Re: unexpunge broken?
C.K wrote: Is here anyone who ca ntell me how unexpunge works? i have delayed in imapd.conf expunge_mode: delayed and cyrus.conf delprunecmd=cyr_expire -E 6 at=0100 expunge cmd=cyr_expire -X 8 at=0300 but when i try the commands in any form i get errors like this, mail2# su cyrus -c /usr/cyrus/bin/unexpunge -l user/[EMAIL PROTECTED] mail2# tail /var/log/imapd.log Aug 21 17:57:50 mail2 unexpunge[47669]: unable to open/lock mailbox (null) I see the unable to open/lock mailbox if it's in use by an IMAP client. The (null) part looks strange though. Maybe you have some character separator settings that are confusing the situation? How are you running the command exactly? -- Scott Russell [EMAIL PROTECTED] IBM Linux Technology Center, System Admin Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: [ProbableSpam]Re: Cyrus upgrade, need advice
Sun Advocate Webmaster wrote: I don't use sieve, and I haven't set up any sort of 'murder' environment (which I am largely unfamiliar with). I don't know a lot about Berkeley DB, other than it is an offline sort of database (it isn't a server, but a data storage engine, for lack of better words). I am not familiar with the Berkeley related commands. The SLES 10 is going on the same physical computer, and yes, it will be an x86_64 build of Linux. I could re-enter the users, which isn't the worst thing... my biggest concern is the mail itself (as most of our users do use IMAP). How many users and how big is your cyrus mail store? While you're doing an upgrade you can still take some good steps a head of time to avoid serious disaster 1) If possible, copy the /var/spool/imap/ mail storage to another system, or another partition, that you know will not be erased during the upgrade. If something goes wrong you may be able to 'restore' from there for the mail files. Maybe you have an external USB drive you can hook up and use as storage? 1.5) Do the same backup for /var/lib/imap. It's not that large and it contains all the important databases. 2) Use ctl_mailbox to dump flatfile version of your mailbox.db file. This is critical. Keep a copy of it somewhere else. It is small. Put it on a USB thumb drive if you have to or just mail it to your home account. 3) Before doing the update make a tgz backup of /etc/. It's always handy to refer to 'old config files' before an upgrade gets a hold of them. 4) Make sure your postfix queue is empty before shutting down the system. Use the mailq command to check. 5) Before updating, become failure with cyrus command cvt_cyrusdb(8) and berkleydb commands db_checkpoint and db_recover. These should be safe to play with on copies of your data and will be helpful after the upgrade if something goes unexpected or you change storage formats. Good Luck! -- Scott Russell [EMAIL PROTECTED] IBM Linux Technology Center, System Admin Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: reconstruct while system is running?
Michael Loftis wrote: --On July 25, 2006 3:37:43 PM +0200 Heiling, Steffen [EMAIL PROTECTED] wrote: I'm just wondering if I can run reconstruct -r for all mailboxes while the system is running with mid load? I want to switch all mailboxes to a new server with more space and without a big downtime. I'm not sure if your entire plan is safe, however, reconstruct is safe. An individual mailbox or folder just gets locked during the actual reconstruct. Note that it'll increase your I/O load by a pretty large amount during the reconstruct. I thought that if a mailbox was in use by a client (opened state) then reconstruct would fail for that mailbox? Can someone confirm that reconstruct won't skip the mailbox while the user is writing/reading to the mailbox? -- Scott Russell [EMAIL PROTECTED] IBM Linux Technology Center, System Admin Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: possible cyrus problems
[EMAIL PROTECTED] wrote: The director is going mad , because the staff are saying that they did not delete the emails, so therefore it must be the software or the hardware problem right? I have checked the system , and neither the disk of the file system is failing, nor is there any errors in any log. How do I track down where the emails are going? Since this is a small office, enable logging for each account on the affected server. Write a script that scans the log files for the name of the shared folder and flags which accounts have accessed it. Examine the log files that have been flagged looking for possible problems. Repeat daily until the mystery is solved. -- Scott Russell [EMAIL PROTECTED] IBM Linux Technology Center, System Admin Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: Cyrus 2.3.7 Replication Question
Robert Mueller wrote: You can make it work (we do), but you need 2 separate instances of cyrus on each machine, which basically means 2 start/stop scripts, 2 different ports/ips for each service, 2 imapd.confs, 2 cyrus.confs, and lots of -C command line params to everything so it uses the right conf file. Can you detail this A - B replication setup more? I've been trying to figure out how to make use of the new 2.3.7 replication features outside of a murder. The thing I can't wrap my head around is the following situation: 1) Server A dies 2) Users are sent to Server B via DNS redirects 3) Server A is restored 4) Mailboxes on Server B are now more 'current' than mailboxes on Server A In other words, the failover is easy(ish) but the failback has me scratching my head. I Think two way replication solves that. -- Scott Russell [EMAIL PROTECTED] IBM Linux Technology Center, System Admin Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: Cyrus 2.3.7 Replication Question
Robert Mueller wrote: 1) Server A dies 2) Users are sent to Server B via DNS redirects 3) Server A is restored 4) Mailboxes on Server B are now more 'current' than mailboxes on Server A In other words, the failover is easy(ish) but the failback has me scratching my head. I Think two way replication solves that. Once you've got Server A back, you have to make sure that when you start it you've disabled the sync_client and all IMAP/POP/LMTP connections to Server A, otherwise if you have things happening to both of them at the same time, you'll be in big trouble since there won't be an authorative server anymore. Before you change back to the original setup, you have to change the configuration so that Server B has a sync_client and Server A has a sync_server, and run replication back the other way until all the mailboxes on Server A are back up to date with the contents of Server B (and probably for safety do a sync_client -u on each user), then switch over back to the original setup. Interesting. This process also implies you want to stop incoming mail for a period of time to both servers. Sound right? -- Scott Russell [EMAIL PROTECTED] IBM Linux Technology Center, System Admin Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: Spam control
Martin Schiøtz wrote:
My next step is to install Spam control. My plan is to use
Spamassassin with dcc, razor, pyzor and bayes system. A want mail
users to be able to disable and enable spam control. I also wan't mail
users that has enabled spam control to train (sa-laern) and keep their
own bayes database.
Use spamc and spamd in combination with postfix. The postfix
FILTER_README will help you out. In my master.cf I have
192.168.1.100:smtp
inet n - n - - smtpd
-o smtp_send_xforward_command=yes
-o content_filter=spamc
127.0.0.1:smtp
inet n - n - - smtpd
-o local_recipient_maps=
-o mynetworks=127.0.0.1
-o smtpd_client_restrictions=permit_mynetworks,reject
spamc unix - n n - 20 pipe
flags=Rq user=spamd argv=/usr/bin/spamc -u ${user} -t 300
-s 25 -e /usr/sbin/sendmail -oi -f ${sender} -- ${recipient}
This has postfix feed all inbound smtp mail from 192.168.1.100 into the
spamc transport and back out to the localhost:smtp transport after spam
checking. Make sure you configure SA to store everything in your
database (accounts, preferences, bayes) and take advantage of the spamc
-u option to specify the SA username for loading individual preferences.
For training bayes, you will find much better performance using spamc +
spamd instead of sa-learn and you'll get the same results. Create
per-user spam training folders (maybe Learn as SPAM and Learn as HAM
and have a script do the following:
1) From the DB, find all users with the SA pref 'use_bayes' enabled.
2) For each user, find the Learn as SPAM folder
3) Read each message in the folder and pipe it into spamc for training
4) Mark the message deleted and repeat for the next message in the folder
5) Expunge the folder
6) Locate the next Learn as HAM folder and repeat steps 3 - 5
A script like the above can be setup to run from cron as often as you need.
I can see a lot docs about postfix, cyrus and amavisd-new but can
amavis-new work with personal bayes db and sa-learn etc.?
No. Amavisd-new does site wide bayes only. If you want personal bayes
you need to roll your own solution, which is what I did as described above.
--
Scott Russell [EMAIL PROTECTED]
IBM Linux Technology Center System Admin
Cyrus Home Page: http://asg.web.cmu.edu/cyrus
Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu
List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: Spam control
Martin Schiøtz wrote: I understand the steps but I'm not sure about how to use spamc/spamd for training/learning and not sa-learn. Are you thinking about 'bayes_auto_learn = 1' ? Could you give me an example of the command? In my perl script I use: cat $msg | /usr/bin/spamc -u $userid -x -L $type In the command above, $userid is the username stored by SA in the bayes_vars SQL table and $type is either 'spam', 'ham', or 'forget'. See man spamc(1) for details. You can test this on the command line and tail /var/log/*mail*log to see spamd at work. A copy of the script I wrote is at http://files.bluecamel.imap.cc/. It may not work at all for your setup but it may be a good starting point for you. -- Scott Russell [EMAIL PROTECTED] IBM Linux Technology Center, System Admin Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: Canon User Plugin Skeleton - Help Needed
Pedro Algarvio wrote: I need some help on getting at least a skeleton for a cannon user plugin, and info on how to compile it please. You plan to shoot users who go over quota with a cannon? I'm interested! -- Scott Russell [EMAIL PROTECTED] IBM Linux Technology Center System Admin Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: Backup stored messages
Karjala wrote: Hi How does one backup e-mail messages stored in Cyrus IMAP's mailboxes? We use Legato Networker. You can use just about anything though, rsync, tar, backula, etc all spring to mind. Pick something that works for you. Which directories to copy, and do I simply overwrite afterwards or is there some procedure I should follow? Can I store the accounts and passwords or do I need to create them with cyradm afterwards? Copy /var/spool/imap and /var/lib/imap. How you back up your accounts depends on your storage method. It's a good idea to back up /etc/ as well. Depending on your needs and the software you choose you'll have to decide if you want to store just a current copy or if you want to store incremental snapshots as well. -- Scott Russell [EMAIL PROTECTED] IBM Linux Technology Center, System Admin Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: Does anyone else see skiplist recovery errors?
Simon Matter wrote: I have had problems with skiplist dbs on RedHat distributions from RedHat 7.2 to RHEL4. But IIRC it has _only_ happened in case of a unnormal system condition, which has been a full filesystem or a hard system crash. I have never seen any problem with normal restart of cyrus-imapd. However, it may also depend on the way cyrus-imapd is stopped by the system. I'll second seeing skiplist seen db corruption under disk full conditions. I recall when I saw this looking around for tools to fix it but came up empty handed. That was a bit disconcerting. -- Scott Russell [EMAIL PROTECTED] IBM Linux Technology Center System Admin Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Evo 2.6.1 and cyrus-imapd 2.3.1 folder rename problem
I saw something really silly today. At least part of it seems to be the fault of the client but it seems like the cyrus server did something really stupid on it's own. The user had the following (partial) folder structure: user.drfickle.iiosb user.drfickle.iiosb.Success user.drfickle.iiosb-admin The user wanted to place the iiosb folder into the iiosb-admin folder and attempted to do so using Evo 2.6.1 on our cyrus-imapd 2.3.1 server. Here's the section of the trace: 1 1147297937B00263 UNSUBSCRIBE iiosb 2 1147297937B00263 OK Completed 3 1147297937B00264 UNSUBSCRIBE iiosb-admin 4 1147297937B00264 OK Completed 5 1147297937B00265 UNSUBSCRIBE iiosb.Successes 6 1147297937B00265 OK Completed 7 1147297937B00266 RENAME iiosb iiosb-admin.iiosb 8 1147297937* OK rename iiosb iiosb-admin.iiosb 9 1147297938* OK rename iiosb.Successes iiosb-admin.iiosb.Successes 10 1147297938B00266 OK Completed 11 1147297938B00267 RENAME iiosb iiosb-admin.iiosb 12 1147297938B00267 NO Mailbox does not exist 13 1147297938B00268 RENAME iiosb-admin iiosb-admin.iiosb.admin 14 1147297938B00268 OK Completed 15 1147297938B00269 RENAME iiosb.Successes iiosb-admin.iiosb.Successes 16 1147297938B00269 NO Mailbox does not exist 17 1147297938B00270 SUBSCRIBE iiosb-admin.iiosb 18 1147297938B00270 OK Completed 19 1147297938B00271 SUBSCRIBE iiosb-admin.iiosb.admin 20 1147297938B00271 OK Completed 21 1147297938B00272 SUBSCRIBE iiosb-admin.iiosb.Successes 22 1147297939B00272 OK Completed 23 1147297939B00273 UNSUBSCRIBE iiosb 24 1147297939B00273 OK Completed Things look okay up to line 7 where the client issues the RENAME command. Cyrus responds on lines 8 - 10 by renaming both the top level INBOX.iiosb and INBOX.iiosb.Successes folder. (Is it normal for the cyrus server to automatically rename subfolders of the parent folder too?) The client then tries to rename the now missing INBOX.iiosb.Successes folder on lines 11 and 12, this obviously fails as the server took care of it in response to line 7. Things get really nutty at line 13. The client (not the user) issues a rename for INBOX.iiosb-admin to INBOX.iiosb-admin.iiosb.admin and cyrus let's this happen. This leaves the file system with a directory user/drfickle/iiosb-admin/iiosb/* and in the iiosb-admin directory on the file system there are no cyrus.* files! Evo was obviously delusional when issuing the command on line 13 but I don't think cyrus should have handled it that way. It left several folders inside of user/drfickle/iiosb-admin that couldn't be accessed because the iiosb-admin directory was lacking cyrus.* files. Thoughts? (Other than evo sucks) -- Scott Russell [EMAIL PROTECTED] IBM Linux Technology Center, System Admin Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: How can I restore the \Seen state from backup?
Ciprian Vizitiu wrote: Oh God, Patrick if you know the magic incantation please say it. I haven't been able to convince Cyrus to recognize a new mail folder restored from back-up other than exporting the mailbox.db into text editing it and reimporting the db. Can I do this without stopping Cyrus? :-o I do this to restore a mailbox while cyrus is running. While I'm not certain it is needed, I also prevent the user from logging in during this process. I don't bother to stop incoming mail delivery though. 1) Make sure the top level mailbox exists in mailboxes.db. If it doesn't then use cyradm to create the top level mailbox first. 2) Restore the files and copy them into the mailbox. 3) Run reconstruct -rf user.accountname and wait. Also, see Simon Matter's RPM for some handy scripts that run from cron. These scripts will help keep your mailboxes.db file backed up. The default RPM install has them running daily but you can run them on any other schedule you like, of course. -- Scott Russell [EMAIL PROTECTED] IBM Linux Technology Center, System Admin Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: How can I restore the \Seen state from backup?
Patrick T. Tsang wrote: As long as I know, cyrus imapd comes with no solution of keeping user mail status. I tested to copy all /var/lib/imap files to the target server and do mail reconstruct, it worked but it is not practical since I have to shut down the cyrus server. As far as I know you do NOT have to shut down the server when running reconstruct. Has this changed in recent versions? Am I missing something, is there some other reason why you shut down the server? -- Scott Russell [EMAIL PROTECTED] IBM Linux Technology Center, System Admin Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: we need some information about cyrus-imap server
Jure Pečar wrote: This sounds interesting. With two levels deep hash one would easily get around 32k subdirs per dir limit most file systems have, which basically leaves you without much choice but reiserfs. IBM jfs limit is 4G. That might be another option other than ReiserFS. I'm getting dangerously close to 32k users per letter and I don't feel comfortable with fulldirhash. Even with fulldirhash one can have at most 26*32k (~850k) users per instance, assuming nice even distribution ... But two level hash would raise this limit way up and give more choice of filesystems. -- Scott Russell [EMAIL PROTECTED] IBM Linux Technology Center, System Admin Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
cyrus-imapd 2.3.3-1
Greets. Can anyone comment on how the cyrus-imapd 2.3.3-1 RPM is working for them? I remember there were some stability problems in imapd after 2.3.1-3 which was tracking CVS bug fixes and it was recommended to back down to 2.3.1-2. I'm not sure what became of those reports or if they have resurfaced again under 2.3.3-1. -- Scott Russell [EMAIL PROTECTED] IBM Linux Technology Center Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: invalid mailbox format with upgrade to 2.3.3
Andreas Hasenack wrote: On Thu, Mar 02, 2006 at 09:16:48AM +0100, Nicolas KOWALSKI wrote: I remember seeing a similar problem someone had with an upgrade to 2.3.x in this list but I can't find it in the archives (or I'm mistaken). I had this problem. I also had to reconstruct to make 2.3.x happy. It was probably because some mailboxes had some garbage in them; for example, the cyrus.index size of a mailbox triggering this error changed (shrank) after the reconstruct. I don't know if I had garbage in those files. But if I had, it was in all mailboxes, not just a few. I once upgraded such a system from 2.2.12 to 2.3.1 and I didn't have this problem then. Actually, the whole story is a bit more bizarre. This system had the following upgrade path: 2.2.12 - 2.3.1 - 2.2.12 (yes, back to 2.2.12) - 2.3.3 I only had this problem in the last step (2.2.12 - 2.3.3). I did my 2.1.16 to 2.3.1 update last week and it went smooth. I was expecting the worse considering the reports of mailbox corruption have read. When moving files over I did the following: 1) Used rsync to get the files to the new system then set perms in /var/spool/imap as needed. 2) Moved sieve, quota and seen dbs over, also set perms as needed 3) Only moved the mailboxes.db file and let cyrus recreate anything else 4) After first startup, before letting users login, I did the following: a) run quota -f to check/fix all quotas b) loop through all accts with a perl script to login, read 3 headers from inbox, then log out. 5) Send email to all accts with update information. 6) Allowed for normal account logins. The whole process went very smooth and I never saw an issue with mailbox corruption in the logs while doing test logins or sending the email notification that the update was complete. I received no reports of missing mail or problems with seen flags. Maybe for me I was lucky because I skipped 2.2.x completely :) -- Scott Russell [EMAIL PROTECTED] IBM Linux Technology Center System Admin Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: Mysterious quota poltergeist
GreenGecko wrote: It doesn't work to set it to no quotas. The numbers get reset anyway. That was how we had it set up originally. Attempts to set the quota to someething high was what we were trying as an altenative to no quotas because it gave us something to try. No matter the setting we give it, it keeps reseting itself to this bizarre number and throwing the quota errors. Even with the quota files locked it still would report this bogus number. Now we have it in the database still with no joy. Without actually solving the mystery, just remove the quotadb file of the affected user then run quota -f user.acct to fix up the quota for the account. -- Scott Russell [EMAIL PROTECTED] IBM Linux Technology Center Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: ipurge error
Miro Dietiker, MD Systems wrote:
I try to reask you experts for the usage of the tool ipurge:
dev:~# ipurge -f -d 0 user/miro/Test
usage: ipurge [-f] [-s] [-C alt_config] [-x] [-X] [-i] {-d days | -b
bytes|-k Kbytes|-m Mbytes}
.. and so on
dev:~# ipurge -f -d 0 user.miro.SPAM
usage: ipurge [-f] [-s] [-C alt_config] [-x] [-X] [-i] {-d days | -b
bytes|-k Kbytes|-m Mbytes}
.. and so on
So all of these don't work.
What's wrong here?
Seems odd. Are you running this as the cyrus admin user? I see a #
prompt which leads me to think you may be running this as root. From
your examples you're running with unixhierarchysep enabled. Have you
tried running against user^micro^Test ? I don't run with
unixhierarchysep so I'm not sure that's actually needed when passing
mailbox names to the cyrus tools. If you aren't running
withunixhierarchysep then you definitely should be using
user.micro.Test and not user/micro/Test.
--
Scott Russell [EMAIL PROTECTED]
IBM Linux Technology Center
Cyrus Home Page: http://asg.web.cmu.edu/cyrus
Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu
List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: read only shared folders via nntp
Scott Russell wrote: In cyrus 2.3.1 can I configure some of the nntp groups to be read only? For some groups I don't want users to be able to post messages through nntp to the group. Does anyone have an idea on how to set nntp groups as read only in Cyrus? Review of the netnews docs did not give me a clue. -- Scott Russell [EMAIL PROTECTED] IBM Linux Technology Center System Admin Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: servername: assignment not displaying correctly
OpenMacNews wrote: i am presuming that this fix, and fixes in general, are not backported to releases. i, of course, can apply the fix as a patch to 2.3.1 source myself ... do you, perchance, have a link to the *actual* cvs fix checkin? or is it as simple as your post implied, namely: s/hostname/config_servername/ in imap/imapd.c @ ln949 in void cmdloop()? I made this change against Simon's 2.3.1-2 rpm and have been running it for the last week without any noticeable issues. -- Scott Russell [EMAIL PROTECTED] IBM Linux Technology Center System Admin Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: reconstruct error IOERROR: locking cache
Alexander Reelsen wrote: hen doing a cyrus 2.1 to 2.2 migration I had the same problem, but with side effects. Mail flags were lost afterwards (the important and reply flags). I could not track down the problem either (where the locking probleme originated). Hope you have more luck with your migration :) I'm currently monitoring my box now after doing the migration from 2.1.16 to 2.3.1 this morning. Things look okay here. I see the reply flag on a few mails I have in my own mailbox. I don't think I set anything as 'important' though. Maybe you mean \Flag ? I choose to NOT do a reconstruct -r on 2.1.16 prior to moving the mail spool to 2.3.1. Instead after moving to 2.3.1 I used a perl script to login to each acct, select the INBOX, and read 3 headers before logging out. Monitoring output of the cyrus log didn't show any problems so I figured there was no need to go back and run reconstruct under 2.1.16. That said, it's to early to say one way or another if it's a success, that'll come Monday when the bulk of the users hit the box! -- Scott Russell [EMAIL PROTECTED] IBM Linux Technology Center Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: Setting QUOTA through PHP ...
Marc G. Fournier wrote: Patch didn't apply cleanly on the version of Net_IMAP I have (1.0.3), but I manually applied it, and all appears to work great ... thx :) That's odd as I developed it on Net_IMAP 1.0.3. Chances are I botched the diff, did you have the failed output? -- Scott Russell [EMAIL PROTECTED] IBM Linux Technology Center Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
reconstruct error IOERROR: locking cache
Greets - I have a shared folder, that has subfolders, and I want to move it to be a regular account. I've come up with the following process to move the shared folder named 'helga' to the new account 'user.helga'. I'm using Cyrus 2.3.1-2. The shared folder was originally located on a Cyrus 2.1.16 server and had not yet been read/modified/opened on the Cyrus 2.3.1-2 server. 1) Use cyradm to create a new user.helga account 2) Move /var/spool/imap/helga to /var/spool/imap/user/helga and set owner/perms as needed 3) As cyrus, run reconstruct -fr user.helga This seems to work. The obvious side effect is all mail in this folder is listed as unseen and all flags are lost. During the reconstruct the following errors show up in /var/log/imapd.log for each folder in user.helga: reconstruct[4212]: IOERROR: locking cache for user.helga.Dzimm.Of Interest.net-snmp: Bad file descriptor reconstruct[4212]: IOERROR: locking cache for user.helga.Dzimm.Of Interest.telnet: Bad file descriptor reconstruct[4212]: IOERROR: locking cache for user.helga.Dzimm.Of Interest.sudo: Bad file descriptor reconstruct[4212]: IOERROR: locking cache for user.helga.Dzimm.Of Interest.ucd-snmp: Bad file descriptor reconstruct[4212]: IOERROR: locking cache for user.helga.Dzimm.Of Interest.XFree86: Bad file descriptor I think this can be safely ignored but I want to double check. Can someone say why these errors happen and confirm they're safe to ignore? I do not think they are related to the migration of a shared folder to user account. I think they are related to moving the data between cyrus 2.1.16 and 2.3.1. Thanks for the help. -- Scott Russell [EMAIL PROTECTED] IBM Linux Technology Center Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
read only shared folders via nntp
Greets. I was playing around with the nntp stuff in cyrus 2.3.1 and thought it was cool. Right now we have a innd server that acts as a mail - news gateway for several lists. Some of these nntp groups are read only and some of these are read / write. I would like to eliminate innd if I can. We don't peer with anyone and running innd is overkill for the few lists we gateway for. In cyrus 2.3.1 can I configure some of the nntp groups to be read only? For some groups I don't want users to be able to post messages through nntp to the group. Also, has anyone had any experience using Mailman to handle nntp - list posting? Any gotchas? -- Scott Russell [EMAIL PROTECTED] IBM Linux Technology Center System Admin Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: Removing quotas in 2.3.1 broken?
Simon Matter wrote: From what I understand everything is okay here. For user.scottrus only the size of the mailbox is shown, no quota is shown because it is set to -1 in the quota db. I think the problem is that the quota file (assuming you are using quota legacy db) is not removed when setting quota to none, instead the quota is set to -1. quota -f reports for every used who has a quota file, but correctly shows no quota for it. Based n what you've said I did some further checking on both my production v2.1.16 system and my new v2.3.1 system and confirmed that they both behave exactly the same way. What exactly do you consider broken here? My php code apparently :) I think I wrongly assumed there was a problem with Cyrus because Net_Cyrus crapped all over the screen when trying to query the quota information for a mailbox that has the quota set to -1. I'll have to take a closer look at the php side of things. Thanks for restoring my sanity. -- Scott Russell [EMAIL PROTECTED] IBM Linux Technology Center System Admin Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: noreply should go to black hole
Sujit Choudhury wrote: This question may be a bit out of topic. However, we would like to configure our cyrus/postfix server so that any mail destined for noreply goes to a blackhole (i.e does not get delivered). Add the following to your /etc/postfix/aliases. Postfix will happily pipe anything for [EMAIL PROTECTED] into /dev/null. noreply:|/dev/null; -- Scott Russell [EMAIL PROTECTED] IBM Linux Technology Center System Admin Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: Removing quotas in 2.3.1 broken?
Simon Matter wrote: At least with quotalegacy you can do it the dirty way by simply removing the quota file for the user. If I didn't this wouldn't I also have to run reconstruct on the mailbox? -- Scott Russell [EMAIL PROTECTED] IBM Linux Technology Center System Admin Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: Removing quotas in 2.3.1 broken?
Aristotelis wrote: As Simon already said the quota removal works a bit differently in cyrus imap. Just a bit. I think what drives Net_IMAP_Protocol() from php pear crazy is the difference in response for GETQUOTA. If no quota db exists for a mail box then this is what cyrus says: C: GETQUOTA user.scottrus S: NO Quota root does not exist However, if the quota previously existed but was set to -1 then cyrus responds differently with: C: GETQUOTA user.scottrus S: QUOTA user.scottrus () S: OK Completed I'm not sure why cyrus responds differently depending on if the quota is -1 or if it was never set at all but it sure would be nice if it responded consistently since both situations are effectively the same. Any reason why this isn't consistent? Personally I like seeing the NO response rather than the empty quota response. NOTE: For those using php the cmdGetQuota() function from the Net_IMAP_Protocol class correctly handles the first example but not the second example. For those using the php c-client imap_get_quota() function the first example spits php errors and returns FALSE while the second example returns an empty array() without giving any php errors. The rmquota patch exists for cyrus 2.2.12. It hasn't been ported yet (officialy at least) to 2.3.1 since there wasn't much demand. If there is more demand we will port it asap to 2.3.1. (the 'auto' patches are by far more popular). I'm using this patch from Simon's 2.3.1-2 rpm and thus far it's been very helpful in testing :) -- Scott Russell [EMAIL PROTECTED] IBM Linux Technology Center System Admin Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: Setting QUOTA through PHP ...
Marc G. Fournier wrote: So, it would be passing: SETQUOTA user.cotton (STORAGE none) to the backend ... again, if none == an integer #, the quota gets set, so it looks like the syntax itself is right, but 'none' is wrong ... Is anyone doing this with PHP that has gotten around the above issue? Is there something obviously wrong with the way the SETQUOTA is being generated? Based on pear bug http://pear.php.net/bugs/bug.php?id=2657 I created a patch against IMAPProtocol.php the solves this problem and a few others I saw with quota support. I updated the bug but it appears as if some line wrapping happened. Try the patch from http://files.bluecamel.imap.cc/ instead. If you have problem with it let me know. -- Scott Russell [EMAIL PROTECTED] IBM Linux Technology Center Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: Setting QUOTA through PHP ...
Marc G. Fournier wrote: So, it would be passing: SETQUOTA user.cotton (STORAGE none) to the backend ... again, if none == an integer #, the quota gets set, so it looks like the syntax itself is right, but 'none' is wrong ... Is anyone doing this with PHP that has gotten around the above issue? Is there something obviously wrong with the way the SETQUOTA is being generated? Based on pear bug http://pear.php.net/bugs/bug.php?id=2657 I created a patch against IMAPProtocol.php the solves this problem and a few others I saw with quota support. I updated the bug but it appears as if some line wrapping happened. Try the patch from http://files.bluecamel.imap.cc/ instead. If you have problem with it let me know. -- Scott Russell [EMAIL PROTECTED] IBM Linux Technology Center Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Removing quotas in 2.3.1 broken?
Greets. I'm having problems removing quotas in Cyrus 2.3.1. I'm using Simon's 2.3.1-2 RPM. It looks like the command attempts to remove the mailbox quota but instead ends up doing something else. What I'm not sure of so lots of logs and details provided: Before starting I run quota -f to make sure everything is sane: bash-3.00$ /usr/lib/cyrus-imapd/quota -f Quota % Used Used Root 6000 user.drfickle 600 4120 user.lnxgeek 6000 user.osubeav 8007 user.scottrus Using cyradm I look at the existing quota for user.scottrus, remove it, then look at it again. [EMAIL PROTECTED] users]# cyradm --user cyrus localhost Password: localhost.localdomain lq user.scottrus STORAGE 7/80 (0.000875%) localhost.localdomain sq user.scottrus none remove quota localhost.localdomain lq user.scottrus / localhost.localdomain quit The last listquota command above returns odd results. I would expect to see blank line as with mailboxes that have been created without a quota limit set. Looking at the trace though everything looks okay: 11398677184 RLIST 1139867718* LIST (\Noselect) . 4 OK Completed (0.000 secs 0 calls) 11398677225 GETQUOTA user.scottrus 1139867722* QUOTA user.scottrus (STORAGE 7 80) 5 OK Completed 11398677276 SETQUOTA user.scottrus () 11398677276 OK Completed 11398677307 GETQUOTA user.scottrus 1139867730* QUOTA user.scottrus () 7 OK Completed However the quota command still shows some odd results for user.scottrus after attempting to remove the quota: bash-3.00$ /usr/lib/cyrus-imapd/quota -f Quota % Used Used Root 6000 user.drfickle 600 4120 user.lnxgeek 6000 user.osubeav 7 user.scottrus -- Scott Russell [EMAIL PROTECTED] IBM Linux Technology Center System Admin Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: Setting QUOTA through PHP ...
Marc G. Fournier wrote: So, it would be passing: SETQUOTA user.cotton (STORAGE none) to the backend ... again, if none == an integer #, the quota gets set, so it looks like the syntax itself is right, but 'none' is wrong ... Is anyone doing this with PHP that has gotten around the above issue? Is there something obviously wrong with the way the SETQUOTA is being generated? I'm looking at the same issue but in doing so ran into another quota problem, see my previous post about quotas in 2.3.1. For what you're running into see http://pear.php.net/bugs/bug.php?id=2657. After I figure out why cyradm from 2.3.1 cannot remove quotas I plan to try and patch cmdSetQuota in IMAPProtocol.php. Of course, if you patch it first please pass it along or append it to the bug! :) -- Scott Russell [EMAIL PROTECTED] IBM Linux Technology Center System Admin Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: Cyrus autocreate mailboxes
Mark Schwarz wrote: But with the options... ---zap--- autocreateinboxfolders: sent|drafts|spam|templates autosubscribeinboxfolders: sent|spam ---zap--- nothing happened. Only the INBOX is there if i try to add a user through web-cyradm. Did I make an error? You didn't show your hold imapd.conf but you also need autocreatequota. See man imapd.conf. -- Scott Russell [EMAIL PROTECTED] IBM Linux Technology Center System Admin Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: Do I need idled on or not?
Simon Matter wrote: Hi All, I noticed the line in cyrus.conf below which was commented previously and now included in SuSE 10.0: # this is only necessary if using idled for IMAP IDLE idled cmd="idled" The IMAP IDLE feature sounds like a good idea - do any mail clients support it yet. If so I will probably leave it on. Does this mean I can tell my e-mail clients using IMAP not to check for new mail? At least current Mozillas (Thunderbird, Seamonkey...) use IDLE by default. And it won't hurt even if clients don't use it. I don't know about M$ products... My 0.02 is that IDLE makes a large perceptual difference for me on Thunderbird 1.5. The client responds faster to mailbox changes and from a user UI perspective it's what I expect to happen when some other process changes a folder. -- Scott Russell [EMAIL PROTECTED] IBM Linux Technology Center Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
sql connections during login
Greets. With Cyrus 2.3.1 (built from tgz) and SASL 2.1.19-5 from RHEL4 when using sql plugin I've noticed multiple sql queries and connections during a single login. I first noticed from a php script built with PEAR::Net::Cyrus and then tested using imtest -a cyrus -w password -m digest-md5. Performance is fine on my small 300 user site but I'm curious as to why the extra connection happens (note transaction 4734 and 4735 in log below.) I'm also a bit curious why the password is retrieved twice instead of just once. I should add that the same sequence of connects and queries happen regardless of using digest-md5, cram-md5 or login mechs. 060209 8:43:384734 Connect [EMAIL PROTECTED] on mail 4734 Query START TRANSACTION 4734 Query select decode(passwd,'salt') as password from account where acct='cyrus' and allowlogin = '1' and passwd is not NULL 4734 Query select decode(passwd,'salt') as password from account where acct='cyrus' and allowlogin = '1' and passwd is not NULL 4734 Query COMMIT 4734 Quit 4735 Connect [EMAIL PROTECTED] on mail 4735 Quit The SASL settings from my /etc/imapd.conf: sasl_pwcheck_method: auxprop sasl_auxprop_plugin: sql sasl_mech_list: PLAIN CRAM-MD5 DIGEST-MD5 sasl_sql_engine: mysql sasl_sql_user: cyrus sasl_sql_passwd: password sasl_sql_hostnames: localhost sasl_sql_database: mail sasl_sql_select: select decode(passwd,'salt') as password from account where acct='%u' and allowlogin = '1' and passwd is not NULL sasl_sql_usessl: no From /var/log/auth.log Feb 9 09:09:24 imap-test imap[5508]: DIGEST-MD5 server step 1 Feb 9 09:09:24 imap-test imtest: DIGEST-MD5 client step 2 Feb 9 09:09:24 imap-test imtest: DIGEST-MD5 client step 2 Feb 9 09:09:24 imap-test imap[5508]: DIGEST-MD5 server step 2 Feb 9 09:09:24 imap-test imap[5508]: sql plugin Parse the username cyrus Feb 9 09:09:24 imap-test imap[5508]: sql plugin try and connect to a host Feb 9 09:09:24 imap-test imap[5508]: sql plugin trying to open db 'mail' on host 'localhost' Feb 9 09:09:24 imap-test imap[5508]: begin transaction Feb 9 09:09:24 imap-test imap[5508]: sql plugin create statement from userPassword cyrus imap.linux.ibm.com Feb 9 09:09:24 imap-test imap[5508]: sql plugin doing query select decode(passwd,'salt') as password from account where acct='cyrus' and allowlogin = '1' and passwd is not NULL; Feb 9 09:09:24 imap-test imap[5508]: sql plugin create statement from cmusaslsecretDIGEST-MD5 cyrus imap.linux.ibm.com Feb 9 09:09:24 imap-test imap[5508]: sql plugin doing query select decode(passwd,'salt') as password from account where acct='cyrus' and allowlogin = '1' and passwd is not NULL; Feb 9 09:09:24 imap-test imap[5508]: commit transaction Feb 9 09:09:24 imap-test imap[5508]: sql plugin Parse the username cyrus Feb 9 09:09:24 imap-test imap[5508]: sql plugin try and connect to a host Feb 9 09:09:24 imap-test imap[5508]: sql plugin trying to open db 'mail' on host 'localhost' Feb 9 09:09:24 imap-test imtest: DIGEST-MD5 client step 3 Feb 9 09:09:24 imap-test imap[5520]: sql auxprop plugin using mysql engine -- Scott Russell [EMAIL PROTECTED] IBM Linux Technology Center Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: servername not honored in imapd.c?
Ken Murchison wrote: Yup, that's a bug. I will fix it in CVS. Patch please against 2.3.1? Or a clue how to access CVS for the 2.3.1 branch. The CVS directories in the 2.3.1 tgz seem old. -- Scott Russell [EMAIL PROTECTED] IBM Linux Technology Center Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
cyrus 2.3.1 and imapflags bug?
Greets. From reading draft-ietf-sieve-imapflags-04.txt according to the example in section 5. Tagged argument :flags I would expect the following to work: fileinto :flags \\Deleted INBOX.From Boss; Using this line in a script timsieved returns the compile error: syntax error, unexpected $undefined, expecting STRING Can someone confirm my syntax is correct? Should I put this into the Cyrus IMAPd bug tracker? -- Scott Russell [EMAIL PROTECTED] IBM Linux Technology Center System Admin Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Sieve tests and Cyrus 2.3.x
Greets. In Cyrus 2.3.1 I see the body test extension is now included which my users will appreciate. It also appears that since Cyrus 2.1.16 many of the sieve extensions have updated drafts. Having poked around the Cyrus 2.3.1 source and docs I have two questions: 1) For the extensions available in Cyrus 2.3.1, which version of the draft is implemented? 2) Just how expensive is the body test extension? Does that expense impact cpu or memory and is the impact only noticeable when the extension is required into the script or is it noticeable when added into imapd.conf? I'm more curious about the second question but really need to know the answer to the first question so I can offer up proper docs and examples to my end users. -- Scott Russell [EMAIL PROTECTED] IBM Linux Technology Center Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: imap_set_quota and php ...
Marc G. Fournier wrote: in php, there is an imap_set_quota function that takes an integer quota ... specifically, to 'disable quotas', you issue -1 ... unfortunately, cyrus imap doesn't accept -1 as a valid quota, so there is no apparent way to disable from a php script ... Is there a way around this, where -1 does work? or is someone doing something else to get around this with php? Not only could I not get this to work with PHP but I also could not get it to work with perl using IMAP::Admin. -- Scott Russell [EMAIL PROTECTED] IBM Linux Technology Center System Admin Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: autocreate folder for plus addressing?
Ondrej Sury wrote: I guess it's simpler to patch your create scripts (or create some automated modify scripts) to create this folder for each user then patch cyrus source code for this task. You can also revoke users permissions to delete that mailbox - just use: sam folder -user c (didn't try it on myself, but theoretically it should work :-) There is such a thing as to much hand holding. I think I might be heading down that path by suggesting plus addressed delivery. For example, what if every users doen't want their spam delivered to the same mailbox name/location? I've decided that it's better to let the user set the filter they want and offer to assist with it by showing examples or through autocreate with seive I think. -- Scott Russell [EMAIL PROTECTED] IBM Linux Technology Center Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: ETA on auto-* patches?
Andreas Hasenack wrote: Attached is some *preliminary* work. It most certainly has bugs, doesn't even try to think about cyrus murder or replication, it may have security problems, blow up your machine, etc. I just took the original patches, made them apply and fixed the most obvious api changes so that it builds. I tested anysievefolder and autoinbox creation so far. Great timing :) I've been using 2.3.1 from TGZ on a test server while waiting on Simon's RPMs My test and prod env don't do murder or replication at the moment so these sound ideal as they are. Aside form basic functionality is there anything else to provide feedback for? -- Scott Russell [EMAIL PROTECTED] IBM Linux Technology Center Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
delay expunge and folders
Greets. With Cyrus IMAPd 2.3.1 and expunge_mode = delay set I noticed that when deleting a folder the folder, and any subfolders or messages in the folder or subfolders, are removed immediately from the filesystem. Is this the expected behavior? I think most likely the patch is working as designed but I'm wondering if it would be a good idea to extend the delayed expunge behavior to include folders as well as messages. -- Scott Russell [EMAIL PROTECTED] IBM Linux Technology Center Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
autocreate folder for plus addressing?
Greets. With Cyrus 2.3.1 (or the auto create patches?) can folders automatically be created for plus addressing? I was toying with the idea of having tagged spam being sent to [EMAIL PROTECTED] rather than using a sieve script. Since sieve scripts are user editable using plus addressing to sort tagged spam into a folder seemed like a more sensible idea. Maybe I'm on crack? -- Scott Russell [EMAIL PROTECTED] IBM Linux Technology Center Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: Cyrus IMAPd 2.3.1 RPMs?
Simon Matter wrote: As you expected I'm working on 2.3 RPMs for quite some time now. It took some time to explore all the new features and adopt the build and packaging process accordingly. The packages will also include updated patches like the widely used autocreate patches. I hope to have a first release candidate ready later this week. I realize that a number of people are waiting for the RPMs. Because the Cyrus IMAPd code, the additional patches and also the RPMs include some deep changes, everybody involved with Cyrus IMAPd development will be thankfull for testing and feedback once the RPMs are out. I've gone ahead and installed from tgz in the mean time as to not let it slow me down. But what I'm missing is the cool stuff like the auto patches and what not. I'm looking forward to seeing your 2.3.x RPMs, thanks for the work! -- Scott Russell [EMAIL PROTECTED] IBM Linux Technology Center System Admin Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Cyrus IMAPd 2.3.1 RPMs?
Greets all. Sure I could have sent this directly to Simon, but I'm guessing the list is best. :) Are there 2.3.x RPMS for RHEL4 systems being considered yet? I'm building a new RHEL4 + cyrus 2.3.x server to migrate off my existing RH7.3 + cyrus 2.1.x server. Back when I built the current RH7.3 box I also built my own versions of cyrus imapd. Since then I've been impressed with Simon's RPMs and would prefer to use them on RHEL4 if available. :) -- Scott Russell [EMAIL PROTECTED] IBM Linux Technology Center Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
sieve extentions in cyrus imapd
How can I see which sieve extentions are enabled in cyrus imapd? I'm curious to know what exactly Red Hat provided with the 2.2.12 packages in RHEL 4. -- Scott Russell [EMAIL PROTECTED] IBM Linux Technology Center System Admin Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: unixhierarchy from false to true
Charles Marcus wrote: What is the advantage/disadvantage? Is the only difference the ability to use the dot in foldernames? In other words, if you set this to true, do you *lose* anything? You loose the ability to have a / in mailbox names and gain the ability to have a . in mailbox names :) Just curious why it is set to off by default. Backwards compatibility with older cyrus imapd versions if I remember right. -- Scott Russell [EMAIL PROTECTED] IBM Linux Technology Center System Admin Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: unixhierarchy from false to true
Ken Murchison wrote: Antoine Jacoutot wrote: Craig White wrote: shouldn't matter - it's really an interface issue. Allright then... thanks. I will run a reconstruct too, as you suggested. You don't need to do a reconstruct. You will probably have to have your users restart their clients. Won't this affect sieve scripts too? I thought it would require INBOX.folder to be written as INBOX/folder. -- Scott Russell [EMAIL PROTECTED] IBM Linux Technology Center System Admin Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: [dspam-users] Dspam + cyrus-imap errors
[EMAIL PROTECTED] wrote:
We had the same thing. It's a bug in cyrus (off by one) so when they
read their own null from the buffer they complain the message has a
null. We patched it. We also sent the patch into cyrus.
Was the patch accepted? I'm not sure when the patch went to the cyrus
folks but being on the list I don't recall seeing it go by. I'm curious
if this will make it into future versions of cyrus.
--- cyrus-imapd-2.2.12/imap/spool.c 2004-10-27 16:40:50.0 -0400
+++ cyrus-imapd-2.2.12p10/imap/spool.c 2005-05-27 17:25:09.0 -0400
@@ -451,9 +455,9 @@
p[1] = '\n';
p[2] = '\0';
}
- else if (p[0] != '\n' (strlen(buf) sizeof(buf)-2)) {
+ else if (p[0] != '\n' (strlen(buf) sizeof(buf)-3)) {
/* line contained a \0 not at the end */
r = IMAP_MESSAGE_CONTAINSNULL;
continue;
}
--
Scott Russell [EMAIL PROTECTED]
IBM Linux Technology Center System Admin
Cyrus Home Page: http://asg.web.cmu.edu/cyrus
Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu
List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: how to remove myself from the list?
From the email headers of this message, go to https://lists.andrew.cmu.edu/mailman/listinfo/info-cyrus and follow the directions at the bottom of the page to unsubscribe. -- Scott Russell [EMAIL PROTECTED] IBM Linux Technology Center System Admin Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Cyrus 2.2.x vs 2.3
Greets - I'm going to be rebuilding our cyrus imap 2.1.x server in the next month and trying to figure out which version of cyrus I should use next. I understand that 2.2.x is stable and that 2.3.x in CVS is the development however it appears that some sites have jumped to 2.3 anyway. (What really got me thinking about it was when I noticed fastmail.fm has deployed 2.3) In general, what are the advantages of 2.3 over 2.2.x for a basic site? We don't use murder but we do use SQL auth, sieve, postfix, and dspam on our IMAP server. I guess I'm just curious what the driving factor is that pushes people to use 2.3.x instead of the stable 2.2.x release. :) -- Scott Russell [EMAIL PROTECTED] IBM Linux Technology Center System Admin Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: Cyrus 2.2.x vs 2.3
Ken Murchison wrote: Changes to the Cyrus IMAP Server since 2.2.x snip I'm more curious about what led sites to deploy 2.3.x over 2.2.x and how the stability has been along with maintenance issues, if any, of staying up to date on the development branch. I'm excited about the feature list too. For me, the reason to consider 2.3.x over 2.2.x is the added sieve support and potentially replicated mailbox code. -- Scott Russell [EMAIL PROTECTED] IBM Linux Technology Center System Admin Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: Thunderbird with shared folders
Mike Brodbelt wrote: In Thunderbird, when the user sends mail from the main identity, the message is stored in user.foo.Sent, and all works as expected. However, when mail is sent from the second configured identity, it is supposed to be copied to user.bar. This isn't happening - thunderbird just hangs at this point trying to copy the sent message to the configured folder. A protocol trace shows that it's doing completely the wrong thing:- 16 OK Completed 17 list INBOX^^user^bar 17 OK Completed (0.000 secs 1 calls) 18 create INBOX^^user^bar 18 NO Invalid mailbox name 19 IDLE + idling Obviously the reference to INBOX in the mailbox path it's using is completely wrong. Has anyone seen this before with a Cyrus setup, and are there any known workarounds? This most likely has to do with the advanced settings on the server tab for this account. There are some name space config options that can be changed on the client. Sorry to say I don't have a clue what you would change them to but it's something for you to experiment with. :) -- Scott Russell [EMAIL PROTECTED] IBM Linux Technology Center System Admin --- Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: Postfix + Cyrus + Catchall Addreses
Ow Mun Heng wrote: This should be: virtual_mailbox_maps = hash:/etc/postfix/virtual Missed the h at the end of hash. Not sure if that is what your main.cf has or it was a typo when posting this message. It's a typo.. So.. Anyone... any clues?? I'm assuming postfix 2.x which now has local_recipient_maps enabled by default. From what you wrote it sounds like you need to set local_recipient_maps = $virtual_mailbox_maps in main.cf. See the LOCAL_RECIPIENT_README that comes with the tgz. If you're using Simons postfix RPMS then see /etc/postfix/readme/ -- Scott Russell [EMAIL PROTECTED] IBM Linux Technology Center System Admin --- Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Cyrus and unexpected email volume
Just wanting to relay a situation that happened here recently. A Domino SMTP server on our internal network went nuts and tossed our Cyrus IMAP server 483101 copies of a message in a short time span. Our imap server is a modest dual 733Mhz PIII with 1GB of RAM and hardware RAID5 for the disks. Postfix is the SMTP and Cyrus 2.1.16 is what we're running. What impressed me most on the Cyrus end was how well it handled the large INBOXs some users found waiting for them. I've seen other IMAP installs choke on this kind of message volume in a single folder but Cyrus didn't blink at it. For mail clients we let the users pick what they're happiest with (daring, I know). Most use either Evolution or Mozilla mail. One of our users who had 35,000 emails in his INBOX was using fetchmail to pull down his imap mail locally. For that one user they logged in to our Horde + IMP 3.1 web mail interface and was able to quickly filter, delete, and purge the 35,000 emails in less than 3 min. Thanks for all the hard work that has gone into Cyrus IMAPd to make it a robust and open IMAP solution. -- Scott Russell [EMAIL PROTECTED] Linux Technology Center System Admin --- Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: Cyrus and unexpected email volume
On Tue, 2004-05-04 at 15:42, Jules Agee wrote: Scott, Nice! What OS filesystem are you using on that box? Currently Red Hat Linux 7.3 with ext3 as the file system. Kernel is the current 2.4.20 errata kernel from Red Hat. -- Scott Russell [EMAIL PROTECTED] Linux Technology Center System Admin --- Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: cyrus and Spamassassin bayes rules
On Tue, 2004-04-27 at 23:57, [EMAIL PROTECTED] wrote: On Tue, 27 Apr 2004, Scott Russell wrote: I'm looking at setting up a DSPAM + Postfix + Cyrus solution here as well. I have to wonder about the advantages of setting up a shared spam folder for the system though. Oh, not that it really matters, but we're using Postfix + amavisd-new to call ClamAV, McAfee uvscan, and SpamAssassin. Overall, it seems to be doing pretty well. I thought about this but we don't need the virus checking on the IMAP server since we have it on the smtp servers. Looking at DPAM it seemed just as easy and sane to integrate it directly with postfix instead of slipping amavisd-new into the mix. I would be interested to hear more about the spam/ham training folders. How do you (or others) keep users from deleting them, for example? It seems a per-user folder solution would be the most intuitive, for both the user and the client interface. I assume a script solution would look something like this and run say once every other hour or so. 1) get a list of users 2) check for is-spam folder 3) feed any contents of is-spam folder into bayes db for $user 4) remove contents of is-spam folder 5) repeat steps 2-4 for the is-not-spam folder 6) move on to next $user -- Scott Russell [EMAIL PROTECTED] Linux Technology Center System Admin --- Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: cyrus and Spamassassin bayes rules
On Wed, 2004-04-28 at 14:32, Rob Siemborski wrote: On Wed, 28 Apr 2004, Scott Russell wrote: I would be interested to hear more about the spam/ham training folders. How do you (or others) keep users from deleting them, for example? It seems a per-user folder solution would be the most intuitive, for both the user and the client interface. The way I'd envision integrating DSPAM is that the spam/ham folders would be virtual (users might not even be able to open them -- they just have them as targets for filing). 'virtual folders' ? I've never heard of such with Cyrus :) Seems reasonable for a scripted solution -- however, libdspam provides a C API that could allow for *much* tighter integration of the two products. Ah, I really should learn C. -- Scott Russell [EMAIL PROTECTED] Linux Technology Center System Admin --- Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: cyrus and Spamassassin bayes rules
On Wed, 2004-04-28 at 14:39, Rob Siemborski wrote: On Wed, 28 Apr 2004, Scott Russell wrote: 'virtual folders' ? I've never heard of such with Cyrus :) It'd just mean that executing an APPEND into them causes something special to happen rather than moving the message. This makes good sense when you consider the situation of a false positive. 1) user gets ham that was tagged as spam 2) user trains dspam by dropping the email into the is-no-spam folder In step 2 you don't want the message really moved. I take it the 'special folder' concept doesn't yet exist in Cyrus? -- Scott Russell [EMAIL PROTECTED] Linux Technology Center System Admin --- Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: cyrus and Spamassassin bayes rules
On Tue, 2004-04-27 at 09:22, Rob Siemborski wrote: On Sun, 25 Apr 2004, Robin M. wrote: I have also been considering setting this up. I was thinking of having a globally shared mailbox which users can 'drag' spam into. The dragging could also be a 'report as spam', or 'this is not spam' button. I was thinking of making the accss lists on the shared folders so that users can post but not read to the shared folder. I've played with the idea of integrating DSPAM in this way, along with implementing the spamtest sieve extension using DSPAM, so that everything could be one well-built package together. This is bug 2400. No idea when there would be time to do it though. I'm looking at setting up a DSPAM + Postfix + Cyrus solution here as well. I have to wonder about the advantages of setting up a shared spam folder for the system though. Would it really have any serious advantage over forwarding the false negatives/positives to an email address for processing? -- Scott Russell [EMAIL PROTECTED] Linux Technology Center System Admin --- Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: Desperate
On Thu, 2004-04-08 at 17:06, Jules Agee wrote: Seems to me I remember there's a script somewhere in the info-cyrus list archives that would walk the imap spool dirs and create a flat-text mailbox DB that could be imported using cvt-cyrusdb if your current mailboxes DB is completely hosed. No that sounds like a useful tool to have handy... -- Scott Russell [EMAIL PROTECTED] Linux Technology Center System Admin --- Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: Shared sent-mail folder
On Thu, 2004-04-01 at 10:21, Robert Covell wrote: We have a client that is wanting to track all incoming and outgoing mail in his business for auditing purposes. We can do incoming mail by dropping the message into two accounts (one for the original recip and the catch-all). What we cannot figure out is how to catch outgoing mail. Or is there a way to collect sent-mail for users? At the MTA level Postfix will handle this. See always_bcc in man pickup(8). Set your BCC address to deliver to an exec account which has a shared mailbox that only certain people can read from. -- Scott Russell [EMAIL PROTECTED] Linux Technology Center System Admin --- Home Page: http://asg.web.cmu.edu/cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: Executing scripts using sieve
On Thu, 2004-04-01 at 11:58, David Smith wrote: Finally got around to playing with sieve, and all my server side filtering is now working like a dream however... I want to setup a sieve rule that will pipe an email sent to a certain account to a perl script, I've done a google to see if I can find info on this and have hit a blank wall... any help / pointers appreciated (the plan is to set it up so i can send images from my camera phone to an email address and have the images ftp'd to my site...) You could always have sieve put these images into a special folder and then using the perl IMAP modules watch that folder for new content. Out of cron runs a perl script that: 1) connects to imap server 2) gets new messages in the folder mobile_picts 3) gets the message content and sends it via ftp to your web site 4) marks the new messages as \Seen 5) disconnects -- Scott Russell [EMAIL PROTECTED] Linux Technology Center System Admin --- Home Page: http://asg.web.cmu.edu/cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: sql plugin fails to connect
On Wed, 2004-03-24 at 10:05, Franois LECOLIER wrote: The troubles began when I started to bench this configuration launching either 100 or 500 concurrent connections to the imap server peforming basic tasks: login/logout, reading messages ... I got an assortiment of the following messages for some *not all* bench loops : sql plugin could not connect to host linux10 /var/lib/imap/user/b/bench76.seen (1 record, 1492 bytes) in 0 seconds sql plugin could not connect to host linux10 sql plugin couldn't connect to any host plaintext bench199 SASL(-13): user not found: checkpass failed In mysql what is your max_connections set to? You can check it with 'show variables' in the mysql shell. -- Scott Russell [EMAIL PROTECTED] Linux Technology Center System Admin --- Home Page: http://asg.web.cmu.edu/cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
IMAP clients that use ANNOTATE[MORE]
Greets - I was thinking about enabling ANNOTATEMORE on the Cyrus IMAPd 2.2.3 build I'm planning. I was curious though, is it worth it? Are there IMAP clients in the wild that use ANNOTATE and ANNOTATEMORE? Most of my users are Mozilla Mail, Netscape Mail (4.7x), pine, mutt, and Evolution Googeling on ANNOTATEMORE IMAP client was kind of useless :) Lots of good info about the draft though, which I skimmed. -- Scott Russell [EMAIL PROTECTED] Linux Technology Center System Admin --- Home Page: http://asg.web.cmu.edu/cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: (Postfix/Cyrus)+SpamAssassin ?
On Tue, 2004-03-16 at 19:13, Wil Cooley wrote: For SpamAssassin, I use amavisd-new (http://www.ijs.si/software/amavisd/). It doesn't give you all of the per-user config you can have using SA w/in procmail or other pipeline, but it's pretty fast and works pretty well. If you need all the per-user settings possible with SA, then you do have to use 'deliver'. I was pretty sure I read somewhere on the amavisd mailing list that you would get it to work with per user settings out of MySQL. Maybe it was just a fantasy of mine :) -- Scott Russell [EMAIL PROTECTED] Linux Technology Center System Admin --- Home Page: http://asg.web.cmu.edu/cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: Cyrus + postfix
On Thu, 2004-02-05 at 08:53, EppO wrote: I try to configure postfix 2.0 using cyrus 2.1.16 I put in main.cf: mailbox_transport = cyrus Don't do that. Use mailbox_transport = lmtp:unix:/var/lib/imap/socket/lmtp and you don't have to touch master.cf. Simon I tried to do that earlier but postfix says: Feb 5 07:40:35 trinity postfix/lmtp[602]: D8D9F43E8D: to=[EMAIL PROTECTED], orig_to=test, relay=none, delay=1, status=deferred (connect to /var/run/cyrus/socket/lmtp[/var/run/cyrus/socket/lmtp]: Permission denied) I look at the lmtp socket and : rwxrwxrwx 1 root root 0 Feb 5 07:39 /var/run/cyrus/socket/lmtp Chances are your postfix is configured to run within a chroot jail. For example, I have postfix in a chroot jail then set the following in my Cyrus imapd.conf file: lmtpsocket: /var/spool/postfix/socket/lmtp -- Scott Russell [EMAIL PROTECTED] Linux Technology Center System Admin --- Home Page: http://asg.web.cmu.edu/cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: Getting unread message count for all users.
On Sat, 2004-01-24 at 07:42, Rob Keeling wrote: I have a small cyrus Imap installation running in a school with 1200 mailboxes. What I would like to do is get hold of some scripting which would return the unread message count and/or the age of the latest message. The idea is that I can use this info to alert users to go into web mail and read the email when they log into our intranet. I have done a substantial amount of goggling, but although I realise I may need to set up a Cyrus user will access to all mailboxes to achieve this, I can`t find any example scripting which would give me a clue. Here is a pointer using the PHP imap_status() function to get the info you're after: http://us2.php.net/manual/en/function.imap-status.php The example script on that page should be a good starting point for you. -- Scott Russell [EMAIL PROTECTED] Linux Technology Center System Admin
Re: individual User spamassassin settings during lmtp delivery
On Tue, 2004-01-20 at 19:37, Wil Cooley wrote: On Mon, 2004-01-19 at 16:00, Romeo Benzoni wrote: I wan't user to be able to define individual criteria what is spam and not just what should happen to emails considered as spam on an per user basis. Just to clarify, with amavisd-new, you can control per-user the score used to determine whether to tag or to quarantine the message (which includes passing the message regardless of score). You cannot, however, have per-user ~/.spamassassin/user_prefs. I'm researching a postfix / amavisd-new / cyrus imapd solution myself. While you cannot have per-user ~/.spamassassin/user_prefs I thought you could have per user prefs defined in a mysql db. Am I not understanding amavisd-new correctly? -- Scott Russell [EMAIL PROTECTED] Linux Technology Center System Admin http://ltc.linux.ibm.com/
Re: SSL wrapped sieve support (ala imaps) for timsieved [LONG]
On Wed, Jun 18, 2003 at 09:11:25AM +0200, Sebastian Hagedorn wrote:
Hmm, are those patches freely available? Smartsieve is also PHP-based and
only offers PLAIN, so I'd be interested if your patches would work there as
well.
Yes, they are. I posted it to the info-cyrus list way back when but
here's a copy attached. This requires mhash to be compiled into PHP.
--
Scott Russell [EMAIL PROTECTED]
IBM Linux Technology Center, System Admin
--- sieve-php.lib.orig Thu Jan 31 19:48:40 2002
+++ sieve-php.lib Sun Sep 22 20:03:32 2002
@@ -489,6 +489,82 @@
return false;
$this-loggedin=true;
return true;
+ break;
+
+case DIGEST-MD5:
+// SASL DIGEST-MD5 support works with timsieved 1.1.0
+// follows rfc2831 for generating the $response to $challenge
+// requires php mhash extension
+fputs($this-fp, AUTHENTICATE \DIGEST-MD5\\r\n);
+// $clen is length of server challenge, we ignore it.
+$clen = fgets($this-fp, 1024);
+// read for 2048, rfc2831 max length allowed
+$challenge = fgets($this-fp, 2048);
+// vars used when building $response_value and $response
+$cnonce = base64_encode(bin2hex(mhash(MHASH_MD5, microtime(;
+$ncount = 0001;
+$qop_value = auth;
+$digest_uri_value = sieve/$this-host;
+// decode the challenge string
+$result = decode_challenge($challenge);
+// verify server supports qop=auth
+$qop = explode(,,$result['qop']);
+if (!in_array($qop_value, $qop)) {
+ // rfc2831: client MUST fail if no qop methods supported
+ return false;
+}
+// build the $response_value
+$string_a1 = utf8_encode($this-user).:;
+$string_a1 .= utf8_encode($result['realm']).:;
+$string_a1 .= utf8_encode($this-pass);
+$string_a1 = mhash(MHASH_MD5, $string_a1);
+$A1 =
$string_a1.:.$result['nonce'].:.$cnonce.:.utf8_encode($this-auth);
+$A1 = bin2hex(mhash(MHASH_MD5, $A1));
+$A2 = bin2hex(mhash(MHASH_MD5, AUTHENTICATE:$digest_uri_value));
+$string_response =
$result['nonce'].:.$ncount.:.$cnonce.:.$qop_value;
+$response_value = bin2hex(mhash(MHASH_MD5,
$A1.:.$string_response.:.$A2));
+// build the challenge $response
+$reply =
charset=utf-8,username=\.$this-user.\,realm=\.$result['realm'].\,;
+$reply .= nonce=\.$result['nonce'].\,nc=$ncount,cnonce=\$cnonce\,;
+$reply .= digest-uri=\$digest_uri_value\,response=$response_value,;
+$reply .= qop=$qop_value,authzid=\.utf8_encode($this-auth).\;
+$response = base64_encode($reply);
+fputs($this-fp, \$response\\r\n);
+
+ $this-line = fgets($this-fp, 1024);
+ while(sieve::status($this-line) == F_DATA)
+$this-line = fgets($this-fp,1024);
+
+ if(sieve::status($this-line) == F_NO)
+ return false;
+ $this-loggedin = TRUE;
+ return TRUE;
+ break;
+
+case CRAM-MD5:
+// SASL CRAM-MD5 support works with timsieved 1.1.0
+// follows rfc2195 for generating the $response to $challenge
+// CRAM-MD5 does not support proxy of $auth by $user
+// requires php mhash extension
+fputs($this-fp, AUTHENTICATE \CRAM-MD5\\r\n);
+// $clen is the length of the challenge line the server gives us
+$clen = fgets($this-fp, 1024);
+// read for 1024, should be long enough?
+$challenge = fgets($this-fp, 1024);
+// build a response to the challenge
+$hash = bin2hex(mhash(MHASH_MD5, base64_decode($challenge), $this-pass));
+$response = base64_encode($this-user. .$hash);
+// respond to the challenge string
+fputs($this-fp, \$response\\r\n);
+
+ $this-line = fgets($this-fp, 1024);
+ while(sieve::status($this-line) == F_DATA)
+$this-line = fgets($this-fp,1024);
+
+ if(sieve::status($this-line) == F_NO)
+ return false;
+ $this-loggedin = TRUE;
+ return TRUE;
break;
default:
@@ -503,6 +579,18 @@
}
-
+function decode_challenge ($input) {
+// FIXME: this function is a hack to decode the challenge
+// from timsieved 1.1.0. It may not work with other versions
+// and most certainly won't work with other DIGEST-MD5 implentations
+$input = base64_decode($input);
+preg_match(/nonce=\(.*)\/U,$input, $matches);
+$resp['nonce'] = $matches[1];
+preg_match(/realm=\(.*)\/U,$input, $matches);
+$resp['realm'] = $matches[1
Re: SSL wrapped sieve support (ala imaps) for timsieved [LONG]
On Wed, Jun 18, 2003 at 02:08:09PM +0200, Sebastian Hagedorn wrote: Thanks a lot! I forwarded them to the maintainer of Smartsieve. He thinks that they should work with Smartsieve as well ... Cool. It would be better if someone would handle rewriting the mhash functions needed in pure PHP to eliminate the need of building mhash into php. Last I checked mhash didn't come standard with the distros PHP releases. -- Scott Russell [EMAIL PROTECTED] IBM Linux Technology Center, System Admin pgp0.pgp Description: PGP signature
Re: SSL wrapped sieve support (ala imaps) for timsieved [LONG]
On Tue, Jun 17, 2003 at 12:24:49PM -0700, Ben Poliakoff wrote: Thanks for the reminder about the -C flag for timsieved. Using that I can at least limit the allowplaintext: yes to timsieved. So we can stumble along with this solution (and the stunnels) until we are able to come up with a STARTTLS patch for the PHP/Pear Net_Sieve class. Ohh, didn't know this existed. I'm still using sieve-php.lib from Dan Ellis with some CRAM-MD5/DIGEST-MD5 patches I wrote to avoid the whole plain text password issue. Does Net_Sieve not support CRAM-MD5/DIGEST-MD5 auth mechs? If it did would that be good enough to solve your problem or are you looking for SSL to secure the data transfer beyond the authentication? -- Scott Russell [EMAIL PROTECTED] IBM Linux Technology Center, System Admin pgp0.pgp Description: PGP signature
remotepurge from cron
Greets. In Cyrus IMAPd 2.0.11 ... The remotepurge doesn't seem to let you set a passwd via the ENV or from the command line. I'm wondering how others avoid the passwd prompt and run it out of cron. I'm looking to use the remotepurge tool to delete all 'old posts' to a shared mailbox. I assume this is what it was designed for :) -- Scott Russell [EMAIL PROTECTED] IBM Linux Technology Center, System Admin pgp0.pgp Description: PGP signature
Re: remotepurge from cron
On Mon, Jun 09, 2003 at 07:19:29PM -0400, Rob Siemborski wrote: On Mon, 9 Jun 2003, Scott Russell wrote: The remotepurge doesn't seem to let you set a passwd via the ENV or from the command line. I'm wondering how others avoid the passwd prompt and run it out of cron. Kerberos ;) Patches welcome. I suck at C or the patch would have been attached. This gives me a 30 day window to write a perl script I guess. :) -- Scott Russell [EMAIL PROTECTED] IBM Linux Technology Center, System Admin pgp0.pgp Description: PGP signature
Re: remotepurge from cron
On Mon, Jun 09, 2003 at 07:21:38PM -0400, Ken Murchison wrote: Scott Russell wrote: Greets. In Cyrus IMAPd 2.0.11 ... I'm looking to use the remotepurge tool to delete all 'old posts' to a shared mailbox. I assume this is what it was designed for :) You could take a look at ipurge (assuming its available in 2.0.x) and run it as an EVENT in cyrus.conf. Duh. That should have been 2.1.11. The ipurge man page looks like what I needed. Thanks for the pointer. -- Scott Russell [EMAIL PROTECTED] IBM Linux Technology Center, System Admin pgp0.pgp Description: PGP signature
cyrus 2.0.11 + snmp + Red Hat 7.3 compile fails
Greets - After the recent talk of snmp stats I've decided to play with it myself. My system is Red Hat 7.3, ucd-snmp-4.2.5-7.73.0 an cyrus 2.0.11 from source. During the build of master.c it fails with some missing libs. I found an old email from Igor which helps but doesn't quite solve it. After adding this to master/master.c to support libwrap: int allow_severity = LOG_DEBUG; int deny_severity = LOG_ERR; And adding -lrpmio -lrpmdb -lrpm -lpopt -lwrap to the LDLIBS to pulling required libs I still get the following build error. I see from hosts_access(5) that hosts_ctl comes from libwrap and I've verified that /usr/lib/libwrap.a exists. I assume ld is picking it up since it doesn't give me an error. At this point my amature C skills come to an abrubt halt. :) Any thoughts on what tweak I need to get past this build error? [root@imap master]# make gcc -L/usr/local/lib -Wl,-rpath,/usr/local/lib -L/usr/lib -Wall -g -O2 -o master master.o masterconf.o cyrusMasterMIB.o -lrpmio -lrpmdb -lrpm -lpopt -lwrap -lucdagent -lucdmibs -lsnmp -lssl -lcrypto -lfl -ldb-3.3 -lresolv /usr/lib/libcom_err.a /usr/lib/libucdmibs.so: undefined reference to hosts_ctl' collect2: ld returned 1 exit status make: *** [master] Error 1 -- Scott Russell ([EMAIL PROTECTED]) Linux Technology Center, System Admin, RHCE. Dial 877-735-8200 then ask for 919-543-9289 (TTY) msg10626/pgp0.pgp Description: PGP signature
Re: cyrus 2.0.11 + snmp + Red Hat 7.3 compile fails
On Fri, Jan 24, 2003 at 11:03:08AM -0500, Scott Russell wrote: Greets - After the recent talk of snmp stats I've decided to play with it myself. My system is Red Hat 7.3, ucd-snmp-4.2.5-7.73.0 an cyrus 2.0.11 from source. Err, Umm, make that Cyrus 2.1.11 from source. :) Sorry. Anyone have some clues for the rest of the problem described below? During the build of master.c it fails with some missing libs. I found an old email from Igor which helps but doesn't quite solve it. After adding this to master/master.c to support libwrap: int allow_severity = LOG_DEBUG; int deny_severity = LOG_ERR; And adding -lrpmio -lrpmdb -lrpm -lpopt -lwrap to the LDLIBS to pulling required libs I still get the following build error. I see from hosts_access(5) that hosts_ctl comes from libwrap and I've verified that /usr/lib/libwrap.a exists. I assume ld is picking it up since it doesn't give me an error. At this point my amature C skills come to an abrubt halt. :) Any thoughts on what tweak I need to get past this build error? [root@imap master]# make gcc -L/usr/local/lib -Wl,-rpath,/usr/local/lib -L/usr/lib -Wall -g -O2 -o master master.o masterconf.o cyrusMasterMIB.o -lrpmio -lrpmdb -lrpm -lpopt -lwrap -lucdagent -lucdmibs -lsnmp -lssl -lcrypto -lfl -ldb-3.3 -lresolv /usr/lib/libcom_err.a /usr/lib/libucdmibs.so: undefined reference to hosts_ctl' collect2: ld returned 1 exit status make: *** [master] Error 1 -- Scott Russell ([EMAIL PROTECTED]) Linux Technology Center, System Admin, RHCE. Dial 877-735-8200 then ask for 919-543-9289 (TTY) msg10627/pgp0.pgp Description: PGP signature
Re: backup mail server
On Sat, Jan 11, 2003 at 01:38:11PM -0500, Lee wrote: We use drbd (http://www.complang.tuwien.ac.at/reisner/drbd/) and linux-ha's (http://www.linux-ha.org/) heartbeat to create two-box mailstores (one active, one hotspare, continuously in-sync). Works beautifully. Are you using the drdb from CVS on a 2.4.x kernel? Could you provide details of the drdb version and OS off list? -- Scott Russell ([EMAIL PROTECTED]) Linux Technology Center, System Admin, RHCE. Dial 877-735-8200 then ask for 919-543-9289 (TTY) msg10372/pgp0.pgp Description: PGP signature
Re: Cyrus IMAP ; case studies, success stories, ... I need them
On Thu, Jan 09, 2003 at 04:37:21PM +0100, Piet Ruyssinck wrote: If you're running Cyrus for a reasonably sized company or institution, please let me know, including the hardware you're using, number of (simultaneous) users, level of satisfaction, and other useful information. Maybe we could collect this data in some kind of registry. We use Cyrus 2.1.x to support 99 users today with capacity to scale to 500 users in the future. Hardware is IBM xSeries x240 with ServeRAID 4H and plenty of RAID5 storage. The OS is Red Hat 7.3 + errata. We don't have a client side policy since our user base is 'Linux smart'. This allows the users to pick clients they feel comfortable with. We recommend Mozilla, Evolution, and fetchmail however. In the Feb 2003 LinuxJournal has a feature story on replacing Exchange. The story is not online as far as I an tell but here are the resources: Exchange Server HOWTO http://www.arrayservices.com/projects/Exchange-HOWTO/ Bynari InsightServer http://www.bynari.net/insightserver.html From what I understand Bynari has a produt that works with Outlook (Express?) to handle the groupware features such as calendars. The mail store is of course Cyrus IMAPd. -- Scott Russell ([EMAIL PROTECTED]) Linux Technology Center, System Admin, RHCE. Dial 877-735-8200 then ask for 919-543-9289 (TTY) msg10286/pgp0.pgp Description: PGP signature
Re: Impossible to move messages to trash when overquota
On Thu, Jan 02, 2003 at 10:17:28AM -, [EMAIL PROTECTED] wrote: This has come up before. The move command is actually a two step operation where the file is first copied to the 'Trash' folder and then deleted from the source directory. The copy operation fails because the user is over quota. Since the mailbox is all on the same filesystem, why not use hard links to move the file when the move command is used, like sendmail does, instead of copy and delete ? It would give better performance, and take care of the overquota problem. There is no 'move' command in the IMAP RFC iirc. A 'move' operation is just client side semantics for 'copy and then delete'. -- Scott Russell ([EMAIL PROTECTED]) Linux Technology Center, System Admin, RHCE. Dial 877-735-8200 then ask for 919-543-9289 (TTY)
Re: restoring from backup individual messages/folders
On Thu, Jan 02, 2003 at 10:08:50PM +0100, Hein Roehrig wrote: Hi *, I would be interested in what kind of servicesstrategies admins here offer to users regarding restoring accidentally deleted (expunged) messages. We make it clear that we're not responsible for user stup^W mistakes. No, not very helpful I'm sure but sometimes the best solution is a policy rather than a technical implementation. -- Scott Russell ([EMAIL PROTECTED]) Linux Technology Center, System Admin, RHCE. Dial 877-735-8200 then ask for 919-543-9289 (TTY)
Re: Impossible to move messages to trash when overquota
On Wed, Jan 01, 2003 at 11:14:38PM +0100, Stefano Tabacchiera wrote: Hi all, my box is running cyrus-2.1.11 and I set up quota for my users. When someone is overquota, it's impossible to MOVE messages to Trash and then delete them. The only way is to NOT use Trash, mark messages as deleted and then expunge. Question is: why ??? This has come up before. The move command is actually a two step operation where the file is first copied to the 'Trash' folder and then deleted from the source directory. The copy operation fails because the user is over quota. Is there a workaround for this? Almost all of my users use 'move-to-Trash-then-empty-Trash'. So I dont want to force them to change. Any clue? This is an education issue for your users. Show them how to recover from an over quota situation without using the move-to-Trash features of their client. Also setup cyrus to provide warnings to users who are approaching their quota limits. -- Scott Russell ([EMAIL PROTECTED]) Linux Technology Center, System Admin, RHCE. Dial 877-735-8200 then ask for 919-543-9289 (TTY)
Re: Add mailbox automatically
On Wed, Jan 01, 2003 at 05:16:12PM -0500, Kervin L. Pierre wrote:
Just a thought,
I am working on some PHP scripts to manage mailboxes and I have to use
passthough calls to execute cyradm to add mailboxes.
I'd like to avoid opening a shell from the web for security and
performance reasons.
Here's a PHP function that I use to create user mailboxes with. It
could use some clean up but it works for us. Beware line wraps.
function imap_acct_create ($mailbox, $quota=) {
// creates user.$mailbox in cyrus 2.1.5
global $imap_error;
$imap = @imap_open({localhost:143/imap/notls}, cyrus, passwd, OP_HALFOPEN);
if (!$imap) {
$imap_error = imap_last_error();
return FALSE;
}
// create the new top level mailbox
$ret = @imap_createmailbox($imap, {localhost}user..$mailbox);
if (!$ret) { $imap_error = imap_last_error();
@imap_close($imap);
return FALSE;
}
// if needed, set the account quota
if ($quota != ) {
$ret = @imap_set_quota($imap, user..$mailbox, $quota);
if (!$ret) { $imap_error = imap_last_error();
@imap_close($imap); return FALSE; }
}
@imap_close($imap);
// if we get here everything worked
return TRUE;
}
--
Scott Russell ([EMAIL PROTECTED])
Linux Technology Center, System Admin, RHCE.
Dial 877-735-8200 then ask for 919-543-9289 (TTY)
Re: Administrate Sieve?
On Mon, Dec 23, 2002 at 04:31:35PM -0500, Lee wrote: We use an ldap directory with SSHA hashing on passwords stored in ldap as the backend for our cyrus 2.1.X implementation. We are currently trying to add a set of sieve scripts to EVERY user's account. Since we cant actually access a user's password (since they're hashed in ldap) I was hoping to login to sieve as an administrator and add the scripts to each user's account. This doesnt seem possible though. Does anyone have a suggestion how I might go about adding sieve scripts to users accounts using some sort of administrative account or by making a global (server-wide) set of sieve scripts? Actually this is possible with a auth mech that supports admin proxy. Using DIGEST-MD5 or PLAIN mechs you can login to the account joeuser by passing the cyrus admin userid and password. You can try this out via the sivtest command: sivtest -u joeuser -a cryadm -w cyradm_passwd localhost -- Scott Russell ([EMAIL PROTECTED]) Linux Technology Center, System Admin, RHCE. Dial 877-735-8200 then ask for 919-543-9289 (TTY)
Re: OT LVM Snapshot for backups (was: Best way to backup cyrus syste)
On Thu, Nov 21, 2002 at 11:28:33AM -0500, Brian wrote: Christian Schulte said: I have had many many troubles with the linux LVM itself. I would rather suggest using a well configured linux softare raid. This is much more stable than LVM! I lost 250GB because of LVM and did not have a backup. With software raid on linux this would not have happened So the problem was that you didn't have backups rather than a fault of the LVM, right? rant No. The problem described is LVM caused a loss of data. Then a secondary issue was exposed that data recovery was not possible because no backups were made prior to the data loss. Just because you have a backup doesn't mean you don't loose data. It just means you have the possibility of recovering previously lost data. /rant -- Scott Russell ([EMAIL PROTECTED]) Linux Technology Center, System Admin, RHCE. Dial 877-735-8200 then ask for 919-543-9289 (TTY)
Re: Cyrus IMAPd 2.1.10 Released
On Wed, Nov 13, 2002 at 03:57:57PM -0500, Rob Siemborski wrote: I'm pleased to announce the release of Cyrus IMAPd 2.1.10. This is mostly a bug-fix and cleanup release, with the notable new feature of Berkeley DB 4.1 support. One of the documentation changes appears to remove a bunch of key instructions from the /doc/text/install-configure file. Everything after step 8. appears to be gone in the 2.1.10 release. I don't think this was intentional since it looks like there are some key steps needed (including running mkimap). Should I open up a bug for this? -- Scott Russell ([EMAIL PROTECTED]) Linux Technology Center, System Admin, RHCE. Dial 877-735-8200 then ask for 919-543-9289 (TTY)
Re: Cyrus IMAPd 2.1.10 Released
On Thu, Nov 14, 2002 at 10:37:50AM -0500, Rob Siemborski wrote: On Thu, 14 Nov 2002, Rob Siemborski wrote: I'll look into what's going on, but the HTML version is correct. I've fixed both of these issues. You can pull an updated source for htmlstrip.c from cvs now, but since the documentation is still complete in its authoritative format (HTML), I don't think this justifies an immediate rerelease. No, I would tend to agree. I'm just a text fan and happen to notice it while diffing the releases. Sooo... any reason why the docs aren't sgml and then built for text, html, ps, etc? Think of this as less of a request and more of 'would CMU be interested' type question. :) -- Scott Russell ([EMAIL PROTECTED]) Linux Technology Center, System Admin, RHCE. Dial 877-735-8200 then ask for 919-543-9289 (TTY)
Re: Cyrus IMAPd 2.1.10 Released
On Thu, Nov 14, 2002 at 02:35:02PM -0500, Lawrence Greenfield wrote: Date: Thu, 14 Nov 2002 10:56:07 -0500 From: Scott Russell [EMAIL PROTECTED] [...] Sooo... any reason why the docs aren't sgml and then built for text, html, ps, etc? Think of this as less of a request and more of 'would CMU be interested' type question. :) No objections, but it's one of those things of is it worth creating more dependencies versus the current very simple htmlstrip and html files. At one point I converted some of the files to XHTML and that process will probably continue slowly. If someone has a good idea of how to make the documentation easier to deal with, we're all for it. I'm not sure it would be easier. It's question of maintaining sgml docbook sources vs xhtml/html sources. The theoretical advantage is that the sgml/docbook tools are plentiful and easily exported to other formats. It might also be a good motivation for me to get learning docbook/sgml :) -- Scott Russell ([EMAIL PROTECTED]) Linux Technology Center, System Admin, RHCE. Dial 877-735-8200 then ask for 919-543-9289 (TTY)
Re: Postfix+Cyrus+MySQL please help its been 3 days
On Fri, Nov 15, 2002 at 01:24:19AM +0200, [EMAIL PROTECTED] wrote: Hi all, i was running qmail+Courier-IMAP+mysql+checkpassword+SMTP-auth on RedHat 7.3 before i decided to switch to Postfix+Cyrus+MySQL on RedHat 8.0,so i setup a test system to see if i could make it. The test system is running RedHat 8.0, Postfix 1.1.11-5, MySQL-3.23.52-3, Cyrus-2.1.9 We have this setup going now on Red Hat 7.3. The one difference is that we use the cyrus sasl mysql auth plugin instead of going through pam. Is that an opiton to you or do you really want to go through pam for some other reason? -- Scott Russell ([EMAIL PROTECTED]) Linux Technology Center, System Admin, RHCE. Dial 877-735-8200 then ask for 919-543-9289 (TTY)
Re: Postfix+Cyrus+MySQL please help its been 3 days
On Fri, Nov 15, 2002 at 03:02:54AM +0200, [EMAIL PROTECTED] wrote: Yes that's an option, i just followed Luc's HOWTO and used pam. But now how do i make changes to omit pam_mysql configuration #saslauthd -v saslauthd 2.1.7 authentication mechanisms: getpwent kerberos5 pam rimap shadow and i think web-cyradm has nothing to do with pam_mysql I know nothing about web-cyradm but there is documentation for getting the sasl mysql auth plugin working. When you build sasl use: ./configure --with-saslauthd=/usr/lib/sasl2 --enable-cram \ --enable-digest --enable-plain --disable-anon --disable-gssapi \ --disable-krb4 --disable-otp --with-openssl --with-mysql The key bit here is the --with-mysql option. In some versions of sasl you may need to change the include to read #include mysql/mysql.h so check the plugsin/mysql.c file and change it as needed. After building and installing sasl I use the following in my imapd.conf file: # sasl settngs sasl_pwcheck_method: auxprop sasl_auxprop_plugin: mysql sasl_mech_list: PLAIN CRAM-MD5 DIGEST-MD5 sasl_mysql_user: mailadm sasl_mysql_passwd: password sasl_mysql_hostnames: localhost sasl_mysql_database: mail sasl_mysql_statement: select decode(passwd,'salt') from account where acct='%u' and status='1' sasl_mysql_verbose: true You should consult the doc/options.html file for more details about the mysql setup. That shold help you explain how to use the proper sasl_mysql_statement in your imapd.conf file. The one above is only an example that works with my specific mysql tables and most likely won't work for you. -- Scott Russell ([EMAIL PROTECTED]) Linux Technology Center, System Admin, RHCE. Dial 877-735-8200 then ask for 919-543-9289 (TTY)
Re: Cyrus Imap - Postfix - lmtp or pipe ? And why ? And How ?
On Sun, Nov 10, 2002 at 06:04:00PM +0100, Bryntez wrote: Thanks for the advisory. I was trying to change from pipe to lmtp earlier today but I was getting permission denied in the maillog. So my next question is: What permissions has to be set to get this to work ? I have this config: Cyrus Imap 2.1.5, Postfix 1.1.11, with mySQL and web-cyradm running. We're also using sasl for smtp. This is the key right here I think. We're not using SASL for SMTP auth so delivery via the lmtp socket requires no authentication. I've seen others discuss this on the list so maybe the archives or someone else can chime in? -- Scott Russell ([EMAIL PROTECTED]) Linux Technology Center, System Admin, RHCE. Dial 877-735-8200 then ask for 919-543-9289 (TTY)
Re: Cyrus Imap - Postfix - lmtp or pipe ? And why ?
On Sun, Nov 10, 2002 at 01:08:58AM +0100, Bryntez wrote: So my question is: Why is lmtp better to use than pipe ? Is it speed, more stable, security or what It boils down to speed. Think about having to start a /usr/cyrus/bin/deliver process for each email going from postfix to cyrus. Since postfix supports delivery to an lmtp socket it's much nicer to have the cyrus lmtpd create the socket and the have postfix just deliver mail to that socket. -- Scott Russell ([EMAIL PROTECTED]) Linux Technology Center, System Admin, RHCE. Dial 877-735-8200 then ask for 919-543-9289 (TTY)
Re: blocking logins at server
On Fri, Nov 01, 2002 at 05:01:23PM -0500, Lawrence Greenfield wrote: Date: Wed, 30 Oct 2002 12:55:03 -0500 From: twk [EMAIL PROTECTED] We are running both 1.5.x and 2.1.x versions of Cyrus. I have a $#%$^#$%^ user that has his email client set to check every folder ever few seconds. I can't remove him from the password file, as we use Kerberos for authentication. I don't want to disable him in kerberos, just block his logins to the server. Is there any relatively straightforward way to do this? As you might've suspected, we've never implemented anything to do this. I've been down on the idea of adding an extra syscall every time through the cmdloop() just to add this functionality. What about using iptables to handle this? You could do it on a simple level by blocking the workstation IP / IMAP port or possibly getting a bit more advanced block the userid / IMAP port. (I thought iptables could look at strings inside packets and take action?) -- Scott Russell ([EMAIL PROTECTED]) Linux Technology Center, System Admin, RHCE. Dial 877-735-8200 then ask for 919-543-9289 (TTY)
Re: When did user X log in?
On Mon, Oct 28, 2002 at 11:19:36AM -, Ian McDonald wrote: Sorry, but I can't find the Perl Fud client in the list archives. Could you link to it please? Here you go. Found it out of the archives: http://englanders.cc/pub/linux/misc/fud.pl Using fud you can tell when when a particular mailbox last was read or when mail last arrived for it. -- Scott Russell ([EMAIL PROTECTED]) Linux Technology Center, System Admin, RHCE. Dial 877-735-8200 then ask for 919-543-9289 (TTY)
Re: difference between postuser and sharedprefix ?
On Thu, Oct 24, 2002 at 10:09:17PM -0400, Ken Murchison wrote: Quoting Scott Russell [EMAIL PROTECTED]: Check out the description of 'altnamespace' in the manpage or docs if my explanation is too cryptic. No, not to cryptic, just not clear? :) I've checked the man page so let me try to ask my question again. I have the following in my imapd.conf file: configdirectory: /var/imap partition-default: /var/spool/imap altnamespace: yes userprefix: user postuser: share I created testbox using cyradm. This shows up on the partition as /var/spool/imap/testbox/. With my imapd.conf set as pasted here, (notice no shareprefix is set) mail sent to [EMAIL PROTECTED] does get delivered right. Now, given all that, I can, without changing the physical mailbox testbox change my imapd.conf to remove the postuser line and add shareprefix: user. After restarting cyrus imapd posting still works. Still using [EMAIL PROTECTED] ? Correct. [EMAIL PROTECTED] works with _either_ shareprefix: share or postuser: share set. I haven't bothered to try and see what happens if I have them both set at the same time. The MTA is postfix 1.1.7 on Red Hat 7.3. I do not have recipient_delimiter = + set so postfix passes the full share+testbox along to the LMTP socket. Actually, that's not quite right. LMTP delivery is handled by spamcheck.py, part of spamassassin 1.31. spamcheck.py speaks LMTP to the cyrus LMTP socket. I think this is just coincidence, since sharedprefix has nothing to do with the delivery address. My guess it that your MTA might be translating the address in some way. What happens if you set sharedprefix to foo, or postuser to foo? So sharedprefix is cosmetic only for the IMAP client side? I have postuser: share in my imapd.conf now so I'll try changing it to foo and see where it goes. Maybe postuser: picked up a default setting along the way that was never recorded in the man page? And while I'm on the subject, is it wrong to create the shared mailbox as (cm testbox) or should I have done (cm share.testbox). Keep in mind that (cm testbox) is what I did and this seems to work (or at least get mail) -- Scott Russell ([EMAIL PROTECTED]) Linux Technology Center, System Admin, RHCE. Dial 877-735-8200 then ask for 919-543-9289 (TTY)
Re: When did user X log in?
On Thu, Oct 24, 2002 at 02:53:36PM +0100, Ian McDonald wrote: Hi, How can I discover the time (preferably in epoch) that a given user last logged in? The closest thing I've seen to this is the fud server / client that is in Cyrus 2.1.9. In the archives you'll find both perl and php script examples of fud clients. -- Scott Russell ([EMAIL PROTECTED]) Linux Technology Center, System Admin, RHCE. Dial 877-735-8200 then ask for 919-543-9289 (TTY)
Re: [STATUS] NNTP support (10/17/02)
On Thu, Oct 17, 2002 at 01:11:50PM -0400, Ken Murchison wrote: FYI, the client side of nntpd is essentially complete. It now works with Pine, Netscape (Mozilla), and Outlook. The issue with Netscape and Outlook was that they both seem REQUIRE support for the XOVER extension (Netscape because of a bug and Outlook because of poor design). The only major missing functionality is support for wildmat patterns. Right now, only IMAP-style patterns are supported. So, if I've been following this right, the way to work this is to use nntpd for access to shared mailboxes (not user.*). How does 'expire' work in this case? I'm wondering about getting rid of old articles in the shared imap mailbox. I'm very interested in this work since it would make for a fine news2mail gateway setup I think. -- Scott Russell ([EMAIL PROTECTED]) Linux Technology Center, System Admin, RHCE. Dial 877-735-8200 then ask for 919-543-9289 (TTY)
cyrus imapd code audit?
Greets. Can anyone tell me when (or if) the last code audit for security and backdoors in cyrus imapd was done? Was it done by CMU or a third party group? Strange request I know, but then again I work for a strange company. Somebody somewhere would feel a whole lot better if a rubber stamp with the word 'audit ok' was on the code. (not that it really means anything) -- Scott Russell ([EMAIL PROTECTED]) Linux Technology Center, System Admin, RHCE. Dial 877-735-8200 then ask for 919-543-9289 (TTY)
Re: What format can Cyrus store mail in?
On Tue, Oct 08, 2002 at 09:28:13AM -0400, Erik Enge wrote: Kevin P. Fleming [EMAIL PROTECTED] writes: Cyrus stores the messages themselves in individual text files, unchanged from the way they are passed in via LMTP. So it's like maildir? Could I copy the raw Cyrus directories and expect them to work with other clients that supported maildir? From the little bit of work I've done with Maildir, no, you cannot. -- Scott Russell ([EMAIL PROTECTED]) Linux Technology Center, System Admin, RHCE. Dial 877-735-8200 then ask for 919-543-9289 (TTY)
