Re: Specify saslauthd state directory to imapd in build

2018-07-01 Thread Alexander Dalloz

Am 02.07.2018 um 06:57 schrieb Alexander Dalloz:

Am 02.07.2018 um 03:39 schrieb Andrew Bernard:




Any assistance most appreciated.

Andrew


man 5 imapd.conf

sasl_option: 0
     Any SASL option can be set by preceding it with "sasl_". This file 
overrides the SASL configuration file.


And then see the documentation of saslauthd. Should ship with your 
version locally. Anyhow


https://blog.sys4.de/cyrus-sasl-saslauthd-man-page-en.html


Little correction, it is the options.html file you should consult:

https://www.sendmail.org/~ca/email/cyrus2/options.html


Alexander


Alexander




Cyrus Home Page: http://www.cyrusimap.org/
List Archives/Info: http://lists.andrew.cmu.edu/pipermail/info-cyrus/
To Unsubscribe:
https://lists.andrew.cmu.edu/mailman/listinfo/info-cyrus

Re: Specify saslauthd state directory to imapd in build

2018-07-01 Thread Alexander Dalloz

Am 02.07.2018 um 03:39 schrieb Andrew Bernard:

I am having trouble with getting imapd and saslauthd to work together on
Ubuntu 18.04, using the recent Cyrus imapd (3.0.7) and sasl (2.1.26)
releases. Using postfix (3.3.1), I have the saslauthd state directory in
/var/run/saslauthd (and also in the chroot'd postfix directory hierarchy).
For days I have had this error:

cyrus/imap[]: SASL cannot connect to saslauthd server: No such file or
directory

To come to the point, finally I ran strace on imapd and found it is trying
to open /var/state/saslauthd. I believe this is the default for saslauthd.

I am unable to decipher which configure options to build cyrus-imapd with
to change this directory name.

Any assistance most appreciated.

Andrew


man 5 imapd.conf

sasl_option: 0
Any SASL option can be set by preceding it with "sasl_". This file 
overrides the SASL configuration file.


And then see the documentation of saslauthd. Should ship with your 
version locally. Anyhow


https://blog.sys4.de/cyrus-sasl-saslauthd-man-page-en.html

Alexander





Cyrus Home Page: http://www.cyrusimap.org/
List Archives/Info: http://lists.andrew.cmu.edu/pipermail/info-cyrus/
To Unsubscribe:
https://lists.andrew.cmu.edu/mailman/listinfo/info-cyrus


Re: permission denied message

2017-06-26 Thread Alexander Dalloz

Am 26.06.2017 um 23:53 schrieb haider al-shook via Info-cyrus:

when i login through squirrelmail i get the error message in the left pane:
|
| ERROR: |
|
| ERROR: Could not complete request.
Query: CREATE "INBOX.Sent"
Reason Given: Permission denied
  |

  |

  |



on the home page i get the error message :
|
| ERROR: |
|
| ERROR: Could not complete request.
Query: SELECT "INBOX"
Reason Given: Mailbox does not exist
  |

  |

  |

according to squirrelmail expert the problem is in the cyrus softwaare how can 
i set permissions so that mailbox are automatically created
thanks




Please see the documentation about how to create a mailbox.

https://www.cyrusimap.org/imap/installing.html#send-a-test-email

Alexander


Cyrus Home Page: http://www.cyrusimap.org/
List Archives/Info: http://lists.andrew.cmu.edu/pipermail/info-cyrus/
To Unsubscribe:
https://lists.andrew.cmu.edu/mailman/listinfo/info-cyrus


How to switch on logging for smmapd?

2017-04-12 Thread Alexander Demin

Hello.

How to switch on logging for smmapd?
Setup: FreeBSD 11, cyrus-imapd 3.
=== imapd.conf ===
admins: cyrus
allowanonymouslogin: no
allowplaintext: yes
altnamespace: yes
annotation_db: skiplist
auditlog: 1
configdirectory: /data/imap
debug: 1
defaultpartition: default
imapidresponse: yes
imapmagicplus: 0
lmtp_downcase_rcpt: 1
lmtpsocket: /data/imap/socket/lmtp
mboxlist_db: skiplist
munge8bit: 0
partition-default: /data/spool/imap
postmaster: postmaster
rfc2046_strict: 0
sasl_auxprop_plugin: sasldb
sasl_log_level: 1
sasl_mech_list: plain cram-md5 digest-md5 login
sasl_pwcheck_method: auxprop
seenstate_db: skiplist
sendmail: /usr/sbin/sendmail
sievedir: /data/imap/sieve
subscription_db: flat
tls_server_ca_file: /data/imap/certs/imapserver.pem
tls_server_cert: /data/imap/certs/imapserver.pem
tls_server_key: /data/imap/certs/imapserver.pem
tls_session_timeout: 1440
unixhierarchysep: no
virtdomains: userid

In the /var/log/all.log i see only this:
Apr 12 13:00:35 mail master[91531]: about to exec 
/usr/local/cyrus/libexec/smmapd
Apr 12 13:00:38 mail master[4306]: process type:SERVICE name:smmapunix 
path:/usr/local/cyrus/libexec/smmapd age:516.065s pid:87452 exited normally


Help please.

And thanks for answers.

--
Demin Alexander / Network Administrator
Group of companies Spectrum / tel. (+7 495) 995-8999
Russia, Moscow, 125009, Strastnoy blvr. 8
Web: http://www.spectrum.ru/


Cyrus Home Page: http://www.cyrusimap.org/
List Archives/Info: http://lists.andrew.cmu.edu/pipermail/info-cyrus/
To Unsubscribe:
https://lists.andrew.cmu.edu/mailman/listinfo/info-cyrus


Re: FreeBSD 9.3 STABLE, cyrus-imapd 2.5.9, Listen queue overflow

2016-08-11 Thread Alexander Demin via Info-cyrus
1) Prefork = 0.  Maybe new connections are comming in too quickly for imapd to 
launch and take the connection?  Stampeding herd issue.

Hmmm... This parameter didn't change. Switch to 1?

2) Bad guys are beating you up trying to bruteforce passwords?

No DDoS, no bruteforce password.

3) Have all of the mailboxes been reconstructed? That can be a hugedisk
I/O load for a while, at least with 2.3.x to 2.4.x. I haven't done the
2.4 to 2.5 upgrade on my real server.

Yes, all mailboxes reconstructed.

4) How many mailboxes?

100

5) How many IMAPd processes?

150 (+/- 20) - This is average value during a the working day

6) Are you using Fail2Ban, or similar, to block the bad guys?  That
really helped the MySQL DB access load on my FreeBSD/Cyrus/MySQL/Postfix
mail server.

No

7) I use skiplist for all of my CyrusIMAPd DBs.  Did you convert your
berkley DBs to the new berkley DB version as part of the upgrade?

No, not all.
duplicate_db: berkeley-nosync
ptscache_db: berkeley
Convert db's? How? Prompt me please.

8) Watch activity with "top" and "systat -vm 1" when it happens.  Does
it show any I/O, CPU, or memory bottlenecks?

I will wait when freeze imapd process and provide it.
CPU - 2 cores Xeon.

9) UFS or ZFS?  I suspect UFS since you are upgrading from FreeBSD 7.
Probably no bearing on the issue.  I just want to cover all of the
variables.  My mail servers are using ZFS.

UFS, hardware raid (3ware)

10) Did you build the port or install the package?

After upgrade OS all packages reinstalled from the package.


11.08.2016 00:20, Scott Lambert via Info-cyrus пишет:
> Wild guesses,
>
> 1) Prefork = 0.  Maybe new connections are comming in too quickly for
>imapd to launch and take the connection?  Stampeding herd issue.
>
> 2) Bad guys are beating you up trying to bruteforce passwords?
>
> 3> Have all of the mailboxes been reconstructed?  That can be a huge
>disk I/O load for a while, at least with 2.3.x to 2.4.x.  I haven't
>done the 2.4 to 2.5 upgrade on my real server.
>
> How many mailboxes? 
>
> How many IMAPd processes?
>
> Are you using Fail2Ban, or similar, to block the bad guys?  That really
> helped the MySQL DB access load on my FreeBSD/Cyrus/MySQL/Postfix mail
> server.
>
> I use skiplist for all of my CyrusIMAPd DBs.  Did you convert your
> berkley DBs to the new berkley DB version as part of the upgrade?
>
> Watch activity with "top" and "systat -vm 1" when it happens.  Does it
> show any I/O, CPU, or memory bottlenecks?
>
> UFS or ZFS?  I suspect UFS since you are upgrading from FreeBSD 7.
> Probably no bearing on the issue.  I just want to cover all of the
> variables.  My mail servers are using ZFS.
>
> You may want to use truss to see what the hung processes are doing or
> waiting for.
>
> Did you build the port or install the package?
>
> Bad guys are the only thing that has given me performance problems with
> Cyrus.  My server may be less heavily used than yours.  I have less than
> 4000 mailboxes.  That seems very small on this list.
>
> On Wed, Aug 10, 2016 at 04:12:25PM +0300, Alexander Demin via Info-cyrus 
> wrote:
>> No ideas? :-(
>>
>> 09.08.2016 13:35, Alexander Demin via Info-cyrus ??:
>>> Hello.
>>>
>>> I have strange problem with cyrus-imapd 2.5.9, after upgrade my server
>>> OS from FreeBSD 7 to FreeBSD 9.3 STABLE and cyrus-imapd from 2.3.x to
>>> 2.5.9. All packages reinstalled after upgrade OS.
>>> A problem that, after a 2 or 4 or 7 days (differently) of normal work of
>>> service cyrus-imapd, he freeze. Users can't connect to mailboxes.
>>> In the dmesg log i see it - sonewconn: pcb 0xfe0101da7c40: Listen
>>> queue overflow: 49 already in queue awaiting acceptance (12 occurrences).
>>> And netstat -LAan show me it - fe0081a747a0 tcp4  49/0/32*.993.
>>> Why queue overflow, i'm not understand. I think that a problem in the
>>> process idled, because after stoped cyrus-imapd process
>>> ("/usr/local/etc/rc.d/imapd stop"), several processes of idled are
>>> visible in the list of processes (ps -ax).
>>> I run command "kiilall -9 idled" and "/usr/local/etc/rc.d/imapd start" -
>>> service normal work.
>>>
>>> Sorry about my english, my english is hard.
>>> Maybe someone help me.
>>>
>>> i have provided below detailed information about system and from logs
>>> (service cyrus-imapd freeze).
>>>
>>> System information:
>>> # uname -a
>>> FreeBSD mail.spectrum.ru 9.3-STABLE FreeBSD 9.3-STABLE #0: Sat Jul  2
>>> 17:48:04 MSK 2016
>>> old...@mail.spe

Re: FreeBSD 9.3 STABLE, cyrus-imapd 2.5.9, Listen queue overflow

2016-08-10 Thread Alexander Demin via Info-cyrus
No ideas? :-(

09.08.2016 13:35, Alexander Demin via Info-cyrus пишет:
> Hello.
>
> I have strange problem with cyrus-imapd 2.5.9, after upgrade my server
> OS from FreeBSD 7 to FreeBSD 9.3 STABLE and cyrus-imapd from 2.3.x to
> 2.5.9. All packages reinstalled after upgrade OS.
> A problem that, after a 2 or 4 or 7 days (differently) of normal work of
> service cyrus-imapd, he freeze. Users can't connect to mailboxes.
> In the dmesg log i see it - sonewconn: pcb 0xfe0101da7c40: Listen
> queue overflow: 49 already in queue awaiting acceptance (12 occurrences).
> And netstat -LAan show me it - fe0081a747a0 tcp4  49/0/32*.993.
> Why queue overflow, i'm not understand. I think that a problem in the
> process idled, because after stoped cyrus-imapd process
> ("/usr/local/etc/rc.d/imapd stop"), several processes of idled are
> visible in the list of processes (ps -ax).
> I run command "kiilall -9 idled" and "/usr/local/etc/rc.d/imapd start" -
> service normal work.
>
> Sorry about my english, my english is hard.
> Maybe someone help me.
>
> i have provided below detailed information about system and from logs
> (service cyrus-imapd freeze).
>
> System information:
> # uname -a
> FreeBSD mail.spectrum.ru 9.3-STABLE FreeBSD 9.3-STABLE #0: Sat Jul  2
> 17:48:04 MSK 2016
> old...@mail.spectrum.ru:/usr/obj/usr/src/sys/SRVKERNEL  amd64
>
> # pkg info | grep cyrus
> cyrus-imapd25-2.5.9The cyrus mail server, supporting POP3
> and IMAP4 protocols
> cyrus-sasl-2.1.26_12   RFC  SASL (Simple Authentication and
> Security Layer)
> cyrus-sasl-saslauthd-2.1.26_3  SASL authentication server for cyrus-sasl2
>
>
> Conf files
> # cat /usr/local/etc/cyrus.conf
> START {
> idled   cmd="idled"
> recover cmd="ctl_cyrusdb -r"
> #   syncclient  cmd="sync_client -r"
> }
>
> SERVICES {
> imapcmd="imapd" listen="imap" prefork=0
> imaps   cmd="imapd -s" listen="imaps" prefork=0
> pop3cmd="pop3d" listen="pop3" prefork=0
> pop3s   cmd="pop3d -s" listen="spop3" prefork=0
> sieve   cmd="timsieved" listen="sieve" prefork=0
> lmtpunixcmd="lmtpd" listen="/data/imap/socket/lmtp"
> prefork=0
> smmap   cmd="smmapd" listen="/data/imap/socket/smmap"
> prefork=1
> #   syncclient  cmd="sync_client -r" listen="csync" prefork=1
> }
>
> EVENTS {
> checkpoint  cmd="ctl_cyrusdb -c" period=30
> delprunecmd="cyr_expire -v -E 3" at=0400
> tlsprunecmd="tls_prune" at=0400
> squattercmd="squatter -i" at=0100
> }
>
> # cat /usr/local/etc/imapd.conf
> admins: cyrus
> allowanonymouslogin: no
> allowplaintext: yes
> altnamespace: yes
> annotation_db: skiplist
> configdirectory: /data/imap
> defaultpartition: default
> duplicate_db: berkeley-nosync
> imapidresponse: yes
> imapmagicplus: 0
> lmtp_downcase_rcpt: 1
> lmtpsocket: /data/imap/socket/lmtp
> mboxlist_db: skiplist
> munge8bit: 0
> partition-default: /data/spool/imap
> postmaster: postmaster
> ptscache_db: berkeley
> rfc2046_strict: 0
> sasl_auxprop_plugin: sasldb
> sasl_log_level: 1
> sasl_mech_list: plain cram-md5 digest-md5 login
> sasl_pwcheck_method: auxprop
> seenstate_db: skiplist
> sendmail: /usr/sbin/sendmail
> sievedir: /data/imap/sieve
> subscription_db: flat
> # sync_authname: cyrus
> # sync_batch_size: 0
> # sync_host: support.spectrum.ru
> # sync_log: 1
> # sync_password: pDkazwok
> # sync_repeat_interval: 5
> # sync_shutdown_file: /data/imap/socket/syncshutdown
> tls_server_ca_file: /etc/ssl/imapserver.pem
> tls_server_cert: /etc/ssl/imapserver.pem
> tls_server_key: /etc/ssl/imapserver.pem
> tls_session_timeout: 1440
> unixhierarchysep: no
> virtdomains: userid
>
>
> Information from logs:
> # netstat -LAan
> Current listen queue sizes (qlen/incqlen/maxqlen)
> TcpcbProto Listen Local Address
> fe01257a33d0 tcp4  0/0/32 *.4190
> fe0125e45b70 tcp4  0/0/32 *.995 
> fe00a4a38b70 tcp4  0/0/32 *.110 
> fe0081a747a0 tcp4  49/0/32*.993 
> fe00a434e000 tcp4  0/0/32 *.143 
> fe00a4f453d0 tcp4  0/0/10 *.587 
> fe0007ccd3d0 tcp4  0/0/10 *.465

FreeBSD 9.3 STABLE, cyrus-imapd 2.5.9, Listen queue overflow

2016-08-09 Thread Alexander Demin via Info-cyrus
pd)
 8739 ??  S0:00,10 imapd: imaps: 122.242.81.95.chtts.ru
[95.81.242.122] maria_...@spectrum.ru spectrum.ru!user.maria_leo Idle
(imapd)
 9151 ??  I0:00,74 sendmail: ./u791wDS0002114 tokamak.com.: user
open (sendmail)
10102 ??  I0:00,45 sendmail: ./u78KFCq4090625 worksheet.com.:
user open (sendmail)
10588 ??  S0:00,18 lmtpd
10591 ??  S0:00,35 lmtpd
11302 ??  S0:00,48 sendmail: ./u7927VRl002401 seashore.it.: user
open (sendmail)
11517 ??  I0:00,18 lmtpd
11928 ??  S0:00,12 lmtpd
12366 ??  I0:00,21 lmtpd
12675 ??  S0:00,12 lmtpd
12678 ??  S0:00,09 lmtpd
12736 ??  S0:00,12 lmtpd
12743 ??  S0:00,14 lmtpd
13004 ??  I0:00,32 sendmail: ./u796Wv7Q012877 wrestle.it.: user
open (sendmail)
13416 ??  S0:00,08 lmtpd
14824 ??  I0:00,06 lmtpd
14836 ??  S0:00,08 lmtpd
14839 ??  S0:00,04 lmtpd
15019 ??  S0:00,04 lmtpd
15247 ??  S0:00,15 sendmail: ./u796wTqn014657 paddy.com.: user
open (sendmail)
16311 ??  S0:03,14 sendmail: ./u78C5sIH092785 mx.tyrant.nl.:
user open (sendmail)
16386 ??  S0:00,02 lmtpd
16426 ??  S0:00,02 lmtpd
16777 ??  Is   0:00,01 sshd: oldman [priv] (sshd)
16792 ??  S0:00,02 sshd: oldman@pts/0 (sshd)
17123 ??  Is   0:00,00 sendmail: ./u797O60Z017123 mx1.ovh.net.:
client MAIL (sendmail)
17189 ??  I0:00,02 pop3d: pop3s: lomteva.spectrum.ru
[192.168.10.35] b...@spectrum.ru spectrum.ru!user.bron quit (pop3d)
17217 ??  S0:00,00 sendmail: startup with gw.spectrum.ru (sendmail)
17218 ??  S0:00,00 sendmail: startup with gw.spectrum.ru (sendmail)
17221 ??  S0:00,00 sendmail: startup with gw.spectrum.ru (sendmail)
22675 ??  S0:14,26 idled
27241 ??  I0:03,61 sendmail: ./u787dDRO092746 mx5.shield.it.:
user open (sendmail)
27832 ??  I0:03,15 sendmail: ./u78DVGB2026591 orthodontic.nl.:
user open (sendmail)
30412 ??  S0:03,50 idled
35660 ??  I0:03,00 sendmail: ./u78BGqXp063691 honorary.it.: user
open (sendmail)
38984 ??  I0:02,96 sendmail: ./u7881o7m007610
thie5ku9.dsgeneration.com.: user open (sendmail)
51486 ??  S0:02,96 sendmail: ./u78ELnda036841
mx.improvisation.nl.: user open (sendmail)
55309 ??  I0:03,34 sendmail: ./u786ZiGq081561 fade.com.: user
open (sendmail)
63109 ??  S0:02,93 sendmail: ./u78C1MQE090773 phenol.com.: user
open (sendmail)
64319 ??  Ss   1:31,31 sendmail: accepting connections (sendmail)
75315 ??  S0:02,77 sendmail: ./u78CbGYL005139 watchful.com.:
user open (sendmail)
75323 ??  I0:03,38 sendmail: ./u789KtsE068858
mail2.webmagic.com.: user open (sendmail)
79000 ??  I0:03,71 sendmail: ./u786jqCx082903 stripe.co.uk.:
user open (sendmail)
82489 ??  I0:02,66 sendmail: ./u78C5nN1092762 oriental.fr.: user
open (sendmail)
84533 ??  I0:02,50 sendmail: ./u78G53hI075498 watchful.com.:
user open (sendmail)
85974 ??  S0:02,48 sendmail: ./u78DjMcH032091 trouser.com.: user
open (sendmail)
87242 ??  I0:02,47 sendmail: ./u789ZtMW079941 verb.pl.: user
open (sendmail)
88171 ??  S0:02,47 sendmail: ./u78FxKqB073056 pariah.nl.: user
open (sendmail)
88623 ??  I0:02,18 sendmail: ./u78ELEVA036805 legacy.fr.: user
open (sendmail)
89459 ??  I0:02,45 sendmail: ./u78DUkUJ026398 sworn.co.uk.: user
open (sendmail)
90355 ??  I0:02,20 sendmail: ./u78BerOF079464 wound.co.uk.: user
open (sendmail)
91387 ??  S0:02,34 sendmail: ./u788fTOM035982 oasis.nl.: user
open (sendmail)
92258 ??  I0:03,21 sendmail: ./u7871Im0084978 drank.com.: user
open (sendmail)
92261 ??  I0:02,04 sendmail: ./u788iFWs037914
mail2.webmagic.com.: user open (sendmail)
92899 ??  S0:01,97 sendmail: ./u789Derq061773 pariah.nl.: user
open (sendmail)
94124 ??  I0:01,93 sendmail: ./u78ICf4K087539 hose.com.: user
open (sendmail)
94849 ??  I0:02,11 sendmail: ./u78FYYBQ063105 dress.nl.: user
open (sendmail)
95899 ??  I0:02,05 sendmail: ./u78GjGbQ083454 principle.nl.:
user open (sendmail)
96668 ??  I0:02,20 sendmail: ./u78K6XXa090406 weighty.com.: user
open (sendmail)
97861 ??  I0:01,71 sendmail: ./u78DUiwc026387 footman.com.: user
open (sendmail)
98348 ??  Ss   0:01,88 sendmail: ./u78NHG0i096242 howl.fr.: user
open (sendmail)
99247 ??  I0:01,84 sendmail: ./u78KQOc8090970 earthmove.com.:
user open (sendmail)
  754 v0- S0:03,81 /usr/local/sbin/3dm2
 1889 v0  Is+  0:00,00 /usr/libexec/getty Pc ttyv0
 1890 v1  Is+  0:00,00 /usr/libexec/getty Pc ttyv1
 1891 v2  Is+  0:00,00 /usr/libexec/getty Pc ttyv2
 1892 v3  Is+  0:00,00 /usr/libexec/getty Pc ttyv3
 1893 v4  Is+  0:00,00 /usr/libexec/getty Pc ttyv4
 1894 v5  Is+  0:00,00 /usr/libexec/getty Pc ttyv5
 1895 v6  Is+  0:00,00 /usr/libexec/getty Pc ttyv6
 1896 v7  Is+  0:00,00 /usr/libexec/getty Pc ttyv7
16793  0  

Re: imapd 2.5.7-8 with virtual users and sendmail config

2016-06-10 Thread Alexander Dalloz via Info-cyrus

Am 10.06.2016 um 17:08 schrieb Mogens Melander via Info-cyrus:

Ok, so I finally got sendmail to preserve domain in the mail address. It's
a bunch
of m4 macros that I have no idea about what they are there for.


Hi Mogen,

sorry to see that you are still fighting with this setup task.


For some reason, afte the domain part started to work, the aliases and
virtusertable
are not being used.


Your setup looks way overcomplicated and even wrong. Please see my 
comments below.



I'm pretty sure it has to do with some of those cryptic macros.

If anyone have any ideas about how to get alias and virtusertable into the
loop,
then here's what .mc file looks like:

divert(-1)dnl
dnl
dnl $Id: cyrusv2.mc,v 1.5 2008/04/04 12:46:34 murch Exp $
dnl
divert(0)dnl
include(`../m4/cf.m4')dnl
VERSIONID(`@(#)cyrusv2.mc fumlersoft ver 1.0 2016-06-03')dnl
OSTYPE(linux)dnl
DOMAIN(generic)dnl

FEATURE(`use_cw_file')dnl/etc/mail/local-host-names
FEATURE(`access_db', `hash -T /etc/mail/access')dnl
FEATURE(`virtusertable', `hash /etc/mail/virtusertable')dnl


Where is your aliases_db definition?


dnl define(`confBIND_OPTS', `-DNSRCH -DEFNAMES')dnl
dnl define(`confTO_IDENT',`0')
dnl define(`confDOMAIN_NAME', `fumlersoft.dk')dnl
define(`CYRUSV2_MAILER_FLAGS',`Ah5@/:|w')dnl


Why do you define cyrusv2 mailer flags? The right flags are set in the 
cyrusv2.m4.



define(`confLOCAL_MAILER',`cyrusv2')dnl

dnl MAILER(`local')dnl
MAILER(`cyrusv2d')dnl


You define a cyrusv2d mailer but not cyrusv2. Below in 
MAILER_DEFINITIONS cyrusv2 is defined.



MAILER(`smtp')dnl

MAILER_DEFINITIONS
dnl Mcyrusv2,P=[IPC],E=\r\n,
dnl S=EnvFromSMTP/HdrFromSMTP,R=EnvToSMTP/HdrFromSMTP,
dnl A=FILE /var/imap/socket/lmtp

Mcyrusv2,P=[IPC],F=lsDFMnqA@/:|SmXz,E=\r\n,
S=EnvFromSMTP/HdrFromSMTP,R=EnvToSMTP/HdrFromSMTP,
T=DNS/RFC822/SMTP,
A=FILE /var/imap/socket/lmtp

LOCAL_RULE_0
dnl Rbb + $+ < @ $=w . >$#cyrusv2 $: + $1

dnl R$=N$: $#local $: $1
dnl R$=N < @ $=w . >$: $#local $: $1
dnl Rbb + $+ < @ $=w . >$#cyrusv2 $: $1

R$=L < @ $=w . >$#cyrusv2 $: @ $1 < @ $2 . >
R$+ < @ $=w . >$#cyrusv2 $: $1 < @ $2 . >
Rbb + $+ < @ $=w . >$#cyrusv2 $: + $1


Why these rules? Do you fully understand what they are doing? Such rules 
are not necessary if you implement the cyrusv2 mailer properly. Keep it 
simple.




Testing sendmail address rules should return mog...@example.com but does
not.

mail# echo "3,0 dom...@example.com" | sendmail -bt
ADDRESS TEST MODE (ruleset 3 NOT automatically invoked)
Enter  

canonify   input: domain @ example . com

Canonify2  input: domain < @ example . com >
Canonify2returns: domain < @ example . com . >
canonify returns: domain < @ example . com . >
parse  input: domain < @ example . com . >
Parse0 input: domain < @ example . com . >
Parse0   returns: domain < @ example . com . >
ParseLocal     input: domain < @ example . com . >
ParseLocal   returns: $# cyrusv2 $: domain < @ example . com . >
parsereturns: $# cyrusv2 $: domain < @ example . com . >


Regards
Mogens


Regards

Alexander




Cyrus Home Page: http://www.cyrusimap.org/
List Archives/Info: http://lists.andrew.cmu.edu/pipermail/info-cyrus/
To Unsubscribe:
https://lists.andrew.cmu.edu/mailman/listinfo/info-cyrus


Re: imapd 2.5.7-8 with virtual domains and sendmail config

2016-06-02 Thread Alexander Dalloz via Info-cyrus

Am 02.06.2016 um 18:18 schrieb Mogens Melander:

Thanks Alexander

I have been all over the install-virtualdomains docs, plus a lot of
deprecated info found on Google,
not getting closer to a solution.

My confic and log-files:

--- cyrusv2.mc


divert(-1)dnl
#
# $Id: cyrusv2.mc,v 1.5 2008/04/04 12:46:34 murch Exp $
#
divert(0)dnl
include(`../m4/cf.m4')dnl
VERSIONID(`@(#)cyrusv2.mc fumlersoft ver 1.0 2016-06-03')dnl
OSTYPE(linux)dnl
DOMAIN(generic)dnl

FEATURE(`use_cw_file')dnl/etc/mail/local-host-names
FEATURE(`access_db', `hash -T /etc/mail/access')dnl
FEATURE(`virtusertable', `hash /etc/mail/virtusertable')dnl

define(`confLOCAL_MAILER', `cyrusv2')dnl

MAILER(`cyrusv2')dnl
MAILER(`smtp')dnl

MAILER_DEFINITIONS
dnl --- Another failed atempt 
dnlMcyrusv2,P=[IPC], E=\r\n,
dnlS=EnvFromSMTP/HdrFromSMTP, R=EnvToSMTP,
dnlA=FILE /var/imap/socket/lmtp

Mcyrusv2,P=[IPC], F=lsDFMnqA@/:|SmXz, E=\r\n,
S=EnvFromSMTP/HdrFromSMTP, R=EnvToSMTP,
A=FILE /var/imap/socket/lmtp


Given you do validating existing mailboxes in your virtusertable to make 
use of Anfi's cyrusv2 mailer:


http://jmaimon.com/sendmail/anfi.homeunix.net/sendmail/cyrusv2.html

The default LMTP matches yours so you do not explicitly have to define

define(`CYRUS_LMTP_SOCKET',`/var/imap/socket/lmtp')dnl

in sendmail.mc. But make sure to define

MAILER(`cyrusv2')dnl

and to place your hosted domains into a mailertable.

Regards

Alexander



Cyrus Home Page: http://www.cyrusimap.org/
List Archives/Info: http://lists.andrew.cmu.edu/pipermail/info-cyrus/
To Unsubscribe:
https://lists.andrew.cmu.edu/mailman/listinfo/info-cyrus


Re: imapd 2.5.7-8 with virtual domains and sendmail config

2016-06-02 Thread Alexander Dalloz via Info-cyrus

Am 02.06.2016 um 15:09 schrieb Mogens Melander via Info-cyrus:

Hi Guys,

I've been trying to get sendmail to play nice with imap with virtual
domains and virtdomains: userid with no luck so far.

The imap part is working as far as I cat tell. I can login as
u...@domain.tld
using imtest -a u...@domain.tld -t "" -m login

I just can't seem to get my head around the sendmail part. Prevent sendmail
from stripping the domain part off the e-mail address.

On a previous server, dead long time ago, it was working perfectly.

I have tried different versions of cyrusv2.mc files to no avail.

Does anybody feel like sharing a working sendmail config?

Mogens
FumlerSoft


The documentation at

https://cyrusimap.org/docs/cyrus-imapd/2.5.4/install-virtdomains.php

holds all information needed to setup virtual domain handling within 
Sendmail and cyrus-imapd. Pay specific attention to the part


"You'll have to use the Cyrus mailer in LMTP mode, and you'll have to 
change the mailer flags so that it provides the full domain while 
communicating via LMTP. Specifically these changes:


S=EnvFromSMTP/HdrFromSMTP, R=EnvToSMTP"

In case that's not sufficient for you I think you will have to provide 
details about the configuration you have setup so far.


Alexander


Cyrus Home Page: http://www.cyrusimap.org/
List Archives/Info: http://lists.andrew.cmu.edu/pipermail/info-cyrus/
To Unsubscribe:
https://lists.andrew.cmu.edu/mailman/listinfo/info-cyrus


Re: Sendmail + Virtual Domains + aliases

2016-02-24 Thread Alexander Dalloz via Info-cyrus

Am 24.02.2016 um 18:15 schrieb Andrea Venturoli via Info-cyrus:

On 02/24/16 15:24, Sebastian Hagedorn wrote:

Use virtusertable instead of aliases, e.g.

postmas...@oneofmydomains.comroot


Don't use unqualified LHS addresses.
And make sure to direct a catch-all to the error mailer in virtusertable.


Thanks, but it doesn't seem to work either.

I put that line in virtusertable and issued "make".
I even restarted sendmail, even if IIRC it's not needed.
I confirm I have the following in my .mc file:
 > FEATURE(virtusertable, `hash -o /etc/mail/virtusertable')

I still get "User unknown".


You complete sendmail.mc and log content would be useful.


There's a comment in virtusertable.sample which says: "Remember to add
the source hostname to /etc/mail/local-host-names".
Maybe that's really needed for virtusertable to work?

If I add that, then cyrusv2 from mailertable will not be used for
oneofmydomains.com.


mailertable is not consulted for domains in class {w}


  bye & Thanks
 av.


Alexander


Cyrus Home Page: http://www.cyrusimap.org/
List Archives/Info: http://lists.andrew.cmu.edu/pipermail/info-cyrus/
To Unsubscribe:
https://lists.andrew.cmu.edu/mailman/listinfo/info-cyrus


Re: A single user has all their email going to the spam folder.

2015-07-31 Thread Alexander Dalloz
Am 31.07.2015 um 19:14 schrieb Alvin Starr:
>
>
> This one has me baffled.
> I use sieve to check the X-spam-thingie header to see if I think the
> message is spam and then put it into the spam folder.
>
> One user has started to see all their email but for mail from the local
> domain go into the spam folder.

 From the log you see sieve doing that?

> The messages are not getting tagged as spam.

Or is the user's mail client doing that by its own? I.e. you can 
configure thunderbird to use its junk filter.

Alexander



Cyrus Home Page: http://www.cyrusimap.org/
List Archives/Info: http://lists.andrew.cmu.edu/pipermail/info-cyrus/
To Unsubscribe:
https://lists.andrew.cmu.edu/mailman/listinfo/info-cyrus


Re: sendmail cyrusv2.m4 deliver per domain to diffent cyrus

2015-07-23 Thread Alexander Dalloz
Am 23.07.2015 um 13:49 schrieb Marcus Schopen:
> Hi,
>
> is it possible to deliver per domain to different cyrus hosts via lmtp
> with e.g. two different cyrusv2.m4 macros?

http://www.phildev.net/cyrus/cyrus_mta.html

> Ciao
> Marcus

Alexander



Cyrus Home Page: http://www.cyrusimap.org/
List Archives/Info: http://lists.andrew.cmu.edu/pipermail/info-cyrus/
To Unsubscribe:
https://lists.andrew.cmu.edu/mailman/listinfo/info-cyrus


Re: Can't login: @-sign in login name

2014-10-23 Thread Alexander Dalloz
Am 23.10.2014 um 22:28 schrieb Admin@bbs1:
> Hi,
> due to a server change i ported my ldap Accounts to a new host. I tried
> to migrate my cyrus imap settings but i still can't log in, because the
> realm is stripped. For example "i...@my-domain.com" becomes simply "info".
> I tried to adopt the /etc/sasalauthd.conf but that doesn't seem to
> change anything. I think some parts of the underlying system has changed
> substantially over the years. New OS is CentOS release 6.5 (Final).
>
> /etc/saslauthd.conf:
> ldap_servers: ldap://localhost:389/
> ldap_scope: sub
> ldap_password_attr: userPassword
> ldap_default_realm: basichostname.net
> ldap_filter: uid=%U@%r
> ldap_search_base: dc=my-domain,dc=com

Make sure your saslauthd runs with parameter "-r". On CentOS 6 to be 
defined in /etc/sysconfig/saslauthd.

> Can anybody give me any helpful hints?
>
> Thank's a lot in advance
> Malte

Alexander


Cyrus Home Page: http://www.cyrusimap.org/
List Archives/Info: http://lists.andrew.cmu.edu/pipermail/info-cyrus/
To Unsubscribe:
https://lists.andrew.cmu.edu/mailman/listinfo/info-cyrus


Re: disable SSLv3

2014-10-18 Thread Alexander Dalloz
Am 17.10.2014 um 19:05 schrieb Antonio Denizor:
> Hi,
>
>  I'm trying to protect myself from POODLE SSLv3 Vulnerability, I have
> cyrus-imapd-2.3.7-12 and CentOS release 5.9, I need a help, how to disable
> SSLv3 in my Cyrus IMAP server?
>
> Bestregards,
> Antonio Denizor

You run an EOLed distribution release and have concerns about an SSL 
weakness which affects mainly HTTPS while PoCs how to use it in MITM 
attacks against IMAPS and POP3S don't exist? That doesn't match.

That's not help to your question but a serious hint to update to the 
latest CentOS 5 update (5.11).

Alexander



Cyrus Home Page: http://www.cyrusimap.org/
List Archives/Info: http://lists.andrew.cmu.edu/pipermail/info-cyrus/
To Unsubscribe:
https://lists.andrew.cmu.edu/mailman/listinfo/info-cyrus


Re: imap cyrus

2014-04-18 Thread Alexander Dalloz
Am 19.04.2014 00:17, schrieb Gustavo Coelho:
> Excuse me,
> are you telling me that cyrus-imap does not work together with qmail-ldap ?
> Are you serious ?

Please let's keep the discussion on the mailing list. And please do not 
top-post.

Frankly speaking, I do not care for qmail-ldap. qmail is a software dead 
since over a decade. If qmail-ldap relies on delivering to Maildir only, 
then yes, it is incompatible with cyrus-imapd. If it can deliver i.e. 
using LMTP or the cyrus-imapd deliver binary, then you should be able to 
combine qmail-ldap with cyrus-imapd.

My point was that the mail structure cyrus-imapd uses is not Maildir. 
And I am serious about that.

Alexander


Cyrus Home Page: http://www.cyrusimap.org/
List Archives/Info: http://lists.andrew.cmu.edu/pipermail/info-cyrus/
To Unsubscribe:
https://lists.andrew.cmu.edu/mailman/listinfo/info-cyrus


Re: imap cyrus

2014-04-18 Thread Alexander Dalloz
Am 18.04.2014 22:49, schrieb Gustavo Coelho:
> Hi folks,
>
> i have installed cyrus-imap and i can not get it to work. I can authenticate 
> against saslauthd and everything is working in such realm. But how do i tell 
> it to read my users maildir ?


[ ... ]

> I am using qmail-ldap and i would like to integrate cyrus-imapd with 
> qmail-ldap.
> My users maildirs lies within /var/pop/$username. Inside it there is the 
> "Inbox" maildir.
>
> May someone here help me ?

That will not work. cyrus-imapd has its own mail store structure which 
is not Maildir. Migrate from your qmail setup.

Alexander


Cyrus Home Page: http://www.cyrusimap.org/
List Archives/Info: http://lists.andrew.cmu.edu/pipermail/info-cyrus/
To Unsubscribe:
https://lists.andrew.cmu.edu/mailman/listinfo/info-cyrus


Re: SASLAUTH and cyrus

2011-07-23 Thread Alexander Dalloz
Am 23.07.2011 08:42, schrieb Maria McKinley:

> Thanks Alexander.
> 
> authsufficient  pam_unix.so
> authsufficient  pam_ldap.so try_first_pass
> authrequiredpam_deny.so
> account sufficient  pam_unix.so
> account sufficient  pam_ldap.so
> account requiredpam_deny.so
> 
> So, I checked in ldap, and the postmaster user exists, but not the cyrus 
> user. So, that seems to be why I can't authenticate as cyrus. So the 
> user cyrus does exist, but not in ldap. Not sure how important it is 
> that cyrus exists in ldap, since things seem to be working fine (I use 
> the postmaster user for logging into cyradm anway), and I don't think 
> that has anything to do with the error message I'm seeing.

Great you figured out that part.

> Jul 22 08:41:59 ella cyrus/imaps[29387]: Fatal error:
> tls_start_servertls() failed
> 
> This does not seem to affect accessing mail, but still I find it 
> worrisome when I run across it in the logfiles. It seems I must have 
> something configured incorrectly, but not sure where to go from here.

Unfortunately you did not provide details about your cyrus-imapd setup
regarding IMAP/POP3 service, as much as I can see. I mean your cyrus.conf.

Are you running IMAP/POP3 on TLS or SSL?

Can it be that clients try to access the SSL service by trying TLS? That
could explain the error loggings.

You can test that yourself, if you run IMAP/SSL or POP3/SSL.

openssl s_client -connect :993 -starttls imap

That should generate the same error you see in your log. Don't know how
big your environment is and how many clients connect. If it is just you,
then verify the settings of your MUA.

> ~maria

Alexander

Cyrus Home Page: http://www.cyrusimap.org/
List Archives/Info: http://lists.andrew.cmu.edu/pipermail/info-cyrus/


unsubscribe

2010-10-22 Thread Alexander Schröter
unsubscribe

Cyrus Home Page: http://www.cyrusimap.org/
List Archives/Info: http://lists.andrew.cmu.edu/pipermail/info-cyrus/


Re: cyrus + postfix + ldap

2010-04-05 Thread Alexander Dalloz
Am 05.04.2010 23:16, schrieb Joe Vieira:

> in your imapd.conf
> 
> #SASL set up
> sasl_pwcheck_method: saslauthd
> sasl_mech_list: PLAIN LOGIN (if you use plain)

Well, that does not make saslauthd magically use auth information from
an LDAP directory.

Diego, your OS should ship cyrus-sasl together with the documentation
files. So you should have on your system a docs file called
LDAP_SASLAUTHD. That one describes what you need to know to configure a
proper saslauthd.conf for your environment.

Alexander

Cyrus Home Page: http://cyrusimap.web.cmu.edu/
Cyrus Wiki/FAQ: http://cyrusimap.web.cmu.edu/twiki
List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html


Re: IOERROR fstating sieve

2010-04-03 Thread Alexander Dalloz
> Hello Reinaldo,
>
> I'm not having any success with removing this error. If create the file
> that it says is missing I get this error:
>
>lmtpunix[8901]: sieve runtime error for mydomain.com id
> <20100403063500.97552a0...@mail.mydomain.com>: Run error
>
> I created the file with: "sudo -u cyrus touch defaultbc"
>
> If I restart cyrus with sieve commented out I still get the errors plus:
>
>   lmtpunix[6938]: IOERROR: mapping
> /var/spool/mail/sieve/domain/K/mydomain.com/C/cron/defaultbc file for
> sievescript: No such device

The "bc" in defaultbc stands for byte code. This is not a plain text file.

Use "sievec" to create the defaultbc.

Alexander



Cyrus Home Page: http://cyrusimap.web.cmu.edu/
Cyrus Wiki/FAQ: http://cyrusimap.web.cmu.edu/twiki
List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html


Re: sync_server and PLAIN mech...

2010-04-02 Thread Alexander Dalloz
Am 02.04.2010 16:29, schrieb Derek Chen-Becker:
> On 04/02/2010 12:05 AM, Dan White wrote:
>>
>> Your sasl install, and/or your link against libsasl2 looks bad. Does your
>> glue library, libsasl2.so (in /usr/lib ?), match your install in
>> /usr/local/lib?
> 
> libsasl2.so is in /usr/local/lib, and ldd reports that the link is good:
> 
> bash-3.00$ ldd /usr/cyrus/bin/sync_server
> libsasl2.so.2 => /usr/local/lib/libsasl2.so.2
> ...
> 
> It's sasl 2.1.22, and it was built with the following options (from
> config.status):
> 
> ./configure '--enable-login' '--without-des'

You try to use PLAIN, thus "--enable-plain" is missing.

> Thanks,
> 
> Derek

Alexander



Cyrus Home Page: http://cyrusimap.web.cmu.edu/
Cyrus Wiki/FAQ: http://cyrusimap.web.cmu.edu/twiki
List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html


Re: cyrus + postfix + lmtpd questions

2010-03-15 Thread Alexander Dalloz
> Yes, for sure.
>
> Could you give me an idea on how lmtp client should be configured
> on postfix's master.cf for connecting to a remote cyrus server ?
>
> Thanks a lot Andrew

in main.cf:

relay_domains = hash:/etc/postfix/relay_domains

in relay_domains (either of the 2; see "man 8 lmtp"):

example.com lmtp:unix:public/lmtp# for a local LMTP socket
example.com inet:[1.2.3.4]:24# for a remote LMTP socket

extend transport_maps:

transport_maps=hash:/etc/postfix/transports,hash:/etc/postfix/relay_domains.

Alexander




Cyrus Home Page: http://cyrusimap.web.cmu.edu/
Cyrus Wiki/FAQ: http://cyrusimap.web.cmu.edu/twiki
List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html


Synchronisation two cyrus-imapd servers

2009-09-17 Thread Alexander Demin
r/local/etc/rc.d/imapd start
2. imtest -a cyrus localhost - has passed successfully
3. synctest -u cyrus localhost - failed
S: * SASL LOGIN PLAIN DIGEST-MD5 CRAM-MD5
S: * OK support.spectrum.ru Cyrus sync server v2.3.15
C: AUTHENTICATE DIGEST-MD5
failure: prot layer failure
4. ps -ax | grep sync_server
65257  ??  I  0:00,00 sync_server
65617  ??  I  0:00,00 sync_server
5. grep sync /var/log/all.log
Sep 17 15:59:24 support syncserver[65589]: accepted connection
Sep 17 15:59:24 support master[65616]: about to
exec /usr/local/cyrus/bin/sync_server
Sep 17 15:59:24 support kernel: pid 65589 (sync_server), uid 60: exited
on signal 11
Sep 17 15:59:24 support syncserver[65589]: cmdloop(): startup
Sep 17 15:59:24 support syncserver[65616]: executed
Sep 17 15:59:24 support master[65253]: service syncserver pid 65589 in
BUSY state: terminated abnormally
Sep 17 15:59:24 support syncserver[65616]: accepted connection
Sep 17 15:59:24 support master[65617]: about to
exec /usr/local/cyrus/bin/sync_server
Sep 17 15:59:24 support kernel: pid 65616 (sync_server), uid 60: exited
on signal 11
Sep 17 15:59:24 support syncserver[65616]: cmdloop(): startup
Sep 17 15:59:24 support syncserver[65617]: executed
Sep 17 15:59:24 support master[65253]: service syncserver pid 65616 in
BUSY state: terminated abnormally

"Master" host
1. /usr/local/etc/rc.d/imapd restart
2. imtest -a cyrus localhost - has passed successfully
3. ps -ax | grep sync_client
63196  ??  S  0:00,01 sync_client -r
63197  ??  S  0:00,01 sync_client -r
4. grep sync /var/log/all.log
Sep 17 16:24:18 mail sync_client[63196]: couldn't authenticate to
backend server: generic failure
Sep 17 16:24:18 mail sync_client[63197]: couldn't authenticate to
backend server: generic failure
Sep 17 16:25:18 mail sync_client[63196]: couldn't authenticate to
backend server: generic failure
Sep 17 16:25:18 mail sync_client[63197]: couldn't authenticate to
backend server: generic failure

Did i make something not correctly?
Help me, please, to find the mistake and understand this problem.

Thanks.

-- 
Demin Alexander / Network Administrator
Group of companies Spectrum / tel. (+7 495) 995-8999
Russia, Moscow, 103009, Strastnoy blvr. 8
Web: http://www.spectrum.ru/

Cyrus Home Page: http://cyrusimap.web.cmu.edu/
Cyrus Wiki/FAQ: http://cyrusimap.web.cmu.edu/twiki
List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html


Modifying existing setup to use Cyrus Murder

2009-08-20 Thread Alexander
Hello All,

I've inherited a working Cyrus installation (a pair of servers behind
a Perdition proxy), and I'd like to modify the existing setup to make
use of the Cyrus Murder.

I've found the following documentation:

http://cyrusimap.web.cmu.edu/imapd/install-murder.html

But the reason I'm writing is to ask for general advice before I
start.  The document is a little short on specific detail;  have any
of you done the same?  Have you run into any traps, or non-obvious
issues?  Anything to watch out for, or general advice?

Also, I see that there is a warning at the beginning of the document
about "Murder is still relatively young".  Is this still the case, or
is this just a leftover warning from years ago?  Can it be considered
reasonably stable and ready for usage?

Thank you very much,
Alexander

Cyrus Home Page: http://cyrusimap.web.cmu.edu/
Cyrus Wiki/FAQ: http://cyrusimap.web.cmu.edu/twiki
List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html


Use a different Host to store Imap Data on

2009-07-22 Thread Alexander Schröter
Hello Everybody

a little bit about my situation. I currently use a Kolab Server and my ISPs 
Mailserver. Since my ISPs Mailserver has a nearly 100% Uptime, a lot of 
Storage Space and Automated Backup. I want to use it as storage space for the 
kolab's imap data.

The problem is that I only have access to my ISPs Server via Imap. So my 
question is:

Is it possible to tell cyrus to store the mail not on the local machine but on 
my ISPs Imap account.

I saw that it's possible to introduce a new partition to cyrus in the 
imapd.conf and than tell the process to use this as new storage location for 
certain users via "renamemailbox user.foobar.mail user.foobar.mail 
newpartition".

You now know what I am looking for and I am open for other ideas.

Regards Alexander


Cyrus Home Page: http://cyrusimap.web.cmu.edu/
Cyrus Wiki/FAQ: http://cyrusimap.web.cmu.edu/twiki
List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html


Saving mail on an imap account

2009-07-17 Thread Alexander Schröter
Hi I am looking for a way to save my mail not in a local folder but on an 
remote imap account. The problem is that I don't have access to this server 
other than via imap. Is there a module that offers such a behavior?
For example like in the imapd.conf -> "partition-default 
imap:User:passw...@domain"? 

Any other Tips on how to accomplish this I am thankful for. Maybe some 
Forwarding Options with Procmail or even mounting an imap account into the 
local filesystem were ideas of mine.

Thanks for the Help.

Cyrus Home Page: http://cyrusimap.web.cmu.edu/
Cyrus Wiki/FAQ: http://cyrusimap.web.cmu.edu/twiki
List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html


migrate mailboxes from cyrus-imap-1.6.24 to cyrus-imapd-2.3.7

2008-02-07 Thread Alexander Tsebenko
Hello

We need to migrate lots of |cyrus mailboxes| from one host 
(cyrus-imap-1.6.24_4 with cyrus-sasl-1.5.28_3)
to new host (cyrus-imapd-2.3.7 with cyrus-sasl-2.1.22 ).
Authentication is done via mysql plugin. MySQL user base on third machine
I've tested that new cyrus authenticate test user just fine.

May we just rsync user folders to complete migration?





Cyrus Home Page: http://cyrusimap.web.cmu.edu/
Cyrus Wiki/FAQ: http://cyrusimap.web.cmu.edu/twiki
List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html


Re: Sendmail, virtualdomain, alias

2006-11-29 Thread Alexander Dalloz

Jerome Nenert schrieb:


Hello,

We try to build a virtualdomain cyrus server with sendmail. Sendmail 
must manage aliases. Here's the goal architecture :


_ the fqdn of our cyrus server is imap.domain.com

_ sendmail on this server must accept messages for both 
domain1.domain.com & domain2.domain.com dealing with aliases for both 
these domains


_ cyrus has two virtual domains domain1.domain.com & domain2.domain.com

We didn't find any tips for this.

Any suggestions ?

Regards.
Jerome N. 



http://www.sendmail.org/tips/virtual-hosting.php

http://cyrusimap.web.cmu.edu/imapd/install-virtdomains.html

http://anfi.homeunix.net/sendmail/#cyrus

Alexander



Cyrus Home Page: http://cyrusimap.web.cmu.edu/
Cyrus Wiki/FAQ: http://cyrusimap.web.cmu.edu/twiki
List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html


Re: Integrted tool for adminstering Cyrus IMAP and LDAP.

2006-09-13 Thread Alexander Dalloz

AndrXs Tarallo schrieb:

I have to deploy an Email Server based on Cyrus IMAP, Postfix and 
LDAP. This is no problem, I have done it before.However our customer 
requests for a web based tool for administering user accounts and 
quotas. 

We found tools capable of administering accounts in the LDAP Server 
(ie LDAPmyADMIN) or cyrus accounts, but not an integrated tool.We want 
a tool where you can create a Cyrus account with LDAP autentication 
filling one web based form, Same with modifications and deletions.
 

ISPman - http://www.ispman.net/ - does all this. It is an integrated 
solution and does not just do the LDAP administration through a web 
interface.



Does someone has something to recomend? Thanks in advance.

A/P Andres Tarallo


Alexander



Cyrus Home Page: http://cyrusimap.web.cmu.edu/
Cyrus Wiki/FAQ: http://cyrusimap.web.cmu.edu/twiki
List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html


Re: sieveshell -a -u doesn't work as it should (bug?)

2006-09-11 Thread Alexander Dalloz

Eric Doutreleau schrieb:


Rudy Gevaert a écrit :


Andreas Winkelmann wrote:


Ok, please remove the "LOGIN" Mechanism from sasl_mech_list.

# Authentication configuration
sasl_pwcheck_method: saslauthd
sasl_mech_list: PLAIN LOGIN "LOGIN" is not able to do authorization 
(-a cyrus -u user). Only PLAIN and DIGEST-MD5 can do that. Because 
you use saslauthd, you are bound to PLAIN.


I would guess, the first time you type the Password "LOGIN" is used, 
the second time "PLAIN".



Thanks your advice provided the solution!

Rudy



i have the same problem than u
but when i remove the LOGIN mechanism windows users can't logged 
anymore :(
is there a way to remove the LOGIN mechanism only for sieve connection? 


Andreas already mentioned a suggestion: in cyrus.conf watch out for the 
sieve service and append to "timsieved" the parameter "-C 
/path/to/config_file". It may be "/etc/imapd_sieve.conf" in which you 
omit the LOGIN mech, while keeping the /etc/imapd.conf used by imap(s) 
and/or pop3(s) as it is offering LOGIN and PLAIN.


Alexander


Cyrus Home Page: http://cyrusimap.web.cmu.edu/
Cyrus Wiki/FAQ: http://cyrusimap.web.cmu.edu/twiki
List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html


Re: cyrus on 64-bit redhat

2006-09-04 Thread Alexander Dalloz

Paul Dekkers schrieb:


Hi,

Hmm! Is anyone running Cyrus on 64-bit Red Hat?
 


Me.


# ./configure
checking build system type... Invalid configuration
`x86_64-unknown-linux-gnu': machine `x86_64-unknown' not recognized
configure: error: /bin/sh ./config.sub x86_64-unknown-linux-gnu failed
and from srpm:
configure: error: /bin/sh ./config.sub x86_64-redhat-linux-gnu failed

I was considering an upgrade using Simon's rpm from 2.2.12 (Red Hat
package, cyrus-imapd-2.2.12-3.RHEL4.1) to the latest and greatest
(cyrus-imapd-2.3.7-4) but it seems I'll have to think this over?
Is that a sensible idea anyway, upgrading this RH version (older maybe
modified version from Simon?) to a recent 2.3 rpm?
 


Simon's cyrus-imapd 2.3.7-2 did rpmbuild without any issue on my CentOS 4.3.

Alexander



Cyrus Home Page: http://asg.web.cmu.edu/cyrus
Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu
List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html


Re: Migrating a former /etc/sasldb2 (GNU dbm 1.x or ndbm database, little endian)

2006-08-15 Thread Alexander Dalloz

Kevin Kruzich schrieb:



Clarification below...

Kevin Kruzich wrote:



I have an /etc/sasldb2 containing around 600 accounts, in GNU dbm 
format. In running sasldblistusers2 I can see entries like so:


[EMAIL PROTECTED]: cmusaslsecretPLAIN
[EMAIL PROTECTED]: userPassword
[EMAIL PROTECTED]: userPassword


When I try to authenticate against (using imtest) this on a host 
other than greenwich I get the following:



When I move the sasldb2 file to another host (eg, "mbox"), the system 
we're planning to migrate to, I get the following:



S: L01 NO Login failed: user not found
Authentication failed. generic failure
Security strength factor: 0



How exactly do you try to auth? The username is "[EMAIL PROTECTED]".



I CAN add another account [EMAIL PROTECTED] using saslpasswd2 --but what I 
really want to do is change the domain (or realm) in this existing 
sasldb2.


Did you read "man saslpasswd2"? You would see to use "-u domain", which 
sets the realm. By default the domain / realm is the hostname where you 
run saslpasswd2.




I've moved the sasldb2 file to another host --and I can add an 
additional account there. So there's [EMAIL PROTECTED] and [EMAIL PROTECTED] But 
what I'd rather do is just change the name of the realm for joe, 
leaving his former password intact.


Why does the realm matter if you seem to haven't it used for auth 
previously?


Alexander



Cyrus Home Page: http://asg.web.cmu.edu/cyrus
Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu
List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html


Re: Outlook 2003 still crashing

2006-08-15 Thread Alexander Kriegisch

Daniel,

this is interesting. For clarification: OL2003 does not crash, but 
rather stall forever, so I have to kill the process. Anyway, you don't 
have those problems. Maybe it could help to compare the config files? 
What do you think?


Alexander

Daniel Eckl wrote:

We have the same setup with cyrus 2.2.12 w/ IMAP IDLE and Outlook 2003 SP2.

We never had Outlook crashing (well, not more than normal with outlook
*g*), neither with nor without any Outlook SP.

I don't think that this is cyrus or IDLE related.
But I don't have any clue, to be honest...

Best,
Daniel

Alexander Kriegisch wrote:

I am referring to a thread somebody else started in November 2005:

Kenneth Murchison wrote (Wed Nov 16 20:23:28 EST 2005):


Wil Cooley wrote:

On Mon, 2005-11-14 at 08:01 -0500, Ken Murchison wrote:


Grabbing a protocol dump when you experience the crash might be
helpful.

I'm seeing it with Office 2003 SP2 installed (didn't test w/o SP2).  I'm
looking at the protocol logs but for the life of me I cannot see
anything going wrong.  It sends IDLE requests and then just hangs up
trying to do who-knows-what.  Since I don't really understand IDLE and
idled (other than the general idea of staying connected), I tried
restarting with idled not starting in cyrus.conf, to no avail.

Disable IDLE altogether in Cyrus.  Outlook doesn't play well with
others, except for Exchange.


Well, Kenneth, we tried just that, but to no avail. The results are even
worse than enabling IDLE, but decreasing the timeout. I am quoting my
sys-admin here, I am not administering the server myself.

We tried OL2003 without patches and with SP2. No difference in results,
and we share the same symtoms mentioned in that older thread. Strangely,
it seems to work with older OL2000.

Regards
Alexander Kriegisch



Cyrus Home Page: http://asg.web.cmu.edu/cyrus
Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu
List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html


Outlook 2003 still crashing

2006-08-15 Thread Alexander Kriegisch

I am referring to a thread somebody else started in November 2005:

Kenneth Murchison wrote (Wed Nov 16 20:23:28 EST 2005):


Wil Cooley wrote:

On Mon, 2005-11-14 at 08:01 -0500, Ken Murchison wrote:


Grabbing a protocol dump when you experience the crash might be
helpful.


I'm seeing it with Office 2003 SP2 installed (didn't test w/o SP2).  I'm
looking at the protocol logs but for the life of me I cannot see
anything going wrong.  It sends IDLE requests and then just hangs up
trying to do who-knows-what.  Since I don't really understand IDLE and
idled (other than the general idea of staying connected), I tried
restarting with idled not starting in cyrus.conf, to no avail.


Disable IDLE altogether in Cyrus.  Outlook doesn't play well with 
others, except for Exchange.



Well, Kenneth, we tried just that, but to no avail. The results are even 
worse than enabling IDLE, but decreasing the timeout. I am quoting my 
sys-admin here, I am not administering the server myself.


We tried OL2003 without patches and with SP2. No difference in results, 
and we share the same symtoms mentioned in that older thread. Strangely, 
it seems to work with older OL2000.


Regards
Alexander Kriegisch

Cyrus Home Page: http://asg.web.cmu.edu/cyrus
Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu
List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html


Re: testing pop

2006-08-08 Thread Alexander Dalloz

Sam schrieb:


Its test script shown as below:
# su cyrus
%imtest -m login -p imap localhost
S: * OK newranger Cyrus IMAP4 v2.3.1 server ready


That is an early release of the still BETA 2.3 tree. It has security 
issues and other weaknesses. Use 2.3.7 if you want to run the BETA release.



C: C01 CAPABILITY
S: * CAPABILITY IMAP4 IMAP4rev1 ACL RIGHTS=kxte QUOTA LITERAL+ 
MAILBOX-REFERRALS NAMESPACE UIDPLUS ID NO_ATOMIC_RENAME UNSELECT 
CHILDREN MULTIAPPEND BINARY SORT THREAD=ORDEREDSUBJECT 
THREAD=REFERENCES ANNOTATEMORE CATENATE IDLE STARTTLS AUTH=DIGEST-MD5 
AUTH=CRAM-MD5 SASL-IR URLAUTH

S: C01 OK Completed
Please enter your password:
C: L01 LOGIN cyrus {6}
S: + go ahead
C: 
S: L01 NO Login failed: user not found
Authentication failed. generic failure
Security strength factor: 0
^CC: Q01 LOGOUT
Connection closed.

the sasldb2.db file is already have user name cyrus added.


sasldblistusers2 will tell you that users have the form: [EMAIL PROTECTED], 
where realm is by default the hostname, i.e. [EMAIL PROTECTED]



Thanks
Sam 


Alexander


Cyrus Home Page: http://asg.web.cmu.edu/cyrus
Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu
List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html


Re: testing pop

2006-08-07 Thread Alexander Dalloz

Sam schrieb:


Sam wrote:


Hi,

The pop login failed with cyrus-imap23.
the error message is:
Aug  7 15:17:10 newbox pop3[35477]: badlogin: sender.com [10.1.2.99] 
plaintext sam SASL(-13): user not found: checkpass failed


In the other mail box (core2) with the identical configuration, the 
login is successful with the following message:
Aug  7 14:19:01 core9 pop[14569]: login: [10.1.4.6] john plaintext 
User logged in



Would this mean cyrus in box is using SASL, while core9 does not?



SASL is used anyway, just in the trouble case it failed.




Thanks
SAm




I just found out the imap/spool/ directory is empty. Should I populate 
this directory with user names in order to get the login success?


If you installed Cyrus-IMAPd by a package install all necessary 
directories would have been created automatically. Although you have to 
create each mailbox using cyradm, unless the autocreate patch is 
configured and used.




Thanks
Sam


You offer much too few information. Can we guess your OS is Fedora Core? 
Provide detailed information about your Cyrus-IMAPd and Cyrus-SASL setup.


Alexander


Cyrus Home Page: http://asg.web.cmu.edu/cyrus
Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu
List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html


Re: Cyrus-Imap 8-bit Header Patch

2006-07-20 Thread Alexander Dalloz

Holm Kapschitzki schrieb:


Hi,

i have installed a debin sarge package 
cyrus21-imapd_2.1.18-1+sarge2_i386.deb and a problem with "x" in the 
subject cause of german "ä". Its the 7-bit Header Poblem. Now i just 
looking for a patch, but cant find it. Is there anybody who have the 
same problem and patched the debian paket?


thanks and greets Holm


Hi!

Wasn't Ralf's (any header line isn't allowed to be 8bit and not MIME 
encoded - period) and my reply on the German Postfix users list not 
precise enough? There is nothing to "patch".
For additional information and past discussion please search the list 
archive (Ken has be very clear about that from his point as the core 
developer).


Alexander


Cyrus Home Page: http://asg.web.cmu.edu/cyrus
Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu
List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html


Re: pam_mysql.so

2006-07-18 Thread Alexander Dalloz

Nick Smith schrieb:



Actually i had to install from source, which worked out fine after i 
installed the mysql-devel rpm.  I am now getting this error:


Jul 18 12:48:14  PAM-warn[7955]: function=[pam_sm_authenticate] 
service=[imap] terminal=[] user=[nick.smith] 
ruser=[] rhost=[]
Jul 18 12:48:14  saslauthd[7955]: DEBUG: auth_pam: pam_authenticate 
failed: User not known to the underlying authentication module
Jul 18 12:48:14  saslauthd[7955]: do_auth : auth failure: 
[user=nick.smith] [service=imap] [realm=domain.net] [mech=pam] 
[reason=PAM auth error]


So it seems its not authenticating correctly i think, but i am unsure 
how to proceed at this point, im sure the user/pass im using is correct.


Any Ideas?

Your /etc/pam/imap does not have the proper setup for pam_mysql / MySQL 
(SELECT statement wrong?).


Why not running SASLv2 with auxprop and the sql plugin? Would be a 
straighter setup and allowing the usage of shared secret mechs.


Alexander


Cyrus Home Page: http://asg.web.cmu.edu/cyrus
Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu
List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html


Re: [OT] Support for Cyrus IMAPD

2006-07-16 Thread Alexander Dalloz

Jim Schueler schrieb:


Hello.

I went to the following URL:
https://lists.andrew.cmu.edu/mailman/listinfo

But I could not find a mailing list for Cyrus imapd.  Is this distribution 
still supported?  Where can I post a question specific to the imapd 
application?


Sincerely,

Jim Schueler
 

The development of Cyrus-IMAPd is very active and the current stable 
release is actively supported.

You want to subscribe (or even search the list archive) from here:

http://cyrusimap.web.cmu.edu/lists.html

The list in question is info-cyrus@lists.andrew.cmu.edu 
<http://asg.web.cmu.edu/bb/archive.info-cyrus>


Alexander


Cyrus Home Page: http://asg.web.cmu.edu/cyrus
Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu
List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html


Re: Can't locate Cyrus/SIEVE/managesieve.pm

2006-07-11 Thread Alexander Dalloz
Am Di, den 11.07.2006 schrieb [EMAIL PROTECTED] um 14:56:

> Alexander thanks a lot for help.
> 
> >Install Cyrus-IMAPd together with the Perl modules inside
> > /usr instead of /usr/local.
> 
> how do i do that? how do i tell configure where to place modules?
> 
> > Don't you run an OS with a package manager? Then package Cyrus-IMAPd.
> I have RH Fedora Code 2 running on my box, but did install using sources.
> 
> thanks

Your distribution is called "Fedora Core 2" (it is not a Red Hat
product). Said that, the solution is easy: remove all part of
Cyrus-IMAPd which you installed from sources. Then go to

http://www.invoca.ch/pub/packages/cyrus-imapd/

and rpmbuild from Simon's great src.rpm. The install of the resulting
binary rpms is painfree then and makes you happy.

Regards

Alexander

P.S. Hope you know that FC2 is EOL since a long time, though it is
security supported by fedoralegacy.org. Though that support will end
soon (probably within a few months, as when FC6 will be released). I
recommend to not use FC2 as a base for a new mail server. If you choose
current FC5 you can get Cyrus-IMAPd packaged from Fedora Extras 5.


-- 
Alexander Dalloz | Löhne, Germany | GPG http://pgp.mit.edu 0xB366A773
legal statement: http://www.uni-x.org/legal.html
Fedora Core 2 GNU/Linux on Athlon with kernel 2.6.11-1.35_FC2smp 
Serendipity 16:31:52 up 1 day, 17:37, load average: 0.26, 0.21, 0.15 


signature.asc
Description: Dies ist ein digital signierter Nachrichtenteil

Cyrus Home Page: http://asg.web.cmu.edu/cyrus
Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu
List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html

Re: Cyrus - sieve - notify

2006-07-10 Thread Alexander Dalloz
Am Mo, den 10.07.2006 schrieb Michael Luich um 20:51:

> Hello everyone,
>   I've been trying for a while now to setup new mail notifications using 
> sieve's notify.
> 
> I've tested sieve in cyrus with a forwarding script.
> 
> Now I've edited cyrus.conf to enable the notify daemon, and tested that as 
> well using:
> 
> notifytest -f "/var/lib/imap/socket/notify" -t "test" -n mailto 
> [EMAIL PROTECTED]
> 
> Which was successful.
> 
> I've tried a number of revisions of the following script and nothing I've 
> tried seems to work. I can see cyrus running sieve and the local delivery 
> but no indication of the notification being tried.
> 
> require 
> ["fileinto","reject","vacation","imapflags","relational","regex","notify"];
> # send a reciept notification:
> if true {
>  notify :method "mailto" :options ["[EMAIL PROTECTED]"] 
> :message "New FastandSecure Message";
> keep;
>   }
> 
> 
> Thanks everyone.
> Michael Luich
> [EMAIL PROTECTED]

man imapd.conf

   mailnotifier: 
Notifyd(8) method to use for "MAIL" notifications.  If not
set, "MAIL" notifications are disabled.


Did you set that?

Alexander


-- 
Alexander Dalloz | Löhne, Germany | GPG http://pgp.mit.edu 0xB366A773
legal statement: http://www.uni-x.org/legal.html
Fedora Core 2 GNU/Linux on Athlon with kernel 2.6.11-1.35_FC2smp 
Serendipity 00:41:55 up 1 day, 1:47, load average: 0.71, 0.30, 0.16 


signature.asc
Description: Dies ist ein digital signierter Nachrichtenteil

Cyrus Home Page: http://asg.web.cmu.edu/cyrus
Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu
List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html

Re: Can't locate Cyrus/SIEVE/managesieve.pm

2006-07-10 Thread Alexander Dalloz
Am Mo, den 10.07.2006 schrieb [EMAIL PROTECTED] um 18:47:

> I have installed Cyrus+SIEVE and i can even see SIEVE running if i telnet
> to the 2000 port, but if i run  sieveshell
> I get the following error.
> 
> Can't locate Cyrus/SIEVE/managesieve.pm in @INC (@INC contains:
> /usr/lib/perl5/5.8.3/i386-linux-thread-multi /usr/lib/perl5/5.8.3
> /usr/lib/perl5/site_perl/5.8.3/i386-linux-thread-multi
> /usr/lib/perl5/site_perl/5.8.2/i386-linux-thread-multi
> /usr/lib/perl5/site_perl/5.8.1/i386-linux-thread-multi
> /usr/lib/perl5/site_perl/5.8.0/i386-linux-thread-multi
> /usr/lib/perl5/site_perl/5.8.3 /usr/lib/perl5/site_perl/5.8.2
> /usr/lib/perl5/site_perl/5.8.1 /usr/lib/perl5/site_perl/5.8.0
> /usr/lib/perl5/site_perl
> /usr/lib/perl5/vendor_perl/5.8.3/i386-linux-thread-multi
> /usr/lib/perl5/vendor_perl/5.8.2/i386-linux-thread-multi
> /usr/lib/perl5/vendor_perl/5.8.1/i386-linux-thread-multi
> /usr/lib/perl5/vendor_perl/5.8.0/i386-linux-thread-multi
> /usr/lib/perl5/vendor_perl/5.8.3 /usr/lib/perl5/vendor_perl/5.8.2
> /usr/lib/perl5/vendor_perl/5.8.1 /usr/lib/perl5/vendor_perl/5.8.0
> /usr/lib/perl5/vendor_perl .) at /usr/local/bin/sieveshell line 44.
> BEGIN failed--compilation aborted at /usr/local/bin/sieveshell line 44.
> 
> but the module is there
> 
> locate /managesieve.pm
> /usr/local/lib/perl5/site_perl/5.8.3/i386-linux-thread-multi/Cyrus/SIEVE/managesieve.pm
> /usr/local/src/cyrus-imapd-2.2.12/perl/sieve/managesieve/managesieve.pm
> /usr/local/src/cyrus-imapd-2.2.12/perl/sieve/managesieve/blib/lib/Cyrus/SIEVE/managesieve.pm
> /usr/local/src/cyrus-imapd-2.2.13/perl/sieve/managesieve/managesieve.pm
> /usr/local/src/cyrus-imapd-2.2.13/perl/sieve/managesieve/blib/lib/Cyrus/SIEVE/managesieve.pm
> /opt/cyrus-imapd-2.2.12/perl/sieve/managesieve/managesieve.pm
> /opt/cyrus-imapd-2.2.12/perl/sieve/managesieve/blib/lib/Cyrus/SIEVE/managesieve.pm
> 
> 
> 
> Please help. I have wasted 2 days already. Re-installed from scratch the
> whole system number of times. What i am actually is trying to archive is
> to create SIEVE script which will be placing 'users' spam messages (marked
> as a SPAM in the subj. field by SpamAssassin) into user.$user.Spam folder.

The problem is obvious. You installed Cyrus-IMAPd and especially the
Perl modules in /usr/local and /opt (the other locate places are the
source code locations), but your Perl include path does not cover that
directories. Install Cyrus-IMAPd together with the Perl modules inside
/usr instead of /usr/local.

Don't you run an OS with a package manager? Then package Cyrus-IMAPd.

Alexander


-- 
Alexander Dalloz | Löhne, Germany | GPG http://pgp.mit.edu 0xB366A773
legal statement: http://www.uni-x.org/legal.html
Fedora Core 2 GNU/Linux on Athlon with kernel 2.6.11-1.35_FC2smp 
Serendipity 00:36:27 up 1 day, 1:41, load average: 0.12, 0.12, 0.09 


signature.asc
Description: Dies ist ein digital signierter Nachrichtenteil

Cyrus Home Page: http://asg.web.cmu.edu/cyrus
Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu
List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html

Re: cyradm and cyrus administrator login

2006-07-10 Thread Alexander Dalloz
Am Mo, den 10.07.2006 schrieb Jim John um 23:54:

> I have it working if I add the cyrus user to ldap. Seems like once you
> are using ldap as source for user authentication, cyrus does not check
> other sources.

On my system SASL falls back to auxprop/sasldb2 when saslauthd/ldap
isn't successful. My Cyrus admin user is in sasldb2 only.

>  However, I am unable to delete mailboxes once I log in as the cyrus
> user. I thought having cyrus as admin was enough for cyrus to get
> admin privileges?

No, it is not enough, for security reasons. You have to give the admin
user at least the "c" ACL. That is documented at least in the
Cyrus-IMAPd wiki.

Alexander


-- 
Alexander Dalloz | Löhne, Germany | GPG http://pgp.mit.edu 0xB366A773
legal statement: http://www.uni-x.org/legal.html
Fedora Core 2 GNU/Linux on Athlon with kernel 2.6.11-1.35_FC2smp 
Serendipity 00:32:37 up 1 day, 1:37, load average: 0.04, 0.05, 0.06 


signature.asc
Description: Dies ist ein digital signierter Nachrichtenteil

Cyrus Home Page: http://asg.web.cmu.edu/cyrus
Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu
List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html

Re: Cyrus+SASL+PAM+pam_mysql Migration problem

2006-06-27 Thread Alexander Dalloz
Am Di, den 27.06.2006 schrieb Alexandru E. Ungur um 18:25:

> 3. [EMAIL PROTECTED] lib]# testsaslauthd -u cyrus -p PASSWORD -s imap
>0: OK "Success."
> 
> So I think I got the sasl+pam+mysql part working (but I could be wrong,
> I'm pretty new to the whole cyrus world :D)
> 
> Now, my problem is that I cannot for the life of me get cyradm working.
> Here is the imapd.conf:
> 
> configdirectory: /cyrus/imap
> partition-default: /cyrus/spool
> defaultacl: lrswipcd
> admins: [EMAIL PROTECTED] [EMAIL PROTECTED] cyrus

Do you use virtdomain support with Cyrus-IMAPd? If not, then appending
the realm isn't necessary. Else you too have to run saslauthd with
parameter "-r". Your database and SQL statements do not indicate
[EMAIL PROTECTED] usage.

> allowanonymouslogin: no
> timeout: 400
> plaintextloginpause: 0
> quotawarn: 90
> autocreatequota: 5
> singleinstancestore: yes
> 
> drachost: localhost
> dracinterval: 600
> 
> #sasl_pwcheck_method: pam
> sasl_pwcheck_method: saslauthd

Proper entry to use saslauthd

> loginrealms: all
> sasl_auxprop_plugin: mysqlauxprop

Remove that. You already use / have setup saslauth (with pam -> mysql)!

> sasl_mysql_user: cyrus
> sasl_mysql_passwd: cypass
> sasl_mysql_hostnames: localhost
> sasl_mysql_database: email
> sasl_mysql_statement: select password from popusers where alias='%u' and 
> domain='%r'
> #sasl_mysql_statement: select md5(password) from popusers where alias='%u' 
> and domain='%r'
> sasl_mysql_verbose: yes

Remove all those lines too. Those settings conflict with saslauthd
usage: either saslauthd or auxprop with sql plugin. As saslauthd already
works I see no reason introduce a different way for authing here.

> allowplaintext: yes
> #sasl_mech_list: PLAIN

Defining offered/valid mechanisms seems a good choice for me. At least
it makes things more clear.

> 
> sieveusehomedir: false
> sievedir: /usr/local/sieve
> sieve_maxscriptsize: 32
> sieve_maxscripts: 5
> 
> partition-0: /cyrus/spool/0
> partition-1: /cyrus/spool/1
> # ... and so on ...

> This is what I get in the log:
> Jun 27 04:18:39 mailtx1 master[691]: about to exec
> /usr/lib/cyrus-imapd/imapd
> Jun 27 04:18:39 mailtx1 imap[691]: executed
> Jun 27 04:18:39 mailtx1 imap[691]: sql_select option missing
> Jun 27 04:18:39 mailtx1 imap[691]: auxpropfunc error no mechanism available
> Jun 27 04:18:39 mailtx1 imap[691]: _sasl_plugin_load failed on 
> sasl_auxprop_plug_init for plugin: sql

All trouble from the auxprop imapd.conf settings. Once you remove them
they disappear.

> Jun 27 04:18:39 mailtx1 imap[691]: accepted connection
> Jun 27 04:18:39 mailtx1 imap[691]: DIGEST-MD5 server step 1
> Jun 27 04:18:39 mailtx1 perl: DIGEST-MD5 client step 2
> Jun 27 04:18:43 mailtx1 imap[691]: DIGEST-MD5 server step 2
> Jun 27 04:18:43 mailtx1 imap[691]: could not find auxprop plugin, was 
> searching for 'mysqlauxprop'
> Jun 27 04:18:43 mailtx1 imap[691]: could not find auxprop plugin, was 
> searching for 'mysqlauxprop'
> Jun 27 04:18:43 mailtx1 imap[691]: no secret in database
> Jun 27 04:18:43 mailtx1 imap[691]: badlogin: localhost [127.0.0.1] DIGEST-MD5 
> [SASL(-13): user not found: no secret in database]
> Jun 27 04:18:46 mailtx1 perl: GSSAPI Error: Miscellaneous failure (No 
> credentials cache found)
> Jun 27 04:18:46 mailtx1 perl: NTLM client step 1
> Jun 27 04:18:46 mailtx1 imap[691]: NTLM server step 1
> Jun 27 04:18:46 mailtx1 imap[691]: client flags: 207
> Jun 27 04:18:46 mailtx1 perl: NTLM client step 2
> Jun 27 04:18:46 mailtx1 imap[691]: bad userid authenticated
> Jun 27 04:18:46 mailtx1 imap[691]: badlogin: localhost [127.0.0.1] CRAM-MD5 
> [SASL(-13): authentication failure: bad userid authenticated]
> Jun 27 04:18:49 mailtx1 perl: No worthy mechs found

Different mechs are probed once the initial auth setup failed.

> I would really appreciate any tips/pointers/help on how to debug/fix
> this further.
> 
> Thank you very much,
> Alex

Alexander


-- 
Alexander Dalloz | Löhne, Germany | GPG http://pgp.mit.edu 0xB366A773
legal statement: http://www.uni-x.org/legal.html
Fedora Core 2 GNU/Linux on Athlon with kernel 2.6.11-1.35_FC2smp 
Serendipity 20:21:25 up 6:43, 10 users, 0.10, 0.12, 0.09 


signature.asc
Description: Dies ist ein digital signierter Nachrichtenteil

Cyrus Home Page: http://asg.web.cmu.edu/cyrus
Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu
List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html

Re: Cyrus - Postfix - redirect mails from a special sender domain

2006-06-22 Thread Alexander Dalloz
Am Do, den 22.06.2006 schrieb Walter Willmertinger um 15:40:

> @Alexander Dalloz: Thank you, I noticed that in my imapd.conf the
> notify daemon was commented out.
> But after uncommenting and restart of the cyrus.imapd still nothing
> happens with my notify.

man imapd.conf

   mailnotifier: 
Notifyd(8) method to use for "MAIL" notifications.  If not
set, "MAIL" notifications are disabled.

> I switched of my firewall, but still no notify. Can I debug the notify
> daemon?

The notifyd knows the -D parameter. Besides running a debugger the
syslog messages (check your syslog conf to see where the facility of
your Cyrus-IMAPd logs to, and with which priority - for debugging
priority debug should be logged) should be enough to locate the problem.

Alexander


-- 
Alexander Dalloz | Enger, Germany | GPG http://pgp.mit.edu 0xB366A773
legal statement: http://www.uni-x.org/legal.html
Fedora Core 2 GNU/Linux on Athlon with kernel 2.6.11-1.35_FC2smp 
Serendipity 17:30:53 up 2 days, 1:23, load average: 0.58, 0.43, 0.23 


signature.asc
Description: Dies ist ein digital signierter Nachrichtenteil

Cyrus Home Page: http://asg.web.cmu.edu/cyrus
Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu
List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html

Re: Cyrus - Postfix - redirect mails from a special sender domain

2006-06-22 Thread Alexander Dalloz
Am Do, den 22.06.2006 schrieb Walter Willmertinger um 12:16:

> Thank you for the fast answer, this redirection is working.
> 
> But as I think it over, I had another idea which I realized with
> procmail before changing to cyrus.
> The idea was to put a copy of the mail to a shared folder, and notify
> the users of this copy. 
> (This was because the sent mails have most time quite large
> attachments!)

> Walter Willmertinger 
> Auenstr. 22
> 82194 Groebenzell

In Postfix documentation look at

http://www.postfix.org/postconf.5.html -> sender_bcc_maps

In Cyrus-IMAPd documentation look at

man notifyd

This way Postfix sends the devlopers a carbon copy of the inbound mail
and the notify daemon sends them a mail (initiated by sieve).

Alexander


-- 
Alexander Dalloz | Löhne, Germany | GPG http://pgp.mit.edu 0xB366A773
legal statement: http://www.uni-x.org/legal.html
Fedora Core 2 GNU/Linux on Athlon with kernel 2.6.11-1.35_FC2smp 
Serendipity 13:54:07 up 1 day, 21:46, load average: 0.35, 0.34, 0.23 


signature.asc
Description: Dies ist ein digital signierter Nachrichtenteil

Cyrus Home Page: http://asg.web.cmu.edu/cyrus
Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu
List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html

Re: SYSLOG problem. Can't seperate sendmail from cyrus.

2006-04-12 Thread Alexander Dalloz
Am Do, den 13.04.2006 schrieb Mark London um 1:40:

> I have cyrus installed via redhat 4 rpms.  I thought I could separate 
> all cyrus messages from sendmail, by doing the following in syslog.conf:
> 
> *.info;mail.none;news.none;authpriv.none;cron.none;local6.* 
> /var/log/messages
> 
> mail.*;local6.none  
> -/var/log/maillog

Cyrus-IMAPd shipping with RHEL4 is compiled with facility MAIL. You
would have to rebuild the src.rpm to get a different facility for
logging, i.e. the default of local6. I too prefer to get Cyrus-IMAPd
logs into a separate log file.

Alexander


-- 
Alexander Dalloz | Enger, Germany | GPG http://pgp.mit.edu 0xB366A773
legal statement: http://www.uni-x.org/legal.html
Fedora Core 2 GNU/Linux on Athlon with kernel 2.6.11-1.35_FC2smp 
Serendipity 02:35:29 up 30 days, 3:23, load average: 0.31, 0.26, 0.22 


signature.asc
Description: Dies ist ein digital signierter Nachrichtenteil

Cyrus Home Page: http://asg.web.cmu.edu/cyrus
Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu
List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html

Re: cyrus virtual domains -- real not passed to saslauthd with virtdomains: userid

2006-04-07 Thread Alexander Dalloz
Am Fr, den 07.04.2006 schrieb lartc um 19:05:

> i cannot get imap to pass the realm either in the userid or realm field
> to saslauthd.

saslauthd runs with parameter "-r"?

Alexander


-- 
Alexander Dalloz | Enger, Germany | GPG http://pgp.mit.edu 0xB366A773
legal statement: http://www.uni-x.org/legal.html
Fedora Core 2 GNU/Linux on Athlon with kernel 2.6.11-1.35_FC2smp 
Serendipity 19:49:59 up 24 days, 20:37, load average: 0.76, 1.25, 1.02 


signature.asc
Description: Dies ist ein digital signierter Nachrichtenteil

Cyrus Home Page: http://asg.web.cmu.edu/cyrus
Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu
List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html

Cyrus-2.1 + murder: can't disable apop.

2006-04-04 Thread Alexander Vlasov
Hello everyone,

We're trying to migrate from single-server setup to murder and we faced the
following problem: setting 'allowapop: no' has no effect on murder setup. This
option is set to 'no' on all backends and frontend/murder; when I try to connect
to backends apop seems to be disabled

wolf:~# telnet n1 110
Trying 10.1.0.31...
Connected to n1.mail.internal.
Escape character is '^]'.
+OK n1.mail.xxx.xxx pop3 server ready

but on frontend greetings looks like apop-enabled 

wolf:~# telnet localhost 110
Trying 127.0.0.1...
Connected to localhost.localdomain.
Escape character is '^]'.
+OK wolf.mail.xxx.xxx Cyrus POP3 Murder v2.1.18-IPv6-Debian-2.1.18-1.0.0.gala.0
server ready <[EMAIL PROTECTED]>

despite allowapop is disabled

wolf:~# grep allowapop: /etc/imapd.conf
allowapop: no

With apop, I'll quickly run out of randomness and cyrus will stuck.
Can anyone explain me how to disable apop in my case?

Thanks in advance.


Cyrus Home Page: http://asg.web.cmu.edu/cyrus
Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu
List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html


Re: how to *not* use PAM, but sasldb2 on fedora core 5 (coming from BSD)

2006-03-31 Thread Alexander Dalloz
Am Di, den 28.03.2006 schrieb Timo Schoeler um 18:10:

> i'm in the not-so-lucky (at least for me ;) situation to set up a FC5
> imap server.
> 
> it wants to use PAM, which runs fine for me on NetBSD 3.0 e.g., but
> this linux box won't do it:
> 
> Mar 28 11:58:48 www perl: No worthy mechs found
> Mar 28 11:58:52 www saslauthd[3238]: do_auth : auth failure:
> [user=cyrus] [service=imap] [realm=localdomain] [mech=pam] [reason=PAM
> auth error
> 
> (this is while trying 'cyradm -u cyrus localhost')
> 
> the mechs are installed:
> 
> cyrus-sasl.i386 2.1.21-10
> cyrus-sasl-lib.i386   2.1.21-10
> cyrus-sasl-md5.i386 2.1.21-10
> cyrus-sasl-plain.i386 2.1.21-10
> cyrus-sasl-devel.i386 2.1.21-10
> cyrus-sasl-gssapi.i3862.1.21-10
> cyrus-sasl-ldap.i386  2.1.21-10
> cyrus-sasl-ntlm.i386  2.1.21-10
> cyrus-sasl-sql.i386   2.1.21-10

I would

yum remove cyrus-sasl-sql cyrus-sasl-ntlm cyrus-sasl-ldap
cyrus-sasl-gssapi

as those packages aren't needed for your setup. This way some mechs
aren't probed and you'll have no error log messages from them.

> so, has anyone running this setup (FC5, postfix, cyrus, managing mail 
> users via saslpasswd & friends) running, and if so, how does one get there?

> timo

Pretty easy to do what you want:

1) service saslauthd stop
2) chkconfig saslauthd off
3) vi /usr/lib/sasl2/smtpd.conf
-> pwcheck_method: auxprop
-> auxprop_plugin: sasldb
-> mech_list: PLAIN LOGIN CRAM-MD5 DIGEST-MD5   [just set those you
want to offer]
4) postfix reload
5) saslpasswd2 -c -u localdomain cyrus   [omit "-u" if it should your
`hostname`]
 add more users as required
6) chown root:mail /etc/sasldb2
7) chmod 640 /etc/sasldb2
8) vi /etc/imapd.conf
-> sasl_pwcheck_method: auxprop
-> sasl_auxprop_plugin: sasldb
-> sasl_mech_list: login plain cram-md5 digest-md5   [just those
mechs to allow]
9) service cyrus-imapd restart

Alexander


-- 
Alexander Dalloz | Enger, Germany | GPG http://pgp.mit.edu 0xB366A773
legal statement: http://www.uni-x.org/legal.html
Fedora Core 2 GNU/Linux on Athlon with kernel 2.6.11-1.35_FC2smp 
Serendipity 21:14:11 up 17 days, 22:01, load average: 0.05, 0.07, 0.07 


signature.asc
Description: Dies ist ein digital signierter Nachrichtenteil

Cyrus Home Page: http://asg.web.cmu.edu/cyrus
Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu
List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html

Re: Unable to create mailboxes with domain name

2006-03-25 Thread Alexander Dalloz
Am Sa, den 25.03.2006 schrieb Matt Singerman um 17:56:

> I am attempting to reconfigure Cyrus to work with multiple domains.  I
> have followed the instructions at
> 
> http://asg.web.cmu.edu/cyrus/download/imapd/install-virtdomains.html
> 
> For doing this. Everything seemed to go well; however, if I try to
> create a mailbox with a full domain name (as specified in the
> instructions), I get the following:
> 
> localhost.mchgroup.org> cm [EMAIL PROTECTED]
> createmailbox: Permission denied
> 
> Creating mailboxes without the full domain (the default domain)
> continues to work fine without any problems.
> 
> I am not 100% sure that this is even a problem with Cyrus.  Can anyone
> offer any suggestions?
> 
> Oh, and here is all the relevant systems information.
> 
> name   : Cyrus IMAPD
> version: v2.1.18 2005/02/14 06:45:19

Use cyrus-imapd22 from ports.

> os : FreeBSD
> os-version : 6.0-RELEASE
> environment: Cyrus SASL 2.1.15

Does FreeBSD 6 really ship that old SASL version? (Though not related to
your problem.)

> Matt

Alexander


-- 
Alexander Dalloz | Enger, Germany | GPG http://pgp.mit.edu 0xB366A773
legal statement: http://www.uni-x.org/legal.html
Fedora Core 2 GNU/Linux on Athlon with kernel 2.6.11-1.35_FC2smp 
Serendipity 18:46:55 up 11 days, 20:34, load average: 0.31, 0.42, 0.28 


signature.asc
Description: Dies ist ein digital signierter Nachrichtenteil

Cyrus Home Page: http://asg.web.cmu.edu/cyrus
Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu
List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html

Re: Can't connect to server

2006-03-12 Thread Alexander Dalloz
Am So, den 12.03.2006 schrieb Jim Sabatke um 15:50:

> I know this is a common problem.  I've spent well over 100 hours 
> scouring google for answers.  I've sunk to just 'trying' things to see 
> how they work.  I had cyrus working with postfix once, but I had a disk 
> crash a year ago and lost some of the setup. Fortunately I didn't lose 
> much email, which I badly need, and soon.
> 
> I couldn't connect to "telnet localhost imap" until I activated imap in 
> intetd, which is contrary to 'most' documentation.

You then activated the wrong IMAP server. Cyrus-IMAPd has a standalone
daemon master process and isn't (x)inetd controlled.

> Now I can't get past the following:
> 
> [EMAIL PROTECTED]:/programs/mail/cyrus-imapd-2.2.12> cyradm
> cyradm> cm user.jim
> createmailbox: no connection to server
> cyradm>

This is a result of running not Cyrus-IMAPd but a different IMAP server.

> I assume the server is cyrus.  I just don't know where to go next and am 
> very frustrated.  I would be happy to just be pointed to a faq or 
> instructions, but I find that what is online is not in anyway 
> consistant; probably due to the advanced coding of cyrus.  Even 
> compiling the program is almost undocumented unless one knows what all 
> the flags do.

> Jim

The path you show above looks very uncommon. Which OS / release do you
run? Doesn't it ship with a binary version of Cyrus-IMAPd which you
could easily install? Doesn't it have an init script?

Alexander


-- 
Alexander Dalloz | Enger, Germany | GPG http://pgp.mit.edu 0xB366A773
legal statement: http://www.uni-x.org/legal.html
Fedora Core 2 GNU/Linux on Athlon with kernel 2.6.11-1.35_FC2smp 
Serendipity 17:02:58 up 16 days, 18:51, load average: 0.08, 0.17, 0.23 


signature.asc
Description: Dies ist ein digital signierter Nachrichtenteil

Cyrus Home Page: http://asg.web.cmu.edu/cyrus
Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu
List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html

Re: ldap auxprop plugin on centos4/rhel4?

2006-03-09 Thread Alexander Dalloz
Am Do, den 09.03.2006 schrieb Igor Brezac um 15:23:
> On Thu, 9 Mar 2006, Aleksandar Milivojevic wrote:

> > I've checked it.  There's no mention of LDAP auxprop plugin, or any option 
> > for it for that matter.
> 
> https://bugzilla.andrew.cmu.edu/cgi-bin/cvsweb.cgi/src/sasl/doc/options.html?rev=1.30&content-type=text/x-cvsweb-markup
> 
> You must not have the latest version of cyrus sasl.

Yes, enterprise Linux distributions mostly never ship with latest and
biggest releases of applications and libs. They come with well and long
term tested tools.

$ rpm -qi cyrus-sasl
Name: cyrus-sasl   Relocations: (not
relocatable)
Version : 2.1.19Vendor: CentOS
Release : 5.EL4 Build Date: Sa 05 Mär 2005
19:10:13 CET
Install Date: So 04 Sep 2005 20:44:59 CEST  Build Host:
monk.karan.org
Group   : Systemumgebung/Bibliotheken   Source RPM:
cyrus-sasl-2.1.19-5.EL4.src.rpm
Size: 2864344  License: Freely
Distributable


Alexander


-- 
Alexander Dalloz | Enger, Germany | GPG http://pgp.mit.edu 0xB366A773
legal statement: http://www.uni-x.org/legal.html
Fedora Core 2 GNU/Linux on Athlon with kernel 2.6.11-1.35_FC2smp 
Serendipity 15:42:57 up 13 days, 17:31, load average: 0.12, 0.11, 0.15 


signature.asc
Description: Dies ist ein digital signierter Nachrichtenteil

Cyrus Home Page: http://asg.web.cmu.edu/cyrus
Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu
List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html

Re: ldap auxprop plugin on centos4/rhel4?

2006-03-09 Thread Alexander Dalloz
Am Do, den 09.03.2006 schrieb Aleksandar Milivojevic um 15:12:
> Quoting Igor Brezac <[EMAIL PROTECTED]>:

> > It has been integrated into sasl awhile back.  Check 
> > cyrus-sasl/doc/options.html for documentation.
> 
> I've checked it.  There's no mention of LDAP auxprop plugin, or any 
> option for it for that matter.  The only place where I found some 
> documentation for auxprop plugin was imapd.conf man page.

I confirm this. cyrus-sasl on RHEL4 isn't compiled with ldapdb auxprop
support (easy to be seen from the .spec file) - unfortunately. So I am
too using saslauthd with LDAP backend. Upcoming Fedora Core 5 will have
a cyrus-sasl-ldap RPM; RHEL5 will have too (but that is far away in
future).

Alexander


-- 
Alexander Dalloz | Enger, Germany | GPG http://pgp.mit.edu 0xB366A773
legal statement: http://www.uni-x.org/legal.html
Fedora Core 2 GNU/Linux on Athlon with kernel 2.6.11-1.35_FC2smp 
Serendipity 15:37:51 up 13 days, 17:26, load average: 0.06, 0.07, 0.15 


signature.asc
Description: Dies ist ein digital signierter Nachrichtenteil

Cyrus Home Page: http://asg.web.cmu.edu/cyrus
Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu
List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html

Re: quota script

2006-03-06 Thread Alexander Dalloz
Am Mo, den 06.03.2006 schrieb Mitja Sladovic um 14:13:

> Is there any shell / perl script, that will check user quotas and send 
> me email with that information.
> Some users read mail trough pop3, so they don't know if account is over 
> quota
> 
> Thanks! Mitja

http://oregonstate.edu/~morgan/cyrus/nightly_quota_warnings.pl

Alexander


-- 
Alexander Dalloz | Enger, Germany | GPG http://pgp.mit.edu 0xB366A773
legal statement: http://www.uni-x.org/legal.html
Fedora Core 2 GNU/Linux on Athlon with kernel 2.6.11-1.35_FC2smp 
Serendipity 17:44:10 up 10 days, 19:33, load average: 0.39, 0.22, 0.18 


signature.asc
Description: Dies ist ein digital signierter Nachrichtenteil

Cyrus Home Page: http://asg.web.cmu.edu/cyrus
Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu
List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html

Re: Cyrus Logs

2006-03-06 Thread Alexander Dalloz
Am Mo, den 06.03.2006 schrieb Kurt Laurinaitis um 6:43:

> In syslog this is repeated about everything 30 minutes:
> 
> Mar  6 00:46:06 shemp ctl_cyrusdb[2020]: checkpointing cyrus databases
> Mar  6 00:46:10 shemp ctl_cyrusdb[2020]: done checkpointing cyrus databases
> 
> At this rate, the log fills up relatively fast.  There a way to turn 
> down the logs verboseness?  Have it only log something when something is 
> wrong, not just routine checks on the system?
> 
> Kurt

Don't log priority "debug". See "man syslog".

Alexander


-- 
Alexander Dalloz | Enger, Germany | GPG http://pgp.mit.edu 0xB366A773
legal statement: http://www.uni-x.org/legal.html
Fedora Core 2 GNU/Linux on Athlon with kernel 2.6.11-1.35_FC2smp 
Serendipity 17:42:14 up 10 days, 19:31, load average: 0.20, 0.17, 0.17 


signature.asc
Description: Dies ist ein digital signierter Nachrichtenteil

Cyrus Home Page: http://asg.web.cmu.edu/cyrus
Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu
List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html

Re: Mailbox does not exist for mailboxes with '.'

2006-02-24 Thread Alexander Dalloz
Am Fr, den 24.02.2006 schrieb Сергей Осипов um 21:18:

> In imapd.conf I have option "unixhierarchysep: yes".
> If I create mailbox with char '.', for example 'test.test', Cyrus pop3d write 
> to log:
> Feb 24 22:35:07 pop3[22096]: login: ..ru [XXX.XXX.XXX.XXX] test.test 
> plaintext User logged in
> Feb 24 22:35:12 pop3[22096]: Unable to locate maildrop for test.test: Mailbox 
> does not exist
> 
> Cyrus IMAP write to log same string.
> 
> If I create mailbox 'test_test', all works.
> Why Cyrus server can't find mailbox ?

unixhierarchysep: no

-> cyradm: cm user.firstnamelastname

unixhierarchysep: yes

-> cyradm: cm user/firstnamelastname
orcm user/firstname.lastname

Alexander


-- 
Alexander Dalloz | Enger, Germany | GPG http://pgp.mit.edu 0xB366A773
legal statement: http://www.uni-x.org/legal.html
Fedora Core 2 GNU/Linux on Athlon with kernel 2.6.11-1.35_FC2smp 
Serendipity 00:05:11 up 1 day, 1:54, load average: 0.20, 0.28, 0.33 


signature.asc
Description: Dies ist ein digital signierter Nachrichtenteil

Cyrus Home Page: http://asg.web.cmu.edu/cyrus
Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu
List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html

Re: reconstruct error IOERROR: locking cache

2006-02-18 Thread Alexander Reelsen
Hi

On Fri, 17 Feb 2006 10:14:57 -0500
Scott Russell <[EMAIL PROTECTED]> wrote:

> reconstruct[4212]: IOERROR: locking cache for user.helga.Dzimm.Of 
> Interest.net-snmp: Bad file descriptor
> reconstruct[4212]: IOERROR: locking cache for user.helga.Dzimm.Of 
> Interest.telnet: Bad file descriptor
> reconstruct[4212]: IOERROR: locking cache for user.helga.Dzimm.Of 
> Interest.sudo: Bad file descriptor
> reconstruct[4212]: IOERROR: locking cache for user.helga.Dzimm.Of 
> Interest.ucd-snmp: Bad file descriptor
> reconstruct[4212]: IOERROR: locking cache for user.helga.Dzimm.Of 
> Interest.XFree86: Bad file descriptor
> 
> I think this can be safely ignored but I want to double check. Can 
> someone say why these errors happen and confirm they're safe to
> ignore? I do not think they are related to the migration of a shared
> folder to user account. I think they are related to moving the data
> between cyrus 2.1.16 and 2.3.1.
When doing a cyrus 2.1 to 2.2 migration I had the same problem, but
with side effects. Mail flags were lost afterwards (the "important" and
"reply" flags). I could not track down the problem either (where the
locking probleme originated).

Hope you have more luck with your migration :)


Regards, Alexander

-- 
http://www.emplify.de

Cyrus Home Page: http://asg.web.cmu.edu/cyrus
Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu
List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html


Re: Multiple SSL certificates

2006-02-17 Thread Alexander Dalloz
Am Fr, den 17.02.2006 schrieb Rosenbaum, Larry M. um 17:56:

> How do I configure Cyrus to use multiple SSL certificates/private keys?
> I want users to be able to reach the server as either a.example.com or
> a.b.example.com.  I have certificates and keys for both names.

> L


Just use multiple imapd.conf files. In cyrus.conf configure the services
with specific configuration file calls, i.e.

imap  cmd="imapd -C /etc/imapd-a.domain.conf" listen="imap"
prefork=5
imap  cmd="imapd -C /etc/imapd-b.domain.conf" listen="imap"
prefork=5

Alexander


-- 
Alexander Dalloz | Enger, Germany | GPG http://pgp.mit.edu 0xB366A773
legal statement: http://www.uni-x.org/legal.html
Fedora Core 2 GNU/Linux on Athlon with kernel 2.6.11-1.35_FC2smp 
Serendipity 18:37:28 up 7 days, 3:28, load average: 0.77, 0.55, 0.38 


signature.asc
Description: Dies ist ein digital signierter Nachrichtenteil

Cyrus Home Page: http://asg.web.cmu.edu/cyrus
Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu
List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html

Re: Building cyrus-imapd-2.2.12 on 64 bit linux

2006-02-15 Thread Alexander Dalloz
Am Mi, den 15.02.2006 schrieb Rob Tanner um 17:53:

> Alexander,
> 
> One of my major reasons for building cyrus-imapd myself rather than with 
> an RPM is that the FC4 distro RPM version logs as the mail facility, and 
> I do not want both the MTA and cyrus-imapd logging to the same syslog

I too prefer to have different log facilities / files for MTA and
Cyrus-IMAPd.

> file.  Building from unmodified source, messages are logged using the 
> local6 facility.  Do you know if Simon's package has also been modified 
> like the FC4 distro?  I've not worked with source rpms and I'm not 

Very trivial to change that in the .spec file of Simon's SRC.RPM:

# used syslog facility for logging
%{!?SYSLOGFACILITY: %define SYSLOGFACILITY LOCAL6}

rpmbuild -ba --target x86_64 cyrus-imapd.spec

Easy and you have the software within the package manager after
installation as an RPM.

> comfortable trying to figure it out for myself.  Or even better, is 
> there an undocumented option (imapd.conf or cyrus.conf directive) to set 
> the facility -- I certainly couldn't find a reference in the man pages.

The syslog facility is a compile time setting only.

> Rob

Alexander


-- 
Alexander Dalloz | Enger, Germany | GPG http://pgp.mit.edu 0xB366A773
legal statement: http://www.uni-x.org/legal.html
Fedora Core 2 GNU/Linux on Athlon with kernel 2.6.11-1.35_FC2smp 
Serendipity 18:15:19 up 5 days, 3:06, load average: 0.65, 0.97, 1.13 


signature.asc
Description: Dies ist ein digital signierter Nachrichtenteil

Cyrus Home Page: http://asg.web.cmu.edu/cyrus
Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu
List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html

Re: delivery fails to shared folders via formail (permission denied, Postfix)

2006-02-14 Thread Alexander Dalloz
Am Do, den 09.02.2006 schrieb Denny Schierz um 18:58:

> i have to public folders:
> 
> public.SPAM
> puplic.NOTSPAM
> 
> i try to deliver mails for users with no imap account, via the alias
> maps:
> 
> public.notspam: "|/usr/bin/formail -f -I \"From \"
> |/usr/lib/cyrus/deliver -e -a cyrus -m public.NOTPSPAM"
> 
> public.spam:"|/usr/bin/formail -f -I \"From \"
> |/usr/lib/cyrus/deliver -e -a cyrus -m public.SPAM"
> 
> time ago (less than 1 year), it was working, but now i don't get it
> working again.
> 
> Postfix tells me:
> 
> syslog:
> 
> mx deliver[25902]: connect(/var/imap/socket/lmtp) failed: Permission
> denied
> 
> mailq:
> 
> (temporary failure. Command output: couldn't connect to lmtpd:
> Permission denied_ 421 4.3.0 deliver: couldn't connect to lmtpd_)
>  [EMAIL PROTECTED]
> 
> All other things are working.
> 
> ls -al /var/imap/socket/ srwxrwxrwx   1 cyrus mail0 Feb  9 17:39
> lmtp
> 
> it was root:root, but i changed it to cyrus:mail, in hope, that could be
> the trick.
> 
> Postfix is version 2.2.5
> Cyrus is version 2.2.12
> 
> System are Gentoo

> cu denny

`deliver' binary is set suid?

Simon Matter's RPM of Cyrus-IMAPd ships with a small wrapper for this
purpose.

$ ls -al /usr/lib/cyrus-imapd/deliver*
-rwxr-xr-x  1 root  root 879464 17. Dez 19:52
/usr/lib/cyrus-imapd/deliver
-rwxr-sr-x  1 cyrus mail   8000 17. Dez 19:52
/usr/lib/cyrus-imapd/deliver-wrapper

Alexander


-- 
Alexander Dalloz | Enger, Germany | GPG http://pgp.mit.edu 0xB366A773
legal statement: http://www.uni-x.org/legal.html
Fedora Core 2 GNU/Linux on Athlon with kernel 2.6.11-1.35_FC2smp 
Serendipity 02:29:36 up 4 days, 11:20, load average: 0.01, 0.08, 0.14 


signature.asc
Description: Dies ist ein digital signierter Nachrichtenteil

Cyrus Home Page: http://asg.web.cmu.edu/cyrus
Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu
List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html

Re: Building cyrus-imapd-2.2.12 on 64 bit linux

2006-02-14 Thread Alexander Dalloz
Am Mi, den 15.02.2006 schrieb Rob Tanner um 1:56:

> I am trying to build cyrus-imapd-2.2.12 on a 64 bit system running 
> Fedora Core 4.  Configure dies instantly with the following error:
> 
> checking build system type... Invalid configuration 
> `x86_64-unknown-linux-gnu': machine `x86_64-unknown' not recognized
> configure: error: /bin/sh ./config.sub x86_64-unknown-linux-gnu failed

> Rob

Look at Simon's great work

http://www.invoca.ch/pub/packages/cyrus-imapd/

especially the .spec file with configure / make instructions.

I recommend not to bypass the RPM package management of your system.
Just rebuild the SRC.RPM Simon provides. It too contains a lot of useful
patches. I am using it myself on a CentOS 4.2 x86_64 system.

Alexander


-- 
Alexander Dalloz | Enger, Germany | GPG http://pgp.mit.edu 0xB366A773
legal statement: http://www.uni-x.org/legal.html
Fedora Core 2 GNU/Linux on Athlon with kernel 2.6.11-1.35_FC2smp 
Serendipity 02:21:18 up 4 days, 11:12, load average: 0.18, 0.15, 0.18 


signature.asc
Description: Dies ist ein digital signierter Nachrichtenteil

Cyrus Home Page: http://asg.web.cmu.edu/cyrus
Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu
List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html

Re: How to use cyradm when I only have ssl imap port available

2006-02-07 Thread Alexander Dalloz
Am Di, den 07.02.2006 schrieb Ralph Blach um 19:24:

> I wish to use cyrus Imad and cyradm to adminster
> 
> in my /etc/cyrus.conf file
> the only service available
> 
>imaps cmd="imapd -s" listen="imaps" prefork=1
> 
> Which means I am using ssl.
> 
> when I try to use cyradm, and specify port 993, I can seem to log
> on.
> 
> What are the magic commands when I use ssl only?

> Chip


http://comments.gmane.org/gmane.mail.imap.cyrus/20931

Alexander


-- 
Alexander Dalloz | Enger, Germany | GPG http://pgp.mit.edu 0xB366A773
legal statement: http://www.uni-x.org/legal.html
Fedora Core 2 GNU/Linux on Athlon with kernel 2.6.11-1.35_FC2smp 
Serendipity 19:12:23 up 1 day, 15:40, load average: 0.05, 0.09, 0.07 


signature.asc
Description: Dies ist ein digital signierter Nachrichtenteil

Cyrus Home Page: http://asg.web.cmu.edu/cyrus
Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu
List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html

Re: mailbox create

2006-02-06 Thread Alexander Dalloz
Am Mo, den 06.02.2006 schrieb Kiss Attila um 18:18:

> I have a little problems.
> I use a cyrus 2.1 IMAP server with LDAP on a debian Linux.
> I have some user in which's name is "." like "konyvtarkozi.kozpontikvt". 
> How can I create mailbox for these users?

> Attila

You need to set in imapd.conf

unixhierarchysep: yes

That allows you to create mailboxes with cyradm like

cm konyvtarkozi.kozpontikvt
cm konyvtarkozi.kozpontikvt/subfolder

Alexander


-- 
Alexander Dalloz | Enger, Germany | GPG http://pgp.mit.edu 0xB366A773
legal statement: http://www.uni-x.org/legal.html
Fedora Core 2 GNU/Linux on Athlon with kernel 2.6.11-1.35_FC2smp 
Serendipity 19:51:07 up 16:19, 16 users, 0.02, 0.03, 0.05 


signature.asc
Description: Dies ist ein digital signierter Nachrichtenteil

Cyrus Home Page: http://asg.web.cmu.edu/cyrus
Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu
List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html

Re: Create virtual domain user complaint: createmailbox: Invalid mailbox name

2006-02-03 Thread Alexander Dalloz
Am Fr, den 03.02.2006 schrieb Flash Love um 14:47:

> I am running FC4+SASL+TLS+Postfix+Cyrus-imap+Cyrus-sasl+web-cyradm on two 
> hosts. HostA allows the creation of vitrual domain users as 
> user/[EMAIL PROTECTED], however, when using the same cm syntax for a user on 
> HostB cryadm complains "createmailbox: Invalid mailbox name" . HostB will 
> accept cm user. + u.. + .domain.com.
> 
> HostA and HostB /etc/imapd.conf configurations are identical with the 
> exceptiion of host names and both reports:  

> What could possibly be different in HostB's environment that would require  
> different virtual domain creation separators? i.e.  (HostA) cm 
> user/[EMAIL PROTECTED] vs (HostB) cm user. + u.. + .domain.com.
> Note: The '+' signs are used only to show that periods are required on HostB.

unixhierarchysep: yes

That option isn't set properly inside imapd.conf on HostB.

Alexander


-- 
Alexander Dalloz | Enger, Germany | GPG http://pgp.mit.edu 0xB366A773
legal statement: http://www.uni-x.org/legal.html
Fedora Core 2 GNU/Linux on Athlon with kernel 2.6.11-1.35_FC2smp 
Serendipity 20:07:37 up 61 days, 44 users, load average: 0.09, 0.14,
0.12 


signature.asc
Description: Dies ist ein digital signierter Nachrichtenteil

Cyrus Home Page: http://asg.web.cmu.edu/cyrus
Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu
List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html

Re: migrating Maildir to cyrus-imap

2006-02-01 Thread Alexander Dalloz
Am Mi, den 01.02.2006 schrieb Tux um 20:02:

> > imapsync

> Will it also work for moving mail/users from  dbmail to cyrus-imap? Thanks.

> Tushar Gohad

There should be no problem doing so. This is because imapsync makes IMAP
protocol connections between the 2 servers to sync mailboxes from. It
does not read the storage in raw.

Alexander


-- 
Alexander Dalloz | Enger, Germany | GPG http://pgp.mit.edu 0xB366A773
legal statement: http://www.uni-x.org/legal.html
Fedora Core 2 GNU/Linux on Athlon with kernel 2.6.11-1.35_FC2smp 
Serendipity 20:04:47 up 59 days, 41 users, load average: 0.09, 0.07,
0.10 


signature.asc
Description: Dies ist ein digital signierter Nachrichtenteil

Cyrus Home Page: http://asg.web.cmu.edu/cyrus
Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu
List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html

Re: cyradm imaps

2006-02-01 Thread Alexander Dalloz
Am Mi, den 01.02.2006 schrieb Antoine Jacoutot um 15:51:

> I was wondering if it was possible to use cyradm to administer an imaps 
> server.

> Antoine

http://comments.gmane.org/gmane.mail.imap.cyrus/20931

Alexander


-- 
Alexander Dalloz | Enger, Germany | GPG http://pgp.mit.edu 0xB366A773
legal statement: http://www.uni-x.org/legal.html
Fedora Core 2 GNU/Linux on Athlon with kernel 2.6.11-1.35_FC2smp 
Serendipity 17:20:58 up 58 days, 21:58, load average: 0.23, 0.16, 0.10 


signature.asc
Description: Dies ist ein digital signierter Nachrichtenteil

Cyrus Home Page: http://asg.web.cmu.edu/cyrus
Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu
List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html

Re: migrating Maildir to cyrus-imap

2006-01-31 Thread Alexander Dalloz
Am Mi, den 01.02.2006 schrieb David Newman um 1:29:

> We are moving mail servers. The old ones ran courier-imap and the new ones
> run cyrus-imap. We have to move existing messages, currently in Maildir
> format, onto the new servers.

> dn

imapsync

Alexander


-- 
Alexander Dalloz | Enger, Germany | GPG http://pgp.mit.edu 0xB366A773
legal statement: http://www.uni-x.org/legal.html
Fedora Core 2 GNU/Linux on Athlon with kernel 2.6.11-1.35_FC2smp 
Serendipity 02:38:36 up 58 days, 7:15, load average: 0.26, 0.18, 0.16 


signature.asc
Description: Dies ist ein digital signierter Nachrichtenteil

Cyrus Home Page: http://asg.web.cmu.edu/cyrus
Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu
List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html

Re: "No worthy mechs found" error with cyrus/sasl2/mysql

2006-01-30 Thread Alexander Dalloz
Am Mo, den 30.01.2006 schrieb Tux um 18:20:

> I used the FreeBSD virtual mail HOWTO at
> http://www.wistful.net/wiki/Ed%27s_FreeBSD_Virtual_Mail_How-To
> to configure cyrus-imapd 2.2.12 with cyrus-sasl2 and MySQL v5.

Which Cyrus-SASL libraries does that include? Do you have Cyrus-SASL
compiled and installed with PLAIN and LOGIN support? Are these libraries
at their place?

> Although, everything else seems to be in place, "cyradm" does
> not seem to use SASL2 to authenticate. I keep getting the
> following error in auth.log whenever I try to do
> "cyradm --user cyrus localhost":
> 
> ==
> Jan 30 08:47:25 mx1 perl: No worthy mechs found
> Jan 30 08:47:32 mx1 imap[92434]: bad userid authenticated
> ==

Do you allow PLAIN and LOGIN to be used without STARTTLS (check your
imapd.conf)?

> while on the Cyradm console, I get:
> 
> ==
> [EMAIL PROTECTED] cyradm --user cyrus localhost
> IMAP Password:
>   Invalid user at
> /usr/local/lib/perl5/site_perl/5.8.7/mach/Cyrus/IMAP/Admin.pm line 118
> cyradm: cannot authenticate to server with  as cyrus
>   ^^^
> ==
> 
> As you can see, SASL2 does not recognize the authentication
> mechanism.
> 
> I read in the SASL2 documentation and also found looking
> through the code that if I am using PLAIN authentication
> mechanism then I need to use TLS. I have followed all your
> instructions about TLS setup but no luck.

First sentence is not correct. It is configurable. Second statement: so
TLS works? Do you successfully test with "imtest"? Be aware that
"cyradm" can not use STARTTLS (though somewhere there is a patch).

> Here is a portion of my /usr/local/etc/imapd.conf
> 
> ==
> sasl_pwcheck_method: auxprop
> sasl_auxprop_plugin: sql
> sasl_sql_engine: mysql
> sasl_sql_user: postfix
> sasl_sql_passwd: postfix
> sasl_sql_database: postfix
> sasl_sql_hostnames: mx1.wearab.net
> sasl_sql_select: SELECT password FROM mailbox WHERE username='[EMAIL 
> PROTECTED]' AND
> active='1'
> sasl_sql_verbose: yes
> sasl_mech_list: plain login
> sasl_password_format: crypt
> sasl_log_level: 6
> 
> ==
> 
> And this one from /usr/local/lib/sasl2/smtpd.conf
> 
> ==
> pwcheck_method: auxprop
> auxprop_plugin: sql
> sql_user: postfix
> sql_passwd: postfix
> sql_hostnames: localhost mx1.wearab.net
> sql_database: postfix
> sql_engine: mysql
> sql_select: SELECT password FROM mailbox WHERE username = '[EMAIL PROTECTED]' 
> and active
> = '1'
> sql_verbose: yes
> mech_list: plain
> log_level: 6
> minimum_layer: 0
> auto_transition: no
> password_format: crypt
> ==

The smtpd.conf is only for Postfix, has nothing to do with Cyrus-IMAPd.

> This is how /usr/local/etc/pam.d/imap looks like:
> 
> ==
> authsufficient  /usr/local/lib/pam_mysql.so user=postfix
> passwd=postfix host=localhost db=postfix table=mailbox usercolumn=username
> passwdcolumn=password crypt=1 logtable=log logmsgcolumn=msg
> logusercolumn=user loghostcolumn=host logpidcolumn=pid logtimecolumn=time
> sqllog=1
> 
> # account
> account required/usr/local/lib/pam_mysql.so user=postfix
> passwd=postfix host=localhost db=postfix table=mailbox usercolumn=username
> passwdcolumn=password crypt=1 logtable=log logmsgcolumn=msg
> logusercolumn=user loghostcolumn=host logpidcolumn=pid logtimecolumn=time
> sqllog=1
> ==

Both are useless as you don't use PAM with Cyrus-IMAPd. As your
imapd.conf shows your are using the sql auxprop plugin. So no PAM
involved at all.

> - Tushar

Alexander


-- 
Alexander Dalloz | Enger, Germany | GPG http://pgp.mit.edu 0xB366A773
legal statement: http://www.uni-x.org/legal.html
Fedora Core 2 GNU/Linux on Athlon with kernel 2.6.11-1.35_FC2smp 
Serendipity 18:57:09 up 56 days, 23:34, load average: 0.01, 0.03, 0.02 


signature.asc
Description: Dies ist ein digital signierter Nachrichtenteil

Cyrus Home Page: http://asg.web.cmu.edu/cyrus
Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu
List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html

Re: Virtual domains and aliases?

2006-01-29 Thread Alexander Dalloz
Am So, den 29.01.2006 schrieb Georgy Goshin um 21:26:

> I need to setup a virtual mail server with Cyrus IMAP and sendmail.
> First -  want to use email addresses as usernames, e.g. virtdomains: userid, 
> it is simple for customers towrite their email in POP3/IMAP username box 
> instaed of some other username we candefine using sendmail's virtusertable. 
> So virtual domains should be server by Cyrus.

See below.

> Second - I'd like to have a possibility to make some aliases in these 
> virtual domains. (I think that the siplest way is to use sendmail's 
> virtusertable for it.  but don;t know how to do it).

Use the virtusertable, correct. Make sure you have catch-all entries for
each domain with an error rejection. Else your postmaster will be
flooded with spam.

> I tried to define cyrusv2 as local mailer:
> 
> MAILER(smtp)dnl
> dnl MAILER(procmail)dnl
> define(`confLOCAL_MAILER', `cyrusv2')dnl
> define(`CYRUS_LMTP_SOCKET', `/var/lib/imap/socket/lmtp')dnl
> MAILER(cyrusv2)dnl
> 
> But in this case it seems that sendmail does not pass FQDN to lmlp, just 
> before @ part. I tried of course to replace this line
> S=EnvFromSMTP/HdrFromSMTP, R=EnvToSMTP in mailer definition, but this  not 
> helps in case of using cyrusv2 aslocal mailer.Does anyone knows what 
> I'mdoing wrong or maybe there is a better solution?Thanks,Georgy.-  

You need to replace the cyrusv2.m4 macro which ships with
Redhat's/Fedora's Sendmail RPM by this one

http://anfi.homeunix.net/sendmail/cyrusv2.html

and use the cyrusv2d as MAILER.

Alexander


-- 
Alexander Dalloz | Enger, Germany | GPG http://pgp.mit.edu 0xB366A773
legal statement: http://www.uni-x.org/legal.html
Fedora Core 2 GNU/Linux on Athlon with kernel 2.6.11-1.35_FC2smp 
Serendipity 22:31:53 up 56 days, 3:08, load average: 1.38, 0.64, 0.39 


signature.asc
Description: Dies ist ein digital signierter Nachrichtenteil

Cyrus Home Page: http://asg.web.cmu.edu/cyrus
Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu
List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html

Re: cyrus-2.2.12, sieve and virtual domains

2006-01-29 Thread Alexander Dalloz
Am So, den 29.01.2006 schrieb Denis V. Suhanov um 18:36:

> I've been a happy user for cyrus-imap for a while. However, after  
> enabling virtual domains support, I figured that my sieve scripts do  
> now work for virtual domains. I believe that there are no sub-domain  
> folders for virtual-domain sieve users (only for 'primary domain'  
> ones). Do I have to upgrade to the next version or maybe there is a  
> way to make it work without recompiling and upgrading it?

> -- Denis

Sure you i.e. fileinto "[EMAIL PROTECTED]/sub/folder" and not
"INBOX/sub/[EMAIL PROTECTED]

Alexander


-- 
Alexander Dalloz | Enger, Germany | GPG http://pgp.mit.edu 0xB366A773
legal statement: http://www.uni-x.org/legal.html
Fedora Core 2 GNU/Linux on Athlon with kernel 2.6.11-1.35_FC2smp 
Serendipity 19:09:18 up 55 days, 23:46, load average: 0.24, 0.17, 0.10 


signature.asc
Description: Dies ist ein digital signierter Nachrichtenteil

Cyrus Home Page: http://asg.web.cmu.edu/cyrus
Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu
List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html

Re: Empty an account

2006-01-24 Thread Alexander Dalloz
Am Di, den 24.01.2006 schrieb Shaun Bolling um 16:20:

> Hello all, does anyone know a way to empty all the email and/or folders 
> from an account with out deleting the account?
> 
> --Shaun

How about `man ipurge'?

Alexander


-- 
Alexander Dalloz | Enger, Germany | GPG http://pgp.mit.edu 0xB366A773
legal statement: http://www.uni-x.org/legal.html
Fedora Core 2 GNU/Linux on Athlon with kernel 2.6.11-1.35_FC2smp 
Serendipity 17:02:27 up 50 days, 21:39, load average: 0.25, 0.21, 0.16 


signature.asc
Description: Dies ist ein digital signierter Nachrichtenteil

Cyrus Home Page: http://asg.web.cmu.edu/cyrus
Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu
List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html

Migration of cyrus.index from 2.1 to 2.2 - locking problem

2006-01-20 Thread Alexander Reelsen
Hi

After successfully taking all the steps do have a working cyrus 2.2 with
virtual domains when doing an upgrade from 2.1 like converting seen, subs,
quota databases, the mail spool itself as well as the mailboxes.db file I
am only facing one last problem.

The cyrus.index file does not get updated due to some obscure locking
problem which I cannot hunt down. This results on losing the flags per
mail...

When performing the reconstruct I am getting the following error message
for every reconstructed mailbox:

Jan 19 21:09:11 anton cyrus/reconstruct[29465]: IOERROR: locking cache for
domain.de!user.support-archive: Bad file descriptor

My first guess was, that there is a difference, if cyrmaster is stopped or
running while doing the reconstruct. This was not the case.

Any hints, where this problem might come from? fcntl manpage tells about
this error, that 'eg: file descriptor was read only and the lock requested
was F_WRLCK'. I am the cyrus user and that user has all needed the
permissions.

I am not the first one facing this problem, there is exactly one other
user, who seemed to have this in 2003, when upgrading from 2.0 to 2.1.
However he used freebsd, while this is a debian based distribution, using
kernel 2.4.32 and cyrus 2.2.16 (and the kolab patch).

See here:
http://www.irbs.net/internet/info-cyrus/0309/0025.html

Dirty workaround:
When I comment out the actual locking done and just return 0 in
lib/lib_fcntl.h in lock_blocking(), lock_nonblocking() and lock_unlock()
the upgrade works and the important/reply flags are actually set.
However this is not the intended solution I guess :)

Any help would be greatly appreciated.


Regards, Alexander

-- 
Alexander Reelsen
http://www.emplify.de


Cyrus Home Page: http://asg.web.cmu.edu/cyrus
Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu
List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html


Re: sieve segmentation fault

2006-01-09 Thread Alexander Dalloz
Am Mo, den 09.01.2006 schrieb Sven Mueller um 22:06:

> > "IMPLEMENTATION" "Cyrus timsieved v2.2.12-Invoca-RPM-2.2.12-3.RHEL4.1"

> This seems to be a problem with the version you have installed. Either
> of the version of cyrus-imapd you have installed or with the version of
> perl you have installed or with a combination of the two. At least for
> me, cyrus-imapd 2.2.12 (includiung sieveshell) works perfectly well. But
> I'm on a Debian system, so this must have something to do with the way
> RHEL has been set up (regarding the way the packages are compiled). It
> certainly isn't a cyrus-imapd problem per se.

> sven

There is no problem with the RHEL4 Cyrus-IMAPd RPM. A non-RHEL4 Perl
package may though be a trouble maker.

Alexander


-- 
Alexander Dalloz | Enger, Germany | GPG http://pgp.mit.edu 0xB366A773
legal statement: http://www.uni-x.org/legal.html
Fedora Core 2 GNU/Linux on Athlon with kernel 2.6.11-1.35_FC2smp 
Serendipity 00:08:05 up 36 days, 4:45, load average: 0.12, 0.22, 0.24 


signature.asc
Description: Dies ist ein digital signierter Nachrichtenteil

Cyrus Home Page: http://asg.web.cmu.edu/cyrus
Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu
List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html

Re: cyrus and realm

2006-01-02 Thread Alexander Dalloz
Am Mo, den 02.01.2006 schrieb Holm Kapschitzki um 16:33:

> i would like to know which version of cyrus supports the parameter 

With "cyrus" I assume you are speaking about Cyrus SASL, not Cyrus
IMAPd. Both are different software.

> "realm". I have heard Version 2.1.18 cant do that and version 2.1.19 
> ignores that parameter. The problem is, i look for a debian package, but 
> the only official one i found from "testing" is the 2.1.19

Further I guess you are speaking about saslauthd and its parameter "-r"

man 8 saslauthd

"-r  Combine the realm with the login (with an [EMAIL PROTECTED] sign in
between).  e.g.  login: "foo" realm: "bar" will
 get passed as login: "[EMAIL PROTECTED]".  Note that the realm will
still be passed, which may lead to unex-
 pected behavior."

If you grep through the changelog you will find that with release 2.1.19
of Cyrus SASL this capability was added.

Alexander


-- 
Alexander Dalloz | Enger, Germany | GPG http://pgp.mit.edu 0xB366A773
legal statement: http://www.uni-x.org/legal.html
Fedora Core 2 GNU/Linux on Athlon with kernel 2.6.11-1.35_FC2smp 
Serendipity 17:27:50 up 28 days, 22:04, load average: 0.06, 0.16, 0.17 


Cyrus Home Page: http://asg.web.cmu.edu/cyrus
Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu
List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html


Re: HELP - why is saslauthd trying to use an auxprocfunc / sql_select ??

2005-12-06 Thread Alexander Dalloz
Am Mi, den 07.12.2005 schrieb Joseph Silverman um 1:03:

> Using cyrus-imapd on linux (fc3) - also using sendmail (not postfix):
> 
> 1) /etc/sysconfig/saslauthd: MECH=pam
> 
> 2) /etc/imapd.conf - no auxprocfunc or anything along those lines
> 
> So, HOW COME I get tons of these in /var/log/messages? (also from  
> lmtpd, pop3, imaps)
> 
> Dec  6 15:58:49 hedwig pop3s[28013]: unable to open Berkeley db /etc/ 
> sasldb2: No such file or directory
> Dec  6 15:58:49 hedwig pop3s[28013]: could not find password
> Dec  6 15:58:51 hedwig imaps[28104]: sql_select option missing
> Dec  6 15:58:51 hedwig imaps[28104]: auxpropfunc error no mechanism  
> available
> Dec  6 15:58:52 hedwig pop3s[28013]: unable to open Berkeley db /etc/ 
> sasldb2: No such file or directory
> Dec  6 15:59:18 hedwig imap[28111]: sql_select option missing
> Dec  6 15:59:18 hedwig imap[28111]: auxpropfunc error no mechanism  
> available
> Dec  6 15:59:21 hedwig pop3s[27974]: unable to open Berkeley db /etc/ 
> sasldb2: No such file or directory
> Dec  6 15:59:21 hedwig pop3s[27974]: could not find password
> Dec  6 15:59:24 hedwig pop3s[27974]: unable to open Berkeley db /etc/ 
> sasldb2: No such file or directory
> 
> Thanks - Yossie

yum remove cyrus-sasl-sql

You may also create an empty /etc/sasldb2 using saslpasswd2 by adding a
dummy user first and then removing it. A better approach is to first not
offer MD5 mechs if your system can't handle them (in your case by
saslauthd).

Hint: searching the list archive would have told you that.

Alexander


-- 
Alexander Dalloz | Enger, Germany | GPG http://pgp.mit.edu 0xB366A773
legal statement: http://www.uni-x.org/legal.html
Fedora Core 2 GNU/Linux on Athlon with kernel 2.6.11-1.35_FC2smp 
Serendipity 05:18:35 up 2 days, 9:55, load average: 0.11, 0.09, 0.19 


signature.asc
Description: Dies ist ein digital signierter Nachrichtenteil

Cyrus Home Page: http://asg.web.cmu.edu/cyrus
Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu
List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html

Re: Imtest failure

2005-12-06 Thread Alexander Dalloz
Am Di, den 06.12.2005 schrieb Rajeev um 6:13:

> Yes, I did select the SSL option on advance tab of Outlook Express. 
> When I use testsaslauthd -u Username -p Passwd it give a success message.
> 
> 
> Please find below an extract from maillog while login with OE.
> 
> [EMAIL PROTECTED] imap]# tail /var/log/maillog
> Dec  6 08:06:57 mail pop3s[13043]: login: [192.168.1.119] rajeev
> plaintext+TLS User logged in
> Dec  6 08:07:04 mail postfix/smtpd[13050]: connect from
> unknown[192.168.1.119] Dec  6 08:07:04 mail postfix/smtpd[13050]: lost
> connection after EHLO from unknown[192.168.1.119] Dec  6 08:07:04 mail
> postfix/smtpd[13050]: disconnect from unknown[192.168.1.119] Dec  6 08:07:04
> mail pop3s[13051]: accepted connection Dec  6 08:07:05 mail pop3s[13051]:
> mystore: starting txn 2147483763 Dec  6 08:07:05 mail pop3s[13051]: mystore:
> committing txn 2147483763 Dec  6 08:07:05 mail pop3s[13051]: starttls: TLSv1
> with cipher RC4-MD5
> (128/128 bits new) no authentication
> Dec  6 08:07:06 mail pop3s[13051]: login: [192.168.1.119] rajeev
> plaintext+TLS User logged in
> Dec  6 08:07:06 mail master[10735]: process 13051 exited, status 0

Kick Norton Antivirus.

Alexander


-- 
Alexander Dalloz | Enger, Germany | GPG http://pgp.mit.edu 0xB366A773
legal statement: http://www.uni-x.org/legal.html
Fedora Core 2 GNU/Linux on Athlon with kernel 2.6.11-1.35_FC2smp 
Serendipity 14:25:05 up 1 day, 19:02, load average: 1.11, 0.75, 0.41 


signature.asc
Description: Dies ist ein digital signierter Nachrichtenteil

Cyrus Home Page: http://asg.web.cmu.edu/cyrus
Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu
List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html

Re: Does anyone know what these log messages mean?

2005-11-29 Thread Alexander Dalloz
Am Di, den 29.11.2005 schrieb Saltmarsh, Evan M um 17:26:

> Nov 29 10:25:17 imap_svr imap[14331]: [ID 702911 auth.error]
> sql_select option missing
> 
> Nov 29 10:25:17 imap_svr imap[14331]: [ID 702911 auth.error]
> auxpropfunc error no mechanism available
> 
> Nov 29 10:25:17 imap_svr imap[14331]: [ID 702911 auth.debug]
> _sasl_plugin_load failed on sasl_auxprop_plug_init for plugin: sql
> 
> Nov 29 10:25:26 imap_svr perl[14330]: [ID 702911 auth.notice] No
> worthy mechs found

> Evan Saltmarsh

You have the SASL sql auxprop plugin install (i.e. cyrus-sasl-sql), but
it is not configured, probably because not needed in your setup. Remove
the sql plugin and the messages will go away.

Alexander


-- 
Alexander Dalloz | Enger, Germany | GPG http://pgp.mit.edu 0xB366A773
legal statement: http://www.uni-x.org/legal.html
Fedora Core 2 GNU/Linux on Athlon with kernel 2.6.11-1.35_FC2smp 
Serendipity 18:01:31 up 31 days, 16:01, load average: 0.41, 0.27, 0.20 


signature.asc
Description: Dies ist ein digital signierter Nachrichtenteil

Cyrus Home Page: http://asg.web.cmu.edu/cyrus
Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu
List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html

Re: virtdomains: userid?

2005-11-26 Thread Alexander Dalloz
Am Sa, den 26.11.2005 schrieb Bill Kearney um 16:55:

> The docs for /etc/imapd.conf read:
> 
> virtdomains: off
> Enable  virtual domain support.  If enabled, the userâs domain
> will be determined by splitting a fully qualified userid at the last '@â'
> or '%' symbol.  If the userid is unqualified, and the
> virtdomains option is set to "on", then the domain will be determined by
> doing  a
> reverse lookup on the IP address of the incoming network
> interface, otherwise the user is assumed to be in the default domain (if
> set).
> Allowed values: off, userid, on
> 
> What actions does the "userid" value trigger?   In testing I can't see that
> it does anything.  Are the docs correct?
> 
> Thanks,
> -Bill Kearney

http://asg.web.cmu.edu/cyrus/download/imapd/install-virtdomains.html

Alexander


-- 
Alexander Dalloz | Enger, Germany | GPG http://pgp.mit.edu 0xB366A773
legal statement: http://www.uni-x.org/legal.html
Fedora Core 2 GNU/Linux on Athlon with kernel 2.6.11-1.35_FC2smp 
Serendipity 18:08:55 up 28 days, 16:09, load average: 0.24, 0.22, 0.18 


signature.asc
Description: Dies ist ein digital signierter Nachrichtenteil

Cyrus Home Page: http://asg.web.cmu.edu/cyrus
Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu
List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html

Ability to hide real userids in "Other Users" namespace

2005-11-24 Thread Alexander Drozdov
Hello!

I have made the patch of cyrus imapd server that adds ability
to the server to hide real users identifiers in "Other Users"
namespace (altnamespace config option must be enabled). Real
userids are being replaced by other ones which has been fetched
from LDAP server "on the fly".

You can see my current version of the patch and additional
information in the Andrew Bugzilla (bug # 2750):

https://bugzilla.andrew.cmu.edu/show_bug.cgi?id=2750

Alexander Drozdov


Cyrus Home Page: http://asg.web.cmu.edu/cyrus
Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu
List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html


Re: Frequent DBERROR DB4

2005-11-09 Thread Alexander Dalloz
Am Mi, den 09.11.2005 schrieb Stephen Conway um 19:45:

> We have a Cyrus IMAPD server version 2.1.12 running on a RH 8 server.  All
[...]
> In addition, previous version was not installed with the RPM, can you let me
> know where to find the RPM for RH8? 

> Steve

Don't you think it is more than time to install a current and security
maintained distribution release (together with a current Cyrus-IMAPd
without security flaws)? RH8 is EOL since quite some time. Testing both
MX hosts for domain wlnet.com shows you must run even older releases -
Sendmail 8.10.2 indicates RH 6.2! *sick* The nmap output is a real
horror show. I am always astonished when people are that airy.

Alexander


-- 
Alexander Dalloz | Enger, Germany | GPG http://pgp.mit.edu 0xB366A773
legal statement: http://www.uni-x.org/legal.html
Fedora Core 2 GNU/Linux on Athlon with kernel 2.6.11-1.35_FC2smp 
Serendipity 22:40:03 up 11 days, 20:40, load average: 0.21, 0.25, 0.23 


signature.asc
Description: Dies ist ein digital signierter Nachrichtenteil

Cyrus Home Page: http://asg.web.cmu.edu/cyrus
Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu
List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html

Re: Set quota

2005-11-09 Thread Alexander Dalloz
Am Mi, den 09.11.2005 schrieb Simon Matter um 9:11:

> At least with my packages and those derived from them, you can determine
> most build options. Just check
> /usr/share/doc/cyrus-imapd-[version]/README.buildoptions.
> Of course it doesn't tell you exactly which versions of patches have been
> applied.
> 
> Regards,
> Simon

For Fedora Cyrus-IMAPd packages the CVS public readable (Core and
Extras). For example to easily read the .spec file and checking which
patches are applied:

http://cvs.fedora.redhat.com/viewcvs/rpms/cyrus-imapd/FC-4/cyrus-imapd.spec?root=extras&rev=1.5&view=markup

The CVS directory above contains the patch files.

Alexander


-- 
Alexander Dalloz | Enger, Germany | GPG http://pgp.mit.edu 0xB366A773
legal statement: http://www.uni-x.org/legal.html
Fedora Core 2 GNU/Linux on Athlon with kernel 2.6.11-1.35_FC2smp 
Serendipity 21:32:16 up 11 days, 19:32, load average: 0.48, 0.41, 0.31 


signature.asc
Description: Dies ist ein digital signierter Nachrichtenteil

Cyrus Home Page: http://asg.web.cmu.edu/cyrus
Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu
List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html

Re: Set quota

2005-11-08 Thread Alexander Dalloz
Am Di, den 08.11.2005 schrieb Craig White um 14:38:

> I haven't a clue what features are included in FC-3 - that is why I
> suggested checking out the README to see if feature was included.
> 
> Myself, I use RHEL & CentOS for servers (never Fedora) and never use
> RHEL/CentOS cyrus-imapd because of the tremendous autocreate packages in
> Simon's RPM's (thanks Simon btw)
> 
> I actually created an RFE in bugzilla.redhat.com to incorporate either
> more of the autocreate stuff or use Simon's RPM's and it was tossed into
> the next release category which is what I presumed never happened
> category (e.g. RH's laggard adoption of openldap advances).
> 
> Craig

There is no need for an RFE. The Fedora Core / Fedora Extras (FC4)
packages of Cyrus-IMAPd are based (~99%) on Simon's great work and
include the autocreate patches already. They, the patches, are just not
that up to date as those Simon's latest RPM incorporate.

Alexander


-- 
Alexander Dalloz | Enger, Germany | GPG http://pgp.mit.edu 0xB366A773
legal statement: http://www.uni-x.org/legal.html
Fedora Core 2 GNU/Linux on Athlon with kernel 2.6.11-1.35_FC2smp 
Serendipity 16:55:52 up 10 days, 14:56, load average: 0.65, 0.34, 0.16 


signature.asc
Description: Dies ist ein digital signierter Nachrichtenteil

Cyrus Home Page: http://asg.web.cmu.edu/cyrus
Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu
List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html

Re: Migration from Solaris to Linux

2005-11-05 Thread Alexander Dalloz
Am So, den 06.11.2005 schrieb Peter P. Benac um 2:46:

> Any one have a script that will migrate ALL mail boxes on one server to
> another.  I know this question has been asked a million time, but I don't
> recall any answers.

> Peter P. Benac, CCNA

Use imapsync http://directory.fsf.org/email/misc/imapsync.html

Alexander


-- 
Alexander Dalloz | Enger, Germany | GPG http://pgp.mit.edu 0xB366A773
legal statement: http://www.uni-x.org/legal.html
Fedora Core 2 GNU/Linux on Athlon with kernel 2.6.11-1.35_FC2smp 
Serendipity 04:09:11 up 8 days, 2:09, load average: 1.72, 1.50, 0.93 


signature.asc
Description: Dies ist ein digital signierter Nachrichtenteil

Cyrus Home Page: http://asg.web.cmu.edu/cyrus
Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu
List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html

Re: Compile Problem on Fedora Core 4

2005-11-05 Thread Alexander Dalloz
Am Sa, den 05.11.2005 schrieb Peter P. Benac um 23:38:
> Greetings,
> 
> I am getting the following error when trying to compile on Fedora Core
4
> 
> gcc -c -I.. -I/usr/local/BerkeleyDB.4.3/include-DHAVE_CONFIG_H  -g
-O2
> \
> libconfig.c
> In file included from libconfig.h:47,
>  from libconfig.c:57:
> imapopts.h:181: error: array type has incomplete element type
> make[1]: *** [libconfig.o] Error 1
> make[1]: Leaving directory `/home/ppbenac/mail/cyrus-imapd-2.2.8/lib'

That version has security issues.

> I have tried this 2.2.10 and 2.2.12 with the same error.
> 
> I did a web search with not joy..  Anybody solve this issue or can
point me
> in the right direction..
> 
> Regards,
> Pete

Why at all do you try to compile from sources? Not recommended on an RPM
system like Fedora. If you really think you need to change anything
compared to the Cyrus-IMAPd Fedora ships with (Fedora Extras), then get
the src.rpm and add your patch. Or get the very nice package from Simon
Matter (pre-packager of the FE rpm):

http://www.invoca.ch/pub/packages/cyrus-imapd/

> Peter P. Benac, CCNA

Alexander


-- 
Alexander Dalloz | Enger, Germany | GPG http://pgp.mit.edu 0xB366A773
legal statement: http://www.uni-x.org/legal.html
Fedora Core 2 GNU/Linux on Athlon with kernel 2.6.11-1.35_FC2smp 
Serendipity 00:38:49 up 7 days, 22:39, load average: 0.17, 0.18, 0.17 


signature.asc
Description: Dies ist ein digital signierter Nachrichtenteil

Cyrus Home Page: http://asg.web.cmu.edu/cyrus
Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu
List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html

Re: cyrus22+virtdomains="Invalid mailbox name"

2005-09-15 Thread Alexander Koch
On Thu, Sep 15, 2005 at 09:24:06AM +0200, Vladimir Dvorak wrote:
> Thank you Alexander. Yes, the solution is:
> /etc/imapd.conf
> admins: cyrus ( without domain of course )
> 
> and in /etc/hosts have
> 
> 127.0.0.1   localhost
> 
> I got in /etc/hosts '127.0.0.1 localhost.localdomain' and 'cyradm -u
> cyrus localhost' authenticated as [EMAIL PROTECTED], which was wrong.

We had similar problems, if you had virtdomains: on cyrus looks up your
domain from the incoming interface. So it is not wrong that you came
with @localdomain at most it is confusing. If you set servername and
have virtdomains set to userid, unqualified usernames comes with
@servername. userid disables the lookup of the domain from the incoming
interface.

AFAIK,
Alex

-- 
   Alexander Koch, mailto: [EMAIL PROTECTED]
   ILK Internet GmbH, Akademiestrasse 25 - 27, D-76133 Karlsruhe
   Tel: +49 (0) 721 9100 0, Fax: +49 (0) 721 9100 191
   http://www.ilk.net

Cyrus Home Page: http://asg.web.cmu.edu/cyrus
Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu
List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html


Re: cyrus22+virtdomains="Invalid mailbox name"

2005-09-14 Thread Alexander Koch
Hello Vladimir,

On Wed, Sep 14, 2005 at 10:23:43AM +0200, Vladimir Dvorak wrote:
> I am running Debian 3.1, with Cyrus22-imapd ( 2.2.12 ). I switched on
> virtdomains support.
> 
> devel:/var/run# cyradm -u [EMAIL PROTECTED] localhost
> IMAP Password:
> localhost.localdomain> cm user.test
> 
> ^^^ this works, user test is included into defaultdomain.
> 
> But,
> 
> localhost.localdomain> cm [EMAIL PROTECTED]
> createmailbox: Invalid mailbox name
> 
> Why ?

did you definied a global admin in your imapd.conf? 

admins: cyrus
(without domain)

Regards,
Alex

-- 
   Alexander Koch, mailto: [EMAIL PROTECTED]
   ILK Internet GmbH, Akademiestrasse 25 - 27, D-76133 Karlsruhe
   Tel: +49 (0) 721 9100 0, Fax: +49 (0) 721 9100 191
   http://www.ilk.net

Cyrus Home Page: http://asg.web.cmu.edu/cyrus
Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu
List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html


Re: Hiding Banner

2005-09-14 Thread Alexander Dalloz
Am Mi, den 14.09.2005 schrieb Amod Sutavane um 11:35:

>   I am new to cyrus. I have manage to installed cyrus-imapd
> 2.2.12-9 on FC1. For security reasons, i need to change the Banner of
> cyrus-imapd server. When i do telnet localhost 110 , i gets * OK
> netserv Cyrus IMAP4 v2.2.12-Invoca-RPM-2.2.12-9 server ready, how can
> i change it as per my requirement??? I am having source rpm with me.
> Can any body help me out ???

> Amod Sutavane.

http://www.google.com/search?hl=en&q=security+by+obscurity&btnG=Google+Search

Better keep your system secure then trying to camouflage.
Btw. you are running an EOL (end of lifetime) Linux distribution
release. Think about that.

Alexander


-- 
Alexander Dalloz | Enger, Germany | GPG http://pgp.mit.edu 0xB366A773
legal statement: http://www.uni-x.org/legal.html
Fedora Core 2 GNU/Linux on Athlon with kernel 2.6.11-1.35_FC2smp 
Serendipity 12:43:51 up 23 days, 9:27, load average: 0.27, 0.27, 0.24 


Cyrus Home Page: http://asg.web.cmu.edu/cyrus
Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu
List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html


Re: Pop3 / Auth

2005-09-13 Thread Alexander Dalloz
Am Di, den 13.09.2005 schrieb [EMAIL PROTECTED] um 16:18:

> I use SASL AUTh, with method shadow
> When a users wanna connect to pop3 then he gets user/pw msg. in log then are 
> "no directory / inbox aviable for this user".
> Shouldnt normaly create "autocreate patch" this directory when a user trys 
> to connect ?
> yes or?

Only if the autocreate is configured according to it's documentation.
Read it carefully. You else too may get a new mailbox each time a
spammer sends his message to a non existing user (your MTA should
prevent you from this).

Alexander


-- 
Alexander Dalloz | Enger, Germany | GPG http://pgp.mit.edu 0xB366A773
legal statement: http://www.uni-x.org/legal.html
Fedora Core 2 GNU/Linux on Athlon with kernel 2.6.11-1.35_FC2smp 
Serendipity 20:17:52 up 22 days, 17:01, load average: 0.29, 0.21, 0.13 


Cyrus Home Page: http://asg.web.cmu.edu/cyrus
Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu
List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html


Re: cannot authenticate to server cyrus

2005-09-07 Thread Alexander Dalloz
Am Di, den 06.09.2005 schrieb RYAN vAN GINNEKEN um 22:50:

> >>the user seems to be there i even tried loggin into cyadmin as 
> >>tokyo.computerking.ca

> >Is that the FQDN hostname?

> Yes one of them would that make a differance

It can make a difference.

> >>sasldblistusers2
> >>[EMAIL PROTECTED]: userPassword
> >>[EMAIL PROTECTED]: userPassword
> >>[EMAIL PROTECTED]: userPassword

> >And what did you configure for "admins:" in imapd.conf?
> >
> /etc/imapd.conf
> admins: rmvg cyrus

I assume you have not virtdomain setup, so tokyo.computerking.ca is your
single realm.

> > Did you use
> >"imtest" to test whether your auth setup works with Cyrus-IMAPd itself
> >(not just the specific Perl tool cyradm)?

> hmm that seems to be a problem it could have swore it worked for me 
> before am i using imtest correctly "imtest -u cyrus localhost"
> 
> tokyo.computerking.ca > /home/rmvg #imtest -u cyrus localhost
> S: * OK tokyo.computerking.ca Cyrus IMAP4 v2.2.12 server ready
> C: C01 CAPABILITY
> S: * CAPABILITY IMAP4 IMAP4rev1 ACL QUOTA LITERAL+ MAILBOX-REFERRALS 
> NAMESPACE UIDPLUS ID NO_ATOMIC_RENAME UNSELECT CHILDREN MULTIAPPEND 
> BINARY SORT THREAD=ORDEREDSUBJECT THREAD=REFERENCES ANNOTATEMORE IDLE 
> LISTEXT LIST-SUBSCRIBED X-NETSCAPE
> S: C01 OK Completed
> Please enter your password:
> C: L01 LOGIN root {6}

You observe anything in line above?

> S: + go ahead
> C: 
> S: L01 NO Login failed: user not found
> Authentication failed. generic failure
> Security strength factor: 0

It does not wonder that auth fails, as your sasldb2 does not contain a
"root" user, which is not bad or a problem.

imtest -a cyrus -u cyrus localhost

Alexander


-- 
Alexander Dalloz | Enger, Germany | GPG http://pgp.mit.edu 0xB366A773
legal statement: http://www.uni-x.org/legal.html
Fedora Core 2 GNU/Linux on Athlon with kernel 2.6.11-1.35_FC2smp 
Serendipity 13:05:24 up 16 days, 9:49, load average: 0.14, 0.14, 0.10 


Cyrus Home Page: http://asg.web.cmu.edu/cyrus
Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu
List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html


Re: cannot authenticate to server cyrus

2005-09-06 Thread Alexander Dalloz
Am Di, den 06.09.2005 schrieb RYAN vAN GINNEKEN um 12:07:

> Thank u that seemed to work i changed the cyrus.conf file like u 
> suggested however now i am back to my original problem

> My original problem is permission denied when tring to create mailboxes
> 
> su cyrus
> %cyradm localhost
> IMAP Password:
>   localhost.computerking.ca>
> localhost.computerking.ca> cm user.testjim
> createmailbox: Permission denied
> localhost.computerking.ca> whoami
> cyrus

> the user seems to be there i even tried loggin into cyadmin as 
> tokyo.computerking.ca

Is that the FQDN hostname?

> sasldblistusers2
> [EMAIL PROTECTED]: userPassword
> [EMAIL PROTECTED]: userPassword
> [EMAIL PROTECTED]: userPassword

And what did you configure for "admins:" in imapd.conf? Did you use
"imtest" to test whether your auth setup works with Cyrus-IMAPd itself
(not just the specific Perl tool cyradm)?

Alexander


-- 
Alexander Dalloz | Enger, Germany | GPG http://pgp.mit.edu 0xB366A773
legal statement: http://www.uni-x.org/legal.html
Fedora Core 2 GNU/Linux on Athlon with kernel 2.6.11-1.35_FC2smp 
Serendipity 14:27:40 up 15 days, 11:11, load average: 0.01, 0.07, 0.09 


Cyrus Home Page: http://asg.web.cmu.edu/cyrus
Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu
List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html


Re: cannot authenticate to server cyrus

2005-09-05 Thread Alexander Dalloz
Am Mo, den 05.09.2005 schrieb RYAN vAN GINNEKEN um 10:44:

> cyrus.conf and Cyrus.conf
> pwcheck_method: auxprop
> sasldb_path: /usr/local/etc/sasldb2.db

In /etc/cyrus.conf it should be:

sasl_sasldb_path: /path/to/sasldb2.db

(Why don't you use the default path /etc/?)

man imapd.conf ->

"sasl_option: 0
Any SASL option can be set by preceeding it  with "sasl_".  
This file overrides the SASL configuration file."

And the SASL option is "sasldb_path".

Alexander


-- 
Alexander Dalloz | Enger, Germany | GPG http://pgp.mit.edu 0xB366A773
legal statement: http://www.uni-x.org/legal.html
Fedora Core 2 GNU/Linux on Athlon with kernel 2.6.11-1.35_FC2smp 
Serendipity 02:26:53 up 14 days, 23:10, load average: 1.53, 0.53, 0.25 


Cyrus Home Page: http://asg.web.cmu.edu/cyrus
Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu
List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html


Re: cannot authenticate to server cyrus

2005-09-05 Thread Alexander Dalloz
Am Mo, den 05.09.2005 schrieb RYAN vAN GINNEKEN um 10:44:

> cyrus.conf and Cyrus.conf
> pwcheck_method: auxprop
> sasldb_path: /usr/local/etc/sasldb2.db

/etc/cyrus.conf

It should be

sasl_sasldb_path: /path/to/sasldb2.db

(Why don't you use the default path /etc/?)

man imapd.conf

"sasl_option: 0
Any SASL option can be set by preceeding it  with 
"sasl_".   This
file overrides the SASL configuration file."

And the SASL option is "sasldb_path".

Alexander


-- 
Alexander Dalloz | Enger, Germany | GPG http://pgp.mit.edu 0xB366A773
legal statement: http://www.uni-x.org/legal.html
Fedora Core 2 GNU/Linux on Athlon with kernel 2.6.11-1.35_FC2smp 
Serendipity 02:09:59 up 14 days, 22:53, load average: 0.13, 0.15, 0.12 


signature.asc
Description: Dies ist ein digital signierter Nachrichtenteil

Cyrus Home Page: http://asg.web.cmu.edu/cyrus
Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu
List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html

Re: export mailboxes?

2005-07-05 Thread Alexander Dalloz
Am Di, den 05.07.2005 schrieb Matt Singerman um 13:18:

> We are switching machines in my office.  Both are running Cyrus IMAP. 
> Is there a command in Cyrus to easily export the mailboxes, then
> import them on the new machine?

> Matt

http://freshmeat.net/projects/imapsync/

Alexander


-- 
Alexander Dalloz | Enger, Germany | GPG http://pgp.mit.edu 0xB366A773
legal statement: http://www.uni-x.org/legal.html
Fedora Core 2 GNU/Linux on Athlon with kernel 2.6.11-1.35_FC2smp 
Serendipity 13:49:15 up 9 days, 20:41, load average: 0.15, 0.18, 0.16 

---
Cyrus Home Page: http://asg.web.cmu.edu/cyrus
Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu
List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html


Re: cyrus-imapd pop3 authentication

2005-06-22 Thread Alexander Dalloz
Am Mi, den 22.06.2005 schrieb Vijay Kumar um 17:23:

> I am running cyrus-imapd-2.2.10 on RHEL 4 system.

Update to the current update version of that package!

> We have created a user test with passwd test and we want to this user
> to receive email. 
> 
> When we do a “telnet  110 and then give the USER and PASS commands
> , we are notable to login using the user id and passwd. Error given is
> : -[ERR] AUTH Invalid Login. 
> 
>  
> 
> The logs show an error “unknown password identifier” 
> 
>  
> 
> Here’s the imapd.conf  file : 
> 
>  
> 
> configdirectory: /var/lib/imap
> 
> partition-default: /var/spool/imap
> 
> admins: cyrus root
> 
> sievedir: /var/lib/imap/sieve
> 
> sendmail: /opt/postfix/sbin/sendmail
> 
> hashimapspool: true
> 
> sasl_pwcheck_method:passwd 

False, change that to "saslauthd"


> sasl_mech_list: PLAIN
> 
> tls_cert_file: /usr/share/ssl/certs/cyrus-imapd.pem
> 
> tls_key_file: /usr/share/ssl/certs/cyrus-imapd.pem
> 
> tls_ca_file: /usr/share/ssl/certs/ca-bundle.crt
> 
>  
> 
> I have tried replacing the sasl_pwcheck_method with shadow and unix
> keywords. 
> 
>  
> 
> How can we configure support for /etc/passwd file, so that the same
> can be checked ? 

Do above change and make sure saslauthd is running: service saslauthd
start; chkconfig saslauthd on. saslauthd is configured through
/etc/sysconfig/saslauthd.

> Do we need to create Maildir in every users home directory ? 

No, Cyrus-IMAPd has his own central mail storage.

> Vijay. 

Alexander


-- 
Alexander Dalloz | Enger, Germany | GPG http://pgp.mit.edu 0xB366A773
legal statement: http://www.uni-x.org/legal.html
Fedora Core 2 GNU/Linux on Athlon with kernel 2.6.11-1.27_FC2smp 
Serendipity 17:48:06 up 1 day, 2:02, load average: 0.56, 0.66, 0.63 

---
Cyrus Home Page: http://asg.web.cmu.edu/cyrus
Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu
List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html


Re: Cyrus - Postfix

2005-06-20 Thread Alexander Dalloz
Am Mo, den 20.06.2005 schrieb Thor Vik um 19:38:

> This advice obviously caused an action from postfix when sending mail to the
> server. I added mailbox_transport = lmtp:unix:/usr/lib/cyrus/bin/lmtpd to
> the main.cf 

To the lmtpd daemon? This should be the lmtp socket file.

> However I get an "connection refused" error when postfix tries to execute
> lmtpd so I am still not receiving any emails. I quick google scan suggest it
> might be something with the cyrus.conf file, and the lmptd settings. If
> anyone have a quick answer I would be pleased?
> 
> Regards 
> 
> Wingthor

Alexander


-- 
Alexander Dalloz | Enger, Germany | GPG http://pgp.mit.edu 0xB366A773
legal statement: http://www.uni-x.org/legal.html
Fedora Core 2 GNU/Linux on Athlon with kernel 2.6.11-1.27_FC2smp 
Serendipity 19:55:08 up 27 days, 18:32, load average: 0.20, 0.15, 0.15 

---
Cyrus Home Page: http://asg.web.cmu.edu/cyrus
Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu
List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html


Re: Cyrus - Postfix

2005-06-20 Thread Alexander Dalloz
Am Mo, den 20.06.2005 schrieb Thor Vik um 16:53:

> When I connect to the imap server from mail client (MS outlook) I only see
> the inbox folder with no emails. I have testet both the postfix and cyrus.
> And postfix send emails. I can find them in /var/mail. I also can log in to
> Cyrus, both at server side and client side. Hovever Cyrus uses
> default-partition /var/spool/cyrus/mail
> 
> I am not sure but I have a feeling that cyrus doesn't look where postfix put
> the email, but I can't figure out where to set/view these directives.

> Wingthor

It is more your Postfix does not know about the different mail storage
with Cyrus-IMAPd (Postfix uses a local mailer like procmail; you will
have to migrate mail which got in falsely so far). So tell Postfix to
hand over the mail to Cyrus-IMAPd using the LMTP socket. Several
examples are to be found using google.

Alexander


-- 
Alexander Dalloz | Enger, Germany | GPG http://pgp.mit.edu 0xB366A773
legal statement: http://www.uni-x.org/legal.html
Fedora Core 2 GNU/Linux on Athlon with kernel 2.6.11-1.27_FC2smp 
Serendipity 17:25:41 up 27 days, 16:03, load average: 0.12, 0.13, 0.12 

---
Cyrus Home Page: http://asg.web.cmu.edu/cyrus
Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu
List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html


Re: Changing the IMAP server's banner -- does one still need to patch the source?

2005-06-16 Thread Alexander Dalloz
Am Do, den 16.06.2005 schrieb Ralph Seichter um 17:06:

> I'm looking for a configuration parameter to change Cyrus IMAP's
> banner text. A banner like
> 
>   * OK server.tld Cyrus IMAP4 v2.2.3 server ready
> 
> is giving too much away about the server, IMHO. For security reasons,
> I'd like show only the information required by RFC definition.

Sorry, but that is nonsense, with other words well known as "security by
obscurity" and thus simpy useless. See the thread "Cyrus Banner" which
started Tuesday. Seriously, you gain absolutely nothing by hiding any
kind of version number or IMAP server type string. Get over to useful
things and keep your system up to date. Your version of Cyrus-IMAPd is
outdated and has bugs (at least if not patched).

Alexander


-- 
Alexander Dalloz | Enger, Germany | GPG http://pgp.mit.edu 0xB366A773
legal statement: http://www.uni-x.org/legal.html
Fedora Core 2 GNU/Linux on Athlon with kernel 2.6.11-1.27_FC2smp 
Serendipity 20:39:27 up 23 days, 19:17, load average: 0.17, 0.24, 0.20 

---
Cyrus Home Page: http://asg.web.cmu.edu/cyrus
Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu
List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html


Re: IMSP + SSL/TLS

2005-06-15 Thread Alexander Dalloz
Am Mi, den 15.06.2005 schrieb Jörg Eichhorn um 11:46:

> is it possible to use SSL/TSL to connect to the cyrus imsp server?
> If yes, how do i configure the certificates for the server?

> Jörg Eichhorn

To use IMAPS configure cyrus.conf - in the SERVICES section something
like

imaps   cmd="imapd -s" listen="imaps" prefork=0

and generate the required certificates using OpenSSL. There are plenty
of howtos in the www (use google).

Alexander


-- 
Alexander Dalloz | Enger, Germany | GPG http://pgp.mit.edu 0xB366A773
legal statement: http://www.uni-x.org/legal.html
Fedora Core 2 GNU/Linux on Athlon with kernel 2.6.11-1.27_FC2smp 
Serendipity 18:56:55 up 22 days, 17:34, load average: 0.17, 0.15, 0.10 

---
Cyrus Home Page: http://asg.web.cmu.edu/cyrus
Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu
List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html


  1   2   >