Re: [courier-users] "Unable to submit message" with PHP
Matthias Leopold wrote: > error message in webserver error log is "sendmail: Unable to submit > message". when the php script is called from the command line (by root) > everything is fine. What about when the php script is called from the command line by a non-root user, like apache? > php sendmail_path is "/usr/sbin/sendmail -f [EMAIL PROTECTED]" > sendmail permissions are -r-s--x--x root:vmail > strace from sendmail yields "setgid(501) = -1 EPERM (Operation not > permitted)" > selinux is disabled and system is not an openvz container Who ran the strace? If you trace a SUID binary, it doesn't run with elevated permissions. That means that it's not possible for apache to strace /usr/sbin/sendmail and actually get meaninful results. - This SF.Net email is sponsored by the Moblin Your Move Developer's challenge Build the coolest Linux based applications with Moblin SDK & win great prizes Grand prize is a trip for two to an Open Source event anywhere in the world http://moblin-contest.org/redirect.php?banner_id=100&url=/ ___ courier-users mailing list courier-users@lists.sourceforge.net Unsubscribe: https://lists.sourceforge.net/lists/listinfo/courier-users
Re: [courier-users] couriermlm question
Ricardo Kleemann writes: Hi, I couldn't find in the manpage how to actually determine who the moderator is for a moderated list. It describes how to configure the list as moderated, but how do I designate the moderator? moderator=list owner. Whichever address(es) you put in the -owner .courier file. Or, if using webmlm, whoever knows the list password, can moderate pending messages. Another question, on a moderated list, if the moderator himself posts, the message is automatically accepted and posted, correct? It doesn't actually require the moderator to confirm his own post, correct? No. Although a moderator can certainly set up a mail filter to automatically approve his own posts. pgpEEqSDpDyyH.pgp Description: PGP signature - This SF.Net email is sponsored by the Moblin Your Move Developer's challenge Build the coolest Linux based applications with Moblin SDK & win great prizes Grand prize is a trip for two to an Open Source event anywhere in the world http://moblin-contest.org/redirect.php?banner_id=100&url=/___ courier-users mailing list courier-users@lists.sourceforge.net Unsubscribe: https://lists.sourceforge.net/lists/listinfo/courier-users
[courier-users] couriermlm question
Hi, I couldn't find in the manpage how to actually determine who the moderator is for a moderated list. It describes how to configure the list as moderated, but how do I designate the moderator? Another question, on a moderated list, if the moderator himself posts, the message is automatically accepted and posted, correct? It doesn't actually require the moderator to confirm his own post, correct? Thanks Ricardo- This SF.Net email is sponsored by the Moblin Your Move Developer's challenge Build the coolest Linux based applications with Moblin SDK & win great prizes Grand prize is a trip for two to an Open Source event anywhere in the world http://moblin-contest.org/redirect.php?banner_id=100&url=/___ courier-users mailing list courier-users@lists.sourceforge.net Unsubscribe: https://lists.sourceforge.net/lists/listinfo/courier-users
Re: [courier-users] "Unable to submit message" with PHP
> php sendmail_path is "/usr/sbin/sendmail -f [EMAIL PROTECTED]" > sendmail permissions are -r-s--x--x root:vmail > strace from sendmail yields "setgid(501) = -1 EPERM (Operation not > permitted)" # file /usr/sbin/sendmail Is it a shell wrapper to a different sendmail executable? If yes, linux ignore suid bit for shell scripts. Ciao, Dino. JOB OPPORTUNITY PER GIOVANI LAUREATI Martedi' 4 Novembre presso la sede di Roma in Via Zoe Fontana n. 220, REplat seleziona personale per lo stage dell'Area Commerciale. Per info e adesioni: [EMAIL PROTECTED] - This SF.Net email is sponsored by the Moblin Your Move Developer's challenge Build the coolest Linux based applications with Moblin SDK & win great prizes Grand prize is a trip for two to an Open Source event anywhere in the world http://moblin-contest.org/redirect.php?banner_id=100&url=/ ___ courier-users mailing list courier-users@lists.sourceforge.net Unsubscribe: https://lists.sourceforge.net/lists/listinfo/courier-users
[courier-users] "Unable to submit message" with PHP
hi, i'm trying to solve a problem very similar to the one discussed in this thread: http://www.mail-archive.com/courier-users@lists.sourceforge.net/msg28209.html the webserver is unable to send mail with php _only_ to domains hosted on the same server. sending mail to other servers is not a problem. error message in webserver error log is "sendmail: Unable to submit message". when the php script is called from the command line (by root) everything is fine. conditions are the same as in the mentioned thread: php sendmail_path is "/usr/sbin/sendmail -f [EMAIL PROTECTED]" sendmail permissions are -r-s--x--x root:vmail strace from sendmail yields "setgid(501) = -1 EPERM (Operation not permitted)" selinux is disabled and system is not an openvz container courier is 0.54.2 php is 5.2.5 apache is 2.0.52 since the problem wasn't solved in this thread i would like to know if it has ocurred to other people since then and if there is a possible solution thx matthias - This SF.Net email is sponsored by the Moblin Your Move Developer's challenge Build the coolest Linux based applications with Moblin SDK & win great prizes Grand prize is a trip for two to an Open Source event anywhere in the world http://moblin-contest.org/redirect.php?banner_id=100&url=/ ___ courier-users mailing list courier-users@lists.sourceforge.net Unsubscribe: https://lists.sourceforge.net/lists/listinfo/courier-users
Re: [courier-users] greylisting
Frederik Dannemare wrote: > > I made these short notes when I installed it (a year ago, or so): Users should stick to the installation instructions in the README file. There are just five commands. :) > # Do not greylist certain "good" but bad-behaving servers. > # whitelist_block must be active for this to be honoured. Sadly, that whitelist document is no longer available. > # A few extra manual steps are also required. > # > mkdir -p /var/state/pythonfilter /var/lib/pythonfilter is used by default now, for FHS compliance. - This SF.Net email is sponsored by the Moblin Your Move Developer's challenge Build the coolest Linux based applications with Moblin SDK & win great prizes Grand prize is a trip for two to an Open Source event anywhere in the world http://moblin-contest.org/redirect.php?banner_id=100&url=/ ___ courier-users mailing list courier-users@lists.sourceforge.net Unsubscribe: https://lists.sourceforge.net/lists/listinfo/courier-users
Re: [courier-users] greylisting
On Sunday 26 October 2008 13:23, Tim Lyth wrote: > I'm pretty sure that there's a .deb version of pythonfilter available > somewhere - I run Debian, but I can't remember how I installed > pythonfilter on my server. I made these short notes when I installed it (a year ago, or so): # Download and extract courier-pythonfilter # su - frederik wget http://phantom.dragonsdawn.net/~gordon/courier-pythonfilter/courier-pythonfilter-0.23.tar.gz tar zxf courier-pythonfilter-0.23.tar.gz logout # Run the setup step as root. # This will place files in /usr/lib/python2.4/site-packages/courier # and /usr/lib/python2.4/site-packages/pythonfilter. Also, a config file, # pythonfilter.conf, is placed in /etc, and pythonfilter itself is placed # in /usr/bin. # python setup.py install # Create custom config file. # cp /etc/pythonfilter.conf /etc/pythonfilter.conf.orig cat /etc/courier/smtpaccess/nogreylisting makesmtpaccess # A few extra manual steps are also required. # mkdir -p /var/state/pythonfilter chown daemon:daemon /var/state/pythonfilter ln -s /usr/bin/pythonfilter /usr/lib/courier/filters/ filterctl start pythonfilter Best regards, Frederik Dannemare - This SF.Net email is sponsored by the Moblin Your Move Developer's challenge Build the coolest Linux based applications with Moblin SDK & win great prizes Grand prize is a trip for two to an Open Source event anywhere in the world http://moblin-contest.org/redirect.php?banner_id=100&url=/ ___ courier-users mailing list courier-users@lists.sourceforge.net Unsubscribe: https://lists.sourceforge.net/lists/listinfo/courier-users
Re: [courier-users] webmlm - unsubscribe problems
Bernd Plagge writes: We used an import file to load mailinglist subscribers when we moved from ezmlm to couriermlm. Format: [EMAIL PROTECTED] . [EMAIL PROTECTED] . [EMAIL PROTECTED] . These addresses all cause errors when you try to unsubscribe them by checking them on the webmlm admin screen and pressing 'unsubscibe selected addresses'. Manually subscribed addresses, however, can be unsubscribed. We found that the problem always occurs if there is no subscription information for a given email address. Changing the file above to the following format solves the problem: [EMAIL PROTECTED] any line comment . [EMAIL PROTECTED] add here name, explanation or whatever . [EMAIL PROTECTED] this is a famous subscriber . Please verify! Program correction shouldn't be too difficult. This is helpful. This will be fixed in the next version. pgptJbbgfymLk.pgp Description: PGP signature - This SF.Net email is sponsored by the Moblin Your Move Developer's challenge Build the coolest Linux based applications with Moblin SDK & win great prizes Grand prize is a trip for two to an Open Source event anywhere in the world http://moblin-contest.org/redirect.php?banner_id=100&url=/___ courier-users mailing list courier-users@lists.sourceforge.net Unsubscribe: https://lists.sourceforge.net/lists/listinfo/courier-users
Re: [courier-users] Using encrypted passwords
Thanks Martin,
I used the first two characters as the salt and was able to reproduce
the encryption and get the same cipher text.
This has made my task a lot easier now.
Cheers,
Tim Lyth
Martin Schuster (IFKL IT OS DSM CD) wrote:
Tim Lyth wrote:
[...]
I'm trying to write me own custom email account administration system
for my Courier-MTA.
I have Courier set to use a MySQL backend and have a "crypt" field for
the encrypted password.
The password has been encrypted with the MySQL ENCRYPT() function.
Just a small caveat: If you plan to use some trickier authentication
in the future (i.e. other than plaintext), Courier needs to know the
plaintext password.
This is where things get curly.
The ENCRYPT() function states it can accept a "salt" value, but when I
entered the passwords directly in to the database I did not specify a
salt value - the documentation states that the random number generated
is then used to give a salt.
Somehow, Courier seems to know this salt value as it's able to correctly
encrypt the password entered by the clients and they are able to access
their email. If an incorrect password is supplied then the login
attempt fails.
To shed some light on this:
The salt value (2 characters) that mysql generates are then prepended
to the encrypted password. An example to make this somewhat clearer:
You store 'Tim' as password. Depending on the randomly generated salt,
this may result in e.g. 'H82Mnhm8P79c6'.
Now if you connect to courier, it will look for the encrypted password,
get back 'H82Mnhm8P79c6' from mysql, and will encrypt the password that
you have given using a salt of 'H8'. If this results in 'H82Mnhm8P79c6',
you are authenticated.
Play with this in mysql:
select encrypt('Tim'); -- try multiple times
select encrypt('Tim','H8'); -- or some other salt
[...]
Hope this also answers the rest of your questions :)
regards,
-
This SF.Net email is sponsored by the Moblin Your Move Developer's challenge
Build the coolest Linux based applications with Moblin SDK & win great prizes
Grand prize is a trip for two to an Open Source event anywhere in the world
http://moblin-contest.org/redirect.php?banner_id=100&url=/___
courier-users mailing list
courier-users@lists.sourceforge.net
Unsubscribe: https://lists.sourceforge.net/lists/listinfo/courier-users
Re: [courier-users] Using encrypted passwords
Tim Lyth wrote:
> [...]
> I'm trying to write me own custom email account administration system
> for my Courier-MTA.
>
> I have Courier set to use a MySQL backend and have a "crypt" field for
> the encrypted password.
> The password has been encrypted with the MySQL ENCRYPT() function.
>
Just a small caveat: If you plan to use some trickier authentication
in the future (i.e. other than plaintext), Courier needs to know the
plaintext password.
> This is where things get curly.
>
> The ENCRYPT() function states it can accept a "salt" value, but when I
> entered the passwords directly in to the database I did not specify a
> salt value - the documentation states that the random number generated
> is then used to give a salt.
> Somehow, Courier seems to know this salt value as it's able to correctly
> encrypt the password entered by the clients and they are able to access
> their email. If an incorrect password is supplied then the login
> attempt fails.
>
To shed some light on this:
The salt value (2 characters) that mysql generates are then prepended
to the encrypted password. An example to make this somewhat clearer:
You store 'Tim' as password. Depending on the randomly generated salt,
this may result in e.g. 'H82Mnhm8P79c6'.
Now if you connect to courier, it will look for the encrypted password,
get back 'H82Mnhm8P79c6' from mysql, and will encrypt the password that
you have given using a salt of 'H8'. If this results in 'H82Mnhm8P79c6',
you are authenticated.
Play with this in mysql:
select encrypt('Tim'); -- try multiple times
select encrypt('Tim','H8'); -- or some other salt
> [...]
Hope this also answers the rest of your questions :)
regards,
--
Infineon Technologies IT-Services GmbH [EMAIL PROTECTED]
Lakeside B05, 9020 Klagenfurt, Austria Martin Schuster
FB: LG Klagenfurt, FN 246787y +43 5 1777 3517
-
This SF.Net email is sponsored by the Moblin Your Move Developer's challenge
Build the coolest Linux based applications with Moblin SDK & win great prizes
Grand prize is a trip for two to an Open Source event anywhere in the world
http://moblin-contest.org/redirect.php?banner_id=100&url=/
___
courier-users mailing list
courier-users@lists.sourceforge.net
Unsubscribe: https://lists.sourceforge.net/lists/listinfo/courier-users
