qmail Digest 31 Jan 2000 11:00:01 -0000 Issue 897
Topics (messages 36342 through 36364):
Re: Qmail behaviour
36342 by: Erwin Hoffmann
Re: Open Relay
36343 by: Martin Lesser
Re: Qmail crashing TCP/IP-stack
36344 by: Frederik Lindberg
36348 by: Florian G. Pflug
36355 by: Frederik Lindberg
Re: Qmail taking too long?? ==> IDENT Failure
36345 by: Erwin Hoffmann
Re: Unix GUI MUA For Qmail Maildirs ?
36346 by: Faried Nawaz
36350 by: Martin Lesser
36351 by: Jedi/Sector One
Re: default to mailing list
36347 by: J.M. Roth \(iip\)
ANNOUNCE: Scan4Virus-0.16 - Users please read!
36349 by: Jason Haar
"501 [EMAIL PROTECTED] ... Sender domain must exist" with qmail ?
36352 by: Olivier M.
36354 by: Andre Oppermann
36356 by: Frederik Lindberg
ANNOUNCE: SMTP AUTH support for qmail.
36353 by: listy-dyskusyjne Krzysztof Dabrowski
Re: mail-demultiplexing
36357 by: richard.illuin.org
SMTProutes - how to use them?
36358 by: Michael Boman
36359 by: Anand Buddhdev
pop3 email access for root?
36360 by: Liu Zehua
36361 by: Aaron L. Meehan
Qmail anti-virus package?
36362 by: Erwin van Kroonenburg
popbull
36363 by: TAG
Sharing queue-question, again...
36364 by: Michael Boman
Administrivia:
To unsubscribe from the digest, e-mail:
[EMAIL PROTECTED]
To subscribe to the digest, e-mail:
[EMAIL PROTECTED]
To bug my human owner, e-mail:
[EMAIL PROTECTED]
To post to the list, e-mail:
[EMAIL PROTECTED]
----------------------------------------------------------------------
>
>At 13:20 27.1.2000 -0500, you wrote:
>>
>>"Adil Tahiri" <[EMAIL PROTECTED]> wrote:
>>
>>>Is it possible to stop qmail sending or receiving email if the from: and
to:
>>>fields contain incomplete addresses i.e. username and not
>>>[EMAIL PROTECTED]
>>
>>qmail doesn't look at the From: or To: fields. It uses the SMTP
>>envelope addresses. There's no easy way to filter them for incomplete
>>specifications. Perhaps the SPAMCONTROL patch posted recently
>>does. Dr. Hoffman?
>>
>>-Dave
>>
>Well,
>
>by means of the SPAMCONTROL patch you can filter E-Mail
receipeints/senders on demand - of course. But QMAIL still insists taking
addresses like "Mail <me>" or "RCPT <him>" and adding the local domain.
Have a look at the man-pages.
>If anybody knows better, s/he is welcome.
>
>Regards.
>eh.
+-----------------------------------------------------------------------+
| fff hh Dr. Erwin Hoffmann |
| ff hh |
| ff eee hhhh ccc ooo mm mm mm Wiener Weg 8 |
| fff ee ee hh hh cc oo oo mmm mm mm 50858 Koeln |
| ff ee eee hh hh cc oo oo mm mm mm |
| ff eee hh hh cc oo oo mm mm mm Tel 0221 484 4923 |
| ff eeee hh hh ccc ooo mm mm mm Fax 0221 484 4924 |
+-----------------------------------------------------------------------+
Charles Cazabon <[EMAIL PROTECTED]> writes:
> This is just a guess, because you haven't given us enough information to
> go on, but perhaps just because qmail-smtpd is not immediately aborting
> with an error after the RCPT TO: portion of the smtp transaction, you think
> that's relaying. It's not a relay unless the message makes it to its
> final destination.
Yes - but I think that's a misunderstanding for many people (and some
security-scanners). Additionaly you could try to to send mails RCPT TO:
|testing@localhost or RCPT: /tmp/testfile@localhost. Some
security-scanners then assume your MTA has a problem but in reality
qmail-smtpd (or better qmail-local?) delivers these wrong adressed mails
to postmaster. And because not being able to trace the wrong adressed
mail you get a security-hole reported where no hole exists.
Martin
On Fri, Jan 28, 2000 at 04:35:31PM -0600, Dennis Duval wrote:
> to retrieve the file with OE and voila! it worked. When I pull the file
> into a dos-based text editor in binary mode, it shows them as the NUL char,
> hex 00. I'm not sure whether this editor is showing the actual data, or
> just replacing the characters with NUL.
Most likely NUL. Seen similar problems with Eudora. qmail/ezmlm have no
problems with such messages and transport them happily (and correctly).
> I guess the only questions are: where did the control chars come from, and
> if they are some uncontrollable artifact of transmission, should OE be able
> to retrieve the item even though they are present.
Of course. At worst it should say that there are errors in that message and
continue with the next. Write to microsoft.com support to get the bug fixed.
(they may tell you that a POP3 transmission may not contain NUL, which may
be correct in some sense, but is irrelevant to the need of the client to
handle it).
-Sincerely, Fred
Fred Lindberg, Inf. Dis., WashU, St. Louis, MO, USA
>On Fri, Jan 28, 2000 at 04:35:31PM -0600, Dennis Duval wrote:
>
>> to retrieve the file with OE and voila! it worked. When I pull the file
>> into a dos-based text editor in binary mode, it shows them as the NUL char,
>> hex 00. I'm not sure whether this editor is showing the actual data, or
>> just replacing the characters with NUL.
>
>Most likely NUL. Seen similar problems with Eudora. qmail/ezmlm have no
>problems with such messages and transport them happily (and correctly).
>
>> I guess the only questions are: where did the control chars come from, and
>> if they are some uncontrollable artifact of transmission, should OE be able
>> to retrieve the item even though they are present.
>
>Of course. At worst it should say that there are errors in that message and
>continue with the next. Write to microsoft.com support to get the bug fixed.
>
>(they may tell you that a POP3 transmission may not contain NUL, which may
>be correct in some sense, but is irrelevant to the need of the client to
>handle it).
Well - but them how about qmail not handling bare newlines in the body of
a message (and with the patch I use still not being recognizing \n.\n as
the end of a message)...
If OE shpuld handle NULL characters (which can stress you, if you program
in C/C++), than qmail should handle "strange" messages or smtp/pop3
commands too...
just my $0.2
mfg, fgp
> Well - but them how about qmail not handling bare newlines in the body of
> a message (and with the patch I use still not being recognizing \n.\n as
> the end of a message)...
> If OE shpuld handle NULL characters (which can stress you, if you program
> in C/C++), than qmail should handle "strange" messages or smtp/pop3
> commands too...
qmail does. It doesn't corrupt messages with bare LF and it doesn't corrupt
messages with NUL. sendmail corrupts messages with bare LF and OE
"is corrupted" by NUL. Use fixcr (explained several times on this list
and via www.qmail.org) to "allow message corruption" by interpreting
\n.\n as \r\n.\r\n. In practice this is mostly safe (although I've seen
Mac clients sending 8-bit unencoded binary files as attachments). However,
you can't fault Dan for putting integrity first (after security).
--
-Sincerely, Fred
Fred Lindberg, Inf. Dis., WashU, St. Louis, MO, USA
At 11:25 29.1.2000 +0200, you wrote:
>
>Hi ALL
>
>I have an urgent problem - why does the stock standard installation of
>qmail-1.03 take long (>30 sec)when answering an pop3 request - also is
>it correct to have the following in an ps -ef (system is Solaris 7 -
>Sparc ultra 450):, about 5-10 tcpservers spawning qmail-popup, and 4-6
>rblsmtpd servers???
>
>PLEASE help - suggestions??
>
>
>Many thanks
>--Tonino
>
Hi,
we saw similar problems when running QMAIL on a host in a DMZ. The reason
was that TCPENV tries to get the IDENT information from the remote system
thru the FIREWALL. However, this protocol was blocked. The IDENT request
finally dies out an QMAIL gets on going after a longer period of time
(exactly 30 seconds).
Disable the IDENT service in your INETD on the QMAIL host.
Cheers.
eh.
+-----------------------------------------------------------------------+
| fff hh Dr. Erwin Hoffmann |
| ff hh |
| ff eee hhhh ccc ooo mm mm mm Wiener Weg 8 |
| fff ee ee hh hh cc oo oo mmm mm mm 50858 Koeln |
| ff ee eee hh hh cc oo oo mm mm mm |
| ff eee hh hh cc oo oo mm mm mm Tel 0221 484 4923 |
| ff eeee hh hh ccc ooo mm mm mm Fax 0221 484 4924 |
+-----------------------------------------------------------------------+
<[EMAIL PROTECTED]> writes:
I've been looking through repositories of OPEN SOURCE software
looking for a Mail User Agent for Unix machines that runs natively
in a Unix XWindow environment. I can't seem to find one that allows
the usage of Qmail's Maildirs. Does anyone know of one that is
Open Source ?
I suggest you go to http://freshmeat.net/ and search for "maildir" or "mua".
There may be something associated with KDE or Gnome that'll do what you
want.
Gnus inside XEmacs supports maildirs, and XEmacs can run under X (as a bonus
feature, it'll even run in non-X environments!). It's probably overkill for
your users if they're not familiar with Emacs environment, though.
http://www.gnus.org/
<[EMAIL PROTECTED]> writes:
> I've been looking through repositories of OPEN SOURCE software
> looking for a Mail User Agent for Unix machines that runs natively
> in a Unix XWindow environment. I can't seem to find one that allows
> the usage of Qmail's Maildirs. Does anyone know of one that is
> Open Source ?
Xemacs and Gnus is your choice
Martin
Martin Lesser wrote:
> > in a Unix XWindow environment. I can't seem to find one that allows
> > the usage of Qmail's Maildirs. Does anyone know of one that is
> > Open Source ?
> Xemacs and Gnus is your choice
Balsa (http://www.balsa.net) .
--
Frank DENIS aka Jedi/Sector One aka DJ Chrysalis <[EMAIL PROTECTED]>
-> Software : http://www.jedi.claranet.fr <-
-> Music : http://www.mp3.com/chrysalis <-
No well yes,
but what if there is a mailing list that's already defined, like:
[EMAIL PROTECTED]
Now, [EMAIL PROTECTED] should go to the mailing list. I don't wanna copy
the whole thing.
If I simply put &[EMAIL PROTECTED] into .qmail-default the whole directory
seems messed up because mails are returned and say that users that DO exist
didn't exist, which simply is not true.
Any idea?
-- jmr
----- Original Message -----
From: "Dave Sill" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Monday, January 24, 2000 6:44 PM
Subject: Re: default to mailing list
> "J.M. Roth \(iip\)" <[EMAIL PROTECTED]> wrote:
>
> >What do I need to put in the .qmail-default file if I want to deliver
> >to a mailing list ?
>
> A list of the recipients, one per line.
>
> >simply the directory of the mailing list username doesn't seem to
> >work (probably because there's no Mailbox directory in there)
>
> See "man dot-qmail".
>
> -Dave
>
I've found a security hole in my antivirus-qmail-queue perl script :-(
It was calling qmail-inject when reporting viruses with the SMTP-generated
Return-Path on the command-line :-}
Anyway, all fixed now - a completely unnecessary/weenie hole...
So could all users of Scan4Virus upgrade ASAP to 0.16. Get it from:
http://www.geocities.com/jhaar/scan4virus/
Also there's now a mailing-list to discuss this - subscribe via Email to:
[EMAIL PROTECTED]
BLURB
Scan4Virus is a qmail-based antivirus perl wrapper which works in
conjunction with Unix-based virus scanners such as McAfee's, Trend's and
Sophos. It will scan all Email arriving via SMTP for viruses and will
quarantine those containing viruses. Use on Internet gateways to protect the
Internet from your users ;-)
--
Cheers
Jason Haar
Unix/Network Specialist, Trimble NZ
Phone: +64 3 3391 377 Fax: +64 3 3391 417
Hi,
I'd like that qmail check if incoming mail has a valid sender
domain : there are a lot of patches available on the qmail
webpage : which one would you recommend to me?
Are there some unwanted effects to reject mails using this
kind of method ? thanks for your hints & a nice week to you!
Olivier
Olivier M. wrote:
>
> Hi,
>
> I'd like that qmail check if incoming mail has a valid sender
> domain : there are a lot of patches available on the qmail
> webpage : which one would you recommend to me?
You could use qmail-smtpd from the qmail-ldap patch. It checks for
an A or MX record of the envelope senders domain part. It also has
very nice logging and incorprates some more useful patches, eg.
Tarpitting and others. Heavy tested and stable.
> Are there some unwanted effects to reject mails using this
> kind of method ? thanks for your hints & a nice week to you!
None I know of.
--
Andre
> Olivier M. wrote:
> > Are there some unwanted effects to reject mails using this
> > kind of method ? thanks for your hints & a nice week to you!
Yes. If you are unable to resolve the domain name (your resolver is down,
the domains DNS is unavailable and you don't have the info cached, etc)
you will reject valid mail.
Thus, domain doesn't exist -> 5xx permanent error
domain name can't be resolved -> 4xx deferral
We see this commonly with mailing lists and crappy setups at the receiving
end (no DNS on SMTPD host and DNS resolution time > SMTP RCPT timeout).
They reject the message even though our DNS is correct and available.
--
-Sincerely, Fred
Fred Lindberg, Inf. Dis., WashU, St. Louis, MO, USA
Hello.
I have finished my smtp-auth patch for qmail. First betatesters has got it
2 days ago.
I hope that i didn't screw up anything this weekend (i have modified it a
bit without testing in real world) ,
but hey! - release early, release often!
I've updated mr. Brisby's patch to work with 2 more auth types: CRAM-MD5
and PLAIN. This will allow nearly all clients to user smtp auth with your
server and you can forget any pop-before-smtp solutions!.
I need you guys to give it a try and report me back with any errors or
success'.
If you will encounter error, the
a) tell me what client you are using
b) do "tcpdump -i eth0 -w output" , exchange eth0 with you net interface.
Record the pop session and send it to me.
If you will encounter success then:
a) tell me your client's name and version
b) what auth method it uses (tcpdump will be helpfull if docs aren't).
You can find more info in the distribution files (webpage is kinda empty
right now).
So go, get it, and spam me back with bug reports.
http://www.elysium.pl/members/brush/qmail-smtpd-auth/
Kris
p.s. Russ, can you add this to www.qmail.org ? Both programs..
On Sun, 30 Jan 2000, Greg Andrews wrote:
> Then you can use fetchmail to retrieve the messages via pop
> and feed them to the users. As I recall, Fetchmail can be
> configured to use qmail's Delivered-To: header (with a bit
> trimmed off) to route the mail.
I've been using fetchmail since I moved to the Us to retrieve mail from my
old ISP, which does SMTP delviery to their dial-up customers. Ive
discovered that fetch mail doesn't like qmail's delayed-response to
entried in the badmailfrom. ie, it is confused by the error returns from
RCPT TO caused by the MAIL FROM being invalid.
Has anyone else noticed this?
RjL
How do I use SMTPRoutes?
Please advice
Michael Boman
--
W I Z O F F I C E . C O M P T E L T D - Your Online Wizard
16 Tannery Lane, Crystal Time Building, #06-00, Singapore 347778
Voice : (65) 844 3228 [ext 118] Fax : (65) 842 7228
Pager : (65) 92 93 29 49 ICQ : 5566009
eMail : [EMAIL PROTECTED] URL : http://www.wizoffice.com
On Mon, Jan 31, 2000 at 02:40:51PM +0800, Michael Boman wrote:
man qmail-remote
> How do I use SMTPRoutes?
>
> Please advice
> Michael Boman
--
See complete headers for more info
I've setup qmail to provide pop3 serves.
I can access emails of all accounts except root..
can any body tell me why?
Quoting Liu Zehua ([EMAIL PROTECTED]):
> I've setup qmail to provide pop3 serves.
> I can access emails of all accounts except root..
> can any body tell me why?
Perhaps your checkpassword denies root logins? You didn't mention
anything about your setup.
In any case, it's not a good idea, perhaps even dumb, to login as root
via pop3. Your password is sent in the clear. You don't want any
root passwords sent anywhere unencrypted!
Aaron
Hi,
I was wondering if there is an anti-virus update or package for qmail to check
incoming mail for virusses.
Regards,
Erwin
HI ALL,
Is there some documentatoin about using popbull around - if so - please
point me?
Many Thanks
--Tonino
Is it possible to 'share' the queue with the QMQP protocoll? I want to
store all queued mails in my SAN, and as and when the 'send-servers' are
ready to work they get a nice feed of queued email to send from the SAN.
Is is possible?
How do I do it?
Documentation for this? Have read the QMQP explanation...
Please advice
Michael Boman
--
W I Z O F F I C E . C O M P T E L T D - Your Online Wizard
16 Tannery Lane, Crystal Time Building, #06-00, Singapore 347778
Voice : (65) 844 3228 [ext 118] Fax : (65) 842 7228
Pager : (65) 92 93 29 49 ICQ : 5566009
eMail : [EMAIL PROTECTED] URL : http://www.wizoffice.com
