|
Hello,
Can you put your permited ip addresses in the tcp file of
the /service/pop directory ?
What is the error produced by the outlook or any other pop3
client?
First of all, sorry for the previus
mail.
Hi all,
I have installed qmail with
qmail-ldap-1.03-20040301a.patch but my pop3 isn't work.
I can to send emails, so my smtp works ok. I
use Outlook Express and I can send my emails with qmail server but I can't
receive anything, and Outlook gives me an error with my pop
server.
To start up pop3 I do: ln -s
/var/qmail/boot/qmail-pop3d /service and then svc -u /service/pop
Here you are my configuration and the steps I followed to install my
qmail.
(I don't know how can I get the logs)
Please, I wold like to run my Qmail with my LDAP,
please help me!!!
QMAIL-SHOWCTL
-----------------------------------------
qmail
home directory: /var/qmail.
user-ext delimiter: -.
paternalism (in
decimal): 2.
silent concurrency limit: 500.
subdirectory split:
23.
user ids: 11185, 11186, 11187, 0, 11188, 11189, 11190, 11191.
group
ids: 2111, 2112.
me: My name is loki
ldapserver: My ldap server is
192.168.49.81:389
badmailfrom: (Default.) Any MAIL FROM is
allowed.
badmailfrom-unknown: (Default.) Any MAIL FROM from hosts
without PTR is
allowed.
badrcptto: (Default.) Any RCPT TO is
allowed.
bouncefrom: (Default.) Bounce user name is
MAILER-DAEMON.
bouncehost: (Default.) Bounce host name is
loki.
bouncemaxbytes: (Default.) Bounce data limit is 0
bytes.
concurrencylocal: (Default.) Local concurrency is
10.
concurrencyremote: (Default.) Remote concurrency is
20.
custombouncetext: (Default.) No custombouncetext.
databytes:
(Default.) SMTP DATA limit is 0 bytes.
defaultdomain: Default domain
name is sgi.es.
defaulthost: (Default.) Default host name is
loki.
dirmaker: (Default.) Program to create homedirs not
defined.
doublebouncehost: (Default.) 2B recipient host:
loki.
doublebounceto: (Default.) 2B recipient user:
postmaster.
envnoathost: (Default.) Presumed domain name is
loki.
goodmailaddr: (Default.) No good mail addresses.
helohost:
(Default.) SMTP client HELO host name is loki.
idhost: (Default.)
Message-ID host name is loki.
localiphost: (Default.) Local IP address
becomes loki.
locals:
Messages for loki are delivered
locally.
Messages for loki.sgi.es are delivered locally.
Messages for
sgi.es are delivered locally.
me: My name is loki.
outgoingip:
(Default.) Bind qmail-remote to 0.0.0.0.
pbscachesize: (Default.) PBS
cachesize is 1048576 bytes.
pbsenv: (Default.) No environment variables
will be passed.
pbsip: (Default.) Bind PBS daemon to
0.0.0.0.
pbsport: (Default.) PBS deamon listens on port
2821.
pbssecret: (Default.) PBS shared secret is undefined!
Uh-oh.
pbsservers: (Default.) No PBS servers.
pbstimeout:
(Default.) PBS entries will be valid for 600 seconds.
percenthack:
(Default.) The percent hack is not allowed.
plusdomain: Plus domain
name is sgi.es.
qmqpcip: (Default.) Bind qmail-qmqpc to
0.0.0.0.
qmqpservers: (Default.) No QMQP servers.
queuelifetime:
(Default.) Message lifetime in the queue is 604800
seconds.
quotawarning:
Se le esta acabando la
capacidad
rbllist: (Default.) No RBL listed.
rcpthosts:
SMTP
clients may send messages to recipients at loki.
SMTP clients may send
messages to recipients at loki.sgi.es.
SMTP clients may send messages to
recipients at sgi.es.
morercpthosts: (Default.) No
effect.
morercpthosts.cdb: (Default.) No effect.
relaymailfrom:
(Default.) Relaymailfrom not enabled.
smtpgreeting: (Default.) SMTP
greeting: 220 loki.
smtproutes: (Default.) No artificial SMTP
routes.
timeoutconnect: (Default.) SMTP client connection timeout is 60
seconds.
timeoutremote: (Default.) SMTP client data timeout is 1200
seconds.
timeoutsmtpd: (Default.) SMTP server data timeout is 1200
seconds.
virtualdomains: (Default.) No virtual
domains.
Now the qmail-ldap specific files:
ldapbasedn:
LDAP basedn:
cn=Manager,dc=sgi,dc=es.
ldapserver:
192.168.49.81:389
ldaplogin:
LDAP login: cn=Manager,dc=sgi,dc=es.
ldappassword: LDAP password:
izadisan.
ldaptimeout: (Default.) LDAP server timeout is 30
seconds.
ldapuid: Default UID is 11184.
ldapgid: Default GID is
2110.
ldapobjectclass: The objectclass to limit ldap filter is
qmailUser.
ldapmessagestore: Prefix for non absolute paths is
/var/qmail/maildirs.
ldapdefaultdotmode: (Default.) Default dot mode
for ldap users is ldaponly.
defaultquotasize: (Default.) Mailbox size
quota is 0 bytes (0 is unlimited).
defaultquotacount: (Default.)
Mailbox count quota is 0 messages (0
is
unlimited).
ldaplocaldelivery: (Default.) Local passwd lookup is
1 (1 = on, 0 = off).
ldaprebind: Ldap rebinding is 1 (1 = on, 0 =
off).
ldapcluster: (Default.) Clustering is 0 (1 = on, 0 =
off).
ldapclusterhosts: (Default.) Messages for me are not
redirected.
defaultdelivery: I have no idea what this file
does.
qmail-smtpd.rules: I have no idea what this file
does.
qmail-qmqpd.rules: I have no idea what this file
does.
qmail-pop3d.rules: I have no idea what this file
does.
qmail-imapd.rules: I have no idea what this file does.
Makefile: I
have no idea what this file does.
signatures: I have no idea what this file
does.
concurrencyincoming: I have no idea what this file
does.
---------------------------------------------------
I
followed these steps
----------------------------------------------------------------------------
Instalacion de
OpenLDAP
--------------------------
- tar xvzf openldap-2.0.27.tgz
-
./configure
- make depend
- make
- cd tests
- make tests
- cd
..
- make install
- qmail.schema: Copiamos el archivo qmail.schema al
directorio
/usr/local/etc/openldap/schema/ que
es
donde se encuentran todos los archivos de esquema que puede
utilizar el
LDAP. En
los
archivos de esquema es donde se declaran los atributos que
podra tener una
entrada del
LDAP.
Asi, en nuestro caso hemos creado el archivo qmail.schema
donde se declaran
los
siguientes
atributos --> mailMessageStore,
userPassword,
mailAlternateAddress, qmailUID, qmailGID,
mailQuota,
mailHost, mailForwardingAddress, deliveryProgramPath,
qmailDotMode,
deliveryMode,
mailReplyText,
accountStatus. El significado de cada uno de los parametros
aparece en el
propio archivo qmail.schema .
- slapd.conf: copiamos el archivo
slapd.conf al directorio
/usr/local/etc/openldap/ . En este archivo se
define
principalmente
la estructura del LDAP, la clave para acceder y los esquemas
que debe
utilizar.
Creacion de las entradas base del
LDAP
-----------------------------------------
- Arrancamos el LDAP:
/usr/local/libexec/slapd -f
/usr/local/etc/openldap/slapd.conf
-
A�adimos la raiz del LDAP: ldapadd -x -D "cn=Manager,dc=sgi,dc=es" -W
-f
/tmp/root.ldiff
dn: dc=sgi,dc=es
objectclass: dcObject
objectclass:
organization
o: Soluciones Globales Internet
S.A.
dc: sgi
- A�adimos el subdirectorio esolutions:
ldapadd -x -D
"cn=Manager,dc=sgi,dc=es" -W -f
/tmp/unit.ldiff
dn:
ou=esolutions,dc=sgi,dc=es
objectclass:
organization
objectclass: organizationalUnit
o: Soluciones Globales Internet S.A.
ou:
esolutions
- A�adimos, como ejemplo, un usuario al LDAP: ldapadd -x
-D
"cn=Manager,dc=sgi,dc=es" -W -f /tmp/entryUserExample.ldiff
El
archivo entryUserExample.ldiff contiene los datos de un
usuario
concreto:
dn: [EMAIL PROTECTED],ou=esolutions,dc=sgi,dc=es
#A�adimos los object class que vamos a
utilizar
#Cada atributo pertenece a un object class
objectClass:
top
objectClass: person
objectClass:
organizationalPerson
objectClass: inetOrgPerson
objectClass: qmailUser
#Introducimos los atributos
cn:
jlsp
sn: jlsp
o: Soluciones Globales Internet
S.A.
ou: esolutions
mail: [EMAIL PROTECTED]
mailAlternateAddress: [EMAIL PROTECTED]
mailMessageStore: /var/qmail/maildirs/jlsolano
mailQuota:
5
mailHost: localhost
mailForwardingAddress: [EMAIL PROTECTED]
mailReplyText: Actualmente me encuentro de vacaciones
accountStatus:
active
uid: jlsp
userPassword:{CRYPT}pagoc3Frw/tvU
#userPassword:{clear}clavejlsp
Configuracion de usuarios
virtuales
-------------------------------------
- edit /etc/passwd
and add:
vmail:x:11184:2110::/var/qmail/maildirs/:/bin/true
- edit
/etc/group and add: vmail::2110
- mkdir /var/qmail
- mkdir
/var/qmail/maildirs
- chown -R vmail:vmail /var/qmail/maildirs
- mkdir
/var/qmail/control
- cd /var/qmail/control
- Create the following
control files with specified contents
in
/var/qmail/control:
defaultdelivery:
./Maildir/
ldapmessagestore:
/var/qmail/maildirs
ldapgid:
2110
ldapuid:
11184
Daemontools
------------------
- mkdir -p
/package
- mv daemontools-0.76.tar.gz /package
- chmod 1755
/package
- cd /package
- tar -xzvf daemontools-0.76.tar.gz
- cd
/package/admin/daemontools-0.76
- cd src
- patch <
/tmp/daemontools-0.76.errno.patch
- cd ..
-
package/install
Ucspi-tcp
--------------------
- tar
-xzvf ucspi-tcp-0.88.tar.gz
- cd ucspi-tcp-0.88
- patch <
/tmp/ucspi-tcp-0.88.errno.patch
- make
- make setup
check
Aplicacion del patch de
Qmail-ldap
------------------------------------
- tar -xzvf
/pathToQmail/qmail-1.03.tar.gz
- patch -d /pathToQmail/qmail-1.03 <
/tmp/qmail-ldap-1.03-20040301a.patch.gz
- cd
/pathToQmail/qmail-1.03
Create users and
groups
---------------------------
- The easiest way to create the
necessary users and groups is to create a
little script file to do it for
you. In the source directory you'll find a
file called INSTALL.ids. It
contains the command lines for many platforms,
so copying the file to
another name and editing that is quick and easy.
cp INSTALL.ids
IDS
Then, using your favorite editor, remove all of the file except
the lines
you want. For example, here's what IDS would look like for
FreeBSD after
editing:
pw groupadd nofiles
pw useradd
qmaild -g nofiles -d /var/qmail -s /nonexistent
pw useradd alias -g
nofiles -d /var/qmail/alias -s /nonexistent
pw useradd qmaill -g
nofiles -d /var/qmail -s /nonexistent
pw useradd qmailp -g nofiles
-d /var/qmail -s /nonexistent
pw groupadd qmail
pw useradd
qmailq -g qmail -d /var/qmail -s /nonexistent
pw useradd qmailr -g
qmail -d /var/qmail -s /nonexistent
pw useradd qmails -g qmail -d
/var/qmail -s /nonexistent
Then to run it, either use chmod to
make it executable or run it with sh:
First
method:
chmod 700 IDS
./IDS
Second method:
/bin/sh
IDS
When the script finishes, all of your users and groups will
be created and
you can go on to the next section.
Build
Qmail
------------
- Editamos el Makefile haciendo las siguientes
modificaciones:
LDAPFLAGS=-DQLDAP_CLUSTER -DEXTERNAL_TODO -DDASH_EXT
-DALTQUEUE
Habilito los
"MDIRMAKE" y el "HDIRMAKE" , "DEBUG" y
"SHADOWLIBS=-lcrypt"
- Editamos
qmail-ldap.h haciendo el siguiente
cambio
#define
LDAP_HOMEDIR
"homeDirectory"
por
#define
LDAP_HOMEDIR
"noHomeDirectory"
- make
- make setup check
-
./config
Start qmail
------------------------
- we'll use
the following script:
#!/bin/sh
# Using stdout for
logging
# Using control/defaultdelivery from qmail-local to deliver
messages by
default
exec env - PATH="/var/qmail/bin:$PATH"
\
qmail-start "`cat
/var/qmail/control/defaultdelivery`"
---------------------------------------------------------------------------
-----
Note:
This script uses backquotes (`), not single quotes ('). For best
results,
copy and paste the scripts in this guide instead of retyping
them.
---------------------------------------------------------------------------
-----
Use
your editor to create the above /var/qmail/rc, then execute
these
commands:
chmod 755
/var/qmail/rc
mkdir /var/log/qmail
- echo
./Mailbox >/var/qmail/control/defaultdelivery
- Create the qmailctl
script
(http://www.lifewithqmail.org/qmailctl-script-dt70)
-
Make the qmailctl script executable and link it to a directory in
your
path:
chmod 755
/var/qmail/bin/qmailctl
ln -s /var/qmail/bin/qmailctl
/usr/bin
- Now create the supervise directories for the qmail
services:
mkdir -p
/var/qmail/supervise/qmail-send/log
mkdir -p
/var/qmail/supervise/qmail-smtpd/log
- Create the
/var/qmail/supervise/qmail-send/run file:
#!/bin/sh
exec
/var/qmail/rc
- Create the /var/qmail/supervise/qmail-send/log/run
file:
#!/bin/sh
exec /usr/local/bin/setuidgid qmaill
/usr/local/bin/multilog t
/var/log/qmail
- Create the
/var/qmail/supervise/qmail-smtpd/run
file:
#!/bin/sh
QMAILDUID=`id -u
qmaild`
NOFILESGID=`id -g qmaild`
MAXSMTPD=`cat
/var/qmail/control/concurrencyincoming`
LOCAL=`head -1
/var/qmail/control/me`
if [ -z "$QMAILDUID" -o -z "$NOFILESGID"
-o -z "$MAXSMTPD" -o -z
"$LOCAL" ]; then
echo
QMAILDUID, NOFILESGID, MAXSMTPD, or LOCAL is unset
in
echo
/var/qmail/supervise/qmail-smtpd/run
exit
1
fi
if [ ! -f /var/qmail/control/rcpthosts ];
then
echo "No
/var/qmail/control/rcpthosts!"
echo "Refusing to
start SMTP listener because it'll create an
open
relay"
exit
1
fi
exec /usr/local/bin/softlimit -m 2000000
\
/usr/local/bin/tcpserver -v -R -l "$LOCAL" -x
/etc/tcp.smtp.cdb -c
"$MAXSMTPD"
\
-u "$QMAILDUID" -g
"$NOFILESGID" 0 smtp /var/qmail/bin/qmail-smtpd
2>&1
- Create
the concurrencyincoming control file:
echo 20 >
/var/qmail/control/concurrencyincoming
chmod 644
/var/qmail/control/concurrencyincoming
- Create the
/var/qmail/supervise/qmail-smtpd/log/run
file:
#!/bin/sh
exec /usr/local/bin/setuidgid qmaill
/usr/local/bin/multilog t
/var/log/qmail/smtpd
- Make the run files
executable:
chmod 755
/var/qmail/supervise/qmail-send/run
chmod 755
/var/qmail/supervise/qmail-send/log/run
chmod 755
/var/qmail/supervise/qmail-smtpd/run
chmod 755
/var/qmail/supervise/qmail-smtpd/log/run
- Then set up the log
directories:
mkdir -p
/var/log/qmail/smtpd
chown qmaill /var/log/qmail
/var/log/qmail/smtpd
- Finally, link the supervise directories into
/service:
ln -s /var/qmail/supervise/qmail-send
/var/qmail/supervise/qmail-smtpd
/service
- The /service directory
is created when daemontools is installed.
SMTP Access
Control
-------------------------------
- Allow the local host to inject
mail via SMTP:
echo '127.:allow,RELAYCLIENT=""'
>>/etc/tcp.smtp
qmailctl cdb
Create
System Aliases
------------------------------
- There are three system
aliases that should be created on all
qmail
installations:
echo dave >
/var/qmail/alias/.qmail-root
echo dave >
/var/qmail/alias/.qmail-postmaster
ln -s
.qmail-postmaster /var/qmail/alias/.qmail-mailer-daemon
chmod 644
/var/qmail/alias/.qmail-root
/var/qmail/alias/.qmail-postmaster
Test
the Installation
--------------------------------
- Creamos el script
inst_check (http://lifewithqmail.org/inst_check)
-
Le damos permiso de ejecucion: chmod u+x inst_check
- Lo ejecutamos:
./inst_check
- Deberiamos obtener el siguiente
mensaje:
Congratulations, your LWQ installation looks
good!
Jos� Luis Solano
SGI - Soluciones Globales
Internet S.A.
Delegaci�n Regional Sur
[EMAIL PROTECTED]
(+34)
954.088.060
|
