Re: Master Segmentation Fault
Lee Hoffman wrote: > Ive followed the directions to a T, while compiling cyrus sasl (w/ldap > support) and cyrus (2.0.16) (with ssl support) on a debian 2.2r3 distro > box. The compilation and installation report no errors. I follow the > installation directions, and ensure that all the directories exist and > have the correct permissions. When I run master though, I get a > "Segmentation Fault" and imapd isn't started. The error log reads: Welcome to the club. I spent a good deal of a day chasing this, and the culprit is that Debian stable (2.2r3, currently) comes with an old version of DB. I went to great lengths to ensure that cyrus compiled and dynalinked with my own DB 3.1 libraries, and the damn thing still crashed. The problem is that for some unfathomable reasons, nsswitch in Debian uses DB first by default, even though nothing is stored in DB files in normal installations. Library version clash during imap/pop3 service lookup -> crash. Your /etc/nsswitch.conf has a line services: db files Remove the db. If it still doesn't help, the system db libraries are probably still getting in the way, and you could try setting LD_LIBRARY_PATH to point to the correct place prior to running master. --mika
Problem with CYRUS_SERVICE
Hi all. I'have a message error in my syslog when i try to connect to my imapd server in localhost : Could not getenv(CYRUS_SERVICE); existing My Inetd.conf is ok I running a cyrus-imapd-2.0.16 and cyrus-sasl-1.5.24 My authentification is "passwd" I don't Understand, Please Help me !! Ps : sorry for my bad english :)
Re: Problem with CYRUS_SERVICE
Jerome wrote: > > Hi all. > > I'have a message error in my syslog when i try to connect to my imapd > server in localhost : > Could not getenv(CYRUS_SERVICE); existing > > My Inetd.conf is ok This is your problem. Cyrus v2 does not use inetd. Please read the installation instructions. Ken -- Kenneth Murchison Oceana Matrix Ltd. Software Engineer 21 Princeton Place 716-662-8973 x26 Orchard Park, NY 14127 --PGP Public Key--http://www.oceana.com/~ken/ksm.pgp
script to add users to virtual accounts
Anyone out there have any scripts to add virtual accounts? I have Qmail+Cyrus+SASL+PHP on the server. I need an API to allow partners to create users via a HTTP script of some sort. --Joe Joe Stump <[EMAIL PROTECTED]> "How would this sentence be different if pi equaled 3?"
RE: Master Segmentation Fault
Dear Mika,
Thanks a bunch for the advice. I deleted db from /etc/nsswitch.conf and
viola, master stopped segfaulting on launch.
Unfortunately, IMAP still isnt working though. When I run:
/usr/local/bin/imtest -m login foobar
I get the following error:
gethostbyname: No such file or directory
failure: Network initialization
Also, I can telnet to port 143, but when postfix delivers mail to cyrus
(for example to the testuser account), the mail is never delivered and
the following processes are run, and never die (even if the box is
restarted, the same processes reappear):
642 ? S 0:00 pipe -n cyrus -t unix flags=R user=cyrus
argv=/usr/cyrus/bin/deliver -e -m ${extension
643 ? S 0:00 /usr/cyrus/bin/deliver -e -m testuser
When I start master, master shows up under running processes, but imapd
doesn't.
The following appears in the logs:
---
9:27 grass master: unable to change limit of file descriptors available
Oct 21 13:09:27 grass master[1508]: process started
Oct 21 13:09:27 grass master[1509]: about to exec
/usr/local/cyrus/bin/ctl_mboxlist
Oct 21 13:09:27 grass ctl_mboxlist[1509]: running mboxlist recovery
Oct 21 13:09:27 grass ctl_mboxlist[1509]: done running mboxlist recovery
Oct 21 13:09:27 grass service-imap[1518]: executed
Oct 21 13:09:27 grass master[1520]: about to exec
/usr/local/cyrus/bin/imapd
Oct 21 13:09:27 grass service-imap[1520]: executed
Oct 21 13:09:27 grass master[1519]: about to exec
/usr/local/cyrus/bin/pop3d
Oct 21 13:09:27 grass service-pop3[1519]: executed
Oct 21 13:09:27 grass master[1508]: process 1520 exited, signaled to
death by 11
Oct 21 13:09:27 grass service-pop3[1521]: executed
Oct 21 13:09:27 grass master[1521]: about to exec
/usr/local/cyrus/bin/pop3d
Oct 21 13:09:27 grass service-imap[1522]: executed
Oct 21 13:09:27 grass master[1508]: process 1519 exited, signaled to
death by 11
Oct 21 13:09:27 grass master[1508]: process 1518 exited, signaled to
death by 11
Oct 21 13:09:27 grass master[1508]: process 1516 exited, signaled to
death by 11
Oct 21 13:09:27 grass master[1508]: process 1521 exited, signaled to
death by 11
Oct 21 13:09:27 grass service-imap[1523]: executed
Oct 21 13:09:27 grass master[1522]: about to exec
/usr/local/cyrus/bin/imapd
Oct 21 13:09:27 grass master[1508]: process 1522 exited, signaled to
death by 11
Oct 21 13:09:27 grass master[1523]: about to exec
/usr/local/cyrus/bin/imapd
Oct 21 13:09:27 grass master[1508]: process 1512 exited, status 0
Oct 21 13:09:27 grass master[1508]: process 1523 exited, signaled to
death by 11
---
Any idea whats going on? Any help would be much appreciated.
Thanks,
Lee
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED]] On Behalf Of Mika
Iisakkila
Sent: Sunday, October 21, 2001 4:19 AM
To: [EMAIL PROTECTED]
Subject: Re: Master Segmentation Fault
Lee Hoffman wrote:
> Ive followed the directions to a T, while compiling cyrus sasl (w/ldap
> support) and cyrus (2.0.16) (with ssl support) on a debian 2.2r3
distro
> box. The compilation and installation report no errors. I follow the
> installation directions, and ensure that all the directories exist and
> have the correct permissions. When I run master though, I get a
> "Segmentation Fault" and imapd isn't started. The error log reads:
Welcome to the club. I spent a good deal of a day chasing this,
and the culprit is that Debian stable (2.2r3, currently) comes
with an old version of DB. I went to great lengths to ensure that
cyrus compiled and dynalinked with my own DB 3.1 libraries, and
the damn thing still crashed.
The problem is that for some unfathomable reasons, nsswitch in
Debian uses DB first by default, even though nothing is stored in DB
files in normal installations. Library version clash during imap/pop3
service lookup -> crash. Your /etc/nsswitch.conf has a line
services: db files
Remove the db. If it still doesn't help, the system db libraries are
probably still getting in the way, and you could try setting
LD_LIBRARY_PATH to point to the correct place prior to running master.
--mika
Re: CRAM-MD5 SASL auth?
On Sat, 20 Oct 2001, Ken Murchison wrote: > There is now way with SASL v1.5 because sasldb stores an intermediate > value used in CRAM-MD5, not the plaintext password. In SASL v2 sasldb > store only plaintext passwords, so it *might* be possible to use > pwcheck/saslauthd to do non-plaintext mechs. You'll have to check with > Rob Siemborski about this. No, it is not possible to sue CRAM-MD5 (or DIGEST-MD5) with pwcheck/saslauthd, because the mechanism needs to be able to compute the secret which is used from the plaintext. saslauthd and pwcheck both will only verify a password (as in, return 'YES' or 'NO'), they will not return the password itself (or a secret) which is what is necessary to authenticate the user. -Rob -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- Rob Siemborski | Andrew Systems Group * Cyert Hall 235 * 412-CMU-TREK | Cyrus SASL Developer, /usr/contributed Gatekeeper
Re: CRAM-MD5 SASL auth?
Rob Siemborski wrote: > No, it is not possible to sue CRAM-MD5 (or DIGEST-MD5) with > pwcheck/saslauthd, because the mechanism needs to be able to compute the > secret which is used from the plaintext. saslauthd and pwcheck both will > only verify a password (as in, return 'YES' or 'NO'), they will not return > the password itself (or a secret) which is what is necessary to > authenticate the user. > That makes perfect sense, Rob--thanks. How about a pwcheck-style socket hook for challenge-response style protocols, where the shared secret is sent to the socket with the user name, and the daemon is responsible for sending back the password encoded with the secret appropriately? This would be ideal for our site where we store all our user details in a DB, and already run daemons that do exactly this for other protocols that use challenge-response. If you provide the hook in SASL, I'd be happy to add the code to my pwcheck-perl framework so that people can easily use it. PS: Would you like me to put this suggestion in Bugzilla?
Sieve error in :matches clause
One of my users has this script:
if anyof(
header :matches "subject" "*[spam score 10.0/10.0 -pobox]*",
header :matches "subject" "**") {
reject "Message bounced by server content filter";
stop;
}
It is rejecting a lot of messages that do not match either test. When I
changed the first test to "*spam score 10.0*10.0 *pobox*" (i.e. I got rid of
all 'special' characters) it worked fine.
But according to the RFC only '*' and '?' are special. Does Cyrus treat some
other chars specially?
Re: CRAM-MD5 SASL auth?
No, you can not do CRAM-MD5 authentication with pwcheck. CRAM-MD5 authentication works by transmitting a random value, called a nonce, between the client and server instead of sending the actual password. The first step in authentication is to send the nonce to the client, the client then generates a hash with the nonce and the user password. This hash is passed back to the server, where the server also generates a hash using the nonce and the password. If the hash the server and client generated match, they must have used the same password. This system of authentication does not require the password to be transmitted over the network, adding a level of security to the authentication. The problem with pwcheck is that the server never knows what the password is until the client sends it. I'm not even sure that a general facility for handling CRAM-MD5 authentication could be added to pwcheck ( or saslauthd ). The problem is that many backend password stores ( ie mysql, ldap, etc ) store the passwords as hashes that don't give the server enough information to generate the hash needed to compare with the client generated hash. Your root problem is that some of your subscribers are using IMAP clients that are so stupid, they don't bother checking the server CAPABILITY return before starting CRAM-MD5 authentication. This is not terribly surprising. Try and find out what client is causing this problem. From there you can try two approaches: find a way to configure the client so that it behaves and add it to your sites FAQ, or if its use is not too widespread, just put a list of MUAs that your service works with and don't include the offending software. Cheers Chris Jeremy Howard wrote: >Well, I've happily been supporting nothing but plain/login at fastmail.fm >during our 3 years of development and beta testing, but now that we've just >gone live I'm starting to see new mail clients with behaviours I haven't >seen before. > >Some mail clients are trying to use CRAM-MD5, according to our logs. Can >anyone give me a quick overview of what this is, and what I need to do to >support it? I use a custom pwcheck daemon for authentication--am I going to >have to change this in any way, or do I just have to compile something into >SASL? > >TIA, > Jeremy > >
Re: CRAM-MD5 SASL auth?
> I'm not even sure that a general facility for handling CRAM-MD5 > authentication could be added to pwcheck ( or saslauthd ). The problem > is that many backend password stores ( ie mysql, ldap, etc ) store the > passwords as hashes that don't give the server enough information to > generate the hash needed to compare with the client generated hash. > Thanks Chris. See my earlier message to Rob S suggesting a way to get pwcheck and CRAM to interoperate. Your comment about storing passwords as hashes is right on the money. We have had to start storing passwords as plain text in our DB to avoid this problem, since we use challenge-response with a pwcheck-like daemon for an address/contacts synchronization protocol that we've developed in-house. > Your root problem is that some of your subscribers are using IMAP > clients that are so stupid, they don't bother checking the server > CAPABILITY return before starting CRAM-MD5 authentication. This is not > terribly surprising. Try and find out what client is causing this > problem. From there you can try two approaches: find a way to > configure the client so that it behaves and add it to your sites FAQ, or > if its use is not too widespread, just put a list of MUAs that your > service works with and don't include the offending software. We'll look at this too. But I'd rather do whatever we can to make it easy for our users, rather than making them switch tools or negotiate configuration screens, wherever possible. -- Jeremy Howard [EMAIL PROTECTED]
Re: script to add users to virtual accounts
On Sun, 21 Oct 2001, Joe Stump wrote: > Anyone out there have any scripts to add virtual accounts? > > I have Qmail+Cyrus+SASL+PHP on the server. I need an API to allow partners to > create users via a HTTP script of some sort. The IMAP interface to PHP should work. It requires you to compile or have available the c-client library from the UW IMAPD distro but will work fine with cyrus once you've built it. http://php.net/imap/ -- JustThe.net LLC - Steve "Web Dude" Sobol, CTO - [EMAIL PROTECTED] In another world it may be true that "Information wants to be free." Directory Assistance, or lack thereof, is a profit center here and now. - John Myers, speaking in comp.dcom.telecom
Re: script to add users to virtual accounts
On Mon, 22 Oct 2001, Joe Stump wrote: > But will it allow me to add users to my SASL db? It doesn't seem that way. It'll add the account itself but you'd probably have to find another way to add the password. Sorry, you did say "SASL" and I didn't make the connection. (it's late) -- JustThe.net LLC - Steve "Web Dude" Sobol, CTO - [EMAIL PROTECTED] In another world it may be true that "Information wants to be free." Directory Assistance, or lack thereof, is a profit center here and now. - John Myers, speaking in comp.dcom.telecom
Re: script to add users to virtual accounts
SASL is a way to create virtual users in a DB without creating accounts. This allows me to host users on my box without giving them shell access. --Joe On Mon, Oct 22, 2001 at 01:20:07AM -0400, Steven J. Sobol wrote: > On Mon, 22 Oct 2001, Joe Stump wrote: > > > But will it allow me to add users to my SASL db? It doesn't seem that way. > > It'll add the account itself but you'd probably have to find another way > to add the password. Sorry, you did say "SASL" and I didn't make the > connection. (it's late) > > -- > JustThe.net LLC - Steve "Web Dude" Sobol, CTO - [EMAIL PROTECTED] > > In another world it may be true that "Information wants to be free." > Directory Assistance, or lack thereof, is a profit center here and now. >- John Myers, speaking in comp.dcom.telecom > Joe Stump <[EMAIL PROTECTED]> "How would this sentence be different if pi equaled 3?"
Re: script to add users to virtual accounts
But will it allow me to add users to my SASL db? It doesn't seem that way. --Joe On Mon, Oct 22, 2001 at 01:06:53AM -0400, Steven J. Sobol wrote: > On Sun, 21 Oct 2001, Joe Stump wrote: > > > Anyone out there have any scripts to add virtual accounts? > > > > I have Qmail+Cyrus+SASL+PHP on the server. I need an API to allow partners to > > create users via a HTTP script of some sort. > > The IMAP interface to PHP should work. It requires you to compile or have > available the c-client library from the UW IMAPD distro but will work fine > with cyrus once you've built it. > > http://php.net/imap/ > > -- > JustThe.net LLC - Steve "Web Dude" Sobol, CTO - [EMAIL PROTECTED] > > In another world it may be true that "Information wants to be free." > Directory Assistance, or lack thereof, is a profit center here and now. >- John Myers, speaking in comp.dcom.telecom > Joe Stump <[EMAIL PROTECTED]> "How would this sentence be different if pi equaled 3?"
System I/O error
Dear All, To install and test cyrus2.0.16, I have installed it in new directories (and kept old directories related to Cyrus2.0.7) in /usr/cyrus16 and /usr/local16. It has no problem, but when I send email to this host I got such a message. Maybe it does not because of cyrus, but I don't know how fix it. Can you help ? Oct 22 09:09:25 hostname sendmail[1046]: f9LF5Fi00439: to=<[EMAIL PROTECTED]>, delay=14:34:10, xdelay=00:00:00, mailer=cyrus, pri=1560153, relay=localhost [[UNIX: /var/imap/socket/lmtp]], dsn=4.3.0, stat=Deferred: 451 4.3.0 System I/O error Thanks F. Taj
Re: script to add users to virtual accounts
I'm using Qmail+Cyrus+SASL ... it's virtual accounts with virtual users and seems to be supporting multiple boxes one multiple domains. Here is a short list of what got Qmail+Cyrus up and running ... 1.) Any Cyrus+SASL HOWTO will work for compiling instructions 2.) Add qmail to the mail group (not sure how secure this is but it fixed a lot of problems) 3.) Make sure /usr/cyrus and /var/imap are chown'd cyrus.mail (I overlooked this initially) 4.) I had to support [EMAIL PROTECTED] and [EMAIL PROTECTED] on the same machine and preferably with the same codebase so I created a simple script that I put in my .qmail-vhost-default files that rewrites info and passes the email off to deliver. 5.) I create accounts like this: 1.) echo password | saslpasswd -p username 2.) create the inbox using username_domain_tld 3.) point mail.domain.tld to my mail frontend (squirrel) and modified my php frontend to convert [EMAIL PROTECTED] to username_domain_tld. 4.) The above script in the .qmail-vhost-default file takes the To: header and simply replaces @ and . with _ and passes it on to deliver. The one drawback is no .'s or _'s in usernames ... but when I get a customer that has more than the combination of numbers, letters and -'s I'll worry about that :) With a decent SAN this should scale to support many, many, many users - and the best part is it does it from one code base :) --Joe On Mon, Oct 22, 2001 at 12:59:27PM +0700, Abu @ Trabas Dot Com wrote: > We are using IMAP::Admin, its perl module. > > Are you using qmail+cyrus, using virtual user and virtual domain? > would you share to use how to qmail deliver to cyrus imapd. > > Thanks > > Joe Stump([EMAIL PROTECTED])@Sun, Oct 21, 2001 at 05:30:14PM -0500: > > Anyone out there have any scripts to add virtual accounts? > > > > I have Qmail+Cyrus+SASL+PHP on the server. I need an API to allow partners to > > create users via a HTTP script of some sort. > > > > --Joe > > > > Joe Stump <[EMAIL PROTECTED]> > > > > "How would this sentence be different if pi equaled 3?" > > -- >__ > (oo) > / \/ \ GnuPg public information pub 1024/EBD26280 > `V__V' A9A9 8F57 9E9D 14E3 05B4 3EDB C241 A313 EBD2 6280 > Don't relax! It's only your tension that's holding you together. Joe Stump <[EMAIL PROTECTED]> "How would this sentence be different if pi equaled 3?" PGP signature
Re: script to add users to virtual accounts
Joe, Although it's set up to not allow the addition of users, but only the changing of existing user's passwords, the MassSASLPass (http://www.icaht.com/masssaslpass/) scripts can be easily modified to do what you want. Due to sasldb's being owned by root, the scripts are a combination of php and shell scripts, as we didn't want to allow root owned applications to be run directly through a web interface. Hope this helps, Will --On Monday, 22 October, 2001 01:40 -0500 Joe Stump <[EMAIL PROTECTED]> wrote: > SASL is a way to create virtual users in a DB without creating accounts. > This allows me to host users on my box without giving them shell access. > > --Joe > > On Mon, Oct 22, 2001 at 01:20:07AM -0400, Steven J. Sobol wrote: >> On Mon, 22 Oct 2001, Joe Stump wrote: >> >> > But will it allow me to add users to my SASL db? It doesn't seem that >> > way. >> >> It'll add the account itself but you'd probably have to find another way >> to add the password. Sorry, you did say "SASL" and I didn't make the >> connection. (it's late) >> >> -- >> JustThe.net LLC - Steve "Web Dude" Sobol, CTO - [EMAIL PROTECTED] >> >> In another world it may be true that "Information wants to be free." >> Directory Assistance, or lack thereof, is a profit center here and now. >>- John Myers, speaking in comp.dcom.telecom >> > > Joe Stump <[EMAIL PROTECTED]> > > "How would this sentence be different if pi equaled 3?" > William K. Hardeman [EMAIL PROTECTED] http://www.wkh.org Always listen to experts. They'll tell you what can't be done and why. Then do it. --Robert A. Heinlein
Re: script to add users to virtual accounts
Joe Stump([EMAIL PROTECTED])@Mon, Oct 22, 2001 at 02:11:28AM -0500: > I'm using Qmail+Cyrus+SASL ... it's virtual accounts with virtual users and > seems to be supporting multiple boxes one multiple domains. Here is a short > list of what got Qmail+Cyrus up and running ... > > 1.) Any Cyrus+SASL HOWTO will work for compiling instructions > 2.) Add qmail to the mail group (not sure how secure this is but it fixed > a lot of problems) > 3.) Make sure /usr/cyrus and /var/imap are chown'd cyrus.mail (I overlooked > this initially) > 4.) I had to support [EMAIL PROTECTED] and [EMAIL PROTECTED] on the same machine > and preferably with the same codebase so I created a simple script that > I put in my .qmail-vhost-default files that rewrites info and passes the > email off to deliver. Would you share us your scrypt too in .qmail-vhost-default? I tried to put |/usr/cyrus/bin/deliver $param to send to cyrus mailbox but till now not work, I think i have to translate and put to cyrus mailbox like user_domain_com. I will change from sendmail+cyrus imapd to qmail+cyrus imapd. Thanks > 5.) I create accounts like this: > 1.) echo password | saslpasswd -p username > 2.) create the inbox using username_domain_tld > 3.) point mail.domain.tld to my mail frontend (squirrel) and modified my > php frontend to convert [EMAIL PROTECTED] to username_domain_tld. > 4.) The above script in the .qmail-vhost-default file takes the To: header > and simply replaces @ and . with _ and passes it on to deliver. > > The one drawback is no .'s or _'s in usernames ... but when I get a customer > that has more than the combination of numbers, letters and -'s I'll worry about > that :) > > With a decent SAN this should scale to support many, many, many users - and > the best part is it does it from one code base :) > > --Joe > > On Mon, Oct 22, 2001 at 12:59:27PM +0700, Abu @ Trabas Dot Com wrote: > > We are using IMAP::Admin, its perl module. > > > > Are you using qmail+cyrus, using virtual user and virtual domain? > > would you share to use how to qmail deliver to cyrus imapd. > > > > Thanks > > > > Joe Stump([EMAIL PROTECTED])@Sun, Oct 21, 2001 at 05:30:14PM -0500: > > > Anyone out there have any scripts to add virtual accounts? > > > > > > I have Qmail+Cyrus+SASL+PHP on the server. I need an API to allow partners to > > > create users via a HTTP script of some sort. > > > > > > --Joe > > > > > > Joe Stump <[EMAIL PROTECTED]> > > > > > > "How would this sentence be different if pi equaled 3?" > > > > -- > >__ > > (oo) > > / \/ \ GnuPg public information pub 1024/EBD26280 > > `V__V' A9A9 8F57 9E9D 14E3 05B4 3EDB C241 A313 EBD2 6280 > > Don't relax! It's only your tension that's holding you together. > > > > Joe Stump <[EMAIL PROTECTED]> > > "How would this sentence be different if pi equaled 3?" > -- __ (oo) Open Solution Provider visit http://www.trabas.com / \/ \ GnuPg public information pub 1024/EBD26280 `V__V' A9A9 8F57 9E9D 14E3 05B4 3EDB C241 A313 EBD2 6280 Don't relax! It's only your tension that's holding you together. PGP signature
Re: Sieve error in :matches clause
Jeremy,
You've probably noticed this yourself, but I'm suspecting cyrus is treating
the [ and ] as standard regex grouping characters, which would explain the
number rejects. I don't really know anything about the Cyrus codebase, not
being a programmer, but I do know that sieve can support regexes, from some
things I've seen on the list and from my perusal of websieve. However, it
was my understanding that regex support in a sieve script had to be
explicitly enabled before it works.
Not really an answer, I know, but what happens if you backslash escape the
brackets (or at least the left bracket)?
Will
--On Monday, 22 October, 2001 08:00 +1000 Jeremy Howard
<[EMAIL PROTECTED]> wrote:
> One of my users has this script:
>
> if anyof(
> header :matches "subject" "*[spam score 10.0/10.0 -pobox]*",
> header :matches "subject" "**") {
> reject "Message bounced by server content filter";
> stop;
> }
>
> It is rejecting a lot of messages that do not match either test. When I
> changed the first test to "*spam score 10.0*10.0 *pobox*" (i.e. I got rid
> of all 'special' characters) it worked fine.
>
> But according to the RFC only '*' and '?' are special. Does Cyrus treat
> some other chars specially?
>
>
William K. Hardeman
[EMAIL PROTECTED]
http://www.wkh.org
Always listen to experts. They'll tell you what can't be done and why. Then
do it.
--Robert A. Heinlein
Cyrus and very large folders
I just installed Cyrus for the first time to evaluate it as a possible mailserver to use at my company. I was surprised to find that each folder/mailbox is a single directory... my experience is that on typical Unix filesystems (UFS, ext2) this would cause severe performance degradation once a mailbox has a few thousand messages. At one point in the past I used Netscape Messaging Server (now iPlanet) and it had this problem at versions less than 4.x. With a few hundred users, many of whom had mailboxes with a few thousand messages in them, opening a mailbox was painfully slow. The problem is that normal Unix filesystems just don't handle large directories very well since they have to do a linear search through the whole dir for every file access. To make things worse when you have an application (i.e. the mail server) doing this for many such large directories at the same time you tend to run out of dcache, so you have to keep going back to disk. Anyway, Netscape fixed this in Messaging Server 4.x by subdividing each mailbox into subdirectories with hashed names such that there were never more than 100 files (messages) in each directory. On Linux this could now be a non-issue by using reiserfs, which is based on balanced trees and the speed of filename lookups has nothing to do with directory size. But I'm still surprised that Cyrus, which was designed as a heavy-duty mail server, hasn't addressed this independently. What filesystem do they use for the mail store at CMU? Has anyone who uses Cyrus in a large organization environment found this to be a problem? Thanks... -- Jürgen Botz | While differing widely in the various [EMAIL PROTECTED] | little bits we know, in our infinite | ignorance we are all equal. -Karl Popper
Re: System I/O error
> Dear All, > To install and test cyrus2.0.16, I have installed it in new directories (and kept >old directories related to Cyrus2.0.7) in /usr/cyrus16 and /usr/local16. It has no >problem, but when I send email to this host I got such a message. Maybe it does not >because of cyrus, but I don't know how fix it. Can you help ? > > Oct 22 09:09:25 hostname sendmail[1046]: f9LF5Fi00439: to=<[EMAIL PROTECTED]>, >delay=14:34:10, xdelay=00:00:00, mailer=cyrus, pri=1560153, relay=localhost [[UNIX: >/var/imap/socket/lmtp]], dsn=4.3.0, stat=Deferred: 451 4.3.0 System I/O error > This is an error comming from the operating system. Make sure, that you have no disk space/permission problem. Also have a look at the permissions of the lmpt socket (/var/imap/socket/lmtp) , sendmail must be able to access it. cu, Ferdinand
Re: Sieve error in :matches clause
William K. Hardeman wrote: > You've probably noticed this yourself, but I'm suspecting cyrus is treating > the [ and ] as standard regex grouping characters, which would explain the > number rejects. I don't really know anything about the Cyrus codebase, not > being a programmer, but I do know that sieve can support regexes, from some > things I've seen on the list and from my perusal of websieve. However, it > was my understanding that regex support in a sieve script had to be > explicitly enabled before it works. > I suspect you're right, William. AFAICT this goes against the RFC however, since you should only get regex when you use the :regex comparator. Ken--is this a bug... a feature... a misdiagnosis...?
