Hello, I have a qmail + vpopmail setup with --enable-roaming-users=y. Users
are able to authenticate and receive mail, and their IP is added to
open-smtp. The problem is that it will authenticate a person and then allow
them SMTP access iff they are on 65.243.94.* (our class c, the server's
address is 65.243.94.6), but if they are coming from some other address,
then although POP authentication works, they are not allowed to use SMTP.
I'm sure I'm missing something silly, but I can't seem to find it. Any help
will be greatly appreciated, thank you.
andrew :)
**My qmail-smtpd run script: **
#!/bin/sh
QMAILDUID=`id -u qmaild`
NOFILESGID=`id -g qmaild`
MAXSMTPD=`cat /var/qmail/control/concurrencyincoming`
if [ -z "$QMAILDUID" -o -z "$NOFILESGID" -o -z "$MAXSMTPD" ]; then
echo QMAILDUID, NOFILESGID, or MAXSMTPD is unset in
echo /var/qmail/supervise/qmail-smtpd/run
exit 1
fi
exec /usr/local/bin/softlimit -m 2000000 /usr/local/bin/tcpserver -v -R -l
0 -x /home/vpopmail/etc/tcp.smtp.cdb -c "$MAXSMTPD" -u "$QMAILDUID" -g
"$NOFILESGID" 0 smtp /var/qmail/bin/qmail-smtpd 2>&1
**This is the only thing in /etc/tcp.smtp and /home/vpopmail/etc/tcp.smtp:**
127.0.0.:allow,RELAYCLIENT=""
**Permissions and user/groups in /home/vpopmail/etc:**
[EMAIL PROTECTED] etc]# ls -l
total 24
-rw-r--r-- 1 vpopmail vchkpw 25 Mar 5 11:32 inc_deps
-rw-r--r-- 1 vpopmail vchkpw 32 Mar 5 11:32 lib_deps
-rw-r--r-- 1 root root 416 Mar 12 14:46 open-smtp
-rw-r--r-- 1 vpopmail vchkpw 0 Mar 12 14:46 open-smtp.lock
-rw-r--r-- 1 vpopmail vchkpw 30 Mar 12 14:02 tcp.smtp
-rw-r--r-- 1 root root 2531 Mar 12 14:46 tcp.smtp.cdb
**My qmail-showctl:**
[EMAIL PROTECTED] bin]# ./qmail-showctl
qmail home directory: /var/qmail.
user-ext delimiter: -.
paternalism (in decimal): 2.
silent concurrency limit: 120.
subdirectory split: 23.
user ids: 500, 501, 502, 0, 503, 504, 505, 506.
group ids: 500, 501.
badmailfrom: (Default.) Any MAIL FROM is allowed.
bouncefrom: (Default.) Bounce user name is MAILER-DAEMON.
bouncehost: (Default.) Bounce host name is dustpuppy.powercalling.net.
concurrencylocal: (Default.) Local concurrency is 10.
concurrencyremote: (Default.) Remote concurrency is 20.
databytes: (Default.) SMTP DATA limit is 0 bytes.
defaultdomain: Default domain name is powercalling.net.
defaulthost: (Default.) Default host name is dustpuppy.powercalling.net.
doublebouncehost: (Default.) 2B recipient host: dustpuppy.powercalling.net.
doublebounceto: (Default.) 2B recipient user: postmaster.
envnoathost: (Default.) Presumed domain name is dustpuppy.powercalling.net.
helohost: (Default.) SMTP client HELO host name is
dustpuppy.powercalling.net.
idhost: (Default.) Message-ID host name is dustpuppy.powercalling.net.
localiphost: (Default.) Local IP address becomes dustpuppy.powercalling.net.
locals:
Messages for dustpuppy.powercalling.net are delivered locally.
me: My name is dustpuppy.powercalling.net.
percenthack: (Default.) The percent hack is not allowed.
plusdomain: Plus domain name is powercalling.net.
qmqpservers: (Default.) No QMQP servers.
queuelifetime: (Default.) Message lifetime in the queue is 604800 seconds.
rcpthosts:
SMTP clients may send messages to recipients at dustpuppy.powercalling.net.
SMTP clients may send messages to recipients at powercalling.net.
morercpthosts: (Default.) No effect.
morercpthosts.cdb: (Default.) No effect.
smtpgreeting: (Default.) SMTP greeting: 220 dustpuppy.powercalling.net.
smtproutes: (Default.) No artificial SMTP routes.
timeoutconnect: (Default.) SMTP client connection timeout is 60 seconds.
timeoutremote: (Default.) SMTP client data timeout is 1200 seconds.
timeoutsmtpd: (Default.) SMTP server data timeout is 1200 seconds.
virtualdomains:
Virtual domain: powercalling.net:powercalling.net
defaultdelivery: I have no idea what this file does.
concurrencyincoming: I have no idea what this file does.
concurrencypop3: I have no idea what this file does.
qmail: I have no idea what this file does.
rcpthosts.lock: I have no idea what this file does.
virtualdomains.lock: I have no idea what this file does.
locals.lock: I have no idea what this file does.
