Re: POP3 and SMTP server for an ISP
On Sat, 17 Feb 2001, [iso-8859-2] Litzler Mihály wrote: > I'd create cronscripts for MySQL. There's only a little problem, I can read > on the site virtual domain users should use "user:domain" user for checking > mail via pop3. Right now my users have to use only a pop3 username without > any domain for checking mail, but virtual domain are fully supported (there > are many users, so I can't tell them guys use "user:domain"...). I also have an IP-based solution: one realm (passwd file, mailbox directory) per IP. If you don't have multiple users with the same name (i.e. [EMAIL PROTECTED] and [EMAIL PROTECTED]), then you can just have these users continue to use just their username and it will fall back to the standard /etc/passwd (or PAM) authentication. But if you dod have multiple users with the same name then they must be separated somehow (i.e. the IP-based solution or adding domain name to user name in POP3 client). Jeremy C. Reed http://bsd.reedmedia.net/ -- BSD news and resources http://www.isp-faq.com/-- find answers to your questions
Re: POP3 and SMTP server for an ISP
On Sat, 17 Feb 2001, [iso-8859-2] Litzler Mihály wrote: > I'd create cronscripts for MySQL. There's only a little problem, I can read > on the site virtual domain users should use "user:domain" user for checking > mail via pop3. Right now my users have to use only a pop3 username without > any domain for checking mail, but virtual domain are fully supported (there > are many users, so I can't tell them guys use "user:domain"...). I also have an IP-based solution: one realm (passwd file, mailbox directory) per IP. If you don't have multiple users with the same name (i.e. jcr@foo and jcr@bar), then you can just have these users continue to use just their username and it will fall back to the standard /etc/passwd (or PAM) authentication. But if you dod have multiple users with the same name then they must be separated somehow (i.e. the IP-based solution or adding domain name to user name in POP3 client). Jeremy C. Reed http://bsd.reedmedia.net/ -- BSD news and resources http://www.isp-faq.com/-- find answers to your questions -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
sendmail virtual pop
Hi, I installed sendmail on debian, with using linuxconf to set everything up for virtual pop account, I am able to send mail to my server and the message goes into the correct spool in /var/spool/vmail/ DOMAIN/ USER/. This all works fine, but I am not able to log into my system with the username/password that I specified in linuxconf. This is because they are not regular users. All the information is in the /etc/vmail/shadow.DOMAIN , /etc/vmail/passwd.DOMAIN, and /etc/vmail/aliases.DOMAIN. Where would I put this information, so when I login for a certain domain that it pulls up the correct password file and shadow file, and if it isn't one in the /etc/vmail directory it get it from the system passwd and shadow. Any ideas? Thanks Matt
sendmail virtual pop
Hi, I installed sendmail on debian, with using linuxconf to set everything up for virtual pop account, I am able to send mail to my server and the message goes into the correct spool in /var/spool/vmail/ DOMAIN/ USER/. This all works fine, but I am not able to log into my system with the username/password that I specified in linuxconf. This is because they are not regular users. All the information is in the /etc/vmail/shadow.DOMAIN , /etc/vmail/passwd.DOMAIN, and /etc/vmail/aliases.DOMAIN. Where would I put this information, so when I login for a certain domain that it pulls up the correct password file and shadow file, and if it isn't one in the /etc/vmail directory it get it from the system passwd and shadow. Any ideas? Thanks Matt -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
RE: POP3 and SMTP server for an ISP
sorry... i am quite new to debian. I am looking for a mailsystem that can forward incoming mails via ruleset to another host (on sendmail i user virtusertables). How can this be done with exim. you are talking quite a lot about gnu pop3d... what is the deb package name ?? thanks grischa -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Sent: Saturday, February 17, 2001 6:13 PM To: Jeremy C. Reed Cc: Litzler Mih?ly; debian-isp@lists.debian.org Subject: Re: POP3 and SMTP server for an ISP On Sat, Feb 17, 2001 at 08:42:04AM -0800, Jeremy C. Reed wrote: > On Fri, 16 Feb 2001, [iso-8859-2] Litzler Mihály wrote: > > > Okey, what do you think about the security of exim? > > I couldn't find any Exim advisories or incident or Vulnerability notes at > CERT. There are none. > I found a July 1997 BugTraq posting for a very old version of Exim (posted > by Qmail's author). Go figure. :) > You can't really easily search the SecurityFocus website for Exim -- > because the headers are indexed AND many emails were sent by Exim :) > > This subject of "security of exim" has been discussed on the exim-users > mailing lists various times and it always reports that there has been very > few security issues, no known exploits and a bunch of testimonials for > using Exim. Yup. I've been using Exim since way before it was part of Debian. I've *never* had a problem. > I use exim because: 1) simple, easy-to-understand syntax; 2) extremely > detailed documentation, FAQ and examples; 3) friendly mailing list; 4) > friendly author/developer; 5) many testimonials; 6) no known security > issues; 7) numerous capabilities, such as anti-relaying features, > filtering, mail routing control, etc.; 8) it was default with Debian :) > > I have read several testimonials of Exim like: "we use an old SparcStation > 20 to ship around 60,000 emails a day and according to the exim stats 98% > of those are shipped in under a minute." And "have used exim to cope with > the mail for freeserve (3 million users) and we never had any problems > with it." And "processed several hundred thousand messages a day across > 7000+ virtual domains." Well, another testimony is that I use Exim on the SMTP gateway machine for bnl.gov, and it uses an extensive filter to look for 'nasties', does the black-list blocking, along with our own long list of unsavory sites, subjects and content filtering. Nominal traffic is about 1.5-2.0 GB/day, each way. All mail for the site goes through this box. It's handled up to about 20GB in a single day, and the load on the box never went above .10. This is a PIII-500 with 512MB RAM. *Way* overkill for what it's handling. Someday in the near future (6-10 months) we'll be upgrading the WAN connection from OC-3 to OC-12. It may be a little more loaded at that point, but I doubt it. Tim -- ><<< << >> Tim Sailer (at home) >< Coastal Internet, Inc. << >> Network and Systems Operations >< PO Box 671 << >> http://www.buoy.com >< Ridge, NY 11961 << >> [EMAIL PROTECTED]/[EMAIL PROTECTED] >< (631) 924-3728 << ><<< << -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: POP3 and SMTP server for an ISP
Well, I'm absolutely enchanted and you have persuaded me. :)) As I said I use Exim right now and I know that I don't change. However I'm also interested in your opinion about a POP3d. There is a patch for Exim+Qpopper+MySQL. It's sounds great to manage everything from MySQL, because I could easily integrate it to my billing system, but I think It would slow down the users recieving and the delivery process. What's more I checked out http://www.reedmedia.net/projects/virtualmail/#server and it keyed me up and I'd create cronscripts for MySQL. There's only a little problem, I can read on the site virtual domain users should use "user:domain" user for checking mail via pop3. Right now my users have to use only a pop3 username without any domain for checking mail, but virtual domain are fully supported (there are many users, so I can't tell them guys use "user:domain"...). Do you have any idea how I could cope with this if I'd use recommended gnu-pop3d+patch? Thanks, Mihaly Litzler
Masquerading and users...
Hi there... Are there applications which would generate a report who, and how much time spends on the masqueraded internet connection? The bandwidth utilisation is not the highest priority. This is simply to check who is spending to much time browsing. Best regards "Jersey"
Re: POP3 and SMTP server for an ISP
On Sat, Feb 17, 2001 at 08:42:04AM -0800, Jeremy C. Reed wrote: > On Fri, 16 Feb 2001, [iso-8859-2] Litzler Mihály wrote: > > > Okey, what do you think about the security of exim? > > I couldn't find any Exim advisories or incident or Vulnerability notes at > CERT. There are none. > I found a July 1997 BugTraq posting for a very old version of Exim (posted > by Qmail's author). Go figure. :) > You can't really easily search the SecurityFocus website for Exim -- > because the headers are indexed AND many emails were sent by Exim :) > > This subject of "security of exim" has been discussed on the exim-users > mailing lists various times and it always reports that there has been very > few security issues, no known exploits and a bunch of testimonials for > using Exim. Yup. I've been using Exim since way before it was part of Debian. I've *never* had a problem. > I use exim because: 1) simple, easy-to-understand syntax; 2) extremely > detailed documentation, FAQ and examples; 3) friendly mailing list; 4) > friendly author/developer; 5) many testimonials; 6) no known security > issues; 7) numerous capabilities, such as anti-relaying features, > filtering, mail routing control, etc.; 8) it was default with Debian :) > > I have read several testimonials of Exim like: "we use an old SparcStation > 20 to ship around 60,000 emails a day and according to the exim stats 98% > of those are shipped in under a minute." And "have used exim to cope with > the mail for freeserve (3 million users) and we never had any problems > with it." And "processed several hundred thousand messages a day across > 7000+ virtual domains." Well, another testimony is that I use Exim on the SMTP gateway machine for bnl.gov, and it uses an extensive filter to look for 'nasties', does the black-list blocking, along with our own long list of unsavory sites, subjects and content filtering. Nominal traffic is about 1.5-2.0 GB/day, each way. All mail for the site goes through this box. It's handled up to about 20GB in a single day, and the load on the box never went above .10. This is a PIII-500 with 512MB RAM. *Way* overkill for what it's handling. Someday in the near future (6-10 months) we'll be upgrading the WAN connection from OC-3 to OC-12. It may be a little more loaded at that point, but I doubt it. Tim -- >< >> Tim Sailer (at home) >< Coastal Internet, Inc. << >> Network and Systems Operations >< PO Box 671 << >> http://www.buoy.com >< Ridge, NY 11961 << >> [EMAIL PROTECTED]/[EMAIL PROTECTED] >< (631) 924-3728 << ><
Re: POP3 and SMTP server for an ISP
On Fri, 16 Feb 2001, [iso-8859-2] Litzler Mihály wrote: > Okey, what do you think about the security of exim? I couldn't find any Exim advisories or incident or Vulnerability notes at CERT. I found a July 1997 BugTraq posting for a very old version of Exim (posted by Qmail's author). You can't really easily search the SecurityFocus website for Exim -- because the headers are indexed AND many emails were sent by Exim :) This subject of "security of exim" has been discussed on the exim-users mailing lists various times and it always reports that there has been very few security issues, no known exploits and a bunch of testimonials for using Exim. I use exim because: 1) simple, easy-to-understand syntax; 2) extremely detailed documentation, FAQ and examples; 3) friendly mailing list; 4) friendly author/developer; 5) many testimonials; 6) no known security issues; 7) numerous capabilities, such as anti-relaying features, filtering, mail routing control, etc.; 8) it was default with Debian :) I have read several testimonials of Exim like: "we use an old SparcStation 20 to ship around 60,000 emails a day and according to the exim stats 98% of those are shipped in under a minute." And "have used exim to cope with the mail for freeserve (3 million users) and we never had any problems with it." And "processed several hundred thousand messages a day across 7000+ virtual domains." Jeremy C. Reed http://www.reedmedia.net/ http://bsd.reedmedia.net/ -- BSD news and resources http://www.isp-faq.com/-- find answers to your questions
RE: POP3 and SMTP server for an ISP
sorry... i am quite new to debian. I am looking for a mailsystem that can forward incoming mails via ruleset to another host (on sendmail i user virtusertables). How can this be done with exim. you are talking quite a lot about gnu pop3d... what is the deb package name ?? thanks grischa -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] Sent: Saturday, February 17, 2001 6:13 PM To: Jeremy C. Reed Cc: Litzler Mih?ly; [EMAIL PROTECTED] Subject: Re: POP3 and SMTP server for an ISP On Sat, Feb 17, 2001 at 08:42:04AM -0800, Jeremy C. Reed wrote: > On Fri, 16 Feb 2001, [iso-8859-2] Litzler Mihály wrote: > > > Okey, what do you think about the security of exim? > > I couldn't find any Exim advisories or incident or Vulnerability notes at > CERT. There are none. > I found a July 1997 BugTraq posting for a very old version of Exim (posted > by Qmail's author). Go figure. :) > You can't really easily search the SecurityFocus website for Exim -- > because the headers are indexed AND many emails were sent by Exim :) > > This subject of "security of exim" has been discussed on the exim-users > mailing lists various times and it always reports that there has been very > few security issues, no known exploits and a bunch of testimonials for > using Exim. Yup. I've been using Exim since way before it was part of Debian. I've *never* had a problem. > I use exim because: 1) simple, easy-to-understand syntax; 2) extremely > detailed documentation, FAQ and examples; 3) friendly mailing list; 4) > friendly author/developer; 5) many testimonials; 6) no known security > issues; 7) numerous capabilities, such as anti-relaying features, > filtering, mail routing control, etc.; 8) it was default with Debian :) > > I have read several testimonials of Exim like: "we use an old SparcStation > 20 to ship around 60,000 emails a day and according to the exim stats 98% > of those are shipped in under a minute." And "have used exim to cope with > the mail for freeserve (3 million users) and we never had any problems > with it." And "processed several hundred thousand messages a day across > 7000+ virtual domains." Well, another testimony is that I use Exim on the SMTP gateway machine for bnl.gov, and it uses an extensive filter to look for 'nasties', does the black-list blocking, along with our own long list of unsavory sites, subjects and content filtering. Nominal traffic is about 1.5-2.0 GB/day, each way. All mail for the site goes through this box. It's handled up to about 20GB in a single day, and the load on the box never went above .10. This is a PIII-500 with 512MB RAM. *Way* overkill for what it's handling. Someday in the near future (6-10 months) we'll be upgrading the WAN connection from OC-3 to OC-12. It may be a little more loaded at that point, but I doubt it. Tim -- ><<< << >> Tim Sailer (at home) >< Coastal Internet, Inc. << >> Network and Systems Operations >< PO Box 671 << >> http://www.buoy.com >< Ridge, NY 11961 << >> [EMAIL PROTECTED][EMAIL PROTECTED] >< (631) 924-3728 << ><<< << -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED] -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: POP3 and SMTP server for an ISP
Well, I'm absolutely enchanted and you have persuaded me. :)) As I said I use Exim right now and I know that I don't change. However I'm also interested in your opinion about a POP3d. There is a patch for Exim+Qpopper+MySQL. It's sounds great to manage everything from MySQL, because I could easily integrate it to my billing system, but I think It would slow down the users recieving and the delivery process. What's more I checked out http://www.reedmedia.net/projects/virtualmail/#server and it keyed me up and I'd create cronscripts for MySQL. There's only a little problem, I can read on the site virtual domain users should use "user:domain" user for checking mail via pop3. Right now my users have to use only a pop3 username without any domain for checking mail, but virtual domain are fully supported (there are many users, so I can't tell them guys use "user:domain"...). Do you have any idea how I could cope with this if I'd use recommended gnu-pop3d+patch? Thanks, Mihaly Litzler -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Masquerading and users...
Hi there... Are there applications which would generate a report who, and how much time spends on the masqueraded internet connection? The bandwidth utilisation is not the highest priority. This is simply to check who is spending to much time browsing. Best regards "Jersey" -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: POP3 and SMTP server for an ISP
On Sat, Feb 17, 2001 at 08:42:04AM -0800, Jeremy C. Reed wrote: > On Fri, 16 Feb 2001, [iso-8859-2] Litzler Mihály wrote: > > > Okey, what do you think about the security of exim? > > I couldn't find any Exim advisories or incident or Vulnerability notes at > CERT. There are none. > I found a July 1997 BugTraq posting for a very old version of Exim (posted > by Qmail's author). Go figure. :) > You can't really easily search the SecurityFocus website for Exim -- > because the headers are indexed AND many emails were sent by Exim :) > > This subject of "security of exim" has been discussed on the exim-users > mailing lists various times and it always reports that there has been very > few security issues, no known exploits and a bunch of testimonials for > using Exim. Yup. I've been using Exim since way before it was part of Debian. I've *never* had a problem. > I use exim because: 1) simple, easy-to-understand syntax; 2) extremely > detailed documentation, FAQ and examples; 3) friendly mailing list; 4) > friendly author/developer; 5) many testimonials; 6) no known security > issues; 7) numerous capabilities, such as anti-relaying features, > filtering, mail routing control, etc.; 8) it was default with Debian :) > > I have read several testimonials of Exim like: "we use an old SparcStation > 20 to ship around 60,000 emails a day and according to the exim stats 98% > of those are shipped in under a minute." And "have used exim to cope with > the mail for freeserve (3 million users) and we never had any problems > with it." And "processed several hundred thousand messages a day across > 7000+ virtual domains." Well, another testimony is that I use Exim on the SMTP gateway machine for bnl.gov, and it uses an extensive filter to look for 'nasties', does the black-list blocking, along with our own long list of unsavory sites, subjects and content filtering. Nominal traffic is about 1.5-2.0 GB/day, each way. All mail for the site goes through this box. It's handled up to about 20GB in a single day, and the load on the box never went above .10. This is a PIII-500 with 512MB RAM. *Way* overkill for what it's handling. Someday in the near future (6-10 months) we'll be upgrading the WAN connection from OC-3 to OC-12. It may be a little more loaded at that point, but I doubt it. Tim -- >< >> Tim Sailer (at home) >< Coastal Internet, Inc. << >> Network and Systems Operations >< PO Box 671 << >> http://www.buoy.com >< Ridge, NY 11961 << >> [EMAIL PROTECTED][EMAIL PROTECTED] >< (631) 924-3728 << >< -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: POP3 and SMTP server for an ISP
On Fri, 16 Feb 2001, [iso-8859-2] Litzler Mihály wrote: > Okey, what do you think about the security of exim? I couldn't find any Exim advisories or incident or Vulnerability notes at CERT. I found a July 1997 BugTraq posting for a very old version of Exim (posted by Qmail's author). You can't really easily search the SecurityFocus website for Exim -- because the headers are indexed AND many emails were sent by Exim :) This subject of "security of exim" has been discussed on the exim-users mailing lists various times and it always reports that there has been very few security issues, no known exploits and a bunch of testimonials for using Exim. I use exim because: 1) simple, easy-to-understand syntax; 2) extremely detailed documentation, FAQ and examples; 3) friendly mailing list; 4) friendly author/developer; 5) many testimonials; 6) no known security issues; 7) numerous capabilities, such as anti-relaying features, filtering, mail routing control, etc.; 8) it was default with Debian :) I have read several testimonials of Exim like: "we use an old SparcStation 20 to ship around 60,000 emails a day and according to the exim stats 98% of those are shipped in under a minute." And "have used exim to cope with the mail for freeserve (3 million users) and we never had any problems with it." And "processed several hundred thousand messages a day across 7000+ virtual domains." Jeremy C. Reed http://www.reedmedia.net/ http://bsd.reedmedia.net/ -- BSD news and resources http://www.isp-faq.com/-- find answers to your questions -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: POP3 and SMTP server for an ISP
Hi, >To my knowledge and memory, yes. See >www.reedmedia.net/projects/virtualmail/ Thanks for the link, I've checked out, I think It will be useful. >I add a user each week, remove rarely, so this has not been critical for >me. >I would be happy to see scripts, and contribute. No perl experience, so I >can help in testing, I suppose. Of course I'd write scripts under GPL and they'd create/modify users/aliases from a SQL table. However the main problem is that, there is nobody could convince me of using Exim is a secure thing. What's more some says it is exploitable. Hopefully, it's false. Thanks Mihaly Litzler
Re: POP3 and SMTP server for an ISP
Hi, >To my knowledge and memory, yes. See >www.reedmedia.net/projects/virtualmail/ Thanks for the link, I've checked out, I think It will be useful. >I add a user each week, remove rarely, so this has not been critical for >me. >I would be happy to see scripts, and contribute. No perl experience, so I >can help in testing, I suppose. Of course I'd write scripts under GPL and they'd create/modify users/aliases from a SQL table. However the main problem is that, there is nobody could convince me of using Exim is a secure thing. What's more some says it is exploitable. Hopefully, it's false. Thanks Mihaly Litzler -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: POP3 and SMTP server for an ISP
On Fri, 16 Feb 2001, [iso-8859-1] Litzler Mihály wrote: > >Just to help you evaluate, I am using Jeremy's gnu-pop3d patch since last > >year, and it works very, very well. It was easy to use and setup, 15 > >mins, with exim. > Oh, is it a patch under GPL? Could I download it? To my knowledge and memory, yes. See www.reedmedia.net/projects/virtualmail/ > >I add and remove users manually, since the changes arent much (group > >companies). I handle password requests manually, too. > > I'm afraid that is not the best idea to manage thousands of users by hand > for me. Writing couple of scripts would be a must. I add a user each week, remove rarely, so this has not been critical for me. I would be happy to see scripts, and contribute. No perl experience, so I can help in testing, I suppose. > >Is this POP over SSL/SSH? > By the way, does gnupop3d supports secure pop? No idea. What _IS_ secure POP? -- Sanjeev "ghane" GuptaMob: +65 98551208 dotXtra Pte Ltd Fax: +65 2275776 Singaporeemail: [EMAIL PROTECTED] ~~
Re: POP3 and SMTP server for an ISP
On Fri, 16 Feb 2001, [iso-8859-1] Litzler Mihály wrote: > >Just to help you evaluate, I am using Jeremy's gnu-pop3d patch since last > >year, and it works very, very well. It was easy to use and setup, 15 > >mins, with exim. > Oh, is it a patch under GPL? Could I download it? To my knowledge and memory, yes. See www.reedmedia.net/projects/virtualmail/ > >I add and remove users manually, since the changes arent much (group > >companies). I handle password requests manually, too. > > I'm afraid that is not the best idea to manage thousands of users by hand > for me. Writing couple of scripts would be a must. I add a user each week, remove rarely, so this has not been critical for me. I would be happy to see scripts, and contribute. No perl experience, so I can help in testing, I suppose. > >Is this POP over SSL/SSH? > By the way, does gnupop3d supports secure pop? No idea. What _IS_ secure POP? -- Sanjeev "ghane" GuptaMob: +65 98551208 dotXtra Pte Ltd Fax: +65 2275776 Singaporeemail: [EMAIL PROTECTED] ~~ -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
