Re: Automatic Sieve Script Subscription

[Christian Kratzer]

Hi,

On Wed, 22 Aug 2007, Peter wrote:


Hello.

Where can i find the perl module Cyrus::SIEVE::managesieve for download ??


its a part of cyrus imap so you should already have it.

ps: please keep the list on the cc.

Greetings
Christian


/Peter



Thanks a lot!

I will try it.




Message du 21/08/07 12:12
De : Christian Kratzer [EMAIL PROTECTED]
A : [EMAIL PROTECTED] [EMAIL PROTECTED]
Copie à : info-cyrus info-cyrus@lists.andrew.cmu.edu
Objet : Re: Automatic Sieve Script Subscription

Hi,

On Tue, 21 Aug 2007, [EMAIL PROTECTED] wrote:


Hy all,


Do you know if there's a way for any mailboxes to subscribe
automaticaly to a sieve script at creation of the mailbox?

I would like for all users to transfert SPAM tagged subject to
a SPAM folders, or mailling list mail to mailling list folder
without having to explain all users to write it with avelsieve.

I tought Autosieve patch was able to do it but it only
creates folders if it doesn't exist.


we use a perl script to automatically create new accounts,
create and subscribe the Spam mailbox and also install and
activate a default sieve script.

We use following perl modules:

use Cyrus::IMAP::Admin;
use Cyrus::SIEVE::managesieve;
use IMAP::Admin;

IMAP::Admin required a patch to allow logging in with separate
authentication and authorisation rules for subscribing to the
newly created Spam mailbox.

Apart from that it was straight forward.

Greetings
Christian

--
Christian Kratzer  CK Software GmbH
Email:   [EMAIL PROTECTED]  Schwarzwaldstr. 31
Phone:   +49 7452 889 135  D-71131 Jettingen
Fax: +49 7452 889 136  HRB 245288, Amtsgericht Stuttgart
Web: http://www.cksoft.de/ Geschaeftsfuehrer: Christian
Kratzer






Cyrus Home Page: http://cyrusimap.web.cmu.edu/
Cyrus Wiki/FAQ: http://cyrusimap.web.cmu.edu/twiki
List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html






--
Christian Kratzer  CK Software GmbH
Email:   [EMAIL PROTECTED]  Schwarzwaldstr. 31
Phone:   +49 7452 889 135  D-71131 Jettingen
Fax: +49 7452 889 136  HRB 245288, Amtsgericht Stuttgart
Web: http://www.cksoft.de/ Geschaeftsfuehrer: Christian Kratzer
Cyrus Home Page: http://cyrusimap.web.cmu.edu/
Cyrus Wiki/FAQ: http://cyrusimap.web.cmu.edu/twiki
List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html

could not fetch new headers

[Philippe Trolliet]

hi,
i have a strange problem with the inbox of one user.
i´m using outlook 2000 as mail client. i created an imap connection to see
what happens.
the reason to test the account over imap was that the user had 2 passwords
with an ''-sign and could login with both of them over horde (just one is
allowed). but that´s another problem that will go to the horde list. to
exclude this problem i changed the password of the user to a password
without any special characters.
i created an imap-account in outlook and used an encrypted connection (port
993). this works for all my other accounts except for this special
user-account. when i try to check mail on this account i get the following
error message in outlook:

Could not fetch new headers in the inbox for account. An unknown error has
occured. Please save any existing work and restart the program.

i don´t know what the problem is. any other account works fine with these
settings.

regards
philippe


Cyrus Home Page: http://cyrusimap.web.cmu.edu/
Cyrus Wiki/FAQ: http://cyrusimap.web.cmu.edu/twiki
List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html

problem fetching new headers

[Philippe Trolliet]

hi,
i have a strange problem with the inbox of one user.
i´m using outlook 2000 as mail client. i created an imap connection to see
what happens.
the reason to test the account over imap was that the user had 2 passwords
with an ''-sign and could login with both of them over horde (just one is
allowed). but that´s another problem that will go to the horde list. to
exclude this problem i changed the password of the user to a password
without any special characters.
i created an imap-account in outlook and used an encrypted connection (port
993). this works for all my other accounts except for this special
user-account. when i try to check mail on this account i get the following
error message in outlook:

Could not fetch new headers in the inbox for account. An unknown error has
occured. Please save any existing work and restart the program.

i don´t know what the problem is. any other account works fine with these
settings.

regards
philippe


Cyrus Home Page: http://cyrusimap.web.cmu.edu/
Cyrus Wiki/FAQ: http://cyrusimap.web.cmu.edu/twiki
List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html

Problem connections cyrus

[Sera]

Sorry for my poor English:

I have problems with cyrus.
it's block 10-20 times a day, all days.
Don't crash, but suddenly don't accept any connections and the mua
display the message  the server reject the connection, or max number
of connections reached.

I'm used two hosts:
1- debian sarge with cyrus and postfix
2- debian etch with postfix

The version of cyrus is 2.1.18-1+sarge2

My cyrus.conf is it:

# Debian defaults for Cyrus IMAP server/cluster implementation
# see cyrus.conf(5) for more information
#
# All the tcp services are tcpd-wrapped. see hosts_access(5)
# $Id: cyrus.conf,v 1.16 2003/11/05 01:04:22 hmh Exp $

START {
# do not delete this entry!
recover cmd=/usr/sbin/ctl_cyrusdb -r

# this is only necessary if using idled for IMAP IDLE
# this is NOT to be enabled right now in Debian builds
#idled  cmd=idled

# this is useful on backend nodes of a Murder cluster
# it causes the backend to syncronize its mailbox list with
# the mupdate master upon startup
#mupdatepush   cmd=/usr/sbin/ctl_mboxlist -m

# this is recommended if using duplicate delivery suppression
delprunecmd=/usr/sbin/ctl_deliver -E 3
# this is recommended if caching TLS sessions
tlsprunecmd=/usr/sbin/tls_prune
}

# UNIX sockets start with a slash and are absolute paths
# you can use a maxchild=# to limit the maximum number of forks of a service
# you can use babysit=true and maxforkrate=# to keep tight tabs on the
service
# most services also accept -U (limit number of reuses) and -T (timeout)
SERVICES {
# --- Normal cyrus spool, or Murder backends ---
# add or remove based on preferences
imapcmd=imapd -U 30 listen=imap prefork=0
maxchild=100
imaps   cmd=imapd -s -U 30 listen=imaps prefork=0
maxchild=100
#pop3   cmd=pop3d -U 30 listen=pop3 prefork=0
maxchild=50
#pop3s  cmd=pop3d -s -U 30 listen=pop3s prefork=0
maxchild=50

# At least one form of LMTP is required for delivery
# (you must keep the Unix socket name in sync with imap.conf)
lmtpcmd=lmtpd listen=11.0.0.12:lmtp prefork=0
maxchild=20
lmtpunixcmd=lmtpd listen=/var/run/cyrus/socket/lmtp
prefork=0 maxchild=20
# --

# useful if you need to give users remote access to sieve
# by default, we limit this to localhost in Debian
sieve   cmd=timsieved listen=localhost:sieve
prefork=0 maxchild=100

# this one is needed for the notification services
notify  cmd=notifyd
listen=/var/run/cyrus/socket/notify proto=udp prefork=1

# --- Murder frontends -
# enable these and disable the matching services above,
# except for sieve (which deals automatically with Murder)

# mupdate database service - must prefork at least 1
# (mupdate slaves)
#mupdate   cmd=mupdate listen=3905 prefork=1
# (mupdate master, only one in the entire cluster)
#mupdate   cmd=mupdate -m listen=3905 prefork=1

# proxies that will connect to the backends
#imap   cmd=proxyd listen=imap prefork=0 maxchild=100
#imaps  cmd=proxyd -s listen=imaps prefork=0
maxchild=100
#pop3   cmd=pop3proxyd listen=pop3 prefork=0 maxchild=50
#pop3s  cmd=pop3proxyd -s listen=pop3s prefork=0
maxchild=50
#lmtp   cmd=lmtpproxyd listen=lmtp prefork=1 maxchild=20
# --
}

EVENTS {
# this is required
checkpoint  cmd=/usr/sbin/ctl_cyrusdb -c period=30

# this is only necessary if using duplicate delivery suppression
delprunecmd=/usr/sbin/ctl_deliver -E 3 at=0401

# this is only necessary if caching TLS sessions
tlsprunecmd=/usr/sbin/tls_prune at=0401

# para evitar squat failed en log
squattercmd=/usr/sbin/squatter -r * period=240
#squatter_1  cmd=/usr/bin/nice -n 19 /usr/sbin/squatter -s
-r user period=240
}




Any idea?
Thanks

Cyrus Home Page: http://cyrusimap.web.cmu.edu/
Cyrus Wiki/FAQ: http://cyrusimap.web.cmu.edu/twiki
List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html

Re: better techniques to identify and remove zero-day viruses from cyrus store sought

[Jorey Bump]

John Crawford wrote:

 Sieve is during delivery to the cyrus store though.
 As we have the capability to identify hazards to our
 users, I'd like to be able to exercise central
 strategies improve their quality of life. So I seek
 tools to leverage after detection to aid with
 removal or remediation.
 
 Maybe would be nice to have a just-in-time scan interface
 at the cyrus message level just as a message is being
 accessed. CPU processing is getting cheaper all the time.

Hmm, this is an interesting problem. At one extreme, you're changing the 
  mailstore or connection while the user is logged in, which could 
result in some confusion (and possibly trigger some client software 
issues). At the other extreme, you may have an account that hasn't been 
checked for weeks, so it's fine to remove malicious messages that have 
accumulated due to lack of detection before delivery. You also have to 
be careful not to remove messages that have been forwarded to your 
support address, as they will contain strings that may trigger detection.

To handle all cases safely, you'd probably want to script using 
Cyrus::IMAP::Shell, so all changes are performed via IMAP. You can do 
this safely with Cyrus because it supports concurrent R/W access. 
Instead of deleting these messages, you'll want to put them in a 
quarantine account so you can restore them in the case of false positives.

I'm still not sure I'd be comfortable doing this beneath the nose of a 
logged in user. I'd also hesitate to touch anything outside the INBOX 
(and any quarantine folders you provide), since it can be assumed that 
the message was moved due to user action. I'd probably test this for a 
long time only on accounts that aren't being checked regularly (this 
also has the benefit of reducing the size of abandoned accounts).

Have you found that the risks justify this effort? Are your ClamAV scans 
of the mailstore turning up anything? Are they serious threats?


Cyrus Home Page: http://cyrusimap.web.cmu.edu/
Cyrus Wiki/FAQ: http://cyrusimap.web.cmu.edu/twiki
List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html

Re: better techniques to identify and remove zero-day viruses from cyrus store sought

[Jorey Bump]

Jorey Bump wrote:

 Have you found that the risks justify this effort? Are your ClamAV scans 
 of the mailstore turning up anything? Are they serious threats?

I've just scanned a mailstore with ClamAV, and about 95% of the 'FOUND' 
infected files were false positives. Here there be dragons.

Cyrus Home Page: http://cyrusimap.web.cmu.edu/
Cyrus Wiki/FAQ: http://cyrusimap.web.cmu.edu/twiki
List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html

Re: Problem connections cyrus

[Andrew Morgan]

On Wed, 22 Aug 2007, Sera wrote:

 Sorry for my poor English:

 I have problems with cyrus.
 it's block 10-20 times a day, all days.
 Don't crash, but suddenly don't accept any connections and the mua
 display the message  the server reject the connection, or max number
 of connections reached.

 I'm used two hosts:
 1- debian sarge with cyrus and postfix
 2- debian etch with postfix

 The version of cyrus is 2.1.18-1+sarge2

 My cyrus.conf is it:

 # Debian defaults for Cyrus IMAP server/cluster implementation
 # see cyrus.conf(5) for more information
 #
 # All the tcp services are tcpd-wrapped. see hosts_access(5)
 # $Id: cyrus.conf,v 1.16 2003/11/05 01:04:22 hmh Exp $

 START {
# do not delete this entry!
recover cmd=/usr/sbin/ctl_cyrusdb -r

# this is only necessary if using idled for IMAP IDLE
# this is NOT to be enabled right now in Debian builds
#idled  cmd=idled

# this is useful on backend nodes of a Murder cluster
# it causes the backend to syncronize its mailbox list with
# the mupdate master upon startup
#mupdatepush   cmd=/usr/sbin/ctl_mboxlist -m

# this is recommended if using duplicate delivery suppression
delprunecmd=/usr/sbin/ctl_deliver -E 3
# this is recommended if caching TLS sessions
tlsprunecmd=/usr/sbin/tls_prune
 }

 # UNIX sockets start with a slash and are absolute paths
 # you can use a maxchild=# to limit the maximum number of forks of a service
 # you can use babysit=true and maxforkrate=# to keep tight tabs on the
 service
 # most services also accept -U (limit number of reuses) and -T (timeout)
 SERVICES {
# --- Normal cyrus spool, or Murder backends ---
# add or remove based on preferences
imapcmd=imapd -U 30 listen=imap prefork=0
 maxchild=100
imaps   cmd=imapd -s -U 30 listen=imaps prefork=0
 maxchild=100
#pop3   cmd=pop3d -U 30 listen=pop3 prefork=0
 maxchild=50
#pop3s  cmd=pop3d -s -U 30 listen=pop3s prefork=0
 maxchild=50

The maxchild settings in cyrus.conf above limit the maximum number of 
connections allowed for each service.  You might want to increase those 
numbers to match the number of connections you expect to receive.

Andy

Cyrus Home Page: http://cyrusimap.web.cmu.edu/
Cyrus Wiki/FAQ: http://cyrusimap.web.cmu.edu/twiki
List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html