echo [*] Deleting bad maildirsize files deletelist=`cat badmaildirsize.tmp` for maildirsize in $deletelist; do rm $maildirsize done echo [*] Recreating deleted maildirsize files addresses=`cat fixemail.tmp` for emailaddress in $addresses; do /home/vpopmail/bin/vuserinfo -Q $emailaddress done echo [*] Setting owner/group vpopmail/vchkpw on maildirsize files newmaildirsizefiles=`cat badmaildirsize.tmp` for newmaildirsize in $newmaildirsizefiles; do chown vpopmail:vchkpw $newmaildirsize done
[vchkpw] Fwd: [ ABU1063161914072 ] [vchkpw] Quota problem: negative values in Maildir/maildirsize
I am getting weird messages from some of the subscribers on vchkpw list when I post to the list ([EMAIL PROTECTED]) Below are two examples. - Forwarded message from Gail Davis [EMAIL PROTECTED] - Date: Tue, 09 Sep 2003 19:47:51 -0700 From: Gail Davis [EMAIL PROTECTED] Reply-To: [EMAIL PROTECTED] Subject: Re: [vchkpw] Quota problem: negative values in Maildir/maildirsize (Relocating) To: [EMAIL PROTECTED] Hi My office space has been relocated. I will be in temporary office space until November 1, 2003. The temporary office space will not have phone lines or e- mail access. I will be receiving phone calls on my cell phone (559) 908-5685. I will be checking my e-mail but my access to it will be intermittent. I'm sorry for any inconvenience this may cause. Thanks for your patience. Gail - End forwarded message - Second message claiming I was reported for spamming: - Forwarded message from Prodigy Abuse Department [EMAIL PROTECTED] -- --- Date: Tue, 9 Sep 2003 21:45:32 -0500 (CDT) From: Prodigy Abuse Department [EMAIL PROTECTED] Reply-To: Prodigy Abuse Department [EMAIL PROTECTED] Subject: [ ABU1063161914072 ] [vchkpw] Quota problem: negative values in Maildir/maildirsize To: Tim Hasson [EMAIL PROTECTED] Thank you for writing to SBC Internet Services Policy Group. We apologize for the inconvenience you have experienced. This is an auto- generated response designed to let you know that we have received your report, which will be investigated personally by one of our Support Representatives within 48 hours. Your report is important to us and we will treat it accordingly. Please note that we can only take action with SBC Internet user's accounts (which have SBC Internet IP addresses), and not those with any other IP address. You will not receive another message from us unless we need to request more information from you to further our investigation. Please do not respond to this e-mail, as any messages sent to this particular address by using the Reply button will not be read. We appreciate your understanding that due to our privacy policy, we will not report back to you about any action taken against SBC Internet users. However, we want to assure you that we will take appropriate action against SBC Internet users who have violated the SBC/Yahoo Terms of Service or the Acceptable Use Policy In order for us to process your complaint, please check that you have submitted all of the following information for each type of incident: Unsolicited Commercial/Bulk Email (Spam): - FULL message headers - Subject line exactly as it appears in the original message (i.e. 'Re: Make $$$!') - Trimmed body. Send only as much of the text as needed to show the e-mail's intent. - Limited commentary. We understand your frustration with Spam, but the less time we spend reading your email, the more time we have to fight Spam. If we determine that the Spam originated from another ISP, we may refer the matter to the respective ISP. Intrusion/Disruption Attempts (Trojans, Hacks, Port Scans, etc.)/ Denials of Service (ICMP floods, brute-force connections, etc.): - Full log files containing all of the information below: - IP Address of intruder (or the DNS name pointing to said address) - Date/Time Stamp with ZONE (either numerical [-0600] or alpha [CST]) - Protocol/Port used (either numerical [25] or alpha [SMTP]) - Number of instances of each packet type received Newsgroup violations: - FULL message headers (including NNTP and Xtrace information) - Subject line exactly as it appears in the original message (i.e. 'Re: Make $$$!') - Trimmed body. Send only as much of the text as needed to show the e-mail's intent. - Limited commentary. As with Spam, the less time we spend reading your email, the more time we will have to take care of the problem. - PLEASE NOTE THE FOLLOWING - GENERAL: Please keep in mind complaints could take up to 48 hrs to process. BOGUS REPORTS: Many software packages will log and report what they construe to be suspicious behavior. These reports are only as good as the software configurations and tend to err on the paranoid side. Submissions generated by such software in which relatively minor errors are reported (i.e. a single ICMP packet, UDP frames from ICQ, DNS packets) will be discarded without response from SBCIS due to the volume of such requests received. LEGAL: SBCIS does not tolerate abusive Internet behavior, and will take all steps reasonably necessary to enforce the Terms of Service (ToS) and Acceptable Use Policy (AUP). We will not supply you with any details relative to our other customers or users unless compelled by law to do so. If you wish to obtain such information, you must first obtain a valid subpoena, court order, or other valid and enforceable legal instrument allowing you to do so. SECURITY AND VIRUS PROTECTION: You are responsible
[vchkpw] [More Automated messages] Re: Your FAX to +14159408776
This is very annoying. Moderators? This is yet another automated message I get when I post to [EMAIL PROTECTED] Quoting [EMAIL PROTECTED]: **MESSAGE FROM THE TPC.INT SINKHOLE** We regret to inform you that the phone number you attempted to reach is not currently being served by a remote printer operator. Your original message is attached so that you may send it by alternative means. We hope to have coverage in this area -- perhaps you know somebody who could operate a remote printer server? Does your ISP provide fax coverage in your local area? If not, perhaps they would benefit by setting up a fax server and joining TPC.INT. Speak with your ISP and show them why they might want to come online as a TPC cell: http://www.tpc.int/servers/salespitch.html It's possible of course that you have not composed the TPC.INT-style address correctly, so here's a few examples. Note that we do not use international dialing codes but we do require the country codes. Example1: remote-printer.Arlington_Hewes/[EMAIL PROTECTED] (to send a fax to Arlington Hewes in Room 403, at the FAX number, in England (where the country code is 44), of +44 181 3434622) Example2: remote-printer.Paul_Katz/[EMAIL PROTECTED] (to send a fax to Paul Katz in The Manor at the FAX number, in North America (where the country code is 1) of +1 902 584 2817) If you're still unclear on the address format we require, please send for a copy of the FAQ, or visit our WWW pages. *PLEASE NOTE*** TPC.INT does not consider unsolicited commercial mass mailings an acceptable use of the network. Individuals suspected of abusing this policy will be banned from using it pending investigation. We regret that such measures are necessary, but abuse of TPC.INT can force cells to close, and must be prevented when possible. Please be considerate - TPC.INT is for everyone. *** Regards, Mr. Arlington Hewes [EMAIL PROTECTED] The TPC.INT Subdomainhttp://www.tpc.int/ ** *** FOR GENERAL INFORMATION *** *** mailto:[EMAIL PROTECTED] *** *** FOR A LIST OF CURRENT COVERAGE*** *** mailto:[EMAIL PROTECTED] *** *** TO REPORT A PROBLEM (read the FAQ first!) *** *** mailto:[EMAIL PROTECTED]*** ** Respectfully, Tim Hasson Consultant, AiDA Systems (209) 639-2989 Voice
[vchkpw] vpop 5.2.1 core dumps
Hi, I am running vpopmail-5.2.1 + seekable patch, with qmail and maildrop to filter messages marked as spam by Spamassassin to a spam folder). The system is FreeBSD-4.8. Now i had two servers setup exactly the same as described above, one works perfect, and the second one bombed out (See Below).. I was using .qmail and mailfilter in user's home directories to enable invoking spam assassin and moving spam message per user (SA prefs in SQL also). Everything was working fine on both servers up to this point. Then I removed the .qmail files that I created in those two users directories, and i created .qmail-default in the domain directory - example.com/ - to enable spam domain-wide (which I had used the same script I used before for a long time) Mail delivers fine to the first server, but the second one freaks out. qmail-send/current log shows: @40003f29d8c003dab79c delivery 1: deferral: Segmentation_fault_ (core_dumped)/ @40003f29d8c003dd43f4 status: local 0/10 remote 0/20 [..] @40003f29d8c82784d04c delivery 4: deferral: Sorry,_I_wasn't_able_to_establish_an_SMTP_connection._(#4.4.1)/ @40003f29d8c8278754d4 status: local 1/10 remote 0/20 @40003f29d8c912ea81a4 delivery 3: deferral: Segmentation_fault_ (core_dumped)/ syslog shows: Jul 31 14:29:42 coda2 /kernel: pid 53178 (vdelivermail), uid 500: exited on signal 11 (core dumped) Jul 31 14:36:13 coda2 /kernel: pid 53421 (vdelivermail), uid 500: exited on signal 11 (core dumped) Jul 31 14:36:13 coda2 /kernel: pid 53423 (vdelivermail), uid 500: exited on signal 11 (core dumped) Jul 31 19:58:52 coda2 /kernel: pid 77655 (vdelivermail), uid 500: exited on signal 11 (core dumped) Jul 31 20:00:32 coda2 /kernel: pid 77721 (vdelivermail), uid 500: exited on signal 11 (core dumped) For the users that were to have mail delivered in their mailbox, instead i find a vdelivermail.core in their directory. If I reset .qmail-default to vdelivermail, the mail in the queue will be delivered. # cat .qmail-default | /usr/local/bin/maildrop ~vpopmail/domains/example.com/mailfilter # cat mailfilter import EXT import HOST VPOP=| /home/vpopmail/bin/vdelivermail '' bounce-no-mailbox VHOME=`/home/vpopmail/bin/vuserinfo -d [EMAIL PROTECTED] SUBIMAP=/home/vpopmail/bin/subimapspam.sh `test -d $VHOME/Maildir` if ( $RETURNCODE == 1 ) { echo Sorry, no mailbox here by that name. (#5.1.1) EXITCODE=100 exit } if ( $SIZE 262144 ) { xfilter /usr/local/bin/spamc -f -u [EMAIL PROTECTED] if (/^X-Spam-Flag: *YES/) { `test -d $VHOME/Maildir/.BulkMail` if( $RETURNCODE == 1 ) { `/usr/bin/maildirmake -f BulkMail $VHOME/Maildir/` `$SUBIMAP $VHOME` } to $VHOME/Maildir/.BulkMail/ exit } else { to $VPOP exit } } else { to $VPOP exit } Any help would be greatly appreciated.. Thanks, Tim
Re: [vchkpw] vpop 5.2.1 core dumps
[..continued..] Problem fixed. rewrote the whole thing from scratch. noticed afterwards that i was checking for X-Spam-Flag instead of X-Spam-Status, ugh. Also, maildirmake is in /usr/local not /usr but would any of these two reasons cause vdelivermail to coredump? Is that a possible security flaw? Tim Quoting Tim Hasson [EMAIL PROTECTED]: Hi, I am running vpopmail-5.2.1 + seekable patch, with qmail and maildrop to filter messages marked as spam by Spamassassin to a spam folder). The system is FreeBSD-4.8. Now i had two servers setup exactly the same as described above, one works perfect, and the second one bombed out (See Below).. I was using .qmail and mailfilter in user's home directories to enable invoking spam assassin and moving spam message per user (SA prefs in SQL also). Everything was working fine on both servers up to this point. Then I removed the .qmail files that I created in those two users directories, and i created .qmail-default in the domain directory - example.com/ - to enable spam domain-wide (which I had used the same script I used before for a long time) Mail delivers fine to the first server, but the second one freaks out. qmail-send/current log shows: @40003f29d8c003dab79c delivery 1: deferral: Segmentation_fault_ (core_dumped)/ @40003f29d8c003dd43f4 status: local 0/10 remote 0/20 [..] @40003f29d8c82784d04c delivery 4: deferral: Sorry,_I_wasn't_able_to_establish_an_SMTP_connection._(#4.4.1)/ @40003f29d8c8278754d4 status: local 1/10 remote 0/20 @40003f29d8c912ea81a4 delivery 3: deferral: Segmentation_fault_ (core_dumped)/ syslog shows: Jul 31 14:29:42 coda2 /kernel: pid 53178 (vdelivermail), uid 500: exited on signal 11 (core dumped) Jul 31 14:36:13 coda2 /kernel: pid 53421 (vdelivermail), uid 500: exited on signal 11 (core dumped) Jul 31 14:36:13 coda2 /kernel: pid 53423 (vdelivermail), uid 500: exited on signal 11 (core dumped) Jul 31 19:58:52 coda2 /kernel: pid 77655 (vdelivermail), uid 500: exited on signal 11 (core dumped) Jul 31 20:00:32 coda2 /kernel: pid 77721 (vdelivermail), uid 500: exited on signal 11 (core dumped) For the users that were to have mail delivered in their mailbox, instead i find a vdelivermail.core in their directory. If I reset .qmail-default to vdelivermail, the mail in the queue will be delivered. # cat .qmail-default | /usr/local/bin/maildrop ~vpopmail/domains/example.com/mailfilter # cat mailfilter import EXT import HOST VPOP=| /home/vpopmail/bin/vdelivermail '' bounce-no-mailbox VHOME=`/home/vpopmail/bin/vuserinfo -d [EMAIL PROTECTED] SUBIMAP=/home/vpopmail/bin/subimapspam.sh `test -d $VHOME/Maildir` if ( $RETURNCODE == 1 ) { echo Sorry, no mailbox here by that name. (#5.1.1) EXITCODE=100 exit } if ( $SIZE 262144 ) { xfilter /usr/local/bin/spamc -f -u [EMAIL PROTECTED] if (/^X-Spam-Flag: *YES/) { `test -d $VHOME/Maildir/.BulkMail` if( $RETURNCODE == 1 ) { `/usr/bin/maildirmake -f BulkMail $VHOME/Maildir/` `$SUBIMAP $VHOME` } to $VHOME/Maildir/.BulkMail/ exit } else { to $VPOP exit } } else { to $VPOP exit } Any help would be greatly appreciated.. Thanks, Tim
Re: [vchkpw] Losing messages when I move them?
Quoting Dave Richardson - Lists [EMAIL PROTECTED]: 1058557796.M109269P14433V0302I0053812F_8.penguin.example.com,S=143 6:2,S 1058557805.M99846P14433V0302I00538130_11.penguin.example.com,S=202 3:2,RS [..snip..] 1059675921.19351.penguin.example.com,S=163777:2,S 1059689347.25043.penguin.example.com,S=2461:2,S Ok, the above says it all (from your last 2 or 3 emails) You also mentioned you are using Couirer-imap 1.7 which I believe is buggy or not backwards compatible!! If you look in Courier-imap's changelog, for version 1.7.0 (changes made by Mr Sam on 2003-01-14), you will see: * maildir/maildircreateh.c (maildir_try_create_hostname): Include microseconds in message filename. When I migrated one of my servers from a courier-imap 1.6.2 to a courier-imap 1.7.0, I had the SAME problem that you are currently having. I think the problem manifests itself only in older messages with the older style names (I could be wrong). Does that problem happen only when you have IMAP_EMPTYTRASH enabled? Anyways, stick with 1.6.1 till Mr Sam, me, or someone else figures out a fix. Perhaps Mr. Sam could shed more light on the subject. I hope he didn't mind me cc'ing him on this, since I wanted to ask him anyhow. Best Regards, Tim
[vchkpw] Vpopmail, Roaming Users, Qmail-Scanner (vpopmail-5.2.1_qmailqueue.patch)
Hello vpopmailers I encountered a problem when using qmail-1.03(with qmail-queue patch), vpopmail-5.2.1 with roaming users, and qmail-scanner-1.15 w/ spamassassin 2.43 sophos sweep. The problem exists when vpopmail rebuilds the relay database, setting only the env var RELAYCLIENT=. If QMAILQUEUE is not set to the qmail- scanner binary path or other application to be invoked before the real qmail- queue, emails sent by roaming users will not be scanned (for viruses, spam, etc.) i.e. emails will be directly sent to the qmail-queue without analysis. Below is a patch to allow setting QMAILQUEUE to qmail-scanner-queue.pl for roaming users (change path to your pre-qmail-queue script) I am also using matt simerson's tcpserver mysql patch to read relay information directly from vpopmail's relay table in mysql. works like a charm! cd vpopmail-5.2.1 patch -p0 vpopmail-5.2.1_qmailqueue.patch --- configure.origFri May 17 23:27:57 2002 +++ configureSun Dec 29 04:57:04 2002 @@ -1631,7 +1631,7 @@ if test $tcpserver_file = then -echo 127.:allow,RELAYCLIENT=\\ $vpopmaildir/etc/tcp.smtp + echo 127.:allow,RELAYCLIENT=\\,QMAILQUEUE=\/var/qmail/bin/qmail-scanner- queue.pl\ $vpopmaildir/etc/tcp.smtp tcpserver_file=$vpopmaildir/etc/tcp.smtp echo configure: warning: Unable to find your tcpserver relay file. 12 --- configure.in.origFri May 17 23:23:42 2002 +++ configure.inSun Dec 29 04:57:48 2002 @@ -294,7 +294,7 @@ [ if test $tcpserver_file = then -echo 127.:allow,RELAYCLIENT=\\ $vpopmaildir/etc/tcp.smtp + echo 127.:allow,RELAYCLIENT=\\,QMAILQUEUE=\/var/qmail/bin/qmail-scanner- queue.pl\ $vpopmaildir/etc/tcp.smtp tcpserver_file=$vpopmaildir/etc/tcp.smtp AC_MSG_WARN([Unable to find your tcpserver relay file.]) --- vmysql.c.origFri Feb 1 17:43:24 2002 +++ vmysql.cSun Dec 29 04:51:20 2002 @@ -750,7 +750,7 @@ return; } while((row = mysql_fetch_row(res_read))) { -snprintf(SqlBufRead, SQL_BUF_SIZE, %s:allow,RELAYCLIENT=\\\n, row [0]); +snprintf(SqlBufRead, SQL_BUF_SIZE, % s:allow,RELAYCLIENT=\\,QMAILQUEUE=\/var/qmail/bin/qmail-scanner- queue.pl\\n, row[0]); write(fdm,SqlBufRead, strlen(SqlBufRead)); } mysql_free_result(res_read); --- voracle.pc.origSat Jan 19 23:07:58 2002 +++ voracle.pcSun Dec 29 04:55:14 2002 @@ -694,7 +694,7 @@ EXEC SQL FETCH CF INTO :Vip_addr; if (sqlca.sqlcode == 1403) break; -sprintf(SqlBuf, %s:allow,RELAYCLIENT=\\\n, Vip_addr); +sprintf(SqlBuf, % s:allow,RELAYCLIENT=\\,QMAILQUEUE=\/var/qmail/bin/qmail-scanner- queue.pl\\n, Vip_addr); write(fdm,SqlBuf, strlen(SqlBuf)); } --- vpgsql.c.origSat Jan 19 23:08:02 2002 +++ vpgsql.cSun Dec 29 04:54:21 2002 @@ -675,7 +675,7 @@ { PGresult *pgres; const char *qr=select ip_addr from relay; -const char re[]=:allow,RELAYCLIENT=\\\n; +const char re[] =:allow,RELAYCLIENT=\\,QMAILQUEUE=\/var/qmail/bin/qmail-scanner- queue.pl\\n; register unsigned i=0, n, len=strlen(re)+1; char *buf=NULL; --- vpopmail.c.origFri May 17 23:25:49 2002 +++ vpopmail.cSun Dec 29 04:53:19 2002 @@ -2140,7 +2140,7 @@ rebuild_cdb = 0; } } -fprintf( fs1, %s:allow,RELAYCLIENT=\\,RBLSMTPD=\\ %d\n, +fprintf( fs1, % s:allow,RELAYCLIENT=\\,RBLSMTPD=\\,QMAILQUEUE=\/var/qmail/bin/qmail- scanner-queue.pl\ %d\n, ipaddr, (int)mytime); fclose(fs); fclose(fs1);
Re: [vchkpw] Vpopmail, Roaming Users, Qmail-Scanner (vpopmail-5.2.1_qmailqueue.patch)
Thanks David for the info. Unfortunately, I have previously done that (adding the qmailqueue env in qmail- smtpd run file --as some posts on this mailing list or Q-S's list). However, the problem still existed since some users use the webmail interface (IMP www.horde.org/imp) to send messages which runs as a different user than qmail- smtpd and in turn doesn't pickup the env var QMAILQUEUE. The webmail's default behavior is it uses local /usr/sbin/sendmail binary to send mails out (which is linked to qmail's sendmail) which doesn't pass qmail-smtpd at all. I think qmail-sendmail will automatically write the message to the real queue (or it passes through qmail-send first.) I probablly could've gotton around that by also adding the QMAILQUEUE env line to qmail-send run script?? What I done is I added a exec() line in the webmail's php code to set the var QMAILQUEUE to my scanner. This worked for the webmail only but not for outlook/eudora users (again, could've put env qmailqueue in qmail-smtpd run file -- but then it becomes a mess). Quoting David Phillips [EMAIL PROTECTED]: Tim Hasson writes: Below is a patch to allow setting QMAILQUEUE to qmail-scanner-queue.pl for roaming users (change path to your pre-qmail-queue script) You could also just set it in your run script. No need for patching. If you use qmail-conf, add it to the env directory. -- David Phillips [EMAIL PROTECTED] http://david.acz.org/
Re: [vchkpw] Relay Problems: tcpserver?
Are you using tcpserver -x ~vpopmail/etc/tcp.smtp.cdb in your qmail-smtpd run file? If yes, then proceed.. I was using tcp.smtp.cdb in vpopmail for roaming users until I upgraded to 5.2.1 w/ mysql, so i ended up also applying matt simerson's mysql patch to tcpserver (or ucscpi package -- as recommended by README.mysql): http://matt.simerson.net/computing/mail/qmail/ucspi-tcp-0.88-mysql.patch After that you could run tcpserver with the new -S option (to enable tcpserver to read relay information from vpopmail's relay table in mysql) Just make sure you create a file /var/qmail/control/sql containing: server localhost port3306 databasevpopmail table relay userusername passsecret time7200 Then you could compile your tcp.smtp to another location (for example /etc/tcp.smtp.cdb) and change tcpserver -x to that new file (maintaining the additional -S option). This way, you will have a slim tcp.smtp.cdb that never changes except when you change it. This is a much better approach if you are using both --enable-roaming-users=y and --enable- mysql=y. Quoting Matthew Walker [EMAIL PROTECTED]: Greetings, I'm running vpopmail+qmail+mysql on RedHat 7.3. Everything seems to be working fine except for roaming user POP authentication. I've tried a number of different tcpserver configs I've found in the docs and through googling, but none seem to solve the problem. ~vpopmail/etc/tcp.smtp.cdb is updated (time stamp changes) whenever I POP to the server, but the remote IP is never added to the .cdb database and roaming users are getting relaying denied errors after POPing. I've got the same setup, and I'm experiencing the same thing, I think. If anyone has insight, I'd love to know the solution. Any suggestion/pointers would be greatly appreciated. TIA, --Duncan
[vchkpw] problem I am having with vpopmail/qmailadmin
Hi I am running version 5.2 of vpopmail with qmailadmin v 1.02 All is going fine , but I have a little issue I have googled this problem , also looked in archives When I delete a user account and a alias is still pointing to this deleted username it seems to kill the alias with errors like this Unable_to_chdir_to_maildir._ I can see why its doing it - as when the user is removed so is there MailDir , but in the .alias file it still has the deleted username in there pointing to deleted MailDir directory Is there any easy fix to this , as everything else is running perfect , and I'm sure I will forget one day to remove a user from a alias before I delete their account which will stop the whole alias working Thanks Tim
Re: vipmap and env apache
Remo Mattei writes: Hi guys I just would like some suggestions from you. I have vipmap and I map an ip to a domain but it's still not working. I notice that the sqwebmail is still calling the main sqwebmail exe from my main server /usr/local/apache/cgi-bin instead of calling the one from the /home/httpd/vhost/domain.com/cgi-bin so even though I did map the ip it still says from the main ip. I have read through the doc for setup the virtual here is what Ihave put in the apache file: sqwebmail will always use the same cgi-bin unless you specify a different variable in your vhost SetEnv SQWEBMAIL_TEMPLATEDIR /home/httpd/vhost/mastroraphael.com/webmail but this line does not do anything with the cgi-bin script any suggestions? I have many domains setup with there own cgi-bin dir. so the question is its not supposed to, this changes where the HTML templates are found, hence the variable name. what do I need to do to make vipmap working? as far as I know vipmap is just for pop, sqwebmail does its own with tricks in the vhosts configs. what suggestions do you have for the env in apache for the cgi-bin script so each of the server is running their own sqwebmail script. I want to say that it does work it just called the main sqwebmail script. THANKS, REMO
RE: Logging Vpopmail pop3
vpopmail has its own logging mechanism, its a compile time option. -Original Message- From: Kevin - System Administrator [mailto:[EMAIL PROTECTED]] Sent: Tuesday, November 13, 2001 2:06 PM To: [EMAIL PROTECTED] Subject: Logging Vpopmail pop3 This is the line for me to log pop3 connections to /var/log/maillog #!/bin/sh /usr/bin/logger -p mail.info -t pop3d [$USER] logged in from $TCPREMOTEIP [$TCPREMOTEHOST] exec /var/qmail/bin/qmail-pop3d $1 it works fine and shows the ip and host if its resolvable but it doesnt show the username am i using the wrong variable? do i need a patch? does vpopmail use different scheme for loggin this?
RE: Urgent Help, please!
does your webserver user have rights to work in the vpopmail dirs? -Original Message- From: The Guyver [mailto:[EMAIL PROTECTED]] Sent: Thursday, September 20, 2001 2:30 PM To: [EMAIL PROTECTED] Subject: Urgent Help, please! Hello there, I'm in a desperate need to write a PHP script that creates a new mailbox with vpopmail 4.10.35 I've written everything correctly but when I use exec or system I always end up with this error: Error: Unable to chdir to vpopmail/domains directory please help me it's very urgent if anybody has a clue I'll appreciate so much. Guyver
RE: qmail+vpopmail witchcraft
The error: Sep 18 16:15:31 my.full.domain vchkpw: vchkpw: Read error is definately the problem, it looks to me that it cannot read the passwd file maybe? what user is your pop3 server being run as? -Original Message- From: Tom Van de Wiele [mailto:[EMAIL PROTECTED]] Sent: Tuesday, September 18, 2001 10:41 AM To: [EMAIL PROTECTED] Subject: qmail+vpopmail witchcraft hi I'm running qmail as my smtp and pop3 server. I have normal unix-accounts and virtual accounts (qmail accounts) and qmail and vpopmail are installed by the book. I made a virtual domain and some virtual pop3 accounts with vpopmail which are made correctly. My pop3 line in inetd (yes, I'm using inetd for now, but that will change once I got this working) is: pop3stream tcp nowait root /var/qmail/bin/qmail-popup qmail-popup my.full.domain /var/vpopmail/bin/vchkpw /var/qmail/bin/qmail-pop3d Maildir The problem is that nor the normal users, or the virtual/qmail accounts can collect their mail. I've sent the accounts some mail using my own smtp server which worked (the mail is in the $HOME/Maildir of those users and I see the entires in the logs). A little test: [snip] #telnet localhost 110 Trying 1.2.3.4 ... Connected to my.full.domain. Escape character is `^]`. +OK [EMAIL PROTECTED] user username +OK pass testpass -ERR authorization failed [/snip] in my /var/log/messages, I get: [snip] Sep 18 16:15:31 my.full.domain vchkpw: vchkpw: Read error [/snip] Always the -ERR authorization failed message. This is an authentification problem for sure. I replaced vchkpw with /bin/checkpassword and then only the unixaccounts work (which is normal because checkpassword gets its passwords from /etc/passwd or shadow) I see several people having the same problem, but no answers... not on qmail.org, nor on the mailinglist-archive. I'v been working on this problem for 2 days now. Any help would be appreciated! Best regards Tom Van de Wiele [EMAIL PROTECTED]
RE: Does Vpopmail suppport UW-IMAP?
Why make your life harder, use courier-imap http://www.inter7.com/courierimap/ -Original Message- From: KK [mailto:[EMAIL PROTECTED]] Sent: Wednesday, August 01, 2001 6:28 AM To: [EMAIL PROTECTED] Cc: [EMAIL PROTECTED] Subject: Re: Does Vpopmail suppport UW-IMAP? hello friends - i checked the mail log file and found the following: imap service init from 192.168.0.169 Preauthenticated user=vpopmail host=nete.linux [192.168.0.169] i am perplexed as to why is the IMAP server pre authenticating and not asking for any password. note: following is the content of the pop3d run script: /usr/local/bin/tcpserver -c 200 -p -x /etc/tcp.smtp.cdb 0 25 /var/qmail/bin/qmail-smtpd /usr/local/bin/tcpserver -u 508 -g 508 -V -R -H -l 0 0 143 /usr/sbin/imapd newqmail.com /home/vpopmail/bin/vchkpw /usr/sbin/imapd Maildir while checking against the IMAP server, i comment out the line for the POP3 server. Thanks. --- after a lot of hassles, i was successful in installing Qmail+IMAP-with-Maildir-Patch-by-David-Harris+Vpopmail+MySQL. following is my quesries relating to the above: 1. Does Vpopmail support IMAP-with-Maildir-Patch-by-David? Or is it only good for POP3 mails? 2. After installing the above combination of softwares (I have followed all the intructions step by step and also tried the various tips given on this list), I am still not able to receive incoming emails via Outlook Express or Netscape Messenger using the IMAP protocol. I tried both Vchkpw cdb-file format as well as MySQL format for username/password authentication. But nothing seems to work. When I click Get Mails, neither of the client email software asks for password and says, No emails to be downloaded. Though I am able to send emails using IMAP protocol. I even checked the Maildir directory for the particular user and i found that the email has reached in there. When I try to telnet as: telnet newqmail.com 143, I get connected to the IMAP server, but when I type user [EMAIL PROTECTED] it displays an error: Trying 192.168.0.169... connected to nete.linux(192.168.0.169). Escape character is'^]'. * PREAUTH nete.linux IMAPreu1 v12.250 server ready user [EMAIL PROTECTED] user BAD command unrecognized: [EMAIL PROTECTED] But, the same thing works with POP3 proptocol. Using POP3 protocol i am able to send as well as receive mails using mail clients. Any suggestions/help/tips is appreciated. = KK [EMAIL PROTECTED], [EMAIL PROTECTED] Associate Netesoft India Ltd. http://www.netesoft.com P: 91.40.6319813 __ Do You Yahoo!? Make international calls for as low as $.04/minute with Yahoo! Messenger http://phonecard.yahoo.com/
RE: Using the correct tcp.smtp?
Edit the line that start qmail-smtpd -Original Message- From: Steven Katz [mailto:[EMAIL PROTECTED]] Sent: Friday, July 13, 2001 11:34 AM To: [EMAIL PROTECTED] Subject: Using the correct tcp.smtp? I don't seem to have smtp-after-pop-auth working. Does anything have to be done so that qmail knows to use the tcp.smtp in ~vpopmail/etc instead of the one in /etc? In ~vpopmail/etc: -rw-rw-r--1 vpopmail vchkpw 62 May 11 06:58 tcp.smtp -rw-r--r--1 vpopmail vchkpw 2204 Jul 13 06:40 tcp.smtp.cdb In /etc: -rw-r--r--1 root root 96 Apr 22 10:52 /etc/tcp.smtp -rw-r--r--1 root root 2192 Apr 22 21:49 /etc/tcp.smtp.cdb Steven
Re: virus scanning
Philip, Yes please, I would like a copy of your script to grab the latest IDE update. just curious - You run it twice a week - why not every time they issue an email alert that there is a new one? Tim On Mon, 2 Jul 2001, Philip Wall wrote: My company has used Qmail-Scanner and Sophos for the last 8 months in production. Works like a charm. I do have a perl script I use to grab the IDE updates from their website twice a week if anyone is interested. Philip Wall On 2 Jul 01, at 11:52, Ed Henderson wrote: Does anyone have any experience with virus scanning emails? I am looking at Amavis vs. Qmail-scanner (formerly scan4virus) with Sophos SAV sweep. Any experience with either? Any thing to watch for with vpopmail? Any help is much appreciated! Ed.
auth problem
I inherited a Debian box with qmail and vpop and qmail admin installed. Everything was running fine at one point. It doesn't work now and gives this error back to the client: this user has no $HOME/Maildir I do know that the prior admin changed the users home directories to a different partition. It is using mysql for authentication. and those tables look ok. There is also the qmail admin package installed but the passwd for the postmaster is unknown. I'm considering re-compiling but wonder if perhaps there is an environment variable I could set. If so for what user? qmaild ? there is no source code for it on the machine. Any suggestions, hints, tips flames appreciated. -- Tim Thomas www.remoteautomation.com
Re: auth problem
On Thu, Jun 28, 2001 at 06:16:49PM -0500, Tim Thomas wrote: I inherited a Debian box with qmail and vpop and qmail admin installed. Everything was running fine at one point. It doesn't work now and gives this error back to the client: this user has no $HOME/Maildir I do know that the prior admin changed the users home directories to a different partition. It is using mysql for authentication. and those tables look ok. There is also the qmail admin package installed but the passwd for the postmaster is unknown. I'm considering re-compiling but wonder if perhaps there is an environment variable I could set. If so for what user? qmaild ? there is no source code for it on the machine. Any suggestions, hints, tips flames appreciated. more annoying details: hmmm the user exists and does have permission vpopmail:x:1015:1015:Virtual POP Account,,,:/web/vpopmail:/bin/bash drwxr-xr-x9 vpopmail vpopmail 4096 Jun 25 20:24 vpopmail/ http://vhost.remoteautomation.com/cgi-bin/qmailadmin/ -- Tim
Re: auth problem]
If he changed the home directories to a different partition, it's likely the home paths have changed..? This could affect /home/vpopmail (although I don't think you'd be getting as far as you are if that was the case). You say the MySQL tables look OK, but did you verify the home directory listed in the pw_dir column goes to the current home directories? yes I believe that's ok mysql select pw_name, pw_dir from vpopmail - ; ++--+ | pw_name| pw_dir | ++--+ | postmaster | /web/vpopmail/domains/holycrosslutheranchurch.org/postmaster | | jodip | /web/vpopmail/domains/holycrosslutheranchurch.org/jodip | | pmel | /web/vpopmail/domains/holycrosslutheranchurch.org/pmel | | info | /web/vpopmail/domains/holycrosslutheranchurch.org/info | | dhunter| /web/vpopmail/domains/holycrosslutheranchurch.org/dhunter| | sermons| /web/vpopmail/domains/holycrosslutheranchurch.org/sermons| | peidsness | /web/vpopmail/domains/holycrosslutheranchurch.org/peidsness | | angies | /web/vpopmail/domains/holycrosslutheranchurch.org/angies | | pt | /web/vpopmail/domains/holycrosslutheranchurch.org/pt | | postmaster | /web/vpopmail/domains/mountaintop.org/postmaster | | troy | /web/vpopmail/domains/mountaintop.org/troy | | postmaster | /web/vpopmail/domains/garysgunshop.com/postmaster | | garys | /web/vpopmail/domains/garysgunshop.com/garys | | shannons | /web/vpopmail/domains/holycrosslutheranchurch.org/shannons axistance and perms: lyback:/web/remoteautomation/www/software# ll /web/vpopmail/domains/ total 12 drwx--4 vpopmail vpopmail 4096 Apr 3 09:15 garysgunshop.com/ lrwxrwxrwx1 root root 49 Mar 27 21:41 holycrossluthchurch.com - /web/vpopmail/domains/holycrosslutheranchurch.org/ lrwxrwxrwx1 root root 49 Mar 27 21:41 holycrossluthchurch.org - /web/vpopmail/domains/holycrosslutheranchurch.org/ drwx-- 12 vpopmail vpopmail 4096 Jun 24 17:20 holycrosslutheranchurch.org/ drwxr-xr-x5 vpopmail vpopmail 4096 May 14 21:03 mountaintop.org/ flyback:/web/remoteautomation/www/software# ls -lAFd drwxr-sr-x3 root www-data 4096 Apr 11 16:30 ./ flyback:/web/remoteautomation/www/software# ls -lAFd /web/vpopmail/domains/ drwx--5 vpopmail vpopmail 4096 May 14 21:02 /web/vpopmail/domains// any other thoughts ?
RE: vpopmail filtering
Its not that I have not been successful getting vpopmail to work with maildrop but more along the lines that there is no good way to do this sitewide or with the inter7 tools. If I make an alias for myself using qmailadmin let just say its .qmail-myself it will contain ./thunter/Maildir/ therefore it will not use the filters that I put in place for .qmail-tim:hunter ( | maildrop -m ~vpopmail/domains/cimx.com/tim.hunter/.mailfilter) The thing I liked about the filter option in vpopmail is that it would look for a .vpopfilter file in my virtual home dir and then follow the delivery instructions there. I would think that a similar compile time option like this would be nice, even if it does call maildrop to do the delivery. I would think that it would be somewhat trivial to look for a .mailfilter file in the virtual home. Similarly sqwebmail does not create filters properly for virtual users, making delivery instructions such as .lists/. which then maildrop tries to put in ~vpopmail/Maildir/.lists minor quibble possibly but making maildrop rules editable from sqwebmail useless for virtual users I have thought about editing the sqwebmail source to make complete paths to the maildir like /home/vpopmail/domains/cimx.com/tim.hunter/Maildir/.lists/. but haven't made the time since currently I am the only one using a hacked setup like this. If anyone has better experience with using maildrop with qmailadmin/vpopmail/sqwebmail I would like to hear it. Also if the possibility for getting a global check for .mailfilter file on delivery would be nice though I understand it could be costly to make another check before delivery. -Original Message- From: Matthias Henze [mailto:[EMAIL PROTECTED]] Sent: Tuesday, June 26, 2001 2:22 AM To: Tim Hunter; [EMAIL PROTECTED] Subject: Re: vpopmail filtering hi tim, --On Montag, 25. Juni 2001 16:34 -0400 Tim Hunter [EMAIL PROTECTED] wrote: I was reading the changelog for the latest release of vpopmail (4.10.24) and noticed the comment about removing the filtering from vpopmail. --snip--- - removed the filter option in configure and the README.filter file from the distribution. The same functionality can now be done with maildrop. -- end snip--- does this mean that vpopmail will now look for a .mailfilter file in the users home dir (virtual or real?) and call maildrop? no, use a .qmail file in teh users home with a line like: |maildrop -m mailfilterrulefile create a mail drop filter rule file. thats it. Matthias Henze MH458-RIPE [EMAIL PROTECTED] Use PGP!! http://www.mhcsoftware.de/MatthiasHenze.asc - MHC SoftWare GmbH voice: +49-(0)9533-92006-0 Fichtera 17 fax: +49-(0)9533-92006-6 96274 Itzgrund/Germanye-Mail: [EMAIL PROTECTED] -
vpopmail filtering
I was reading the changelog for the latest release of vpopmail (4.10.24) and noticed the comment about removing the filtering from vpopmail. --snip--- - removed the filter option in configure and the README.filter file from the distribution. The same functionality can now be done with maildrop. -- end snip--- does this mean that vpopmail will now look for a .mailfilter file in the users home dir (virtual or real?) and call maildrop? or am I missing something entirely? I have always had a hard time configuring virtual users with mailfiltering. Tim Hunter -- [EMAIL PROTECTED] SysAdmin -- CIMx http://www.cimx.com
RE: [Fwd: [comments] How to add new download links]
Since when are inter7 apps not open source certified? Someone better fix the COPYING file that comes with vpopmail then, you know that one that has all that worthless information about the GPL *sigh* -Original Message- From: inter7 [mailto:inter7]On Behalf Of Ken Jones Sent: Thursday, June 21, 2001 4:35 AM To: [EMAIL PROTECTED] Cc: [EMAIL PROTECTED]; [EMAIL PROTECTED] Subject: [Fwd: [comments] How to add new download links] Thought you folks might be interested in seeing this response from appwatch when I asked for them to include qmail, vpopmail, qmailadmin and sqwebmail on thier pages. Ken Jones John D. Rowell wrote: Hi Ken, On Wed, Jun 20, 2001 at 11:54:23AM +0200, Ken Jones wrote: I was on your site, got a login, and noticed you are missing some of the most widely used software from your download links. Spefically, Daemons/SMTP qmail http://www.qmail.org/ vpopmail http://www.inter7.com/vpopmail/ Also Web/Email SqWebMail http://www.inter7.com/sqwebmail/ and a web administration tool for qmail and above QmailAdmin http://www.inter7.com/qmailadmin/ Although these are nice apps, they're either not licensed under a Free Software / Open Source license (i.e. qmail) or depend on one that is not (which makes them 'contrib' by Debian standards). If their license changes in the future we'll be sure to add them (other apps like MySQL and nedit changed their licenses recently and were added). Also, I never used SqWebMail, in case it doesn't depend on qmail (which I guess it doesn't), you can submit it through this page: http://appwatch.zdnet.com/about/submit Cheers and thanks for your suggestions, jd -- John D. Rowell [EMAIL PROTECTED][EMAIL PROTECTED] [irc: jdrowell] http://jdrowell.com http://appwatch.com [icq: 6273503 ] my GPL'd appsFree Software / Open Source [pgp: http://jdrowell.com/pgpkey] I see fat people!
RE: Error trying to compile Vpopmail with Mysql - please help
from a previous post - I had not tested 4.10.12 with --enable-auth-logging=y It is fixed in 4.10.14 http://www.inter7.com/vpopmail/vpopmail-4.10.14.tar.gz Try that Ken end snip -Original Message- From: oldarnie [mailto:[EMAIL PROTECTED]] Sent: Monday, June 04, 2001 1:08 PM To: John Cc: VpopMail Subject: Re: Error trying to compile Vpopmail with Mysql - please help Roger Arnold wrote: Hello John, With respect, I am not a C programmer, so could you tell me how? i.e. What needs to be put in the file and where? Thanks in advance Roger - Original Message - From: John To: oldarnie Sent: Tuesday, June 05, 2001 2:04 AM Subject: RE: Error trying to compile Vpopmail with Mysql - please help vdeloldusers.c:143:2: #else without #if vdeloldusers.c:150:2: #endif without #if edit vdeloldusers.c line 143 and 150 and fix it. -Original Message- From: oldarnie [mailto:[EMAIL PROTECTED]] Sent: Monday, June 04, 2001 11:58 AM To: VpopMail Subject: Error trying to compile Vpopmail with Mysql - please help Roger Arnold wrote: I seem to have stumbled into a major problem while trying to compile Vpopmail and would be obliged if someone could help ASAP please. I used the following configuration: --mandir=/usr/share/man --enable-roaming-users=y --enable-auth-logging=y --enable-logging=v --enable-mysql=y --enable-valias=y --enable-hardquota=300 I got the following error: vdeloldusers.c:143:2: #else without #if vdeloldusers.c:150:2: #endif without #if make[2]: *** [vdeloldusers.o] Error 1 make[2]: leaving directory '/usr/src/vpopmail-4.10.9' make[1]: *** [all-recursive] Error 1 make[1]: leaving directory '/usr/src/vpopmail-4.10.9' make: *** [all-recursive-am] Error 2 I am compiling on a Redhat 7.1 box with an AMD K6-2 550 and 64MB Ram Any and all help would be appreciated ASAP Please Thanks in advance Regards Roger
RE: Where is the authlib directory
FYI I just upgraded my vpopmail from 4.9.10 to 4.10.14 and I didn't change a thing for my sqwebmail to continue working. That being said I do plan to upgrade to a newer sqwebmail soon. -Original Message- From: burrett [mailto:[EMAIL PROTECTED]] Sent: Monday, June 04, 2001 4:11 PM To: [EMAIL PROTECTED] Subject: Where is the authlib directory Roger Arnold wrote: Hello All, I have just downloaded vpopmail-4.10.14 and noticed on the download page that if sqwebmail is going to be used, a file has to be changed in the authlib directory, so where is the directory? I couldn't find it in the vpopmail-4.10.14 source directory, nor can I find it in the ~vpopmail/ directory tree after compilation. I need sqwebmail so I need to find this directory, please help Thanks in advance Regards Roger
Re: dbfunctions - it's over
It was answered before this posting on the list, when Krzysztof first noticed that the dbfunctions patch in its entirity was not going to be included in the latest vpopmail build. You can check the archives for the exact posting (subject Dbfunctions) but the general of it all was that dbfunctions could not be included in its current state because it breaks non database installations, it lacks documentation and Krzysztof never gave Ken enough information to port it properly to support the entire vopmail userbase. -- Tim - Original Message - From: "Wojciech Smolkowski" [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Friday, May 25, 2001 5:00 PM Subject: Re: dbfunctions - it's over Hi, Can anyone tell me, why there is no answer ( for letters with 'dbfunctions' in Subject ) from inter7.com ? On Fri, 18 May 2001, Krzysztof Dabrowski wrote: Hello.. It's a sad day, but i guess it was ment to be like this We are stoping the dbfunction patch development. There will be no more releases from us. The already finished improved quota support (no re-calc on every delivery with small patch to qmail-pop3d) wont be released too. We have decided to start a similar project on our own. It'll differ from vpopmail in 2 aspects: a) speed - we aim to be nearly as fast as stock qmail but with mass virtual hosting support. b) quota - file system independent fast quota system c) simplicity - no bloat.. At this point of time i can not tell you if it's going to be open project or not - i have to consult our management (we are being paid to program it). But inerested parties can contact me and we can work something out i supose. If somebody wants to maintain the dbfunction patch then feel free to contact me. You will be able to download the last release version together with vpopmial that works with it from my homepage. Thanks for all good words from users of the patch. And to Ken: Sorry, you just don't know how to run an open source project, period. bye, Kris wojciech smokowski [ mailto:[EMAIL PROTECTED]] PGP key: sh# pgpv hkp -a keys.pgp.com/0x2FFD974D [mobile ph. +48502525521] * Powered by /bin/pine
Re: Authentication Problems
you line should look similar to this (note the single domain) tcpserver -v -H -R -l mail -c5 0 pop3 qmail-popup mail.domain.com\ vchkpw qmail-pop3d Maildir 21 - Original Message - From: Brian C. Doyle [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Sunday, May 13, 2001 10:31 AM Subject: Authentication Problems Hello, I am runing Redhat 6.1 and installed Qmail and got that running and doing pop mail just fine. I installed vpopmail and it installed fine... I can add a domain and a user to that domain Cool so I kill my pop3 that is running (tcpserver 0 pop3 /var/qmail/bin/qmail-popup qmail-popup jbbent.com /usr/bin/checkvpw /var/qmail/bin/qmail-pop3d Maildir) and start the Qmail with vpopmail with tcpserver 0 pop3 /var/qmail/bin/qmail-popup \ domain1.com domain2.com \ /home/vpopmail/bin/vchkpw /var/qmail/bin/qmail-pop3d Maildir Domain1.com is the original domain that was working under just Qmail. Domain2.com is a virtual domain with out its own IP. Now I can not check email on either domains. Okay so I add domain1.com to ./vadddomain dmain1.com password and a user and just get an auth error. What am I missing to get this working??? Thank you for all of your help!
Re: Authentication Problems
are you logging your vchkpw auth info? try looking somewhere in your syslog for the mail requests, post that. - Original Message - From: Brian C. Doyle [EMAIL PROTECTED] To: Tim Hunter [EMAIL PROTECTED]; [EMAIL PROTECTED] Sent: Sunday, May 13, 2001 11:25 AM Subject: Re: Authentication Problems Sorry about the last email.. I fixed it. So the server now starts but I am back to getting -ERR authorization failed Connection closed by foreign host. tcpserver: end 31317 status 256 tcpserver: status: 0/5 I have my domain added and the user added but getting now where At 11:17 AM 5/13/01 -0400, Brian C. Doyle wrote: Okay so I run this and I Telnet Into the server and get telnet localhost 110 Trying 127.0.0.1... tcpserver: status: 1/5 tcpserver: pid 31234 from 127.0.0.1 tcpserver: ok 31234 mail:127.0.0.1:110 :127.0.0.1::4808 tcpserver: warning: dropping connection, unable to run qmail-popup: file does not exist tcpserver: end 31234 status 28416 tcpserver: status: 0/5 Connected to localhost. Escape character is '^]'. Connection closed by foreign host. Now what did I mess up? At 11:08 AM 5/13/01 -0400, Tim Hunter wrote: you line should look similar to this (note the single domain) tcpserver -v -H -R -l mail -c5 0 pop3 qmail-popup mail.domain.com\ vchkpw qmail-pop3d Maildir 21 - Original Message - From: Brian C. Doyle [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Sunday, May 13, 2001 10:31 AM Subject: Authentication Problems Hello, I am runing Redhat 6.1 and installed Qmail and got that running and doing pop mail just fine. I installed vpopmail and it installed fine... I can add a domain and a user to that domain Cool so I kill my pop3 that is running (tcpserver 0 pop3 /var/qmail/bin/qmail-popup qmail-popup jbbent.com /usr/bin/checkvpw /var/qmail/bin/qmail-pop3d Maildir) and start the Qmail with vpopmail with tcpserver 0 pop3 /var/qmail/bin/qmail-popup \ domain1.com domain2.com \ /home/vpopmail/bin/vchkpw /var/qmail/bin/qmail-pop3d Maildir Domain1.com is the original domain that was working under just Qmail. Domain2.com is a virtual domain with out its own IP. Now I can not check email on either domains. Okay so I add domain1.com to ./vadddomain dmain1.com password and a user and just get an auth error. What am I missing to get this working??? Thank you for all of your help!
RE: More pop3 questions
Not completely true, you can use --enable-ip-alias-domains=y and use the vipmap to have the simple username authentication. -Original Message- From: Michael French [mailto:[EMAIL PROTECTED]] Sent: Wednesday, May 09, 2001 12:08 PM To: Ruben Cc: [EMAIL PROTECTED] Subject: Re: More pop3 questions You only need one pop3 server running, it will answer all pop3 requests. When you have multiple domains, you use the [EMAIL PROTECTED] to authenticate and that is how pop3 knows which user at which domain is trying to get access. You can only use the username only authentication for one domain (you must compile vpopmail with --enable-default-domain=mydomain.com. Check this option in the docs for the right syntax). All other domains will have to use [EMAIL PROTECTED] to authenticate. Michael French On Wednesday 09 May 2001 11:40, you wrote: I'm using the script shown at http://www.inter7.com/vpopmail/FAQ to configure my pop3 service. Now I want to add another domain, should I run 2 similar scripts or one with both domains specified? something like this could work? env - PATH=/var/qmail/bin:/usr/local/bin \ tcpserver 0 pop3 /var/qmail/bin/qmail-popup \ first.host.here second.host.here \ /home/vpopmail/bin/vchkpw /var/qmail/bin/qmail-pop3d Maildir And... what should I do to make users authenticate via pop without using as login '[EMAIL PROTECTED]', I want them to use just 'username' as any other pop3 service. I compiled vpopmail with --enable-ip-alias-domains=y What am I missing? Regards, Ruben Olague. -- Michael French Asheville Citizen-Times IT Dept. (828)236-8966
RE: user@domain
Not sure where you see user:domain My docs say user@domain or user%domain -Original Message- From: Ed Henderson [mailto:[EMAIL PROTECTED]] Sent: Wednesday, May 09, 2001 1:05 PM To: [EMAIL PROTECTED] Subject: user@domain According to the FAQ vpopmail requires the POP3 client to use account name in the form of user:domain for virtual domain email. Is it possible to configure it to use the form user@domain? This is much more intuitive for users. Thanks, Ed.
RE: Dbfunctions
For what its worth, my 0.02 From what I remember the dbfunctions patch is strictly for those people using vpopmail with a db backend, from my original quick scan several months ago I was able to determine that this would break my installation of vpopmail since I do not use a db, but instead another authentication format. Ken has to retrofit this to fit EVERYONE who is using vpopmail, not just those who fit your scenario Krzysztof, and though you have many people using your patches successfully I would assume that that is a very small portion of the installed userbase of vpopmail. I also remember Ken publicly asking for documentation on how it works when you publicly complained in the last version of vpopmail when it wasn't included. I would assume Ken never received what he felt was needed to fit this properly into vpopmail and therefore developed perhaps a feature-crippeled version of your patch in order to provide a product to support the entire userbase of vpopmail. -- Tim -Original Message- From: Krzysztof Dabrowski [mailto:[EMAIL PROTECTED]] Sent: Tuesday, May 08, 2001 5:32 AM To: [EMAIL PROTECTED] Subject: Dbfunctions Ken, I've read the latest changelog for vpopmail. i've noticed that you have implemented something that looks like feature-crippled version of my dbfunctions patch. After a half year of nearly ignoring me and my friends attempts, without ANY open discussion about these features (i've been asking for discussion atleast few times) you have basicaly THROWN AWAY all of our work (and wasted the efforts of beta testers from this list). Can you tell me is there a way for people like us to contribute to vpopmail without the risk of being completely ignored and our time wasted? This is the last time, i'm trying to change something. I grew tired of all this. If nothing changes (or i get no reply as usual) i will stop investing my time in vpopmail. Kris
RE: sqwebmail 2.0 compile problem (MySQL support w/vpopmail?)
My fix: Edit authlib/Makefile look for the line like CRYPTLIBS = -lcrypt change it to CRYPTLIBS = -lcrypt -L/usr/lib/mysql -lmysqlclient -lz -lcrypt -lnsl -lm (I copied the extra info from the MYSQL_LIBS line further down the Makefile) I don't know if this is what your supposed to do but it worked for me. I guess this MYSQL_LIBS line isn't getting appended where it should. -Original Message- From: Drew Linsalata [mailto:[EMAIL PROTECTED]] Sent: Monday, April 30, 2001 2:48 PM To: [EMAIL PROTECTED]; [EMAIL PROTECTED] Subject: sqwebmail 2.0 compile problem (MySQL support w/vpopmail?) Hi folks, Not sure if this is a Sqwebmail or Vpopmail problem, but we have Vpopmail 4.9.8-1 running with MySQL support on a FreeBSD box and when we try to compile Sqwebmail 2.0.0, we get a slew of the following errors: /usr/local/src/qmail/vpopmail-4.9.8-1/vauth.c(.text+0x1592): undefined reference to `mysql_query' /usr/local/src/qmail/vpopmail-4.9.8-1/vauth.c(.text+0x15a6): undefined reference to `mysql_store_result' /usr/local/src/qmail/vpopmail-4.9.8-1/vauth.c(.text+0x15b4): undefined reference to `mysql_free_result' Here's our sqwebmail configure command: ./configure --without-authpwd --without-authshadow --without-authpam --without-authuserdb --without-authldap --without-authdaemon --enable-cgibindir=/home/www/public_html/cgi-bin --enable-imagedir=/home/www/public_html/images --enable-imageurl=/images/webmail/ --enable-webpass=no --enable-softtimeout=7200 --enable-hardtimeout=36000 Any ideas? Drew Linsalata The Gotham Bus Company Internet Server and Carrier Neutral Co-Location http://www.gothambus.com
Re: How to create message (filter) rule?
vpopmail does not user maildrop for delivery, so it never sees the .mailfilter. Perhaps if we complain loudly enough someone will think of a way to make vpopmail use maildrop rules or something similar. Also sqwebmail only creates the rules to deliver to a relative directory, since vpopmail users home is ~vpopmail the delivery will never work. It would need a absolute path. - Original Message - From: "Le Van Chi" [EMAIL PROTECTED] To: "Johan Almqvist" [EMAIL PROTECTED]; [EMAIL PROTECTED] Sent: Wednesday, April 18, 2001 12:45 AM Subject: Re: How to create message (filter) rule? Dear Johan Almqvist, Thank you for your guide. However I still cannot get mail filters worked. My configuration include qmail (/var/qmail), vpopmail (/home/vpopmail), sqwebmail, maildrop (/usr/local/bin/maildrop) my /var/qmail/rc : exec env - PATH="/var/qmail/bin:$PATH" \ qmail-start '|dot-forward .forward | /usr/local/bin/maildrop ./Maildir/' my /usr/local/share/sqwebmail/maildirfilterconfig : MAILDIRFILTER=../.mailfilter MAILDIR=./Maildir When I try to create a mail filter in sqwebmail, the filter rule is created successfully. I can see sqwebmail creating a .mailfilter file in /home/vpopmail/domains/fsps.com/a1/. The only thing is that when I sent an email to test the rule, It does not seem to have any effect. Do I miss any configuration step? Thanks, - Original Message - From: "Johan Almqvist" [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Tuesday, April 17, 2001 7:03 PM Subject: Re: How to create message (filter) rule? * Le Van Chi [EMAIL PROTECTED] [010417 05:42]: Dear All, I am using vpopmail + courier-imap server and sqwebmail. I wonder if I can create filter rules for incoming messages. Thanks in advance, RTFM. This is described in great detail in the sqwebmail docs. The relevant file in the source tree is maildir/README.maildirfilter.html If you have problems, be sure to check the logs... -Johan -- Johan Almqvist http://www.almqvist.net/johan/qmail/
RE: How to create message (filter) rule?
Like I said it needs an absolute path. edit your .mailfilter file and change the reference from "./Maildir/.lists.vchkpw/." to "/home/vpopmail/domains/indochinanet.com/chi.lv/Maildir/.lists.vchkpw/." -Original Message- From: Le Van Chi [mailto:[EMAIL PROTECTED]] Sent: Wednesday, April 18, 2001 5:52 AM To: [EMAIL PROTECTED] Subject: Re: How to create message (filter) rule? Thank very much for your help. I hate to bother you again but if I put | maildrop ./chi.lv/Maildir/.mailfilter in /home/vpopmail/domains/fsps.com/.qmail-chi:lv it does not work too . I received following message: deferral: /usr/local/bin/maildrop:_Unable_to_open_mailbox./ Is there any stupid thing I have made? - Original Message - From: "Johan Almqvist" [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Wednesday, April 18, 2001 3:01 PM Subject: Re: How to create message (filter) rule? * Tim Hunter [EMAIL PROTECTED] [010418 08:56]: vpopmail does not user maildrop for delivery, so it never sees the .mailfilter. Perhaps if we complain loudly enough someone will think of a way to make vpopmail use maildrop rules or something similar. I went around this problem by creating a .qmail-username file containing | maildrop ./user/Maildir/.mailfilter That's a crude hack but it works... Also sqwebmail only creates the rules to deliver to a relative directory, since vpopmail users home is ~vpopmail the delivery will never work. It would need a absolute path. Nah, works. -Johan -- Johan Almqvist http://www.almqvist.net/johan/qmail/
Re: courier imap 1.3.6
You need to upgrade to either vpopmail 4.9.9 or courier-imap 1.3.7 -- either one. Or you can manually delete the call to vlogauth() in authlib/preauthvchkpw.c -- Sam Sam, Great, I upgraded to 1.3.7 compile went ok. Unfortunately I cannot upgrade to vpopmail 4.9.9 or 4.9.10 cause simply it never compiled on FreeBSD 4.2/4.3 w/ OpenLDAP module. I was only able to get 4.9.8-1 (from ports) to compile. The funnier thing is, if you configure vpopmail --enable-ldap and --enable-hardquota=xxx and then you make it will compile ok. However, once you get to vadddomain domain.com it will prompt for postmaster password and then it would coredump. Qmailadmin 0.39, 0.41 and 0.43 do not compile with vpopmail+ldap module (even with -lldap and -llber in the Makefile). I get a lot of vauth.o undefined references to vchkpw functions (not ldap*). Here is what I had to do to get Courier IMAP + Vpopmail w/ OpenLDAP module to work: ./configure --with-authvchkpw cd authlib; vi Makefile 1. add "-lldap -llber" to "authvchkpw_LDADD" 2. add "-L/usr/local/lib" to "LDFLAGS" 3. add "-I/usr/local/include -lldap -llber" to "CFLAGS" cd ..;make It will compile ok. make install-strip fails at imapd.rc (make install works) make install-configure stops at the very beginning (I didn't get an error, just a stupid stop***) cp /usr/local/libexec/imapd.rc /usr/local/etc/rc.d/imapd.sh mv /usr/local/etc/imapd.dist /usr/local/etc/imapd (and modified it) mv /usr/local/etc/imapd-ssl.dist /usr/local/etc/imapd-ssl /usr/local/etc/rc.d/imapd.sh start Finally Courier IMAPD authenticating from vchkpw+openldap --without hardquotas :( I will run some stress tests on that configuration, email me if you are interested to look at some results. Thanks for all your help, Tim
Re: qmail doesnt deliver to maildir
logs? - Original Message - From: "Nikolai Dahlem" [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Friday, April 13, 2001 8:29 AM Subject: qmail doesnt deliver to maildir Hi, I had to reinstall qmail vpopmail and now qmail doesn't deliver mails anymore, all vhost are setup up correctly, it takes the mail, but it goes straight to /queue/mess/ any ideas why this could be ? pop auth everthing is working fine, but the mails don't make it to the Maildir regards Nikolai Dahlem
RE: Relay client for pop authentication
Please stop all the cross postings. Have you tried compiling vpopmail with the roaming users option? --enable-roaming-users=n|y Enable or disable open relay after pop authentication. Default is no -Original Message- From: Wagner [mailto:[EMAIL PROTECTED]] Sent: Monday, April 09, 2001 11:43 AM To: [EMAIL PROTECTED] Cc: [EMAIL PROTECTED]; [EMAIL PROTECTED] Subject: Relay client for pop authentication Good Afternoon: I'd like to know how can i became a relay client with pop authentication. I've already tried SMTP-POPLOCK but it didn't work. Any ideas? Thank you. Wagner Garcia Campagner
RE: Upgrade from 4.9 to 4.9.10
I don't know the exact reason but I think it was a major pain to teach everyone to setup dns properly rather than maintain a config file. -Original Message- From: Jan Knepper [mailto:[EMAIL PROTECTED]] Sent: Monday, April 09, 2001 1:36 PM To: Tim Hunter Cc: [EMAIL PROTECTED] Subject: Re: Upgrade from 4.9 to 4.9.10 Nop! I just checked around a little more and found vipmap and wondered why it does not work through DNS anymore... Jan Tim Hunter wrote: You just missed a thread on this, do you have the ~vpopmail/bin/vipmap setup properly? -Original Message- From: Jan Knepper [mailto:[EMAIL PROTECTED]] Sent: Monday, April 09, 2001 1:03 PM To: [EMAIL PROTECTED] Subject: Re: Upgrade from 4.9 to 4.9.10 I already had checked all the options I used. They are the same from the 4.9 and 4.9.10 builds: --enable-ip-alias-domains=y maillog however shows no domain... I guess the option --enable-ip-alias-domains=y is not really being compiled into the code... Apr 9 11:20:02 digitaldaemon vpopmail[97337]: vchkpw: password fail user@:192.168.x.x Apr 9 11:20:06 digitaldaemon vpopmail[97339]: vchkpw: password fail user@:192.168.x.x Apr 9 11:20:10 digitaldaemon vpopmail[97341]: vchkpw: password fail user@:192.168.x.x Apr 9 11:21:38 digitaldaemon vpopmail[97386]: vchkpw: password fail user@:192.168.x.x *** Changed back to 4.9 *** Apr 9 11:21:52 digitaldaemon vpopmail[97392]: vchkpw: password fail [EMAIL PROTECTED]:192.168.x.x password (Got the password wrong with 4.9) Thanks! Jan Jan Knepper wrote: Hi, I just tried to upgrade from 4.9 to 4.9.10, but popping mail did not seem to work after that. Once I restored the original ~/bin directory everything worked fine. Any ideas? Thanks Jan
Re: Seperator change
You can use admin%masterinbusiness.com Its all in the docs. - Original Message - From: "Anil" [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Saturday, April 07, 2001 2:06 PM Subject: Seperator change Hi All, I have just installed Qmail + Vpopmail + Courier POP3/IMAP Server. I Have added around 10 Domains on the server. I am facing one problem, when i checking my mail with Outlook Express it works fine, but when i use Netscape Messanger or Eudora Light my mail doesn't work. My Domain is : masterinbusiness.com Username : [EMAIL PROTECTED] Password : Is there any way to change e-mail seperator for Vpopmail, like if i can comvert my user id from [EMAIL PROTECTED] to admin.masterinbusiness.com than it will work in Netscape. Please tell me which file to modify, for changing mail seperator. Anil _ Chat with your friends as soon as they come online. Get Rediff Bol at http://bol.rediff.com
RE: page protected
No, and your asking in the wrong place. Search httpd.apache.org for .htaccess. This is due to your browsers features. -Original Message- From: Wagner [mailto:[EMAIL PROTECTED]] Sent: Friday, April 06, 2001 1:12 PM To: Andreas Mller; [EMAIL PROTECTED] Cc: [EMAIL PROTECTED] Subject: Re: page protected Good Afternoon: I know. If i close the browser it's OK. But i want to know if there is a way even if i don't close the browser. Understand? If i go to other pages then i come back to the page protected i'm not asqued about the password. Is there a way for every time i come back to this page i must put the password? Wagner Garcia Campagner - Original Message - From: Andreas Mller To: Wagner ; [EMAIL PROTECTED] Cc: [EMAIL PROTECTED] Sent: Thursday, April 05, 2001 6:04 PM Subject: Re: page protected hello wagner, your question isn't very difficult. The Browser stores the information (password and user) for the time you are browsing other pages. If you close your browser the information is in /dev/null.. Best Regards @ndreas Mller
RE: Qmailadmin and Vpopmail
How about something we can read? -Original Message- From: Han Lim [mailto:[EMAIL PROTECTED]] Sent: Wednesday, April 04, 2001 8:12 AM To: [EMAIL PROTECTED] Cc: [EMAIL PROTECTED] Subject: Re: Qmailadmin and Vpopmail Thanks for your help Tim, Ok, let me explain it in detail : First I install qmail and follow the instruction step by step, my box have no DNS name and it point to other box for DNS query, so I use ./config-fast machine.domain.com to configure the file under the control directory, then I create the directory 'service' under /var/qmail and other needed directory and the last, I run qmail from startup script and it works. Second, I install vpopmail/vchkpw with '--enable-qmail-dir --enable-logging=y --enable-sqwebmail-pass=y --enable-lo g-name=vpopmail --enable-tcpserver-file --enable-default-domain --enable-ip- alias-domain --enable-passwd=y'Btw, example, I do ./config-fast menix.stevencen.com and I create the virtualdomain with name 'stevencen.com', is it same or different or will cause an error? I try to sent mail to outside, and when I see the 'From' is from [EMAIL PROTECTED] and not [EMAIL PROTECTED], so I create the virtual domains name 'stevencen.com' to anticipate it. Does it make sense? Third, after vpopmail, I install vqsignup and I found one strange thing here, why the binary 'vqsignup.cgi' have 4755 mode? And I must change it to 755 mode or I can't run it from my web browser. What's wrong, my Apache directory permission wrong or the vqsignup wrong? Same thing are happen to 'qmailadmin' binary too. FYI, When I try it on RH6.2, it's work perfect include the vqsignup, qmailadmin and sqwebmail, but in RH7, I got trouble, cannot signup and cannot login as postmaster in qmailadmin. Ok, look forward to hearing from anyone who can help me and thanks for help. regards, Steve --- "Tim Hunter" [EMAIL PROTECTED] wrote: Sounds like you are having some configuration issues. How did you setup qmailadmin, vpopmail, and vqsignup? from source? using mysql? cbd? etc... I am sure everything couldn't be setup correctly if things are not working. try checking your logs for more info. It would be nice to see some logs, and how your setup your qmail to return the 'address not found' error. Please post unedited logs to the list so we can help you. Provide any relevant information as well. - Original Message - From: "Han Lim" [EMAIL PROTECTED] To: [EMAIL PROTECTED] Cc: [EMAIL PROTECTED] Sent: Tuesday, April 03, 2001 10:28 PM Subject: Qmailadmin and VpopmailDear Inter7.com I have a problem in qmailadmin which everytime I enter my postmaster password, it's always said 'invalid password'. I'm sure the password I type is totally persist with the one that I'm type when I created a virtual domain. Another problem is vqsignup, why I couldn't signup and it always return 'error while processing...'. Everything is set up correctly. When I'm not install vpopmail in my system, why when I trying to send mail to [EMAIL PROTECTED], it was returned 'address not found' error. Does I must install vpopmail to make [EMAIL PROTECTED] valid? Thanks. regards, Steve == Get Your Lifetime Free Email Only @ StevenCen.com _ == Get Your Lifetime Free Email Only @ StevenCen.com _
Re: How to transfer accounts datas to a new machine
just tar up the ~vpopmail dir and the /var/qmail dir (or at least the relevant control and user files) restore on the new box - Original Message - From: [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Tuesday, April 03, 2001 1:27 AM Subject: How to transfer accounts datas to a new machine Hello everybody, These days I'm configing a new mail server for our company. Our old mail server: FreeBSD+Qmail+Vpopmail+Sqwebmail. The old server is not configed by me and I don't know how I can transfer all the user accounts and user's datas from the olde machine to the new machine. Who can give me a solution. Thank you very much. sliao [EMAIL PROTECTED] -- 21CN http://www.21cn.com Thank you for using 21cn.com Email system
Re: Qmailadmin and Vpopmail
Sounds like you are having some configuration issues. How did you setup qmailadmin, vpopmail, and vqsignup? from source? using mysql? cbd? etc... I am sure everything couldn't be setup correctly if things are not working. try checking your logs for more info. It would be nice to see some logs, and how your setup your qmail to return the 'address not found' error. Please post unedited logs to the list so we can help you. Provide any relevant information as well. - Original Message - From: "Han Lim" [EMAIL PROTECTED] To: [EMAIL PROTECTED] Cc: [EMAIL PROTECTED] Sent: Tuesday, April 03, 2001 10:28 PM Subject: Qmailadmin and Vpopmail Dear Inter7.com I have a problem in qmailadmin which everytime I enter my postmaster password, it's always said 'invalid password'. I'm sure the password I type is totally persist with the one that I'm type when I created a virtual domain. Another problem is vqsignup, why I couldn't signup and it always return 'error while processing...'. Everything is set up correctly. When I'm not install vpopmail in my system, why when I trying to send mail to [EMAIL PROTECTED], it was returned 'address not found' error. Does I must install vpopmail to make [EMAIL PROTECTED] valid? Thanks. regards, Steve == Get Your Lifetime Free Email Only @ StevenCen.com _
Re: Maildrop + Sqwebmail
MAILDIRFILTER should be the path to the filter, not to the maildrop program. - Original Message - From: "Ninad Gupte" [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Sunday, April 01, 2001 11:48 AM Subject: Maildrop + Sqwebmail Hello, I have a setup of vpopmail and sqwebmail. I have installed maildrop and created maildirfilterconfig in /usr/local/share/sqwebmail The contents of the file are : MAILDIRFILTER=/usr/local/bin/maildrop MAILDIR=./Maildir/ My /var/qmail/rc reads as follows: #!/bin/sh exec env - PATH="/var/qmail/bin:$PATH" \ qmail-start '|dot-forward .forward | /usr/local/bin/maildrop ./Maildir/' When I select `Edit Mail Filters' from Sqwebmail, I get an error message: "ERROR: You have an incompatible existing mail filter, contact your system administrator" I am not sure if my config file above is right. Can someone tell me what mistake am I doing? Thanks, Ninad
RE: vpopadmin
Any chance some files are going to be released on this? I would love to take a look at it. -Original Message- From: Waldorf [mailto:[EMAIL PROTECTED]] Sent: Saturday, February 24, 2001 5:54 PM To: [EMAIL PROTECTED] Subject: vpopadmin Very neat! go to souceforge and have a look at 'vpopadmin'. I want to implement the ezmlm/idx support but am involved too much in job related things currently. so far, 'vpopadmin' looks brilliant and works fine. when ezmlm/idx support and some minor enhancements are added, this is a neat administration package for vpopmail. What about to port qmailadmin to php? why ? vpopadmin is php based and much .. er .. whatever :-) Holger
RE: pop3 server for virtual domains
You only need the pop3d to run once to manage all of your domains, each separate domain logs in as [EMAIL PROTECTED] Or if you have your DNS setup properly as described in the docs they can just login with user. -Original Message- From: Revina [mailto:[EMAIL PROTECTED]] Sent: Thursday, March 15, 2001 4:51 AM To: vpopmail Subject: pop3 server for virtual domains I've installed qmail 1.03 + vpopmail 4.9.8 + sqwebmail on freebsd 3.3, so I repalced (of /etc/inetd.conf) : pop3 stream tcp nowait root /usr/local/libexec/popper popper with pop3 stream tcp nowait root /var/qmail/bin/qmail-popup qmail-popup 1ST.VDOMAIN /home/vpopmail/bin/vchkpw /var/qmail/bin/qmail-pop3d Maildir it works fine for [EMAIL PROTECTED] how do I setup pop3 (inetd.conf) for other domain (2ND.VDOMAIN, etc) ? regards --revina-- cherbon.net FREE webmail http://www.cherbon.net powered managed by : http://crb.elga.net.id _
RE: Using pop to get email from sqwebmail
sqwebmail does not use pop, it is strictly a web based email server. you are quite confused. -Original Message- From: Lee Lewis [mailto:[EMAIL PROTECTED]] Sent: Friday, March 09, 2001 5:23 PM To: [EMAIL PROTECTED] Subject: Using pop to get email from sqwebmail Can anyone tell me why pop does not respond in SQwebmail and what to check for? When you use webmail everything is great. But try and get your email from outside you get the below. Unable to connect to server.(account: 'domain.com'POP3 Server: 'domain.com', Error Number 0x800ccc0e) This is starting to happen alot. I can't figure it out. Please, Please, Please Help.
RE: client login problem
It always appends the remote ip, thats for logging purposes. -Original Message- From: matthieu foillard [mailto:[EMAIL PROTECTED]] Sent: Monday, March 05, 2001 11:35 AM To: [EMAIL PROTECTED] Subject: Re: client login problem On Mon, Mar 05, 2001 at 05:21:14PM +0100, Nicolay Hoey wrote: Hello... Mon, 5 Mar 2001 17:09:01 +0100 skrev matthieu foillard [EMAIL PROTECTED] : On Mon, Mar 05, 2001 at 04:02:52PM -0800, celano e5net wrote: try to use this as user: user%domain.com ok : telnet 212.83.156.162 Trying 212.83.156.162... Connected to 212.83.156.162. Escape character is '^]'. +OK [EMAIL PROTECTED] user matthieu%taktile.net +OK pass _mypass_ -ERR authorization failed Connection closed by foreign host. on the pop box : Mar 5 17:06:42 taktile3 vpopmail[16020]: vchkpw: No user found [EMAIL PROTECTED]:193.253.241.178 can you help a little bit again ? Are you shure the the user exsists on the server ? sure! that's my own user : # cat /etc/passwd ... matthieu:x:1000:1000:Matthieu Foillard,,,:/home/matthieu:/bin/bash ... The problem is that it append the remote ip to the username. for more information here is the script i did to startup qmail* on a Debian box : #!/bin/sh DAEMON=/var/qmail/bin/qmail-smtpd USERMAX=400 PATH="/var/qmail/bin:/usr/local/bin:$PATH" test -x $DAEMON || exit 0 case "$1" in start) echo -n "Starting qmail-smtpd ($USERMAX simultaneous users)" start-stop-daemon -S -b -x /usr/local/bin/tcpserver \ -m -p /var/run/smptd.pid -- \ -c $USERMAX -v -u 71 -g 71 0 smtp qmail-smtpd \ 21 | splogger smptd 3 echo "." echo -n "Starting qmail-pop3d" start-stop-daemon -S -b -x /usr/local/bin/tcpserver \ -m -p /var/run/pop3d.pid -- \ -v -u 71 -g 71 -H -R 0 qmail-popup taktile3.taktile.net \ | L_ i try both taktile3.taktile.net taktile.net and it seems not to solve the problem /var/qmail/vpopmail/bin/vchkpw qmail-pop3d Maildir echo "." echo -n "Starting qmail-send" start-stop-daemon -S -b -x /var/qmail/rc \ -m -p /var/run/qmail.pid echo "." ;; stop) echo -n "Stopping qmail" start-stop-daemon -K -p /var/run/smptd.pid start-stop-daemon -K -p /var/run/pop3d.pid start-stop-daemon -K -p /var/run/qmail.pid echo "." ;; reload) echo -n "Reloading qmail-send configuration" start-stop-daemon -p /var/run/qmail.pid -s HUP -K echo "." ;; rebuild-relaying) echo -n "Rebuilding relaying auth db (/etc/tcp.smtp)" tcprules /etc/tcp.smtp.cdb /etc/tcp.smtp.tmp /etc/tcp.smtp tcprules /etc/tcp.pop3.cdb /etc/tcp.pop3.tmp /etc/tcp.pop3 echo "." ;; force-reload|restart) sh $0 stop sleep 1 sh $0 start ;; *) echo "Usage: $0 {start|stop|restart|force-reload|reload|rebuild-relaying}" exit 1 ;; esac exit 0 after this i have : # ps aux ... ... qmaild 16008 0.0 0.0 1228 372 ?S17:04 0:00 /usr/local/bin/tcpserver -v -u 71 -g 71 -H -R 0 qmail-popup taktile3.taktile.net /var/qmail/vpopmail/bin/vchkpw qmail-pop3d Maildir vpopmail was configure like this : ./configure \ --enable-roaming-users=y \ --prefix=/var/qmail/vpopmail \ --libdir=/usr/lib thanks again for your help. -- Matthieu Foillard [EMAIL PROTECTED] [EMAIL PROTECTED] taktile/8 rue Euryale Dehaynin/75019 PARIS Tel 01 40 18 42 53 GSM 06 86 57 41 70 --
Re: qmailloganalyzer 0.6
The commands I posted will not erase your logs, my only guess is that you are still doing something wrong. - Original Message - From: [EMAIL PROTECTED] To: "Tim Hunter" [EMAIL PROTECTED] Cc: [EMAIL PROTECTED]; [EMAIL PROTECTED] Sent: Wednesday, February 21, 2001 5:07 PM Subject: RE: qmailloganalyzer 0.6 Hi Tim; I tried the changes you suggested and now I've lost another 2 days of logs. I'm not sure why I'm having su much trouble with this program. Anyone else have any suggestions on how to make this work? Still getting gzip complaining about the archive, and still not getting any data being processed into the html files. Once again, is there a way to re-run this on the archived logs? I need a way to get these stats. Thanks again for your help, Tren. =-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- - Tren Blackburn - Ownermailto:[EMAIL PROTECTED] = = End of Time Networks http://www.theendoftime.net - - (403) 269-2122 = =-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- On Tue, 20 Feb 2001, Tim Hunter wrote: I had similar problems but it turned out I was executing it wrong. I got the following tips from the author: -s and -t usually do not take arguments. make sure that tailocal is in your path If you use daemontools0.70 you could do the following ln -s /source/path/to/tai64nlocal /usr/local/bin/tailocal then run the script with ./qmailloganalyzer.pl -s -t -d ./archive Those parameters were ones I was explicitly trying to use, probably you want different ones. I would think this is the same for you since my errors looked the same and I didn't end up with any data either. -- Tim -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] Sent: Tuesday, February 20, 2001 11:37 AM To: Jrgen Hoffmann Cc: [EMAIL PROTECTED]; [EMAIL PROTECTED] Subject: Re: qmailloganalyzer 0.6 Hi; I've tried using this program and must admit am getting frustrated. I've now lost 5 days of logs from the script. I get this error: [root@theendoftime qmail]# ./qmailloganalyzer.pl proceeding [EMAIL PROTECTED] zcat: ./qmail-20010220.gz: unexpected end of file zcat: ./qmail-20010220.gz: unexpected end of file zcat: ./qmail-20010220.gz: unexpected end of file zcat: ./qmail-20010220.gz: unexpected end of file zcat: ./qmail-20010220.gz: unexpected end of file zcat: ./qmail-20010220.gz: unexpected end of file zcat: ./qmail-20010220.gz: unexpected end of file zcat: ./qmail-20010220.gz: unexpected end of file zcat: ./qmail-20010220.gz: unexpected end of file And it proceeds to write web stats with no information. Check http://www.theendoftime.net/maillog. It worked perfectly for the first few days, but now I can't get anything going. Is it possible to re-run this over the gziped logs? Regards, Tren. P.S. I downloaded it from your site again, and that version did not have the modified pipe line reading from file descriptor 5 that you had me check for. Can you please e-mail me the latest version as it doesn't seem to be on your site. Regards, Tren. =-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- - Tren Blackburn - Ownermailto:[EMAIL PROTECTED] = = End of Time Networks http://www.theendoftime.net - - (403) 269-2122 = =-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- On Thu, 15 Feb 2001, [iso-8859-1] Jrgen Hoffmann wrote: Hi all, I have released qmailloganalyzer 0.6 today. it is available on qmaillog.byteaction.de kind regards Juergen Hoffmann
RE: qmailloganalyzer 0.6
I had similar problems but it turned out I was executing it wrong. I got the following tips from the author: -s and -t usually do not take arguments. make sure that tailocal is in your path If you use daemontools0.70 you could do the following ln -s /source/path/to/tai64nlocal /usr/local/bin/tailocal then run the script with ./qmailloganalyzer.pl -s -t -d ./archive Those parameters were ones I was explicitly trying to use, probably you want different ones. I would think this is the same for you since my errors looked the same and I didn't end up with any data either. -- Tim -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] Sent: Tuesday, February 20, 2001 11:37 AM To: Jrgen Hoffmann Cc: [EMAIL PROTECTED]; [EMAIL PROTECTED] Subject: Re: qmailloganalyzer 0.6 Hi; I've tried using this program and must admit am getting frustrated. I've now lost 5 days of logs from the script. I get this error: [root@theendoftime qmail]# ./qmailloganalyzer.pl proceeding [EMAIL PROTECTED] zcat: ./qmail-20010220.gz: unexpected end of file zcat: ./qmail-20010220.gz: unexpected end of file zcat: ./qmail-20010220.gz: unexpected end of file zcat: ./qmail-20010220.gz: unexpected end of file zcat: ./qmail-20010220.gz: unexpected end of file zcat: ./qmail-20010220.gz: unexpected end of file zcat: ./qmail-20010220.gz: unexpected end of file zcat: ./qmail-20010220.gz: unexpected end of file zcat: ./qmail-20010220.gz: unexpected end of file And it proceeds to write web stats with no information. Check http://www.theendoftime.net/maillog. It worked perfectly for the first few days, but now I can't get anything going. Is it possible to re-run this over the gziped logs? Regards, Tren. P.S. I downloaded it from your site again, and that version did not have the modified pipe line reading from file descriptor 5 that you had me check for. Can you please e-mail me the latest version as it doesn't seem to be on your site. Regards, Tren. =-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- - Tren Blackburn - Ownermailto:[EMAIL PROTECTED] = = End of Time Networks http://www.theendoftime.net - - (403) 269-2122 = =-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- On Thu, 15 Feb 2001, [iso-8859-1] Jrgen Hoffmann wrote: Hi all, I have released qmailloganalyzer 0.6 today. it is available on qmaillog.byteaction.de kind regards Juergen Hoffmann
RE: vpopmail
I would suggest installing vpopmail from tarball, since most people here have never used an rpm of vpopmail. You might want to ask the maintainer of the vpopmail rpm you found about your specific questions. I know that the uid/gid is explicitly stored in the executable for speed reasons, maybe that is your problem? I don't really know. Looking at that ls you posted, my guess would be you need to make your vpopmail user uid 521 and your vchkpw gid 521. But of course thats just a guess. -Original Message- From: Mate Wierdl [mailto:[EMAIL PROTECTED]] Sent: Monday, February 19, 2001 11:54 AM To: [EMAIL PROTECTED] Subject: Re: vpopmail [Peter G. on the qmail list says:] 10-to-1 says `id -u vpopmail` returns 521 Do these outputs look OK to everybody: # /home/vpopmail/bin/vadddomain a.b.c Please enter password for postmaster: enter password again: # ls -ld ~vpopmail/domains/a.b.c/ drwx--3 521 521 4096 Feb 19 04:50 /home/vpopmail/domains/a.b.c// # cat /var/qmail/users/assign +a.b.c-:a.b.c:521:521:/home/vpopmail/domains/a.b.c:-:: . # id -u vpopmail 505 I have # rpm -q vpopmail vpopmail-4.9.6-1 Thx Mate
Re: Qmail + Vpopmail Windows 2000
WHAT!? looking at the calendar I can see its not april 1st yet. I fail to see the point here, no matter how reliable qmail+vpopmail is, its not going to stand a chance when paired up with win2k even if you do manage to get it installed. - Original Message - From: "Christopher Tarricone" [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Saturday, February 10, 2001 9:22 AM Subject: Qmail + Vpopmail Windows 2000 I have successfully avoided using Windows 2K Server in our environment. Unfortunately I can hold out not longer. Has anyone successfully installed Qmail Vpopmail under NT? -- Christopher Tarricone PDS, Inc. E-mail [EMAIL PROTECTED] phone860.450.1737 fax 860.450.1724 * pds2k.com Business Internet Hookability with an Attitude We rock the Net! -- The only secure computer is one that's unplugged, locked in a safe, and buried 20 feet under the ground in a secret location... and I'm not even too sure about that one"--Dennis Huges, FBI.
RE: qmailloganalyzer
Because we all use qmail and most of us like a pretty useful way to view stats and logs. Don't flame the guy, I applaud him. I don't know how many times I have heard complaints about not having a good log analyzer that works with vpopmail, or even qmail at all for that matter. -Original Message- From: Kari Suomela [mailto:[EMAIL PROTECTED]] Sent: Thursday, February 08, 2001 4:33 PM To: [EMAIL PROTECTED] Subject: qmailloganalyzer Thursday February 08 2001 19:51, =?iso-8859-1?Q?J=FCrgen_Hoffmann?= wrote to All: iH This is a multi-part message in MIME format. iH Hi all, iH I know this might not be the right list, but since I am using iH multilog So why post this crap!? KS
API Question
The function in vpopmail.h version 4.9.8: int vadddomain( char *domain, char *dir, int uid, int gid); what does dir denote? is it the domain's main directory? for example, if my code was like: ret = vadddomain(dom, something, VPOPMAILUID, VPOPMAILGID); what should I have instead of "something"? Any help is greatly appreciated. Tim
vchkpw lacking authentication security
Dear Inter7 Developer: I recently discovered the following security drawback in vpopmail with vchkpw authentication: No matter how long you set the password to when adding a new user, only the first 8 characters of the password are used. So for example, if I do: ./vadduser [EMAIL PROTECTED] this-is-hard-to-guess-234234235-23423 and then I try to login to my email as user "test" and password "this-is-", it would let me in. As you may already know, any password below 8 characters is considered insecure, even if it was a combination of letters, numbers, and special characters. In other words, Standard DES crypto is used :( Best Regards, Tamer Hassan
RE: a little help?
for your virtual users login as [EMAIL PROTECTED] Depending on how you compiled vpopmail you logging is done through syslog, probably into /var/log/mail* -Original Message- From: Richard Updegrove [mailto:[EMAIL PROTECTED]] Sent: Friday, December 22, 2000 4:10 PM To: [EMAIL PROTECTED] Subject: a little help? Hello, Thank you for all the software inter7.com. I would like some helpful feedback/hints here please. I also have a few questions : ) I have been experimenting with adding a pop user to a virtual domain with qmailadmin. I realize this is the vchkpw list but this is mainly what I seem to be having trouble with is the authentication of the newly created pop user. I have included some qmail and vpopmail information in anticipation of being asked for it. I have been using qmail a la LWQ for a few months but I was receiving mail for 1 domain. Yesterday I installed qmailadmin which led me to this point here. The good news is that e-mail appears to be working. The bad news is that I have some questions, (mainly because I can't actually retrieve the mail that is being accepted ok by the server as you will see in the log below). Please keep in mind that I am somewhat of an idiot and running a mail server as well as using a discussion list are very new to me. The user [EMAIL PROTECTED] is the pop user created on myvirtualdomain.cc using qmailadmin. The virtualdomain.cc was created with ./vadddomain The log: @40003a42e8ee33ccf2bc new msg 30953 @40003a42e8ee33cecb64 info msg 30953: bytes 2256 from [EMAIL PROTECTED] qp 488 uid 502 @40003a42e8ee37f50514 starting delivery 6: msg 30953 to local [EMAIL PROTECTED] @40003a42e8ee37f854bc status: local 1/10 remote 0/20 @40003a42e8ef0a3c79cc delivery 6: success: did_0+0+1/ @40003a42e8ef0a3ebfd4 status: local 0/10 remote 0/20 @40003a42e8ef0a4061cc end msg 30953 Hopefully that will establish that qmail and qmailadmin are working. If not, I apoligize for being such a stupid person. Please show me the error of my ways. Note: I am used to seeing [EMAIL PROTECTED] on the incoming mail in the logs. Now that I have started using the virtual domain added with ./vadddomain and ./vadduser I see them coming in as [EMAIL PROTECTED] which means its working ok. (right? just looking for validation here I know its qmail related and not vchkpw related ) The part where I got confused initially was, "if I had a user with the same name on both domains how would I differentiate between them"? After watching the logs I assumed that I authenticate with the name my virtualdomain.cc-rick and the password I made with the command ./vadduser and that vpopmail would sort it out and retrieve mail from the Maildir it created in its virtual domain folder. I guess the confusing part was that I made the name "rick" not "myvirtualdomain.cc-rick". The problem is neither name work with the password created with ./vadduser or with the password changed with qmailadmin when attempting to retrieve mail or authenticate when telneting to the port 110 on the mail server. I can log on to qmailadmin using the postmaster name and password created with ./vadddomain then I can add and delete the users and use the other various functions. However, I can not seem to find any logging of the authentication failures (or successes in the log on to qmailadmin case) when attempting to retrieve mail for [EMAIL PROTECTED] I have tried both usernames "rick" and "myvirtualdomain.cc-rick" with the newly created password. [EMAIL PROTECTED] can still get mail with the "rick" and "oldpassword" Since I can add domains and users, log onto qmailadmin with the postmaster password I create with the commands: ./vadddomain and ./vadduser the logical question would be "Does qmailadmin use /home/vpopmail/bin/vchkpw for authentication"? If so, "why does it allow the postmaster to log on to the qmailadmin, but not authenticate the pop user I created"? I guess my questions are: "Why can't I authenticate the pop user I created [EMAIL PROTECTED]"? probably answered by the next question, "How do I retrieve mail for the pop user I created [EMAIL PROTECTED]"? "Where is this "stuff" logged"? Note that the old user names and passwords still authenticate alright with the qmail startup script listed below using vchkpw qmail-pop3d Also note that I tried to add mydomain.net to the virtuals yesterday but ended up with problems which I will not get into here. My point is that 1 domain is not yet added with ./vadddomain but I would like to eventually manage both domains with qmailadmin using cdb authentication via vchkpw for the pop users (I think thats what I want anyway, please correct me if I am wrong) . Here is some potentially useful info: [root@mail /root]# telnet localhost 110 Trying 127.0.0.1... Connected to localhost.localdomain. Escape character is '^]'. +OK [EMAIL PROTECTED] user myvirtualdomain.cc-rick +OK pass therealpassword -ERR authorization failed Connection closed by foreign host.
RE: Baffled newbie
please post the line you are using to start your pop server. also post any logs of attempted logins. -Original Message- From: Alex Rhodes [mailto:[EMAIL PROTECTED]] Sent: Tuesday, December 19, 2000 5:26 PM To: [EMAIL PROTECTED] Subject: Baffled newbie Okay, I cry uncle. I installed qmail, which works fine. I've installed vpopmail and qmailadmin. Pertinent versions: - qmail 1.03+patches-14 - vpopmail-4.9.4 - qmailadmin-0.38 - ucspi-tcp-088-1 (if it matters) On the surface everything *looks* fine. I can log in with a real domain no problem. I can create, delete, etc. no problem with qmailadmin for virtual accounts. Everything appears in the proper vpopmail directories. I can send email to a virtual domain email address and all is well - the mail gets properly delivered to the roght directories. But I just can't seem to get a virtual domain email address to password authentiacte properly in a POP mail reader. I use the user%vdomain form and the password just won't authentcate. Same thing with user%vdomain@rdomain. Any ideas on what (obvious) things I'm missing here? -- |_ Oo\ Alexander J. Rhodes| Metis Internet Technologies [EMAIL PROTECTED]| http://www.metisit.com
Re: slowly problem
it is most certainly a DNS issue. - Original Message - From: "Terry BD7NQ" [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Tuesday, December 12, 2000 4:41 PM Subject: slowly problem My mail server always running very fast, but these days got a strange situation, the mail system response very slow, it seems it have to waitting a long time to start to process a connection, but after it check the password, the can transfer the mail very fast. The problem is: when the pop3 or smtp client program connect to the mail server, the mail server will response very slowness, the report message is "have connected...", the hold here, client program will report "connect time out" error message, then contiue try waitting, about several minutes, the mail server start to response, then all the mail in mailbox can be download very fast. Also we can when use "telnet hostip 25" or "telnet hostip 110" will get this problem. My mail server is: Solaris 8 for intel, Qmail 1.03 tcpserver and vpopchk. Any suggestion is welcome, many thanks! Terry Liang (BD7NQ) [EMAIL PROTECTED] [EMAIL PROTECTED]
RE: upgrading the mails and password from one pc to another
I just did this a few weeks ago. tar and gzip your vpopmail dir tar and gzip your qmail dir copy all the relevant info for qmail and vpopmail from /etc/passwd and /etc/shadow save them somewhere to be transferred to the new computer create the qmail and vpopmail users on the new box with the same uid/gid if possible tar xvzf each of dirs to their proper locations run make setup check from the qmail dir reinstall the latest versions of vpopmail, qmailadmin, and sqwebmail Be Happy. I don't think vpopmail/qmail supports oracle yet, I would like it if it did eventually but don't need it now. Probably wouldn't be too hard to port from mysql. -Original Message-From: vinient [mailto:[EMAIL PROTECTED]]Sent: Wednesday, December 06, 2000 12:29 AMTo: [EMAIL PROTECTED]Subject: upgrading the mails and password from one pc to another hi all did any one know how do we migtrate from one pc to another pc with latest vpopmail and qmail and sqwebmail my setup is qmail vpopmail qmailadmin sqwebmail now iam planning to upgrade the server and move the users to new server with out loosing data and passwords. second how do i use oracle server from diferent PC and connect vpopmail for creating users and take authentication thanks for advance help