Re: Virtual Memory Consumption of Cyrus IMAPd
Rob Siemborski wrote: On Tue, 20 Jul 2004, Mohamed Magdi Abbas wrote: Rob Siemborski wrote: On Mon, 19 Jul 2004, Andrew Brink wrote: I have also seen this sasauthd memory leak on a Debian box. A simple restart always fixes the problem for me too. When we get reports like this it inevitably turns out to be the PAM module leaking memory, not saslauthd itself. But then why would a restart of saslauthd itself fix things, i.e. release the swap space (it or someother piece down the line) used up? PAM modules are used as libraries by the running process. If they leak memory as part of the saslauthd process, then killing saslauthd will release the leaked memory. Ah, that's right... thanks for the reminder... -Rob -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- Rob Siemborski * Andrew Systems Group * Cyert Hall 207 * 412-268-7456 Research Systems Programmer * /usr/contributed Gatekeeper --- Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html --- Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: Virtual Memory Consumption of Cyrus IMAPd
Rob Siemborski wrote: On Mon, 19 Jul 2004, Andrew Brink wrote: I have also seen this sasauthd memory leak on a Debian box. A simple restart always fixes the problem for me too. When we get reports like this it inevitably turns out to be the PAM module leaking memory, not saslauthd itself. But then why would a restart of saslauthd itself fix things, i.e. release the swap space (it or someother piece down the line) used up? -Rob -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- Rob Siemborski * Andrew Systems Group * Cyert Hall 207 * 412-268-7456 Research Systems Programmer * /usr/contributed Gatekeeper --- Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Virtual Memory Consumption of Cyrus IMAPd
I'm running cyrus impad(v 2.2.6), used to run 2.1.16, on RHEL 3.0 and noticed that the amount of swap space free is decreasing. When I was running v2.1.16, the swap free would decrease until the kernel oom(out of memory) killer would activate and start killing processes which essentially grinds the system to a halt. I doubt that this is normal. Could this point to a memory leak in cyrus. Just for note, I have not yet experienced this with the latest version, but the swap free is decreasing. By the way I'm using simons RPMS from invoca.ch. Could someone shed some light on this. Anything will help... Mohamed Magdi Abbas Systems Engineer Longwood University [EMAIL PROTECTED] --- Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: Wanted: an example imapd.conf for authenticating against Active Directory
Igor Brezac wrote: On Thu, 8 Jul 2004, Paul Boven wrote: Hi everyone, For a new customer, I'm setting up a Cyrus server that will have to authenticate against an Active Directory server. So far, I've gotten Kerberos, TSL, SASL all working together from the command-line with ldapsearch, so what remains is to build an imapd.conf and have Cyrus play nice with the ADS. But here are about 3 pages of ldap-options to imapd.conf, and I still don't know what attribute to use to check authentication against, so I'm a bit stuck for inspiration. These are pts related commands. You need to look at cyrus-sasl documentation ($cyrus-sasl-src/doc) As a side question: the pts ldap support is labeled experimental in cyrus-imapd 2.2.6. What does that mean? Is it not stable, prone to crash? Or is it just not well tested. I would like to use in our production environment, but have been reluctant sicne it's labeled experimental. -- Igor --- Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html --- Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: Delivery According to ACLs' "post" Privilege
[EMAIL PROTECTED] wrote: In one area I have had trouble using Cyrus IMAPd: Delivery. After considerable effort - and help from others - I believe I've arrived at the fundamental problem: I wish for users to be able to filter mail using arbitrary user level programs, but I don't wish for users to be able to deliver mail to any and every mailbox. For users to be able to filter mail using arbitrary user level programs - run with the users' privileges - delivery must be possible with the users' privileges. As I understand it, however, allowing a user to deliver - either using filesystem permissions or as an LMTP admin - means allowing a user to deliver to any mailbox. I also understand, however, that it is possible to authenticate to the Cyrus LMTPd through TCP/IP using SASL, but that "... Only LMTP admins can deliver to LMTPd through TCP/IP sockets." Can someone explain why it is not possible for users, once authenticated, to deliver to only those mailboxes whose ACLs grant them "post" privileges? That can be done. If you are using sendmail then you need to compile it from scratch with the following: You have to add -D_FFR_AUTH_PASSING=1 to your site.config.m4( might be called something else if you a .src.rpm): APPENDDEF(`confENVDEF', `-DSASL=2 -DNEWDB -DLDAPMAP -DSTARTTLS -DMAP_REGEX -DMILTER -D_FFR_AUTH_PASSING=1') Then make sure you configure sendmail.mc to enable SMTP AUTH, and make sure LMTPD is running via TCP/IP. That should accomplish what you want... Mohamed Magdi Abbas [EMAIL PROTECTED] Systems Engineer Longwood University Thanks! Jack --- Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html --- Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
SMTP AUTH and LMTP AUTH passing AUTH= info
I've configured both sendmail and cyrus to do both SMTP AUTH and LMTP AUTH respectively. Delivery is done via LMTP TCP. The one thing not working is the passing of the auth credentials from sendmail to lmtp. I.e if I have a shared folder with a post acl assigned to user jsmith, and jsmith sends email to that shared folder, I get user does not have authroization to post to this mailbox. How do I fix this? Anyone? I've scanned he info-cyrus archives and came up with nothing. Any help is appreciated... Mohamed Magdi Abbas Systems Engineer [EMAIL PROTECTED] Longwood University --- Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
