[vchkpw] [SPAM] Auto-Re: [vchkpw] [SPAM] Emailed Invoice - 782867

[zhaopin]

尊敬的同学：您好！

您的求职简历已经收到，我们会尽快进行阅评，之后再决定是否与您面谈！


  中信泰富（中国）投资有限公司
 人力资源部

!DSPAM:59e8863641491084871729!

Re: [vchkpw] [SPAM] Password strength bug

[Tonix - Antonio Nati]

Il 21/09/2015 14:59, Drew Wells ha scritto:

On 09/17/2015 12:28 PM, Tonix - Antonio Nati wrote:

Il 17/09/2015 13:18, Drew Wells ha scritto:

On 09/15/2015 03:27 PM, Tonix - Antonio Nati wrote:

Il 15/09/2015 15:03, Drew Wells ha scritto:

On 09/15/2015 11:00 AM, Tonix - Antonio Nati wrote:

Il 15/09/2015 11:03, Drew Wells ha scritto:
In vpopmail-5.5.0 there seems to be a bug in vpopmail.c where 
the password strength is checked even if a password isn't used 
(such as when -e is used to add the encrypted password).  Patch 
attached.







I do not understand the problem.

Of course password strenght is checked every time, and if it 
founds a null/empty password it gives error back if password must 
have a minimum lenght.


Your patch instead permit to have null password even if strenght 
policy would not allow it.


Regards,

Tonino
The problem is is that vadduser.c can call vadduser() (in 
vpopmail.c) without a password.  It does this in the situation 
where vadduser.c has had the options "-e" or "-n" passed to it, so 
if this is the case the password can't be checked againts the 
password strength rules.  The underlying function vadduser() needs 
to be able to add a user with no password.




I realize additional controls are done before calling vadduser(); 
but I personally would prefer an explicit parameter added to 
vadduser for avoiding password check (it may be a further parameter 
having default = "check").

It would make developers more protected against unwanted security bugs.

Regards,

Tonino

I agree that it would be better to explicitly indicate to vadduser() 
that no password is wanted.  I even looked quicky at setting the 
password to NULL to indicate no password, but both this and an 
explicit parameter would need changes to all the backends, so have 
left it as is for now.


It could be done in two ways:

  * considering most od c compilers are c++ compilers, and that means
we can add an implicit parameter (, nocheck_pwd = 0)
  * duplicate the function for this usage, and call the duplicated
function from avdduser when needed.

Regards,

Tonino

I have looked at the backends and it turns out that some of the 
backends can handle a NULL gecos, so expanding on this I have changed 
all the backends to be able to handle a NULL gecos (in which case they 
now all use the user as a gecos) and also handle a NULL password.  So 
vadduser.c can pass a NULL password to vadduser(), vadduser() can then 
check the password_strength() when the password is not NULL.


I think that permitting a null password, if policy does not admit it, is 
a security hole.
Prefer you you add another explicit call to be called for no password 
checking (at all).


Regards,

Tonino




This is going to be the patch I use here, does anyone want this patch ?
 



--

Inter@zioniInterazioni di Antonio Nati
   http://www.interazioni.it  to...@interazioni.it




!DSPAM:5600059741551931516382!

Re: [vchkpw] [SPAM] Password strength bug

[Drew Wells]

On 09/21/2015 02:26 PM, Tonix - Antonio Nati wrote:

Il 21/09/2015 14:59, Drew Wells ha scritto:

On 09/17/2015 12:28 PM, Tonix - Antonio Nati wrote:

Il 17/09/2015 13:18, Drew Wells ha scritto:

On 09/15/2015 03:27 PM, Tonix - Antonio Nati wrote:

Il 15/09/2015 15:03, Drew Wells ha scritto:

On 09/15/2015 11:00 AM, Tonix - Antonio Nati wrote:

Il 15/09/2015 11:03, Drew Wells ha scritto:
In vpopmail-5.5.0 there seems to be a bug in vpopmail.c where 
the password strength is checked even if a password isn't used 
(such as when -e is used to add the encrypted password).  Patch 
attached.







I do not understand the problem.

Of course password strenght is checked every time, and if it 
founds a null/empty password it gives error back if password 
must have a minimum lenght.


Your patch instead permit to have null password even if strenght 
policy would not allow it.


Regards,

Tonino
The problem is is that vadduser.c can call vadduser() (in 
vpopmail.c) without a password.  It does this in the situation 
where vadduser.c has had the options "-e" or "-n" passed to it, 
so if this is the case the password can't be checked againts the 
password strength rules. The underlying function vadduser() needs 
to be able to add a user with no password.




I realize additional controls are done before calling vadduser(); 
but I personally would prefer an explicit parameter added to 
vadduser for avoiding password check (it may be a further 
parameter having default = "check").
It would make developers more protected against unwanted security 
bugs.


Regards,

Tonino

I agree that it would be better to explicitly indicate to 
vadduser() that no password is wanted.  I even looked quicky at 
setting the password to NULL to indicate no password, but both this 
and an explicit parameter would need changes to all the backends, 
so have left it as is for now.


It could be done in two ways:

  * considering most od c compilers are c++ compilers, and that
means we can add an implicit parameter (, nocheck_pwd = 0)
  * duplicate the function for this usage, and call the duplicated
function from avdduser when needed.

Regards,

Tonino

I have looked at the backends and it turns out that some of the 
backends can handle a NULL gecos, so expanding on this I have changed 
all the backends to be able to handle a NULL gecos (in which case 
they now all use the user as a gecos) and also handle a NULL 
password.  So vadduser.c can pass a NULL password to vadduser(), 
vadduser() can then check the password_strength() when the password 
is not NULL.


I think that permitting a null password, if policy does not admit it, 
is a security hole.
Prefer you you add another explicit call to be called for no password 
checking (at all).


Regards,

Tonino




This is going to be the patch I use here, does anyone want this patch ?


Wouldn't it actually be easier to remove the password parameter from 
vadduser() and then vadduser.c can add a user (without a password) and 
then optionally set a password using vauth_setpw() ?  This is exactly 
what it should do at the moment for adding a user with a crypted 
password, the user is added, then the crypted password is set using 
vauth_setpw().



!DSPAM:56000c6d41552022747047!

Re: [vchkpw] [SPAM] Password strength bug

[Matt Brookings]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

On 09/21/2015 08:55 AM, Drew Wells wrote:
>> I think that permitting a null password, if policy does not admit it, is a 
>> security hole. 
>> Prefer you you add another explicit call to be called for no password 
>> checking (at all).
>> 
>> Regards,
>> 
>> Tonino
>> 
>> 
>>> 
>>> This is going to be the patch I use here, does anyone want this patch ?
>> 
> Wouldn't it actually be easier to remove the password parameter from 
> vadduser() and then
> vadduser.c can add a user (without a password) and then optionally set a 
> password using
> vauth_setpw() ?  This is exactly what it should do at the moment for adding a 
> user with a crypted
> password, the user is added, then the crypted password is set using 
> vauth_setpw().

Because vadduser() previously supported an empty password ("\0"), the change to 
check for this and
skip the password strength testing won't be changing its functionality.  The 
password strength check
was not meant to prevent blank passwords, so the fact that it broke the ability 
to set one would be
a bug, and skipping the call to the password strength checker would be a bug 
fix.  vadduser should
not, however, be called with a NULL password.
- -- 
/*
Matt Brookings    GnuPG Key 62817373
Software developer Systems technician
Inter7 Internet Technologies, Inc. (815)776-9465
*/
-BEGIN PGP SIGNATURE-
Version: GnuPG v2.0.22 (GNU/Linux)

iQEcBAEBAgAGBQJWAA4BAAoJEOjQVexigXNzO1EH/iZtAFYiimKNefgU2mgzAwDf
N639Vq/zN6yDtImnBa9lVW37YZQ9IQ1jCNuQZCk91oUQbagMTP37Q3L+HRsGxcHt
tYEmKjvJXFiqNSuBZfmdFdbr8ENz4mvS0GI3VsE02fXUpMLSXAnIUfv+cnN5bCxD
cEs9aEcNQTntcZzKiUWYW+62MpX3BDbZarOpnHmQznihzorn5wcT12gSQo3QGjxp
ZM5LF9UBXOSuus5hFZHxLPQKhcZCvYSS0SpM+hyjLE4JB2nKEiDAVzZ7kqNi6ZV2
K2ocqLDRg1qpXIFGeB2yqobdXSVLEcb9takRE1xAe+v2Ya3YBK09fyBqewfo2qU=
=B/v4
-END PGP SIGNATURE-

Re: [vchkpw] [SPAM] Password strength bug

[Drew Wells]

On 09/17/2015 12:28 PM, Tonix - Antonio Nati wrote:

Il 17/09/2015 13:18, Drew Wells ha scritto:

On 09/15/2015 03:27 PM, Tonix - Antonio Nati wrote:

Il 15/09/2015 15:03, Drew Wells ha scritto:

On 09/15/2015 11:00 AM, Tonix - Antonio Nati wrote:

Il 15/09/2015 11:03, Drew Wells ha scritto:
In vpopmail-5.5.0 there seems to be a bug in vpopmail.c where the 
password strength is checked even if a password isn't used (such 
as when -e is used to add the encrypted password).  Patch attached.







I do not understand the problem.

Of course password strenght is checked every time, and if it 
founds a null/empty password it gives error back if password must 
have a minimum lenght.


Your patch instead permit to have null password even if strenght 
policy would not allow it.


Regards,

Tonino
The problem is is that vadduser.c can call vadduser() (in 
vpopmail.c) without a password.  It does this in the situation 
where vadduser.c has had the options "-e" or "-n" passed to it, so 
if this is the case the password can't be checked againts the 
password strength rules.  The underlying function vadduser() needs 
to be able to add a user with no password.




I realize additional controls are done before calling vadduser(); 
but I personally would prefer an explicit parameter added to 
vadduser for avoiding password check (it may be a further parameter 
having default = "check").

It would make developers more protected against unwanted security bugs.

Regards,

Tonino

I agree that it would be better to explicitly indicate to vadduser() 
that no password is wanted.  I even looked quicky at setting the 
password to NULL to indicate no password, but both this and an 
explicit parameter would need changes to all the backends, so have 
left it as is for now.


It could be done in two ways:

  * considering most od c compilers are c++ compilers, and that means
we can add an implicit parameter (, nocheck_pwd = 0)
  * duplicate the function for this usage, and call the duplicated
function from avdduser when needed.

Regards,

Tonino

I have looked at the backends and it turns out that some of the backends 
can handle a NULL gecos, so expanding on this I have changed all the 
backends to be able to handle a NULL gecos (in which case they now all 
use the user as a gecos) and also handle a NULL password.  So vadduser.c 
can pass a NULL password to vadduser(), vadduser() can then check the 
password_strength() when the password is not NULL.


This is going to be the patch I use here, does anyone want this patch ?


!DSPAM:552d41551245420391!

Re: [vchkpw] [SPAM] Password strength bug

[Drew Wells]

On 09/21/2015 03:02 PM, Matt Brookings wrote:

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

On 09/21/2015 08:55 AM, Drew Wells wrote:

I think that permitting a null password, if policy does not admit it, is a 
security hole.
Prefer you you add another explicit call to be called for no password checking 
(at all).

Regards,

Tonino



This is going to be the patch I use here, does anyone want this patch ?

Wouldn't it actually be easier to remove the password parameter from vadduser() 
and then
vadduser.c can add a user (without a password) and then optionally set a 
password using
vauth_setpw() ?  This is exactly what it should do at the moment for adding a 
user with a crypted
password, the user is added, then the crypted password is set using 
vauth_setpw().

Because vadduser() previously supported an empty password ("\0"), the change to 
check for this and
skip the password strength testing won't be changing its functionality.  The 
password strength check
was not meant to prevent blank passwords, so the fact that it broke the ability 
to set one would be
a bug, and skipping the call to the password strength checker would be a bug 
fix.  vadduser should
not, however, be called with a NULL password.

That was exactly what my original patch on the 15th Sept. did and the 
patch is attached to my original message.  I have not attached my NULL 
password changes patch.  I'll revert the patch I use here to my original 
one.


While looking at all this I have noticed that vmoduser.c allows the 
setting of a "clear_text_password" (-C) but does not do any 
password_strength() testing, is this also a bug ?  Lastly, there does 
not seem to be a way of setting "no password" on an account once it has 
been created, is this correct ?


Do you have any idea what needs to be done with regard to some of the 
backends being able to accept a NULL gecos ?


!DSPAM:5600119641556874115760!

Re: [vchkpw] [SPAM] valias remove alias

[Drew Wells]

On 09/17/2015 04:55 PM, Matt Brookings wrote:

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

On 09/17/2015 10:52 AM, Drew Wells wrote:

I basically did a diff from 5.4.29 to 5.4.33 and implemented that diff to 
5.5.0, some of it
had already been done to 5.5.0 and alot of it centered around the snprintf tidy 
up's and the
string_list implementation. The attached patch does not include any of the 
changes I
recently sent to the mailing list, just the changes from 5.4.[29->33].

This patch was generated from the 5.5.0 .tar.bz2, I had a look at SVN trunk and 
from what I could
see, it was 5.4.34.

The trunk on Sourceforge is the current 5.5.0.  The 5.4 series only appears in 
the tags and branches
area now.  I'll look over this patch and get it applied.  Thanks for putting it 
together!

I've just noticed a tiny problem with the previous patch I sent, so here 
is an updated version, this version also includes the missing '#include 
"pwstr.h"' in vadduser.c which causes a segfault on my dev environment 
so thought I should just include it.
The tiny problem was "string_list *aliases" instead of "string_list 
aliases" in vadddomain() in vpopmail.c.



!DSPAM:55fbf97841551215118515!
diff -uPr vpopmail-5.5.0.orig/backends/mysql/vmysql.c 
vpopmail-5.5.0/backends/mysql/vmysql.c
--- vpopmail-5.5.0.orig/backends/mysql/vmysql.c 2010-11-05 18:37:23.0 
+
+++ vpopmail-5.5.0/backends/mysql/vmysql.c  2015-09-18 12:36:07.561092988 
+0100
@@ -1785,10 +1785,10 @@
 limits->maxforwards = atoi(row[2]);
 limits->maxautoresponders = atoi(row[3]);
 limits->maxmailinglists = atoi(row[4]);
-limits->diskquota = atoi(row[5]);
-limits->maxmsgcount = atoi(row[6]);
-limits->defaultquota = atoi(row[7]);
-limits->defaultmaxmsgcount = atoi(row[8]);
+limits->diskquota = strtoll(row[5], NULL, 10);
+limits->maxmsgcount = strtoll(row[6], NULL, 10);
+limits->defaultquota = strtoll(row[7], NULL, 10);
+limits->defaultmaxmsgcount = strtoll(row[8], NULL, 10);
 limits->disable_pop = atoi(row[9]);
 limits->disable_imap = atoi(row[10]);
 limits->disable_dialup = atoi(row[11]);
@@ -1808,8 +1808,8 @@
 limits->perm_maillist_users = perm & VLIMIT_DISABLE_ALL;
 perm >>= VLIMIT_DISABLE_BITS;
 limits->perm_maillist_moderators = perm & VLIMIT_DISABLE_ALL;
-limits->perm_quota = atoi(row[23]);
-limits->perm_defaultquota = atoi(row[24]);
+limits->perm_quota = strtoll(row[23], NULL, 10);
+limits->perm_defaultquota = strtoll(row[24], NULL, 10);
 }
 mysql_free_result(res_read);
 
@@ -1830,7 +1830,7 @@
 "diskquota = %d, maxmsgcount = %d, defaultquota = %d, 
defaultmaxmsgcount = %d, "
 "disable_pop = %d, disable_imap = %d, disable_dialup = %d, "
 "disable_passwordchanging = %d, disable_webmail = %d, disable_relay = 
%d, "
-"disable_smtp = %d, disable_spamassassin = %d, delete_spam = %d, 
perm_account = %d, "
+"disable_smtp = %d, disable_spamassassin = %d, delete_spam = %d, 
disable_maildrop = %d, perm_account = %d, "
 "perm_alias = %d, perm_forward = %d, perm_autoresponder = %d, 
perm_maillist = %d, "
 "perm_quota = %d, perm_defaultquota = %d "
 "ON DUPLICATE KEY UPDATE "
@@ -1847,7 +1847,7 @@
 limits->diskquota, limits->maxmsgcount, limits->defaultquota, 
limits->defaultmaxmsgcount,
 limits->disable_pop, limits->disable_imap, limits->disable_dialup,
 limits->disable_passwordchanging, limits->disable_webmail, 
limits->disable_relay,
-limits->disable_smtp, limits->disable_spamassassin, 
limits->delete_spam, limits->perm_account,
+limits->disable_smtp, limits->disable_spamassassin, 
limits->delete_spam, limits->disable_maildrop, limits->perm_account,
 limits->perm_alias, limits->perm_forward, limits->perm_autoresponder,
 (limits->perm_maillist |
 (limits->perm_maillist_users << VLIMIT_DISABLE_BITS) |
diff -uPr vpopmail-5.5.0.orig/backends/mysql/vmysql.h.in 
vpopmail-5.5.0/backends/mysql/vmysql.h.in
--- vpopmail-5.5.0.orig/backends/mysql/vmysql.h.in  2010-11-05 
18:37:23.0 +
+++ vpopmail-5.5.0/backends/mysql/vmysql.h.in   2015-09-18 12:36:07.561092988 
+0100
@@ -268,10 +268,10 @@
   maxforwards  INT(10) NOT NULL DEFAULT -1, \
   maxautorespondersINT(10) NOT NULL DEFAULT -1, \
   maxmailinglists  INT(10) NOT NULL DEFAULT -1, \
-  diskquotaINT(12) NOT NULL DEFAULT 0, \
-  maxmsgcount  INT(12) NOT NULL DEFAULT 0, \
-  defaultquota INT(12) NOT NULL DEFAULT 0, \
-  defaultmaxmsgcount   INT(12) NOT NULL DEFAULT 0, \
+  diskquotaBIGINT UNSIGNED NOT NULL DEFAULT 0, \
+  maxmsgcount  BIGINT UNSIGNED NOT NULL DEFAULT 0, \
+  defaultquota BIGINT UNSIGNED NOT NULL DEFAULT 0, \
+  

Re: [vchkpw] [SPAM] valias remove alias

[Matt Brookings]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

On 09/18/2015 09:30 AM, Drew Wells wrote:
> On 09/18/2015 03:23 PM, Matt Brookings wrote:
>> -BEGIN PGP SIGNED MESSAGE- Hash: SHA1
>> 
>> Applies perfectly!  Thanks!
>> 
>> On 09/18/2015 09:21 AM, Drew Wells wrote:
>>> On 09/18/2015 02:47 PM, Matt Brookings wrote:
 -BEGIN PGP SIGNED MESSAGE- Hash: SHA1
 
 Drew, I know you've put a lot of effort into these patches, but they do 
 not succeed
 against the 5.5.0 trunk.  Patches should be made against the most recent 
 revision, which
 can be checked out via Subversion from Sourceforge.
 
 On 09/18/2015 08:11 AM, Drew Wells wrote:
> On 09/17/2015 04:55 PM, Matt Brookings wrote:
>> -BEGIN PGP SIGNED MESSAGE- Hash: SHA1
>> 
>> On 09/17/2015 10:52 AM, Drew Wells wrote:
> I basically did a diff from 5.4.29 to 5.4.33 and implemented that 
> diff to 5.5.0,
> some of it had already been done to 5.5.0 and alot of it centered 
> around the
> snprintf tidy up's and the string_list implementation. The attached 
> patch does
> not include any of the changes I recently sent to the mailing list, 
> just the
> changes from 5.4.[29->33].
>>> This patch was generated from the 5.5.0 .tar.bz2, I had a look at SVN 
>>> trunk and from
>>> what I could see, it was 5.4.34.
>> The trunk on Sourceforge is the current 5.5.0.  The 5.4 series only 
>> appears in the
>> tags and branches area now.  I'll look over this patch and get it 
>> applied.  Thanks for
>> putting it together!
>> 
> And lastly for now, someone has done a lot of work in tidying up/making 
> safe all the
> calls to snprintf(), the attached patch completes this work (I think).  
> This patch comes
> after the 5.4.[29->33] patch I did.
> 
> 
>>> Ok, have have downloaded a snapshot .zip file from Sourceforge 
>>> (vpopmail-code-1034.zip) and 
>>> applied the changes to that and attached the patch.  This is the 
>>> 5.4.[29-33] changes patch,
>>> I'll do the snprintf() one later.  Let me know if you need me to do 
>>> anything else with it.
>> 
> Not a problem do excuse my use of the 5.5.0 tar, I'll use SVN trunk from now 
> on.  Here is the 
> snprintf() patch for vpopmail-code-1034.zip.

No problem.  Thanks for your work!
- -- 
/*
Matt Brookings    GnuPG Key 62817373
Software developer Systems technician
Inter7 Internet Technologies, Inc. (815)776-9465
*/
-BEGIN PGP SIGNATURE-
Version: GnuPG v2.0.22 (GNU/Linux)

iQEcBAEBAgAGBQJV/CJIAAoJEOjQVexigXNzUEQH+wV4Si57TawcIHdnggKhZpav
6Swf4CUPZIfLrM6chNkIrTnR2seb0W3qCIqmMdbo3nzUIfLzMw3ZOikCBKF6hoWq
zQUij+eXwTLWe8JbT4/c3fACBmq4BspJj7q4kIAeypu4hqdjDpxAxVvNmoYh3FCQ
CC3LX0E3PbPHp7mKgzXRQtVrnB9ePxTgu9ZR529BUpI4dwz2FXx+FgmcC/hvBFad
mOBh5vYgVfql0rGWmw/TkWLRNxJzR4ffHIYg7h1jJ6QSMrn/Px4pdGNmOzGIf+tV
asoUPWUIKLL1MlPeV/jviTw0Or7es6ZGbsd+pZl6TEkhowySGB72oexrVTDQXF4=
=ZHVf
-END PGP SIGNATURE-

Re: [vchkpw] [SPAM] valias remove alias

[Matt Brookings]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

Drew, I know you've put a lot of effort into these patches, but they do not 
succeed against the
5.5.0 trunk.  Patches should be made against the most recent revision, which 
can be checked out via
Subversion from Sourceforge.

On 09/18/2015 08:11 AM, Drew Wells wrote:
> On 09/17/2015 04:55 PM, Matt Brookings wrote:
>> -BEGIN PGP SIGNED MESSAGE- Hash: SHA1
>> 
>> On 09/17/2015 10:52 AM, Drew Wells wrote:
> I basically did a diff from 5.4.29 to 5.4.33 and implemented that diff to 
> 5.5.0, some of
> it had already been done to 5.5.0 and alot of it centered around the 
> snprintf tidy up's
> and the string_list implementation. The attached patch does not include 
> any of the
> changes I recently sent to the mailing list, just the changes from 
> 5.4.[29->33].
>>> This patch was generated from the 5.5.0 .tar.bz2, I had a look at SVN trunk 
>>> and from what I
>>> could see, it was 5.4.34.
>> The trunk on Sourceforge is the current 5.5.0.  The 5.4 series only appears 
>> in the tags and
>> branches area now.  I'll look over this patch and get it applied.  Thanks 
>> for putting it
>> together!
>> 
> And lastly for now, someone has done a lot of work in tidying up/making safe 
> all the calls to 
> snprintf(), the attached patch completes this work (I think).  This patch 
> comes after the
> 5.4.[29->33] patch I did.
> 
> 


- -- 
/*
Matt Brookings    GnuPG Key 62817373
Software developer Systems technician
Inter7 Internet Technologies, Inc. (815)776-9465
*/
-BEGIN PGP SIGNATURE-
Version: GnuPG v2.0.22 (GNU/Linux)

iQEcBAEBAgAGBQJV/BXnAAoJEOjQVexigXNzPxkH/jKWMcIwdkpN9xy8OhYHQGuF
+FwowoDJSsEpkJU6flSSWjYvpC0/NJeejzWLWHW0bq7m0ulobpq4z4x4Q7lUlxId
nu7a4+v29qgDw3ccuyIpx+DmgF2DEqi7t/QZlTNeCJ4YzsMBkcUrJI8twoF+RTX/
/8aifV4/+J69V5GrKAMePRIRIaZicVd0NNgLrnaG096r8r7n02jH5G2PTPF0s6Vh
AVaSehh7sxTCBlm8sH08orxLRqRsLakvy3zlxogeLnipJxWLxgQQdkAL8GcfvPIz
LPlXovqegvNtEGrmsAwIP6mXansd0qqC0vTDpUz4ikHXso7ntKHRieHrT4lrevE=
=tzfn
-END PGP SIGNATURE-

Re: [vchkpw] [SPAM] valias remove alias

[Drew Wells]

On 09/17/2015 04:55 PM, Matt Brookings wrote:

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

On 09/17/2015 10:52 AM, Drew Wells wrote:

I basically did a diff from 5.4.29 to 5.4.33 and implemented that diff to 
5.5.0, some of it
had already been done to 5.5.0 and alot of it centered around the snprintf tidy 
up's and the
string_list implementation. The attached patch does not include any of the 
changes I
recently sent to the mailing list, just the changes from 5.4.[29->33].

This patch was generated from the 5.5.0 .tar.bz2, I had a look at SVN trunk and 
from what I could
see, it was 5.4.34.

The trunk on Sourceforge is the current 5.5.0.  The 5.4 series only appears in 
the tags and branches
area now.  I'll look over this patch and get it applied.  Thanks for putting it 
together!

And lastly for now, someone has done a lot of work in tidying up/making 
safe all the calls to snprintf(), the attached patch completes this work 
(I think).  This patch comes after the 5.4.[29->33] patch I did.



!DSPAM:55fc0d7341552094314991!
diff -uPr vpopmail-5.5.0.orig/vpopmaild.c vpopmail-5.5.0/vpopmaild.c
--- vpopmail-5.5.0.orig/vpopmaild.c 2015-09-18 13:58:22.048093642 +0100
+++ vpopmail-5.5.0/vpopmaild.c  2015-09-18 14:08:11.117095122 +0100
@@ -429,7 +429,7 @@
 return(-2);
   } 
 
-//  snprintf(WriteBuf,sizeof(WriteBuf), RET_OK_MORE);
+//  snprintf(WriteBuf,sizeof(WriteBuf), "%s", RET_OK_MORE);
 //  wait_write();
 
   AuthVpw.pw_name = strdup(tmpvpw->pw_name);
@@ -460,7 +460,7 @@
 logged_in = 1;
 
   if(output_type < 2 ) {
-snprintf(WriteBuf,sizeof(WriteBuf), RET_OK_MORE);
+snprintf(WriteBuf,sizeof(WriteBuf), "%s", RET_OK_MORE);
 wait_write();
 
 snprintf(WriteBuf,sizeof(WriteBuf), "vpopmail_dir_bin %s" RET_CRLF, 
VPOPMAIL_DIR_BIN);
@@ -485,10 +485,10 @@
 
 send_user_info();
 
-snprintf(WriteBuf, sizeof(WriteBuf), "." RET_CRLF);
+snprintf(WriteBuf, sizeof(WriteBuf), "%s", "." RET_CRLF);
   }
   else
-snprintf(WriteBuf,sizeof(WriteBuf), RET_OK);
+snprintf(WriteBuf,sizeof(WriteBuf), "%s", RET_OK);
 
   return(0);
 }
@@ -525,7 +525,7 @@
 return(-1);
   }
 
-  snprintf(WriteBuf,sizeof(WriteBuf), RET_OK);
+  snprintf(WriteBuf,sizeof(WriteBuf), "%s", RET_OK);
   if ((ret=vadduser(TmpUser, TmpDomain, password, TmpUser, USE_POP )) < 0 ) {
 snprintf(WriteBuf,sizeof(WriteBuf),RET_ERR "0.305 %s" RET_CRLF, 
verror(ret));
 return(-1);
@@ -564,7 +564,7 @@
 return(-1);
   }
 
-  snprintf(WriteBuf,sizeof(WriteBuf), RET_OK);
+  snprintf(WriteBuf,sizeof(WriteBuf), "%s", RET_OK);
   return(0);
 }
 
@@ -626,7 +626,7 @@
   }
   
 
-  snprintf(WriteBuf,sizeof(WriteBuf), RET_OK);
+  snprintf(WriteBuf,sizeof(WriteBuf), "%s", RET_OK);
   wait_write();
 
   while(fgets(ReadBuf,sizeof(ReadBuf),stdin)!=NULL ) {
@@ -751,7 +751,7 @@
   if ( (ret=vauth_setpw( tmpvpw, TmpDomain )) != 0 ) {
 snprintf(WriteBuf,sizeof(WriteBuf),RET_ERR "0.507 %s" RET_CRLF, 
verror(ret)); 
   } else {
-snprintf(WriteBuf,sizeof(WriteBuf), RET_OK);
+snprintf(WriteBuf,sizeof(WriteBuf), "%s", RET_OK);
   }
 
   return(0);
@@ -787,11 +787,11 @@
 return(-1);
   } 
 
-  snprintf(WriteBuf,sizeof(WriteBuf), RET_OK_MORE);
+  snprintf(WriteBuf,sizeof(WriteBuf), "%s", RET_OK_MORE);
   wait_write();
 
   send_user_info(tmpvpw);
-  snprintf(WriteBuf, sizeof(WriteBuf), "." RET_CRLF);
+  snprintf(WriteBuf, sizeof(WriteBuf), "%s", "." RET_CRLF);
   return(0);
 
 }
@@ -826,120 +826,79 @@
 
   } else {
 
-if ( tmpvpw->pw_gid & NO_PASSWD_CHNG ) {
-  snprintf(WriteBuf, sizeof(WriteBuf), "no_password_change 1" RET_CRLF);
-} else {
-  snprintf(WriteBuf, sizeof(WriteBuf), "no_password_change 0" RET_CRLF);
-}
+snprintf(WriteBuf, sizeof(WriteBuf), "no_password_change %d" RET_CRLF,
+  tmpvpw->pw_gid & NO_PASSWD_CHNG ? 1 : 0);
 wait_write();
 
-if ( tmpvpw->pw_gid & NO_POP ) {
-  snprintf(WriteBuf, sizeof(WriteBuf), "no_pop 1" RET_CRLF);
-} else {
-  snprintf(WriteBuf, sizeof(WriteBuf), "no_pop 0" RET_CRLF);
-}
+snprintf(WriteBuf, sizeof(WriteBuf), "no_pop %d" RET_CRLF,
+  tmpvpw->pw_gid & NO_POP ? 1 : 0);
 wait_write();
 
-if ( tmpvpw->pw_gid & NO_WEBMAIL ) {
-  snprintf(WriteBuf, sizeof(WriteBuf), "no_webmail 1" RET_CRLF);
-} else {
-  snprintf(WriteBuf, sizeof(WriteBuf), "no_webmail 0" RET_CRLF);
-}
+snprintf(WriteBuf, sizeof(WriteBuf), "no_webmail %d" RET_CRLF,
+  tmpvpw->pw_gid & NO_WEBMAIL ? 1 : 0);
 wait_write();
 
-if ( tmpvpw->pw_gid & NO_IMAP ) {
-  snprintf(WriteBuf, sizeof(WriteBuf), "no_imap 1" RET_CRLF);
-} else {
-  snprintf(WriteBuf, sizeof(WriteBuf), "no_imap 0" RET_CRLF);
-}
+snprintf(WriteBuf, sizeof(WriteBuf), "no_imap %d" RET_CRLF,
+  tmpvpw->pw_gid & NO_IMAP ? 1 : 0);
 wait_write();
 
-if ( tmpvpw->pw_gid & BOUNCE_MAIL ) {
-  snprintf(WriteBuf, sizeof(WriteBuf), "bounce_mail 1" RET_CRLF);
-} else {
-  snprintf(WriteBuf, sizeof(WriteBuf), "bounce_mail 

Re: [vchkpw] [SPAM] Password strength bug

[Drew Wells]

On 09/15/2015 03:27 PM, Tonix - Antonio Nati wrote:

Il 15/09/2015 15:03, Drew Wells ha scritto:

On 09/15/2015 11:00 AM, Tonix - Antonio Nati wrote:

Il 15/09/2015 11:03, Drew Wells ha scritto:
In vpopmail-5.5.0 there seems to be a bug in vpopmail.c where the 
password strength is checked even if a password isn't used (such as 
when -e is used to add the encrypted password).  Patch attached.







I do not understand the problem.

Of course password strenght is checked every time, and if it founds 
a null/empty password it gives error back if password must have a 
minimum lenght.


Your patch instead permit to have null password even if strenght 
policy would not allow it.


Regards,

Tonino
The problem is is that vadduser.c can call vadduser() (in vpopmail.c) 
without a password.  It does this in the situation where vadduser.c 
has had the options "-e" or "-n" passed to it, so if this is the case 
the password can't be checked againts the password strength rules.  
The underlying function vadduser() needs to be able to add a user 
with no password.




I realize additional controls are done before calling vadduser(); but 
I personally would prefer an explicit parameter added to vadduser for 
avoiding password check (it may be a further parameter having default 
= "check").

It would make developers more protected against unwanted security bugs.

Regards,

Tonino

I agree that it would be better to explicitly indicate to vadduser() 
that no password is wanted.  I even looked quicky at setting the 
password to NULL to indicate no password, but both this and an explicit 
parameter would need changes to all the backends, so have left it as is 
for now.



!DSPAM:55faa1a741551399290072!

Re: [vchkpw] [SPAM] valias remove alias

[Drew Wells]

On 09/15/2015 02:26 PM, Alessio Cecchi wrote:

Il 15/09/2015 15:10, Drew Wells ha scritto:

On 09/15/2015 11:06 AM, Alessio Cecchi wrote:


Il 15/09/2015 11:22, Drew Wells ha scritto:

In vpopmail-5.5.0 (and I think all 5.4.x)


Hi Drew,

I suggest to install (and debug) vpopmail-5.4.33 that is more stable,
reliable (and recent) than 5.5.0. Whan I try to use 5.5.0 I found many
bug and problems tha new features.

Why you need vpopmail-5.5.0 ?

I have been using vpopmail-5.4.x (currently vpopmail-5.4.33) for years
and have always added this patch, so in an attempt get 5.5.0 towards
stable I thought I'd send this patch.  This patch is also applicable to
the 5.4.x branch.
The reason I want to use 5.5.0 is the shared library support which means
I don't need to recompile netqmail and dovecot (and others) each time I
make changes to vpopmail.
I've not found that many bugs with vpopmail-5.5.0 to be honest.


I remember some problems with vpopmaild (that I'm using for password 
change via webmail), with large quota size, and a missing flag in 
MySQL limits for disable_maildrop.


Vpomail-5.5.0 was started from 5.4.28 so change from 5.4.29 to 5.4.33 
are missing (please correct me if I'm wrong).


If you have others useful patch for vpopmail-5.4 you are welcome :-)

Thanks

I have created a patch for vpopmail-5.5.0 which incoporates all the 
changes from 5.4.29 to 5.4.33, does anyone want this patch or has work 
in vpopmail-5.5.0 stalled ?


!DSPAM:55faa2a041552051216344!

Re: [vchkpw] [SPAM] Password strength bug

[Tonix - Antonio Nati]

Il 17/09/2015 13:18, Drew Wells ha scritto:

On 09/15/2015 03:27 PM, Tonix - Antonio Nati wrote:

Il 15/09/2015 15:03, Drew Wells ha scritto:

On 09/15/2015 11:00 AM, Tonix - Antonio Nati wrote:

Il 15/09/2015 11:03, Drew Wells ha scritto:
In vpopmail-5.5.0 there seems to be a bug in vpopmail.c where the 
password strength is checked even if a password isn't used (such 
as when -e is used to add the encrypted password).  Patch attached.







I do not understand the problem.

Of course password strenght is checked every time, and if it founds 
a null/empty password it gives error back if password must have a 
minimum lenght.


Your patch instead permit to have null password even if strenght 
policy would not allow it.


Regards,

Tonino
The problem is is that vadduser.c can call vadduser() (in 
vpopmail.c) without a password.  It does this in the situation where 
vadduser.c has had the options "-e" or "-n" passed to it, so if this 
is the case the password can't be checked againts the password 
strength rules.  The underlying function vadduser() needs to be able 
to add a user with no password.




I realize additional controls are done before calling vadduser(); but 
I personally would prefer an explicit parameter added to vadduser for 
avoiding password check (it may be a further parameter having default 
= "check").

It would make developers more protected against unwanted security bugs.

Regards,

Tonino

I agree that it would be better to explicitly indicate to vadduser() 
that no password is wanted.  I even looked quicky at setting the 
password to NULL to indicate no password, but both this and an 
explicit parameter would need changes to all the backends, so have 
left it as is for now.


It could be done in two ways:

 * considering most od c compilers are c++ compilers, and that means we
   can add an implicit parameter (, nocheck_pwd = 0)
 * duplicate the function for this usage, and call the duplicated
   function from avdduser when needed.

Regards,

Tonino


 



--

Inter@zioniInterazioni di Antonio Nati
   http://www.interazioni.it  to...@interazioni.it




!DSPAM:55faa3e241551872413518!

Re: [vchkpw] [SPAM] valias remove alias

[Drew Wells]

On 09/17/2015 04:55 PM, Matt Brookings wrote:

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

On 09/17/2015 10:52 AM, Drew Wells wrote:

I basically did a diff from 5.4.29 to 5.4.33 and implemented that diff to 
5.5.0, some of it
had already been done to 5.5.0 and alot of it centered around the snprintf tidy 
up's and the
string_list implementation. The attached patch does not include any of the 
changes I
recently sent to the mailing list, just the changes from 5.4.[29->33].

This patch was generated from the 5.5.0 .tar.bz2, I had a look at SVN trunk and 
from what I could
see, it was 5.4.34.

The trunk on Sourceforge is the current 5.5.0.  The 5.4 series only appears in 
the tags and branches
area now.  I'll look over this patch and get it applied.  Thanks for putting it 
together!

Not a problem at all.  As you probably saw there are a few patches I 
sent to the list that cover a couple of other issues with the 5.5.0.tar.bz2.


!DSPAM:55fae2d441556321250516!

Re: [vchkpw] [SPAM] valias remove alias

[Drew Wells]

On 09/17/2015 04:04 PM, Matt Brookings wrote:

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

Was this patch generated with the SVN trunk (5.5.0)?

On 09/17/2015 09:57 AM, Drew Wells wrote:

On 09/17/2015 03:37 PM, Matt Brookings wrote:

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1

On 09/17/2015 06:23 AM, Drew Wells wrote:

I have created a patch for vpopmail-5.5.0 which incoporates all the changes 
from 5.4.29 to
5.4.33, does anyone want this patch or has work in vpopmail-5.5.0 stalled ?

Drew, I'd be happy to take a look at this.  What changes did you add?


I basically did a diff from 5.4.29 to 5.4.33 and implemented that diff to 
5.5.0, some of it had
already been done to 5.5.0 and alot of it centered around the snprintf tidy 
up's and the
string_list implementation. The attached patch does not include any of the 
changes I recently
sent to the mailing list, just the changes from 5.4.[29->33].


This patch was generated from the 5.5.0 .tar.bz2, I had a look at SVN 
trunk and from what I could see, it was 5.4.34.


!DSPAM:55fae1c241551761131543!

Re: [vchkpw] [SPAM] valias remove alias

[Matt Brookings]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

On 09/17/2015 10:52 AM, Drew Wells wrote:
>>> I basically did a diff from 5.4.29 to 5.4.33 and implemented that diff to 
>>> 5.5.0, some of it
>>> had already been done to 5.5.0 and alot of it centered around the snprintf 
>>> tidy up's and the 
>>> string_list implementation. The attached patch does not include any of the 
>>> changes I
>>> recently sent to the mailing list, just the changes from 5.4.[29->33].
>> 
> This patch was generated from the 5.5.0 .tar.bz2, I had a look at SVN trunk 
> and from what I could
> see, it was 5.4.34.

The trunk on Sourceforge is the current 5.5.0.  The 5.4 series only appears in 
the tags and branches
area now.  I'll look over this patch and get it applied.  Thanks for putting it 
together!
- -- 
/*
Matt Brookings    GnuPG Key 62817373
Software developer Systems technician
Inter7 Internet Technologies, Inc. (815)776-9465
*/
-BEGIN PGP SIGNATURE-
Version: GnuPG v2.0.22 (GNU/Linux)

iQEcBAEBAgAGBQJV+uJcAAoJEOjQVexigXNzXowIALkzVHSRgVq3Ojq1Pv32jdI4
vRaX0jDhbhNzDTCPex5tcwLB71olOm2LYzV/GKBoXudeZYz/SjppccCk43FRhZnj
h76PKiI1484e4kRD1JYkgjP85YKh0I5if2eeL28zm7fDb8qwNG3Djs2xyH9m5+wN
nlPfEtF+e1Pi5PBa8WDFHilF+P6XlV5kwxsuXmZV8JD8EogyplMAs1ksteA6tmJH
vXEAB4xJfstVB6l27mxq1VVNqyE0KUN4inCuxVuuS/nUxJI576V6B/kUQ+DyVANj
ce4gD45L7YzWs4PAwnEcdseai82Jag4J6UaRIhLwTYEwridI1D9GnA7ZSHOmoK8=
=Pl67
-END PGP SIGNATURE-

Re: [vchkpw] [SPAM] valias remove alias

[Drew Wells]

On 09/17/2015 03:37 PM, Matt Brookings wrote:

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

On 09/17/2015 06:23 AM, Drew Wells wrote:

I have created a patch for vpopmail-5.5.0 which incoporates all the changes 
from 5.4.29 to
5.4.33, does anyone want this patch or has work in vpopmail-5.5.0 stalled ?

Drew, I'd be happy to take a look at this.  What changes did you add?

I basically did a diff from 5.4.29 to 5.4.33 and implemented that diff 
to 5.5.0, some of it had already been done to 5.5.0 and alot of it 
centered around the snprintf tidy up's and the string_list implementation.
The attached patch does not include any of the changes I recently sent 
to the mailing list, just the changes from 5.4.[29->33].



!DSPAM:55fad4d841551123915585!
diff -uPr vpopmail-5.5.0.orig/backends/mysql/vmysql.c 
vpopmail-5.5.0/backends/mysql/vmysql.c
--- vpopmail-5.5.0.orig/backends/mysql/vmysql.c 2010-11-05 18:37:23.0 
+
+++ vpopmail-5.5.0/backends/mysql/vmysql.c  2015-09-17 11:41:02.724095923 
+0100
@@ -1785,10 +1785,10 @@
 limits->maxforwards = atoi(row[2]);
 limits->maxautoresponders = atoi(row[3]);
 limits->maxmailinglists = atoi(row[4]);
-limits->diskquota = atoi(row[5]);
-limits->maxmsgcount = atoi(row[6]);
-limits->defaultquota = atoi(row[7]);
-limits->defaultmaxmsgcount = atoi(row[8]);
+limits->diskquota = strtoll(row[5], NULL, 10);
+limits->maxmsgcount = strtoll(row[6], NULL, 10);
+limits->defaultquota = strtoll(row[7], NULL, 10);
+limits->defaultmaxmsgcount = strtoll(row[8], NULL, 10);
 limits->disable_pop = atoi(row[9]);
 limits->disable_imap = atoi(row[10]);
 limits->disable_dialup = atoi(row[11]);
@@ -1808,8 +1808,8 @@
 limits->perm_maillist_users = perm & VLIMIT_DISABLE_ALL;
 perm >>= VLIMIT_DISABLE_BITS;
 limits->perm_maillist_moderators = perm & VLIMIT_DISABLE_ALL;
-limits->perm_quota = atoi(row[23]);
-limits->perm_defaultquota = atoi(row[24]);
+limits->perm_quota = strtoll(row[23], NULL, 10);
+limits->perm_defaultquota = strtoll(row[24], NULL, 10);
 }
 mysql_free_result(res_read);
 
@@ -1830,7 +1830,7 @@
 "diskquota = %d, maxmsgcount = %d, defaultquota = %d, 
defaultmaxmsgcount = %d, "
 "disable_pop = %d, disable_imap = %d, disable_dialup = %d, "
 "disable_passwordchanging = %d, disable_webmail = %d, disable_relay = 
%d, "
-"disable_smtp = %d, disable_spamassassin = %d, delete_spam = %d, 
perm_account = %d, "
+"disable_smtp = %d, disable_spamassassin = %d, delete_spam = %d, 
disable_maildrop = %d, perm_account = %d, "
 "perm_alias = %d, perm_forward = %d, perm_autoresponder = %d, 
perm_maillist = %d, "
 "perm_quota = %d, perm_defaultquota = %d "
 "ON DUPLICATE KEY UPDATE "
@@ -1847,7 +1847,7 @@
 limits->diskquota, limits->maxmsgcount, limits->defaultquota, 
limits->defaultmaxmsgcount,
 limits->disable_pop, limits->disable_imap, limits->disable_dialup,
 limits->disable_passwordchanging, limits->disable_webmail, 
limits->disable_relay,
-limits->disable_smtp, limits->disable_spamassassin, 
limits->delete_spam, limits->perm_account,
+limits->disable_smtp, limits->disable_spamassassin, 
limits->delete_spam, limits->disable_maildrop, limits->perm_account,
 limits->perm_alias, limits->perm_forward, limits->perm_autoresponder,
 (limits->perm_maillist |
 (limits->perm_maillist_users << VLIMIT_DISABLE_BITS) |
diff -uPr vpopmail-5.5.0.orig/backends/mysql/vmysql.h.in 
vpopmail-5.5.0/backends/mysql/vmysql.h.in
--- vpopmail-5.5.0.orig/backends/mysql/vmysql.h.in  2010-11-05 
18:37:23.0 +
+++ vpopmail-5.5.0/backends/mysql/vmysql.h.in   2015-09-17 11:41:02.725095861 
+0100
@@ -268,10 +268,10 @@
   maxforwards  INT(10) NOT NULL DEFAULT -1, \
   maxautorespondersINT(10) NOT NULL DEFAULT -1, \
   maxmailinglists  INT(10) NOT NULL DEFAULT -1, \
-  diskquotaINT(12) NOT NULL DEFAULT 0, \
-  maxmsgcount  INT(12) NOT NULL DEFAULT 0, \
-  defaultquota INT(12) NOT NULL DEFAULT 0, \
-  defaultmaxmsgcount   INT(12) NOT NULL DEFAULT 0, \
+  diskquotaBIGINT UNSIGNED NOT NULL DEFAULT 0, \
+  maxmsgcount  BIGINT UNSIGNED NOT NULL DEFAULT 0, \
+  defaultquota BIGINT UNSIGNED NOT NULL DEFAULT 0, \
+  defaultmaxmsgcount   BIGINT UNSIGNED NOT NULL DEFAULT 0, \
   disable_pop  TINYINT(1) NOT NULL DEFAULT 0, \
   disable_imap TINYINT(1) NOT NULL DEFAULT 0, \
   disable_dialup   TINYINT(1) NOT NULL DEFAULT 0, \
diff -uPr vpopmail-5.5.0.orig/backfill.c vpopmail-5.5.0/backfill.c
--- vpopmail-5.5.0.orig/backfill.c  2010-11-05 18:37:22.0 +
+++ vpopmail-5.5.0/backfill.c   2015-09-17 

Re: [vchkpw] [SPAM] valias remove alias

[Matt Brookings]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

On 09/17/2015 06:23 AM, Drew Wells wrote:
> I have created a patch for vpopmail-5.5.0 which incoporates all the changes 
> from 5.4.29 to
> 5.4.33, does anyone want this patch or has work in vpopmail-5.5.0 stalled ?

Drew, I'd be happy to take a look at this.  What changes did you add?
- -- 
/*
Matt Brookings    GnuPG Key 62817373
Software developer Systems technician
Inter7 Internet Technologies, Inc. (815)776-9465
*/
-BEGIN PGP SIGNATURE-
Version: GnuPG v2.0.22 (GNU/Linux)

iQEcBAEBAgAGBQJV+tA3AAoJEOjQVexigXNzpoAIAJHChv9aNWE5TGdYIRVExQxs
cKyi14LUwIMupA3HX4GNTTBy9bMF6HVgWxMqRA3WOq3KzRGhwi2fT9J1lQseaC5X
U4Fd5qQ8eeiYcl8yakT+ZPjwDRSLbkNX98akynm1QDT92/YNgaZ55F6aE2uH2IVg
8rMDw96OohaJJHGCt9XZouTEuQZgTZKunWoKYMgpqvH5NdCvDxP2SgeOu7uRLPoM
e5w1Gqc2p9xP0VxgmqMPEl5Yp8uTQXfUjQrbw2Soe55OnnJXtxoJ3gCrPxdwAgLj
pHxZXJjon+681cYOJr+xX6grUuPuZIlV1y3WRzvgo8m1sD/VFq8WN/roWNYV0EA=
=LSon
-END PGP SIGNATURE-

Re: [vchkpw] [SPAM] valias remove alias

[Matt Brookings]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

Was this patch generated with the SVN trunk (5.5.0)?

On 09/17/2015 09:57 AM, Drew Wells wrote:
> On 09/17/2015 03:37 PM, Matt Brookings wrote:
>> -BEGIN PGP SIGNED MESSAGE- Hash: SHA1
>> 
>> On 09/17/2015 06:23 AM, Drew Wells wrote:
>>> I have created a patch for vpopmail-5.5.0 which incoporates all the changes 
>>> from 5.4.29 to 
>>> 5.4.33, does anyone want this patch or has work in vpopmail-5.5.0 stalled ?
>> Drew, I'd be happy to take a look at this.  What changes did you add?
>> 
> I basically did a diff from 5.4.29 to 5.4.33 and implemented that diff to 
> 5.5.0, some of it had 
> already been done to 5.5.0 and alot of it centered around the snprintf tidy 
> up's and the
> string_list implementation. The attached patch does not include any of the 
> changes I recently
> sent to the mailing list, just the changes from 5.4.[29->33].

- -- 
/*
Matt Brookings    GnuPG Key 62817373
Software developer Systems technician
Inter7 Internet Technologies, Inc. (815)776-9465
*/
-BEGIN PGP SIGNATURE-
Version: GnuPG v2.0.22 (GNU/Linux)

iQEcBAEBAgAGBQJV+tZ9AAoJEOjQVexigXNzbnYH/2CBtOVqqKBntlGUYQNMzf46
PEyxaODsZjaBmyJKBSL7lU30UzEanbWTbo1XSCj7lx+YRB7v9e90SMDVSbYXbaDh
I2WGhqD+dHVOBbi7b+WtLPAeixPnFOS5EMcWggL+OK9xbF55WsFDQhz7b3wNJGmR
4klK0mEG6a22l2cScAjH7afXzRJpy/Vz6RpBvW+1wGz8R0nRPw6VDpiiiPbqLSpr
S4uDboSTdo2Ah6dFXQDns2Au/JYYB+Ip33f+rYaTyNjL4dUq9Emg/hZNFyy11KgU
0ldCRPX+h1EKtNoh65FAxRWF8tlCYufjw1M9E30neO48dwDVV5AyDRALKxdOjvA=
=6IBz
-END PGP SIGNATURE-

Re: [vchkpw] vdelivermail writes the wrong ,S= value when spamassassin is enabled

[Rolf Eike Beer]

> When spamassassin is enabled but maildrop is not I see failed assertions in
> dovecots POP server[2], which are caused by vdelivermail using a wrong
> filename. The filename, more exactly the S= value is calculated
> _before_ the mail is piped into spamassassin, which adds two more header
> lines with it's scan results, so the actual size afterwards is bigger than
> what is recorded. The attached patch #5 fixes this for me, with some
> cleanups in #1-#4 I did on the way to find the culprit.

Ping?

signature.asc
Description: This is a digitally signed message part.
!DSPAM:55fafb1041552455840022!

[vchkpw] Auto-Re: [vchkpw] [SPAM] Password strength bug

[zhaopin]

尊敬的同学：您好！

您的求职简历已经收到，我们会尽快进行阅评，之后再决定是否与您面谈！


  中信泰富（中国）投资有限公司
 人力资源部

!DSPAM:55f7e0eb41551555158803!

[vchkpw] Auto-Re: [vchkpw] [SPAM] valias remove alias

[zhaopin]

尊敬的同学：您好！

您的求职简历已经收到，我们会尽快进行阅评，之后再决定是否与您面谈！


  中信泰富（中国）投资有限公司
 人力资源部

!DSPAM:55f7e35941551360728760!

[vchkpw] Auto-Re: [vchkpw] [SPAM] vdominfo quota bug

[zhaopin]

尊敬的同学：您好！

您的求职简历已经收到，我们会尽快进行阅评，之后再决定是否与您面谈！


  中信泰富（中国）投资有限公司
 人力资源部

!DSPAM:55f7e55641551049011877!

RE: [vchkpw] [SPAM] Segmentation fault in vadduser

[Thibault Richard]

This is probably why the 5.4.0 is still not considered as stable (the latest 
stable version is still 5.4.33)

-Original Message-
From: Drew Wells [mailto:drew-vpopm...@elysium.ltd.uk] 
Sent: Tuesday 15 September 2015 11:19
To: vchkpw@inter7.com
Subject: [vchkpw] [SPAM] Segmentation fault in vadduser

In vpopmail-5.5.0 there seems to be a bug in vadduser that causes a 
segmentation fault when a password does not pass the password_strength rules.  
Patch attached.





!DSPAM:55f7e75c41551355020703!

Re: [vchkpw] [SPAM] valias remove alias

[Alessio Cecchi]

Il 15/09/2015 11:22, Drew Wells ha scritto:

In vpopmail-5.5.0 (and I think all 5.4.x)


Hi Drew,

I suggest to install (and debug) vpopmail-5.4.33 that is more stable, 
reliable (and recent) than 5.5.0. Whan I try to use 5.5.0 I found many 
bug and problems tha new features.


Why you need vpopmail-5.5.0 ?
--
Alessio Cecchi
https://www.linkedin.com/in/alessice

!DSPAM:55f7edb641552122517293!

[vchkpw] Auto-Re: [vchkpw] [SPAM] Segmentation fault in vadduser

[zhaopin]

尊敬的同学：您好！

您的求职简历已经收到，我们会尽快进行阅评，之后再决定是否与您面谈！


  中信泰富（中国）投资有限公司
 人力资源部

!DSPAM:55f7e27941558004510909!

[vchkpw] Auto-Re: [vchkpw] [SPAM] Onchange script

[zhaopin]

尊敬的同学：您好！

您的求职简历已经收到，我们会尽快进行阅评，之后再决定是否与您面谈！


  中信泰富（中国）投资有限公司
 人力资源部

!DSPAM:55f7e1cc41551654711741!

Re: [vchkpw] [SPAM] Password strength bug

[Tonix - Antonio Nati]

Il 15/09/2015 11:03, Drew Wells ha scritto:
In vpopmail-5.5.0 there seems to be a bug in vpopmail.c where the 
password strength is checked even if a password isn't used (such as 
when -e is used to add the encrypted password).  Patch attached.







I do not understand the problem.

Of course password strenght is checked every time, and if it founds a 
null/empty password it gives error back if password must have a minimum 
lenght.


Your patch instead permit to have null password even if strenght policy 
would not allow it.


Regards,

Tonino

--

Inter@zioniInterazioni di Antonio Nati
   http://www.interazioni.it  to...@interazioni.it




!DSPAM:55f7ec4641551939410840!

Re: [vchkpw] [SPAM] Password strength bug

[Tonix - Antonio Nati]

Il 15/09/2015 15:03, Drew Wells ha scritto:

On 09/15/2015 11:00 AM, Tonix - Antonio Nati wrote:

Il 15/09/2015 11:03, Drew Wells ha scritto:
In vpopmail-5.5.0 there seems to be a bug in vpopmail.c where the 
password strength is checked even if a password isn't used (such as 
when -e is used to add the encrypted password).  Patch attached.







I do not understand the problem.

Of course password strenght is checked every time, and if it founds a 
null/empty password it gives error back if password must have a 
minimum lenght.


Your patch instead permit to have null password even if strenght 
policy would not allow it.


Regards,

Tonino
The problem is is that vadduser.c can call vadduser() (in vpopmail.c) 
without a password.  It does this in the situation where vadduser.c 
has had the options "-e" or "-n" passed to it, so if this is the case 
the password can't be checked againts the password strength rules.  
The underlying function vadduser() needs to be able to add a user with 
no password.




I realize additional controls are done before calling vadduser(); but I 
personally would prefer an explicit parameter added to vadduser for 
avoiding password check (it may be a further parameter having default = 
"check").

It would make developers more protected against unwanted security bugs.

Regards,

Tonino


 



--

Inter@zioniInterazioni di Antonio Nati
   http://www.interazioni.it  to...@interazioni.it




!DSPAM:55f82abc41552085678254!

Re: [vchkpw] [SPAM] valias remove alias

[Drew Wells]

On 09/15/2015 02:26 PM, Alessio Cecchi wrote:

Il 15/09/2015 15:10, Drew Wells ha scritto:

On 09/15/2015 11:06 AM, Alessio Cecchi wrote:


Il 15/09/2015 11:22, Drew Wells ha scritto:

In vpopmail-5.5.0 (and I think all 5.4.x)


Hi Drew,

I suggest to install (and debug) vpopmail-5.4.33 that is more stable,
reliable (and recent) than 5.5.0. Whan I try to use 5.5.0 I found many
bug and problems tha new features.

Why you need vpopmail-5.5.0 ?

I have been using vpopmail-5.4.x (currently vpopmail-5.4.33) for years
and have always added this patch, so in an attempt get 5.5.0 towards
stable I thought I'd send this patch.  This patch is also applicable to
the 5.4.x branch.
The reason I want to use 5.5.0 is the shared library support which means
I don't need to recompile netqmail and dovecot (and others) each time I
make changes to vpopmail.
I've not found that many bugs with vpopmail-5.5.0 to be honest.


I remember some problems with vpopmaild (that I'm using for password 
change via webmail), with large quota size, and a missing flag in 
MySQL limits for disable_maildrop.


Vpomail-5.5.0 was started from 5.4.28 so change from 5.4.29 to 5.4.33 
are missing (please correct me if I'm wrong).


If you have others useful patch for vpopmail-5.4 you are welcome :-)

Thanks

If that is the case (the missing 5.4.29 -> 5.4.33 changes) I'll have a 
look and get those changes into 5.5.0, I'd really like to use the shared 
library support.


!DSPAM:55f81f7741555484815027!

Re: [vchkpw] [SPAM] Segmentation fault in vadduser

[Drew Wells]

Yes, I know - that's I did some work on 5.5.0 and fixed the segmentation 
fault to try and get it closer to stable.


On 09/15/2015 10:39 AM, Thibault Richard wrote:

This is probably why the 5.4.0 is still not considered as stable (the latest 
stable version is still 5.4.33)

-Original Message-
From: Drew Wells [mailto:drew-vpopm...@elysium.ltd.uk]
Sent: Tuesday 15 September 2015 11:19
To: vchkpw@inter7.com
Subject: [vchkpw] [SPAM] Segmentation fault in vadduser

In vpopmail-5.5.0 there seems to be a bug in vadduser that causes a 
segmentation fault when a password does not pass the password_strength rules.  
Patch attached.










!DSPAM:55f8140941551047816349!

[vchkpw] Auto-Re: [vchkpw] [SPAM] integrated with maildrop

[zhaopin]

尊敬的同学：您好！

您的求职简历已经收到，我们会尽快进行阅评，之后再决定是否与您面谈！


  中信泰富（中国）投资有限公司
 人力资源部

!DSPAM:5595fb4341556565779328!

Re: [vchkpw] vlog has not entries since upgrade

[Matt Brookings]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

On 12/10/2014 10:36 AM, John Stile wrote:
 I have not seen any new additions to the mysql table vlog for a long time, so 
 I am worried an
 update broke something.
 
 I am using vpopmail-5.4.33-r1, mysql-5.5.40, and netqmail-1.06-r2
 
 I tried to delete the vlong table and recreate from what I have read in the 
 source file
 vpopmail-5.4.33/vmysql.c, but still no change.
 
 What could be happening? How can I debug this, when eveything runs though 
 tcpserver?
 
 I am on gentoo, so I hope it is not too spam-ish to show my configure and 
 build log:

John, it's difficult to tell why it's not working from what you've sent along, 
but it sounds like it
could be related to the deletion and re-creation of the table.

Your best bet for debugging is going to be to strace/gdb a manually run qmail 
service that calls
vpopmail.  If you're not comfortable with that, you could try printf debugging. 
 And lastly, if
you're not comfortable with that, feel free to give us a call, and we can help 
you out.

Good luck!
- -- 
/*
Matt Brookings m...@inter7.com   GnuPG Key 62817373
Software developer Systems technician
Inter7 Internet Technologies, Inc. (815)776-9465
*/
-BEGIN PGP SIGNATURE-
Version: GnuPG v2.0.22 (GNU/Linux)

iQEcBAEBAgAGBQJUiwgQAAoJEOjQVexigXNzKBwH/AgOWlCZNrPysL4kdTub9XjN
5XIrzqlyBR9CD1We3eIKGE4p7UY5sLg4vLOSDptZC0eOLlPb3E6V/1vIYWqJMXv5
H9F8tKgcSSwOAvc9rJdjPFH7r0hv46I3tfxlgM6u0VnUWAydf+Hx6DQ/ILvAsiDL
kmlMe2i22d/TALYGjTSZi3JTfL9v+mYSyRRkaD4as3VTx3hhejgnfT7uXO6xNtRz
+Rru7pLYFr0yRpCYaE/JaJNXojG+Kru8V5+4/nGjbD5wLrYbvZ6AtLM7SMcLw5Am
MdSrGNXqXFEjH07xhaNXIgy5OW9CFiS7D6relrI/gaXWjM8gqAhNyrZBtnZkhaw=
=JM35
-END PGP SIGNATURE-

Re: [vchkpw] minimum password length/character combination support?

[Nikolay Mitev]

Hello,

I tested the patch, but an error occurs for qmailadmin-1.2.16-0.el6.x86_64.
Could there be a new version of this patch.

Best regards,
Nikolay

On Thu, Oct 30, 2014 at 1:37 AM, Tom Collins t...@tomlogic.com wrote:

 Sorry, forgot the link to the QmailAdmin patch:
 http://sourceforge.net/p/qmailadmin/patches/28/

 -Tom


 On Oct 29, 2014, at 4:32 PM, Tom Collins wrote:

 I haven't checked the configuration in some time, so I don't know about
 minimum password requirements.

 I did recall this patch on SourceForge to call out to cracklib and require
 a strong password.

 If you're comfortable with Javascript, you could modify the change
 password screen to dynamically update a password status (weak, strong,
 secure) and only enable the change button when both password fields match
 and meet minimum password requirements.

 -Tom


 On Oct 29, 2014, at 11:08 AM, pbre...@purplecat.net 
 pbre...@purplecat.net wrote:

 Tom,

 Thanks for the reply.  Of course, sorry for the naïve query.  Yes we use
 qmailadmin to allow password changes by end users.

 And we’ve just found a writeup here:

 http://mugurel.sumanariu.ro/qmail/qmailadmin-check-if-password-is-strong-enough/
 but it seems a little dodgy.

 There isn’t by any chance a build time variable for qmail admin or
 something a little more within the source tree than the above patch method?

 Thanks again for your reply.


 Sincerely,

 Peter Brezny
 Purplecat Networks Inc.
 www.purplecat.net
 828-250-9446

 *From:* Tom Collins t...@tomlogic.com
 *Sent:* ‎Wednesday‎, ‎October‎ ‎29‎, ‎2014 ‎1‎:‎56‎ ‎PM
 *To:* vchkpw@inter7.com

 The vchkpw program verifies the password.  Are you wondering about the
 vpasswd program for changing a password?  That's an admin program, and
 wouldn't typically enforce a password change policy.

 How do your users currently change their passwords?  QmailAdmin?  Some
 other program?  You would have to incorporate password requirements into
 that program, and not the one that validates a password.

 -Tom


 On Oct 29, 2014, at 7:42 AM, Peter Brezny wrote:
  Dear vchkpw@inter7.com,
 
  Is there a way to enforce a minimum length and character combination
  (letters, numbers, upper case) with vchkpw and if not, are there patches
 or
  external applications that integrate well with vchkpw to get this
  functionality?






 



!DSPAM:54551c6e26513275391490!

Re: [vchkpw] minimum password length/character combination support?

[Tom Collins]

The vchkpw program verifies the password.  Are you wondering about the vpasswd 
program for changing a password?  That's an admin program, and wouldn't 
typically enforce a password change policy.

How do your users currently change their passwords?  QmailAdmin?  Some other 
program?  You would have to incorporate password requirements into that 
program, and not the one that validates a password.

-Tom


On Oct 29, 2014, at 7:42 AM, Peter Brezny wrote:
 Dear vchkpw@inter7.com,
 
 Is there a way to enforce a minimum length and character combination
 (letters, numbers, upper case) with vchkpw and if not, are there patches or
 external applications that integrate well with vchkpw to get this
 functionality?


!DSPAM:54512a5f26519256121473!

Re: [vchkpw] minimum password length/character combination support?

[Tom Collins]

I haven't checked the configuration in some time, so I don't know about minimum 
password requirements.

I did recall this patch on SourceForge to call out to cracklib and require a 
strong password.

If you're comfortable with Javascript, you could modify the change password 
screen to dynamically update a password status (weak, strong, secure) and only 
enable the change button when both password fields match and meet minimum 
password requirements.

-Tom


On Oct 29, 2014, at 11:08 AM, pbre...@purplecat.net pbre...@purplecat.net 
wrote:

 Tom,
 
 Thanks for the reply.  Of course, sorry for the naïve query.  Yes we use 
 qmailadmin to allow password changes by end users.
 
 And we’ve just found a writeup here:
 http://mugurel.sumanariu.ro/qmail/qmailadmin-check-if-password-is-strong-enough/
 but it seems a little dodgy.
 
 There isn’t by any chance a build time variable for qmail admin or something 
 a little more within the source tree than the above patch method?
 
 Thanks again for your reply.
 
 
 Sincerely,
 
 Peter Brezny
 Purplecat Networks Inc.
 www.purplecat.net
 828-250-9446
 
 From: Tom Collins
 Sent: ‎Wednesday‎, ‎October‎ ‎29‎, ‎2014 ‎1‎:‎56‎ ‎PM
 To: vchkpw@inter7.com
 
 The vchkpw program verifies the password.  Are you wondering about the 
 vpasswd program for changing a password?  That's an admin program, and 
 wouldn't typically enforce a password change policy.
 
 How do your users currently change their passwords?  QmailAdmin?  Some other 
 program?  You would have to incorporate password requirements into that 
 program, and not the one that validates a password.
 
 -Tom
 
 
 On Oct 29, 2014, at 7:42 AM, Peter Brezny wrote:
  Dear vchkpw@inter7.com,
  
  Is there a way to enforce a minimum length and character combination
  (letters, numbers, upper case) with vchkpw and if not, are there patches or
  external applications that integrate well with vchkpw to get this
  functionality?
 
 
 
 
 



!DSPAM:5451791d26511096114170!

Re: [vchkpw] minimum password length/character combination support?

[Tom Collins]

Sorry, forgot the link to the QmailAdmin patch: 
http://sourceforge.net/p/qmailadmin/patches/28/

-Tom


On Oct 29, 2014, at 4:32 PM, Tom Collins wrote:

 I haven't checked the configuration in some time, so I don't know about 
 minimum password requirements.
 
 I did recall this patch on SourceForge to call out to cracklib and require a 
 strong password.
 
 If you're comfortable with Javascript, you could modify the change password 
 screen to dynamically update a password status (weak, strong, secure) and 
 only enable the change button when both password fields match and meet 
 minimum password requirements.
 
 -Tom
 
 
 On Oct 29, 2014, at 11:08 AM, pbre...@purplecat.net pbre...@purplecat.net 
 wrote:
 
 Tom,
 
 Thanks for the reply.  Of course, sorry for the naïve query.  Yes we use 
 qmailadmin to allow password changes by end users.
 
 And we’ve just found a writeup here:
 http://mugurel.sumanariu.ro/qmail/qmailadmin-check-if-password-is-strong-enough/
 but it seems a little dodgy.
 
 There isn’t by any chance a build time variable for qmail admin or something 
 a little more within the source tree than the above patch method?
 
 Thanks again for your reply.
 
 
 Sincerely,
 
 Peter Brezny
 Purplecat Networks Inc.
 www.purplecat.net
 828-250-9446
 
 From: Tom Collins
 Sent: ‎Wednesday‎, ‎October‎ ‎29‎, ‎2014 ‎1‎:‎56‎ ‎PM
 To: vchkpw@inter7.com
 
 The vchkpw program verifies the password.  Are you wondering about the 
 vpasswd program for changing a password?  That's an admin program, and 
 wouldn't typically enforce a password change policy.
 
 How do your users currently change their passwords?  QmailAdmin?  Some other 
 program?  You would have to incorporate password requirements into that 
 program, and not the one that validates a password.
 
 -Tom
 
 
 On Oct 29, 2014, at 7:42 AM, Peter Brezny wrote:
  Dear vchkpw@inter7.com,
  
  Is there a way to enforce a minimum length and character combination
  (letters, numbers, upper case) with vchkpw and if not, are there patches or
  external applications that integrate well with vchkpw to get this
  functionality?
 
 
 
 
 
 



!DSPAM:54517a3626514956617183!

Re: [vchkpw] Re: qmailadmin and forwards

[Laurent Bercot]

On 01/09/2014 03:11, Eric Shubert wrote:

Does anyone have any insight or recommendations for how to best use
dovecot's LDA along with vpopmail and qmail? QMT already uses dovecot
for imap and pop3 services. We're simply looking to take the next
logical step.


 Not answering your question, but:
 I use vpopmail with dovecot too, and it works flawlessly without
using the dovecot LDA. What would be the benefit of using the
dovecot LDA since you have to go through vdelivermail anyway ?
It adds a step, which has a cost; to be worth it, the benefits have
to outweigh that cost.

--
 Laurent


!DSPAM:54042ee156441333813399!

Re: [vchkpw] qmailadmin and forwards

[Laurent Bercot]

On 08/28/2014 02:26 PM, Eric Shubert wrote:

Thanks for this explanation Rick. Now knowing how this actually works, I
think I'll join you in being peeved about it. Not knowing any better, I
would have presumed that the user d-q files would have been processed
before the domain d-q files. Makes me wonder what the rationale is/was
for processing the domain files first.


 It has to do with the way vpopmail uses qmail hooks to do its job.
When you create the example.com domain, vpopmail modifies the
/var/qmail/users/assign database so that qmail-local delivers the mail
according to the instructions in ~/vpopmail/domains/example.com .
So what reads your .qmail-* files in the domain directory is not
vdelivermail, it's simply qmail-local.

 What vpopmail does is put a vdelivermail invocation in .qmail-default
in the domain directory. vdelivermail then extracts the user name,
looks it up in its vpasswd database to find the correct directory
(most of the time ~vpopmail/domains/example.com/user) and delivers the
mail according to the instructions in that directory.

 If you put a .qmail file in the domain directory, that takes precedence
over .qmail-default, then vdelivermail will be bypassed entirely. So
don't do that - let vpopmail do its black magic on the domain directory
and only use user directories to put your .qmail files into.

 There are 2 things I'm not satisfied with, but they have nothing to do
with the domain-wide .qmail files.
 The first thing is that vdelivermail duplicates most of the work of
qmail-local for parsing .qmail files. It would be much more elegant to
have vdelivermail just perform the vpopmail-specific stuff (extract user
name, check the vpasswd database, go to user directory) then exec into
qmail-local itself.
 The second thing is that vdelivermail does not make all the black
magic transparent: the .qmail files in a user directory cannot be
written exactly as if the user was a system user instead of a vpopmail
user. I have a program, vsanitize, to be called in .qmail files
in vpopmail user directories, that moves around a few environment
variables to provide such transparency.

--
 Laurent

!DSPAM:54008ad456445328810183!

Re: [vchkpw] qmailadmin and forwards

[Rick Widmer]

One thing to remember, and one of my pet peeves...

Out of all of the files in ~vpopmail/domains/example.com/ only one, 
.qmail-default has anything to do with the vpopmail delivery process.


When qmail-local tries to deliver a message to the domain it looks at 
all of the .qmail-* files in the domain directory, and processes the 
.qmail* file that best matches the incoming address.  If no other .qmail 
file matches .qmail-default is processed, which is where vdelivermail 
gets control.



see:man dot-qmail


.qmail files in ~vpopmail/domains/example.com/username will be handled 
by vdelivermail depending on compiler options.


Vpopmail and qmailadmin do manage the .qmail files in the domain 
directory, but during the delivery process qmail does not pass control 
to vpopmail unless none of the other .qmail files match.


!DSPAM:53fecb3a56448570372193!

Re: [vchkpw] qmailadmin and forwards

[Eric Shubert]

On 08/27/2014 11:24 PM, Rick Widmer wrote:

One thing to remember, and one of my pet peeves...

Out of all of the files in ~vpopmail/domains/example.com/ only one, 
.qmail-default has anything to do with the vpopmail delivery process.


When qmail-local tries to deliver a message to the domain it looks at 
all of the .qmail-* files in the domain directory, and processes the 
.qmail* file that best matches the incoming address.  If no other 
.qmail file matches .qmail-default is processed, which is where 
vdelivermail gets control.



see:man dot-qmail


.qmail files in ~vpopmail/domains/example.com/username will be handled 
by vdelivermail depending on compiler options.


Vpopmail and qmailadmin do manage the .qmail files in the domain 
directory, but during the delivery process qmail does not pass control 
to vpopmail unless none of the other .qmail files match.




Thanks for this explanation Rick. Now knowing how this actually works, I 
think I'll join you in being peeved about it. Not knowing any better, I 
would have presumed that the user d-q files would have been processed 
before the domain d-q files. Makes me wonder what the rationale is/was 
for processing the domain files first.


--
-Eric 'shubes'


!DSPAM:53ff2e0956448319919131!

Re: [vchkpw] qmailadmin and forwards

[Rick Widmer]

On 8/28/2014 7:26 AM, Eric Shubert wrote:

On 08/27/2014 11:24 PM, Rick Widmer wrote:

One thing to remember, and one of my pet peeves...

Out of all of the files in ~vpopmail/domains/example.com/ only one,
.qmail-default has anything to do with the vpopmail delivery process.

When qmail-local tries to deliver a message to the domain it looks at
all of the .qmail-* files in the domain directory, and processes the
.qmail* file that best matches the incoming address.  If no other
.qmail file matches .qmail-default is processed, which is where
vdelivermail gets control.


see:man dot-qmail


.qmail files in ~vpopmail/domains/example.com/username will be handled
by vdelivermail depending on compiler options.

Vpopmail and qmailadmin do manage the .qmail files in the domain
directory, but during the delivery process qmail does not pass control
to vpopmail unless none of the other .qmail files match.




Thanks for this explanation Rick. Now knowing how this actually works, I
think I'll join you in being peeved about it. Not knowing any better, I
would have presumed that the user d-q files would have been processed
before the domain d-q files. Makes me wonder what the rationale is/was
for processing the domain files first.



You don't know it is a user until you have verified the incoming address 
does not match any aliases or mailing lists.


Actually I consider the way it works to be an elegant design. You use 
the standard facilities in qmail to handle the domain directory, and 
only fire up vdelivermail to lookup individual users and forwards within 
the domain.  This is especially important for mailing lists because 
ezmlm and qmail are tightly coupled.


What I am peeved about was people on the qmail list complaining about 
the 'strange' way that vpopmail handles .qmail files, or wanting them to 
be renamed to .vpopmail files when the fact of the matter is that qmail 
only hands off delivery for individual users after qmail-local can't 
find any matching .qmail files in the domain directory.  (.qmail-default)


The humorous part is that the 'strange' behavior they complain about is 
the standard behavior of qmail and vpopmail may not be involved in the 
delivery at all.  (Aliases and mailing lists are controlled by the 
.qmail files in the domain directory.)


!DSPAM:53ff7e7856441903219601!

Re: [vchkpw] qmailadmin and forwards

[Tom Collins]

Rick,

At issue was that qmail only processes the .qmail-alias files in the domain 
directory.  It then hands off to vdelivermail via the .qmail-default file in 
the domain directory.

The vdelivermail program is what parses the user/.qmail file for delivery 
instructions.  While that file follows the same format as other .qmail-alias 
files, I would agree that it would have been clearer to use .vpopmail as the 
filename so users would know that the qmail programs weren't responsible for 
processing it.  If we had remained true to the qmail way, shouldn't it have 
been user/.qmail-default and supported user/.qmail-alias files to handle 
email addressed to user-al...@example.com?

-Tom


On Aug 28, 2014, at 12:09 PM, Rick Widmer wrote:

 What I am peeved about was people on the qmail list complaining about the 
 'strange' way that vpopmail handles .qmail files, or wanting them to be 
 renamed to .vpopmail files when the fact of the matter is that qmail only 
 hands off delivery for individual users after qmail-local can't find any 
 matching .qmail files in the domain directory. (.qmail-default)
 
 The humorous part is that the 'strange' behavior they complain about is the 
 standard behavior of qmail and vpopmail may not be involved in the delivery 
 at all.  (Aliases and mailing lists are controlled by the .qmail files in the 
 domain directory.)


!DSPAM:53ffc37156441140448696!

Re: [vchkpw] qmailadmin and forwards

[Charles Sprickman]

On Aug 27, 2014, at 10:00 AM, Eric Shubert e...@shubes.net wrote:

 On 08/25/2014 05:48 PM, Charles Sprickman wrote:
 I block the spam before it enters the system using simscan.
 Thanks - not an option here since I need to allow users to opt in or out, 
 etc.
 
 The simcontrol file allows you to customize settings per email address. I 
 presume that this would be the initial (forward) address, since the true 
 destination wouldn't be available yet at that point.

The issue with that is we already have a bunch of stuff in webmail and internal 
web apps that deal with per-user settings and such (including some neat 
postscreen things for when I finish standing Postfix up in front of the primary 
mxer), so switching scanning is not really an option.

All alias/forward traffic seems to find its way to qmail via vdelivermail 
piping it to qmail-inject, so I put a wrapper in place of qmail-inject last 
night and that’s looking good.  It’s just a shell script, and it’s a bit hokey, 
but the volume on forwards/aliases is about 5% of our total volume.

Basically it makes a few decisions:

• Is the calling UID 89?  If not, throw the message to real qmail-inject 
immediately
• If it is UID 89, is this offsite or local final delivery?  If local, throw 
message to qmail-inject
• If it is UID 89 and offsite, pipe through spamc to temporary file, look at 
exit status of spamc. If it’s spam, discard, exit 0.  If it’s not spam, read 
the file into qmail-inject

So far so good.  It’s really hackish though.

Charles

 
 -- 
 -Eric 'shubes'
 
 
 
 


!DSPAM:53fdfe8556446577118687!

Re: [vchkpw] qmailadmin and forwards

[Tom Collins]

Charles,

It's been a long time since I've worked in that code, but here are some quick 
thoughts:

1) There's already code reading the headers, searching for mail loops by 
looking at the Delivered-To header.  You could tap into that code.

2) You could look at simscan.c to see how they're interfacing with spamc.

-Tom


On Aug 25, 2014, at 5:48 PM, Charles Sprickman wrote:
 Off to try to follow vdelivermail.c…  :)


!DSPAM:53fc20e356441762611622!

Re: [vchkpw] maildirsize is recalculated too often

[Matt Brookings]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

Thanks, Teodor!  I'll take a look at this.

On 07/03/2014 10:36 AM, Teodor Milkov wrote:
 Hi,
 
 After upgrading to vpopmail 5.4.33 I started seeing much more IO requests. I 
 see that in 5.4.32
 the following code was added to maildirquota.c:
 
 /* Maildir++ specification says to rebuild the maildirsize file if the file 
 is 5120 or more
 bytes, or is more than 15 minutes old */
 
 ret = fstat(f, statptr); if ((ret != -1)  ((statptr-st_size = 5120) || 
 (time(NULL) 
 statptr-st_mtime + (15*60 { unlink(filename); close(f); return -1; }
 
 I think this is not correct interpretation of the specs from 
 www.courier-mta.org/imap/README.maildirquota.html which says:
 
 /If the numbers we got indicated that the Maildir++ *is over quota*, some 
 additional logic is in 
 order: if we did not recalculate //maildirsize//, if the numbers in 
 //maildirsize//indicated that
 we are over quota, then if //maildirsize//was more than one line long, or if 
 the timestamp on 
 //maildirsize//indicated that it's at least 15 minutes old, throw out the 
 totals, and
 recalculate //maildirsize//from scratch./
 
 I.e. the 15 minute logic should be applied only if the Maildir is currently 
 over quota. This
 logic was already implemented in maildirquota.c dockeckquota() where it says 
 if
 (maildirsize_nlines == 1  tm  stat_buf.st_mtime + 15*60), but it didn't 
 work, because
 /stat_buf/ is not set in maildirsize_read().
 
 Please find attached a patch against 5.4.33, which I'm using in production. 
 In addition to the
 minimal fix (initializing stat_buf) it has some documentation as well as some 
 magic numbers
 converted to constants ? feel free to use it however you like.


- -- 
/*
Matt Brookings m...@inter7.com   GnuPG Key 62817373
Software developer Systems technician
Inter7 Internet Technologies, Inc. (815)776-9465
*/
-BEGIN PGP SIGNATURE-
Version: GnuPG v2.0.17 (GNU/Linux)

iQEcBAEBAgAGBQJTw/xQAAoJEOjQVexigXNzIGgIAJ7xmjrH4akfNHAKdtRo96GN
814Jsf1zeDREr0tg5RHwGYzSMTOUwJo1Lb9EoJmMuqtkDcjS3msrIY01XKvAC4aO
RlRquev2bwwMHGBe1xuCPabNe0M2U29u5imOhbpFtxTDzjdvnjULkmSuCbieO61F
tzvhAIlIs/MGECJd1u7AMmeBaEWSZmMjFX6xmXE8NIbTRz1aqHfc8AUNGO7JF3Hh
JhL6KXwioCm81BC3zck1Oxb3Z+m+FQBsdCFbx6LcVPoLa/KR+eAoDZDrt513h8Xf
iGHUkE0IRzWjeDWzkrG4kRkYpeK0g0CCIESsqh8iZSC1RR5mA4++IwJXkRzhE4k=
=pHND
-END PGP SIGNATURE-

RE: [vchkpw] Re: !!! CHECK SENDER !!![vchkpw] [SPAM] Re: [SPAM] Rrdirection problem

[Stéphane SALETTES]

Thank

I suppose the '-' cause problem but i can t change :(

Cordialement

--
Stephane Salettes


ABAC Informatique
1 Bis Ave Pech Loubat
ZI La Coupe
11100 Narbonne

Tél: 33 (0)4 68 41 73 00
FAX : 33 (0)4 6841 73 02
GSM: 33 (0)6 85 36 67 28

http://www.abac-info.com


-Message d'origine-
De : Eric Shubert [mailto:e...@shubes.net] 
Envoyé : jeudi 24 avril 2014 19:46
À : vchkpw@inter7.com
Objet : [vchkpw] Re: !!! CHECK SENDER !!![vchkpw] [SPAM] Re: [SPAM] Rrdirection 
problem

That could very well be, Tom.

Stéphane, I believe the odd behavior is due to qmail's 'extension' 
feature, which comes into play with accounts that contain a '-', and the 
portion before the dash matches another account or forward. You could avoid 
this 'collision' (or 'conflict' or 'commonality') by choosing different address 
names, such as 'ssiad_secretariat@' or 'ssiad.secretariat@' or 
'secretariat-ssiad@' (providing there is no account or forward called 
'secretariat@' in this last case).

Email extensions are a handy feature for some users, but admins need to be 
careful when using a '-' in account names.

--
-Eric 'shubes'

On 04/24/2014 09:43 AM, Tom Collins wrote:
 This sounds like a possible bug (or perhaps a configuration issue) in 
 vdelivermail.

 With MySQL aliases, vdelivermail handles delivery.  It's finding the ssiad 
 forward first and delivering the message there (since -secretariat is an 
 extension to that mailbox).

 By deleting the alias record stored in MySQL and replacing it with a 
 dot-qmail file (.qmail-ssiad), you're allowing Qmail to handle its delivery 
 before the message is handed off to vdelivermail.

 It's been a long time since I've worked with the vpopmail source code, but I 
 imagine you'll find logic in vdelivermail that has it checking for aliases 
 before mailboxes, and it's iterating through all possible base/extension 
 pairs (foo-bar-baz, then foo-bar, then foo).

 -Tom


 On Apr 24, 2014, at 12:50 AM, Stéphane SALETTES wrote:

 Hi,

 You don't understand my problem, maybe because my english is bad :(

 ssiad-secretar...@piemont.fr is a standalone account no foward

 spa...@piemont.fr is a standalone account no foward

 and ss...@piemont.fr is just a foward to spa...@piemont.fr

 but if i send a message to ssiad-secretar...@piemont.fr   nothing in is 
 mailbox but the message is in the box of spa...@piemont.fr

 the work arraound that i find is delete the foward on qmailadmin 
 (mysql) (ss...@piemont.fr -  spa...@piemont.fr) and create a file

 .qmail-ssiad
 spa...@piemont.fr


 Hope you understand me this time sorry :)

 Thank










 Cordialement

 --
 Stephane Salettes


 ABAC Informatique
 1 Bis Ave Pech Loubat
 ZI La Coupe
 11100 Narbonne

 Tél: 33 (0)4 68 41 73 00
 FAX : 33 (0)4 6841 73 02
 GSM: 33 (0)6 85 36 67 28

 http://www.abac-info.com


 -Message d'origine-
 De : xaf [mailto:x...@abaxe.net]
 Envoyé : samedi 19 avril 2014 03:42
 À : vchkpw@inter7.com
 Objet : Re: [vchkpw] Re: !!! CHECK SENDER !!![vchkpw] [SPAM] Re: 
 [SPAM] Rrdirection problem

 |-- Eric Shubert, le 18/04/2014 23:38, a dit :
 3) what you desire to happen
 When i send a message to  ssiad-secretar...@piemont.fr i want that 
 the message go to the ssiad-secretar...@piemont.fr mail box and 
 foward to spa...@piemont.fr

 And when i send a massage to  ss...@piemont.fr i want a simple 
 foward to spa...@piemont.fr
 I think if you modify the ssiad-secretariat@ account to also forward 
 a copy to spasad@, that would achieve your desired behavior. I.e., 
 in qmailadmin, under the Routing section, select Forward To, and 
 check the Save a Copy checkbox.

 it's a part of a solution
 this will create a .qmail file in the user directory but vdelivermail 
 won't read it because of the extension addresses mechanism

 Stéphane
 ssiad-secretariat@ is an alias for user ssiad@ it's quite a strange 
 conf to give a forward to the user and the account to the alias

 mail delivery in a glance
 qmail-send - qmail-lspawn - qmail-local - vdelivermail - 
 vuser/valias

 we must shorten delivery before vdelivermail handle it because of 
ssiad forward, vdelivermail will ignore ssiad-secretariat account IMHO 
a 32 bit guest consumes less memory than a 64 bit one. Unless you
need to address more than 4GB of RAM you really don't get any benefit from a 
64bit VM.

Proxmox dev's seem to agree with me.
http://pve.proxmox.com/wiki/FAQ

Also, the disks should be of type virtio and not IDE. Performance under IDE 
sucks big time.

 lspawn read users/cdb, we can shorten the delivery here, answer 2 
 local read .qmail-files in domain directory, we can shorten too here, 
 answer 1

 answer 1, according vpopmail is in /home/vpopmail create a file 
 .qmail-ssiad-secretariat in /home/vpopmail/domains/piemont.fr
 0600 vpopmail:vchkpw
 write in
 spa...@piemont.fr
 /home/vpopmail/domains/piemont.fr/ssiad-secretariat/Maildir/
 if you want to change the headers

RE: [vchkpw] Re: !!! CHECK SENDER !!![vchkpw] [SPAM] Re: [SPAM] Rrdirection problem

[Stéphane SALETTES]

Hi,

You don't understand my problem, maybe because my english is bad :(

ssiad-secretar...@piemont.fr is a standalone account no foward 

spa...@piemont.fr is a standalone account no foward

and ss...@piemont.fr is just a foward to spa...@piemont.fr

but if i send a message to ssiad-secretar...@piemont.fr   nothing in is mailbox 
but the message is in the box of spa...@piemont.fr

the work arraound that i find is delete the foward on qmailadmin (mysql) 
(ss...@piemont.fr -  spa...@piemont.fr) and create a file 

.qmail-ssiad
spa...@piemont.fr


Hope you understand me this time sorry :)

Thank










Cordialement

--
Stephane Salettes


ABAC Informatique
1 Bis Ave Pech Loubat
ZI La Coupe
11100 Narbonne

Tél: 33 (0)4 68 41 73 00
FAX : 33 (0)4 6841 73 02
GSM: 33 (0)6 85 36 67 28

http://www.abac-info.com


-Message d'origine-
De : xaf [mailto:x...@abaxe.net] 
Envoyé : samedi 19 avril 2014 03:42
À : vchkpw@inter7.com
Objet : Re: [vchkpw] Re: !!! CHECK SENDER !!![vchkpw] [SPAM] Re: [SPAM] 
Rrdirection problem

|-- Eric Shubert, le 18/04/2014 23:38, a dit :
 3) what you desire to happen
  When i send a message to  ssiad-secretar...@piemont.fr i want that 
  the message go to the ssiad-secretar...@piemont.fr mail box and 
  foward to spa...@piemont.fr
 
  And when i send a massage to  ss...@piemont.fr i want a simple 
  foward to spa...@piemont.fr
 I think if you modify the ssiad-secretariat@ account to also forward a 
 copy to spasad@, that would achieve your desired behavior. I.e., in 
 qmailadmin, under the Routing section, select Forward To, and check 
 the Save a Copy checkbox.

it's a part of a solution
this will create a .qmail file in the user directory but vdelivermail won't 
read it because of the extension addresses mechanism

Stéphane
ssiad-secretariat@ is an alias for user ssiad@ it's quite a strange conf to 
give a forward to the user and the account to the alias

mail delivery in a glance
qmail-send - qmail-lspawn - qmail-local - vdelivermail - vuser/valias

we must shorten delivery before vdelivermail handle it because of ssiad 
forward, vdelivermail will ignore ssiad-secretariat account

lspawn read users/cdb, we can shorten the delivery here, answer 2 local read 
.qmail-files in domain directory, we can shorten too here, answer 1

answer 1, according vpopmail is in /home/vpopmail create a file 
.qmail-ssiad-secretariat in /home/vpopmail/domains/piemont.fr
0600 vpopmail:vchkpw
write in
spa...@piemont.fr
/home/vpopmail/domains/piemont.fr/ssiad-secretariat/Maildir/
if you want to change the headers for spasad or 
/home/vpopmail/domains/piemont.fr/spasad/Maildir/
/home/vpopmail/domains/piemont.fr/ssiad-secretariat/Maildir/
for straight copy

answer 2
according to Eric explanation
we have a .qmail in /home/vpopmail/domains/piemont.fr/ssiad-secretariat/
containing
spa...@piemont.fr
/home/vpopmail/domains/piemont.fr/ssiad-secretariat/Maildir/
we need local to read this .qmail file
so lspawn have to point to the correct directory before local handle delivery

edit /var/qmail/users/assign
add the line (check if 89:89 are uid gid of vpopmail:vchkpw)
=piemont.fr-ssiad-secretariat:piemont.fr:89:89:/home/vpopmail/domains/piemont.fr/ssiad-secretariat:::
before the piemont.fr virtual domain line and run /var/qmail/bin/qmail-newu to 
rebuild /var/qmail/users/cdb

answer 3
a forward account instead of a simple forward delete ssiad forward create ssiad 
account apply Eric solution without saving a copy ssiad will be master for 
ssiad-everything but secretariat

xaf








!DSPAM:5358c24734262119615012!

Re: [vchkpw] Re: !!! CHECK SENDER !!![vchkpw] [SPAM] Re: [SPAM] Rrdirection problem

[Tom Collins]

This sounds like a possible bug (or perhaps a configuration issue) in 
vdelivermail.

With MySQL aliases, vdelivermail handles delivery.  It's finding the ssiad 
forward first and delivering the message there (since -secretariat is an 
extension to that mailbox).

By deleting the alias record stored in MySQL and replacing it with a dot-qmail 
file (.qmail-ssiad), you're allowing Qmail to handle its delivery before the 
message is handed off to vdelivermail.

It's been a long time since I've worked with the vpopmail source code, but I 
imagine you'll find logic in vdelivermail that has it checking for aliases 
before mailboxes, and it's iterating through all possible base/extension pairs 
(foo-bar-baz, then foo-bar, then foo).

-Tom


On Apr 24, 2014, at 12:50 AM, Stéphane SALETTES wrote:

 Hi,
 
 You don't understand my problem, maybe because my english is bad :(
 
 ssiad-secretar...@piemont.fr is a standalone account no foward 
 
 spa...@piemont.fr is a standalone account no foward
 
 and ss...@piemont.fr is just a foward to spa...@piemont.fr
 
 but if i send a message to ssiad-secretar...@piemont.fr   nothing in is 
 mailbox but the message is in the box of spa...@piemont.fr
 
 the work arraound that i find is delete the foward on qmailadmin (mysql) 
 (ss...@piemont.fr -  spa...@piemont.fr) and create a file 
 
 .qmail-ssiad
 spa...@piemont.fr
 
 
 Hope you understand me this time sorry :)
 
 Thank
 
 
 
 
 
 
 
 
 
 
 Cordialement
 
 --
 Stephane Salettes
 
 
 ABAC Informatique
 1 Bis Ave Pech Loubat
 ZI La Coupe
 11100 Narbonne
 
 Tél: 33 (0)4 68 41 73 00
 FAX : 33 (0)4 6841 73 02
 GSM: 33 (0)6 85 36 67 28
 
 http://www.abac-info.com
 
 
 -Message d'origine-
 De : xaf [mailto:x...@abaxe.net] 
 Envoyé : samedi 19 avril 2014 03:42
 À : vchkpw@inter7.com
 Objet : Re: [vchkpw] Re: !!! CHECK SENDER !!![vchkpw] [SPAM] Re: [SPAM] 
 Rrdirection problem
 
 |-- Eric Shubert, le 18/04/2014 23:38, a dit :
 3) what you desire to happen
 When i send a message to  ssiad-secretar...@piemont.fr i want that 
 the message go to the ssiad-secretar...@piemont.fr mail box and 
 foward to spa...@piemont.fr
 
 And when i send a massage to  ss...@piemont.fr i want a simple 
 foward to spa...@piemont.fr
 I think if you modify the ssiad-secretariat@ account to also forward a 
 copy to spasad@, that would achieve your desired behavior. I.e., in 
 qmailadmin, under the Routing section, select Forward To, and check 
 the Save a Copy checkbox.
 
 it's a part of a solution
 this will create a .qmail file in the user directory but vdelivermail won't 
 read it because of the extension addresses mechanism
 
 Stéphane
 ssiad-secretariat@ is an alias for user ssiad@ it's quite a strange conf to 
 give a forward to the user and the account to the alias
 
 mail delivery in a glance
 qmail-send - qmail-lspawn - qmail-local - vdelivermail - vuser/valias
 
 we must shorten delivery before vdelivermail handle it because of ssiad 
 forward, vdelivermail will ignore ssiad-secretariat account
 
 lspawn read users/cdb, we can shorten the delivery here, answer 2 local read 
 .qmail-files in domain directory, we can shorten too here, answer 1
 
 answer 1, according vpopmail is in /home/vpopmail create a file 
 .qmail-ssiad-secretariat in /home/vpopmail/domains/piemont.fr
 0600 vpopmail:vchkpw
 write in
 spa...@piemont.fr
 /home/vpopmail/domains/piemont.fr/ssiad-secretariat/Maildir/
 if you want to change the headers for spasad or 
 /home/vpopmail/domains/piemont.fr/spasad/Maildir/
 /home/vpopmail/domains/piemont.fr/ssiad-secretariat/Maildir/
 for straight copy
 
 answer 2
 according to Eric explanation
 we have a .qmail in /home/vpopmail/domains/piemont.fr/ssiad-secretariat/
 containing
 spa...@piemont.fr
 /home/vpopmail/domains/piemont.fr/ssiad-secretariat/Maildir/
 we need local to read this .qmail file
 so lspawn have to point to the correct directory before local handle delivery
 
 edit /var/qmail/users/assign
 add the line (check if 89:89 are uid gid of vpopmail:vchkpw)
 =piemont.fr-ssiad-secretariat:piemont.fr:89:89:/home/vpopmail/domains/piemont.fr/ssiad-secretariat:::
 before the piemont.fr virtual domain line and run /var/qmail/bin/qmail-newu 
 to rebuild /var/qmail/users/cdb
 
 answer 3
 a forward account instead of a simple forward delete ssiad forward create 
 ssiad account apply Eric solution without saving a copy ssiad will be master 
 for ssiad-everything but secretariat
 
 xaf
 
 
 
 
 
 
 
 
 
 


!DSPAM:53593f3d34268127549349!

Re: [vchkpw] Re: !!! CHECK SENDER !!![vchkpw] [SPAM] Re: [SPAM] Rrdirection problem

[Tonix - Antonio Nati]

Stéphane,

try in this way:

 * delete the forward ss...@piemont.fr
 * create one normal account ss...@piemont.fr
 * insert within this account a forward to spa...@piemont.fr

In this way it should work.

Tonino


Il 24/04/2014 19:45, Eric Shubert ha scritto:

That could very well be, Tom.

Stéphane, I believe the odd behavior is due to qmail's 'extension' 
feature, which comes into play with accounts that contain a '-', and 
the portion before the dash matches another account or forward. You 
could avoid this 'collision' (or 'conflict' or 'commonality') by 
choosing different address names, such as 'ssiad_secretariat@' or 
'ssiad.secretariat@' or 'secretariat-ssiad@' (providing there is no 
account or forward called 'secretariat@' in this last case).


Email extensions are a handy feature for some users, but admins need 
to be careful when using a '-' in account names.





--

Inter@zioniInterazioni di Antonio Nati
   http://www.interazioni.it  to...@interazioni.it




!DSPAM:5359502434261244028932!

Re: [vchkpw] [SPAM] Re: [vchkpw] Patches for qmail suggestions and upgrade

[Alessio Cecchi]

Il 17/04/2014 20:39, Jeremy Kister ha scritto:

On 4/17/2014 2:33 PM, Remo Mattei wrote:

Hello all
I have a qmail which is running now I want to up it to netqmail 1.06
so I plan to recomp it and I have vpopmail working so on the new one I
want to add chkuser and tls but also few others like the channel since
gmail and others have been really a pain does anyone suggest a set of
patches or one that does it all in one?


i still like and use my qmail-1.03.isp.patch

it's named isp because i was working for an isp at the them and had
nothing better to name it.  it's used in lots of places that have
nothing to do with an isp.


http://jeremy.kister.net/code/qmail-1.03.isp.patch



Hi,

I'm also running the qmail-1.03.isp.patch from Jeremy and I can confirm 
that works really fine for ISP.


I have made some small add to Jeremy's patch:

http://notes.sagredo.eu/sites/notes.sagredo.eu/files/qmail/patches/qmail-1.03-reread-concurrency.2.patch

and

http://notes.sagredo.eu/sites/notes.sagredo.eu/files/qmail/patches/qmail-queue-custom-error-v2.netqmail-1.05.patch

I'm also using http://jeremy.kister.net/code/ucspi-tcp-0.88.isp.patch.

Thanks Jeremy for your code!

--
Alessio Cecchi is:
@ ILS - http://www.linux.it/~alessice/
on LinkedIn - http://www.linkedin.com/in/alessice
Assistenza Sistemi GNU/Linux - http://www.cecchi.biz
Cloud Email Hosting - http://www.qboxmail.com
@ PLUG - ex-Presidente, adesso senatore a vita, http://www.prato.linux.it

!DSPAM:5350c49234262695215939!

Re: [vchkpw] Patches for qmail suggestions and upgrade

[Alessio Cecchi]

Il 17/04/2014 21:48, Remo Mattei ha scritto:

Hi Jeremy I tried your patch against 1.06 here is the output maybe you can help 
out.


The Jeremy's patch should be apply starting from qmail-1.03. Please, 
read TO INSTALL note.


Ciao

--
Alessio Cecchi is:
@ ILS - http://www.linux.it/~alessice/
on LinkedIn - http://www.linkedin.com/in/alessice
Assistenza Sistemi GNU/Linux - http://www.cecchi.biz
Cloud Email Hosting - http://www.qboxmail.com
@ PLUG - ex-Presidente, adesso senatore a vita, http://www.prato.linux.it

!DSPAM:5350c55034261932847466!

Re: [vchkpw] Re: !!! CHECK SENDER !!![vchkpw] [SPAM] Re: [SPAM] Rrdirection problem

[xaf]

|-- Eric Shubert, le 18/04/2014 23:38, a dit :
 3) what you desire to happen
  When i send a message to  ssiad-secretar...@piemont.fr i want that the 
  message go to the ssiad-secretar...@piemont.fr mail box and foward to 
  spa...@piemont.fr
 
  And when i send a massage to  ss...@piemont.fr i want a simple foward to 
  spa...@piemont.fr
 I think if you modify the ssiad-secretariat@ account to also forward a 
 copy to spasad@, that would achieve your desired behavior. I.e., in 
 qmailadmin, under the Routing section, select Forward To, and check the 
 Save a Copy checkbox.

it's a part of a solution
this will create a .qmail file in the user directory
but vdelivermail won't read it
because of the extension addresses mechanism

Stéphane
ssiad-secretariat@ is an alias for user ssiad@
it's quite a strange conf to give a forward to the user
and the account to the alias

mail delivery in a glance
qmail-send - qmail-lspawn - qmail-local - vdelivermail - vuser/valias

we must shorten delivery before vdelivermail handle it
because of ssiad forward, vdelivermail will ignore ssiad-secretariat account

lspawn read users/cdb, we can shorten the delivery here, answer 2
local read .qmail-files in domain directory, we can shorten too here, answer 1

answer 1, according vpopmail is in /home/vpopmail
create a file .qmail-ssiad-secretariat in /home/vpopmail/domains/piemont.fr
0600 vpopmail:vchkpw
write in
spa...@piemont.fr
/home/vpopmail/domains/piemont.fr/ssiad-secretariat/Maildir/
if you want to change the headers for spasad
or
/home/vpopmail/domains/piemont.fr/spasad/Maildir/
/home/vpopmail/domains/piemont.fr/ssiad-secretariat/Maildir/
for straight copy

answer 2
according to Eric explanation
we have a .qmail in /home/vpopmail/domains/piemont.fr/ssiad-secretariat/
containing
spa...@piemont.fr
/home/vpopmail/domains/piemont.fr/ssiad-secretariat/Maildir/
we need local to read this .qmail file
so lspawn have to point to the correct directory
before local handle delivery

edit /var/qmail/users/assign
add the line (check if 89:89 are uid gid of vpopmail:vchkpw)
=piemont.fr-ssiad-secretariat:piemont.fr:89:89:/home/vpopmail/domains/piemont.fr/ssiad-secretariat:::
before the piemont.fr virtual domain line
and run /var/qmail/bin/qmail-newu to rebuild /var/qmail/users/cdb

answer 3
a forward account instead of a simple forward
delete ssiad forward
create ssiad account
apply Eric solution without saving a copy
ssiad will be master for ssiad-everything but secretariat

xaf





!DSPAM:5351d45834261943715214!

[vchkpw] [SPAM] Re: [vchkpw] Patches for qmail suggestions and upgrade

[Jeremy Kister]

On 4/17/2014 2:33 PM, Remo Mattei wrote:

Hello all
I have a qmail which is running now I want to up it to netqmail 1.06 so I plan 
to recomp it and I have vpopmail working so on the new one I want to add 
chkuser and tls but also few others like the channel since gmail and others 
have been really a pain does anyone suggest a set of patches or one that does 
it all in one?


i still like and use my qmail-1.03.isp.patch

it's named isp because i was working for an isp at the them and had 
nothing better to name it.  it's used in lots of places that have 
nothing to do with an isp.



http://jeremy.kister.net/code/qmail-1.03.isp.patch

--

Jeremy Kister
http://jeremy.kister.net./


!DSPAM:53501fe034262670412911!

Re: [vchkpw] [SPAM] Re: [vchkpw] Patches for qmail suggestions and upgrade

[Remo Mattei]

Do u know what does this patch include will it work on netqmail 1.06?

Thanks

Inviato da iPhone ()

 Il giorno Apr 17, 2014, alle ore 11:39, Jeremy Kister 
 vpopmail...@jeremykister.com ha scritto:
 
 On 4/17/2014 2:33 PM, Remo Mattei wrote:
 Hello all
 I have a qmail which is running now I want to up it to netqmail 1.06 so I 
 plan to recomp it and I have vpopmail working so on the new one I want to 
 add chkuser and tls but also few others like the channel since gmail and 
 others have been really a pain does anyone suggest a set of patches or one 
 that does it all in one?
 
 i still like and use my qmail-1.03.isp.patch
 
 it's named isp because i was working for an isp at the them and had nothing 
 better to name it.  it's used in lots of places that have nothing to do with 
 an isp.
 
 
 http://jeremy.kister.net/code/qmail-1.03.isp.patch
 
 -- 
 
 Jeremy Kister
 http://jeremy.kister.net./
 
 
 
 
 
 
 

!DSPAM:5350229534261724115646!

Re: [vchkpw] [SPAM] Re: [vchkpw] Patches for qmail suggestions and upgrade

[Remo Mattei]

Nice does it have tls?

Inviato da iPhone ()

 Il giorno Apr 17, 2014, alle ore 11:39, Jeremy Kister 
 vpopmail...@jeremykister.com ha scritto:
 
 On 4/17/2014 2:33 PM, Remo Mattei wrote:
 Hello all
 I have a qmail which is running now I want to up it to netqmail 1.06 so I 
 plan to recomp it and I have vpopmail working so on the new one I want to 
 add chkuser and tls but also few others like the channel since gmail and 
 others have been really a pain does anyone suggest a set of patches or one 
 that does it all in one?
 
 i still like and use my qmail-1.03.isp.patch
 
 it's named isp because i was working for an isp at the them and had nothing 
 better to name it.  it's used in lots of places that have nothing to do with 
 an isp.
 
 
 http://jeremy.kister.net/code/qmail-1.03.isp.patch
 
 -- 
 
 Jeremy Kister
 http://jeremy.kister.net./
 
 
 
 
 
 
 

!DSPAM:535022f934261946090414!

Re: [vchkpw] Patches for qmail suggestions and upgrade

[Jeremy Kister]

On 4/17/2014 2:52 PM, Remo Mattei wrote:

Nice does it have tls?


no TLS; i use all SSL.  o well. :)

--

Jeremy Kister
http://jeremy.kister.net./




!DSPAM:5350261b34264808310748!

Re: [vchkpw] Patches for qmail suggestions and upgrade

[Remo Mattei]

Hi Jeremy I tried your patch against 1.06 here is the output maybe you can help 
out.

Thanks
rw-r--r-- 1 root root   167 Apr 17 13:41 cdbmake_add.c.rej
-rw-r--r-- 1 root root   236 Apr 17 13:41 cdb_seek.c.rej
-rw-r--r-- 1 root root   459 Apr 17 13:42 dns.c.rej
-rw-r--r-- 1 root root   312 Apr 17 13:42 error.3.rej
-rw-r--r-- 1 root root   269 Apr 17 13:42 error.h.rej
-rw-r--r-- 1 root root   511 Apr 17 13:43 ipme.c.rej
-rw-r--r-- 1 root root  2958 Apr 17 13:41 Makefile.rej
-rw-r--r-- 1 root root   912 Apr 17 13:45 qmail.c.rej
-rw-r--r-- 1 root root   414 Apr 17 13:43 qmail-local.c.rej
-rw-r--r-- 1 root root  3800 Apr 17 13:43 qmail-pop3d.c.rej
-rw-r--r-- 1 root root  1118 Apr 17 13:43 qmail-popup.c.rej
-rw-r--r-- 1 root root 16882 Apr 17 13:45 qmail-smtpd.c.rej
-rw-r--r-- 1 root root  1074 Apr 17 13:45 sendmail.c.rej
-rw-r--r-- 1 root root   323 Apr 17 13:45 spawn.c.rej


 On 4/17/2014 2:52 PM, Remo Mattei wrote:
 Nice does it have tls?
 
 no TLS; i use all SSL.  o well. :)
 
 -- 
 
 Jeremy Kister
 http://jeremy.kister.net./
 
 
 
 
 
 
 
 
 



!DSPAM:53502ffe34268150421313!

Re: [vchkpw] vpopmail and qmail/assign subaddress separator configuration

[Tom Ierna]

On Apr 14, 2014, at 5:33 PM, Matt Brookings m...@inter7.com wrote:
 On 04/14/2014 03:32 PM, Tom Ierna wrote:
 In any case, I'm again looking into how to make a domain on one of my 
 vpopmail/qmail servers use
 the + separator for subaddresses, rather than -, and I'm coming up dry. 
 I realize that
 changing the subaddress separator will have an effect on ezmlm-idx, which I 
 use on this server,
 so that's why I only want to change the subaddress separator on a single 
 domain.
 
 You could build a secondary vpopmail installation in another location on the 
 server, using the
 alternate separator.  If your current one is in /home/vpopmail, build a 
 /home/vpopmail2 with the
 alternate configuration.

Thanks, Matt.

This may be a solution.

Can you point me in the right direction for where to change the subaddress 
separator for vpopmail, since changing /var/qmail/users/assign has no effect?

Best,
-Tom
!DSPAM:534df65034261006356087!

Re: [vchkpw] vpopmail and qmail/assign subaddress separator configuration

[Matt Brookings]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

On 04/14/2014 03:32 PM, Tom Ierna wrote:
 In any case, I'm again looking into how to make a domain on one of my 
 vpopmail/qmail servers use
 the + separator for subaddresses, rather than -, and I'm coming up dry. I 
 realize that
 changing the subaddress separator will have an effect on ezmlm-idx, which I 
 use on this server,
 so that's why I only want to change the subaddress separator on a single 
 domain.

You could build a secondary vpopmail installation in another location on the 
server, using the
alternate separator.  If your current one is in /home/vpopmail, build a 
/home/vpopmail2 with the
alternate configuration.
- -- 
/*
Matt Brookings m...@inter7.com   GnuPG Key 62817373
Software developer Systems technician
Inter7 Internet Technologies, Inc. (815)776-9465
*/
-BEGIN PGP SIGNATURE-
Version: GnuPG v2.0.17 (GNU/Linux)

iQEcBAEBAgAGBQJTTFQ/AAoJEOjQVexigXNz2YgIAIiFS/eU8X1/sz1bTrPpEI9j
OP+VTI+zvN2xSFi7sJw71MGIFgYPkIcBvlvI6YrWbCPpHrWHvcKhOCoeWypFGFme
sQe5QjYzJtJfblxIhhIgz2Qjt85d2EeYVla4H/kA1/KA5MEaYQCRJQKfcYo/W/CC
VdSJFuEIm63nIBhaeD9tVn5Sz2mYXwrRxBzFNAlCHjUWiK5/8/m/Uk0DwUAHvX5H
HCdBVHVJHqTxCifnJWiAzJvsqTLhr5CXCICgB4VIBCfJuWG9wXiMf4Dd1O9remFk
1Ti7LJ7tn9b0FHNgU3obDZG+l8FmkMPtxb0FDPKvV2Sdd3st0G7fyd5zT1lQIjM=
=pLMg
-END PGP SIGNATURE-

[vchkpw] [SPAM] Re: [vchkpw] [SPAM] Re: [vchkpw] [SPAM] Re: [vchkpw] Qmail maillog vchkpw-submission vs vchkpw-smtp

[clay]

 

It doesn't matter how good your password is if you're using plaintext
connections :) 

Since every MUA I've used i nthe last few years supports SSL or TLS I
should really get around to deprecating pop3 and imap and only using
pop3s and imaps. 

This is especially imporant since some govts are trying to push through
laws forcing ISP's to store all of the data each of their users
downloads meaning that your unencrypted data will remain stored for
however long is legislated with access by who knows how many people. 

\Clay 

On 2014-03-05 07:57, Tom Collins wrote: 

 The submission entries outside the US could very well be from hacked 
 accounts. 
 
 I'm finding a surprising number of compromised accounts (once a week?), 
 including users with good passwords, so I have to assume they're snooped on 
 public wireless, or their computers are compromised by malware of some sort. 
 
 The vckpw-smtp entries from outside the US are probably also hacked accounts, 
 since mail received from remote servers doesn't include authentication. Sorry 
 I wasn't thinking clearly in my previous response -- I forgot these were 
 vchkpw entries and are only related to authentication. I was thinking about 
 qmail logs. 
 
 -Tom 
 
 On Mar 4, 2014, at 10:43 PM, LHTek wrote: 
 
 Thanks for the reply.
 
 NOTE: None of my users will have sent anything from outside the US.
 
 I've got some log entries for vchkpw-submission (marked as successful in the 
 log) with non-US IP's (Russia, Egypt, Honk Kong, etc). In my analysis I'm 
 marking those entries as hacked accounts. 
 
 From what I read from your response, vchkpw-smtp (marked as successful in the 
 log) entries could be mail sent TO my server FROM another server on port 25. 
 That tells me those are probably safe submissions - even if they are from 
 overseas IPs. Am I thinking correctly? 
 
 -
 FROM: Tom Collins t...@tomlogic.com
 TO: vchkpw@inter7.com 
 SENT: Wednesday, March 5, 2014 12:02 AM
 SUBJECT: Re: [vchkpw] Qmail maillog vchkpw-submission vs vchkpw-smtp
 
 vchkpw-submission is on port 587, and is typically used for emai clients 
 relaying mail. It's often set up to require authentication. 
 
 vchkpw-smtp is on port 25, and can be used for email clients to relay mail, 
 or by other servers delivering mail to your server. 
 
 -Tom 
 
 On Mar 4, 2014, at 9:41 PM, LHTek wrote: 
 
 In the /var/log/maillog file what is the difference between these 2 entries 
 (vchkpw-submission, vchkpw-smtp)? 
 
 example: 
 Mar 4 17:27:03 michael vpopmail[14701]: vchkpw-submission: (PLAIN) login 
 success t...@domain.com:64.185.3.238 
 Mar 4 10:54:42 michael vpopmail[29027]: vchkpw-smtp: (PLAIN) login success 
 t...@domain.com:64.57.239.114
  

 

!DSPAM:53171ca934269165765629!

Re: [vchkpw] [SPAM] Re: [vchkpw] [SPAM] Re: [vchkpw] [SPAM] Re: [vchkpw] Qmail maillog vchkpw-submission vs vchkpw-smtp

[LHTek]

I am using PLAIN text passwords I'm afraid. I will be changing that now though. 
I very tired of these password hacks.

Since this will be a new process for me I have questions: In changing the 
server to require encrypted passwords, will I need to contact all my clients 
and have them change the way they connect? Or will their email clients just 
automate the change?








 From: c...@milos.co.za c...@milos.co.za
To: vchkpw@inter7.com 
Sent: Wednesday, March 5, 2014 6:45 AM
Subject: [vchkpw] [SPAM] Re: [vchkpw] [SPAM] Re: [vchkpw] [SPAM] Re: [vchkpw] 
Qmail maillog  vchkpw-submission vs vchkpw-smtp
 


It doesn't matter how good your password is if you're using plaintext 
connections :)
Since every MUA I've used i nthe last few years supports SSL or TLS I should 
really get around to deprecating pop3 and imap and only using pop3s and imaps.
This is especially imporant since some govts are trying to push through laws 
forcing ISP's to store all of the data each of their users downloads meaning 
that your unencrypted data will remain stored for however long is legislated 
with access by who knows how many people.
 
\\Clay
 
On 2014-03-05 07:57, Tom Collins wrote:
The submission entries outside the US could very well be from hacked accounts. 
 
I'm finding a surprising number of compromised accounts (once a week?), 
including users with good passwords, so I have to assume they're snooped on 
public wireless, or their computers are compromised by malware of some sort.
 
The vckpw-smtp entries from outside the US are probably also hacked accounts, 
since mail received from remote servers doesn't include authentication.  
Sorry I wasn't thinking clearly in my previous response -- I forgot these 
were vchkpw entries and are only related to authentication.  I was thinking 
about qmail logs.


-Tom

On Mar 4, 2014, at 10:43 PM, LHTek wrote:

Thanks for the reply.

NOTE: None of my users will have sent anything from outside the US.

I've got some log entries for vchkpw-submission (marked as successful in the 
log) with non-US IP's (Russia, Egypt, Honk Kong, etc).In my analysis I'm 
marking those entries as hacked accounts. 


From what I read from your response, vchkpw-smtp (marked as successful in 
the log) entries could be mail sent TO my server FROM another server on port 
25. That tells me those are probably safe submissions - even if they are 
from overseas IPs. Am I thinking correctly?
 
 
 




From: Tom Collins t...@tomlogic.com
To: vchkpw@inter7.com 
Sent: Wednesday, March 5, 2014 12:02 AM
Subject: Re: [vchkpw] Qmail maillog vchkpw-submission vs vchkpw-smtp



vchkpw-submission is on port 587, and is typically used for emai clients 
relaying mail.  It's often set up to require authentication. 
 
vchkpw-smtp is on port 25, and can be used for email clients to relay mail, 
or by other servers delivering mail to your server.


 
-Tom

On Mar 4, 2014, at 9:41 PM, LHTek wrote:

In the /var/log/maillog file what is the difference between these 2 entries 
(vchkpw-submission, vchkpw-smtp)?
 
example:
Mar  4 17:27:03 michael vpopmail[14701]: vchkpw-submission: (PLAIN) login 
success t...@domain.com:64.185.3.238
Mar  4 10:54:42 michael vpopmail[29027]: vchkpw-smtp: (PLAIN) login 
success t...@domain.com:64.57.239.114
 
 


 
 
 



!DSPAM:531743f234265098613353!

[vchkpw] Re: [SPAM] Re: [vchkpw] [SPAM] Re: [vchkpw] [SPAM] Re: [vchkpw] Qmail maillog vchkpw-submission vs vchkpw-smtp

[Eric Shubert]

PLAIN authentication is ok, provided that TLS has been activated by the 
client (presumably before credentials are sent) or SSL is in use 
(unconventional 465 port).


In changing this, each client will need to be manually reconfigured. I'm 
not aware of any client that automatically adjusts to changes such as this.


I'm not aware of a practical way to require encrypted passwords for 
qmail-smtpd (whether on port 25 or 587) at this point. Spamdyke has a 
recent feature allowing it to handle authentication, and I believe that 
Sam will be adding a setting to require encryption before authentication 
in the next release. When that's available, I'll be changing QMT to use 
spamdyke for authentication, which will (at last) allow for enforcement 
of this policy (no passwords sent in clear text).


On the retrieval side of things, dovecot provides such a configuration 
parameter, #disable_plaintext_auth = yes, which is the default value.


P.S. FWIW, I would have not expected to see (as many) unauthorized 
attempts on port 587. Spammers will eventually use this port though.


--
-Eric 'shubes'

On 03/05/2014 08:34 AM, LHTek wrote:

I am using PLAIN text passwords I'm afraid. I will be changing that now
though. I very tired of these password hacks.

Since this will be a new process for me I have questions: In changing
the server to require encrypted passwords, will I need to contact all my
clients and have them change the way they connect? Or will their email
clients just automate the change?





*From:* c...@milos.co.za c...@milos.co.za
*To:* vchkpw@inter7.com
*Sent:* Wednesday, March 5, 2014 6:45 AM
*Subject:* [vchkpw] [SPAM] Re: [vchkpw] [SPAM] Re: [vchkpw] [SPAM]
Re: [vchkpw] Qmail maillog vchkpw-submission vs vchkpw-smtp

It doesn't matter how good your password is if you're using
plaintext connections :)
Since every MUA I've used i nthe last few years supports SSL or TLS
I should really get around to deprecating pop3 and imap and only
using pop3s and imaps.
This is especially imporant since some govts are trying to push
through laws forcing ISP's to store all of the data each of their
users downloads meaning that your unencrypted data will remain
stored for however long is legislated with access by who knows how
many people.
\\Clay
On 2014-03-05 07:57, Tom Collins wrote:

The submission entries outside the US could very well be from
hacked accounts.
I'm finding a surprising number of compromised accounts (once a
week?), including users with good passwords, so I have to assume
they're snooped on public wireless, or their computers are
compromised by malware of some sort.
The vckpw-smtp entries from outside the US are probably also
hacked accounts, since mail received from remote servers doesn't
include authentication.  Sorry I wasn't thinking clearly in my
previous response -- I forgot these were vchkpw entries and are
only related to authentication.  I was thinking about qmail logs.

-Tom

On Mar 4, 2014, at 10:43 PM, LHTek wrote:


Thanks for the reply.

NOTE: None of my users will have sent anything from outside the US.

I've got some log entries for vchkpw-submission (marked as
successful in the log) with non-US IP's (Russia, Egypt, Honk
Kong, etc).In my analysis I'm marking those entries as hacked
accounts.

From what I read from your response, vchkpw-smtp (marked as
successful in the log) entries could be mail sent TO my server
FROM another server on port 25. That tells me those are probably
safe submissions - even if they are from overseas IPs. Am I
thinking correctly?


*From:* Tom Collins t...@tomlogic.com mailto:t...@tomlogic.com
*To:* vchkpw@inter7.com mailto:vchkpw@inter7.com
*Sent:* Wednesday, March 5, 2014 12:02 AM
*Subject:* Re: [vchkpw] Qmail maillog vchkpw-submission vs
vchkpw-smtp

vchkpw-submission is on port 587, and is typically used for
emai clients relaying mail.  It's often set up to require
authentication.
vchkpw-smtp is on port 25, and can be used for email clients
to relay mail, or by other servers delivering mail to your
server.

-Tom

On Mar 4, 2014, at 9:41 PM, LHTek wrote:


In the /var/log/maillog file what is the difference between
these 2 entries (vchkpw-submission, vchkpw-smtp)?
example:
Mar  4 17:27:03 michael vpopmail[14701]: vchkpw-submission:
(PLAIN) login success t...@domain.com:64.185.3.238
Mar  4 10:54:42 michael vpopmail[29027]: vchkpw-smtp:
(PLAIN) login success t...@domain.com:64.57.239.114












!DSPAM:531756ed34261630194476!

[vchkpw] [SPAM] Re: [vchkpw] Qmail maillog vchkpw-submission vs vchkpw-smtp

[FBBE -- INTERNET]

Cher Client,

Nous avons bien reçu votre e-mail et nous vous en remercions. Nos 
collaborateurs le traiteront aussi rapidement que possible.

Attention : ceci est une réponse automatique. Vous ne pouvez donc pas y 
répondre.

Veuillez agréer nos salutations distinguées. 

BNP Paribas Fortis SA
T : +32(0)2 762 20 00
Montagne du Parc 3, 1QA5E, 1000 Bruxelles | www.bnpparibasfortis.be



Geachte klant,

Wij hebben uw e-mail goed ontvangen, waarvoor dank. Onze medewerkers zullen uw 
vraag zo snel mogelijk beantwoorden.

Opgelet : dit is een automatisch bericht. Hierop kan u geen antwoord versturen.

Met vriendelijke groeten,

BNP Paribas Fortis NV
T : +32(0)2 762 60 00
Warandeberg 3, 1QA5E, 1000 Brussel | www.bnpparibasfortis.be



Dear customer,

We hereby acknowledge receipt of your e-mail. Thank you. Our staff will answer 
your query as soon as possible.

Careful: This is an automatic message. Please do not reply.

Yours sincerely,

BNP Paribas Fortis SA/NV
T : +32(0)2 261 11 11
Warandeberg 3, 1QA5E, 1000 Brussels | www.bnpparibasfortis.be



Sehr geehrte Kundin, sehr geehrter Kunde,

Wir danken Ihnen für Ihre E-Mail. Unsere Mitarbeiter werden Ihnen so schnell 
wie möglich antworten.

Achtung: dies ist eine automatische Nachricht. Sie können sie folglich nicht 
beantworten.

Freundliche Grüße

BNP Paribas Fortis SA/NV
T : +32(0)2 261 11 11
Warandeberg 3, 1QA5E, 1000 Brussel | www.bnpparibasfortis.be

- Original Message -
From: LHTek dennywjo...@yahoo.com
Sent: Tuesday, March 4, 2014 9:41:18 PM GMT-08:00
Subject: [vchkpw] Qmail maillog vchkpw-submission vs vchkpw-smtp

In the /var/log/maillog file what is the difference between these 2 entries 
(vchkpw-submission, vchkpw-smtp)?

example:
Mar  4 17:27:03 michael vpopmail[14701]: vchkpw-submission: (PLAIN) login 
success t...@domain.com:64.185.3.238

Mar  4 10:54:42 michael vpopmail[29027]: vchkpw-smtp: (PLAIN) login success 
t...@domain.com:64.57.239.114


==
BNP Paribas Fortis disclaimer:
http://www.bnpparibasfortis.com/e-mail-disclaimer.html
 
BNP Paribas Fortis privacy policy:
http://www.bnpparibasfortis.com/privacy-policy.html
 
==


!DSPAM:5316ba7434262017919841!

Re: [vchkpw] Qmail maillog vchkpw-submission vs vchkpw-smtp

[Tom Collins]

vchkpw-submission is on port 587, and is typically used for emai clients 
relaying mail.  It's often set up to require authentication.

vchkpw-smtp is on port 25, and can be used for email clients to relay mail, or 
by other servers delivering mail to your server.

-Tom


On Mar 4, 2014, at 9:41 PM, LHTek wrote:

 In the /var/log/maillog file what is the difference between these 2 entries 
 (vchkpw-submission, vchkpw-smtp)?
 
 example:
 Mar  4 17:27:03 michael vpopmail[14701]: vchkpw-submission: (PLAIN) login 
 success t...@domain.com:64.185.3.238
 Mar  4 10:54:42 michael vpopmail[29027]: vchkpw-smtp: (PLAIN) login success 
 t...@domain.com:64.57.239.114
 
 
 



!DSPAM:5316bde734268482773211!

[vchkpw] [SPAM] Re: [vchkpw] Qmail maillog vchkpw-submission vs vchkpw-smtp

[FBBE -- INTERNET]

Cher Client,

Nous avons bien reçu votre e-mail et nous vous en remercions. Nos 
collaborateurs le traiteront aussi rapidement que possible.

Attention : ceci est une réponse automatique. Vous ne pouvez donc pas y 
répondre.

Veuillez agréer nos salutations distinguées. 

BNP Paribas Fortis SA
T : +32(0)2 762 20 00
Montagne du Parc 3, 1QA5E, 1000 Bruxelles | www.bnpparibasfortis.be



Geachte klant,

Wij hebben uw e-mail goed ontvangen, waarvoor dank. Onze medewerkers zullen uw 
vraag zo snel mogelijk beantwoorden.

Opgelet : dit is een automatisch bericht. Hierop kan u geen antwoord versturen.

Met vriendelijke groeten,

BNP Paribas Fortis NV
T : +32(0)2 762 60 00
Warandeberg 3, 1QA5E, 1000 Brussel | www.bnpparibasfortis.be



Dear customer,

We hereby acknowledge receipt of your e-mail. Thank you. Our staff will answer 
your query as soon as possible.

Careful: This is an automatic message. Please do not reply.

Yours sincerely,

BNP Paribas Fortis SA/NV
T : +32(0)2 261 11 11
Warandeberg 3, 1QA5E, 1000 Brussels | www.bnpparibasfortis.be



Sehr geehrte Kundin, sehr geehrter Kunde,

Wir danken Ihnen für Ihre E-Mail. Unsere Mitarbeiter werden Ihnen so schnell 
wie möglich antworten.

Achtung: dies ist eine automatische Nachricht. Sie können sie folglich nicht 
beantworten.

Freundliche Grüße

BNP Paribas Fortis SA/NV
T : +32(0)2 261 11 11
Warandeberg 3, 1QA5E, 1000 Brussel | www.bnpparibasfortis.be

- Original Message -
From: Tom Collins t...@tomlogic.com
Sent: Tuesday, March 4, 2014 10:02:12 PM GMT-08:00
Subject: Re: [vchkpw] Qmail maillog vchkpw-submission vs vchkpw-smtp

vchkpw-submission is on port 587, and is typically used for emai clients 
relaying mail.  It's often set up to require authentication.

vchkpw-smtp is on port 25, and can be used for email clients to relay mail, or 
by other servers delivering mail to your server.

-Tom


On Mar 4, 2014, at 9:41 PM, LHTek wrote:

 In the /var/log/maillog file what is the difference between these 2 entries 
 (vchkpw-submission, vchkpw-smtp)?
 
 example:
 Mar  4 17:27:03 michael vpopmail[14701]: vchkpw-submission: (PLAIN) login 
 success t...@domain.com:64.185.3.238
 Mar  4 10:54:42 michael vpopmail[29027]: vchkpw-smtp: (PLAIN) login success 
 t...@domain.com:64.57.239.114
 
 
 




==
BNP Paribas Fortis disclaimer:
http://www.bnpparibasfortis.com/e-mail-disclaimer.html
 
BNP Paribas Fortis privacy policy:
http://www.bnpparibasfortis.com/privacy-policy.html
 
==


!DSPAM:5316be7c34261148094982!

[vchkpw] [SPAM] Re: [vchkpw] Qmail maillog vchkpw-submission vs vchkpw-smtp

[LHTek]

Thanks for the reply.

NOTE: None of my users will have sent anything from outside the US.

I've got some log entries for vchkpw-submission (marked as successful in the 
log) with non-US IP's (Russia, Egypt, Honk Kong, etc).In my analysis I'm 
marking those entries as hacked accounts.

From what I read from your response, vchkpw-smtp (marked as successful in the 
log) entries could be mail sent TO my server FROM another server on port 25. 
That tells me those are probably safe submissions - even if they are from 
overseas IPs. Am I thinking correctly?







 From: Tom Collins t...@tomlogic.com
To: vchkpw@inter7.com 
Sent: Wednesday, March 5, 2014 12:02 AM
Subject: Re: [vchkpw] Qmail maillog vchkpw-submission vs vchkpw-smtp
 


vchkpw-submission is on port 587, and is typically used for emai clients 
relaying mail.  It's often set up to require authentication.


vchkpw-smtp is on port 25, and can be used for email clients to relay mail, or 
by other servers delivering mail to your server.


-Tom


On Mar 4, 2014, at 9:41 PM, LHTek wrote:

In the /var/log/maillog file what is the difference between these 2 entries 
(vchkpw-submission, vchkpw-smtp)?


example:
Mar  4 17:27:03 michael vpopmail[14701]: vchkpw-submission: (PLAIN) login 
success t...@domain.com:64.185.3.238

Mar  4 10:54:42 michael vpopmail[29027]: vchkpw-smtp: (PLAIN) login success 
t...@domain.com:64.57.239.114





 



!DSPAM:5316c7aa34265248780387!

[vchkpw] [SPAM] Re: [vchkpw] [SPAM] Re: [vchkpw] Qmail maillog vchkpw-submission vs vchkpw-smtp

[Tom Collins]

The submission entries outside the US could very well be from hacked accounts.

I'm finding a surprising number of compromised accounts (once a week?), 
including users with good passwords, so I have to assume they're snooped on 
public wireless, or their computers are compromised by malware of some sort.

The vckpw-smtp entries from outside the US are probably also hacked accounts, 
since mail received from remote servers doesn't include authentication.  Sorry 
I wasn't thinking clearly in my previous response -- I forgot these were vchkpw 
entries and are only related to authentication.  I was thinking about qmail 
logs.

-Tom


On Mar 4, 2014, at 10:43 PM, LHTek wrote:

 Thanks for the reply.
 
 NOTE: None of my users will have sent anything from outside the US.
 
 I've got some log entries for vchkpw-submission (marked as successful in the 
 log) with non-US IP's (Russia, Egypt, Honk Kong, etc). In my analysis I'm 
 marking those entries as hacked accounts.
 
 From what I read from your response, vchkpw-smtp (marked as successful in the 
 log) entries could be mail sent TO my server FROM another server on port 25. 
 That tells me those are probably safe submissions - even if they are from 
 overseas IPs. Am I thinking correctly?
 
 
 
 
 From: Tom Collins t...@tomlogic.com
 To: vchkpw@inter7.com 
 Sent: Wednesday, March 5, 2014 12:02 AM
 Subject: Re: [vchkpw] Qmail maillog vchkpw-submission vs vchkpw-smtp
 
 vchkpw-submission is on port 587, and is typically used for emai clients 
 relaying mail.  It's often set up to require authentication.
 
 vchkpw-smtp is on port 25, and can be used for email clients to relay mail, 
 or by other servers delivering mail to your server.
 
 -Tom
 
 
 On Mar 4, 2014, at 9:41 PM, LHTek wrote:
 
 In the /var/log/maillog file what is the difference between these 2 entries 
 (vchkpw-submission, vchkpw-smtp)?
 
 example:
 Mar  4 17:27:03 michael vpopmail[14701]: vchkpw-submission: (PLAIN) login 
 success t...@domain.com:64.185.3.238
 Mar  4 10:54:42 michael vpopmail[29027]: vchkpw-smtp: (PLAIN) login success 
 t...@domain.com:64.57.239.114
 
 
 
 
 
 



!DSPAM:5316cae034263249811152!

Re: [vchkpw] Bug in maildirquota.c

[Matt Brookings]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

On 01/31/2014 05:34 AM, Simone Lazzaris wrote:
 The file descriptor number 5 of that process is pointing at the maildirsize 
 file of the mailbox,
 and is marked as deleted in /proc/procid/fd
 
 We store the mail in a NetApp NFS share, without locking for performance 
 reasons, and I think
 I've found the problem: the file is deleted by someone else while 
 vdelivermail is reading it.

You can correct this particular issue by making sure you're mounting with at 
least NFS v3, and that
the time on the two systems is synchronized.  NFS v4 would, of course, be 
better.

 
 In maildirquota.c, function maildirsize_read, there is a while loop that 
 reads: while (l) { 
 n=read(f, p, l); if (n  0) {
 
 But n is defined as a unsigned int (64 bit) , so even if read returns a 
 negative value (error)
 the if is never trigged.

I've made note of this.
Thanks for the report!
- -- 
/*
Matt Brookings m...@inter7.com   GnuPG Key 62817373
Software developer Systems technician
Inter7 Internet Technologies, Inc. (815)776-9465
*/
-BEGIN PGP SIGNATURE-
Version: GnuPG v2.0.17 (GNU/Linux)

iQEcBAEBAgAGBQJS69n9AAoJEOjQVexigXNz1JMH/0WvMHTImzOWfHr980YVcmtB
0IFAAKn6PHUP57y2wm+cJ/+uEu9vz9YMOHRpQK/aoBu9kIzQHRF2GGvj0eSnuh7v
1+LqwB1X3j3dDdNiMHtC6rjFkueuDG/fNZ5r8YfHTc+azl5lhiFRZz9nqSuPjShq
ZAU0TYXBU1wd3/0LvRvA9mAltbJs0CWgE1s/ht0r4bZv+b4Fq4Gy2alKN0bijCgu
145bIDhDbrczlp2Vmz8USEZJsTJj2SjxWRcFRha5VYP0zgmFAdrcKNdAESkEWVV3
hcMz15N870OSA21ZAEwd/rppG8rZf5sCRWOuqJRg1WrtTuEZdYqSKt5vAJ3eShE=
=qtFi
-END PGP SIGNATURE-

Re: [vchkpw] Bug in maildirquota.c

[FBBE -- INTERNET]

Cher Client,

Nous avons bien reçu votre e-mail et nous vous en remercions. Nos 
collaborateurs le traiteront aussi rapidement que possible.

Attention : ceci est une réponse automatique. Vous ne pouvez donc pas y 
répondre.

Veuillez agréer nos salutations distinguées. 

BNP Paribas Fortis SA
T : +32(0)2 762 20 00
Montagne du Parc 3, 1QA5E, 1000 Bruxelles | www.bnpparibasfortis.be



Geachte klant,

Wij hebben uw e-mail goed ontvangen, waarvoor dank. Onze medewerkers zullen uw 
vraag zo snel mogelijk beantwoorden.

Opgelet : dit is een automatisch bericht. Hierop kan u geen antwoord versturen.

Met vriendelijke groeten,

BNP Paribas Fortis NV
T : +32(0)2 762 60 00
Warandeberg 3, 1QA5E, 1000 Brussel | www.bnpparibasfortis.be



Dear customer,

We hereby acknowledge receipt of your e-mail. Thank you. Our staff will answer 
your query as soon as possible.

Careful: This is an automatic message. Please do not reply.

Yours sincerely,

BNP Paribas Fortis SA/NV
T : +32(0)2 261 11 11
Warandeberg 3, 1QA5E, 1000 Brussels | www.bnpparibasfortis.be



Sehr geehrte Kundin, sehr geehrter Kunde,

Wir danken Ihnen für Ihre E-Mail. Unsere Mitarbeiter werden Ihnen so schnell 
wie möglich antworten.

Achtung: dies ist eine automatische Nachricht. Sie können sie folglich nicht 
beantworten.

Freundliche Grüße

BNP Paribas Fortis SA/NV
T : +32(0)2 261 11 11
Warandeberg 3, 1QA5E, 1000 Brussel | www.bnpparibasfortis.be

- Original Message -
From: Matt Brookings m...@inter7.com
Sent: Friday, January 31, 2014 11:14:37 AM GMT-06:00
Subject: Re: [vchkpw] Bug in maildirquota.c

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

On 01/31/2014 05:34 AM, Simone Lazzaris wrote:
 The file descriptor number 5 of that process is pointing at the maildirsize 
 file of the mailbox,
 and is marked as deleted in /proc/procid/fd
 
 We store the mail in a NetApp NFS share, without locking for performance 
 reasons, and I think
 I've found the problem: the file is deleted by someone else while 
 vdelivermail is reading it.

You can correct this particular issue by making sure you're mounting with at 
least NFS v3, and that
the time on the two systems is synchronized.  NFS v4 would, of course, be 
better.

 
 In maildirquota.c, function maildirsize_read, there is a while loop that 
 reads: while (l) { 
 n=read(f, p, l); if (n  0) {
 
 But n is defined as a unsigned int (64 bit) , so even if read returns a 
 negative value (error)
 the if is never trigged.

I've made note of this.
Thanks for the report!
- -- 
/*
Matt Brookings m...@inter7.com   GnuPG Key 62817373
Software developer Systems technician
Inter7 Internet Technologies, Inc. (815)776-9465
*/
-BEGIN PGP SIGNATURE-
Version: GnuPG v2.0.17 (GNU/Linux)

iQEcBAEBAgAGBQJS69n9AAoJEOjQVexigXNz1JMH/0WvMHTImzOWfHr980YVcmtB
0IFAAKn6PHUP57y2wm+cJ/+uEu9vz9YMOHRpQK/aoBu9kIzQHRF2GGvj0eSnuh7v
1+LqwB1X3j3dDdNiMHtC6rjFkueuDG/fNZ5r8YfHTc+azl5lhiFRZz9nqSuPjShq
ZAU0TYXBU1wd3/0LvRvA9mAltbJs0CWgE1s/ht0r4bZv+b4Fq4Gy2alKN0bijCgu
145bIDhDbrczlp2Vmz8USEZJsTJj2SjxWRcFRha5VYP0zgmFAdrcKNdAESkEWVV3
hcMz15N870OSA21ZAEwd/rppG8rZf5sCRWOuqJRg1WrtTuEZdYqSKt5vAJ3eShE=
=qtFi
-END PGP SIGNATURE-
==
BNP Paribas Fortis disclaimer:
http://www.bnpparibasfortis.com/e-mail-disclaimer.html
 
BNP Paribas Fortis privacy policy:
http://www.bnpparibasfortis.com/privacy-policy.html
 
==


!DSPAM:52ebda6c34266182745334!

Re: [vchkpw] Bug in maildirquota.c

[FBBE -- INTERNET]

Geachte mevrouw,
Geachte heer,

Wij hebben uw e-mail goed ontvangen en wij bedanken u hiervoor. Onze 
medewerkers beantwoorden deze zo spoedig mogelijk.

Opgelet: dit is een automatisch bericht. Alvast bedankt om hierop niet te 
antwoorden.

Hoogachtend. 

BNP Paribas Fortis NV
T : +32(0)2 762 60 00
Warandeberg 3, 1QA5E, 1000 Brussel | www.bnpparibasfortis.be

- Original Message -
From: FBBE -- INTERNET i...@bnpparibasfortis.be
Sent: Friday, January 31, 2014 6:16:54 PM GMT+01:00
Subject: Re: [vchkpw] Bug in maildirquota.c

Cher Client,

Nous avons bien reçu votre e-mail et nous vous en remercions. Nos 
collaborateurs le traiteront aussi rapidement que possible.

Attention : ceci est une réponse automatique. Vous ne pouvez donc pas y 
répondre.

Veuillez agréer nos salutations distinguées. 

BNP Paribas Fortis SA
T : +32(0)2 762 20 00
Montagne du Parc 3, 1QA5E, 1000 Bruxelles | www.bnpparibasfortis.be



Geachte klant,

Wij hebben uw e-mail goed ontvangen, waarvoor dank. Onze medewerkers zullen uw 
vraag zo snel mogelijk beantwoorden.

Opgelet : dit is een automatisch bericht. Hierop kan u geen antwoord versturen.

Met vriendelijke groeten,

BNP Paribas Fortis NV
T : +32(0)2 762 60 00
Warandeberg 3, 1QA5E, 1000 Brussel | www.bnpparibasfortis.be



Dear customer,

We hereby acknowledge receipt of your e-mail. Thank you. Our staff will answer 
your query as soon as possible.

Careful: This is an automatic message. Please do not reply.

Yours sincerely,

BNP Paribas Fortis SA/NV
T : +32(0)2 261 11 11
Warandeberg 3, 1QA5E, 1000 Brussels | www.bnpparibasfortis.be



Sehr geehrte Kundin, sehr geehrter Kunde,

Wir danken Ihnen für Ihre E-Mail. Unsere Mitarbeiter werden Ihnen so schnell 
wie möglich antworten.

Achtung: dies ist eine automatische Nachricht. Sie können sie folglich nicht 
beantworten.

Freundliche Grüße

BNP Paribas Fortis SA/NV
T : +32(0)2 261 11 11
Warandeberg 3, 1QA5E, 1000 Brussel | www.bnpparibasfortis.be

- Original Message -
From: Matt Brookings m...@inter7.com
Sent: Friday, January 31, 2014 11:14:37 AM GMT-06:00
Subject: Re: [vchkpw] Bug in maildirquota.c

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

On 01/31/2014 05:34 AM, Simone Lazzaris wrote:
 The file descriptor number 5 of that process is pointing at the maildirsize 
 file of the mailbox,
 and is marked as deleted in /proc/procid/fd
 
 We store the mail in a NetApp NFS share, without locking for performance 
 reasons, and I think
 I've found the problem: the file is deleted by someone else while 
 vdelivermail is reading it.

You can correct this particular issue by making sure you're mounting with at 
least NFS v3, and that
the time on the two systems is synchronized.  NFS v4 would, of course, be 
better.

 
 In maildirquota.c, function maildirsize_read, there is a while loop that 
 reads: while (l) { 
 n=read(f, p, l); if (n  0) {
 
 But n is defined as a unsigned int (64 bit) , so even if read returns a 
 negative value (error)
 the if is never trigged.

I've made note of this.
Thanks for the report!
- -- 
/*
Matt Brookings m...@inter7.com   GnuPG Key 62817373
Software developer Systems technician
Inter7 Internet Technologies, Inc. (815)776-9465
*/
-BEGIN PGP SIGNATURE-
Version: GnuPG v2.0.17 (GNU/Linux)

iQEcBAEBAgAGBQJS69n9AAoJEOjQVexigXNz1JMH/0WvMHTImzOWfHr980YVcmtB
0IFAAKn6PHUP57y2wm+cJ/+uEu9vz9YMOHRpQK/aoBu9kIzQHRF2GGvj0eSnuh7v
1+LqwB1X3j3dDdNiMHtC6rjFkueuDG/fNZ5r8YfHTc+azl5lhiFRZz9nqSuPjShq
ZAU0TYXBU1wd3/0LvRvA9mAltbJs0CWgE1s/ht0r4bZv+b4Fq4Gy2alKN0bijCgu
145bIDhDbrczlp2Vmz8USEZJsTJj2SjxWRcFRha5VYP0zgmFAdrcKNdAESkEWVV3
hcMz15N870OSA21ZAEwd/rppG8rZf5sCRWOuqJRg1WrtTuEZdYqSKt5vAJ3eShE=
=qtFi
-END PGP SIGNATURE-
==
BNP Paribas Fortis disclaimer:
http://www.bnpparibasfortis.com/e-mail-disclaimer.html
 
BNP Paribas Fortis privacy policy:
http://www.bnpparibasfortis.com/privacy-policy.html
 
==




!DSPAM:52ebdae734264145785232!

Re: [vchkpw] [SPAM] Re: vusaged compile error

[Marcello Lupo]

Hi Eric,

i have it under:

libvpopmail_a-vpopmail.o:
U vauth_getpw
libvpopmail_a-vauth.o:
0caa T vauth_getpw
libvpopmail_a-vutil.o:
U vauth_getpw

So i think it is ok.
Thank you
Bye
Marcello


Il giorno 14/dic/2013, alle ore 03:01, Eric Shubert e...@shubes.net ha 
scritto:

 On 12/13/2013 04:31 PM, Marcello Lupo wrote:
 Hi,
 I have all correct I think.
 
 /home/vpopmail/etc/lib_deps contains:
 
 -L/home/vpopmail/lib -lvpopmail -Xlinker -R -Xlinker /usr/lib/mysql 
 -L/usr/lib/mysql  -lmysqlclient -lz -lm -lcrypt
 
 So it is correct.
 
 If you see in my log:
 
 checking for ev.h... yes
 checking for ev_loop_new in -lev... yes
 checking vpopmail.h usability... yes
 checking vpopmail.h presence... yes
 checking for vpopmail.h... yes
 checking vauth.h usability... yes
 checking vauth.h presence... yes
 checking for vauth.h... yes
 checking for vauth_getpw in -lvpopmail... no
 checking for vauth_getall in -lvpopmail... no
 checking for get_domain_entries in -lvpopmail... no
 checking for client_query_quick in -lvpopmail... yes
 configure: error: No vauth_getpw in libvpopmail
 
 The line before the error is checking for client_query_quick in -lvpopmail… 
 yes” so the configure found correctly the library. I think we have to focus 
 on the way the check for vauth_getpw is done or x86_64 or ubuntu 
 distribution issue.
 
 I tried to do with the default ./configure (without any option) and the 
 result is the same.
 
 Thank you for your time.
 Bye
 Marcello
 
 Sorry I didn't notice that earlier Marcello. You're correct, it is apparently 
 finding a vpopmail library.
 
 If you nm libvpopmail.a | less, do you find/see the missing vauth_ 
 functions? I show them under both the libvpopmail_a-vpopmail.o: and 
 libvpopmail_a-vauth.o: sections. If you don't see them then there's a problem 
 with your make of libvpopmail.a, as you suspect. If you do see them, then it 
 appears that your libvpopmail.a isn't being picked up for some reason (the 
 lib_deps file is silently not being found).
 
 Which is it?
 
 -- 
 -Eric 'shubes'
 
 
 
 


!DSPAM:52ac2da134269935620071!

Re: [vchkpw] [SPAM] Re: vusaged compile error

[Marcello Lupo]

Hello,
Yes i have done it but it is not woking.
Anyway the make distclean is useless in the vusaged directory. It doesn’t 
produce any effect since the Makefile have still to be created because 
./configure is not working.
The libvpopmail.a is correctly found and loaded in the LDCONFIG.
Any hint?
Thank you
Bye
Marcello

Il giorno 12/dic/2013, alle ore 19:09, Eric Shubert e...@shubes.net ha 
scritto:

 Have you done as Matt suggested?
 
 # make distclean
 # export LDFLAGS='-ldl'
 # ./configure  make.
 
 On 12/12/2013 10:16 AM, Marcello Lupo wrote:
 Hello,
 any news on this issue?
 I have exactly this issue on ubuntu server 12.04 LTS x86_64 .
 
 checking for vauth_getpw in -lvpopmail... no
 checking for vauth_getall in -lvpopmail... no
 checking for get_domain_entries in -lvpopmail... no
 checking for client_query_quick in -lvpopmail... yes
 configure: error: No vauth_getpw in libvpopmail
 
 I tried vpopmail version 5.4.32 and 5.4.33 .
 
 This are the options:
 
 ./configure --enable-tcpserver-file=/home/vpopmail/etc/tcp.smtp \
 --disable-roaming-users \
 --enable-onchange-script \
 --enable-auth-module=mysql \
 --enable-logging=p \
 --enable-mysql-limits \
 --enable-valias \
 --disable-clear-passwd \
 --enable-sql-logging \
 --enable-auth-logging \
 --enable-qmail-newu=/var/qmail/bin/qmail-newu \
 --enable-qmail-inject=/var/qmail/bin/qmail-inject \
 --enable-qmail-newmrh=/var/qmail/bin/qmail-newmrh
 
 I already tried all the solutions suggested in this thread with no success.
 
 Thank you all for any help.
 Bye
 Marcello
 
 
 Il giorno 05/mar/2013, alle ore 17:55, Remo Mattei r...@italy1.com ha 
 scritto:
 
 which version of vpop?
 
 On Mar 5, 2013, at 07:45 , Franko Fang dahuananhu1...@163.com wrote:
 
 Dear Matt:
 
 Matt Brookings matt at inter7.com writes:
 
 
 
 On 01/24/2011 10:22 AM, Qmail List wrote:
 Hi,
 
 For Vpopmail, i did this.
 
 ./configure --enable-logging=v \
 make
 make install-strip
 
 Vpopmail config.log
 http://pastebin.com/5xZT1EiH
 
 Vpopmail config.h
 http://pastebin.com/t6FQzp0U
 
 For  Vusaged, i did this.
 ./configure
 make
 
 Vusaged config.log
 http://pastebin.com/78MsKPjh
 
 Vusaged config.h
 http://pastebin.com/k9kk7Zff
 
 In the vusaged source directory, run make clean, then export
 LDFLAGS='-ldl', then try to build again.
 
 --I did the same compile on Ubuntu 12.04 32bit system,
 and the error still exists.
 checking for vauth_getpw in -lvpopmail... no
 checking for vauth_getall in -lvpopmail... no
 checking for get_domain_entries in -lvpopmail... no
 checking for client_query_quick in -lvpopmail... yes
 configure: error: No vauth_getpw in libvpopmail
 
 --Any ideas for my issue?
 
 Best Regards,
 Franko Fang
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 -- 
 -Eric 'shubes'
 
 
 
 


!DSPAM:52aaf19734261071129162!

Re: [vchkpw] [SPAM] Re: vusaged compile error

[Marcello Lupo]

Hi,
yes all is correct:

the only libvpopmail.a found are: 

/usr/src/vpopmail-5.4.33/libvpopmail.a
/home/vpopmail/lib/libvpopmail.a

and are identical files.

I think the issue can reside in the way the configure script make the check of 
vauth_getpw in the libvpopmail or depending on some configure option i used.
I tried to dig a little bit in the sources but was not able to understand so 
much. I’m not so skilled coder.
Thank you if you have any other suggestion.
Eventually i can give you access to the system of you need it. I really need to 
compile it otherwise the server will never start.
Thank you
Bye
Marcello

Il giorno 13/dic/2013, alle ore 18:58, Eric Shubert e...@shubes.net ha 
scritto:

 Is the system finding the correct libvpopmail?
 Perhaps search the entire system for all libvpopmail files to be sure there's 
 not another one being picked up inadvertently?
 -- 
 -Eric 'shubes'
 
 On 12/13/2013 04:38 AM, Marcello Lupo wrote:
 Hello,
 Yes i have done it but it is not woking.
 Anyway the make distclean is useless in the vusaged directory. It doesn’t 
 produce any effect since the Makefile have still to be created because 
 ./configure is not working.
 The libvpopmail.a is correctly found and loaded in the LDCONFIG.
 Any hint?
 Thank you
 Bye
 Marcello
 
 Il giorno 12/dic/2013, alle ore 19:09, Eric Shubert e...@shubes.net ha 
 scritto:
 
 Have you done as Matt suggested?
 
 # make distclean
 # export LDFLAGS='-ldl'
 # ./configure  make.
 
 On 12/12/2013 10:16 AM, Marcello Lupo wrote:
 Hello,
 any news on this issue?
 I have exactly this issue on ubuntu server 12.04 LTS x86_64 .
 
 checking for vauth_getpw in -lvpopmail... no
 checking for vauth_getall in -lvpopmail... no
 checking for get_domain_entries in -lvpopmail... no
 checking for client_query_quick in -lvpopmail... yes
 configure: error: No vauth_getpw in libvpopmail
 
 I tried vpopmail version 5.4.32 and 5.4.33 .
 
 This are the options:
 
 ./configure --enable-tcpserver-file=/home/vpopmail/etc/tcp.smtp \
 --disable-roaming-users \
 --enable-onchange-script \
 --enable-auth-module=mysql \
 --enable-logging=p \
 --enable-mysql-limits \
 --enable-valias \
 --disable-clear-passwd \
 --enable-sql-logging \
 --enable-auth-logging \
 --enable-qmail-newu=/var/qmail/bin/qmail-newu \
 --enable-qmail-inject=/var/qmail/bin/qmail-inject \
 --enable-qmail-newmrh=/var/qmail/bin/qmail-newmrh
 
 I already tried all the solutions suggested in this thread with no success.
 
 Thank you all for any help.
 Bye
 Marcello
 
 
 Il giorno 05/mar/2013, alle ore 17:55, Remo Mattei r...@italy1.com ha 
 scritto:
 
 which version of vpop?
 
 On Mar 5, 2013, at 07:45 , Franko Fang dahuananhu1...@163.com wrote:
 
 Dear Matt:
 
 Matt Brookings matt at inter7.com writes:
 
 
 
 On 01/24/2011 10:22 AM, Qmail List wrote:
 Hi,
 
 For Vpopmail, i did this.
 
 ./configure --enable-logging=v \
 make
 make install-strip
 
 Vpopmail config.log
 http://pastebin.com/5xZT1EiH
 
 Vpopmail config.h
 http://pastebin.com/t6FQzp0U
 
 For  Vusaged, i did this.
 ./configure
 make
 
 Vusaged config.log
 http://pastebin.com/78MsKPjh
 
 Vusaged config.h
 http://pastebin.com/k9kk7Zff
 
 In the vusaged source directory, run make clean, then export
 LDFLAGS='-ldl', then try to build again.
 
 --I did the same compile on Ubuntu 12.04 32bit system,
 and the error still exists.
 checking for vauth_getpw in -lvpopmail... no
 checking for vauth_getall in -lvpopmail... no
 checking for get_domain_entries in -lvpopmail... no
 checking for client_query_quick in -lvpopmail... yes
 configure: error: No vauth_getpw in libvpopmail
 
 --Any ideas for my issue?
 
 Best Regards,
 Franko Fang
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 --
 -Eric 'shubes'
 
 
 
 
 
 
 
 
 
 
 
 
 
 


!DSPAM:52ab4e9d34261008010253!

Re: [vchkpw] [SPAM] Re: vusaged compile error

[Marcello Lupo]

Hi,
Thank you.

I tried in vpopmail-5.4.33 dir:

make distclean
autoreconf
automake
autoconf

./configure --enable-tcpserver-file=/home/vpopmail/etc/tcp.smtp  \
--disable-roaming-users \
--enable-onchange-script \
--enable-auth-module=mysql \
--enable-logging=p \
--disable-mysql-limits \
--enable-valias \
--disable-clear-passwd \
--enable-sql-logging \
--enable-auth-logging \
--enable-qmail-newu=/var/qmail/bin/qmail-newu \
--enable-qmail-inject=/var/qmail/bin/qmail-inject \
--enable-qmail-newmrh=/var/qmail/bin/qmail-newmrh

make
make install-strip
ldconfig

All compiled fine and installed.
When compile vusaged i get the same error both with or without the export 
LDFLAGS='-ldl’ command.
Other hints?
Thank you
Bye
Marcello

Il giorno 13/dic/2013, alle ore 20:11, Eric Shubert e...@shubes.net ha 
scritto:

 For your reference, here's the .spec file I'm using for the QMailToaster 
 version of vpopmail:
 https://github.com/QMailToaster/vpopmail/blob/master/vpopmail.spec
 This is building ok on CentOS 5  6, and both x86_64 and i386 arch's.
 
 You might try running autoreconf  automake  autoconf before running the 
 configure script, and see what that does for you.
 
 HTH.
 -- 
 -Eric 'shubes'
 
 On 12/13/2013 11:14 AM, Marcello Lupo wrote:
 Hi,
 yes all is correct:
 
 the only libvpopmail.a found are:
 
 /usr/src/vpopmail-5.4.33/libvpopmail.a
 /home/vpopmail/lib/libvpopmail.a
 
 and are identical files.
 
 I think the issue can reside in the way the configure script make the check 
 of vauth_getpw in the libvpopmail or depending on some configure option i 
 used.
 I tried to dig a little bit in the sources but was not able to understand so 
 much. I’m not so skilled coder.
 Thank you if you have any other suggestion.
 Eventually i can give you access to the system of you need it. I really need 
 to compile it otherwise the server will never start.
 Thank you
 Bye
 Marcello
 
 Il giorno 13/dic/2013, alle ore 18:58, Eric Shubert e...@shubes.net ha 
 scritto:
 
 Is the system finding the correct libvpopmail?
 Perhaps search the entire system for all libvpopmail files to be sure 
 there's not another one being picked up inadvertently?
 --
 -Eric 'shubes'
 
 On 12/13/2013 04:38 AM, Marcello Lupo wrote:
 Hello,
 Yes i have done it but it is not woking.
 Anyway the make distclean is useless in the vusaged directory. It doesn’t 
 produce any effect since the Makefile have still to be created because 
 ./configure is not working.
 The libvpopmail.a is correctly found and loaded in the LDCONFIG.
 Any hint?
 Thank you
 Bye
 Marcello
 
 Il giorno 12/dic/2013, alle ore 19:09, Eric Shubert e...@shubes.net ha 
 scritto:
 
 Have you done as Matt suggested?
 
 # make distclean
 # export LDFLAGS='-ldl'
 # ./configure  make.
 
 On 12/12/2013 10:16 AM, Marcello Lupo wrote:
 Hello,
 any news on this issue?
 I have exactly this issue on ubuntu server 12.04 LTS x86_64 .
 
 checking for vauth_getpw in -lvpopmail... no
 checking for vauth_getall in -lvpopmail... no
 checking for get_domain_entries in -lvpopmail... no
 checking for client_query_quick in -lvpopmail... yes
 configure: error: No vauth_getpw in libvpopmail
 
 I tried vpopmail version 5.4.32 and 5.4.33 .
 
 This are the options:
 
 ./configure --enable-tcpserver-file=/home/vpopmail/etc/tcp.smtp \
 --disable-roaming-users \
 --enable-onchange-script \
 --enable-auth-module=mysql \
 --enable-logging=p \
 --enable-mysql-limits \
 --enable-valias \
 --disable-clear-passwd \
 --enable-sql-logging \
 --enable-auth-logging \
 --enable-qmail-newu=/var/qmail/bin/qmail-newu \
 --enable-qmail-inject=/var/qmail/bin/qmail-inject \
 --enable-qmail-newmrh=/var/qmail/bin/qmail-newmrh
 
 I already tried all the solutions suggested in this thread with no 
 success.
 
 Thank you all for any help.
 Bye
 Marcello
 
 
 Il giorno 05/mar/2013, alle ore 17:55, Remo Mattei r...@italy1.com ha 
 scritto:
 
 which version of vpop?
 
 On Mar 5, 2013, at 07:45 , Franko Fang dahuananhu1...@163.com wrote:
 
 Dear Matt:
 
 Matt Brookings matt at inter7.com writes:
 
 
 
 On 01/24/2011 10:22 AM, Qmail List wrote:
 Hi,
 
 For Vpopmail, i did this.
 
 ./configure --enable-logging=v \
 make
 make install-strip
 
 Vpopmail config.log
 http://pastebin.com/5xZT1EiH
 
 Vpopmail config.h
 http://pastebin.com/t6FQzp0U
 
 For  Vusaged, i did this.
 ./configure
 make
 
 Vusaged config.log
 http://pastebin.com/78MsKPjh
 
 Vusaged config.h
 http://pastebin.com/k9kk7Zff
 
 In the vusaged source directory, run make clean, then export
 LDFLAGS='-ldl', then try to build again.
 
 --I did the same compile on Ubuntu 12.04 32bit system,
 and the error still exists.
 checking for vauth_getpw in -lvpopmail... no
 checking for vauth_getall in -lvpopmail... no
 checking for get_domain_entries in -lvpopmail... no
 checking for client_query_quick in -lvpopmail... yes
 configure: error: No vauth_getpw in libvpopmail
 
 --Any ideas for my issue?
 
 Best Regards,
 Franko Fang
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 --
 -Eric 'shubes'
 
 
 

Re: [vchkpw] [SPAM] Re: vusaged compile error

[Remo Mattei]

Hi Marcello, 
I am looking at my installation and I do not have vusaged are you sure you are 
using 5.4.33?

Ciao
-- 
Remo Mattei


On December 13, 2013 at 12:21:39, Marcello Lupo (ml...@itspecialist.it) wrote:

vusaged

!DSPAM:52ab6d5c34264660412975!

Re: [vchkpw] [SPAM] Re: vusaged compile error

[Remo Mattei]

One more thing, I am looking at my compile location and I do have it, I do get 
a shared lib but I am not using it on my server. 


Anyhow, I will check and let you know. 

Ciao
-- 
Remo Mattei


On December 13, 2013 at 12:21:39, Marcello Lupo (ml...@itspecialist.it) wrote:

vusaged

!DSPAM:52ab6e0f34263773815312!

Re: [vchkpw] Re: [SPAM] Re: vusaged compile error

[Remo Mattei]

I remember now. This file 
./lib/libvpopmail.so was created with 5.5 but then vadmin was not working. So  
I went back to 5.4.33. and I disabled the file and everything works fine but 
this command vusaged

Ciao
-- 
Remo Mattei


On December 13, 2013 at 14:17:05, Eric Shubert (e...@shubes.net) wrote:

Well, I think I know why my build fails, as I've patched vpopmail to  
alter the location of the includes and lib directories.  

/home/vpopmail/etc (or /etc/vpopmail in my case) should have an  
include_deps and a lib_deps file.  

What do you have in /home/vpopmail/etc/lib_deps ?  
The first -L option there should be where your libvpopmail.a resides.  

HTH.  

--  
-Eric 'shubes'  

On 12/13/2013 01:08 PM, Marcello Lupo wrote:  
 Hi,  
 Thank you.  
  
 I tried in vpopmail-5.4.33 dir:  
  
 make distclean  
 autoreconf  
 automake  
 autoconf  
  
 ./configure --enable-tcpserver-file=/home/vpopmail/etc/tcp.smtp \  
 --disable-roaming-users \  
 --enable-onchange-script \  
 --enable-auth-module=mysql \  
 --enable-logging=p \  
 --disable-mysql-limits \  
 --enable-valias \  
 --disable-clear-passwd \  
 --enable-sql-logging \  
 --enable-auth-logging \  
 --enable-qmail-newu=/var/qmail/bin/qmail-newu \  
 --enable-qmail-inject=/var/qmail/bin/qmail-inject \  
 --enable-qmail-newmrh=/var/qmail/bin/qmail-newmrh  
  
 make  
 make install-strip  
 ldconfig  
  
 All compiled fine and installed.  
 When compile vusaged i get the same error both with or without the export 
 LDFLAGS='-ldl’ command.  
 Other hints?  
 Thank you  
 Bye  
 Marcello  
  
 Il giorno 13/dic/2013, alle ore 20:11, Eric Shubert e...@shubes.net ha 
 scritto:  
  
 For your reference, here's the .spec file I'm using for the QMailToaster 
 version of vpopmail:  
 https://github.com/QMailToaster/vpopmail/blob/master/vpopmail.spec  
 This is building ok on CentOS 5  6, and both x86_64 and i386 arch's.  
  
 You might try running autoreconf  automake  autoconf before running the 
 configure script, and see what that does for you.  
  
 HTH.  
 --  
 -Eric 'shubes'  
  
 On 12/13/2013 11:14 AM, Marcello Lupo wrote:  
 Hi,  
 yes all is correct:  
  
 the only libvpopmail.a found are:  
  
 /usr/src/vpopmail-5.4.33/libvpopmail.a  
 /home/vpopmail/lib/libvpopmail.a  
  
 and are identical files.  
  
 I think the issue can reside in the way the configure script make the check 
 of vauth_getpw in the libvpopmail or depending on some configure option i 
 used.  
 I tried to dig a little bit in the sources but was not able to understand 
 so much. I’m not so skilled coder.  
 Thank you if you have any other suggestion.  
 Eventually i can give you access to the system of you need it. I really 
 need to compile it otherwise the server will never start.  
 Thank you  
 Bye  
 Marcello  
  
 Il giorno 13/dic/2013, alle ore 18:58, Eric Shubert e...@shubes.net ha 
 scritto:  
  
 Is the system finding the correct libvpopmail?  
 Perhaps search the entire system for all libvpopmail files to be sure 
 there's not another one being picked up inadvertently?  
 --  
 -Eric 'shubes'  
  
 On 12/13/2013 04:38 AM, Marcello Lupo wrote:  
 Hello,  
 Yes i have done it but it is not woking.  
 Anyway the make distclean is useless in the vusaged directory. It doesn’t 
 produce any effect since the Makefile have still to be created because 
 ./configure is not working.  
 The libvpopmail.a is correctly found and loaded in the LDCONFIG.  
 Any hint?  
 Thank you  
 Bye  
 Marcello  
  
 Il giorno 12/dic/2013, alle ore 19:09, Eric Shubert e...@shubes.net ha 
 scritto:  
  
 Have you done as Matt suggested?  
  
 # make distclean  
 # export LDFLAGS='-ldl'  
 # ./configure  make.  
  
 On 12/12/2013 10:16 AM, Marcello Lupo wrote:  
 Hello,  
 any news on this issue?  
 I have exactly this issue on ubuntu server 12.04 LTS x86_64 .  
  
 checking for vauth_getpw in -lvpopmail... no  
 checking for vauth_getall in -lvpopmail... no  
 checking for get_domain_entries in -lvpopmail... no  
 checking for client_query_quick in -lvpopmail... yes  
 configure: error: No vauth_getpw in libvpopmail  
  
 I tried vpopmail version 5.4.32 and 5.4.33 .  
  
 This are the options:  
  
 ./configure --enable-tcpserver-file=/home/vpopmail/etc/tcp.smtp \  
 --disable-roaming-users \  
 --enable-onchange-script \  
 --enable-auth-module=mysql \  
 --enable-logging=p \  
 --enable-mysql-limits \  
 --enable-valias \  
 --disable-clear-passwd \  
 --enable-sql-logging \  
 --enable-auth-logging \  
 --enable-qmail-newu=/var/qmail/bin/qmail-newu \  
 --enable-qmail-inject=/var/qmail/bin/qmail-inject \  
 --enable-qmail-newmrh=/var/qmail/bin/qmail-newmrh  
  
 I already tried all the solutions suggested in this thread with no 
 success.  
  
 Thank you all for any help.  
 Bye  
 Marcello  
  
  
 Il giorno 05/mar/2013, alle ore 17:55, Remo Mattei r...@italy1.com ha 
 scritto:  
  
 which version of vpop?  
  
 On Mar 5, 2013, at 07:45 , Franko Fang dahuananhu1...@163.com wrote: 
  
  
 Dear 

Re: [vchkpw] [SPAM] Re: vusaged compile error

[Marcello Lupo]

Hi,
I have all correct I think.

/home/vpopmail/etc/lib_deps contains:

-L/home/vpopmail/lib -lvpopmail -Xlinker -R -Xlinker /usr/lib/mysql 
-L/usr/lib/mysql  -lmysqlclient -lz -lm -lcrypt

So it is correct.

If you see in my log:

checking for ev.h... yes
checking for ev_loop_new in -lev... yes
checking vpopmail.h usability... yes
checking vpopmail.h presence... yes
checking for vpopmail.h... yes
checking vauth.h usability... yes
checking vauth.h presence... yes
checking for vauth.h... yes
checking for vauth_getpw in -lvpopmail... no
checking for vauth_getall in -lvpopmail... no
checking for get_domain_entries in -lvpopmail... no
checking for client_query_quick in -lvpopmail... yes
configure: error: No vauth_getpw in libvpopmail

The line before the error is checking for client_query_quick in -lvpopmail… 
yes” so the configure found correctly the library. I think we have to focus on 
the way the check for vauth_getpw is done or x86_64 or ubuntu distribution 
issue.

I tried to do with the default ./configure (without any option) and the result 
is the same.

Thank you for your time.
Bye
Marcello

Il giorno 13/dic/2013, alle ore 23:47, Eric Shubert e...@shubes.net ha 
scritto:

 On 12/13/2013 03:04 PM, Eric Shubert wrote:
 Well, I think I know why my build fails, as I've patched vpopmail to
 alter the location of the includes and lib directories.
 
 /home/vpopmail/etc (or /etc/vpopmail in my case) should have an
 include_deps and a lib_deps file.
 
 What do you have in /home/vpopmail/etc/lib_deps ?
 The first -L option there should be where your libvpopmail.a resides.
 
 HTH.
 
 
 vusaged builds fine for me now.
 Check your lib_deps file.
 
 -- 
 -Eric 'shubes'
 
 
 
 


!DSPAM:52ab98de34261115181404!

Re: [vchkpw] Re: [SPAM] Re: vusaged compile error

[Remo Mattei]

Nice I will chk

Inviato da iPhone ()

 Il giorno Dec 13, 2013, alle ore 14:47, Eric Shubert e...@shubes.net ha 
 scritto:
 
 On 12/13/2013 03:04 PM, Eric Shubert wrote:
 Well, I think I know why my build fails, as I've patched vpopmail to
 alter the location of the includes and lib directories.
 
 /home/vpopmail/etc (or /etc/vpopmail in my case) should have an
 include_deps and a lib_deps file.
 
 What do you have in /home/vpopmail/etc/lib_deps ?
 The first -L option there should be where your libvpopmail.a resides.
 
 HTH.
 
 vusaged builds fine for me now.
 Check your lib_deps file.
 
 -- 
 -Eric 'shubes'
 
 
 
 
 
 
 

!DSPAM:52ab993834262012214510!

Re: [vchkpw] [SPAM] 5GB quota, limitations?

[Charles Sprickman]

Replying to myself…

http://comments.gmane.org/gmane.mail.vpopmail/20650

Looks like I need 5.4.33.  Built it with most of the strncpy and other nice 
patches, compiled clean, and I'll do some testing tomorrow.  If it holds up, 
I'll submit my updated port to the FreeBSD folks and see if they'll take it and 
bump their version up to 5.4.33.


On Dec 11, 2013, at 10:42 PM, Charles Sprickman wrote:

 Where should I be digging around to see where large quotas fall apart in 
 vpopmail?
 
 I'm on 5.4.32 (long story, but I like the extra security cleanup in the 
 FreeBSD ports version) and while 5GB+ quotas seem to work fine when dealing 
 with individual user accounts (delivery, displaying quota, maildirsize), it 
 seems like the domain-related limits start to fall apart.
 
 Something like vmoddomlimits -q5000m example.com results in this output:
 
 vmoddomlimits -S eylward.com
 […]
 Domain Quota: 0 MB
 Default User Quota: 1073741824 bytes ---
 Max Domain Messages: 0
 Default Max Messages per User: 0
 
 In the database (limits table), I have this value as well:  1073741824
 
 I made sure the db can take a larger value.  If I manually set the 
 defaultquota column in the db to 5368709120, adding a new user results in 
 a user with the same 1073741824 quota.  Manually upping that user to 5GB with 
 vmoduser works fine.
 
 I also noted that when I had the default set to 3GB in vlimits.default, all 
 those domains created had a defaultquota (displayed with vmoddomlimits and in 
 the db itself) of -1073741824.
 
 Removing the default entry from vlimits.default does not change this behavior 
 either (thought I'd check it).
 
 Any ideas?  Anyone else running more than 2GB quotas?
 
 We're looking at 5GB as a target, I've been ramping ours up 1GB every few 
 weeks.  Noticed oddness with new domains at the 3GB mark.
 
 Thanks,
 
 Charles
 
 


!DSPAM:52a9812234264376319608!

Re: [vchkpw] [SPAM] Re: vusaged compile error

[Marcello Lupo]

Hello,
any news on this issue?
I have exactly this issue on ubuntu server 12.04 LTS x86_64 .

checking for vauth_getpw in -lvpopmail... no
checking for vauth_getall in -lvpopmail... no
checking for get_domain_entries in -lvpopmail... no
checking for client_query_quick in -lvpopmail... yes
configure: error: No vauth_getpw in libvpopmail

I tried vpopmail version 5.4.32 and 5.4.33 .

This are the options:

./configure --enable-tcpserver-file=/home/vpopmail/etc/tcp.smtp \
--disable-roaming-users \
--enable-onchange-script \
--enable-auth-module=mysql \
--enable-logging=p \
--enable-mysql-limits \
--enable-valias \
--disable-clear-passwd \
--enable-sql-logging \
--enable-auth-logging \
--enable-qmail-newu=/var/qmail/bin/qmail-newu \
--enable-qmail-inject=/var/qmail/bin/qmail-inject \
--enable-qmail-newmrh=/var/qmail/bin/qmail-newmrh

I already tried all the solutions suggested in this thread with no success.

Thank you all for any help.
Bye
Marcello


Il giorno 05/mar/2013, alle ore 17:55, Remo Mattei r...@italy1.com ha scritto:

 which version of vpop? 
 
 On Mar 5, 2013, at 07:45 , Franko Fang dahuananhu1...@163.com wrote:
 
 Dear Matt:
 
 Matt Brookings matt at inter7.com writes:
 
 
 
 On 01/24/2011 10:22 AM, Qmail List wrote:
 Hi,
 
 For Vpopmail, i did this.
 
 ./configure --enable-logging=v \
 make
 make install-strip
 
 Vpopmail config.log
 http://pastebin.com/5xZT1EiH
 
 Vpopmail config.h
 http://pastebin.com/t6FQzp0U
 
 For  Vusaged, i did this.
 ./configure
 make
 
 Vusaged config.log
 http://pastebin.com/78MsKPjh
 
 Vusaged config.h
 http://pastebin.com/k9kk7Zff
 
 In the vusaged source directory, run make clean, then export
 LDFLAGS='-ldl', then try to build again.
 
 --I did the same compile on Ubuntu 12.04 32bit system, 
 and the error still exists.
 checking for vauth_getpw in -lvpopmail... no
 checking for vauth_getall in -lvpopmail... no
 checking for get_domain_entries in -lvpopmail... no
 checking for client_query_quick in -lvpopmail... yes
 configure: error: No vauth_getpw in libvpopmail
 
 --Any ideas for my issue?
 
 Best Regards,
 Franko Fang
 
 
 
 
 
 
 
 
 
 
 
 
 


!DSPAM:52a9ef5634261418742760!

Re: [vchkpw] Re: Troubleshooting vdelivermail

[info]

Cher Client,

Nous avons bien reçu votre e-mail et nous vous en remercions. Nos 
collaborateurs le traiteront aussi rapidement que possible.

Attention : ceci est une réponse automatique. Vous ne pouvez donc pas y 
répondre.

Veuillez agréer nos salutations distinguées. 

BNP Paribas Fortis SA
T : +32(0)2 762 20 00
Montagne du Parc 3, 1QA5E, 1000 Bruxelles | www.bnpparibasfortis.be



Geachte klant,

Wij hebben uw e-mail goed ontvangen, waarvoor dank. Onze medewerkers zullen uw 
vraag zo snel mogelijk beantwoorden.

Opgelet : dit is een automatisch bericht. Hierop kan u geen antwoord versturen.

Met vriendelijke groeten,

BNP Paribas Fortis NV
T : +32(0)2 762 60 00
Warandeberg 3, 1QA5E, 1000 Brussel | www.bnpparibasfortis.be



Dear customer,

We hereby acknowledge receipt of your e-mail. Thank you. Our staff will answer 
your query as soon as possible.

Careful: This is an automatic message. Please do not reply.

Yours sincerely,

BNP Paribas Fortis SA/NV
T : +32(0)2 261 11 11
Warandeberg 3, 1QA5E, 1000 Brussels | www.bnpparibasfortis.be



Sehr geehrte Kundin, sehr geehrter Kunde,

Wir danken Ihnen für Ihre E-Mail. Unsere Mitarbeiter werden Ihnen so schnell 
wie möglich antworten.

Achtung: dies ist eine automatische Nachricht. Sie können sie folglich nicht 
beantworten.

Freundliche Grüße

BNP Paribas Fortis SA/NV
T : +32(0)2 261 11 11
Warandeberg 3, 1QA5E, 1000 Brussel | www.bnpparibasfortis.be

- Original Message -
From: Eric Shubert e...@shubes.net
Sent: Tuesday, November 26, 2013 8:48:00 AM GMT-07:00
Subject: [vchkpw] Re: Troubleshooting vdelivermail

I'm curious to know how you made out on this, Bob.

On 07/29/2013 09:21 AM, Robert A Wooldridge wrote:
 I am having trouble with my qmail/vpopmail systems.  The default
 dot-qmail file contains:
 | /home/vpopmail/bin/vdelivermail '' bounce-no-mailbox

What's this file's name specifically? It should be:
/home/vpopmail/domains/domain/.qmail-default

 But mail does not get delivered.  It just disappears.  When I look in
 the qmail-smtpd log the smtp session appears correctly.  When I look in
 the qmail-send log, it notes a successfully delivery.  But nothing is in
 the user's Maildir/new or Maildir/cur.

 When I create an explicit dot-qmail file for the user such as:
 /home/vpopmail/domains/test.domain.com/some.user/Maildir/

 This works correctly.  But that means I have to creat dot-qmail files
 for each and every user.

 Can someone suggest a solution or a reason why the default dot-qmail
 file does not work?  Or a way to troubleshoot vdelivermail?

Check permissions?

 Thanks!

 --
 Bob W.


 




-- 
-Eric 'shubes'





==
BNP Paribas Fortis disclaimer:
http://www.bnpparibasfortis.com/e-mail-disclaimer.html

BNP Paribas Fortis privacy policy:
http://www.bnpparibasfortis.com/privacy-policy.html

==





!DSPAM:5294c3da34261183012298!

Re: [vchkpw] Re: Troubleshooting vdelivermail

[info]

Geachte mevrouw,
Geachte heer,

Wij hebben uw e-mail goed ontvangen en wij bedanken u hiervoor. Onze 
medewerkers beantwoorden deze zo spoedig mogelijk.

Opgelet: dit is een automatisch bericht. Alvast bedankt om hierop niet te 
antwoorden.

Hoogachtend. 

BNP Paribas Fortis NV
T : +32(0)2 762 60 00
Warandeberg 3, 1QA5E, 1000 Brussel | www.bnpparibasfortis.be

- Original Message -
From: i...@bnpparibasfortis.be
Sent: Tuesday, November 26, 2013 4:52:58 PM GMT+01:00
Subject: Re: [vchkpw] Re: Troubleshooting vdelivermail

Cher Client,

Nous avons bien reçu votre e-mail et nous vous en remercions. Nos 
collaborateurs le traiteront aussi rapidement que possible.

Attention : ceci est une réponse automatique. Vous ne pouvez donc pas y 
répondre.

Veuillez agréer nos salutations distinguées. 

BNP Paribas Fortis SA
T : +32(0)2 762 20 00
Montagne du Parc 3, 1QA5E, 1000 Bruxelles | www.bnpparibasfortis.be



Geachte klant,

Wij hebben uw e-mail goed ontvangen, waarvoor dank. Onze medewerkers zullen uw 
vraag zo snel mogelijk beantwoorden.

Opgelet : dit is een automatisch bericht. Hierop kan u geen antwoord versturen.

Met vriendelijke groeten,

BNP Paribas Fortis NV
T : +32(0)2 762 60 00
Warandeberg 3, 1QA5E, 1000 Brussel | www.bnpparibasfortis.be



Dear customer,

We hereby acknowledge receipt of your e-mail. Thank you. Our staff will answer 
your query as soon as possible.

Careful: This is an automatic message. Please do not reply.

Yours sincerely,

BNP Paribas Fortis SA/NV
T : +32(0)2 261 11 11
Warandeberg 3, 1QA5E, 1000 Brussels | www.bnpparibasfortis.be



Sehr geehrte Kundin, sehr geehrter Kunde,

Wir danken Ihnen für Ihre E-Mail. Unsere Mitarbeiter werden Ihnen so schnell 
wie möglich antworten.

Achtung: dies ist eine automatische Nachricht. Sie können sie folglich nicht 
beantworten.

Freundliche Grüße

BNP Paribas Fortis SA/NV
T : +32(0)2 261 11 11
Warandeberg 3, 1QA5E, 1000 Brussel | www.bnpparibasfortis.be

- Original Message -
From: Eric Shubert e...@shubes.net
Sent: Tuesday, November 26, 2013 8:48:00 AM GMT-07:00
Subject: [vchkpw] Re: Troubleshooting vdelivermail

I'm curious to know how you made out on this, Bob.

On 07/29/2013 09:21 AM, Robert A Wooldridge wrote:
 I am having trouble with my qmail/vpopmail systems.  The default
 dot-qmail file contains:
 | /home/vpopmail/bin/vdelivermail '' bounce-no-mailbox

What's this file's name specifically? It should be:
/home/vpopmail/domains/domain/.qmail-default

 But mail does not get delivered.  It just disappears.  When I look in
 the qmail-smtpd log the smtp session appears correctly.  When I look in
 the qmail-send log, it notes a successfully delivery.  But nothing is in
 the user's Maildir/new or Maildir/cur.

 When I create an explicit dot-qmail file for the user such as:
 /home/vpopmail/domains/test.domain.com/some.user/Maildir/

 This works correctly.  But that means I have to creat dot-qmail files
 for each and every user.

 Can someone suggest a solution or a reason why the default dot-qmail
 file does not work?  Or a way to troubleshoot vdelivermail?

Check permissions?

 Thanks!

 --
 Bob W.


 




-- 
-Eric 'shubes'





==
BNP Paribas Fortis disclaimer:
http://www.bnpparibasfortis.com/e-mail-disclaimer.html

BNP Paribas Fortis privacy policy:
http://www.bnpparibasfortis.com/privacy-policy.html

==








==
BNP Paribas Fortis disclaimer:
http://www.bnpparibasfortis.com/e-mail-disclaimer.html

BNP Paribas Fortis privacy policy:
http://www.bnpparibasfortis.com/privacy-policy.html

==





!DSPAM:5294c4c934261573512824!

Re: [vchkpw] Re: Troubleshooting vdelivermail

[Remo Mattei]

Hi everyone, 

I just want to add a comment here. If you want to use it globally for the 
domain then I use the .qmail-default otherwise single user is .qmail-username. 

Just my 2 cents. 
-- 
Remo Mattei


November 26, 2013 at 7:57:29, Eric Shubert (e...@shubes.net) ha scritto:

I'm curious to know how you made out on this, Bob.  

On 07/29/2013 09:21 AM, Robert A Wooldridge wrote:  
 I am having trouble with my qmail/vpopmail systems. The default  
 dot-qmail file contains:  
 | /home/vpopmail/bin/vdelivermail '' bounce-no-mailbox  

What's this file's name specifically? It should be:  
/home/vpopmail/domains/domain/.qmail-default  

 But mail does not get delivered. It just disappears. When I look in  
 the qmail-smtpd log the smtp session appears correctly. When I look in  
 the qmail-send log, it notes a successfully delivery. But nothing is in  
 the user's Maildir/new or Maildir/cur.  
  
 When I create an explicit dot-qmail file for the user such as:  
 /home/vpopmail/domains/test.domain.com/some.user/Maildir/  
  
 This works correctly. But that means I have to creat dot-qmail files  
 for each and every user.  
  
 Can someone suggest a solution or a reason why the default dot-qmail  
 file does not work? Or a way to troubleshoot vdelivermail?  

Check permissions?  

 Thanks!  
  
 --  
 Bob W.  
  
  
  
  
  


--  
-Eric 'shubes'  





  



!DSPAM:5294c51b34261786968100!

Re: [vchkpw] Re: Troubleshooting vdelivermail

[info]

Chère Madame,
Cher Monsieur,

Nous avons bien reçu votre e-mail et nous vous en remercions. Nos 
collaborateurs le traiteront le plus rapidement possible.

Attention : ceci est une réponse automatique. Merci de ne pas y répondre.

Veuillez agréer nos salutations distinguées. 

BNP Paribas Fortis SA
T : +32(0)2 762 20 00
Montagne du Parc 3, 1QA5E, 1000 Bruxelles | www.bnpparibasfortis.be

- Original Message -
From: Remo Mattei r...@italy1.com
Sent: Tuesday, November 26, 2013 7:58:19 AM GMT-08:00
Subject: Re: [vchkpw] Re: Troubleshooting vdelivermail

Hi everyone, 

I just want to add a comment here. If you want to use it globally for the 
domain then I use the .qmail-default otherwise single user is .qmail-username. 

Just my 2 cents. 
-- 
Remo Mattei


November 26, 2013 at 7:57:29, Eric Shubert (e...@shubes.net) ha scritto:

I'm curious to know how you made out on this, Bob.  

On 07/29/2013 09:21 AM, Robert A Wooldridge wrote:  
 I am having trouble with my qmail/vpopmail systems. The default  
 dot-qmail file contains:  
 | /home/vpopmail/bin/vdelivermail '' bounce-no-mailbox  

What's this file's name specifically? It should be:  
/home/vpopmail/domains/domain/.qmail-default  

 But mail does not get delivered. It just disappears. When I look in  
 the qmail-smtpd log the smtp session appears correctly. When I look in  
 the qmail-send log, it notes a successfully delivery. But nothing is in  
 the user's Maildir/new or Maildir/cur.  
  
 When I create an explicit dot-qmail file for the user such as:  
 /home/vpopmail/domains/test.domain.com/some.user/Maildir/  
  
 This works correctly. But that means I have to creat dot-qmail files  
 for each and every user.  
  
 Can someone suggest a solution or a reason why the default dot-qmail  
 file does not work? Or a way to troubleshoot vdelivermail?  

Check permissions?  

 Thanks!  
  
 --  
 Bob W.  
  
  
  
  
  


--  
-Eric 'shubes'  





  






==
BNP Paribas Fortis disclaimer:
http://www.bnpparibasfortis.com/e-mail-disclaimer.html

BNP Paribas Fortis privacy policy:
http://www.bnpparibasfortis.com/privacy-policy.html

==





!DSPAM:5294c6b534261798255609!

Re: [vchkpw] Re: Troubleshooting vdelivermail

[info]

Chère Madame,
Cher Monsieur,

Nous avons bien reçu votre e-mail et nous vous en remercions. Nos 
collaborateurs le traiteront le plus rapidement possible.

Attention : ceci est une réponse automatique. Merci de ne pas y répondre.

Veuillez agréer nos salutations distinguées. 

BNP Paribas Fortis SA
T : +32(0)2 762 20 00
Montagne du Parc 3, 1QA5E, 1000 Bruxelles | www.bnpparibasfortis.be

- Original Message -
From: Eric Shubert e...@shubes.net
Sent: Tuesday, November 26, 2013 9:23:22 AM GMT-07:00
Subject: [vchkpw] Re: Troubleshooting vdelivermail

Hey Remo.

On 11/26/2013 08:58 AM, Remo Mattei wrote:
 I just want to add a comment here. If you want to use it globally for
 the domain then I use the .qmail-default otherwise single user is
 .qmail-username.

Or (simply) a file named .qmail in the user's directory, next door to 
the Maildir/.

-- 
-Eric 'shubes'





==
BNP Paribas Fortis disclaimer:
http://www.bnpparibasfortis.com/e-mail-disclaimer.html

BNP Paribas Fortis privacy policy:
http://www.bnpparibasfortis.com/privacy-policy.html

==





!DSPAM:5294cc1c34265351120316!

Re: [vchkpw] Re: Troubleshooting vdelivermail

[Remo Mattei]

that will work as well. 
-- 
Remo Mattei


November 26, 2013 at 8:32:11, Eric Shubert (e...@shubes.net) ha scritto:

Hey Remo.  

On 11/26/2013 08:58 AM, Remo Mattei wrote:  
 I just want to add a comment here. If you want to use it globally for  
 the domain then I use the .qmail-default otherwise single user is  
 .qmail-username.  

Or (simply) a file named .qmail in the user's directory, next door to  
the Maildir/.  

--  
-Eric 'shubes'  





  



!DSPAM:5294cd1434267076914464!

Re: [vchkpw] Re: [SPAM] [suggestion] vdelivermail environment changes

[Laurent Bercot]

Anything further on this?


 Hello Eric,

 Since I didn't get any answer from vpopmail developers, I created my own
solution: a wrapper, vsanitize, which you use in command invocation in
.qmail file, i.e. instead of writing
| foobar args
you invoke
| vsanitize foobar args
and foobar will be called with the environment cleaned up from the
virtualdomains hack.
 Caveat: qmail-command lines are interpreted by /bin/sh, so be careful
with environment variables:
| qreceipt $EXT@HOST
should be rewritten as
| exec vsanitize sh -c 'exec qreceipt $USER@$HOST'
(of course, it's easier to use import from the execline package).

 Software that automatically creates .qmail files, like qconfirm, has to
be configured to prefix qmail-command invocations with vsanitize. Most
.qmail-aware software has options for this.

 Source: http://skarnet.org/software/vsanitize.c
 It depends on skalibs: http://skarnet.org/software/skalibs/
 Compile with: gcc -O2 -o vsanitize -Iyour skalibs include dir -L your skalibs 
library dir vsanitize.c -lstddjb

 Enjoy.



FWIW2, I'm toying with the idea of making the vpopmail QMT package LSB 
compliant (which very few packages actually are).


 LSB is a very poor standard. Don't waste your time.

--
 Laurent


!DSPAM:5294e91934268516851760!

Re: [vchkpw] [SPAM] Using Dovecot's LDA / spamc and maildrop support

[Alessio Cecchi]

Il 02/10/2013 03:30, Charles Sprickman ha scritto:

Simple question I hope…

What's the recommendation on the vpopmail side on integrating Dovecot's LDA for 
final delivery?

I've seen various suggestions, including just calling it from the user's .qmail 
file.  In that particular case, it's not at all clear to me how other tools 
that would touch that file (like qmailadmin) would be taught to not alter the 
call to dovecot_lda.  I imagine it would get munged everytime a user went to 
setup a vacation message or forward.

Also I'm in the midst of upgrading from 5.4.10 to 5.4.33.  I see that there's 
new support to have vdelivermail handle the call to spamc for tagging, and also 
support to have maildrop handle the filtering.  A few questions regarding this 
setup if vpopmail is configured to use spamc and maildrop:

* Is maildrop always doing the final delivery?
* What's the message flow when a .qmail file is encountered that has a forward?
* What's the message flow when a .qmail file is encountered that's piping to 
maildrop (we have a ton of these on the old system, I assume I'd have to find 
and nuke all of them)?
* Does this limit qmailadmin's abilities at all?
* If using valias, do we filter a message before forwarding offsite?

Hoping the list is still alive, didn't even realize I'm still subscribed here!

Thanks,

Charles




Hi,

I think that a possibile solutions could be a configuration where 
vpopmail is configured to call maildrop and maildrop sent the messagge 
to an LMTP server (Postfix) that use dovecot LDA to delivery the email 
in the Maildir. LMTP is fast and can also be used with Dovecot Director, 
Director is needed when you have a shared storage and more than one 
POP/IMAP server.


From the qmail/vpopmail point of view this configuration will be 
transparent.


From the maildrop point of view is necessary find the rigth script 
(email - pipe to LMTP)  and insert in /etc/maildroprc.


Could be an idea?

--
Alessio Cecchi is:
@ ILS - http://www.linux.it/~alessice/
on LinkedIn - http://www.linkedin.com/in/alessice
Assistenza Sistemi GNU/Linux - http://www.cecchi.biz/
@ PLUG - ex-Presidente, adesso senatore a vita, http://www.prato.linux.it

!DSPAM:5255173734261611143367!

Re: [vchkpw] odd problem after OS upgrade (hey, Tom, Ken, jkitchen: around?)

[Jeremy Kister]

On 6/22/2013 9:11 PM, Jeremy Kister wrote:

hrm.  i replaced vchkpw with checkpasswd.  still broken.


ends up the problem was actually stunnel/openssl.  who knows what it was 
doing that was causing the tunneled program to behave incorrectly.


for reference:
on debian 6 (squeeze):
  sed s/squeeze/wheezy/g /etc/apt/sources.list  /tmp/u.tmp
  mv /tmp/u.tmp /etc/apt/sources.list
  apt-get update
  apt-get upgrade
  apt-get dist-upgrade
  reboot
gives you debian 7 (wheezy)

this came both libssl 0.9.8, libssl 1.0.0, and stunnel 4.53

i ran 'apt-get autoremove libssl0.9.8', and then compiled/installed the
latest stunnel (4.56), and the problem is no more.

who knows.

thanks for the replies.

Greetings to all who are still here,

--
Jeremy Kister
http://jeremy.kister.net./


!DSPAM:51c68ea134131777546213!

Re: [vchkpw] odd problem after OS upgrade (hey, Tom, Ken, jkitchen: around?)

[Jeremy Kister]

On 6/22/2013 10:26 AM, Eric Shubert wrote:

Have you found where in the code the oops messages is being issued?


yes.  it complains only here:

  if (wait_pid(wstat,child) == -1) return err_child();
  if (wait_crashed(wstat)) return err_child();

the wait_pid is when everything goes fubar.

i'm not even sure it's a vpopmail problem, i suppose i may need a cross 
post on the qmail list.


--

Jeremy Kister
http://jeremy.kister.net./




!DSPAM:51c6407234139947713131!

Re: [vchkpw] odd problem after OS upgrade (hey, Tom, Ken, jkitchen: around?)

[Jeremy Kister]

On 6/22/2013 8:26 PM, Jeremy Kister wrote:

i'm not even sure it's a vpopmail problem, i suppose i may need a cross
post on the qmail list.


hrm.  i replaced vchkpw with checkpasswd.  still broken.

--

Jeremy Kister
http://jeremy.kister.net./



!DSPAM:51c64afa34132172261138!

Re: [vchkpw] odd problem after OS upgrade (hey, Tom, Ken, jkitchen: around?)

[Tom Collins]

Did you recompile qmail and vpopmail after the OS upgrade?

I'm wondering if it's something odd where the size of some data type changed 
from 32 to 64 bits after the OS upgrade, and one program is using the new size 
(perhaps because of a dynamically linked library) and the other is still using 
the old size.

That's my best guess.  I haven't been doing POSIX development in a long time, 
and even when I did I didn't wade too far into spawning children and exit 
codes.  But it seems like the successful exit code isn't being interpreted 
correctly on qmail-smtpd.

-Tom


On Jun 22, 2013, at 6:11 PM, Jeremy Kister wrote:

 On 6/22/2013 8:26 PM, Jeremy Kister wrote:
 i'm not even sure it's a vpopmail problem, i suppose i may need a cross
 post on the qmail list.
 
 hrm.  i replaced vchkpw with checkpasswd.  still broken.
 
 -- 
 
 Jeremy Kister
 http://jeremy.kister.net./
 
 
 
 
 


!DSPAM:51c68c1e34131709335937!

Re: [vchkpw] Re: Runtime error

[Welinton]

Allan Dukat vch...@dukat.dk escreveu:

Hello everyone on this list. 

If I comment out the free-lines in in valias_select_names_end in vpalias.c, 
like this: 

void valias_select_names_end()
{
 int i; 

  /* if( NULL != names ) {
for(i=0;inum_names;i++){
  free(names[i]);
}
free(names);
names=NULL;
  } */
  max_names=0;
  num_names=0;
  cur_name=0;
} 

qmaildmin runs without any error. 

Why is it needed to free the memory, is it not so that Apache will do a 
proper clean up when the request ends anyway? 

Unfortunately it is so that my C skills is not that good, that I myself can 
rewrite valias_select_names_end. 

However I doubt that the old code is the course to the error, but I can not 
come up with anything better. 

Thanks in advance for any help you are able to provide. 

Best regards,
Allan Dukat 

Allan Dukat writes: 

 Hi list  
 
 I have a problem with qmailadmin-1.2.16, configured like this:  
 
 ./configure \
 --enable-vpopmaildir=/home/vpopmail \
 --enable-htmldir=/usr/local/apache2/htdocs \
 --enable-cgibindir=/usr/local/apache2/cgi-bin \
 --enable-imageurl=/images/qmailadmin \
 --enable-imagedir=/usr/local/apache2/htdocs/images/qmailadmin \
 --enable-qmaildir=/var/qmail \
 --enable-ezmlmdir=/usr/local/bin/ezmlm \
 --enable-cgipath=/cgi-bin/qmailadmin \
 --enable-autoresponder-path=/usr/local/bin \
 --enable-vpopuser=vpopmail \
 --enable-vpopgroup=vchkpw \
 --disable-ezmlm-mysql \
 --enable-modify-quota \
 --enable-help  
 
 When adding the fist Forward I got an empty page as answer, an this in
 Apache errorlog:  
 
 *** glibc detected *** /usr/local/apache2/cgi-bin/qmailadmin: double free 
 or corruption (top): 0x01f326e0 ***
 === Backtrace: =
 /lib/x86_64-linux-gnu/libc.so.6(+0x7eb96)[0x7f9ed7c8ab96]
 /usr/local/apache2/cgi-bin/qmailadmin[0x421f04]
 /usr/local/apache2/cgi-bin/qmailadmin[0x4219ad]
 /usr/local/apache2/cgi-bin/qmailadmin[0x42202f]
 /usr/local/apache2/cgi-bin/qmailadmin[0x40715d]
 /usr/local/apache2/cgi-bin/qmailadmin[0x4070a3]
 /usr/local/apache2/cgi-bin/qmailadmin[0x4054f5]
 /usr/local/apache2/cgi-bin/qmailadmin[0x4130c3]
 /usr/local/apache2/cgi-bin/qmailadmin[0x402db6]
 /lib/x86_64-linux-gnu/libc.so.6(__libc_start_main+0xed)[0x7f9ed7c2d76d]
 /usr/local/apache2/cgi-bin/qmailadmin[0x402929]  
 
 During debug I have used
 export CC=gcc -g -Xlinker -Map=../output.map
 to make a map-file, and I have translated the abowe to:  
 
 /lib/x86_64-linux-gnu/libc.so.6(+0x7eb96)[0x7f9ed7c8ab96]
 /usr/local/apache2/cgi-bin/qmailadmin[valias_select_names_end]
 /usr/local/apache2/cgi-bin/qmailadmin[valias_select_names]
 /usr/local/apache2/cgi-bin/qmailadmin[valias_select_all]
 /usr/local/apache2/cgi-bin/qmailadmin[count_forwards]
 /usr/local/apache2/cgi-bin/qmailadmin[show_forwards]
 /usr/local/apache2/cgi-bin/qmailadmin[adddotqmailnow]
 /usr/local/apache2/cgi-bin/qmailadmin[process_comands]
 /usr/local/apache2/cgi-bin/qmailadmin[main]  
 
 The Forward is added, and I can add and list Forwards from now on. When 
 all Forward is deleted and I add a new Forward the error is repeated with 
 the same addresses. 
 
 I Use Ubuntu 12.04.2 LTS, x86_64, fully patched.
 And openssl-1.0.1e, netqmail-1.06, chkuser-2.0.9-release.patch,
 qmail-authentication-081, ucspi-tcp-0.88, daemontools-0.76, pcre-8.32,
 maildrop-2.6.0, vpopmail-5.4.33, ezmlm-idx-7.1.1, dovecot-2.2.1, 
 apr-1.4.6,
 apr-util-1.5.2, httpd-2.4.4, courier-authlib-0.65.0, sqwebmail-5.6.1,
 autorespond-2.0.4, qmailadmin-1.2.16, qmailadmin-help-1.0.8 and
 vqadmin-2.3.7 all configure-make-install.
 Spam Filter is elsewhere.  
 
 I have tried with qmailadmin-1.2.15 and qmailadmin-1.2.12 instead, but 
 with the same result.  
 
 The only problem I see is in the output from the make command of
 vpopmail-5.4.33:  
 
 
 gcc -I. -Icdb  -I.-fPIC  -c -o libvpopmail_a-vpopmail.o `test -f 
 'vpopmail.c' || echo './'`vpopmail.c
 vpopmail.c: In function ‘vadduser’:
 vpopmail.c:741:9: warning: format ‘%llu’ expects argument of type 
 ‘long long unsigned int’, but argument 4 has type ‘storage_t’ 
 [-Wformat]
 vpopmail.c:741:9: warning: format ‘%llu’ expects argument of type 
 ‘long long unsigned int’, but argument 5 has type ‘storage_t’ 
 [-Wformat]
 vpopmail.c:741:9: warning: format ‘%llu’ expects argument of type 
 ‘long long unsigned int’, but argument 4 has type ‘storage_t’ 
 [-Wformat]
 vpopmail.c:741:9: warning: format ‘%llu’ expects argument of type 
 ‘long long unsigned int’, but argument 5 has type ‘storage_t’ 
 [-Wformat]
 vpopmail.c:743:7: warning: format ‘%llu’ expects argument of type 
 ‘long long unsigned int’, but argument 4 has type ‘storage_t’ 
 [-Wformat]
 vpopmail.c:743:7: warning: format ‘%llu’ expects argument of type 
 ‘long long unsigned int’, but argument 4 has type ‘storage_t’ 
 [-Wformat]
 vpopmail.c:746:7: warning: format ‘%llu’ expects argument of type 
 ‘long long unsigned int’, but argument 4 has type ‘storage_t’ 
 [-Wformat]
 vpopmail.c:746:7: warning: format ‘%llu’ expects 

RE: [vchkpw] [SPAM] Re: [vchkpw] [SPAM] Error: Unable to chdir to vpopmail/domains/domain directory

[Thibault Richard]

Hello,

 

I've checked on my own install . it's indeed the right permissions

 

drwxrwx---  9 vpopmail vchkpw   4.0K Feb 21  2012 vpopmail

 

With the command ls -lah /home/vpopmail/ you should have

 

drwx-- 150 vpopmail vchkpw 4.0K Apr 10 16:29 domains

 

If you have at least one working domain it should be 

 

ls -lah /home/vpopmail/domains

 

drwx--   7 vpopmail vchkpw 4.0K Jul 29  2012 thibs.com

 

 

Normally the vpopmail user should look like this

 

grep vpopmail /etc/passwd

vpopmail:x:89:89:Vpopmail (virtual domains)
user:/home/vpopmail:/usr/sbin/nologin

 

How do you try to create the domain ? 

 

By command line you should use

 

/home/vpopmail/bin/vadddomain test.com username

 

As it seems you are using my guide, could you please do :

 

chmod +x /downloads/scripts/qmr_inst_check
/downloads/scripts/qmr_inst_check

 

and tell me the result

 

 

Best Regards

 

 

Thibault a.k.a Thibs

 

From: swaroop kumar [mailto:swaroopk...@gmail.com] 
Sent: jeudi 16 mai 2013 14:23
To: vchkpw@inter7.com
Subject: Re: [vchkpw] [SPAM] Re: [vchkpw] [SPAM] Error: Unable to chdir to
vpopmail/domains/domain directory

 

Hi,

Permissions seems to be ok.

drwxrwx--- 8 vpopmail vchkpw 4096 May 16 13:56 vpopmail

Regards,
Swaroop.

 

On Thu, May 16, 2013 at 5:50 PM, Todor Petkov z...@online.bg wrote:

On 16/05/2013 03:14 PM, swaroop kumar wrote:

Hi All,

I am switching my mail server from sendmail to qmail, currently
installing qmail in debian and i am following this link

http://qmailrocks.thibs.com/ [1]



I Have a problem in creating domains using vpopmail, below is the
error thrown when i am trying to create a domain.

Unable to chdir to vpopmail/domains/domain directory

Can any one suggest me to overcome this, quick response is highly
appreciated.

Thanks in Advance.

 
Regards,
Swaroop Kundeti
 

Links:
--
[1] http://qmailrocks.thibs.com/



Hi,

check the directory permissions. ~vpopmail and below must be owned by the
vpopmail user.


Regards,









-- 

Sincerely,
--
Swaroop Kundeti.
Project Engineer.
Virtual-Labs.
IIIT - Gachibowli.
Hyderabad.
+91-9866221131.

 



!DSPAM:5194b6f434127088155763!

Re: [vchkpw] [SPAM] Error: Unable to chdir to vpopmail/domains/domain directory

[Ron Herzing]

I word of caution. Qmailrocks is not a good way to learn how to install
Qmail.


On Thu, May 16, 2013 at 7:14 AM, swaroop kumar swaroopk...@gmail.comwrote:


 Hi All,

 I am switching my mail server from sendmail to qmail, currently installing
 qmail in debian and i am following this link http://qmailrocks.thibs.com/

 I Have a problem in creating domains using vpopmail, below is the error
 thrown when i am trying to create a domain.

 Unable to chdir to vpopmail/domains/domain directory

 Can any one suggest me to overcome this, quick response is highly
 appreciated.

 Thanks in Advance.

 Regards,
 Swaroop Kundeti
 




-- 
Ron Herzing
ron.herz...@gmail.com


!DSPAM:5194bb0f34129738711467!

Re: [vchkpw] [SPAM] Re: [vchkpw] [SPAM] Error: Unable to chdir to vpopmail/domains/domain directory

[swaroop kumar]

 ** **

 *From:* swaroop kumar [mailto:swaroopk...@gmail.com]
 *Sent:* jeudi 16 mai 2013 14:23
 *To:* vchkpw@inter7.com
 *Subject:* Re: [vchkpw] [SPAM] Re: [vchkpw] [SPAM] Error: Unable to chdir
 to vpopmail/domains/domain directory

 ** **

 Hi,

 Permissions seems to be ok.

 drwxrwx--- 8 vpopmail vchkpw 4096 May 16 13:56 vpopmail

 Regards,
 Swaroop.

 ** **

 On Thu, May 16, 2013 at 5:50 PM, Todor Petkov z...@online.bg wrote:

 On 16/05/2013 03:14 PM, swaroop kumar wrote:

 Hi All,

 I am switching my mail server from sendmail to qmail, currently
 installing qmail in debian and i am following this link

 http://qmailrocks.thibs.com/ [1]



 I Have a problem in creating domains using vpopmail, below is the
 error thrown when i am trying to create a domain.

 Unable to chdir to vpopmail/domains/domain directory

 Can any one suggest me to overcome this, quick response is highly
 appreciated.

 Thanks in Advance.


 Regards,
 Swaroop Kundeti
  

 Links:
 --
 [1] http://qmailrocks.thibs.com/



 Hi,

 check the directory permissions. ~vpopmail and below must be owned by the
 vpopmail user.


 Regards,




 




 -- 

 Sincerely,
 --
 Swaroop Kundeti.
 Project Engineer.
 Virtual-Labs.
 IIIT - Gachibowli.
 Hyderabad.
 +91-9866221131.

 
 



!DSPAM:5194bb8934125324512510!

Re: [vchkpw] [SPAM] Re: [vchkpw] [SPAM] Error: Unable to chdir to vpopmail/domains/domain directory

[swaroop kumar]

Hello,

Thibs::

I could able to add domains by using command line
/home/vpopmail/bin/vadddomain virtual-labs.ac.in admin but not in gui.
error could not update file was trown when i am trying to create domain.

After creating domain using command i could able to view the details of the
domain over gui.

Regards,
Swaroop Kundeti


On Thu, May 16, 2013 at 7:01 PM, Thibault Richard th...@thibs.com wrote:

 Hello,

 ** **

 I’ve checked on my own install … it’s indeed the right permissions

 ** **

 drwxrwx---  9 vpopmail vchkpw   4.0K Feb 21  2012 vpopmail

 ** **

 With the command “*ls -lah /home/vpopmail/*” you should have

 ** **

 drwx-- 150 vpopmail vchkpw 4.0K Apr 10 16:29 domains

 ** **

 If you have at least one working domain it should be 

 ** **

 *ls -lah /home/vpopmail/domains*

 ** **

 drwx--   7 vpopmail vchkpw 4.0K Jul 29  2012 thibs.com

 ** **

 ** **

 Normally the vpopmail user should look like this

 ** **

 *grep vpopmail /etc/passwd*

 vpopmail:x:89:89:Vpopmail (virtual domains)
 user:/home/vpopmail:/usr/sbin/nologin

 ** **

 How do you try to create the domain ? 

 ** **

 By command line you should use

 ** **

 */home/vpopmail/bin/vadddomain test.com username*

 ** **

 As it seems you are using my guide, could you please do :

 ** **

 *chmod +x /downloads/scripts/qmr_inst_check
 /downloads/scripts/qmr_inst_check*

 ** **

 and tell me the result

 ** **

 ** **

 Best Regards

 ** **

 ** **

 Thibault a.k.a Thibs

 ** **

 *From:* swaroop kumar [mailto:swaroopk...@gmail.com]
 *Sent:* jeudi 16 mai 2013 14:23
 *To:* vchkpw@inter7.com
 *Subject:* Re: [vchkpw] [SPAM] Re: [vchkpw] [SPAM] Error: Unable to chdir
 to vpopmail/domains/domain directory

 ** **

 Hi,

 Permissions seems to be ok.

 drwxrwx--- 8 vpopmail vchkpw 4096 May 16 13:56 vpopmail

 Regards,
 Swaroop.

 ** **

 On Thu, May 16, 2013 at 5:50 PM, Todor Petkov z...@online.bg wrote:

 On 16/05/2013 03:14 PM, swaroop kumar wrote:

 Hi All,

 I am switching my mail server from sendmail to qmail, currently
 installing qmail in debian and i am following this link

 http://qmailrocks.thibs.com/ [1]



 I Have a problem in creating domains using vpopmail, below is the
 error thrown when i am trying to create a domain.

 Unable to chdir to vpopmail/domains/domain directory

 Can any one suggest me to overcome this, quick response is highly
 appreciated.

 Thanks in Advance.


 Regards,
 Swaroop Kundeti
  

 Links:
 --
 [1] http://qmailrocks.thibs.com/



 Hi,

 check the directory permissions. ~vpopmail and below must be owned by the
 vpopmail user.


 Regards,




 




 -- 

 Sincerely,
 --
 Swaroop Kundeti.
 Project Engineer.
 Virtual-Labs.
 IIIT - Gachibowli.
 Hyderabad.
 +91-9866221131.

 
 




-- 
Sincerely,
--
Swaroop Kundeti.
Project Engineer.
Virtual-Labs.
IIIT - Gachibowli.
Hyderabad.
+91-9866221131.


!DSPAM:5194bf3d34121642640776!

[vchkpw] [SPAM] Re: [vchkpw] [SPAM] Re: [vchkpw] [SPAM] Error: Unable to chdir to vpopmail/domains/domain directory

[Tom Collins]

If you're talking about QmailAdmin, you need to make sure it's got the suid bit 
set and is owned by the vpopmail user.

You shouldn't have changed Apache to run as vpopmail, and should revert those 
changes.

If vpopmail is working for you, you should focus your efforts on 
troubleshooting QmailAdmin.

-Tom


On May 16, 2013, at 7:07 AM, swaroop kumar wrote:
 I could able to add domains by using command line 
 /home/vpopmail/bin/vadddomain virtual-labs.ac.in admin but not in gui. 
 error could not update file was trown when i am trying to create domain.
 
 After creating domain using command i could able to view the details of the 
 domain over gui.



!DSPAM:5194c1a634122055419353!