Re: IMAP Servers
On 13 Jan 2005, at 00:07, W. Andrew Loe III wrote: I'm sorry, I meant to refer to its implementation of Maildir. Is this the standard format? I had a lot of trouble getting this format to work well with Apple Mail. I'm pretty sure its Mail's issue as thunderbird works perfectly. Eh... I don't think that this is an issue related to Mail.app. It depends on how it is served by the IMAP daemon. But I never experienced any problems when using together Courier-IMAPd, Maildir as the storage backend and Mail.app as the frontend. Regards, Philipp Kern
Re: Suggestions for remote server monitoring
On 5 Jan 2005, at 14:29, John Barton wrote: If you want to monitor resources on a remote system, try cacti. It has great graphing capability using RRD. One of my favorite features is being able to highlight a section of your graph and have it draw a new graph to zoom in on the area of concern. Has anyone got cacti running with Exim mailserver statistics? Regards, Philipp Kern -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: PHP 4.1.2
On 22. Dec 2004, at 23:58 Uhr, Jacob S wrote: You make it sound like the version in Sarge has these security vulnerabilities fixed. Except, it's still 4.3.9 - instead of 4.3.10 which is supposed to fix this problem. 4.3.10 is already in Sarge. (See http://packages.qa.debian.org/php4) Regards, Philipp Kern -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: PHP 4.1.2
On 22. Dec 2004, at 23:12 Uhr, Jason Lim wrote: Little bugfixes and even local exploits... okay... i can understand there is less urgency. But for REMOTELY exploitable vulnerabilities, i think there is a much greater urgency and importance. For serious PHP deployment you would consider an actual version, not the one you could find in stable. I wish we could get an update if they are even _WORKING_ on a PHP update, or if they have just thrown in the towel and said "we're not going to patch this". If thats the case, we'll upgrade, but not otherwise. By the way Debian relies on the work of volunteers. You are free to backport the patches to PHP 4.1.x if you find the time. I see the problems of the developers. Security problems are not properly announced, fixes are messed into other patches. By the way I bet there are a lot more flaws in this plain old version which got fixed on the long way to 4.3. In my opinion it is not worth to backport PHP 4.3 to stable as sarge *should* be released as soon as security team support is available. Regards, Philipp Kern -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: blacklists
On Wed, 2004-12-08 at 23:56 +1100, Russell Coker wrote: > Yahoo server IP address space should not be in a dialup class. If that > happens then notify the person maintaining the dialup-list that you use that > they have an inaccuracy. This is incorrect when you look at the headers. > > Received: from [217.226.195.183] by web60309.mail.yahoo.com via HTTP; Mon, > > 29 Nov 2004 19:12:36 CET Content-Type: text/plain; charset=iso-8859-1 SpamAssassin looks at all the headers. If this is a good choice or not is debatable. The MTA would only judge by the IP that connects to him which was in fact a Yahoo IP. This IP [217.226.195.183] is a valid dialup out of Germany which Yahoo adds as a trace from where the webmail request came. Regards, Philipp Kern -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: blacklists
On Wed, 2004-12-08 at 15:30 +0100, Michelle Konzack wrote: > sbl-xbl.spamhaus.org > opm.blitzed.org > But now I have removed all exept the first two. "spamhaus" > catchs more then 50% of my spams and "abuseat" around 10%. > The rest is done by "Blacklists" and spamassassin. Spamhaus XBL incorporates e.g. Blitzed OPM and others. That's why the composite blocking list catches so much. But with the size the possiblity of false positives increases. Regards, Philipp Kern -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: reverse name resolution
On Tue, 2004-11-23 at 18:02, Djalma Fadel Junior wrote: > my named.conf.local: > zone "0/25.36.247.200.in-addr.arpa" { 25 (if this is a direct delegation -- your value otherwise) > $TTL 3D $ORIGIN 36.247.200.in-addr.arpa You need your nameserver in your resolv.conf or a proper rDNS delegation by your provider. Regards, Philipp Kern -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: [HELP] courier-authdaemon frustration
On Tue, 2004-11-23 at 17:27, Bob Billson wrote: > The customized query maybe the way to go; although it seems to be a bad > hack to solve the underlaying problem, no? I am missing something? I used courier-webadmin to set the MySQL authdaemon as the way to go... Then I have this set of queries: MYSQL_SELECT_CLAUSE SELECT CONCAT(localpart, '@', domain), \ ENCRYPT(password), \ password, \ uid, \ gid, \ '/var/mail/vdomains/$(domain)/$(local_part)', \ '', \ quota, \ fullname, \ options \ FROM users \ WHERE localpart = '$(local_part)' \ AND domain = '$(domain)' MYSQL_ENUMERATE_CLAUSE SELECT CONCAT(localpart, '@', domain), \ uid, \ gid, \ '/var/mail/vdomains/$(domain)/$(local_part)', \ '' \ FROM users \ WHERE localpart = '$(local_part)' \ AND domain = '$(domain)' MYSQL_CHPASS_CLAUSE UPDATE users \ SET password='$(newpass)' \ WHERE localpart='$(local_part)' \ AND domain='$(domain)' Although I don't know of the latter that it really works. You get rid of all the other fields except of MySQL session information. You could replace things like ``uid'' and ``gid'' to the integer value used on your system (I used DEFAULT values in the table instead) like common in SQL. There's also the possibility to use CONCAT('/var/mail/vdomains/', domain, '/', localpart) instead of the hackish way I chose. Regards, Philipp Kern signature.asc Description: This is a digitally signed message part
Re: [HELP] courier-authdaemon frustration
On Mon, 2004-11-22 at 21:44, Mark Lijftogt wrote: > The authmysqlrc for courier is a real pain.. it took me about 10 try's to > get it right. When I started over for the last time, I took the following > in account; It isn't. It *is* commented ok, and the easiest thing to do is to put in a customized MySQL query to suit your needs. Regards, Philipp Kern -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: [ot] Re: Courier traffic accounting
On Sat, 2004-11-20 at 18:03, Henrique de Moraes Holschuh wrote: > Which I suppose is a good reason why we should work towards ASMTP, a 8-bit > clean, mandatory endpoint authenticated SMTP (as in no backscatter, > something using mandatory header signing). There is the possibility of using the current ASMTP (which is available in ESMTP) with SSL client certifcates, thus you would get signed mails. ;o) Regards, Philipp Kern signature.asc Description: This is a digitally signed message part
Re: Courier traffic accounting
Hi there Martin! On Sat, 2004-11-20 at 17:21, martin f krafft wrote: > These are bytes. Be aware that this sort of accounting does not > include the respective protocol, or additional TCP, or IP traffic. Oh yes. I ignored them because in the small test session there was only protocol traffic. > I usually calculate 112% up to 100Mb and then 108% when more than > 100Mb has been transferred. With traffic >1Gb, it becomes > negligible. Exactly. Thank you for this information and also for the other replies. Regards, Philipp Kern signature.asc Description: This is a digitally signed message part
Courier traffic accounting
Dear debian-isp list members, are there any ways of traffic accounting related to Courier POP3d and IMAPd? We need this on a per-domain basis. The accounting for incoming/outgoing mail is easy, as our mailserver of choice -- Exim v4 -- logs the message size. When looking through Courier's logs I didn't notice something similar on the close of the connection. I would appreciate any hints; if it gets written down once by anything, I would write a tool to parse/summarise that stuff. Regards, Philipp Kern signature.asc Description: This is a digitally signed message part