Re: sieve: vacation & subject
Dmitry Alyabyev wrote: Hello In case of setting up vacation the return message has 'Subject: subject' if it specified like: vacation "vacation text here"; If I write: vacation :days 1 :subject "My subject here" "vacation text here"; The message goes with empty Subject header. What did I miss ? Cyrus 2.2 Update your source code (either via CVS or the 2.2.1 tarball) -- Kenneth Murchison Oceana Matrix Ltd. Software Engineer 21 Princeton Place 716-662-8973 x26 Orchard Park, NY 14127 --PGP Public Key--http://www.oceana.com/~ken/ksm.pgp
Re: Mail server busy messages
Hi,
For what it's worth I have a similar setup (far fewer users) and have started to experience a problem with ONE of the font end machines. This machine runs AMAVIS with Postfix and delivers to the IMAP server via LMTP.
All of a sudden I'm getting complaints from one Netscape user who is getting server busy messages. The really strange thing is, the emails are actually being sent (!).
It has been working fine for months and nothing much has changed... [?]
Gareth.
On Wed, 2003-08-06 at 09:09, David Hearn wrote:
I hope someone can help me.
I've recently (since Monday) deployed a postfix/cyrus/web-cyradm/amavis-new
mail server for our company (40 employees). Everything seems to be working
fine - except for one thing. We've had quite a few times where people in
the office have been unable to send emails because the server is claiming to
be too busy.
Could this be because I don't have enough postfix processes to handle the
load? I upped the MySQL max_connections from 100 to 300 after a heavy
incoming spam 'attack' (which caused a lot of lookups) and MySQL didn't
appear to recover after the spam session - all my destination lookups kept
failing. No problems with MySQL after upping the max_connection - however
we still seem to be getting some busy messages from Postfix still.
In master.cf I'm using the basic maxproc settings (which appears to set
default_process_limit = 100). I guess I could increase the number of
processes for inet smtp to more than 100 - however, I don't fully understand
how the other (lmtp/virtual/local + amavis stuff) interact - and therefore I
don't know whether I need to increase any other limits when I increase the
inet smtp maxproc.
So - any suggestions?
master.cf:
#
# ==
# service type private unpriv chroot wakeup maxproc command + args
# (yes) (yes) (yes) (never) (50)
# ==
smtp inet n - n - - smtpd
pickup fifo n - n 60 1 pickup
cleanup unix n - n - 0 cleanup
qmgr fifo n - n 300 1 nqmgr
rewrite unix - - n - - trivial-rewrite
bounce unix - - n - 0 bounce
defer unix - - n - 0 bounce
flush unix n - n 1000? 0 flush
proxymap unix - - n - - proxymap
smtp unix - - n - - smtp
showq unix n - n - - showq
error unix - - n - - error
local unix - n n - - local
virtual unix - n n - - virtual
lmtp unix - - n - - lmtp
#
# Interfaces to non-Postfix software. Be sure to examine the manual
# pages of the non-Postfix software to find out what options it wants.
# The Cyrus deliver program has changed incompatibly.
#
# ==
# service type private unpriv chroot wakeup maxproc command + args
# (yes) (yes) (yes) (never) (50)
# ==
maildrop unix - n n - - pipe
flags=DRhu user=vmail argv=/usr/local/bin/maildrop -d ${recipient}
cyrus unix - n n - - pipe
user=cyrus argv=/usr/sbin/cyrdeliver -r ${sender} -m ${extension} ${user}
uucp unix - n n - - pipe
flags=Fqhu user=uucp argv=uux -r -n -z -a$sender - $nexthop!rmail
($recipient)
ifmail unix - n n - - pipe
flags=F user=ftn argv=/usr/lib/ifmail/ifmail -r $nexthop ($recipient)
bsmtp unix - n n - - pipe
flags=Fq. user=bsmtp argv=/usr/lib/bsmtp/bsmtp -d -t$nexthop -f$sender
$recipient
scalemail-backend unix - n n - 2 pipe
flags=R user=scalemail argv=/usr/lib/scalemail/bin/scalemail-store
${nexthop} ${user} ${extension}
smtp-amavis unix - - n - 2 lmtp
-o smtp_data_done_timeout=1200
-o disable_dns_lookups=yes
127.0.0.1:10025 inet n - n - - smtpd
-o content_filter=
-o local_recipient_maps=
-o relay_recipient_maps=
-o smtpd_restriction_classes=
-o smtpd_client_restrictions=
-o smtpd_helo_restrict
Re: mbxcvt and self signed certificates
Hi,
--On Donnerstag, 7. August 2003 2:43 Uhr -0400 Matt Henkel
<[EMAIL PROTECTED]> wrote:
so I decided to get and compile mbxcvt.
mbxcvt is old. You should get current source and compile mailutil instead.
The only problem (so far)
with this is that it is choking when it sees my self signed certificate:
[EMAIL PROTECTED] mbxcvt]$ ./mbxcvt ~guildencrantz/mail/amazon imap
'{localhost/user=guildencrantz}'amazon
Mailbox /home/guildencrantz/mail/amazon is in unix format and has 39
message(s).
%rsh to IMAP server timed out
[Trying IP address [127.0.0.1]]
?Certificate failure for localhost: self signed certificate:
/C=US/ST=Massachusetts/L=Boston/O=Menagerie Enterprises/OU=Mail
Team/CN=menagerie.cc/[EMAIL PROTECTED]
?Can't create mailbox {localhost/user=guildencrantz}amazon
[EMAIL PROTECTED] mbxcvt]$
Does anybody have any suggestions for me?
This is standard c-client behavior. You need to add /novalidate-cert/norsh
(the latter to get rid of the "rsh to IMAP server timed out" message) to
the options.
Greetings, Sebastian Hagedorn
--
Sebastian Hagedorn M.A. - RZKR-R1 (Gebäude 52), Zimmer 18
Zentrum für angewandte Informatik - Universitätsweiter Service RRZK
Universität zu Köln / Cologne University - Tel. +49-221-478-5587
Re: cvt_cyrusdb_all
"Luca Olivetti" wrote >> After installing cyrus-imapd, I was prompted to convert the >> /var/lib/imap/mailboxes.db. But I get the following error not being >> able convert db3 to flat. Would someone please tell me how can I >> fix this? > > Mmm, I replied to this message on the mandrake mailing list where it was > originally posted, but for some reason (probably sympa) it didn't show > up. I'm pasting my reply here: I did see your reply. But I'm using news.gname.org. > Why was /var/lib/imap/mailboxes.db there? > Did you have a previous version of cyrus-imapd manually installed (i.e > not via rpm)? I guess it might came from postfix or squirrelmail or php-imap module came with mandrake. I can't remember what I did with this box as I'm trying to throw things together and make it work. > If there's no useful data there, I suggest you remove the rpm, rm -rf > /var/lib/imap, rm -rf /var/spool/imap and reinstall the rpm. Since I only have root on this box, I did exactly want you suggested above. I'm using the latest RPM for 9.1 from your site. The install seems to be smooth. Thanks. May I ask how can I recreate a root mailbox so mail can be delivered for root? Thanks and Regards, Norman
Re: Confused about auxprop/sasldb
On Wed, 13 Aug 2003, Michael J Barber wrote: > I just want good documentation in a more accessible format. > Everyone says "It comes with the sources in directory " doc/*.html, plus https://bugzilla.andrew.cmu.edu/cgi-bin/cvsweb.cgi/~checkout~/src/sasl/doc/components.html?rev=1.4&content-type=text/html which should have been in 2.1.15 but isn't. > Why can't the documentation be put up on the ldp in multiple formats? Why? Its not linux-specific documentation. > Not everyone wants or needs the sources just to be able to read and > learn about the software. I agree. > To be honest I hate to say anything as I am very grateful to the people who put > in all the time and effort for such a great product. But, that does not mean it > is easy for the rest of us to understand or use. There are a number of > how-to's. They are great... but they do not address the real issue of > understanding how the system is designed and structured. I hope that the above components.html should fix that to some extent. (Though, the user's question here about PAM and user accounts isn't really one of the design of SASL, it's really a PAM question). > If I ever get a handle on this system I will be happy to write verbose > documentation. Until then I will continue to muddle through individual > man pages and scattered documentation on very specific features. We always are looking for documentation patches. -Rob -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- Rob Siemborski * Andrew Systems Group * Cyert Hall 207 * 412-268-7456 Research Systems Programmer * /usr/contributed Gatekeeper
More Exim/Cyrus effort
OK, I have used the cyrus call lmtp_downcase_rcpt and it works well. I
have since then implemented amavisd-new which
has the feature to send spam to a [EMAIL PROTECTED] I would like to
use this to automatically have my users receive their spam safely.
When I set the system up I used the autocreateinboxfolders to include
the SPAM folder. My users are all virtual.
So now I have switched to trying to send mail to specific folders
through exim. I have the following (after amavisd):
#router
localuser:
# caseful_local_part = false
driver = accept
local_part_suffix_optional
local_part_suffix = +*
transport = local_delivery
#transport
local_delivery:
driver = lmtp
command = /usr/bin/deliver -q -l -a ${lc:$local_part} \
if{ {$local_part_suffix} {-m ${substr_1:${local_part_suffix --
${lc:$local_part}
batch_max = 20
user = cyrus
delivery_date_add
return_path_add
All examples I have seen use pipe that have been said to work with
folders. Is there a way to get lmtp to work
or do I have to use pipe? Is there anything I have to do to allow cyrus
to post to a specific folder with only default permissions?
Also, does anybody have experience sending mail to a shared folder
without adding the '+' in the name? I am thinking it will require
a specific router/transport.
Thanks again for any help!
-Chris
Re: cvt_cyrusdb_all
Luca Olivetti wrote: > Norman Zhang wrote: > >> After installing cyrus-imapd, I was prompted to convert the >> /var/lib/imap/mailboxes.db. But I get the following error not being >> able convert db3 to flat. Would someone please tell me how can I fix >> this? > > Why was /var/lib/imap/mailboxes.db there? > Did you have a previous version of cyrus-imapd manually installed > (i.e not via rpm)? I have found out that mailboxes.db are created by postfix after I issued /etc/rc.d/init.d/postfix restart. It will recreate that even if I remove it. Regards, Norman
SIEVE SMS Notification
Hi, I am new to this list and cyrus. I have the latest release of cyrus imapd running on a RH9 box. I would like to set up a new SIEVE notification service for sending SMS upon new mail arrival. We have our own SMS gateway (kannel) running on a different box for doing so.. >From reading the docs I learned that I need to write my own notify_sms.c, right? Is >there a template for writing such applications or has even someone already done the >job earlier? Unfortunately I don't know coding in C very well... After writing the module it needs to be inserted analogue to the existing modules in notifyd.h, right? And I think I will have to recompile cyrus again. Is that about the roadmap? I'll appreciate any help and assistance on this case very much. Dave
Re: deleting an eMail but not able to delete the belonging folder
This is a similar setup to what I use at my office. I believe that the exclusion of the "c" flag and inclusion of the "d" flag will make it so the user can delete messages but not delete the folder or create subfolders that is at least in Cyrus 2.1 In the Cyrus doc's in the overview.html it goes through a detailed description of this. Cheers, Ehren E. Zorn (RDG-rational) wrote: Hi, we are using cyrus with Outlook as an IMAP-Client. How can a User be able to delete an eMail but not be able to delete / move the belonging Folder? I looked at the possible rights from cyrus but I have no idea. Looks like it is impossible to do it with the rightsmanagement of cyrus. Has anybody an idea for an workaround. The stupid users here are often moving there folders in outlook. Any Ideas? -Elmar
Cyrus not accepting mail
Hi all, I am trying to make Cyrus accept mail but, all on my mail is staying in my sendmail queue. Here is a message I noticed and cannot seem to resolve: 451 4.0.0 Could not connect to socket /usr/lib/cyrus-imapd/lmtpd: Connection refused
Re: Possibly watchdog to restart certain processes?
On Mon, 11 Aug 2003, David Hearn wrote: > So - is there anything I can can do to check if the each individual piece > of software is working, and if not restart it? Or maybe check that the If you mean stuff that verify wether a process is running, there are lots of that, and it ain't difficult to write one of your own either. Search google and freshmeat... > overall input/output of email is working and therefore restart all the > mail-related processes if it doesn't appear to be working. Well, if you are going to test the mail service itself, then you'll probably need to write one of your own. My suggestion: 1. Fire up an email to your esmtp server in a cronjob 2. Said email needs to arrive to a test user in cyrus, which has a sieve script that redirects it to another address 3. Said another address is a postfix/exim/sendmail pipe that calls a watchdog pat script. There are other ways. Such as connecting to a mailbox using IMAP and verifying if the tracer email got there, delete and expunge it, and so on... -- "One disk to rule them all, One disk to find them. One disk to bring them all and in the darkness grind them. In the Land of Redmond where the shadows lie." -- The Silicon Valley Tarot Henrique Holschuh
Re: creating users
Christian Schulte wrote: Am Montag, 11. August 2003 23:50 schrieb Norman Zhang: Hi, I'm a little confused on the process of creating users. First I "su cyrus" then I typed the following commands, cyradm localhost cm user.joebob quit exit (back as root) saslpasswd joebob Now does joebob require an account on my Linux box? That depends on how you configured SASL! If you use PAM with SASL yes otherwise you should not need to. Why would PAM require him to have local user accounts? I use PAM and don't have local accounts. -- Kenneth Murchison Oceana Matrix Ltd. Software Engineer 21 Princeton Place 716-662-8973 x26 Orchard Park, NY 14127 --PGP Public Key--http://www.oceana.com/~ken/ksm.pgp
Re: cyrus imap hangs regularly
On Tue, 12 Aug 2003, Ilan Rabinovitch wrote: > Lately I'm finding that the various cyrus processes go to "sleep" and never > wake up. As a result sendmail is unable to deliver its mail to cyrus. This > has happened 3 times in the last 48 hours. When this happens users can connect to > pop but not > IMAP, but again no new mail gets delivered from the MTA. This can happen if processes that are otherwise doing nothing get killed unexpectedly, either by an administrative action or by a low memory condition or similar. > If I restart Cyrus it now takes over an hour to fully start. It spends this > time: converting db files, ctl_cyrusdb -r, and ctl_deliver -r. While these > are running users cannot connect to imap or pop. The cyrus processes use > 97% CPU on a pretty beefy machine for their entire duration. When it completes they > can > connect to both just fine and I can force sendmail to deliver all the mail > no problem. However, this problem repeats just a few hours late. Please read: http://asg.web.cmu.edu/twiki/bin/view/Cyrus/WhyBerkeleyRecoverySoLong -Rob -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- Rob Siemborski * Andrew Systems Group * Cyert Hall 207 * 412-268-7456 Research Systems Programmer * /usr/contributed Gatekeeper
Re: Whose fault? vacation messages bounce to postmaster.
mark london wrote: I am running cyrus/squirrelmail/sendmail. I have a vacation plugin for squirrelmail and set up vacation autoresponding. However, if vacation responds to a spam message that has a bogus email address, the bounced message that says that the vacation message can't be delivered to that bogus email address, goes to postmaster at our site, rather than the person who has vacation enabled. I don't know if this is a feature or a bug, and how to change it's behavior. I notice that thevacation autoresponse messages have a line at the top of message say that cyrus set sender to <>. Is this possible the reason for this behavior? Or is it a sendmail feature? Here's the header of a vacation response message. Thanks! - Mark You've indirectly answered your own question. Automated responses, like vacation responses, are always sent using a null sender, to avoid message loops. If the response was sent using the original recipient's address as the sender, where would the bounce be sent? If it was sent to the original recipient, that would trigger the vacation response again.
Re: Murder problem with Syslog
Rob Siemborski wrote: On Thu, 17 Jul 2003, Marc-Andre Gaudreau wrote: We have a weird problem on our Murder setup (cyrus 2.1.14 on redhat 7.3). When I restart syslog on one of the backend servers, the frontends start to have problems and I get a bunch of error messages (on the frontends). Users then see their folders as if they were empty (for about half the connections). When I restart cyrus on the backend, everything comes back to normal. I also have to restart cyrus on the frontends because restarting cyrus on the backends causes the load to go way up on the frontends (a few proxyd processes use a lot of cpu). The error message I get on the frontends is : "couldn't authenticate to backend server: generic failure" Nothing weird shows up in the logs on the backend. Any ideas on what is going on? We use DIGEST-MD5 to authenticate on the backends for the proxy user. When you restart syslog on the backends, can you still authenticate directly to the backends using, say, imtest? I have not tried imtest, but when I try to use cyradm on the backend, it just hangs forever. No imap connections can be made on the backend server. It looks like something far worse happens on the backends [than restarting syslog] causing them to no longer accept connections. Each time I restart syslog on a backend it just stops accepting imap connections (exactly when I do it). I just made a few tests and discovered something interesting. We currently have two backends : one with a lot of users and activity and one with almost no activity nor users (for now!). As I said, each time I restart syslog on the first backend (the one with a lot of activity), it causes the backend to refuse imap connections until I restart cyrus on that server. However, I can restart syslog without any problems on the second backend. I wrote a small script to simulate activity on the second backend (open imap connection, create and delete a folder, close connection and repeat). When the script is running, restarting syslog causes the backend to refuse imap connections. When I stop the script, everything comes back to normal and the backend accepts connections again (I don't actually have to restart cyrus, just stop all the activity). Any ideas? Thanks. -Rob -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- Rob Siemborski * Andrew Systems Group * Cyert Hall 207 * 412-268-7456 Research Systems Programmer * /usr/contributed Gatekeeper
Re: Cyrus and pop3
> Sorry, I'm not sure if this mail was submitted correctly. So it could be > two > times in the list... > > > > Hi everybody! > > I have a problem with pop3 checking. Some mailboxes are not working with > pop3 after some time. > When I delete one broken mailbox and then recreate it, I may login only > one > time by using pop3. Then it is broken again. What do you get in the logs? I remember a similar problem where running reconstruct on the mailbox fixed it. Simon > > Here is what I get when using telnet: > > myhost:~ # telnet localhost 110 > Trying ::1... > Trying 127.0.0.1... > Connected to localhost. > Escape character is '^]'. > +OK myhost Cyrus POP3 v2.0.16 server ready > user asdasdasd > +OK Name is a valid mailbox > pass xyz > Connection closed by foreign host. > > Most mailboxes work correctly with pop3, only some don't. But all are > accessible through IMAP protocol! > Any ideas? > >
Confused about auxprop/sasldb
Hi, I'm trying to get cyrus-sasl-2.1.15 and cyrus-imapd-2.1.14 working using the sasldb for authentication. I have managed to get authentication working with saslauthd and pam, but I don't want to set the mail users up with logins. The /etc/imapd.conf contains: sasl_pwcheck_method: auxprop sasl_auxprop_plugin: sasldb When I use the imtest application it says user cannot be found and the syslog reports: Aug 12 22:48:30 solaris imapd[19895]: [ID 702911 auth.debug] could not find auxprop plugin, was searching for 'sasldb' A listing of the sasldb file is -rw-r- 1 cyrusmail 24576 Aug 12 18:14 /etc/sasldb2 I am using Solaris 9 and have installed both imapd and sasl in '/opt/cyrus'. The directory /opt/cyrus/lib/sasl2/ contains: libanonymous.la libdigestmd5.so libplain.la libanonymous.so libdigestmd5.so.2 libplain.so libanonymous.so.2 libdigestmd5.so.2.0.15 libplain.so.2 libanonymous.so.2.0.15 libgssapiv2.a libplain.so.2.0.15 libcrammd5.la libgssapiv2.la libsasldb.la libcrammd5.so libotp.la libsasldb.so libcrammd5.so.2 libotp.so libsasldb.so.2 libcrammd5.so.2.0.15libotp.so.2 libsasldb.so.2.0.15 libdigestmd5.la libotp.so.2.0.15 which is where it'd be looking for plugins (and sasldb is there) - if I'm interpreting correctly. Any help would be appreciated. Regards, Matthew
Re: Cyrus and pop3
Which cyrus version are you using ? regards bryntez - Original Message - From: "Frederik Happel" <[EMAIL PROTECTED]> To: <[EMAIL PROTECTED]> Sent: Tuesday, August 12, 2003 5:57 PM Subject: Cyrus and pop3 : Sorry, I'm not sure if this mail was submitted correctly. So it could be two : times in the list... : : : : Hi everybody! : : I have a problem with pop3 checking. Some mailboxes are not working with : pop3 after some time. : When I delete one broken mailbox and then recreate it, I may login only one : time by using pop3. Then it is broken again. : : Here is what I get when using telnet: : : myhost:~ # telnet localhost 110 : Trying ::1... : Trying 127.0.0.1... : Connected to localhost. : Escape character is '^]'. : +OK myhost Cyrus POP3 v2.0.16 server ready : user asdasdasd : +OK Name is a valid mailbox : pass xyz : Connection closed by foreign host. : : Most mailboxes work correctly with pop3, only some don't. But all are : accessible through IMAP protocol! : Any ideas? :
Re: Sieve works, but file into can't find the directory.
OK, scratch this thread. Correct answer is:
fileinto "user/hostadmin/backup";
or even:
fileinto "user/hostadmin/backups";
if that's what you called the folder. What's an 's' between friends?
Panic over. Bedtime.
Cheers,
Jon
Jon Mercer wrote:
Folks,
I've got a problem specifying the fileinto line in my sieve scripts. I'm
using:
unixhierarchysep: yes
altnamespace: yes
userprefix: user
sharedprefix: shared
in imapd.conf. Users have been created in cyradm with:
cm user.hostadmin
with subdirs created within Mozilla-Mail. The sieve script looks like this:
require "fileinto";
if header :contains "Subject" "AMANDA" {
fileinto "user/hostadmin/backup";}
if header :contains "To" "[EMAIL PROTECTED]" {
fileinto "user/hostadmin/achilles";}
if header :contains "To" "[EMAIL PROTECTED]" {
fileinto "user/hostadmin/ajax";}
if header :contains "To" "[EMAIL PROTECTED]" {
fileinto "user/hostadmin/menelaus";}
the file into line has been through every permutation I can think of, e.g.:
fileinto "INBOX.backup";
fileinto "user.hostadmin.backup";
fileinto "hostadmin.backup";
fileinto "backup";
fileinto "INBOX/backup";
fileinto "user/hostadmin/backup";
fileinto "hostadmin/backup"
Nothing seems to be catching the mails, and they end up in the inbox.
What am I doing wrong? As a side note, I've also tried addressing mails
to [EMAIL PROTECTED], and this isn't working either.
'Nuff headbanging for now, any help gratefully received.
Cheers,
Jon
Cyrus and pop3
Sorry, I'm not sure if this mail was submitted correctly. So it could be two times in the list... Hi everybody! I have a problem with pop3 checking. Some mailboxes are not working with pop3 after some time. When I delete one broken mailbox and then recreate it, I may login only one time by using pop3. Then it is broken again. Here is what I get when using telnet: myhost:~ # telnet localhost 110 Trying ::1... Trying 127.0.0.1... Connected to localhost. Escape character is '^]'. +OK myhost Cyrus POP3 v2.0.16 server ready user asdasdasd +OK Name is a valid mailbox pass xyz Connection closed by foreign host. Most mailboxes work correctly with pop3, only some don't. But all are accessible through IMAP protocol! Any ideas?
Re: FUD, fud-client
On Wed, 13 Aug 2003, Per Steinar Iversen wrote: > Ah, I understand, not very detailed documentation on fud :-) > > \Recent is a problem as many of our users seems to like to be logged in on > several machines at the same time and all of these poll for new mail - I > imagine that \Recent then will be mostly zero, even if there is a lot of > new mail that has not actually been read. A similar argument, can, of course, be made for \Seen: many users will read mail, than remove the \Seen flag if they want to come back to it later. > In older versions of Cyrus (1.6.*) the seen information was stored in a > simple format in cyrus.seen and it was easy to make a utility to extract > the number of messages and the number of messages unread. With 2.1.* the > data structure of the seen-file is more complex even when converted to the > flat format. Is there any easy way to determine which record correspond to > INBOX in the flat format? I strongly advise you not to go mucking about in the internals of Cyrus, as they are subject to change at any time. If you really wanted to do this, you're probably better off modifying fud. To do what you want though, you have a sequence of steps like the following: 1) look up location of user.username 2) open cyrus.header file 3) extrace unique identifier 4) open user.seen file 5) use unique identifier as index into seen state -Rob -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- Rob Siemborski * Andrew Systems Group * Cyert Hall 207 * 412-268-7456 Research Systems Programmer * /usr/contributed Gatekeeper
Re: FUD, fud-client
On Wed, 13 Aug 2003, Rob Siemborski wrote: > I strongly advise you not to go mucking about in the internals of Cyrus, > as they are subject to change at any time. If you really wanted to do > this, you're probably better off modifying fud. Understood, it just seems simpler right now. > To do what you want though, you have a sequence of steps like the > following: > > 1) look up location of user.username > 2) open cyrus.header file > 3) extrace unique identifier > 4) open user.seen file > 5) use unique identifier as index into seen state Thanks! It looks quite simple to modify my old Cyrus 1.6 script after all. Interesting message inside cyrus.header ... -psi
Re: Virtual Domains and authentication
> On Tue, 2003-08-12 at 11:47, Michael Fair wrote: >> I've never used pam for virtual domains but the general idea >> is that the user provides the fully qualified [EMAIL PROTECTED] >> as their userid. SASL splits that up into a "realm" and a >> user so in terms of SASL, creating the user looks something >> like this: >> saslpasswd -c -U domain.dom userid >> >> I really can't say how this will map to PAM since PAM really >> doesn't support the concept of realms (as I understand it). >> >> -- Michael -- >> > Hi, > > With pam you can have IMAP accounts of the type: username.domain.tld so > that mail sent to [EMAIL PROTECTED] is delivered to a cyrus account: > username.domain.tld > > This needs the the option "unixhierarchysep: yes" is set in the > /etc/imapd.conf. > > There are howto's showing how to achieve this: > http://www.delouw.ch/linux/Postfix-Cyrus-Web-cyradm-HOWTO/html/index.html > and > http://home.teleport.ch/simix/RPMS/Cyrus-imapd/contrib/Postfix+cyrus+postgreSQL+web-cyradm.pdf > > In the new cyrus-2.2.x (now in beta) [EMAIL PROTECTED] will be > allowed. Otherwise for now you can use the Perdition IMAP/POP proxy > server(http://vergenet.net/linux/perdition/) or get a patch (I think), > for the current stable 2.1.x series. My question remains how will the new 2.2 fit in PAM? Does it only work for the default domain? (Sorry I didn't study the virtual domain docs yet) Simon > >> >> "James Satterfield" <[EMAIL PROTECTED]> wrote in message >> news:[EMAIL PROTECTED] >> > I'm having a lot of difficulty wrapping my mind around authentication >> for >> a >> > virtual domain configuration. I would like to use PAM for auth, but I >> don't see >> > how to get around the '@' in the usernames. I see nothing in the docs >> that >> > address how to setup auth for virtual domain support. >> > Do any of you have any tips, howtos, advice, config examples? >> > >> > Thanks, >> > James. >> > >> > >> > -- > Andrew Koros > Developer, Systems Services > > UUNET KENYA LTD > 2nd Floor Parkside Towers > Mombasa Road, Nairobi > > Tel: +254 2 69088618 > Fax: +254 2 69088001 > Email: [EMAIL PROTECTED] > > http://www.uunet.co.ke > > NOTICE: "The contents of this e-mail and any accompanying documentation is > confidential and any use thereof, in whatever form, by anyone other than > the > addressee for whom it is intended, is strictly prohibited." > >
Re: Authenticating to IMAP with PLAIN or LOGIN over non-tls/ssl connections
Chris, Thanks for you suggestions, and yes, 'sasl_minimum_laer' was a typo. I have allowplaintext turned on already as we have IMAP clients already using the LOGIN command over a non-tls connections (which is already insecure). What I need to pe able to do is proxy authenticate as another user using a plaintext admin usercode/password. Ken Murchison pointed me in the right direction wich was to start my IMAPd in cyrus.conf with the '-p 2' parameter. This tells IMAPd that there is already a security layer outside of it so it can allow plain text authentications. Thanks Roland - Original Message - From: "Chris Hilts" <[EMAIL PROTECTED]> > I'm wondering if there is a configurable way of allowing plaintext imap > authentications over a non-encrypted link. I have set 'sasl_minimum_laer: > 0' I'll assume that's a typo, and you really have sasl_minimum_layer. > in imapd.conf which I thought would do it, but this doesn't seem to help. > When I connect via IMAPS I can use PLAIN and LOGIN authentications, but > these are denied for unencrypted imap connections. You are aware of the potential security implications of doing this, right? Try the 'allowplaintext' directive. -- Chris Hilts [EMAIL PROTECTED]
Re: creating users
Am Dienstag, 12. August 2003 02:58 schrieb Ken Murchison: > Christian Schulte wrote: > > Am Montag, 11. August 2003 23:50 schrieb Norman Zhang: > >>Hi, > >> > >>I'm a little confused on the process of creating users. First I "su > >> cyrus" then I typed the following commands, > >> > >>>cyradm localhost > >>>cm user.joebob > >>>quit > >>>exit (back as root) > >>>saslpasswd joebob > >> > >>Now does joebob require an account on my Linux box? > > > > That depends on how you configured SASL! If you use PAM with SASL yes > > otherwise you should not need to. > > Why would PAM require him to have local user accounts? I use PAM and > don't have local accounts. You are right! After re-reading several parts of documentation I am pretty shure I totally misunderstood PAM ;-) It does not require him to use local accounts but enables the possibility to do so. Btw: I am using auxprop mysql. How do I have to create the shared secrets in mysql database for CRAM-MD5 and DIGEST-MD5 correctly (the values for the cmusaslsecret fields) ? For cmusaslsecretPLAIN everything works fine. I tried mysql MD5() function but I think the secrets cannot be produced by some mysql function and need special processing. Any pointers ? --Christian
Re: mysql plugin "couldnt connect to any host"
I found the solution to my problem. Most examples in the cyrus-sasl mailing list using the following imapd.conf pwcheck_method: auxprop auxprop_plugin: mysql mysql_user: username mysql_passwd: password mysql_hostnames: localhost mysql_database: horde mysql_statement: select password from accounts where username = '%u' mysql_verbose: true but this did not work for me: I used the following pwcheck_method: auxprop auxprop_plugin: mysql sasl_mysql_user: username sasl_mysql_passwd: password sasl_mysql_hostnames: localhost sasl_mysql_database: horde sasl_mysql_statement: select password from accounts where username = '%u' sasl_mysql_verbose: true Working now, tony
sieve redirect mail loop causing mail to be lost
Hi, We are running Cyrus-imapd-2.1.11 with sieve and duplicate delivery suppression. One of our users complained that they had not been receiving mail. It appears that this is because he has set up a sieve script with a redirect rule which redirects all his mail to himself (his own email address). As far as I can tell, his mail is initially delivered to his Inbox, at which point lmtpd redirects the mail back via the MTA to his email address. The redirected mail is delivered a second time, at which point it appears that the mail is suppressed by Cyrus' duplicate delivery suppression. I have seen a few references to this behaviour on the list from a while back, but I'm not sure if this problem has been addressed in 2.1.11 or later. When a redirect rule redirects mail to the same mailbox in this way, will this always result in mail being silently discarded? Would this problem be solved by disabling duplicate delivery suppression? I am slightly confused by the fact that lmtpd is not actually logging that it has suppressed the message when this occurs. Yet the messages never appear in the user's Inbox. Obviously the user's sieve script is broken and I would expect it to produce a mail loop, which our MTA should handle. But it is very likely that other users will inadvertently redirect mail to themselves, and if this is going to cause mail to be lost we may have to disable duplicate delivery suppression. -- Stephen Grier Systems Developer Computing Services Queen Mary, University of London
Re: Cyrus over NFS with _one_ instance
For what it's worth, I have a configuration that works this way with a NetApp. We've got a content switch in front of the two servers that does automatic failover if the primary box goes down, and so far it's worked flawlessly. I turned off all the database checkpointing and pruning on the secondary box in /etc/cyrus.conf, and gave it a slightly lower-priority MX record, but otherwise the two boxes are identical. I'm almost reluctant to recommend this to anyone else, though, given the big ol' warning in the FAQ regarding Cyrus and NFS. All I can say is it works for me; YMMV. Ian G Batten wrote: It has always been my understanding that Cyrus isn't supported over NFS. Clearly, getting locking working for the scenario of two machines running Cyrus sharing /var/imap is Very Hard. However, what if I only want to use _one_ instance of Cyrus, with failover (essentially, one Sun sat in front of a NetApp|Auspex|OtherNFSBox, with failover to another Sun if the first goes bang). Are there issues with Cyrus over NFS if the running copy of Cyrus has an assurance that it's the only writer? ian This message is intended only for the use of the person(s) listed above as the intended recipient(s), and may contain information that is PRIVILEGED and CONFIDENTIAL. If you are not an intended recipient, you may not read, copy, or distribute this message or any attachment. If you received this communication in error, please notify us immediately by e-mail and then delete all copies of this message and any attachments. In addition you should be aware that ordinary (unencrypted) e-mail sent through the Internet is not secure. Do not send confidential or sensitive information, such as social security numbers, account numbers, personal identification numbers and passwords, to us via ordinary (unencrypted) e-mail.
FUD, fud-client
The fud-client in cyrus-imapd-2.1.14 seems a little broken, or perhaps it is the fud-server? An example, a user is called "stens" : $ fud-client localhost stens user.stens user: stens mbox: user.stens Number of Recent 0 Last read: Wed Aug 13 11:37:51 2003 Last arrived: Wed Aug 13 13:54:38 2003 But: $ fud-client localhost randomstring user.stens user: randomstring mbox: user.stens Number of Recent 1553 Last read: Thu Jan 1 01:00:00 1970 Last arrived: Wed Aug 13 13:54:38 2003 There are indeed 1553 messages in the INBOX of this user, about a dozen of these were unread. The only numbers that seems reasonable is the "Last arrived" and "Number of Recent" when the fud "user" is a random string and the username. I get the same result with the perl fud client posted to this list once. It would really be nice to have a utility that listed the number of read/unread messages in the INBOX, it is quite useful. -psi
ctl_cyrusdb: unable to sync environment
If I run ctl_cyrusdb -c as user 'cyrus' while master is running, what should it do? I have a feeling that I should not get the error: ctl_cyrusdb: unable to sync environment Am I missing anything here? Thanks. Andrew Brink, CCNA, WCSP NetStandard, Inc. 913-262-3888
Re: Duplicate Delivery Suppression
On Thu, 14 Aug 2003, Andrew Brink wrote: > I looked in the docs, and wiki a few days ago and didn't find anything > about this, perhaps a wiki post would be helpful. http://asg.web.cmu.edu/twiki/bin/view/Cyrus/DuplicateDeliveryExplained -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- Rob Siemborski * Andrew Systems Group * Cyert Hall 207 * 412-268-7456 Research Systems Programmer * /usr/contributed Gatekeeper
Re: FUD, fud-client
On Thu, 14 Aug 2003, Per Steinar Iversen wrote: > I noticed something silly though: > > After running this: > > $ fud-client localhost randomstring user.stens > > Then I get a brand new seen-file for "randomstring" : > > # ls -la /var/lib/imap/user/r/randomstring.seen > -rw---1 cyrusmail 144 Aug 13 14:19 > /var/lib/imap/user/r/randomstring.seen Well not great, but most people don't go around investigating seen state for bogus users. > Can these seen-files that does not belong to any real mailbox just be > removed by hand? Sure. -Rob -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- Rob Siemborski * Andrew Systems Group * Cyert Hall 207 * 412-268-7456 Research Systems Programmer * /usr/contributed Gatekeeper
Re: Duplicate Delivery Suppression
In my case, I've noticed that if I send an email to an alias of mine, and also cc myself, then I only get a single copy as the duplicate was not delivered. This did confuse me at first - but I'm okay with it now. No one yet has complained... ;) David - Original Message - From: "Andrew Brink" <[EMAIL PROTECTED]> To: "Cyrus Info list" <[EMAIL PROTECTED]> Sent: Thursday, August 14, 2003 2:49 PM Subject: Duplicate Delivery Suppression > What exactly is duplicate delivery suppression? (Yes, I know it > suppresses duplicate delivery of messages) > Rather, what I want to know is why messages would be duplicated, etc. > > I looked in the docs, and wiki a few days ago and didn't find anything > about this, perhaps a wiki post would be helpful. > > Thanks! > > Andrew Brink, CCNA, WCSP > NetStandard, Inc. > 913-262-3888 > > >
Re: FUD, fud-client
On Thu, 14 Aug 2003, Rob Siemborski wrote: > On Thu, 14 Aug 2003, Per Steinar Iversen wrote: > > > I noticed something silly though: > > > > After running this: > > > > $ fud-client localhost randomstring user.stens > > > > Then I get a brand new seen-file for "randomstring" : > > > > # ls -la /var/lib/imap/user/r/randomstring.seen > > -rw---1 cyrusmail 144 Aug 13 14:19 > > /var/lib/imap/user/r/randomstring.seen > > Well not great, but most people don't go around investigating seen state > for bogus users. These files consume diskspace. Call fud a sufficent number of times, each time with a different name and eventually these files will consume all available space. Also some filesystems, like ext2/3, have performance problems with directories containing huge numbers of files. > > Can these seen-files that does not belong to any real mailbox just be > > removed by hand? > > Sure. Good. -psi
Re: sieve redirect mail loop causing mail to be lost
On Wed, 13 Aug 2003, Stephen Grier wrote: > We are running Cyrus-imapd-2.1.11 with sieve and duplicate delivery > suppression. One of our users complained that they had not been > receiving mail. It appears that this is because he has set up a sieve > script with a redirect rule which redirects all his mail to himself (his > own email address). As you note, this is a problem with the sieve script and the user should expect to not see any mail. > As far as I can tell, his mail is initially delivered to his Inbox, at > which point lmtpd redirects the mail back via the MTA to his email > address. The redirected mail is delivered a second time, at which point > it appears that the mail is suppressed by Cyrus' duplicate delivery > suppression. As it should be. > I have seen a few references to this behaviour on the list from a while > back, but I'm not sure if this problem has been addressed in 2.1.11 or > later. When a redirect rule redirects mail to the same mailbox in this > way, will this always result in mail being silently discarded? It will always result in the mail being discarded. > Would this problem be solved by disabling duplicate delivery > suppression? I am slightly confused by the fact that lmtpd is not > actually logging that it has suppressed the message when this occurs. > Yet the messages never appear in the user's Inbox. Yeah, it should probably be logging this. > Obviously the user's sieve script is broken and I would expect it to > produce a mail loop, which our MTA should handle. But it is very likely > that other users will inadvertently redirect mail to themselves, and if > this is going to cause mail to be lost we may have to disable duplicate > delivery suppression. If it is likely that your users will redirect mail to themselves, they are going to lose mail no matter what they do. RFC 3028 states: Implementations SHOULD take measures to implement loop control, possibly including adding headers to the message or counting received headers. If an implementation detects a loop, it causes an error. Duplicate suppression handles this for Cyrus. Relying on the MTA to handle it is a sure way to get yourself into trouble. Any half-decent auto-responder should be performing its own loop detection/suppression. -Rob -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- Rob Siemborski * Andrew Systems Group * Cyert Hall 207 * 412-268-7456 Research Systems Programmer * /usr/contributed Gatekeeper
Re: FUD, fud-client
On Wed, 13 Aug 2003, Rob Siemborski wrote: > On Wed, 13 Aug 2003, Per Steinar Iversen wrote: > > > The fud-client in cyrus-imapd-2.1.14 seems a little broken, or perhaps > > it is the fud-server? > > It appears you're calling it in a strange way. > > > $ fud-client localhost stens user.stens > > user: stens > > mbox: user.stens > > Number of Recent 0 > > Last read: Wed Aug 13 11:37:51 2003 > > Last arrived: Wed Aug 13 13:54:38 2003 > > Looks fine to me. > > > But: > > > > $ fud-client localhost randomstring user.stens > > user: randomstring > > mbox: user.stens > > Number of Recent 1553 > > Last read: Thu Jan 1 01:00:00 1970 > > Last arrived: Wed Aug 13 13:54:38 2003 > > The 'randomstring' is telling fud 'show me the seen state of this mailbox > as seen by the user "randomstring"'. Which, if 'randomstring' isn't a > valid user, is going to be "all messages recent, never opened". > > > The only numbers that seems reasonable is the "Last arrived" and "Number > > of Recent" when the fud "user" is a random string and the username. > > Doctor! It hurts when I hit my head against the wall! ;) > > > It would really be nice to have a utility that listed the number of > > read/unread messages in the INBOX, it is quite useful. > > fud is just that utility. (Of course, it relies on \Recent, not \Seen). > > -Rob > > -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- > Rob Siemborski * Andrew Systems Group * Cyert Hall 207 * 412-268-7456 > Research Systems Programmer * /usr/contributed Gatekeeper Ah, I understand, not very detailed documentation on fud :-) \Recent is a problem as many of our users seems to like to be logged in on several machines at the same time and all of these poll for new mail - I imagine that \Recent then will be mostly zero, even if there is a lot of new mail that has not actually been read. In older versions of Cyrus (1.6.*) the seen information was stored in a simple format in cyrus.seen and it was easy to make a utility to extract the number of messages and the number of messages unread. With 2.1.* the data structure of the seen-file is more complex even when converted to the flat format. Is there any easy way to determine which record correspond to INBOX in the flat format? -psi
Re: FUD, fud-client
On Thu, 14 Aug 2003, Rob Siemborski wrote: > On Thu, 14 Aug 2003, Per Steinar Iversen wrote: > > > > Well not great, but most people don't go around investigating seen state > > > for bogus users. > > > > These files consume diskspace. Call fud a sufficent number of times, each > > time with a different name and eventually these files will consume all > > available space. Also some filesystems, like ext2/3, have performance > > problems with directories containing huge numbers of files. > > Of course they do. So don't go around opening the seen data for users > that don't exist! ;) > > -Rob > > -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- > Rob Siemborski * Andrew Systems Group * Cyert Hall 207 * 412-268-7456 > Research Systems Programmer * /usr/contributed Gatekeeper And no access to fud over the network - that would seem to for open a very simple DOS exploit. -psi
Re: Whose fault? vacation messages bounce to postmaster.
From: Robert Scussel <[EMAIL PROTECTED]> I don't see the Reply-To in the headers that you have posted. I would think that this is the cause of your bounces going back to your postmaster. Why doesn't it simply reply to the From: address, as would happen if one didn't have a Reply-to address? In any event, I added a reply-to address in squirrelmail, it didn't show up in the vacation message header. From: "Kevin P. Fleming" <[EMAIL PROTECTED]> You've indirectly answered your own question. Automated responses, like vacation responses, are always sent using a null sender, to avoid message loops. If the response was sent using the original recipient's address as the sender, where would the bounce be sent? If it was sent to the original recipient, that would trigger the vacation response again. The bounce would be from the local postmaster address, not from the original address that was bogus. Theoretically, one's vacation program should not respond to messages from postmaster, if set up correctly. In any event, again, why should it care if the sender is null, shouldn't it reply to the From: address anyway? Mark
Re: Cyrus over NFS with _one_ instance
On Mon, 11 Aug 2003, Ian G Batten wrote: > Sun if the first goes bang). Are there issues with Cyrus over NFS if > the running copy of Cyrus has an assurance that it's the only writer? Locking *must* work at all times (in your case, it needs not be network-aware, but still it needs to work for the local machines). Db3/db4 might need it. Cyrus also needs it since many cyrus subprocesses need to arbitrate access to the databases. -- "One disk to rule them all, One disk to find them. One disk to bring them all and in the darkness grind them. In the Land of Redmond where the shadows lie." -- The Silicon Valley Tarot Henrique Holschuh
Whose fault? vacation messages bounce to postmaster.
I am running cyrus/squirrelmail/sendmail. I have a vacation plugin for squirrelmail and set up vacation autoresponding. However, if vacation responds to a spam message that has a bogus email address, the bounced message that says that the vacation message can't be delivered to that bogus email address, goes to postmaster at our site, rather than the person who has vacation enabled. I don't know if this is a feature or a bug, and how to change it's behavior. I notice that thevacation autoresponse messages have a line at the top of message say that cyrus set sender to <>. Is this possible the reason for this behavior? Or is it a sendmail feature? Here's the header of a vacation response message. Thanks! - Mark X-Authentication-Warning: alcserv1.psfc.mit.edu: cyrus set sender to <> using -f Message-ID: <[EMAIL PROTECTED]> Date: Tue, 12 Aug 2003 09:21:16 -0400 X-Sieve: CMU Sieve 2.2 From: <[EMAIL PROTECTED]> To: <[EMAIL PROTECTED]> Subject: Re: test In-Reply-To: <[EMAIL PROTECTED]> Auto-Submitted: auto-replied (vacation) X-Virus-Scanned: Message: ok X-Spam-Level: 0 () IN_REP_TO,NO_REAL_NAME,X_AUTH_WARNING X-Scanned-By: MIMEDefang 2.31 (www . roaringpenguin . com / mimedefang)
Re: Sieve works, but file into can't find the directory.
Jon Mercer wrote:
OK, scratch this thread. Correct answer is:
fileinto "user/hostadmin/backup";
or even:
fileinto "user/hostadmin/backups";
Assuming this is hostadmin's script, then "backups" is the correct answer.
if that's what you called the folder. What's an 's' between friends?
Panic over. Bedtime.
Cheers,
Jon
Jon Mercer wrote:
Folks,
I've got a problem specifying the fileinto line in my sieve scripts.
I'm using:
unixhierarchysep: yes
altnamespace: yes
userprefix: user
sharedprefix: shared
in imapd.conf. Users have been created in cyradm with:
cm user.hostadmin
with subdirs created within Mozilla-Mail. The sieve script looks like
this:
require "fileinto";
if header :contains "Subject" "AMANDA" {
fileinto "user/hostadmin/backup";}
if header :contains "To" "[EMAIL PROTECTED]" {
fileinto "user/hostadmin/achilles";}
if header :contains "To" "[EMAIL PROTECTED]" {
fileinto "user/hostadmin/ajax";}
if header :contains "To" "[EMAIL PROTECTED]" {
fileinto "user/hostadmin/menelaus";}
the file into line has been through every permutation I can think of,
e.g.:
fileinto "INBOX.backup";
fileinto "user.hostadmin.backup";
fileinto "hostadmin.backup";
fileinto "backup";
fileinto "INBOX/backup";
fileinto "user/hostadmin/backup";
fileinto "hostadmin/backup"
Nothing seems to be catching the mails, and they end up in the inbox.
What am I doing wrong? As a side note, I've also tried addressing
mails to [EMAIL PROTECTED], and this isn't working either.
'Nuff headbanging for now, any help gratefully received.
Cheers,
Jon
--
Kenneth Murchison Oceana Matrix Ltd.
Software Engineer 21 Princeton Place
716-662-8973 x26 Orchard Park, NY 14127
--PGP Public Key--http://www.oceana.com/~ken/ksm.pgp
Re: Whose fault? vacation messages bounce to postmaster.
I don't see the Reply-To in the headers that you have posted. I would think that this is the cause of your bounces going back to your postmaster. I would suspect that it would be squirrelmail causing the problem, as I have seen posts that report that if it isn't set, then squirrelmail will set it to the default configuration option. HTH, B mark london wrote: I am running cyrus/squirrelmail/sendmail. I have a vacation plugin for squirrelmail and set up vacation autoresponding. However, if vacation responds to a spam message that has a bogus email address, the bounced message that says that the vacation message can't be delivered to that bogus email address, goes to postmaster at our site, rather than the person who has vacation enabled. I don't know if this is a feature or a bug, and how to change it's behavior. I notice that thevacation autoresponse messages have a line at the top of message say that cyrus set sender to <>. Is this possible the reason for this behavior? Or is it a sendmail feature? Here's the header of a vacation response message. Thanks! - Mark X-Authentication-Warning: alcserv1.psfc.mit.edu: cyrus set sender to <> using -f Message-ID: <[EMAIL PROTECTED]> Date: Tue, 12 Aug 2003 09:21:16 -0400 X-Sieve: CMU Sieve 2.2 From: <[EMAIL PROTECTED]> To: <[EMAIL PROTECTED]> Subject: Re: test In-Reply-To: <[EMAIL PROTECTED]> Auto-Submitted: auto-replied (vacation) X-Virus-Scanned: Message: ok X-Spam-Level: 0 () IN_REP_TO,NO_REAL_NAME,X_AUTH_WARNING X-Scanned-By: MIMEDefang 2.31 (www . roaringpenguin . com / mimedefang) -- Robert Scussel 1024D/BAF70959/0036 B19E 86CE 181D 0912 5FCC 92D8 1EA1 BAF7 0959
Re: creating users
>>> I'm a little confused on the process of creating users. First I "su >>> cyrus" then I typed the following commands, >>> cyradm localhost cm user.joebob quit exit (back as root) saslpasswd joebob >>> >>> Now does joebob require an account on my Linux box? Hi all, I have another related question out there; - may cyrus users be stored in the MySQL database directly, instead of the flat db3/4 files (mailboxes.db) ? - if not, would you know of a simple php class that can be used to create / delete mailboxes.db entries, handling potential simultaneous access to the flat files, and not requiring db support inside php ? I'm setting up cyrus along with postfix, and mail accounts are already defined in the MySQL database, so I would want to have a single DB, not one postfix users database, and a flat file separately for Cyrus. Best Regards, Olivier Kaloudoff
cyradm failure
I read the long thread (with no resolution) about this from Jan 2003. With our existing AND a brand new fresh/clean Perl 5.6.1 build for the sake of trying to get this to work, I cannot get it to work and cannot make any sense of what the problem is: - Solaris 7 - Cyrus IMAP 2.1.13 (working fine with 100 users - has been for months. Just can't do any administration yet!) - Cyrus IMAP 2.1.14 does the same thing. = cd /cyrus/src/perl-5.6.1 sh Configure -des -Dprefix=/cyrus -Uinstallusrbinperl make make install = % cd /cyrus/lib % ls libacap.alibdb-4.so@ libsasl2.so.2@ libcyrus.a libdb.a@ libsasl2.so.2.0.13* libdb-4.1.a libdb.so@perl5/ libdb-4.1.la libsasl2.la* sasl2/ libdb-4.1.so*libsasl2.so@ % nm libsasl2.so | grep sasl_client_init [521] | 25256| 372|FUNC |GLOB |0|10 |sasl_client_init % = % cd /cyrus/src/cyrus-imapd-2.1.13/perl/imap % SASL_LIB="-L/cyrus/lib -R/cyrus/lib" % SASL_INC=-I/cyrus/include % OPENSSL_LIB="-L/usr/rcf/lib -R/usr/rcf/lib" % OPENSSL_INC=-I/usr/rcf/include % perl Makefile.PL Checking if your kit is complete... Looks good Writing Makefile for Cyrus::IMAP % make ... [ Output deleted - success and proper -L, -R, and -I options used ] [ as set above! ] ... % make install ... [ Output deleted ] ... % /cyrus/bin/cyradm Can't load '/cyrus/lib/perl5/site_perl/5.6.1/sun4-solaris/auto/Cyrus/IMAP/IMAP.so' for module Cyrus::IMAP: ld.so.1: perl: fatal: relocation error: file /cyrus/lib/perl5/site_perl/5.6.1/sun4-solaris/auto/Cyrus/IMAP/IMAP.so: symbol sasl_client_init: referenced symbol not found at /cyrus/lib/perl5/5.6.1/sun4-solaris/DynaLoader.pm line 206. at /cyrus/lib/perl5/site_perl/5.6.1/sun4-solaris/Cyrus/IMAP/Admin.pm line 44 Compilation failed in require at /cyrus/lib/perl5/site_perl/5.6.1/sun4-solaris/Cyrus/IMAP/Admin.pm line 44. BEGIN failed--compilation aborted at /cyrus/lib/perl5/site_perl/5.6.1/sun4-solaris/Cyrus/IMAP/Admin.pm line 44. Compilation failed in require at /cyrus/lib/perl5/site_perl/5.6.1/sun4-solaris/Cyrus/IMAP/Shell.pm line 60. BEGIN failed--compilation aborted at /cyrus/lib/perl5/site_perl/5.6.1/sun4-solaris/Cyrus/IMAP/Shell.pm line 60. Compilation failed in require. BEGIN failed--compilation aborted.
Sieve works, but file into can't find the directory.
Folks,
I've got a problem specifying the fileinto line in my sieve scripts. I'm
using:
unixhierarchysep: yes
altnamespace: yes
userprefix: user
sharedprefix: shared
in imapd.conf. Users have been created in cyradm with:
cm user.hostadmin
with subdirs created within Mozilla-Mail. The sieve script looks like this:
require "fileinto";
if header :contains "Subject" "AMANDA" {
fileinto "user/hostadmin/backup";}
if header :contains "To" "[EMAIL PROTECTED]" {
fileinto "user/hostadmin/achilles";}
if header :contains "To" "[EMAIL PROTECTED]" {
fileinto "user/hostadmin/ajax";}
if header :contains "To" "[EMAIL PROTECTED]" {
fileinto "user/hostadmin/menelaus";}
the file into line has been through every permutation I can think of, e.g.:
fileinto "INBOX.backup";
fileinto "user.hostadmin.backup";
fileinto "hostadmin.backup";
fileinto "backup";
fileinto "INBOX/backup";
fileinto "user/hostadmin/backup";
fileinto "hostadmin/backup"
Nothing seems to be catching the mails, and they end up in the inbox.
What am I doing wrong? As a side note, I've also tried addressing mails
to [EMAIL PROTECTED], and this isn't working either.
'Nuff headbanging for now, any help gratefully received.
Cheers,
Jon
Need help, database corrupt
Hi, Cyrus 2.1 isn't working: Aug 14 11:23:13 router imapd[16597]: DBERROR: dbenv->open '/var/imap/db' failed: DB_RUNRECOVERY: Fatal error, run database recovery Aug 14 11:23:13 router imapd[16597]: Fatal error: can't initialize mboxlist environment Aug 14 11:24:23 router master[16581]: exiting on SIGTERM Aug 14 11:25:30 router reconstruct[16605]: DBERROR db3: region error detected; run recovery. Aug 14 11:25:30 router reconstruct[16605]: DBERROR: dbenv->open '/var/imap/db' failed: DB_RUNRECOVERY: Fatal error, run database recovery Aug 14 11:25:47 router reconstruct[16606]: DBERROR db3: region error detected; run recovery. Aug 14 11:25:47 router reconstruct[16606]: DBERROR: dbenv->open '/var/imap/db' failed: DB_RUNRECOVERY: Fatal error, run database recovery Aug 14 11:25:51 router reconstruct[16607]: DBERROR db3: region error detected; run recovery. Aug 14 11:25:51 router reconstruct[16607]: DBERROR: dbenv->open '/var/imap/db' failed: DB_RUNRECOVERY: Fatal error, run database recovery If i run as cyrus user: Irouter:~# su - cyrus [EMAIL PROTECTED]:~$ cd bin/ [EMAIL PROTECTED]:/usr/cyrus/bin$ ./reconstruct reconstruct: can't initialize mboxlist environment [EMAIL PROTECTED]:/usr/cyrus/bin$ What can i do? i did no updates. Cu denny
Re: Strange problem
On Tue, 12 Aug 2003, Bartosz Jozwiak wrote: > I have really strange problem. I am using Postfix, web-Cyradm, Cyrus > Imapa, SASL and Mysql. My e-mail boxes are 10MB and sometimes when a > biger mail arrives I cannot delete it with Horse/IMP. If you are using trash mailboxes, you'll need to complain to your client vendor that deleting a message shouldn't fail in the face of an out-of-quota mailbox (e.g. the client should ask "I can't move this message to the trash, delete permanently?"). -Rob -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- Rob Siemborski * Andrew Systems Group * Cyert Hall 207 * 412-268-7456 Research Systems Programmer * /usr/contributed Gatekeeper
Re: creating users
Christian Schulte wrote: Am Dienstag, 12. August 2003 02:58 schrieb Ken Murchison: Christian Schulte wrote: Am Montag, 11. August 2003 23:50 schrieb Norman Zhang: Hi, I'm a little confused on the process of creating users. First I "su cyrus" then I typed the following commands, cyradm localhost cm user.joebob quit exit (back as root) saslpasswd joebob Now does joebob require an account on my Linux box? That depends on how you configured SASL! If you use PAM with SASL yes otherwise you should not need to. Why would PAM require him to have local user accounts? I use PAM and don't have local accounts. You are right! After re-reading several parts of documentation I am pretty shure I totally misunderstood PAM ;-) It does not require him to use local accounts but enables the possibility to do so. Btw: I am using auxprop mysql. How do I have to create the shared secrets in mysql database for CRAM-MD5 and DIGEST-MD5 correctly (the values for the cmusaslsecret fields) ? For cmusaslsecretPLAIN everything works fine. I tried mysql MD5() function but I think the secrets cannot be produced by some mysql function and need special processing. Any pointers ? Rather than setting a separate secret for each mechanism, just set the userPassword secret. It will be used by every mechanism other than OTP, (that was one of the main reasons for getting away from per-mech secrets). -- Kenneth Murchison Oceana Matrix Ltd. Software Engineer 21 Princeton Place 716-662-8973 x26 Orchard Park, NY 14127 --PGP Public Key--http://www.oceana.com/~ken/ksm.pgp
Re: Virtual Domains and authentication
On Tue, 2003-08-12 at 11:47, Michael Fair wrote: > I've never used pam for virtual domains but the general idea > is that the user provides the fully qualified [EMAIL PROTECTED] > as their userid. SASL splits that up into a "realm" and a > user so in terms of SASL, creating the user looks something > like this: > saslpasswd -c -U domain.dom userid > > I really can't say how this will map to PAM since PAM really > doesn't support the concept of realms (as I understand it). > > -- Michael -- > Hi, With pam you can have IMAP accounts of the type: username.domain.tld so that mail sent to [EMAIL PROTECTED] is delivered to a cyrus account: username.domain.tld This needs the the option "unixhierarchysep: yes" is set in the /etc/imapd.conf. There are howto's showing how to achieve this: http://www.delouw.ch/linux/Postfix-Cyrus-Web-cyradm-HOWTO/html/index.html and http://home.teleport.ch/simix/RPMS/Cyrus-imapd/contrib/Postfix+cyrus+postgreSQL+web-cyradm.pdf In the new cyrus-2.2.x (now in beta) [EMAIL PROTECTED] will be allowed. Otherwise for now you can use the Perdition IMAP/POP proxy server(http://vergenet.net/linux/perdition/) or get a patch (I think), for the current stable 2.1.x series. > > "James Satterfield" <[EMAIL PROTECTED]> wrote in message > news:[EMAIL PROTECTED] > > I'm having a lot of difficulty wrapping my mind around authentication for > a > > virtual domain configuration. I would like to use PAM for auth, but I > don't see > > how to get around the '@' in the usernames. I see nothing in the docs that > > address how to setup auth for virtual domain support. > > Do any of you have any tips, howtos, advice, config examples? > > > > Thanks, > > James. > > > > > -- Andrew Koros Developer, Systems Services UUNET KENYA LTD 2nd Floor Parkside Towers Mombasa Road, Nairobi Tel: +254 2 69088618 Fax: +254 2 69088001 Email: [EMAIL PROTECTED] http://www.uunet.co.ke NOTICE: "The contents of this e-mail and any accompanying documentation is confidential and any use thereof, in whatever form, by anyone other than the addressee for whom it is intended, is strictly prohibited."
Re: Creating cyrus users and mail domains with Horde/IMP
On Wed, 13 Aug 2003, Norris Ward wrote: > Hi all, > I have successfully installed Cyrus for RedHat 7.3 via the rpms. > I am able to connect and create a user using the cm function. > How do I add the realm name for use with horde or, is this not necessary. > Below is my servers.php conf section for horde/imp: > > $servers['cyrus'] = array( > 'name' => 'Cyrus IMAP Server', > 'server' => 'localhost, > 'protocol' => 'imap/notls', > 'port' => 143, > 'folders' => 'WHAT DO I PUT HERE?', > 'namespace' => 'INBOX.', > 'maildomain' => MY DOMAIN NAME?, > 'realm' => WHAT IS MY REALM?', > 'preferred' => 'true' Here's what I use: $servers['test'] = array( 'name' => 'Test', 'server' => 'mail1.onid.oregonstate.edu', 'protocol' => 'imap/notls', 'port' => 143, 'folders' => '', 'namespace' => 'INBOX.', 'maildomain' => 'test.onid.oregonstate.edu', 'realm' => 'test.onid.oregonstate.edu', 'preferred' => '' ); The realm is not important if you are only hosting one domain in Horde. If you have more than one in your server list (we have 7 or 8), you use the realm to keep the users separate in the preferences storage of Horde. Like someone else said, this is pretty well documented in imp/config/servers.php, but if you wanted a working example, see above. Andy
cyrus imap hangs regularly
Hello, I've been using Cyrus IMAP since the begining of this year and so far its been working great. I am currently running 2.1.11 on RedHat 8.0 (with all the latest security updates). Lately I'm finding that the various cyrus processes go to "sleep" and never wake up. As a result sendmail is unable to deliver its mail to cyrus. This has happened 3 times in the last 48 hours. When this happens users can connect to pop but not IMAP, but again no new mail gets delivered from the MTA. If I restart Cyrus it now takes over an hour to fully start. It spends this time: converting db files, ctl_cyrusdb -r, and ctl_deliver -r. While these are running users cannot connect to imap or pop. The cyrus processes use 97% CPU on a pretty beefy machine for their entire duration. When it completes they can connect to both just fine and I can force sendmail to deliver all the mail no problem. However, this problem repeats just a few hours late. I've checked and all my partitions have plenty of space So I'm not really sure where to go with this. The following log lines seemed interesting: startup == Aug 12 20:38:39 igaming1 ctl_cyrusdb[7485]: recovering cyrus databases Aug 12 21:04:46 igaming1 ctl_cyrusdb[7485]: DBERROR db4: Recovery function for LSN 11 10312588 failed Aug 12 21:04:47 igaming1 ctl_cyrusdb[7485]: DBERROR: dbenv->open '/var/lib/imap/db' failed: No such process Aug 12 21:04:47 igaming1 ctl_cyrusdb[7485]: DBERROR: init /var/lib/imap/db: cyrusdb error Aug 12 21:04:48 igaming1 ctl_cyrusdb[7485]: done recovering cyrus databases Aug 12 21:04:48 igaming1 master[7483]: process 7485 exited, status 1 Aug 12 21:04:48 igaming1 master[8076]: about to exec /usr/libexec/cyrus/ctl_mboxlist Aug 12 21:04:48 igaming1 ctl_mboxlist[8076]: running mboxlist recovery Aug 12 21:04:48 igaming1 ctl_mboxlist[8076]: done running mboxlist recovery Aug 12 21:04:48 igaming1 master[8077]: about to exec /usr/libexec/cyrus/ctl_deliver Aug 12 21:30:10 igaming1 ctl_deliver[8077]: DBERROR db4: Recovery function for LSN 11 10312588 failed Aug 12 21:30:10 igaming1 ctl_deliver[8077]: DBERROR: dbenv->open '/var/lib/imap/db' failed: No such process Aug 12 21:30:10 igaming1 ctl_deliver[8077]: DBERROR: init /var/lib/imap/db: cyrusdb error Aug 12 21:30:10 igaming1 master[7483]: process 8077 exited, status 1 Aug 12 21:30:10 igaming1 master[7483]: ready for work Aug 12 21:30:10 igaming1 master[8356]: about to exec /usr/libexec/cyrus/ctl_mboxlist Aug 12 21:30:10 igaming1 ctl_mboxlist[8356]: checkpointing mboxlist Aug 12 21:30:10 igaming1 master[8357]: about to exec /usr/libexec/cyrus/imapd Aug 12 21:30:10 igaming1 imap[8357]: executed Aug 12 21:30:10 igaming1 master[8358]: about to exec /usr/libexec/cyrus/imapd Aug 12 21:30:10 igaming1 imaps[8358]: executed Aug 12 21:30:10 igaming1 master[8359]: about to exec /usr/libexec/cyrus/pop3d Aug 12 21:30:10 igaming1 imapd[8357]: skiplist: recovered /var/lib/imap/mailboxes.db (143 records, 14636 bytes) in 0 seconds After this it spawns imap / pop3 processes and starts showing connections from users. Are my cyrus db's corrupt? I've run reconstruct the mailboxes but this doesnt seem to change anything. I appreciate any suggestions, advice, etc. Thanks, Ilan Rabinovitch [EMAIL PROTECTED] E-MAIL The Southern California Llnux Expo: "Bringing businesses, academic institutions and the Linux community together in a way that no other conference does!" -- http://www.socallinuxexpo.org
Creating cyrus users and mail domains with Horde/IMP
Hi all, I have successfully installed Cyrus for RedHat 7.3 via the rpms. I am able to connect and create a user using the cm function. How do I add the realm name for use with horde or, is this not necessary. Below is my servers.php conf section for horde/imp: $servers['cyrus'] = array( 'name' => 'Cyrus IMAP Server', 'server' => 'localhost, 'protocol' => 'imap/notls', 'port' => 143, 'folders' => 'WHAT DO I PUT HERE?', 'namespace' => 'INBOX.', 'maildomain' => MY DOMAIN NAME?, 'realm' => WHAT IS MY REALM?', 'preferred' => 'true'
Re: Confused about auxprop/sasldb
Not everyone wants or needs the sources just to be able to read and learn about the software. I agree. Unfortunately, people who have the time, skills and desire to write "easy" end user documentation tend to be in much shorter supply than the folks who write the code. So while it's easy to talk about, it's not easy to say "OK, so let's do some introductory documentation." I must admit that I had a bit of trouble wrapping my head around authentication in cyrus, going as it did from imapd -> sasl -> saslauthd -> pam -> libpam_ldap . In particular, the fact that the PAM service name used by 'saslauthd -a pam' is not 'saslauthd' but the name of the service /using/ saslauthd took me longer to figure out than would be ideal. It took me ages to get Cyrus configured the first time I set it up, but no time at all the second time. It seems pretty simple now (I'm /not/ using murder!), but it was hard to get the authentication up and running the first time. As much as anything, this was because it was hard to trace what was going on via logs etc and figure out why, for example, it insisted on using sasl db files not saslauthd even when the appropriate imapd.conf option was set. Then again, I can't claim to have completely R'd TFM, and even if I had I wouldn't be complaining, just suggesting something to elaborate on. Craig Ringer
Re: Confused about auxprop/sasldb
I just want good documentation in a more accessible format. Everyone says "It comes with the sources in directory " Why can't the documentation be put up on the ldp in multiple formats? Not everyone wants or needs the sources just to be able to read and learn about the software. To be honest I hate to say anything as I am very grateful to the people who put in all the time and effort for such a great product. But, that does not mean it is easy for the rest of us to understand or use. There are a number of how-to's. They are great... but they do not address the real issue of understanding how the system is designed and structured. If I ever get a handle on this system I will be happy to write verbose documentation. Until then I will continue to muddle through individual man pages and scattered documentation on very specific features. Again, thanks to all who put in their time and effort. You are appreciated. Michael J Barber SUNY Plattsburgh CMS Computer Labs Technician 116D Feinberg Library Plattsburgh, NY 12901 518.564.2319 Quoting Ken Murchison <[EMAIL PROTECTED]>: ^^ ^^ ^^ Matthew Mallard wrote: ^^ ^^ > Hi, ^^ > ^^ > I'm trying to get cyrus-sasl-2.1.15 and cyrus-imapd-2.1.14 working using ^^ ^^ > the sasldb for authentication. I have managed to get authentication ^^ > working with saslauthd and pam, but I don't want to set the mail users ^^ > up with logins. ^^ ^^ You do NOT have to have user accounts in order to use PAM. Where are ^^ people getting this idea from? Is there something in the docs which ^^ leads people to this conclusion? ^^ ^^ -- ^^ Kenneth Murchison Oceana Matrix Ltd. ^^ Software Engineer 21 Princeton Place ^^ 716-662-8973 x26 Orchard Park, NY 14127 ^^ --PGP Public Key--http://www.oceana.com/~ken/ksm.pgp ^^ ^^ - - This site run by Horde http://www.horde.org Apache http://httpd.apache.org PHPhttp://www.php.net PostgreSQL http://www.postgresql.org MySQL http://www.mysql.com Postfixhttp://www.postfix.org Cyrus-Imap http://asg.web.cmu.edu/ and of course GNU Linux by RedHat http://www.redhat.com -
Re: Creating cyrus users and mail domains with Horde/IMP
This is all documented pretty well in the Horde docs, and there's an example in the config that works practically out of the box. The short answer: You need nothing in folders (as long as you define namespace, or vice versa) and you don't define a realm. Don't sweat them. Norris Ward wrote: Hi all, I have successfully installed Cyrus for RedHat 7.3 via the rpms. I am able to connect and create a user using the cm function. How do I add the realm name for use with horde or, is this not necessary. Below is my servers.php conf section for horde/imp: $servers['cyrus'] = array( 'name' => 'Cyrus IMAP Server', 'server' => 'localhost, 'protocol' => 'imap/notls', 'port' => 143, 'folders' => 'WHAT DO I PUT HERE?', 'namespace' => 'INBOX.', 'maildomain' => ‘MY DOMAIN NAME?’, 'realm' => ‘WHAT IS MY REALM?', 'preferred' => 'true'
Virtual domains and LDAP
I'm using a virtual domain setup based on usernames. So I have a domain uberduper.com and a user [EMAIL PROTECTED] I've got imapd setup to use saslauthd, and saslauthd setup to auth against LDAP. If I assign the uid of [EMAIL PROTECTED] in ldap, testsaslauthd can successfully auth, but imapd cannot. Looking at the logs suggests that imapd isn't passing the entire username [EMAIL PROTECTED] to saslauthd. Just "jsatter" Thanks, James. Config snippets: imapd.conf virtdomains: yes defaultdomain: uberduper.com configdirectory: /usr/local/var/imap partition-default: /usr/local/var/spool/imap allowplaintext: yes admins: root cyrus singleinstancestore: yes duplicatesuppression: yes sieveusehomedir: false sievedir: /usr/local/var/imap/sieve sendmail: /usr/sbin/sendmail sasl_pwcheck_method: saslauthd sasl_mech_list: plain lmtpsocket: /usr/local/var/imap/socket/lmtp idlesocket: /usr/local/var/imap/socket/idle notifysocket: /usr/local/var/imap/socket/notify saslauthd.conf ldap_servers: ldap://64.62.153.124/ ldap_bind_dn: cn=root,dc=uberduper,dc=com ldap_bind_pw: secret ldap_search_base: dc=uberduper,dc=com ldap_auth_method: custom auth.log Aug 4 20:44:36 knight saslauthd[48297]: do_auth : auth failure: [user=jsatter] [service=imap] [realm=] [mech=ldap] [reason=Unknown]
Strange problem
Hello everyone, I have really strange problem. I am using Postfix, web-Cyradm, Cyrus Imapa, SASL and Mysql. My e-mail boxes are 10MB and sometimes when a biger mail arrives I cannot delete it with Horse/IMP. Another starnge thing is: I can login in to IMAP but I canot login using POP3. I got this message from Outlook : There was a problem logging onto your mail server. Your Password was rejected. Account: 'mail.cq-link.sr (2)', Server: 'mail.cq-link.sr', Protocol: POP3, Server Response: '-ERR [IN-USE] Unable to lock maildrop', Port: 110, Secure(SSL): No, Server Error: 0x800CCC90, Error Number: 0x800CCC92 Other e-mail boxes are working ok, but sometimes as I said when bigger e-mail arrives it happens like that, not alwyas. What could be the problem. Regards, Bartosz
Re: cvt_cyrusdb_all
Norman Zhang wrote: Aug 6 13:42:11 mail cyrus-master[1987]: unable to bind socket for service lmtpunix: Address already in use Aug 6 13:42:11 mail cyrus-master[1987]: unable to create lmtpunix listener socket: Address already in use Someone else is already using the socket? Perhaps you have more than one lmtpunix line in /etc/cyrus.conf? My cyrus.conf only has one lmtpunix. After editing cyrus.conf, I did /etc/rc.d/init.d/cyrus-imapd restart. Is that enough? Am I missing something? Yes, that should be enough. In fact I'm using the same configuration (and the same rpm). Stop cyrus (service cyrus-imapd stop) and see with fuser who is using /var/spool/postfix/cyrus_socket/lmtp. Check also that all directories leading to /var/spool/postfix/cyrus_socket are accessible by cyrus (but I think that should give a different error message), IIRC they're not affected by the msec level, but I could be wrong. Bye -- Luca Olivetti Wetron Automatización S.A. http://www.wetron.es/ Tel. +34 93 5883004 Fax +34 93 5883007
Re: Problems with Outlook Express and cyrus.
Scott Dexter wrote: My bad, I am using cyrus-imapd-2.1.14 and cyrus-sasl-2.1.15. I realize pwcheck is deprecated, I am using exim as a MTA and it supports pwcheck, not saslauthd. That make no sense. Either Exim supports SASLv2 or it doesn't. Only the SASL library itself talks to the plaintext verifier (saslauthd, pwcheck, etc). On Wed, 2003-08-06 at 16:56, Ken Murchison wrote: Since you haven't mentioned which version of Cyrus IMAP or SASL, I'm going to assume IMAP v2.x and SASL v2.x. The pwcheck authentication method is deprecated in SASLv2. Unless you're authenticating against some home grown backend database, you should be using: sasl_pwcheck_method: saslauthd and run: saslauthd -a shadow Scott Dexter wrote: Sorry, I'm currently using pwcheck to auth for exim, so that or /etc/shadow would do the job. Scott On Wed, 2003-08-06 at 12:25, Ken Murchison wrote: It is definitely a SASL issue. You need to tell us how you plan to do plaintext authentication (sasldb2, PAM, /etc/shadow, MySQL, etc). Scott Dexter wrote: Could this possibly be a SASL issue (either in the way it was compiled or configured). On Tue, 2003-08-05 at 10:35, Scott Dexter wrote: I've recently set up a new cyrus IMAPd server and am having problems getting my Outlook Express client to work well with it. Keep seeing the following errors in the logs: Aug 1 11:50:29 mailsrv imapd[25883]: badlogin: host.domain [xxx.xxx.xxx.xxx] plaintext sdexter SASL(-4): no mechanism available: checkpass failed I am sure this has been covered before, but my digging in the archives didn't turn up much. Scott -- Kenneth Murchison Oceana Matrix Ltd. Software Engineer 21 Princeton Place 716-662-8973 x26 Orchard Park, NY 14127 --PGP Public Key--http://www.oceana.com/~ken/ksm.pgp
Force lowercase usernames via PAM/LDAP
Hi Cyrus IMAPd users, I've been having problems when I realized that there are authentication methods which are case insensitive regarding the username. Many people in non *X worlds are used the mix case in their username when looging on to different services. I realized that most current software packages support some option to lowercase usernames but my problem was that authenticating against PAM->LDAP simply succeeds whatever case was used for the username. I have then looked for a way to force PAM to only authenticate lowercase usernames but unfortunately I didn't find a simple solution and I didn't want to change the LDAP schema. Did I miss something here? I really didn't find a way to deny authentication with uppercase usernames. So, I decided to create my own PAM plugin which simply denies access when a username contains uppercase letters. I'm using the following config as my ldap-auth stack: #%PAM-1.0 # Authenticate against LDAP but only if username is lowercase authrequisite /lib/security/pam_deny_uc.so authrequired /lib/security/pam_ldap.so account required /lib/security/pam_ldap.so The plugin including rpms are here: http://home.teleport.ch/simix/RPMS/Pam_deny_uc/ The binary rpm is built on RedHat 7.2. To rebuild on other version do: rpmbuild -tb pam_deny_uc-0.1.tar.gz On RedHat 6.2, one must use: rpmbuild -tb --nodeps pam_deny_uc-0.1.tar.gz I hope this can help some people who have problems with mixed case usernames. Feedback is always welcome. Regards, Simon
Re: Confused about auxprop/sasldb
Matthew Mallard wrote: Hi, I'm trying to get cyrus-sasl-2.1.15 and cyrus-imapd-2.1.14 working using the sasldb for authentication. I have managed to get authentication working with saslauthd and pam, but I don't want to set the mail users up with logins. You do NOT have to have user accounts in order to use PAM. Where are people getting this idea from? Is there something in the docs which leads people to this conclusion? -- Kenneth Murchison Oceana Matrix Ltd. Software Engineer 21 Princeton Place 716-662-8973 x26 Orchard Park, NY 14127 --PGP Public Key--http://www.oceana.com/~ken/ksm.pgp
Re: Problems with Outlook Express and cyrus.
Sorry, I'm currently using pwcheck to auth for exim, so that or /etc/shadow would do the job. Scott On Wed, 2003-08-06 at 12:25, Ken Murchison wrote: > It is definitely a SASL issue. You need to tell us how you plan to do > plaintext authentication (sasldb2, PAM, /etc/shadow, MySQL, etc). > > > Scott Dexter wrote: > > > Could this possibly be a SASL issue (either in the way it was compiled > > or configured). > > > > On Tue, 2003-08-05 at 10:35, Scott Dexter wrote: > > > >>I've recently set up a new cyrus IMAPd server and am having problems > >>getting my Outlook Express client to work well with it. Keep seeing the > >>following errors in the logs: > >> > >>Aug 1 11:50:29 mailsrv imapd[25883]: badlogin: host.domain > >>[xxx.xxx.xxx.xxx] plaintext sdexter SASL(-4): no mechanism available: > >>checkpass failed > >> > >>I am sure this has been covered before, but my digging in the archives > >>didn't turn up much. > >> > >> > >>Scott -- Scott Dexter Jr Unix Administrator Ingenta, Inc. 111R Chestnut Street, Providence, RI 02903 T +1.401.331.2014 F +1.401.331.2015 E [EMAIL PROTECTED] AIM scottder517
Re: Virtual domains and LDAP
James Satterfield wrote: I'm using a virtual domain setup based on usernames. So I have a domain uberduper.com and a user [EMAIL PROTECTED] I've got imapd setup to use saslauthd, and saslauthd setup to auth against LDAP. If I assign the uid of [EMAIL PROTECTED] in ldap, testsaslauthd can successfully auth, but imapd cannot. Looking at the logs suggests that imapd isn't passing the entire username [EMAIL PROTECTED] to saslauthd. Just "jsatter" This is because you have specified uberduper.com as your defaultdomain, which causes Cyrus to strip the domain. defaultdomain is usually only used for backwards compatibility when upgrading an existing single domain installation. Read the virtdomains docs in the distro for details. Thanks, James. Config snippets: imapd.conf virtdomains: yes defaultdomain: uberduper.com configdirectory: /usr/local/var/imap partition-default: /usr/local/var/spool/imap allowplaintext: yes admins: root cyrus singleinstancestore: yes duplicatesuppression: yes sieveusehomedir: false sievedir: /usr/local/var/imap/sieve sendmail: /usr/sbin/sendmail sasl_pwcheck_method: saslauthd sasl_mech_list: plain lmtpsocket: /usr/local/var/imap/socket/lmtp idlesocket: /usr/local/var/imap/socket/idle notifysocket: /usr/local/var/imap/socket/notify saslauthd.conf ldap_servers: ldap://64.62.153.124/ ldap_bind_dn: cn=root,dc=uberduper,dc=com ldap_bind_pw: secret ldap_search_base: dc=uberduper,dc=com ldap_auth_method: custom auth.log Aug 4 20:44:36 knight saslauthd[48297]: do_auth : auth failure: [user=jsatter] [service=imap] [realm=] [mech=ldap] [reason=Unknown] -- Kenneth Murchison Oceana Matrix Ltd. Software Engineer 21 Princeton Place 716-662-8973 x26 Orchard Park, NY 14127 --PGP Public Key--http://www.oceana.com/~ken/ksm.pgp
creating users
Hi, I'm a little confused on the process of creating users. First I "su cyrus" then I typed the following commands, > cyradm localhost > cm user.joebob > quit > exit (back as root) > saslpasswd joebob Now does joebob require an account on my Linux box? Also if the email address for joebob is [EMAIL PROTECTED], do I use postfix alias mapping to pass mail to joebob? To allow users' to change password on their own do I need web-cyradm? Regards, Norman
Re: Virtual Domains and authentication
I've never used pam for virtual domains but the general idea is that the user provides the fully qualified [EMAIL PROTECTED] as their userid. SASL splits that up into a "realm" and a user so in terms of SASL, creating the user looks something like this: saslpasswd -c -U domain.dom userid I really can't say how this will map to PAM since PAM really doesn't support the concept of realms (as I understand it). -- Michael -- "James Satterfield" <[EMAIL PROTECTED]> wrote in message news:[EMAIL PROTECTED] > I'm having a lot of difficulty wrapping my mind around authentication for a > virtual domain configuration. I would like to use PAM for auth, but I don't see > how to get around the '@' in the usernames. I see nothing in the docs that > address how to setup auth for virtual domain support. > Do any of you have any tips, howtos, advice, config examples? > > Thanks, > James. > >
root mail account problem
Hello, I have serious (atleast they seem serious) problems with the root mail account. This is an extract from /var/log/maillog Aug 6 23:03:23 serenity postfix/qmgr[11284]: EDEC9BFFB9: from=<[EMAIL PROTECTED]>, size=802, nrcpt=1 (queue active) Aug 6 23:03:24 serenity postfix/qmgr[11284]: E3493BFF38: from=<[EMAIL PROTECTED]>, size=650, nrcpt=1 (queue active) Aug 6 23:03:24 serenity postfix/qmgr[11284]: EE0DFBFFBA: from=<[EMAIL PROTECTED]>, size=650, nrcpt=1 (queue active) Aug 6 23:03:24 serenity postfix/pipe[15269]: 9430BBFE57: to=<[EMAIL PROTECTED]>, orig_to=<[EMAIL PROTECTED]>, relay=cyrus, delay=40570, status=deferred (temporary failure) Aug 6 23:03:24 serenity postfix/qmgr[11284]: E9314C00F8: from=<[EMAIL PROTECTED]>, size=650, nrcpt=1 (queue active) Aug 6 23:03:24 serenity postfix/pipe[15250]: 91670BFD7C: to=<[EMAIL PROTECTED]>, orig_to=<[EMAIL PROTECTED]>, relay=cyrus, delay=46688, status=deferred (temporary failure) Aug 6 23:03:24 serenity postfix/qmgr[11284]: EE240C00A0: from=<[EMAIL PROTECTED]>, size=650, nrcpt=1 (queue active) Aug 6 23:03:24 serenity postfix/pipe[15294]: 9D806BFF33: to=<[EMAIL PROTECTED]>, orig_to=<[EMAIL PROTECTED]>, relay=cyrus, delay=34401, status=deferred (temporary failure) Aug 6 23:03:24 serenity postfix/pipe[15308]: 9AD22BFA91: to=<[EMAIL PROTECTED]>, orig_to=<[EMAIL PROTECTED]>, relay=cyrus, delay=67384, status=deferred (temporary failure) Aug 6 23:03:24 serenity postfix/pipe[14910]: 9EA72BFEF9: to=<[EMAIL PROTECTED]>, orig_to=<[EMAIL PROTECTED]>, relay=cyrus, delay=36012, status=deferred (temporary failure) Aug 6 23:03:27 serenity postfix/qmgr[11284]: E4400BFF99: from=<[EMAIL PROTECTED]>, size=650, nrcpt=1 (queue active) Aug 6 23:03:27 serenity postfix/qmgr[11284]: E92FCC0035: from=<[EMAIL PROTECTED]>, size=650, nrcpt=1 (queue active) Aug 6 23:03:27 serenity postfix/qmgr[11284]: E51A5C0098: from=<[EMAIL PROTECTED]>, size=802, nrcpt=1 (queue active) Aug 6 23:03:27 serenity postfix/pipe[15217]: 94396BFECD: to=<[EMAIL PROTECTED]>, orig_to=<[EMAIL PROTECTED]>, relay=cyrus, delay=37214, status=deferred (temporary failure) Aug 6 23:03:27 serenity postfix/pipe[15269]: 98403BFF04: to=<[EMAIL PROTECTED]>, orig_to=<[EMAIL PROTECTED]>, relay=cyrus, delay=35713, status=deferred (temporary failure) Aug 6 23:03:27 serenity postfix/qmgr[11284]: EE109BFF03: from=<[EMAIL PROTECTED]>, size=650, nrcpt=1 (queue active) Aug 6 23:03:27 serenity postfix/qmgr[11284]: E768DBFFD6: from=<[EMAIL PROTECTED]>, size=802, nrcpt=1 (queue active) I have no idea what this means. Before making an account (root.icarus.dyn.ee) with webcyradm the error , instead of temporary failure was about mailbox not being there. Or are those some old mails trapped in the pipe? Thank you all in advance.
Re: your account otikoamk
Dear Mail SPECIALISTS! I got the fifth virus from the list! there is good rool: not to open anything what is included to any mail until is's signed by the known key! Please follow this rool and not distribute viruses any more! Thank You in advance! 7 Август 2003 13:13, [EMAIL PROTECTED] написал: > Hello there, > > I would like to inform you about important information regarding your > email address. This email address will be expiring. > Please read attachment for details. > > --- > Best regards, Administrator > otiooamo
Global admin?
I have tried to setup the global admin for 2.2.1 beta according to the doc but I failed. I have also read the mailling list, just found a litte help... Platform: RH 9 Cyrus-imapd-2.2.1 beta Cyrus-2.1.15 Openldap 2.1.22-4 (rawhide) This is my extract of my config files: /etc/imapd.conf, ... admins: cyrus [EMAIL PROTECTED]defaultdomain: localdomain... All the user records are kept in openldap 2.1.22. If I type: " cyradm --user cyrus localhost " , the log tells me that it is [EMAIL PROTECTED]. I thought it is the global admin, but it doesn't since there are some domains which are added by [EMAIL PROTECTED], I even can't list the domain user mailbox,nothing in here using " cyrus " login. So I think the [EMAIL PROTECTED] user is just one of the domain user which is NOT global user. How to setup the global admin user? Seems that some users have the same problems. Anyone can help? Patrick
Problem with POP session
Hello This is my first post I have installed Cyrus IMAP 2.0.17-2rm on a Mandrake 9 machine with SASL 1.5.24-25. I tried adding users using 'cyradm' on console and they are added ok. I have setted the password using 'saslpasswd user' When I telnet localhost 110 to establish a pop session I get '-ERR invalid login' I don't know what could be the problem so any help would be really appreciated. Thanks
Re: Problems with Outlook Express and cyrus.
It is definitely a SASL issue. You need to tell us how you plan to do plaintext authentication (sasldb2, PAM, /etc/shadow, MySQL, etc). Scott Dexter wrote: Could this possibly be a SASL issue (either in the way it was compiled or configured). On Tue, 2003-08-05 at 10:35, Scott Dexter wrote: I've recently set up a new cyrus IMAPd server and am having problems getting my Outlook Express client to work well with it. Keep seeing the following errors in the logs: Aug 1 11:50:29 mailsrv imapd[25883]: badlogin: host.domain [xxx.xxx.xxx.xxx] plaintext sdexter SASL(-4): no mechanism available: checkpass failed I am sure this has been covered before, but my digging in the archives didn't turn up much. Scott -- Kenneth Murchison Oceana Matrix Ltd. Software Engineer 21 Princeton Place 716-662-8973 x26 Orchard Park, NY 14127 --PGP Public Key--http://www.oceana.com/~ken/ksm.pgp
creating users
Hi, To allow users' to change password on their own do I need web-cyradm? >>> >>> Also depends on how you configured SASL. Its mainly a question of >>> where you store your user accounts. If e.g. using auxprop mysql you >>> could easily use a squirrelmail plugin which knows how to update >>> your database. But that really depends on your setup! >> >> If I setup MySQL and squirrelmail, could the user be able to change >> his password on the fly (i.e., both passwd and saslpasswd)? > > What do you mean by 'both passwd and saslpasswd'? If you configure > cyrus-imapd to use PAM->MySQL, all passwords you need are stored in > MySQL. You don't even need saslpasswd. If you want other services on > your box to authenticate against MySQL, just configure them via PAM. > There is no need to store any normal user accounts in /etc/passwd. Thank you for your answers. They clarified lots bubbles in my head. I have compiled pam_mysql.so and placed it under /lib/security/. Now, to get pam_mysql authenticate for cyrus. Do I need to replace imap, pop, lmtp under /etc/pam.d as follows? From: auth required /lib/security/pam_stack.so service=system-auth accountrequired /lib/security/pam_stack.so service=system-auth To: auth optional /lib/security/pam_mysql.so user=cyrus passwd=password accountrequired /lib/security/pam_mysql.so user=cyrus passwd=password Regards, Norman
Re: Confused about auxprop/sasldb - answer
I did manage to find the answer to my question in SASL install docs i.e. I needed to set SASL_PATH before running master to tell SASL where the plugins were. I missed this when reading them earlier. Regards, Matthew On Wednesday, August 13, 2003, at 02:24 PM, Matthew Mallard wrote: Hi, I'm trying to get cyrus-sasl-2.1.15 and cyrus-imapd-2.1.14 working using the sasldb for authentication. I have managed to get authentication working with saslauthd and pam, but I don't want to set the mail users up with logins. The /etc/imapd.conf contains: sasl_pwcheck_method: auxprop sasl_auxprop_plugin: sasldb When I use the imtest application it says user cannot be found and the syslog reports: Aug 12 22:48:30 solaris imapd[19895]: [ID 702911 auth.debug] could not find auxprop plugin, was searching for 'sasldb' A listing of the sasldb file is -rw-r- 1 cyrusmail 24576 Aug 12 18:14 /etc/sasldb2 I am using Solaris 9 and have installed both imapd and sasl in '/opt/cyrus'. The directory /opt/cyrus/lib/sasl2/ contains: libanonymous.la libdigestmd5.so libplain.la libanonymous.so libdigestmd5.so.2 libplain.so libanonymous.so.2 libdigestmd5.so.2.0.15 libplain.so.2 libanonymous.so.2.0.15 libgssapiv2.a libplain.so.2.0.15 libcrammd5.la libgssapiv2.la libsasldb.la libcrammd5.so libotp.la libsasldb.so libcrammd5.so.2 libotp.so libsasldb.so.2 libcrammd5.so.2.0.15libotp.so.2 libsasldb.so.2.0.15 libdigestmd5.la libotp.so.2.0.15 which is where it'd be looking for plugins (and sasldb is there) - if I'm interpreting correctly. Any help would be appreciated. Regards, Matthew
Authenticating to IMAP with PLAIN or LOGIN over non-tls/ssl connections
Hi, I am using cyrus-imapd 2.1.2 BETA and cyrus-sasl-2.1.15. I'm wondering if there is a configurable way of allowing plaintext imap authentications over a non-encrypted link. I have set 'sasl_minimum_laer: 0' in imapd.conf which I thought would do it, but this doesn't seem to help. When I connect via IMAPS I can use PLAIN and LOGIN authentications, but these are denied for unencrypted imap connections. Thanks Roland
Re: root mailboxes and aliasing (was: Re: cvt_cyrusdb_all)
> Simon Matter wrote: > > root should not have a mailbox. >>> I agree for normal systems. However, in certain situations it may be useful to have a 'root' mailbox. If you have >>> local_transport = lmtp:unix:/var/lib/imap/socket/lmtp >>> in /etc/postfix/main.cf to make single instance store work as expected, the aliases file has no effect and postfix will deliver syslog messages to root. One can then grant access to this box for other users via Cyrus. >>> >>> If you use >>> >>> mailbox_transport = lmtp:unix:/var/lib/imap/socket/lmtp >>> >>> instead, aliases seem to work fine (so root can be aliased as usual). >>> Does this approach disable single instance store?? We use Postfix >>> 2.0.11-2 RPMs on Red Hat 8.0 here this way. >> >> That's what I'm normally using too. But I've been told that single >> instance store _only_ works when using local_transport. > > May I forward this question to the postfix mailing list? Oh yes! There is still great confusion about it. I have read the postfix README's again but still am not sure what's true. Seems that there was a change with 2.0.x but maybe it was only the docs. Simon > > Regards, > Norman >
Re: FUD, fud-client
On Thu, 14 Aug 2003, Per Steinar Iversen wrote: > And no access to fud over the network - that would seem to for open a very > simple DOS exploit. Yeah, I see what you mean. I've fixed this problem in CVS, and I'll probably be pushing out a 2.1.15 shortly. -Rob -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- Rob Siemborski * Andrew Systems Group * Cyert Hall 207 * 412-268-7456 Research Systems Programmer * /usr/contributed Gatekeeper
Re: can't mupdate: already authenticated
--- Mark <[EMAIL PROTECTED]> wrote: > Hello, > > Over the past few months, I've setup a working config with > cyrus/murder/ldap. Two days ago, I tried to join an imap backend to > the config, and I'm not able to do it. The only difference that I > think there is, the new box is running OpenBSD-current (switched to > ELF, w^x protection, etc.), while all other boxes are running OpenBSD > 3.3. The error I'm getting is, in authlog, on imapd backend: > No worthy mechs found > > and in imaplog, on imapd backend: > ctl_mboxlist[23351]: authentication to remote mupdate server failed: > already authenticated > > and in imaplog, on mupdate master: > accepted connection > > This is when I do for example, ./ctl_mboxlist -m on new backend. I forgot to change lib/dlopen.c, taken from OpenBSD ports of SASL. Thanks a lot to the person who did OpenBSD SASL port, Jakob, I followed the port to build SASL that fits my needs. When building SASL, these things are needed, among others, check the port (lines are broken): cp configure configure.orig perl -p -e 's/LIBS="-lresolv\s*\$LIBS"/#LIBS="-lresolv \$LIBS"/g' < configure.orig > configure cd saslauthd cp configure configure.orig perl -p -e 's/LIBS="-lresolv\s*\$LIBS"/#LIBS="-lresolv \$LIBS"/g' < configure.orig > configure cd .. cd lib cp dlopen.c dlopen.c.orig perl -p -e 's/defined\(__OpenBSD__\)/(defined(__OpenBSD__) && !defined(__ELF__))/' < dlopen.c.orig > dlopen.c Also, use GNU libtool, after doing configure. For cyrus-cvs, on OpenBSD ELF, configure is broken. Ugly hack: cp configure configure.orig perl -pe 's/ac_cv_lib_wrap_request_init=no/ac_cv_lib_wrap_request_init=yes/' < configure.orig > configure And use GNU make to build. These combinations also fix cyrus-imapd on openbsd-sparc64. Mark __ Do you Yahoo!? Yahoo! SiteBuilder - Free, easy-to-use web site design software http://sitebuilder.yahoo.com
Re: Could not complete request over quota errors
Hi Earl,
Not sure if our messages crossed, so I repeat some below if I was not clear
before.
The key advantage to my hack is that quota behaviour is the same as normal except
for one key exception, users can copy to Trash when over quota.They can not
append or copy to other mailboxes or append to Trash and deliveries to the mailbox
will be deferred, just as with normal quota behavior.
They can maliciously use up an infinite amount of space by copying repeatedly from
other mailboxes to Trash, but they can not use the mailbox normally since no new
mail is delivered until the over quota problem is rectified.For some people
this may be an acceptable security risk if they use another mechanism to identify
mailboxes significantly overquota (we use a cron script for this.)
Hope this clarifies,
John Wade
Earl R Shannon wrote:
> Hello,
>
> How does this change affect quota management? The answer
> to that question would help answer whether or not it has
> the same effect as setting an infinite quota on a trash
> folder.
>
> Which, if you have quotas set for users, would be a bad
> idea. If my inbox has 100 MB of quota but my Trash folder
> has no quota ( infinite ) then once I hit 100 MB in my inbox
> I can simply store messages in my Trash folder. Nothing says
> I have to removed them simply because they are in the Trash
> folder. So why have quotas at all in such a case? The only
> remedy I see here is for a periodic job that removes all
> the messages in Trash folders. Something I would hesitate
> to do. In my mind the user must be responsible and be the
> only person removing messages from their account.
>
> While trying to solve percieved problems with as little
> impact on users is a great idea, sometimes you just have
> to expect the user to know something. Trash cans in the
> real world fill up if they don't get emptied. Same
> thing happens on Windows and Mac desktops. Why would we
> want to change this in IMAP? User education, in my opinion,
> is the correct answer for this problem.
>
> Regards,
> Earl Shannon
>
> Christian Schulte wrote:
> > Am Mittwoch, 6. August 2003 01:12 schrieb John Wade:
> >
> >>diff index.c index.c.org
> >>1220,1228c1220
> >>< /* next lines changed to allow copy to Trash when usr over quota */
> >>< /* jwidera jwade 6/27/03 lets users "move to Trash" when over quota */
> >><
> >>< if ( strstr(name,".Trash") ) {
> >> >> >>< }
> >>< else {
> >> >>---
> >>
> >>
> >>>r = append_setup(&append_mailbox, name, MAILBOX_FORMAT_NORMAL,
> >>
> >>1230d1221
> >>< }
> >
> >
> > Does it support unixhierarchysep ? Can you tell me the difference to just
> > setting an infinite quota on the trash folder ? What do you win with it ? I
> > cannot see any improvement to what is possible with quota...
> >
> > If you would set an infinite quota on the trash folder, whouldn't that behave
> > exactly the same ?
> >
> > --Christian
> >
> >
Re: root mailboxes and aliasing (was: Re: cvt_cyrusdb_all)
Simon Matter wrote: root should not have a mailbox. >> >>> I agree for normal systems. However, in certain situations it may >>> be useful to have a 'root' mailbox. If you have >> >>> local_transport = lmtp:unix:/var/lib/imap/socket/lmtp >> >>> in /etc/postfix/main.cf to make single instance store work as >>> expected, the aliases file has no effect and postfix will deliver >>> syslog messages to root. One can then grant access to this box for >>> other users via Cyrus. >> >> If you use >> >> mailbox_transport = lmtp:unix:/var/lib/imap/socket/lmtp >> >> instead, aliases seem to work fine (so root can be aliased as usual). >> Does this approach disable single instance store?? We use Postfix >> 2.0.11-2 RPMs on Red Hat 8.0 here this way. > > That's what I'm normally using too. But I've been told that single > instance store _only_ works when using local_transport. May I forward this question to the postfix mailing list? Regards, Norman
Re: sieve: vacation & subject
Dmitry Alyabyev wrote: Ken Murchison wrote: Dmitry Alyabyev wrote: Hello In case of setting up vacation the return message has 'Subject: subject' if it specified like: vacation "vacation text here"; If I write: vacation :days 1 :subject "My subject here" "vacation text here"; The message goes with empty Subject header. What did I miss ? Cyrus 2.2 Update your source code (either via CVS or the 2.2.1 tarball) good point but I dont't like to patch entire cyrus can somebody provide a patch for this ? If you are going to run alpha/beta software, you *should* be prepared to upgrade at any time. http://bugzilla.andrew.cmu.edu/cgi-bin/cvsweb.cgi/src/sieve/Attic/bc_eval.c.diff?r1=1.1.4.9&r2=1.1.4.10&hideattic=0&f=u -- Kenneth Murchison Oceana Matrix Ltd. Software Engineer 21 Princeton Place 716-662-8973 x26 Orchard Park, NY 14127 --PGP Public Key--http://www.oceana.com/~ken/ksm.pgp
Re: Remote Client Access
> My users and aliases, with passwords, are stored in MySQL and retrieved by > PAM with SASL. I believe this is the an error with my PAM or SASL, but I > wanted to make sure I had configured the remote clients correctly. Thanks! > > David W Why not simply use SASL auxprop mysql bypassing PAM ? In my imapd.conf: sasl_pwcheck_method: auxprop sasl_auxprop_plugin: mysql sasl_allowanonymouslogin: no sasl_allowplaintext: yes sasl_mech_list: PLAIN LOGIN sasl_mysql_user: a user sasl_mysql_passwd: a password sasl_mysql_hostnames: localhost sasl_mysql_database: a database name sasl_mysql_statement: select password from users where login='%u' and domain='%r' --Christian
Re: Cyrus not accepting mail
Do you have lmtpd listening on said socket? Alec --On Sunday, August 10, 2003 22:34 -0400 Norris Ward <[EMAIL PROTECTED]> wrote: Hi all, I am trying to make Cyrus accept mail but, all on my mail is staying in my sendmail queue. Here is a message I noticed and cannot seem to resolve: 451 4.0.0 Could not connect to socket /usr/lib/cyrus-imapd/lmtpd: Connection refused p7s0.p7s Description: S/MIME cryptographic signature
Re: cvt_cyrusdb_all
Norman Zhang wrote: Luca Olivetti wrote: Norman Zhang wrote: Aug 6 13:42:11 mail cyrus-master[1987]: unable to bind socket for service lmtpunix: Address already in use Aug 6 13:42:11 mail cyrus-master[1987]: unable to create lmtpunix listener socket: Address already in use My cyrus.conf only has one lmtpunix. After editing cyrus.conf, I did /etc/rc.d/init.d/cyrus-imapd restart. Is that enough? Am I missing something? Yes, that should be enough. In fact I'm using the same configuration (and the same rpm). Stop cyrus (service cyrus-imapd stop) and see with fuser who is using /var/spool/postfix/cyrus_socket/lmtp. Sorry I only have /var/spool/postfix/cyrus_socket/ but not /var/spool/postfix/cyrus_socket/lmtp. Do I need to create that with touch? No! Or is it created by cyrus-imapd automatically? Yes, when it starts Check also that all directories leading to /var/spool/postfix/cyrus_socket are accessible by cyrus (but I think cyrus user can access /var/spool/postfix/cyrus_socket no problem. BTW, is cyradm compiled with cyrus-imapd or I need to download it from www.web-cyradm.org? Thank you for your patience. install cyrus-imapd-utils (and perl-Cyrus) Bye -- Luca Olivetti Wetron Automatización S.A. http://www.wetron.es/ Tel. +34 93 5883004 Fax +34 93 5883007
Mail server busy messages
I hope someone can help me.I've recently (since Monday)
deployed a postfix/cyrus/web-cyradm/amavis-newmail server for our company
(40 employees). Everything seems to be workingfine - except for one
thing. We've had quite a few times where people inthe office have been
unable to send emails because the server is claiming tobe too
busy.Could this be because I don't have enough postfix processes to
handle theload? I upped the MySQL max_connections from 100 to 300
after a heavyincoming spam 'attack' (which caused a lot of lookups) and
MySQL didn'tappear to recover after the spam session - all my destination
lookups keptfailing. No problems with MySQL after upping the
max_connection - howeverwe still seem to be getting some busy messages from
Postfix still.In master.cf I'm using the basic maxproc settings (which
appears to setdefault_process_limit = 100). I guess I could increase
the number ofprocesses for inet smtp to more than 100 - however, I don't
fully understandhow the other (lmtp/virtual/local + amavis stuff) interact -
and therefore Idon't know whether I need to increase any other limits when I
increase theinet smtp maxproc.So - any
suggestions?master.cf:##
==#
service type private unpriv chroot wakeup maxproc
command +
args#
(yes) (yes) (yes) (never) (50)#
==smtp
inet n
- n
- -
smtpdpickup fifo
n -
n 60
1 pickupcleanup unix
n -
n -
0
cleanupqmgr fifo
n -
n 300
1 nqmgrrewrite unix
- -
n -
-
trivial-rewritebounce unix
- -
n -
0 bouncedefer
unix -
- n
- 0
bounceflush unix
n -
n 1000?
0 flushproxymap unix
- -
n -
-
proxymapsmtp unix
- -
n -
- smtpshowq
unix n
- n
- -
showqerror unix
- -
n -
- errorlocal
unix -
n n
- -
localvirtual unix -
n n
- -
virtuallmtp unix
- -
n -
- lmtp## Interfaces to non-Postfix
software. Be sure to examine the manual# pages of the non-Postfix software
to find out what options it wants.# The Cyrus deliver program has changed
incompatibly.##
==#
service type private unpriv chroot wakeup maxproc
command +
args#
(yes) (yes) (yes) (never) (50)#
==maildrop
unix -
n n
- -
pipe flags=DRhu user=vmail argv=/usr/local/bin/maildrop -d
${recipient}cyrus unix
- n
n -
- pipe user=cyrus
argv=/usr/sbin/cyrdeliver -r ${sender} -m ${extension}
${user}uucp unix
- n
n -
- pipe flags=Fqhu user=uucp
argv=uux -r -n -z -a$sender -
$nexthop!rmail($recipient)ifmail unix
- n
n -
- pipe flags=F user=ftn
argv=/usr/lib/ifmail/ifmail -r $nexthop
($recipient)bsmtp unix
- n
n -
- pipe flags=Fq. user=bsmtp
argv=/usr/lib/bsmtp/bsmtp -d -t$nexthop
-f$sender$recipientscalemail-backend unix
- n
n -
2 pipe flags=R user=scalemail
argv=/usr/lib/scalemail/bin/scalemail-store${nexthop} ${user}
${extension}smtp-amavis unix
- -
n -
2 lmtp -o
smtp_data_done_timeout=1200 -o
disable_dns_lookups=yes127.0.0.1:10025 inet
n -
n -
- smtpd -o
content_filter= -o local_recipient_maps= -o
relay_recipient_maps= -o smtpd_restriction_classes= -o
smtpd_client_restrictions= -o smtpd_helo_restrictions= -o
smtpd_sender_restrictions= -o
smtpd_recipient_restrictions=permit_mynetworks,reject -o
mynetworks=127.0.0.0/8 -o
strict_rfc821_envelopes=yesThanksDavid
Hearn
Re: case sensitive
I had a look at Cyrus home page. I cannot find cyrus-sasl in version 2.2 I can only find cyrus-imapd 2.2 ver. and this is Beta version Curently I have cyrus-sasl and imapd in ver. 2.1.14 so should i only update imapd ? I have no idea right now. Regards, Bartosz - Original Message - From: "Igor Brezac" <[EMAIL PROTECTED]> To: "Bartosz Jozwiak" <[EMAIL PROTECTED]> Cc: <[EMAIL PROTECTED]> Sent: Friday, August 01, 2003 4:35 PM Subject: Re: case sensitive > > On Fri, 1 Aug 2003, Bartosz Jozwiak wrote: > > > So if I upgarde to cyrus 2.2 the username will not be case sensitive any > > more? > > It will appear case insensitive to the user. Cyrus will lowercases all > usernames before it proceeds. You need to make sure that all mailboxes > are lowercase in the mailstore and you will need to add 'username_tolower: > yes' to imapd.conf. > > > I am storing or apssword and username in database MySql. > > Still it will work? > > Yup. > > -Igor > > > > > Regards, > > Bartosz Jozwiak > > > > > > - Original Message - > > From: "Igor Brezac" <[EMAIL PROTECTED]> > > To: "Bartosz Jozwiak" <[EMAIL PROTECTED]> > > Cc: <[EMAIL PROTECTED]> > > Sent: Friday, August 01, 2003 3:38 PM > > Subject: Re: case sensitive > > > > > > > > > > You need to upgrade to cyrus 2.2 or make a patch. > > > > > > -Igor > > > > > > On Fri, 1 Aug 2003, Bartosz Jozwiak wrote: > > > > > > > Hello, > > > > > > > > Is it possible to somehow change Cyrus that your login name will not be > > case > > > > sensitive?? > > > > > > > > I am using Web-Cyradm, Cyrus SASL, Cyrus Imap and Mysql. > > > > > > > > > > > > Bartosz Jozwiak > > > > > > > > > > > > > > -- > > > Igor > > > > > > > > > -- > Igor >
Re: Problems with Outlook Express and cyrus.
Could this possibly be a SASL issue (either in the way it was compiled or configured). On Tue, 2003-08-05 at 10:35, Scott Dexter wrote: > I've recently set up a new cyrus IMAPd server and am having problems > getting my Outlook Express client to work well with it. Keep seeing the > following errors in the logs: > > Aug 1 11:50:29 mailsrv imapd[25883]: badlogin: host.domain > [xxx.xxx.xxx.xxx] plaintext sdexter SASL(-4): no mechanism available: > checkpass failed > > I am sure this has been covered before, but my digging in the archives > didn't turn up much. > > > Scott -- Scott Dexter
Cyrus over NFS with _one_ instance
It has always been my understanding that Cyrus isn't supported over NFS. Clearly, getting locking working for the scenario of two machines running Cyrus sharing /var/imap is Very Hard. However, what if I only want to use _one_ instance of Cyrus, with failover (essentially, one Sun sat in front of a NetApp|Auspex|OtherNFSBox, with failover to another Sun if the first goes bang). Are there issues with Cyrus over NFS if the running copy of Cyrus has an assurance that it's the only writer? ian
Re: cvt_cyrusdb_all
Norman Zhang wrote: I followed the step 2 in README.RPM and reboot the box, but I received the following errors in /var/log/mail/errors. May I ask how do I fix this? I'm using LM 9.1, so postfix runs chroot by default. Regards, Norman Aug 6 13:42:10 mail cyrus-master[1987]: setrlimit: Unable to set file descriptors limit to -1: Operation not permitted Aug 6 13:42:10 mail cyrus-master[1987]: retrying with 1024 (current max) This is cosmetic and harmless. There's a patch for it in the debian package but I didn't apply it. Aug 6 13:42:11 mail cyrus-master[1987]: unable to bind socket for service lmtpunix: Address already in use Aug 6 13:42:11 mail cyrus-master[1987]: unable to create lmtpunix listener socket: Address already in use Someone else is already using the socket? Perhaps you have more than one lmtpunix line in /etc/cyrus.conf? I'm using this configuration myself, so I'm pretty sure it works. Bye -- Luca Olivetti Wetron Automatización S.A. http://www.wetron.es/ Tel. +34 93 5883004 Fax +34 93 5883007
Re: cvt_cyrusdb_all
> Norman Zhang wrote: > >> Since I only have root on this box, I did exactly want you suggested >> above. >> I'm using the latest RPM for 9.1 from your site. The install seems to be >> smooth. Thanks. May I ask how can I recreate a root mailbox so mail can >> be >> delivered for root? > > root should not have a mailbox. I agree for normal systems. However, in certain situations it may be useful to have a 'root' mailbox. If you have local_transport = lmtp:unix:/var/lib/imap/socket/lmtp in /etc/postfix/main.cf to make single instance store work as expected, the aliases file has no effect and postfix will deliver syslog messages to root. One can then grant access to this box for other users via Cyrus. Simon > I suppose you are using postfix. > Create a mailbox for a regular user and edit /etc/aliases to point root > mail to that user (don't forget to run newaliases afterwards). > Follow the instructions in README.RPM on how to configure postfix to > deliver mail to cyrus. > > Bye > > -- > Luca Olivetti > Wetron Automatización S.A. http://www.wetron.es/ > Tel. +34 93 5883004 Fax +34 93 5883007 > >
cvt_cyrusdb_all
Hi, After installing cyrus-imapd, I was prompted to convert the /var/lib/imap/mailboxes.db. But I get the following error not being able convert db3 to flat. Would someone please tell me how can I fix this? Regards, Norman [EMAIL PROTECTED] root]# rpm -Uvh cyrus-imapd-2.1.13-1mdk.i586.rpm Preparing...###[100%] 1:cyrus-imapd ###[100%] This is the first time that this package is being installed but there's an existing /var/lib/imap/mailboxes.db file so it's not possible to know if the current configuration of the various cyrus databases corresponds to the compiled in options. Please BACK UP your configuration and spool directory and run the /usr/lib/cyrus-imapd/cvt_cyrusdb_all utility. Remember to assign a password to user cyrus in order to administer the server. [EMAIL PROTECTED] root]# /usr/lib/cyrus-imapd/cvt_cyrusdb_all chmod: changing permissions of `/var/lib/imap/tmp': Operation not permitted -bash: line 1: cd: /root: Permission denied file: Using regular magic file `/usr/share/cyrus-imapd/rpm/magic' Converting from /var/lib/imap/mailboxes.db (db3) to /var/lib/imap/mailboxes.db.flat (flat) fatal error: can't initialize old database ERROR: unable to convert /var/lib/imap/mailboxes.db from db3 to flat file: Using regular magic file `/usr/share/cyrus-imapd/rpm/magic'
Re: deleting an eMail but not able to delete the belonging folder
How can a User be able to delete an eMail but not be able to delete / move the belonging Folder? take off "c" from the folder's ACL
Re: cvt_cyrusdb_all
Luca Olivetti wrote:
>
>> I followed the step 2 in README.RPM and reboot the box, but I received
>> the following errors in /var/log/mail/errors. May I ask how do I fix
>> this? I'm using LM 9.1, so postfix runs chroot by default.
>>
>> Aug 6 13:42:10 mail cyrus-master[1987]: setrlimit: Unable to set file
>> descriptors limit to -1: Operation not permitted
>> Aug 6 13:42:10 mail cyrus-master[1987]: retrying with 1024 (current max)
>
> This is cosmetic and harmless. There's a patch for it in the debian
> package but I didn't apply it.
>
>> Aug 6 13:42:11 mail cyrus-master[1987]: unable to bind socket for
>> service lmtpunix: Address already in use
>> Aug 6 13:42:11 mail cyrus-master[1987]: unable to create lmtpunix
>> listener socket: Address already in use
>
> Someone else is already using the socket? Perhaps you have more than one
> lmtpunix line in /etc/cyrus.conf?
My cyrus.conf only has one lmtpunix. After editing cyrus.conf, I did
/etc/rc.d/init.d/cyrus-imapd restart. Is that enough? Am I missing
something?
Regards,
Norman
[EMAIL PROTECTED] root]# more /etc/cyrus.conf
# standard standalone server implementation
START {
# do not delete this entry!
recover cmd="ctl_cyrusdb -r"
# this is only necessary if using idled for IMAP IDLE
# idledcmd="idled"
}
# UNIX sockets start with a slash and are put into /var/lib/imap/sockets
SERVICES {
# add or remove based on preferences
imap cmd="imapd" listen="imap" prefork=5
imaps cmd="imapd -s" listen="imaps" prefork=1
pop3 cmd="pop3d" listen="pop3" prefork=3
pop3s cmd="pop3d -s" listen="pop3s" prefork=1
sieve cmd="timsieved" listen="sieve" prefork=0
# at least one LMTP is required for delivery
# lmtp cmd="lmtpd" listen="lmtp" prefork=0
# lmtpunix cmd="lmtpd" listen="/var/lib/imap/socket/lmtp" prefork=1
lmtpunix cmd="lmtpd" listen="/var/spool/postfix/cyrus_socket"
prefork=1
# this is only necessary if using notifications
# notify cmd="notifyd" listen="/var/lib/imap/socket/notify"
proto="udp" prefork=1
}
EVENTS {
# this is required
checkpointcmd="ctl_cyrusdb -c" period=30
# this is only necessary if using duplicate delivery suppression
delprune cmd="ctl_deliver -E 3" at=0400
# this is only necessary if caching TLS sessions
tlsprune cmd="tls_prune" at=0400
}
FYI: email with malicious attchmnt.
Hi, I know it's obvious to most subscribers that I am using an M$ email client. I've been receiving emails 'pretending' to be coming from '[EMAIL PROTECTED]' with a zipped attachment containing a windows binary file named 'message.html'. Anyone receiving such email here? here's part of its header: Received: (from [EMAIL PROTECTED]) by lists2.andrew.cmu.edu (8.12.9/8.12.0.Beta16) id h78DWB9C009162 for info-cyrus-list; Fri, 8 Aug 2003 09:32:11 -0400 Received: from mx2.andrew.cmu.edu (MX2.andrew.cmu.edu [128.2.10.112]) by lists2.andrew.cmu.edu (8.12.9/8.12.0.Beta16) with ESMTP id h78DWBBx009159 for <[EMAIL PROTECTED]>; Fri, 8 Aug 2003 09:32:11 -0400 Received: from localhost (bgp481418bgs.summit01.nj.comcast.net [68.37.162.173]) by mx2.andrew.cmu.edu (8.12.9/8.12.3.Beta2) with SMTP id h78DUqT7022420 for <[EMAIL PROTECTED]>; Fri, 8 Aug 2003 09:31:19 -0400 Date: Fri, 8 Aug 2003 09:30:52 -0400 Message-Id: <[EMAIL PROTECTED]> From: [EMAIL PROTECTED] 5044862D01BFE5B Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit 5044862D01BFE5B Content-Type: application/x-zip-compressed; name="message.zip" Content-Transfer-Encoding: base64 Content-Disposition: attachment; filename="message.zip" >-Original Message- >From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] >Sent: Friday, August 08, 2003 9:31 AM >To: Info-cyrus >Subject: your account shkouevo >Importance: High > > > >Hello there, > >I would like to inform you about important information regarding your >email address. This email address will be expiring. >Please read attachment for details. > >--- >Best regards, Administrator >shksuevu > cheers, erik
your account shkouevo
Hello there, I would like to inform you about important information regarding your email address. This email address will be expiring. Please read attachment for details. --- Best regards, Administrator shksuevu message.zip Description: Zip compressed data
root mailboxes and aliasing (was: Re: cvt_cyrusdb_all)
On 6 Aug 2003, Simon Matter writes: >> root should not have a mailbox. > I agree for normal systems. However, in certain situations it may > be useful to have a 'root' mailbox. If you have > local_transport = lmtp:unix:/var/lib/imap/socket/lmtp > in /etc/postfix/main.cf to make single instance store work as > expected, the aliases file has no effect and postfix will deliver > syslog messages to root. One can then grant access to this box for > other users via Cyrus. If you use mailbox_transport = lmtp:unix:/var/lib/imap/socket/lmtp instead, aliases seem to work fine (so root can be aliased as usual). Does this approach disable single instance store?? We use Postfix 2.0.11-2 RPMs on Red Hat 8.0 here this way. Jonathan -- Jonathan Marsden| Internet: [EMAIL PROTECTED] | Making electronic 1252 Judson Street | Phone: +1 (909) 795-3877 | communications work Redlands, CA 92374 | Fax: +1 (909) 795-0327 | reliably for Christian USA | http://www.xc.org/jonathan| missions worldwide
Re: your account otikoamk
Dear Mail SPECIALISTS! I got the fifth virus from the list! there is good rool: not to open anything what is included to any mail until is's signed by the known key! Please follow this rool and not distribute viruses any more! Thank You in advance! 7 Август 2003 13:13, [EMAIL PROTECTED] написал: > Hello there, > > I would like to inform you about important information regarding your > email address. This email address will be expiring. > Please read attachment for details. > > --- > Best regards, Administrator > otiooamo
Re: Replace IMAP with different version
> ??? Why downgrade? > > Also, are you sure you're not thinking of Cyrus SASL? A previous post of mine on this mailing list follows. The best I can figure SASL is working. I have been following a HOWTO that uses PHP code to graphically setup Cyrus IMAP, SASL, PAM, and MySQL for a mail server. I have everything else working. I simply can not access accounts in Cyrus IMAP. I get the same error. I am thinking therefore it is a version conflict. I have tried to setup an account directly through cyradm, but I can not figure out how to setup the password. I have configured and installed Cyrus IMAP 2.1.13 and SASL 2.1.10 and Postfix 2.0.13 on my SuSE8.1 system by following a HowTo. I have gotten everything to work okay, except that I can not access my IMAP accounts with a remote email client (Outlook express, Netscape, etc). By viewing the accounts I can see that the accounts are receiving mail and I can send mail by telnetting in to Postfix, so I know they are working. By viewing cyradm, I can see the accounts and the quotas are increasing. I just wanted to make sure I am not missing something obvious, before I really have to dig deep into debug process. I have mainly tested with OE, because that is what most people will use to connect. I have setup OE with the following: Incoming / Outgoing server: (internal IP Address) Username: (name of mailbox as shown in cyradm) Password: (as set with cyradm) Root Folder Path: ( / ) I can connect to my server, however, it will report the error "The server has rejected your name and password." In my mail log, relevant information error below is displayed: saslauthd [990]: DEBUG: auth_pam: pam_authenticate failed: User not known to the underlying authentication module saslauthd [990]: do_auth : auth failure: [user=hukok] [service=imap] [realm=] [mech=pam] My users and aliases, with passwords, are stored in MySQL and retrieved by PAM with SASL. I believe this is the an error with my PAM or SASL, but I wanted to make sure I had configured the remote clients correctly. Thanks! David W
Re: cvt_cyrusdb_all
Norman Zhang wrote: Since I only have root on this box, I did exactly want you suggested above. I'm using the latest RPM for 9.1 from your site. The install seems to be smooth. Thanks. May I ask how can I recreate a root mailbox so mail can be delivered for root? root should not have a mailbox. I suppose you are using postfix. Create a mailbox for a regular user and edit /etc/aliases to point root mail to that user (don't forget to run newaliases afterwards). Follow the instructions in README.RPM on how to configure postfix to deliver mail to cyrus. Bye -- Luca Olivetti Wetron Automatización S.A. http://www.wetron.es/ Tel. +34 93 5883004 Fax +34 93 5883007
your account otikoamk
Hello there, I would like to inform you about important information regarding your email address. This email address will be expiring. Please read attachment for details. --- Best regards, Administrator otiooamo message.zip Description: Zip compressed data
Re: Problems with Outlook Express and cyrus.
My bad, I am using cyrus-imapd-2.1.14 and cyrus-sasl-2.1.15. I realize pwcheck is deprecated, I am using exim as a MTA and it supports pwcheck, not saslauthd. Scott On Wed, 2003-08-06 at 16:56, Ken Murchison wrote: > Since you haven't mentioned which version of Cyrus IMAP or SASL, I'm > going to assume IMAP v2.x and SASL v2.x. The pwcheck authentication > method is deprecated in SASLv2. Unless you're authenticating against > some home grown backend database, you should be using: > > sasl_pwcheck_method: saslauthd > > and run: > > saslauthd -a shadow > > > Scott Dexter wrote: > > Sorry, I'm currently using pwcheck to auth for exim, so that or > > /etc/shadow would do the job. > > > > Scott > > > > On Wed, 2003-08-06 at 12:25, Ken Murchison wrote: > > > >>It is definitely a SASL issue. You need to tell us how you plan to do > >>plaintext authentication (sasldb2, PAM, /etc/shadow, MySQL, etc). > >> > >> > >>Scott Dexter wrote: > >> > >> > >>>Could this possibly be a SASL issue (either in the way it was compiled > >>>or configured). > >>> > >>>On Tue, 2003-08-05 at 10:35, Scott Dexter wrote: > >>> > >>> > I've recently set up a new cyrus IMAPd server and am having problems > getting my Outlook Express client to work well with it. Keep seeing the > following errors in the logs: > > Aug 1 11:50:29 mailsrv imapd[25883]: badlogin: host.domain > [xxx.xxx.xxx.xxx] plaintext sdexter SASL(-4): no mechanism available: > checkpass failed > > I am sure this has been covered before, but my digging in the archives > didn't turn up much. > > > Scott -- Scott Dexter Jr Unix Administrator Ingenta, Inc. 111R Chestnut Street, Providence, RI 02903 T +1.401.331.2014 F +1.401.331.2015 E [EMAIL PROTECTED] AIM scottder517
Re: FYI: email with malicious attchmnt.
Zitat von "Tapang, Roderick Eugenio (GXS)" <[EMAIL PROTECTED]>: > > Hi, > > I know it's obvious to most subscribers that I am using an M$ > email client. I've been receiving emails 'pretending' to be > coming from '[EMAIL PROTECTED]' with a zipped attachment > containing a windows binary file named 'message.html'. > > Anyone receiving such email here? If you are using M$ email clients you REALLY should get some virus scanner in front of it (it´s the WORM_MIMAIL.A btw.) Regards Andreas
