qmail Digest 3 Dec 1999 11:00:01 -0000 Issue 838

Topics (messages 33811 through 33860):

Re: Any Decent IMAP server?
        33811 by: Thomas Neumann
        33813 by: Sam
        33816 by: David Harris
        33817 by: jplooney-qmail.online.ie
        33818 by: Denis Voitenko
        33819 by: David Harris
        33820 by: Thomas Neumann
        33823 by: David Harris

cc:mail
        33812 by: mango

Re: Problem compiling courier-imap
        33814 by: Sam

global spam filter
        33815 by: Monte Mitzelfelt

queue/mess  and how to resend them
        33821 by: Thomas Foerster
        33822 by: jplooney-qmail.online.ie

Re: Speed
        33824 by: David Dyer-Bennet

Re: Any Decent IMAP server? [single-uid interface]
        33825 by: David Harris
        33826 by: Denis Voitenko
        33827 by: David Harris
        33831 by: Darcy Buskermolen
        33833 by: David Harris

I need to get off this list
        33828 by: Michael m. Honse
        33854 by: abc

How do you get off this blasted list.
        33829 by: G. Ryan Fawcett
        33830 by: Van Liedekerke Franky
        33832 by: Shawn P. Stanley

bouncing mail
        33834 by: Brian Moon
        33835 by: Denis Voitenko
        33836 by: Brian Moon
        33837 by: Daniel Mattos
        33856 by: Brian Moon

Getting qmail to not check for home directories
        33838 by: Jim Gilliver

Redilvering mail
        33839 by: Jon Rust
        33840 by: martin.wonderfrog.net

IMAPd Help
        33841 by: Philip Gabbert

qmail-pop3d logs
        33842 by: DOODS
        33843 by: Jon Rust

starting qmail-pop3d
        33844 by: Shawn P. Stanley
        33845 by: Jon Rust
        33848 by: Shawn P. Stanley

rcpthosts
        33846 by: Jim Hall
        33849 by: martin.wonderfrog.net
        33851 by: Shawn P. Stanley
        33853 by: martin.wonderfrog.net

a few things...
        33847 by: M. Richardson
        33850 by: Shawn P. Stanley

Sudden Death
        33852 by: dave
        33855 by: Martin A. Brown

tai64nlocal
        33857 by: Ismal Hisham Mohd Darus
        33858 by: Häffelin Holger

Date Issue
        33859 by: Tony Wade
        33860 by: Petr Novotny

Administrivia:

To unsubscribe from the digest, e-mail:
        [EMAIL PROTECTED]

To subscribe to the digest, e-mail:
        [EMAIL PROTECTED]

To bug my human owner, e-mail:
        [EMAIL PROTECTED]

To post to the list, e-mail:
        [EMAIL PROTECTED]


----------------------------------------------------------------------


Philip Gabbert <[EMAIL PROTECTED]> writes:

> Does anybody have any suggestions on a good IMAP server? I've gotten
> courier-imap installed and running, but my IMAP clients (Netscape
> Communicator 4.7 on RedHat Linux and Outlook Express 5.0 on a Mac) are
> getting an error back from courier-imap: "Error in IMAP command received by
> server". This seems to be a generic error message that is used when any is
> sent wrong to the server.

Did you strictly follow the hints given
at <URL:http://www.inter7.com/courierimap/README.imap.html>
on how to configure Netscape for IMAP? Works for me (modulo
creating subfolders, but thats a Netscape bug).

> I've checked the logs, and no error messages in there.

Yeah. Dig out an Ethernet packet sniffer (Ethereal or something)
and have it display the entire IMAP session so you can see
exactly what the client sends and how the server reacts to this.

> Anybody have a suggestion on another IMAP server, how a way to get
> courier-imap to work correctly?

You can try Cyrus, 'though it uses its own mail storage format
and it can not handle login names what have a dot in them,
which makes it unusable for me, but YMMV.

-t






Thomas Neumann writes:

> Philip Gabbert <[EMAIL PROTECTED]> writes:
> 
> > Does anybody have any suggestions on a good IMAP server? I've gotten
> > courier-imap installed and running, but my IMAP clients (Netscape
> > Communicator 4.7 on RedHat Linux and Outlook Express 5.0 on a Mac) are
> > getting an error back from courier-imap: "Error in IMAP command received by
> > server". This seems to be a generic error message that is used when any is
> > sent wrong to the server.
> 
> Did you strictly follow the hints given
> at <URL:http://www.inter7.com/courierimap/README.imap.html>
> on how to configure Netscape for IMAP? Works for me (modulo
> creating subfolders, but thats a Netscape bug).

Creating or deleting subfolders works for me with Communicator 4.7.

It's still very, very buggy.  When I try to delete a folder, the stupid
thing asks me, literally:

"Do you really want to delete folder '(null)'?"



-- 
Sam






Philip Gabbert [mailto:[EMAIL PROTECTED]]
> I know is not a topic for the list, but you all are so helpful, I just had
> to ask :)
>
> Does anybody have any suggestions on a good IMAP server? I've gotten
> courier-imap installed and running, but my IMAP clients (Netscape
> Communicator 4.7 on RedHat Linux and Outlook Express 5.0 on a Mac) are
> getting an error back from courier-imap: "Error in IMAP command received by
> server". This seems to be a generic error message that is used when any is
> sent wrong to the server.
> I've checked the logs, and no error messages in there.
>
> Anybody have a suggestion on another IMAP server, how a way to get
> courier-imap to work correctly?
> IMAP, right now, is the only way to make Netscape check multiple email
> accounts.

Try: http://www.davideous.com/imap-maildir/

The UW-IMAP server has been written to work around the bugs in the imap
clients. And any imap client is going to be tested with it, as it's a very
dominant server. I've not had any annoying client/server problems with it.

 - David Harris
   Principal Engineer, DRH Internet Services





On Thu, Dec 02, 1999 at 01:10:16PM +0000, Sam mentioned:
> > Did you strictly follow the hints given
> > at <URL:http://www.inter7.com/courierimap/README.imap.html>
> > on how to configure Netscape for IMAP? Works for me (modulo
> > creating subfolders, but thats a Netscape bug).
> 
> Creating or deleting subfolders works for me with Communicator 4.7.
> It's still very, very buggy.  When I try to delete a folder, the stupid
> thing asks me, literally:
> "Do you really want to delete folder '(null)'?"

 Yeah. That's why I retreated to mutt 1.1.1. Warning - don't make
subfolders with spaces in them - netscape goes nuts, sticking %20's into
filenames etc.

Kate

-- 
Microsoft. The best reason in the world to drink beer.
http://www.redbrick.dcu.ie/~valen

PGP signature





> Try: http://www.davideous.com/imap-maildir/
>
> The UW-IMAP server has been written to work around the bugs in the imap
> clients. And any imap client is going to be tested with it, as it's a very
> dominant server. I've not had any annoying client/server problems with it.

That is correct. I've am using it for about a month now and am extremely
happy with it. The LAN has 80 users on it and it hasn't come even close to
crashing. I had some problems patching it but David put a patched version on
the site upon my request. Thanks, David.






Denis Voitenko [mailto:[EMAIL PROTECTED]] wrote:
[[snip]]
> I had some problems patching it but David put a patched version on
> the site upon my request. Thanks, David.

The pre-patched imap-4.5_maildirpatched-1.00.tar.gz file has existed for a
while in the distrib directory, but I just now placed a note about it on the
web page. This should take some of the pain out of building the server for
those who don't want to apply all of the patches manually.

 - David Harris
   Principal Engineer, DRH Internet Services





"Denis Voitenko" <[EMAIL PROTECTED]> writes:

> > Try: http://www.davideous.com/imap-maildir/
> >
> > The UW-IMAP server [...]

> That is correct. I've am using it for about a month now and am extremely
> happy with it. The LAN has 80 users on it and it hasn't come even close to
> crashing. I had some problems patching it but David put a patched version on
> the site upon my request. Thanks, David.

Ok, so what is necessary to make this really useful in the
following scenario :

 (a) Thousands of IMAP users spread accross hundreds of virtual
 domains all running under a single UNIX user-id and using custom
 authorization (i.e. not UNIX /etc/passwd or Kerberos but instead
 something like a CDB File, an SQL backend database etc.), with IMAP
 user-ids looking like 'user%dom.ain'

 (b) As a consequence of (a), there are no "real" home directories per
 user [in the sense of getpwuid(UID)->pw_dir], therefore the Maildirs
 are spread over some spool area that is based on whatever layout I
 find most efficient for the job.

Can I do this without doing some Major Hacking [TM] to the code?

-t






Thomas Neumann wrote:
> Ok, so what is necessary to make this really useful in the
> following scenario :
>
>  (a) Thousands of IMAP users spread accross hundreds of virtual
>  domains all running under a single UNIX user-id and using custom
>  authorization (i.e. not UNIX /etc/passwd or Kerberos but instead
>  something like a CDB File, an SQL backend database etc.), with IMAP
>  user-ids looking like 'user%dom.ain'
>
>  (b) As a consequence of (a), there are no "real" home directories per
>  ser [in the sense of getpwuid(UID)->pw_dir], therefore the Maildirs
>  are spread over some spool area that is based on whatever layout I
>  find most efficient for the job.
>
> Can I do this without doing some Major Hacking [TM] to the code?
>
> -t

You can't do this without Major Hacking [TM] to the imap/c-client code.
However, I have already done that Major Hacking [TM].

I have my own single-uid free-form-directory-structure-and-home-dir patch that
is customized for my setup in web hosting. Each virtual domain user can create
many e-mail only users. The e-mail only users, their (virtual) home
directories, and their unix_crypt_md5 encoded passwords are stored in a DB
File, one for each virtual domain. The virtual e-mail users have to specify
"+username" for their username (so we know they are e-mail only users, not unix
users). I then figure out which virtual domain the request is for (which
specifies which UNIX user to switch to and which DB File to read the user list
from) by looking at the TCPLOCALIP. (Each account has it's own ipaddr so that
effectively tells me which account the request is for.)

This is way too specific for general use, but hacking on top of my code (all of
my site specific authentication/authorization code is in it's own c file) would
probably be very easy. You see, the figuring how to tie my code into UW-IMAP
was the hard part - the specific authentication/authorization is easy stuff.

If someone wants to hack in an interface to one of the virtual domain packages
or whatever, I think I could release the code to them. I just don't want to
release my specific authentication/authorization code (I think) because it's
way web hosting specific.

I also have another patch that makes UW-IMAP log to STDERR instead of syslog. I
then run it under tcpserver and use cyclog to manage the logging info. There is
also program in the pipe of logging info that sends a copy to smtp-poplock for
pop/imap-before-relay authentication. It's a really sweet setup.

I should also note that I've switched mailbox formats from Maildir to MBX
(UW-IMAP's fastest local file driver which does not deal with NFS as I don't
use NFS.) (Well, actually, my virtual e-mail users are using MBX and the UNIX
users use /var/spool/mail/$USER for perfect compatibility with pine/elm, etc.)
Well, what I'm really saying is that this patch would need to be tested along
with the Maildir driver, but I see no reason why it should not work.

Does this all sound okay? If people want this, I'll probably open-source it and
we can more forward. I'm just a little hesitant about how much of my time this
will suck up. I'm really quite busy now and just writing this e-mail has taken
a good while.

 - David Harris
   Principal Engineer, DRH Internet Services







how can qmail be used as an smtp and a pop3 gateway for cc:mail?




Stefan Osterman writes:

> More problems...
> 
> Configure is done making the Makefiles but when I try to make I get this
> 
> bash# make
> Making all in numlib
> Making all in bdbobj
> gcc -DHAVE_CONFIG_H -I. -I. -I.     -g -O2 -c bdbobj2.c
> bdbobj2.c: In function `bdbobj_firstkey':
> bdbobj2.c:24: too few arguments to function
> *** Error code 1
> make: Fatal error: Command failed for target `bdbobj2.o'
> Current working directory /eggandbacon/usr/users/stv/courier-imap-0.18/bdbobj
> *** Error code 1
> make: Fatal error: Command failed for target `all-recursive'
> 
> I configured to use BerkelyDB2

No problems here with "Sleepycat Software: DB 2.4.14: (6/2/98)".


-- 
Sam






I've been playing with the qmail-uce package.  It seems pretty good, but
the customer wants the body to be parsed by a global file, not on a per
user basis.  I've got a recipe that matches when calling maildrop in
manual mode, but not through qmail-filter.maildrop.  I've hacked the code
a smidge to use a global file, and I think it should be fine, but it is
not.  It's like it isn't reading the message at all.  an exit in the open
works fine, but behind a pattern match, no go.

Monte







Hi there,

i have lots of messages in ~qmail/queue/mess/*
but i can't figure out, what is wrong with them !

Header :

Received: (qmail 31290 invoked from network); 30 Nov 1999 23:47:12 -0000
Received: from unknown (HELO mail.n-online.net) (195.30.220.103)
  by mohawk.n-online.net with SMTP; 30 Nov 1999 23:47:12 -0000
Received: from exfra.fra.florimex.de [195.30.33.85] by n-online.net [195.30.220.103] 
with SMTP (MDaemon.v2.7.SP4.R) for <TLocke@flo
Received: by EXFRA with Internet Mail Service (5.5.2448.0)
        id <45CF7MGX>; Mon, 29 Nov 1999 17:11:16 +0100
Message-ID: <D1BAB84C353FD311964A00A0C9852B05119C31@EXFRA>
From: "Kron, Magnus" <[EMAIL PROTECTED]>
To: ZE Rundsendung <[EMAIL PROTECTED]>
Subject: INFO ZE
Date: Mon, 29 Nov 1999 17:11:13 +0100
MIME-Version: 1.0
X-Mailer: Internet Mail Service (5.5.2448.0)
Content-Type: multipart/mixed;
        boundary="----_=_NextPart_000_01BF3A84.5C4CBC80"
X-MDaemon-Deliver-To: [EMAIL PROTECTED]
X-Return-Path: [EMAIL PROTECTED]



So, why is this mail in queue/mess/11/  and how can i send it again!?

Thanks,
 Thomas





On Thu, Dec 02, 1999 at 03:40:39PM +0100, Thomas Foerster mentioned:
> Hi there,
> 
> i have lots of messages in ~qmail/queue/mess/*
> but i can't figure out, what is wrong with them !

 Send an ALRM signal to qmail-send to tell it to try resend stuff now, and
keep an eye on the log in /var/log/qmail/ - it'll give you some hints about
what's going wrong.

John 

-- 
Microsoft. The best reason in the world to drink beer.
http://www.redbrick.dcu.ie/~valen

PGP signature





Rohit Khamkar <[EMAIL PROTECTED]> writes on 1 December 1999 at 17:02:12 -0600
 > 
 > For anyone is handling large mailing lists... How long does the qmail-inject
 > program take to send emails to about 5000 people in the list?

Very little time; it goes into the queue as one entry.  The biggest
mailing list here is now over 25,000 people, and it doesn't much
ruffle the load average of this Cyrix P166+ box with 96 meg of ram and
IDE disks when a newsletter goes out.  

Actually delivering them all is more work :-).  But not bad, and it
doesn't take that long (few hours for all except the stubborn ones) at
a low remote concurrency of 50.
-- 
David Dyer-Bennet / Join the 20th century before it's too late! / [EMAIL PROTECTED]
http://dd-b.lighthunters.net/ (photos) Minicon: http://www.mnstf.org/minicon
http://www.dd-b.net/dd-b (sf) http://ouroboros.demesne.com/ Ouroboros Bookworms





Baah... I figure that I'll just provide my interface for now to let you all see
if this is something that would be useful. I think I've made it general enough
to write anything you want in the authentication/authorization function.

---- begin interface description -----

Here is the relevant data from vpop.h:

vpop__data* vpop__userauthen (char* username, char* password, char*
default_base_username);

typedef struct {
    int valid_form;
    int valid_user;
    char* unix_username;
    char* virtual_username;
    char* black_box_home;
    int authenticated;
    char* log_error;
} vpop__data;

The function vpop__userauthen is called whenever a user is trying to
authenticate with the system. It is called _before_ any unix usernames are
checked. Depending on the values in the returned vpop__data structure, the
username and password will or will not be checked as a valid UNIX username.

Here are the details...

vpop__useauthen is called with, of course, the username and the password of the
user trying to connect. However "default_base_username" is a little weird. If
c-client is trying to login a user and it is not running as root it will
provide the username of the current user in default_base_username here. If
c-client is running as root, and can switch to any user then this will e NULL.
(You will not get a non-NULL value from imapd but rather from tools like dmail
in the imap-utils package. These tools are used for things like local delivery
and are already running as the correct UNIX user.)

vpop__userauthen then gets to control what c-client does by the structure it
returns... here are what the values mean

 * valid_form specifies if the username looks like a virtual username. If this
is returned as true, c-client does not try to check the username and password
as a UNIX user. If valid_form is false, vpop__userauthen should set it false
and just return there.

 * valid_user specifies if this username is a valid username. This can only be
true if valid_form is true.

 * unix_username specifies the UNIX username that we should switch uid/gid to
when accessing the mail of the virtual user.

 * virtual_username specifies the virtual username of the virtual e-mail
account. Does not have to be a valid login user or anything. Not currently used
for anything. :-)

 * black_box_home specifies the directory where the e-mail for this user will
be stored. unix_username should have write permission here. The user is locked
down into this directory and now allowed to get mail from anywhere else in the
system.

 * authenticated specifies if the password was correct. Even if the supplied
password was incorrect vpop__userauthen is required to set the unix_username,
virtual_username, and black_box_home values. This is because sometimes this
information is needed without password authentication outside of imapd, such as
when dmail is used to deliver to a virtual e-mail user.

 * log_error is a string to log as an error. If this is not NULL, it will be
written to the standard c-client error reporting device. Inside of imapd this
will work its way into syslog.

---- end interface description -----

I figure that someone could just write a vpop__userauthen function to run a
little external program, such as interfacing to one of the currently existing
virtual user packages. Other hackers could just write their own site specific
vpop__userauthen functions like I have done.

Oh, one note. This is really an imapd and ipop3d server together. The c-client
library is modified which is used by imapd, ipop3d, and imap-utils. This way
you write this once function and it works for all your mail server programs.

 - David Harris
   Principal Engineer, DRH Internet Services






While digging thru the code...

Here's a situation. Let's say you've got a poopload of virtual domains all
pointing to a single IP address (a cheap solution =8-)) and of course there
is a ton of overlapping names. How would you authenticate those users? Would
you include a domain in the login as you did before? Like denis-o3m.com ?
Maybe I am missing something...

Denis Voitenko
Tel: 856 809-9252
Mail: [EMAIL PROTECTED]
ICQ: 9396092

----- Original Message -----
From: David Harris <[EMAIL PROTECTED]>
To: Thomas Neumann <[EMAIL PROTECTED]>; Denis Voitenko <[EMAIL PROTECTED]>
Cc: Philip Gabbert <[EMAIL PROTECTED]>; qmail <[EMAIL PROTECTED]>; David
Harris <[EMAIL PROTECTED]>
Sent: Thursday, December 02, 1999 7:47 AM
Subject: RE: Any Decent IMAP server? [single-uid interface]


>
> Baah... I figure that I'll just provide my interface for now to let you
all see
> if this is something that would be useful. I think I've made it general
enough
> to write anything you want in the authentication/authorization function.
>
> ---- begin interface description -----
>
> Here is the relevant data from vpop.h:
>
> vpop__data* vpop__userauthen (char* username, char* password, char*
> default_base_username);
>
> typedef struct {
>     int valid_form;
>     int valid_user;
>     char* unix_username;
>     char* virtual_username;
>     char* black_box_home;
>     int authenticated;
>     char* log_error;
> } vpop__data;
>
> The function vpop__userauthen is called whenever a user is trying to
> authenticate with the system. It is called _before_ any unix usernames are
> checked. Depending on the values in the returned vpop__data structure, the
> username and password will or will not be checked as a valid UNIX
username.
>
> Here are the details...
>
> vpop__useauthen is called with, of course, the username and the password
of the
> user trying to connect. However "default_base_username" is a little weird.
If
> c-client is trying to login a user and it is not running as root it will
> provide the username of the current user in default_base_username here. If
> c-client is running as root, and can switch to any user then this will e
NULL.
> (You will not get a non-NULL value from imapd but rather from tools like
dmail
> in the imap-utils package. These tools are used for things like local
delivery
> and are already running as the correct UNIX user.)
>
> vpop__userauthen then gets to control what c-client does by the structure
it
> returns... here are what the values mean
>
>  * valid_form specifies if the username looks like a virtual username. If
this
> is returned as true, c-client does not try to check the username and
password
> as a UNIX user. If valid_form is false, vpop__userauthen should set it
false
> and just return there.
>
>  * valid_user specifies if this username is a valid username. This can
only be
> true if valid_form is true.
>
>  * unix_username specifies the UNIX username that we should switch uid/gid
to
> when accessing the mail of the virtual user.
>
>  * virtual_username specifies the virtual username of the virtual e-mail
> account. Does not have to be a valid login user or anything. Not currently
used
> for anything. :-)
>
>  * black_box_home specifies the directory where the e-mail for this user
will
> be stored. unix_username should have write permission here. The user is
locked
> down into this directory and now allowed to get mail from anywhere else in
the
> system.
>
>  * authenticated specifies if the password was correct. Even if the
supplied
> password was incorrect vpop__userauthen is required to set the
unix_username,
> virtual_username, and black_box_home values. This is because sometimes
this
> information is needed without password authentication outside of imapd,
such as
> when dmail is used to deliver to a virtual e-mail user.
>
>  * log_error is a string to log as an error. If this is not NULL, it will
be
> written to the standard c-client error reporting device. Inside of imapd
this
> will work its way into syslog.
>
> ---- end interface description -----
>
> I figure that someone could just write a vpop__userauthen function to run
a
> little external program, such as interfacing to one of the currently
existing
> virtual user packages. Other hackers could just write their own site
specific
> vpop__userauthen functions like I have done.
>
> Oh, one note. This is really an imapd and ipop3d server together. The
c-client
> library is modified which is used by imapd, ipop3d, and imap-utils. This
way
> you write this once function and it works for all your mail server
programs.
>
>  - David Harris
>    Principal Engineer, DRH Internet Services
>
>
>






Make the username be in the form "user%domain.com". Then look these up in a
database or DB File or cdb to get the home directory, the encoded password, and
(if they are not all running under the same user) the unix username to switch
to.

 - David Harris
   Principal Engineer, DRH Internet Services


-----Original Message-----
From:   Denis Voitenko [mailto:[EMAIL PROTECTED]]
Sent:   Thursday, December 02, 1999 2:54 PM
To:     David Harris; Thomas Neumann
Cc:     Philip Gabbert; qmail
Subject:        Re: Any Decent IMAP server? [single-uid interface]

While digging thru the code...

Here's a situation. Let's say you've got a poopload of virtual domains all
pointing to a single IP address (a cheap solution =8-)) and of course there
is a ton of overlapping names. How would you authenticate those users? Would
you include a domain in the login as you did before? Like denis-o3m.com ?
Maybe I am missing something...

Denis Voitenko
Tel: 856 809-9252
Mail: [EMAIL PROTECTED]
ICQ: 9396092







What I did for a very simular project was develop a replacement to getpwent
for uwimad.

then when linking the Imap server, Just include the new "getpwent" instead
of the standard system one and away you go. if you require more info on
this let me know and I'll send my getpwent to you.


At 11:57 AM 12/2/99 -0500, David Harris wrote:
>
>Make the username be in the form "user%domain.com". Then look these up in a
>database or DB File or cdb to get the home directory, the encoded
password, and
>(if they are not all running under the same user) the unix username to switch
>to.
>
> - David Harris
>   Principal Engineer, DRH Internet Services
>
>
>-----Original Message-----
>From:  Denis Voitenko [mailto:[EMAIL PROTECTED]]
>Sent:  Thursday, December 02, 1999 2:54 PM
>To:    David Harris; Thomas Neumann
>Cc:    Philip Gabbert; qmail
>Subject:       Re: Any Decent IMAP server? [single-uid interface]
>
>While digging thru the code...
>
>Here's a situation. Let's say you've got a poopload of virtual domains all
>pointing to a single IP address (a cheap solution =8-)) and of course there
>is a ton of overlapping names. How would you authenticate those users? Would
>you include a domain in the login as you did before? Like denis-o3m.com ?
>Maybe I am missing something...
>
>Denis Voitenko
>Tel: 856 809-9252
>Mail: [EMAIL PROTECTED]
>ICQ: 9396092
>
>
>
>
>





Darcy Buskermolen [mailto:[EMAIL PROTECTED]] wrote:
> What I did for a very simular project was develop a replacement to getpwent
> for uwimad.
>
> then when linking the Imap server, Just include the new "getpwent" instead
> of the standard system one and away you go. if you require more info on
> this let me know and I'll send my getpwent to you.

How do you deal with password checking? Seems to me that your username would
get passed to the pam library (or whatever your system does) and then fail. Did
you also hack up the checkpw function?

Please send a copy to me. Right now I'm trying to figure out if it's worth
taking the time to package my thing up nicely and release it open source style.
That means it has gotta: (a) be a good solution for what other people want to
do (and no way better solution already floating around), (b) and be something
that more than a couple people want

 - David Harris
   Principal Engineer, DRH Internet Services











At 09:16 02/12/99 -0800, Michael m. Honse wrote:
>
I think there should be message trailer like at the PGP - Users Mailling
list, maintained by Fred , to prevent this incident anymore


>





I've tried the mail list program but I'm still on it let me out of here
please

"There's a fine line between genius and insanity."
G. Ryan Fawcett







Like it is mentioned in the headers of each mail from this list:

have you tried [EMAIL PROTECTED] for instructions? 

Franky

> ----------
> From:         G. Ryan Fawcett[SMTP:[EMAIL PROTECTED]]
> Sent:         Thursday, December 02, 1999 6:15 PM
> To:   [EMAIL PROTECTED]
> Subject:      How do you get off this blasted list.
> 
> I've tried the mail list program but I'm still on it let me out of here
> please
> 
> "There's a fine line between genius and insanity."
> G. Ryan Fawcett
> 
> 
> 




I think you have to send a message to:

[EMAIL PROTECTED]

----- Original Message ----- 
From: G. Ryan Fawcett <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Thursday, December 02, 1999 11:15 AM
Subject: How do you get off this blasted list.


> I've tried the mail list program but I'm still on it let me out of here
> please
> 
> "There's a fine line between genius and insanity."
> G. Ryan Fawcett
> 
> 
> 





i have a web form where users can email articles to their friends.  If they
enter a  bad address and it bounces, it comes back to [EMAIL PROTECTED]
instead of bouncing to the From in the original email header.  Is there any
thing out there that can redirect this back to the  From address?  We do not
want to simply delete them.

Thanks,

Brian.
------------------------------
http://brian.threadnet.com

example:

Hi. This is the qmail-send program at mx01-ext.netapp.com.
I'm afraid I wasn't able to deliver your message to the following addresses.
This is a permanent error; I've given up. Sorry it didn't work out.

<[EMAIL PROTECTED]@gis.netcramer>:
Sorry, I couldn't find any host named gis.netcramer. (#5.1.2)

--- Below this line is a copy of the message.

Return-Path: <[EMAIL PROTECTED]>
Received: (qmail 16965 invoked from network); 2 Dec 1999 18:20:23 -0000
Received: from herra.netapp.com (HELO herra.corp.netapp.com)
(198.95.224.184)
  by mx01-ext.netapp.com with SMTP; 2 Dec 1999 18:20:23 -0000
Received: from mx01-ext.netapp.com (mx01-ext.netapp.com [198.95.224.34])
by herra.corp.netapp.com (8.9.3/8.9.3/NTAP-1.0) with SMTP id KAA15410
for <"[EMAIL PROTECTED]@gis.netcramer"@netapp.com>; Thu, 2 Dec 1999
10:19:36 -0800 (PST)
Received: (qmail 29704 invoked from network); 2 Dec 1999 18:20:17 -0000
Received: from chandra025.circle.net (HELO dealnews.com) (209.95.64.245)
  by mx01-ext.netapp.com with SMTP; 2 Dec 1999 18:20:17 -0000
Received: (qmail 2968 invoked by uid 65534); 2 Dec 1999 18:25:18 -0000
Date: 2 Dec 1999 18:25:18 -0000
Message-ID: <[EMAIL PROTECTED]>
To: dealmac readers <[EMAIL PROTECTED]@[EMAIL PROTECTED]>
Subject: dealmac: <B>$20</b> in Snap Cash
From: Sam Cramer via dealmac <[EMAIL PROTECTED]>


This deal from dealmac [http://dealmac.com] was sent to you by Sam Cramer.

Check this out!

You can read this online at:
http://dealmac.com/article.html?s=buyi28&i=9934&d=1999-12-02

----------

$20 in Snap Cash

SnapShopping arms you with $20 in Snap Cash good towardsparticipating
merchants. You pay full price, but Snap.com credits$20 back to your credit
card within seven days of your purchase.One use only; no minimum is listed.
Offer requires registrationand the use of the Snap Wallet and Shopping Cart.
barnesandnoble.com,Computers4SURE.com, and others participate with Snap
Cash.






Why not pass the "From:" or "Reply-to:" header along with the massage? I
think it'd do the job. If not you could process mail to anonymous with a
script and bounce from there.


Denis Voitenko
Tel: 856 809-9252
Mail: [EMAIL PROTECTED]
ICQ: 9396092
----- Original Message -----
From: Brian Moon <[EMAIL PROTECTED]>
To: qmail <[EMAIL PROTECTED]>
Sent: Thursday, December 02, 1999 10:24 AM
Subject: bouncing mail


> i have a web form where users can email articles to their friends.  If
they
> enter a  bad address and it bounces, it comes back to
[EMAIL PROTECTED]
> instead of bouncing to the From in the original email header.  Is there
any
> thing out there that can redirect this back to the  From address?  We do
not
> want to simply delete them.
>
> Thanks,
>
> Brian.
> ------------------------------
> http://brian.threadnet.com
>
> example:
>
> Hi. This is the qmail-send program at mx01-ext.netapp.com.
> I'm afraid I wasn't able to deliver your message to the following
addresses.
> This is a permanent error; I've given up. Sorry it didn't work out.
>
> <[EMAIL PROTECTED]@gis.netcramer>:
> Sorry, I couldn't find any host named gis.netcramer. (#5.1.2)
>
> --- Below this line is a copy of the message.
>
> Return-Path: <[EMAIL PROTECTED]>
> Received: (qmail 16965 invoked from network); 2 Dec 1999 18:20:23 -0000
> Received: from herra.netapp.com (HELO herra.corp.netapp.com)
> (198.95.224.184)
>   by mx01-ext.netapp.com with SMTP; 2 Dec 1999 18:20:23 -0000
> Received: from mx01-ext.netapp.com (mx01-ext.netapp.com [198.95.224.34])
> by herra.corp.netapp.com (8.9.3/8.9.3/NTAP-1.0) with SMTP id KAA15410
> for <"[EMAIL PROTECTED]@gis.netcramer"@netapp.com>; Thu, 2 Dec 1999
> 10:19:36 -0800 (PST)
> Received: (qmail 29704 invoked from network); 2 Dec 1999 18:20:17 -0000
> Received: from chandra025.circle.net (HELO dealnews.com) (209.95.64.245)
>   by mx01-ext.netapp.com with SMTP; 2 Dec 1999 18:20:17 -0000
> Received: (qmail 2968 invoked by uid 65534); 2 Dec 1999 18:25:18 -0000
> Date: 2 Dec 1999 18:25:18 -0000
> Message-ID: <[EMAIL PROTECTED]>
> To: dealmac readers <[EMAIL PROTECTED]@[EMAIL PROTECTED]>
> Subject: dealmac: <B>$20</b> in Snap Cash
> From: Sam Cramer via dealmac <[EMAIL PROTECTED]>
>
>
> This deal from dealmac [http://dealmac.com] was sent to you by Sam Cramer.
>
> Check this out!
>
> You can read this online at:
> http://dealmac.com/article.html?s=buyi28&i=9934&d=1999-12-02
>
> ----------
>
> $20 in Snap Cash
>
> SnapShopping arms you with $20 in Snap Cash good towardsparticipating
> merchants. You pay full price, but Snap.com credits$20 back to your credit
> card within seven days of your purchase.One use only; no minimum is
listed.
> Offer requires registrationand the use of the Snap Wallet and Shopping
Cart.
> barnesandnoble.com,Computers4SURE.com, and others participate with Snap
> Cash.
>
>





Well, the From: is in there.  Would a Reply-to: help?

Brian.
------------------------------
http://brian.threadnet.com


----- Original Message -----
From: "Denis Voitenko" <[EMAIL PROTECTED]>
To: "Brian Moon" <[EMAIL PROTECTED]>; "qmail" <[EMAIL PROTECTED]>
Sent: Thursday, December 02, 1999 4:12 PM
Subject: Re: bouncing mail


> Why not pass the "From:" or "Reply-to:" header along with the massage? I
> think it'd do the job. If not you could process mail to anonymous with a
> script and bounce from there.
>
>
> Denis Voitenko
> Tel: 856 809-9252
> Mail: [EMAIL PROTECTED]
> ICQ: 9396092
> ----- Original Message -----
> From: Brian Moon <[EMAIL PROTECTED]>
> To: qmail <[EMAIL PROTECTED]>
> Sent: Thursday, December 02, 1999 10:24 AM
> Subject: bouncing mail
>
>
> > i have a web form where users can email articles to their friends.  If
> they
> > enter a  bad address and it bounces, it comes back to
> [EMAIL PROTECTED]
> > instead of bouncing to the From in the original email header.  Is there
> any
> > thing out there that can redirect this back to the  From address?  We do
> not
> > want to simply delete them.
> >
> > Thanks,
> >
> > Brian.
> > ------------------------------
> > http://brian.threadnet.com
> >
> > example:
> >
> > Hi. This is the qmail-send program at mx01-ext.netapp.com.
> > I'm afraid I wasn't able to deliver your message to the following
> addresses.
> > This is a permanent error; I've given up. Sorry it didn't work out.
> >
> > <[EMAIL PROTECTED]@gis.netcramer>:
> > Sorry, I couldn't find any host named gis.netcramer. (#5.1.2)
> >
> > --- Below this line is a copy of the message.
> >
> > Return-Path: <[EMAIL PROTECTED]>
> > Received: (qmail 16965 invoked from network); 2 Dec 1999 18:20:23 -0000
> > Received: from herra.netapp.com (HELO herra.corp.netapp.com)
> > (198.95.224.184)
> >   by mx01-ext.netapp.com with SMTP; 2 Dec 1999 18:20:23 -0000
> > Received: from mx01-ext.netapp.com (mx01-ext.netapp.com [198.95.224.34])
> > by herra.corp.netapp.com (8.9.3/8.9.3/NTAP-1.0) with SMTP id KAA15410
> > for <"[EMAIL PROTECTED]@gis.netcramer"@netapp.com>; Thu, 2 Dec
1999
> > 10:19:36 -0800 (PST)
> > Received: (qmail 29704 invoked from network); 2 Dec 1999 18:20:17 -0000
> > Received: from chandra025.circle.net (HELO dealnews.com) (209.95.64.245)
> >   by mx01-ext.netapp.com with SMTP; 2 Dec 1999 18:20:17 -0000
> > Received: (qmail 2968 invoked by uid 65534); 2 Dec 1999 18:25:18 -0000
> > Date: 2 Dec 1999 18:25:18 -0000
> > Message-ID: <[EMAIL PROTECTED]>
> > To: dealmac readers <[EMAIL PROTECTED]@[EMAIL PROTECTED]>
> > Subject: dealmac: <B>$20</b> in Snap Cash
> > From: Sam Cramer via dealmac <[EMAIL PROTECTED]>
> >
> >
> > This deal from dealmac [http://dealmac.com] was sent to you by Sam
Cramer.
> >
> > Check this out!
> >
> > You can read this online at:
> > http://dealmac.com/article.html?s=buyi28&i=9934&d=1999-12-02
> >
> > ----------
> >
> > $20 in Snap Cash
> >
> > SnapShopping arms you with $20 in Snap Cash good towardsparticipating
> > merchants. You pay full price, but Snap.com credits$20 back to your
credit
> > card within seven days of your purchase.One use only; no minimum is
> listed.
> > Offer requires registrationand the use of the Snap Wallet and Shopping
> Cart.
> > barnesandnoble.com,Computers4SURE.com, and others participate with Snap
> > Cash.
> >
> >
>
>






I don't think "Reply-to:" would work.
If you don't want to process as anonymous you should change the envelope
sender. See "man qmail-inject".

Daniel

On Thu, 2 Dec 1999, Denis Voitenko wrote:

:Why not pass the "From:" or "Reply-to:" header along with the massage? I
:think it'd do the job. If not you could process mail to anonymous with a
:script and bounce from there.
:
:
:Denis Voitenko
:Tel: 856 809-9252
:Mail: [EMAIL PROTECTED]
:ICQ: 9396092
:----- Original Message -----
:From: Brian Moon <[EMAIL PROTECTED]>
:To: qmail <[EMAIL PROTECTED]>
:Sent: Thursday, December 02, 1999 10:24 AM
:Subject: bouncing mail
:
:
:> i have a web form where users can email articles to their friends.  If
:they
:> enter a  bad address and it bounces, it comes back to
:[EMAIL PROTECTED]
:> instead of bouncing to the From in the original email header.  Is there
:any
:> thing out there that can redirect this back to the  From address?  We do
:not
:> want to simply delete them.
:>
:> Thanks,
:>
:> Brian.
:> ------------------------------
:> http://brian.threadnet.com
:>
:> example:
:>
:> Hi. This is the qmail-send program at mx01-ext.netapp.com.
:> I'm afraid I wasn't able to deliver your message to the following
:addresses.
:> This is a permanent error; I've given up. Sorry it didn't work out.
:>
:> <[EMAIL PROTECTED]@gis.netcramer>:
:> Sorry, I couldn't find any host named gis.netcramer. (#5.1.2)
:>
:> --- Below this line is a copy of the message.
:>
:> Return-Path: <[EMAIL PROTECTED]>
:> Received: (qmail 16965 invoked from network); 2 Dec 1999 18:20:23 -0000
:> Received: from herra.netapp.com (HELO herra.corp.netapp.com)
:> (198.95.224.184)
:>   by mx01-ext.netapp.com with SMTP; 2 Dec 1999 18:20:23 -0000
:> Received: from mx01-ext.netapp.com (mx01-ext.netapp.com [198.95.224.34])
:> by herra.corp.netapp.com (8.9.3/8.9.3/NTAP-1.0) with SMTP id KAA15410
:> for <"[EMAIL PROTECTED]@gis.netcramer"@netapp.com>; Thu, 2 Dec 1999
:> 10:19:36 -0800 (PST)
:> Received: (qmail 29704 invoked from network); 2 Dec 1999 18:20:17 -0000
:> Received: from chandra025.circle.net (HELO dealnews.com) (209.95.64.245)
:>   by mx01-ext.netapp.com with SMTP; 2 Dec 1999 18:20:17 -0000
:> Received: (qmail 2968 invoked by uid 65534); 2 Dec 1999 18:25:18 -0000
:> Date: 2 Dec 1999 18:25:18 -0000
:> Message-ID: <[EMAIL PROTECTED]>
:> To: dealmac readers <[EMAIL PROTECTED]@[EMAIL PROTECTED]>
:> Subject: dealmac: <B>$20</b> in Snap Cash
:> From: Sam Cramer via dealmac <[EMAIL PROTECTED]>
:>
:>
:> This deal from dealmac [http://dealmac.com] was sent to you by Sam Cramer.
:>
:> Check this out!
:>
:> You can read this online at:
:> http://dealmac.com/article.html?s=buyi28&i=9934&d=1999-12-02
:>
:> ----------
:>
:> $20 in Snap Cash
:>
:> SnapShopping arms you with $20 in Snap Cash good towardsparticipating
:> merchants. You pay full price, but Snap.com credits$20 back to your credit
:> card within seven days of your purchase.One use only; no minimum is
:listed.
:> Offer requires registrationand the use of the Snap Wallet and Shopping
:Cart.
:> barnesandnoble.com,Computers4SURE.com, and others participate with Snap
:> Cash.
:>
:>
:

                                    ----------------------------------
 Daniel Mattos                        Tribeca Internet Initiatives Inc.
 [EMAIL PROTECTED]                                   http://www.tiii.com
-----------------





Thank you all.  It seems that putting a Return-path header in with the from
email address does the trick.

Brian.
------------------------------
http://brian.threadnet.com


----- Original Message -----
From: "Denis Voitenko" <[EMAIL PROTECTED]>
To: "Brian Moon" <[EMAIL PROTECTED]>; "qmail" <[EMAIL PROTECTED]>
Sent: Thursday, December 02, 1999 4:12 PM
Subject: Re: bouncing mail


> Why not pass the "From:" or "Reply-to:" header along with the massage? I
> think it'd do the job. If not you could process mail to anonymous with a
> script and bounce from there.
>
>
> Denis Voitenko
> Tel: 856 809-9252
> Mail: [EMAIL PROTECTED]
> ICQ: 9396092
> ----- Original Message -----
> From: Brian Moon <[EMAIL PROTECTED]>
> To: qmail <[EMAIL PROTECTED]>
> Sent: Thursday, December 02, 1999 10:24 AM
> Subject: bouncing mail
>
>
> > i have a web form where users can email articles to their friends.  If
> they
> > enter a  bad address and it bounces, it comes back to
> [EMAIL PROTECTED]
> > instead of bouncing to the From in the original email header.  Is there
> any
> > thing out there that can redirect this back to the  From address?  We do
> not
> > want to simply delete them.
> >
> > Thanks,
> >
> > Brian.
> > ------------------------------
> > http://brian.threadnet.com
> >
> > example:
> >
> > Hi. This is the qmail-send program at mx01-ext.netapp.com.
> > I'm afraid I wasn't able to deliver your message to the following
> addresses.
> > This is a permanent error; I've given up. Sorry it didn't work out.
> >
> > <[EMAIL PROTECTED]@gis.netcramer>:
> > Sorry, I couldn't find any host named gis.netcramer. (#5.1.2)
> >
> > --- Below this line is a copy of the message.
> >
> > Return-Path: <[EMAIL PROTECTED]>
> > Received: (qmail 16965 invoked from network); 2 Dec 1999 18:20:23 -0000
> > Received: from herra.netapp.com (HELO herra.corp.netapp.com)
> > (198.95.224.184)
> >   by mx01-ext.netapp.com with SMTP; 2 Dec 1999 18:20:23 -0000
> > Received: from mx01-ext.netapp.com (mx01-ext.netapp.com [198.95.224.34])
> > by herra.corp.netapp.com (8.9.3/8.9.3/NTAP-1.0) with SMTP id KAA15410
> > for <"[EMAIL PROTECTED]@gis.netcramer"@netapp.com>; Thu, 2 Dec
1999
> > 10:19:36 -0800 (PST)
> > Received: (qmail 29704 invoked from network); 2 Dec 1999 18:20:17 -0000
> > Received: from chandra025.circle.net (HELO dealnews.com) (209.95.64.245)
> >   by mx01-ext.netapp.com with SMTP; 2 Dec 1999 18:20:17 -0000
> > Received: (qmail 2968 invoked by uid 65534); 2 Dec 1999 18:25:18 -0000
> > Date: 2 Dec 1999 18:25:18 -0000
> > Message-ID: <[EMAIL PROTECTED]>
> > To: dealmac readers <[EMAIL PROTECTED]@[EMAIL PROTECTED]>
> > Subject: dealmac: <B>$20</b> in Snap Cash
> > From: Sam Cramer via dealmac <[EMAIL PROTECTED]>
> >
> >
> > This deal from dealmac [http://dealmac.com] was sent to you by Sam
Cramer.
> >
> > Check this out!
> >
> > You can read this online at:
> > http://dealmac.com/article.html?s=buyi28&i=9934&d=1999-12-02
> >
> > ----------
> >
> > $20 in Snap Cash
> >
> > SnapShopping arms you with $20 in Snap Cash good towardsparticipating
> > merchants. You pay full price, but Snap.com credits$20 back to your
credit
> > card within seven days of your purchase.One use only; no minimum is
> listed.
> > Offer requires registrationand the use of the Snap Wallet and Shopping
> Cart.
> > barnesandnoble.com,Computers4SURE.com, and others participate with Snap
> > Cash.
> >
> >
>
>





First off, I am using qmail-ldap, so my apologies to the qmail list if that
makes it off-topic...


What I want to do is set up a qmail-ldap server (I have done this part
already, and it works well) that doesn't require a home directory for each
and every user.  I am using the cyrus IMAP server, and what I effectively
want is to do the equivalent of having "|deliver $USER" in everyone's .qmail
file, without needing the .qmail file.
I thought I had this working with the deliveryProgramPath ldap attribute set
to /usr/bin/deliver (username) and deliveryMode set to nombox, and every
users mailMessageStore set to /var/spool/mailbox/ (an empty maildir folder,
to stop qmail/ldap from complaining) but when I try to send a mail via
qmail-inject, it says in the logs that it delivered successfully, but the
mail disappears off the face of the earth.

Can anyone tell me if what I'm trying to do is possible, and perhaps point
out a place I might be going wrong?






I know this came up recently, but I can't seem to find it in the 
archives. I've got a customer for who I just set up his own qmail 
server. There's mail left in his old mailboxes on my server though. I 
remember someone posting a quick and dirty script that would reinject 
the messages in a Maildir. Is it really just as simple as feeding 
each message into qmail-inject?

Thanks,
jon




Jon,

Yes, you should probably at least 'man qmail-inject' before you do it,
but essentially, if you have a Maildir with messages you wish to move
to another recipient, you can 

# cd ~user/Maildir/
# for i in *; do qmail-inject -a [EMAIL PROTECTED] < $i; done

This leaves all of the messages in the Maildir and injects copies
(obviously) into the queue....

It's a good quick and dirty thing to have stuffed in the back of your
head.  Can get you out of a jam....

[ By the way, it makes quite a mess, if you haven't checkd to be sure
that mail to [EMAIL PROTECTED] can actually deliver....because
the MTA on foobar.tld's MX host will bounce the messages to the original
sender, so use the above 'quick and dirty' with caution. ]

-Martin

On  2 Dec, Jon Rust wrote:
  : I know this came up recently, but I can't seem to find it in the 
  : archives. I've got a customer for who I just set up his own qmail 
  : server. There's mail left in his old mailboxes on my server though. I 
  : remember someone posting a quick and dirty script that would reinject 
  : the messages in a Maildir. Is it really just as simple as feeding 
  : each message into qmail-inject?
  : 
  : Thanks,
  : jon

-- 
Martin A. Brown --- SecurePipe Communications --- [EMAIL PROTECTED]





Thanx for the input.. I'm reading though the archives, so I can't reply
individually like I wanted to.. Did some changes to my server and mucked
up my emai l ( oops ) so I didn't get any of your reply's personally..
But I did read about the bug report and I see what you are talking
about. I did the fix in Netscape and it's working like it should now (
finally )

Thnx for yalls help.. I really need to create a secondary mail server
for myself.. I seem to muck up qmail enough :)

Thnx again

Philip





Hi to everyone!
I have separate log files for qmail, smtpd and qmail-pop3d. But I notice that my pop3d 
logs doesn't show the 'username' or any 'incorrect password' messages. How can I get my
qmail-pop3d to log usernames that access their mails? I need this to make sure that a
certain client gets his mails. BTW, I'm using tcpserver with my qmail-pop3d.

Thanks for any help and more power!





The default checkpassword proggie won't do it. See the archives for a 
discussion on one that does.

http://www.egroups.com/group/djb-qmail/showthread.html?start=35998

Jon

At 7:43 AM +0800 12/3/99, DOODS wrote:
>Hi to everyone!
>I have separate log files for qmail, smtpd and qmail-pop3d. But I 
>notice that my pop3d
>logs doesn't show the 'username' or any 'incorrect password' 
>messages. How can I get my
>qmail-pop3d to log usernames that access their mails? I need this to 
>make sure that a
>certain client gets his mails. BTW, I'm using tcpserver with my qmail-pop3d.
>
>Thanks for any help and more power!





Hi,

When I start qmail-pop3d, I get the following error:

    Hard error

I'm starting qmail-pop3d like this:

    /etc/rc.d/init.d/qmail-pop3d.init start

It seems to be /var/qmail/bin/dnsfq that's giving this error.  Does anyone
know why it would do that?





Depends on what's in qmail-pop3d.init...

Open your init script and see what it doing for start. Try running it 
by hand and see what it tells you.

jon

At 5:49 PM -0600 12/2/99, Shawn P. Stanley wrote:
>Hi,
>
>When I start qmail-pop3d, I get the following error:
>
>    Hard error
>
>I'm starting qmail-pop3d like this:
>
>    /etc/rc.d/init.d/qmail-pop3d.init start
>
>It seems to be /var/qmail/bin/dnsfq that's giving this error.  Does anyone
>know why it would do that?





It's definately /var/qmail/bin/dnsfq giving the "Hard error" message, in
response to:

    /var/qmail/bin/dnsfq spigot.nbs-inc.com

I can't find any help on dnsfq.  Any ideas?

----- Original Message -----
From: Jon Rust <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Thursday, December 02, 1999 6:04 PM
Subject: Re: starting qmail-pop3d


> Depends on what's in qmail-pop3d.init...
>
> Open your init script and see what it doing for start. Try running it
> by hand and see what it tells you.
>
> jon
>
> At 5:49 PM -0600 12/2/99, Shawn P. Stanley wrote:
> >Hi,
> >
> >When I start qmail-pop3d, I get the following error:
> >
> >    Hard error
> >
> >I'm starting qmail-pop3d like this:
> >
> >    /etc/rc.d/init.d/qmail-pop3d.init start
> >
> >It seems to be /var/qmail/bin/dnsfq that's giving this error.  Does
anyone
> >know why it would do that?
>





My clients are trying to mail outside the LAN, and receiving an 553 error
"im sorry that domain isnt in my list of rcpthosts".

is there any way to allow my clients to mail anyone outside my LAN without
running ucspi-tcp? I only have 6 clients, and do not have high loads, so im
sure inetd can handle the process.

Thanks in advance,
Jim





Jim,

Is this machine accessible via The Net, or is it behind a firewall?

If it's behind the firewall, you are set.  Just open the darned thing
up, and be done with it.

If this is available from The [evil] Net, and you don't want to relay
for the world, you can do two things.

Option 1
==============
Use a different port (port 444 instead of port 25), but have the
qmail-smtpd that runs on that port accept and relay any mail--this
falls into the security through obscurity ballgame, and will be frowned
upon by most qmail-list folks (and I wouldn't recommend, although you
could do this)....

So, you create this line in inetd.conf:

444    stream  tcp     nowait  root    /tmp/relay-kludge.sh

and create this file (/tmp/relay-kludge.sh) with 755 perms (or something
more restrictive):

#!/bin/sh
#
#
export RELAYCLIENT=""
 
/var/qmail/bin/qmail-smtpd                                       


And you tell your users to use that port (444) for all of their SMTP
sessions.

        or

Option 2
============
You can run ucspi, which has built-in support for IP-based selective
relaying.


Perhaps you wish not to "complicate" things by running ucspi, but I
believe quite strongly that it is the best solution in this regard. 
This will also allow you to have finely grained control over what other
IPs are allowed to relay through your machine, not only your users, but
also.....a friend who has a static IP, let's say....or maybe you are on
the road one day, and you need to allow yourself an "open relay"....you
could shell in and make the change, and then you have a relay....

It's really not a great deal more work to install the ucspi package,
and it works with qmail (and a dozen other programs) so very well, that
it's worth the effort to install and configure it.  (Frankly for me,
it's not about load/concurrency, but configurability....that's why I
prefer tcpserver--part of the ucspi package--so much.)

If you'd like some example lines, or an introduction to tcpserver,
respond to me off the list, and I'll give you a few pointers.

-Martin

-------
On  2 Dec, Jim Hall wrote:
  : My clients are trying to mail outside the LAN, and receiving an 553 error
  : "im sorry that domain isnt in my list of rcpthosts".
  : 
  : is there any way to allow my clients to mail anyone outside my LAN without
  : running ucspi-tcp? I only have 6 clients, and do not have high loads, so im
  : sure inetd can handle the process.
  : 
  : Thanks in advance,
  : Jim
  : 

-- 
Martin A. Brown --- SecurePipe Communications --- [EMAIL PROTECTED]





I have a similar question, but perhaps the answer is not so easy.

I use ucspi with great success, but I have a user whose ISP is a university,
and I'm not sure I want to open up access to the university's entire subnet.
However, the user gets a dynamic IP every time he connects.  How can I allow
him SMTP access without opening the door to the entire university?  Granted,
the chance that the university students are spammers looking for open relay
servers is small, but I'd like to avoid taking that chance if I can.

----- Original Message -----
From: <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Cc: <[EMAIL PROTECTED]>
Sent: Thursday, December 02, 1999 9:52 PM
Subject: Re: rcpthosts


> Jim,
>
> Is this machine accessible via The Net, or is it behind a firewall?
>
> If it's behind the firewall, you are set.  Just open the darned thing
> up, and be done with it.
>
> If this is available from The [evil] Net, and you don't want to relay
> for the world, you can do two things.
>
> Option 1
> ==============
> Use a different port (port 444 instead of port 25), but have the
> qmail-smtpd that runs on that port accept and relay any mail--this
> falls into the security through obscurity ballgame, and will be frowned
> upon by most qmail-list folks (and I wouldn't recommend, although you
> could do this)....
>
> So, you create this line in inetd.conf:
>
> 444    stream  tcp     nowait  root    /tmp/relay-kludge.sh
>
> and create this file (/tmp/relay-kludge.sh) with 755 perms (or something
> more restrictive):
>
> #!/bin/sh
> #
> #
> export RELAYCLIENT=""
>
> /var/qmail/bin/qmail-smtpd
>
>
> And you tell your users to use that port (444) for all of their SMTP
> sessions.
>
> or
>
> Option 2
> ============
> You can run ucspi, which has built-in support for IP-based selective
> relaying.
>
>
> Perhaps you wish not to "complicate" things by running ucspi, but I
> believe quite strongly that it is the best solution in this regard.
> This will also allow you to have finely grained control over what other
> IPs are allowed to relay through your machine, not only your users, but
> also.....a friend who has a static IP, let's say....or maybe you are on
> the road one day, and you need to allow yourself an "open relay"....you
> could shell in and make the change, and then you have a relay....
>
> It's really not a great deal more work to install the ucspi package,
> and it works with qmail (and a dozen other programs) so very well, that
> it's worth the effort to install and configure it.  (Frankly for me,
> it's not about load/concurrency, but configurability....that's why I
> prefer tcpserver--part of the ucspi package--so much.)
>
> If you'd like some example lines, or an introduction to tcpserver,
> respond to me off the list, and I'll give you a few pointers.
>
> -Martin
>
> -------
> On  2 Dec, Jim Hall wrote:
>   : My clients are trying to mail outside the LAN, and receiving an 553
error
>   : "im sorry that domain isnt in my list of rcpthosts".
>   :
>   : is there any way to allow my clients to mail anyone outside my LAN
without
>   : running ucspi-tcp? I only have 6 clients, and do not have high loads,
so im
>   : sure inetd can handle the process.
>   :
>   : Thanks in advance,
>   : Jim
>   :
>
> --
> Martin A. Brown --- SecurePipe Communications --- [EMAIL PROTECTED]
>





Shawn,

Well, in that case, I'd recommend you try using relay-ctrl-allow (and
the companion package relay-ctrl-age).  Together, these two allow you
to authenticate a user (e.g., via POP3), and then include the
dynamically assigned IP address in the list of "OK to relay" hosts.

The relay-ctrl-allow package takes care of adding the
(just-authenticated) user to the appropriate CDB which tcpserver checks
before passing the SMTP connection to qmail-smtp.  This is where the
modular beauty of tcpserver + <authentication> + relay-ctrl-allow +
qmail-pop3d, really shines.

This is an excellent way to allow people to use your SMTP server as a
relay, but to retain control of the relaying.  In other words, you have
to authenticate via POP3 before you are allowed to relay.  (That send
and receive button just came in handy, eh?)

It may take some digging around to find some good examples of
relay-ctrl-allow and relay-ctrl-age scripts, but I'm sure there are
others on the list who would be glad to help with that...you should be
able to find exactly what you are looking for in Bruce Guenter's RPMS,
which you should be able to locate somewhere from http://www.qmail.org/.

Good luck,

-Martin

On  2 Dec, Shawn P. Stanley wrote:
  : I have a similar question, but perhaps the answer is not so easy.
  : 
  : I use ucspi with great success, but I have a user whose ISP is a university,
  : and I'm not sure I want to open up access to the university's entire subnet.
  : However, the user gets a dynamic IP every time he connects.  How can I allow
  : him SMTP access without opening the door to the entire university?  Granted,
  : the chance that the university students are spammers looking for open relay
  : servers is small, but I'd like to avoid taking that chance if I can.
  : 
  : ----- Original Message -----
  : From: <[EMAIL PROTECTED]>
  : To: <[EMAIL PROTECTED]>
  : Cc: <[EMAIL PROTECTED]>
  : Sent: Thursday, December 02, 1999 9:52 PM
  : Subject: Re: rcpthosts
  : 
  : 

<snip>

-- 
Martin A. Brown --- SecurePipe Communications --- [EMAIL PROTECTED]





Hi there, sorry to bother you all..
 
    I know you get quite a few emails from things people could have found in the FAQ or other documentation so rest assured I've looked as best as I could to find answers to these questions and have probably gone and overlooked somethin :)
 
    Anyway... on with the show - I have several servers running qmail and on these servers there's one user that is making a habit of sending 'naughty' email... I'm wondering if there is a way to limit the number of emails that one user can send at one time? I've heard of this, but as yet it's unconfigurmed.
 
    Also... on a particular server there's a lot of 'Trouble Injecting Bounce Message...' failures in the mail log... any idea what this could be and how I could stop it ?
 
Thanks for your time.
M. Richardson




You might try confronting that user.  I would guess that if you show them you know what they're doing and that they're in trouble for doing it, they'll stop and you won't have to spend a lot of time trying to stop them with technology.  The impersonal find-a-way-to-block method may just up the ante, turning it into a user versus the system problem, while the personal confrontation may end the behavior.
----- Original Message -----
Sent: Thursday, December 02, 1999 8:39 PM
Subject: a few things...

Hi there, sorry to bother you all..
 
    I know you get quite a few emails from things people could have found in the FAQ or other documentation so rest assured I've looked as best as I could to find answers to these questions and have probably gone and overlooked somethin :)
 
    Anyway... on with the show - I have several servers running qmail and on these servers there's one user that is making a habit of sending 'naughty' email... I'm wondering if there is a way to limit the number of emails that one user can send at one time? I've heard of this, but as yet it's unconfigurmed.
 
    Also... on a particular server there's a lot of 'Trouble Injecting Bounce Message...' failures in the mail log... any idea what this could be and how I could stop it ?
 
Thanks for your time.
M. Richardson




I can't explain it but all the sudden all my alias's don't work

all .qmail-foo files in the aliases directory will produce a can't_chdir_to
Maildir/

What cause this and what should I look for to fix it?

I have read the docs and being a novice admin I can't determine if this is a
permissions issue (I believe it is). I don't know where?

Help

Dave





Dave,

I'm not sure exactly what the problem is in this case...if you
don't mind, show us your /var/qmail/control/* files, and tell us 
if you want the mail delivered to the UNIX user's Maildirs....

What you are appear to be asking are two unrelated questions....

For one thing, you should check to see that all of your users own their
own Maildirs, and that the proper subdirectories exist.

i.e.,  ~martin/Maildir/new
       ~martin/Maildir/cur
       ~martin/Maildir/tmp

all need to exist....(I think the maildirmake program takes care of this
for you, so you are probably having a different problem, but send us
your control files, and we'll take a look).

-Martin

Martin A. Brown --- SecurePipe Communications --- [EMAIL PROTECTED]
On Thu, 2 Dec 1999, dave wrote:

> I can't explain it but all the sudden all my alias's don't work
> 
> all .qmail-foo files in the aliases directory will produce a can't_chdir_to
> Maildir/
> 
> What cause this and what should I look for to fix it?
> 
> I have read the docs and being a novice admin I can't determine if this is a
> permissions issue (I believe it is). I don't know where?
> 
> Help
> 
> Dave
> 
> 





hi,

   can somebody tell me how to use the tai64nlocal program ? from my log
file now i see

@640000007563578c end msg 45673

can i convert @640000007563578c into more decent time dat format .. let
say 1991203 10:32.747474 end msg 45673

thanksss :)





try: cat qmaillog | tai64nlocal > qmaillog.tmp

This should convert the timestamps into a human format ;-).

Holger


> -----Ursprüngliche Nachricht-----
> Von: Ismal Hisham Mohd Darus [mailto:[EMAIL PROTECTED]]
> Gesendet am: Freitag, 3. Dezember 1999 08:39
> An: [EMAIL PROTECTED]
> Betreff: tai64nlocal
> 
> hi,
> 
>    can somebody tell me how to use the tai64nlocal program ? 
> from my log
> file now i see
> 
> @640000007563578c end msg 45673
> 
> can i convert @640000007563578c into more decent time dat 
> format .. let
> say 1991203 10:32.747474 end msg 45673
> 
> thanksss :)
> 




Hi all,

I have a Qmail server running on Jurix. In /etc/rc.config i have the
timezone set as follows. 

TIMEZONE="Africa/Johannesburg"

If i run date i get the following 

Fri Dec 3 10:38:14 SAST 1999

Yet Qmail sets the dates as 

Received: (qmail 22496 invoked from network); 3 Dec 1999 07:38:30 -0000

Is there a way that i can change it to reflect

Received: (qmail 22496 invoked from network); 3 Dec 1999 09:38:30 +0200


Thank You 

Tony Wade (Postmaster)
The Internet Solution
Tel:    (+27 11) 283 5000
E-mail:      [EMAIL PROTECTED]
#include <std/disclaimer.h>
I wouldn't be so paranoid if you weren't all out to get me !!





-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On 3 Dec 99, at 10:43, Tony Wade wrote:

> Hi all,
> 
> I have a Qmail server running on Jurix. In /etc/rc.config i have the
> timezone set as follows. 
> 
> TIMEZONE="Africa/Johannesburg"
> 
> If i run date i get the following 
> 
> Fri Dec 3 10:38:14 SAST 1999
> 
> Yet Qmail sets the dates as 
> 
> Received: (qmail 22496 invoked from network); 3 Dec 1999 07:38:30 -0000
> 
> Is there a way that i can change it to reflect
> 
> Received: (qmail 22496 invoked from network); 3 Dec 1999 09:38:30 +0200

qmail always timestamps with UTC (to avoid problems with 
traditionally broken C libraries dealing with timezones).

If you want to change it, download a patch from www.qmail.org -
"John Saunders has a patch to date822fmt.c which causes it to 
emit dates in the local timezone. "


-----BEGIN PGP SIGNATURE-----
Version: PGP 6.0.2 -- QDPGP 2.60 
Comment: http://community.wow.net/grt/qdpgp.html

iQA/AwUBOEeSaVMwP8g7qbw/EQKhBwCdEvS+lQo9ZevDRayoTLoAz2cjhXsAnjRa
j0s5L3OFDrNM02YXfmHTmTO/
=HZ36
-----END PGP SIGNATURE-----
--
Petr Novotny, ANTEK CS
[EMAIL PROTECTED]
http://www.antek.cz
PGP key ID: 0x3BA9BC3F
-- Don't you know there ain't no devil there's just God when he's drunk.
                                                             [Tom Waits]


Reply via email to