Re: [vchkpw] qmail+vpopmail smtp-auth for roaming-users]
IMAP-before-SMTP is possible when using Courier-IMAP v3.x. However it only works when configured --with-authvchkpw --without-authdaemon. When running --without-authdaemon, Courier-IMAP's authvchkpw code is able to make use of vpopmail's roaming user functions to allow IMAP-before-SMTP functionality. IMAP-before-SMTP is not possible when Courier-IMAP has been complied --with-authdaemon, because in this mode the user's IP address is not made available to the authvchkpw code (via the TCPREMOTEIP env var). Also note that in Courier-IMAP v4.x and later, --without-authdaemon functionality is no longer available thus preventing IMAP-before-SMTP from working. Hope that helps! Michael. - Original Message - From: Otto Rodusek (AP-SGP) [EMAIL PROTECTED] To: vchkpw@inter7.com Sent: Thursday, February 08, 2007 8:04 PM Subject: [vchkpw] qmail+vpopmail smtp-auth for roaming-users] Hi, I used Bill Schupp's Qmail Toaster to install the following: autorespond-2.0.4 - courier-authlib-0.58 - courier-imap-4.1.2 - netqmail-1.05 - toaster-scripts-0.8.1 - ucspi-tcp-0.88 Everything works as expected except for the fact that open-smtp is NOT being updated by courier-imap upon login. Pop3 logins authenticate and update the open-smtp properly. I googled and read practically all the info on this topic, but it seems that nothing I do will get courier-imap to update the open-smtp file!! I did do:: export CFLAGS=-DHAVE_OPEN_SMTP_RELAY ./configure --with-authvchkpw --without-authdaemon My tcp.smtp contains: 127.:allow,RELAYCLIENT= 192.168.0.:allow,RELAYCLIENT= Have I missed something out? Any ideas or pointers will be welcome. Much thanks and rgds. Otto Rodusek. -- No virus found in this incoming message. Checked by AVG Free Edition. Version: 7.5.432 / Virus Database: 268.17.30/674 - Release Date: 7/02/2007 3:33 PM
Re: [vchkpw] qmail+vpopmail smtp-auth for roaming-users]
Hi Micheal, Thanks for the reply. Indeed, I did use the --with-authvchkpw --without-authdaemon but it made no difference. If I understand your email correctly, since I'm using courier-imap 4.1.2 it is impossible for imap authentication to update the open-smtp file?? Hence it is IMPOSSIBLE for any roaming users to send mail?? So what's the solution (if any) - is it possible that ALL users who use courier-imap 4++ are unable to send email and this is acceptable to them?? Am I missing something?? Again thanks for your reply. Best regards. Otto. PS: Does your email imply that I need to downgrade my courier-imap down to v3.x to allow remote users to be able to send mail?? Michael Bowe wrote: IMAP-before-SMTP is possible when using Courier-IMAP v3.x. However it only works when configured --with-authvchkpw --without-authdaemon. When running --without-authdaemon, Courier-IMAP's authvchkpw code is able to make use of vpopmail's roaming user functions to allow IMAP-before-SMTP functionality. IMAP-before-SMTP is not possible when Courier-IMAP has been complied --with-authdaemon, because in this mode the user's IP address is not made available to the authvchkpw code (via the TCPREMOTEIP env var). Also note that in Courier-IMAP v4.x and later, --without-authdaemon functionality is no longer available thus preventing IMAP-before-SMTP from working. Hope that helps! Michael. - Original Message - From: Otto Rodusek (AP-SGP) [EMAIL PROTECTED] To: vchkpw@inter7.com Sent: Thursday, February 08, 2007 8:04 PM Subject: [vchkpw] qmail+vpopmail smtp-auth for roaming-users] Hi, I used Bill Schupp's Qmail Toaster to install the following: autorespond-2.0.4 - courier-authlib-0.58 - courier-imap-4.1.2 - netqmail-1.05 - toaster-scripts-0.8.1 - ucspi-tcp-0.88 Everything works as expected except for the fact that open-smtp is NOT being updated by courier-imap upon login. Pop3 logins authenticate and update the open-smtp properly. I googled and read practically all the info on this topic, but it seems that nothing I do will get courier-imap to update the open-smtp file!! I did do:: export CFLAGS=-DHAVE_OPEN_SMTP_RELAY ./configure --with-authvchkpw --without-authdaemon My tcp.smtp contains: 127.:allow,RELAYCLIENT= 192.168.0.:allow,RELAYCLIENT= Have I missed something out? Any ideas or pointers will be welcome. Much thanks and rgds. Otto Rodusek. -- No virus found in this incoming message. Checked by AVG Free Edition. Version: 7.5.432 / Virus Database: 268.17.30/674 - Release Date: 7/02/2007 3:33 PM
Re: [vchkpw] qmail+vpopmail smtp-auth for roaming-users]
Hi Micheal, Thanks for the reply. Indeed, I did use the --with-authvchkpw --without-authdaemon but it made no difference. If I understand your email correctly, since I'm using courier-imap 4.1.2 it is impossible for imap authentication to update the open-smtp file?? Hence it is IMPOSSIBLE for any roaming users to send mail?? So what's the solution (if any) - is it possible that ALL users who use courier-imap 4++ are unable to send email and this is acceptable to them?? Am I missing something?? The solution is simple - use SMTP-AUTH instead of imap-before-smtp. If they can authenticate via IMAP, using SMTP-AUTH-patched qmail can also use vchkpw to authenticate against the vpopmail database. I understand the desire to make things easy for the users by letting them use imap-before-smtp, but it's really not the best way to do things these days... If you really, truely must use imap-before-smtp, use a different IMAP server. Josh -- Joshua Megerman SJGames MIB #5273 - OGRE AI Testing Division You can't win; You can't break even; You can't even quit the game. - Layman's translation of the Laws of Thermodynamics [EMAIL PROTECTED]
Re: [vchkpw] qmail+vpopmail smtp-auth for roaming-users]
Otto Rodusek (AP-SGP) wrote: Hi Micheal, Thanks for the reply. Indeed, I did use the --with-authvchkpw --without-authdaemon but it made no difference. If I understand your email correctly, since I'm using courier-imap 4.1.2 it is impossible for imap authentication to update the open-smtp file?? I believe that is correct. Courier no longer provides the IP address needed to authenticate roaming users. Hence it is IMPOSSIBLE for any roaming users to send mail?? So what's the solution (if any) - is it possible that ALL users who use courier-imap 4++ are unable to send email and this is acceptable to them?? SMTP Auth. Have the roaming users login to smtp by adding a user name and password to the outgoing mail server configuration of their browser, and enable that function. (The same one they use to receive mail) Since you are using Bill Shupp's toaster, it should already be installed on your server.
Re: [vchkpw] qmail+vpopmail smtp-auth for roaming-users]
Rick Widmer([EMAIL PROTECTED])@Thu, Feb 08, 2007 at 07:49:31AM -0700: Otto Rodusek (AP-SGP) wrote: Hi Micheal, Thanks for the reply. Indeed, I did use the --with-authvchkpw --without-authdaemon but it made no difference. If I understand your email correctly, since I'm using courier-imap 4.1.2 it is impossible for imap authentication to update the open-smtp file?? I believe that is correct. Courier no longer provides the IP address needed to authenticate roaming users. Hence it is IMPOSSIBLE for any roaming users to send mail?? So what's the solution (if any) - is it possible that ALL users who use courier-imap 4++ are unable to send email and this is acceptable to them?? SMTP Auth. Have the roaming users login to smtp by adding a user name and password to the outgoing mail server configuration of their browser, and enable that function. (The same one they use to receive mail) Since you are using Bill Shupp's toaster, it should already be installed on your server. SMTP Auth is the only way to go...I've tried every other method and they just don't work well. -- ~Allie D. The chief cause of problems is solutions. -- Eric Sevareid
Re: [vchkpw] qmail+vpopmail smtp-auth for roaming-users]
Hi Joshua, Thanks for the reply. The majority of my users are using pop3 - however I have a handful of senior execs that need/want to use imap (this is tied to our webmail wapmail interfaces). This cutomer was an existing user of qmail/vpopmail/courier (installed in 2003) however we just recently went through a major upgrade. The old system worked quite well (with open-smtp) for both pop3 and imap users. It appears from Micheal Bowe's reply that courier-imap v4.xx no longer supports this (but apparentl;y 3.0.8 does) - so I guess I will need to try and install the older version of courier-imap - unless I can find a diif but easy solution. Rgds. Otto. Joshua Megerman wrote: Hi Micheal, Thanks for the reply. Indeed, I did use the --with-authvchkpw --without-authdaemon but it made no difference. If I understand your email correctly, since I'm using courier-imap 4.1.2 it is impossible for imap authentication to update the open-smtp file?? Hence it is IMPOSSIBLE for any roaming users to send mail?? So what's the solution (if any) - is it possible that ALL users who use courier-imap 4++ are unable to send email and this is acceptable to them?? Am I missing something?? The solution is simple - use SMTP-AUTH instead of imap-before-smtp. If they can authenticate via IMAP, using SMTP-AUTH-patched qmail can also use vchkpw to authenticate against the vpopmail database. I understand the desire to make things easy for the users by letting them use imap-before-smtp, but it's really not the best way to do things these days... If you really, truely must use imap-before-smtp, use a different IMAP server. Josh
Re: [vchkpw] qmail+vpopmail smtp-auth for roaming-users]
Hi All, Much thanks for all the helpful replies. I have reverted back to courier-imap v3.0.8, and all is now working as expected - open-smtp is being updated properly by both imap and pop3. Again thanks for quick replies and for pointing me in the right direction to resolve this!! Best regards to all. Otto. Rick Widmer wrote: Otto Rodusek (AP-SGP) wrote: Hi Micheal, Thanks for the reply. Indeed, I did use the --with-authvchkpw --without-authdaemon but it made no difference. If I understand your email correctly, since I'm using courier-imap 4.1.2 it is impossible for imap authentication to update the open-smtp file?? I believe that is correct. Courier no longer provides the IP address needed to authenticate roaming users. Hence it is IMPOSSIBLE for any roaming users to send mail?? So what's the solution (if any) - is it possible that ALL users who use courier-imap 4++ are unable to send email and this is acceptable to them?? SMTP Auth. Have the roaming users login to smtp by adding a user name and password to the outgoing mail server configuration of their browser, and enable that function. (The same one they use to receive mail) Since you are using Bill Shupp's toaster, it should already be installed on your server.
Re: [vchkpw] qmail+vpopmail smtp-auth for roaming-users
did u apply the patch to qmail? check shupp.org Remo Winanjaya - CBN wrote: Dear Expert, I need help for setting up qmail+vpopmail smtp-auth with roaming-users I had configured vpopmail with --enable-roaming-users= y option my /var/qmail/supervise/qmail-smtpd/run as follow: #!/bin/sh PATH=$PATH:/usr/local/bin:/var/qmail/bin export PATH VPOPMAILUID=`id -u vpopmail` VPOPMAILGID=`id -g vpopmail` MAXSMTPD=`cat /var/qmail/control/concurrencyincoming` exec /usr/local/bin/softlimit -m 500 \ /usr/local/bin/tcpserver -H -R -v -x /home/vpopmail/etc/tcp.smtp.cdb -c $MAXSMT PD -u $VPOPMAILUID -g $VPOPMAILGID 0 25 qmail-smtpd mail2.lippogeneral.com /home/vpopmail/bin/vchkpw /bin/true 21 and my /home/vpopmail/etc/tcp.smtp below: :allow,RBLSMTPD=,REQUIREAUTH= why .. I still not able to relay .. see below message: The message could not be sent because one of the recipients was rejected by the server. The rejected e-mail address was '[EMAIL PROTECTED]'. Subject 'test', Account: 'mail.lippogeneral.com', Server: 'mail2.lippogeneral.com', Protocol: SMTP, Server Response: '553 sorry, that domain isn't in my list of allowed rcpthosts (#5.7.1)', Port: 25, Secure(SSL): No, Server Error: 553, Error Number: 0x800CCC79 *** Our outgoing mail has been scanned by MSS. ***-*** !DSPAM:45b5b3dd111671804284693!
RE: [vchkpw] qmail+vpopmail smtp-auth for roaming-users
Your /var/qmail/supervise/qmail-smtpd/run file looks fine. Add the following line in your /etc/tcp.smtp 127.:allow,RELAYCLIENT= and run qmailctl cdb then try... Regards, Manish Jain (Sr. Engineer - IDC) Hughes Communications India Ltd. Plot-1, Sector-18, Electronic City, Gurgaon. Email: [EMAIL PROTECTED] Ph. : 91 124 3072681 91 124 3072589 -Original Message- From: Winanjaya - CBN [mailto:[EMAIL PROTECTED] Sent: Tuesday, January 23, 2007 12:38 PM To: vchkpw@inter7.com Subject: [vchkpw] qmail+vpopmail smtp-auth for roaming-users Dear Expert, I need help for setting up qmail+vpopmail smtp-auth with roaming-users I had configured vpopmail with --enable-roaming-users= y option my /var/qmail/supervise/qmail-smtpd/run as follow: #!/bin/sh PATH=$PATH:/usr/local/bin:/var/qmail/bin export PATH VPOPMAILUID=`id -u vpopmail` VPOPMAILGID=`id -g vpopmail` MAXSMTPD=`cat /var/qmail/control/concurrencyincoming` exec /usr/local/bin/softlimit -m 500 \ /usr/local/bin/tcpserver -H -R -v -x /home/vpopmail/etc/tcp.smtp.cdb -c $MAXSMT PD -u $VPOPMAILUID -g $VPOPMAILGID 0 25 qmail-smtpd mail2.lippogeneral.com /home/vpopmail/bin/vchkpw /bin/true 21 and my /home/vpopmail/etc/tcp.smtp below: :allow,RBLSMTPD=,REQUIREAUTH= why .. I still not able to relay .. see below message: The message could not be sent because one of the recipients was rejected by the server. The rejected e-mail address was '[EMAIL PROTECTED]'. Subject 'test', Account: 'mail.lippogeneral.com', Server: 'mail2.lippogeneral.com', Protocol: SMTP, Server Response: '553 sorry, that domain isn't in my list of allowed rcpthosts (#5.7.1)', Port: 25, Secure(SSL): No, Server Error: 553, Error Number: 0x800CCC79 *** Our outgoing mail has been scanned by MSS. ***-***
