Re: [Courier-imap] Courier IMAP and Perl Mail::IMAPClient with Proxyauth

2007-01-19 Thread Stefan Hornburg 
Sam Varshavchik wrote:
> Stephen Meatheringham writes:
> 
>> All
>>   I am investigating the possibility of using Perl Mail::IMAPClient  
>> to transfer mail from a Sun JES mail system to the Courier mail system.
>>
>>   I have successfully used this method to connect via IMAP to a Sun 
>> JES server and to a Microsoft Exchange server, and using PROXYAUTH 
>> transfer mail from the Sun system to Exchange.
> 
> 
> There's no such thing as "PROXYAUTH" in IMAP.  You are obviously 
> referring to a label, or a method, used by this Perl module to implement 
> something that's called something else, in IMAP.

The Perl module automatically turns unknown method calls into IMAP 
commands with the same name.

Bye
Racke


-- 
LinuXia Systems => http://www.linuxia.de/
Expert Interchange Consulting and System Administration
ICDEVGROUP => http://www.icdevgroup.org/
Interchange Development Team


-
Take Surveys. Earn Cash. Influence the Future of IT
Join SourceForge.net's Techsay panel and you'll get the chance to share your
opinions on IT & business topics through brief surveys - and earn cash
http://www.techsay.com/default.php?page=join.php&p=sourceforge&CID=DEVDEV
___
Courier-imap mailing list
Courier-imap@lists.sourceforge.net
Unsubscribe: https://lists.sourceforge.net/lists/listinfo/courier-imap

Re: [Courier-imap] Courier IMAP and Perl Mail::IMAPClient with Proxyauth

2007-01-19 Thread Sam Varshavchik 

Stefan Hornburg writes:


Sam Varshavchik wrote:

Stephen Meatheringham writes:


All
  I am investigating the possibility of using Perl Mail::IMAPClient  
to transfer mail from a Sun JES mail system to the Courier mail system.


  I have successfully used this method to connect via IMAP to a Sun 
JES server and to a Microsoft Exchange server, and using PROXYAUTH 
transfer mail from the Sun system to Exchange.



There's no such thing as "PROXYAUTH" in IMAP.  You are obviously 
referring to a label, or a method, used by this Perl module to implement 
something that's called something else, in IMAP.


The Perl module automatically turns unknown method calls into IMAP 
commands with the same name.


In which case this is a server-specific, non-standard IMAP command.




pgpIskquydZqo.pgp
Description: PGP signature
-
Take Surveys. Earn Cash. Influence the Future of IT
Join SourceForge.net's Techsay panel and you'll get the chance to share your
opinions on IT & business topics through brief surveys - and earn cash
http://www.techsay.com/default.php?page=join.php&p=sourceforge&CID=DEVDEV___
Courier-imap mailing list
Courier-imap@lists.sourceforge.net
Unsubscribe: https://lists.sourceforge.net/lists/listinfo/courier-imap

Re: [Courier-imap] poxtfix, courier chroot

2007-01-19 Thread Sam Varshavchik 

krystian writes:


Hi!
I want install Postfix/Imap courier in chroot.
Should I install courier inside chroot or from outsite chroot like postfix?
I understand that as well I should install in chroot authlib for courier.
Maybe somebody can give me some links?


You're on your own.  In as many years as I can remember, nobody cared about 
running anything, courier-imap, or courier-authlib, in chroot.  As such, I 
do not recall any links or HOWTOs of any kind, anywhere.





pgpFWJRdA04EM.pgp
Description: PGP signature
-
Take Surveys. Earn Cash. Influence the Future of IT
Join SourceForge.net's Techsay panel and you'll get the chance to share your
opinions on IT & business topics through brief surveys - and earn cash
http://www.techsay.com/default.php?page=join.php&p=sourceforge&CID=DEVDEV___
Courier-imap mailing list
Courier-imap@lists.sourceforge.net
Unsubscribe: https://lists.sourceforge.net/lists/listinfo/courier-imap

[Courier-imap] [courier-imap] Make Maildir and home with Courier

2007-01-19 Thread Luiz Carlos Tomaz 

Hi,


Scuses my very bad english...


Somebody know how i make user´s HOME and Maildir at the moment of consult
pop or imap with Courier?

I got tried the authmkhome at http://www.commedia.it/ccontavalli/ but not
work well for me.

Somebody know if the Courier has quota support?


Thanks.


--
--
Luiz Carlos Tomaz  <[EMAIL PROTECTED]>
***
  . ' ' `.Debian...: 
 :  :  '   :  Debian BR..: 
 `. `' `  Seja livre, Use Linux
 `-
-
Take Surveys. Earn Cash. Influence the Future of IT
Join SourceForge.net's Techsay panel and you'll get the chance to share your
opinions on IT & business topics through brief surveys - and earn cash
http://www.techsay.com/default.php?page=join.php&p=sourceforge&CID=DEVDEV___
Courier-imap mailing list
Courier-imap@lists.sourceforge.net
Unsubscribe: https://lists.sourceforge.net/lists/listinfo/courier-imap

Re: [Courier-imap] Courier IMAP and Perl Mail::IMAPClient with Proxyauth

2007-01-19 Thread Brian Candler 
On Fri, Jan 19, 2007 at 11:13:27AM +1100, Stephen Meatheringham wrote:
> > There's no such thing as "PROXYAUTH" in IMAP.  You are obviously referring
> > to a label, or a method, used by this Perl module to implement something
> > that's called something else, in IMAP.
> 
> Yes, as shown in the example code I supplied.
> In fact, it's not even properly documented in the Perl MAIL::IMAPClient 
> module.
> 
> > I think I know what you're referring to, and Courier does not implement
> > this optional IMAP function.
> 
> Thanks.  Yes, Courier is not one of the mail servers that is listed as 
> working 
> with it, but then neither was Exchange.  Oh well, the users will just have to 
> save what mail they wish to keep manually, before they are moved over.

Or, if you have each user's password in plaintext, you can login as each
user individually.

Or, you can write a temporary custom auth module with authpipe, which allows
all users to login with the same hard-coded password, and then remove it
after the migration is done.

PROXYAUTH appears to be one vendor's private extension:
http://www.mail-archive.com/squirrelmail-users@lists.sourceforge.net/msg17652.html

Probably the 'right' way to do this is with SASL which has separate
authentication and authorization identities. For AUTH PLAIN, it just has to
split the base64 data into

 \0  \0 

A simple auth module would say: if  = "root" and
 = "xyzzy", then return the account information for 

See RFC 2595 for details.

However this is probably tricky to implement in courier-imap, since the raw
SASL data is not made available to the auth module. That is,

AUTH PLAIN XXX\0FOO\0BAR

is converted into login foo\nbar\n by the time it reaches the auth module.

Another option to consider is to use the 'loginexec' functionality, a script
which is run the first time the user logins in to their maildir on the new
server. Whilst the plaintext password currently isn't passed to the
loginexec script, it would be fairly easy to make it do so. This would allow
it to copy across IMAP contents even if you only have encrypted passwords in
your database.

Regards,

Brian.

-
Take Surveys. Earn Cash. Influence the Future of IT
Join SourceForge.net's Techsay panel and you'll get the chance to share your
opinions on IT & business topics through brief surveys - and earn cash
http://www.techsay.com/default.php?page=join.php&p=sourceforge&CID=DEVDEV
___
Courier-imap mailing list
Courier-imap@lists.sourceforge.net
Unsubscribe: https://lists.sourceforge.net/lists/listinfo/courier-imap

Re: [Courier-imap] poxtfix, courier chroot

2007-01-19 Thread Brian Candler 
On Fri, Jan 19, 2007 at 07:03:01AM -0500, Sam Varshavchik wrote:
> In as many years as I can remember, nobody cared 
> about running anything, courier-imap, or courier-authlib, in chroot.

For Linux maybe; but OpenBSD runs every daemon that it can in a chroot
environment.

Even on Linux systems, I often see 'named' running in a chroot. That's
probably a sensible idea; ISC BIND is an extremely big and complex beast.

OTOH, if you said that running as a non-root user is more important, I'd
agree. Besides, to run a big package in a chroot environment, you'll need so
many libraries and other bits that if anyone breaks in they'll have a pretty
functional system anyway.

Regards,

Brian.

-
Take Surveys. Earn Cash. Influence the Future of IT
Join SourceForge.net's Techsay panel and you'll get the chance to share your
opinions on IT & business topics through brief surveys - and earn cash
http://www.techsay.com/default.php?page=join.php&p=sourceforge&CID=DEVDEV
___
Courier-imap mailing list
Courier-imap@lists.sourceforge.net
Unsubscribe: https://lists.sourceforge.net/lists/listinfo/courier-imap

Re: [Courier-imap] [courier-imap] Make Maildir and home with Courier

2007-01-19 Thread Brian Candler 
On Fri, Jan 19, 2007 at 09:29:59AM -0300, Luiz Carlos Tomaz wrote:
>Somebody know how i make user´s HOME and Maildir at the moment of
>consult pop or imap with Courier?

No, this is not supported. The official answer is that you should create
each user's homedir/maildir at the same time as you create their entry in
the authentication database; that is, write one script which does both
things.

This means that when you *remove* a user, you also have the opportunity to
tidy up their homedir/maildir.

If you can't do it this way, then try sending a welcome E-mail to the user
to create their maildir.

>Somebody know if the Courier has quota support?

Yes it does (Maildir++ quotas)

http://www.courier-mta.org/imap/README.maildirquota.html

Brian.

-
Take Surveys. Earn Cash. Influence the Future of IT
Join SourceForge.net's Techsay panel and you'll get the chance to share your
opinions on IT & business topics through brief surveys - and earn cash
http://www.techsay.com/default.php?page=join.php&p=sourceforge&CID=DEVDEV
___
Courier-imap mailing list
Courier-imap@lists.sourceforge.net
Unsubscribe: https://lists.sourceforge.net/lists/listinfo/courier-imap

Re: [Courier-imap] poxtfix, courier chroot

2007-01-19 Thread krystian 
It strange what you say, because a lot services under linux, can and 
runs under chroot ex. DNS,HTTP,FTP,SSH(?),Mail(Postfix),Databases(MySql).
I know that BSD has a bit better security, but for now I' m not going to 
install BSD.
And as for linux even a bit more security like chroot services, can 
increase security. I understand that chroot isn't perfect but if you add 
e.g. GRsecurity patch , it has a big advantage over non chroot environment.
It doesn't cost me a lot (at least I hope),to install in chroot, so why 
I shouldn't do that.

Regards,
Krystian

Brian Candler wrote:
> On Fri, Jan 19, 2007 at 07:03:01AM -0500, Sam Varshavchik wrote:
>   
>> In as many years as I can remember, nobody cared 
>> about running anything, courier-imap, or courier-authlib, in chroot.
>> 
>
> For Linux maybe; but OpenBSD runs every daemon that it can in a chroot
> environment.
>
> Even on Linux systems, I often see 'named' running in a chroot. That's
> probably a sensible idea; ISC BIND is an extremely big and complex beast.
>
> OTOH, if you said that running as a non-root user is more important, I'd
> agree. Besides, to run a big package in a chroot environment, you'll need so
> many libraries and other bits that if anyone breaks in they'll have a pretty
> functional system anyway.
>
> Regards,
>
> Brian.
>
> -
> Take Surveys. Earn Cash. Influence the Future of IT
> Join SourceForge.net's Techsay panel and you'll get the chance to share your
> opinions on IT & business topics through brief surveys - and earn cash
> http://www.techsay.com/default.php?page=join.php&p=sourceforge&CID=DEVDEV
> ___
> Courier-imap mailing list
> Courier-imap@lists.sourceforge.net
> Unsubscribe: https://lists.sourceforge.net/lists/listinfo/courier-imap
>   


-
Take Surveys. Earn Cash. Influence the Future of IT
Join SourceForge.net's Techsay panel and you'll get the chance to share your
opinions on IT & business topics through brief surveys - and earn cash
http://www.techsay.com/default.php?page=join.php&p=sourceforge&CID=DEVDEV
___
Courier-imap mailing list
Courier-imap@lists.sourceforge.net
Unsubscribe: https://lists.sourceforge.net/lists/listinfo/courier-imap

Re: [Courier-imap] poxtfix, courier chroot

2007-01-19 Thread Brian Candler 
On Fri, Jan 19, 2007 at 11:19:44PM +0800, krystian wrote:
> It strange what you say, because a lot services under linux, can and 
> runs under chroot ex. DNS,HTTP,FTP,SSH(?),Mail(Postfix),Databases(MySql).

Depends on your Linux distribution. (I'd say that ssh is very unlikely to
run chroot'd by default, as it rather defeats the object of having it)

Anyway, we're in agreement here. MrSam said that nobody cares about running
daemons chroot'd, and I was just pointing out that people do.

> I know that BSD has a bit better security, but for now I' m not going to 
> install BSD.

Both are secure if properly installed - most weaknesses come from the
applications, not the kernel.

But again, this was just to make the point that there are Unix users and
systems which *do* care about chroot'ing. Linux is not the only fruit.

> And as for linux even a bit more security like chroot services, can 
> increase security. I understand that chroot isn't perfect but if you add 
> e.g. GRsecurity patch , it has a big advantage over non chroot environment.
> It doesn't cost me a lot (at least I hope),to install in chroot, so why 
> I shouldn't do that.

I'm not disagreeing here either.

Incidentally, FreeBSD's "jail" is better; it's chroot plus additional
restrictions (e.g. can only bind to a single IP address; cannot tweak
sysctls).

Regards,

Brian.

-
Take Surveys. Earn Cash. Influence the Future of IT
Join SourceForge.net's Techsay panel and you'll get the chance to share your
opinions on IT & business topics through brief surveys - and earn cash
http://www.techsay.com/default.php?page=join.php&p=sourceforge&CID=DEVDEV
___
Courier-imap mailing list
Courier-imap@lists.sourceforge.net
Unsubscribe: https://lists.sourceforge.net/lists/listinfo/courier-imap

Re: [Courier-imap] poxtfix, courier chroot

2007-01-19 Thread Eric Frazier 

>
>I'm not disagreeing here either.
>
>Incidentally, FreeBSD's "jail" is better; it's chroot plus additional
>restrictions (e.g. can only bind to a single IP address; cannot tweak
>sysctls).

At least from what I have looked at with Solaris zones, it goes way beyond 
this chroot/jail stuff which always seems pretty admin heavy for the 
limited security advantage it offers. I haven't yet played with any other 
virt tech like on Linux, but it was clear as soon as I saw what you could 
do with zones, that chrooting is going to be obsolete pretty soon if not 
already. You have total control of system resources and a real "jail" that 
as far as I know hasn't been traversed. Sorry, I know this is a bit of a 
Solaris ad, but it is really exciting to me, esp that it is built in and so 
easy to work with.


Thanks,

Eric


>Regards,
>
>Brian.
>
>-
>Take Surveys. Earn Cash. Influence the Future of IT
>Join SourceForge.net's Techsay panel and you'll get the chance to share your
>opinions on IT & business topics through brief surveys - and earn cash
>http://www.techsay.com/default.php?page=join.php&p=sourceforge&CID=DEVDEV
>___
>Courier-imap mailing list
>Courier-imap@lists.sourceforge.net
>Unsubscribe: https://lists.sourceforge.net/lists/listinfo/courier-imap


-
Take Surveys. Earn Cash. Influence the Future of IT
Join SourceForge.net's Techsay panel and you'll get the chance to share your
opinions on IT & business topics through brief surveys - and earn cash
http://www.techsay.com/default.php?page=join.php&p=sourceforge&CID=DEVDEV
___
Courier-imap mailing list
Courier-imap@lists.sourceforge.net
Unsubscribe: https://lists.sourceforge.net/lists/listinfo/courier-imap