server side archiving & grooming of mail stores
hi all, i'm looking for direction on how to move messages of a certain age from one mailbox to an archive mailbox. are there server side utilities to do this? many thanks charles Cyrus Home Page: http://cyrusimap.web.cmu.edu/ Cyrus Wiki/FAQ: http://cyrusimap.web.cmu.edu/twiki List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: Sorry, modsequences have not been enabled on this mailbox
hello again, so i have read the ietf draft on modsequences, and it's exactly what i need to accurately sync two imap boxes with mbsync. flag/metadata changes to seen state are not propagated correctly from the source to destination. how can i enable it? thanks charles Cyrus Home Page: http://cyrusimap.web.cmu.edu/ Cyrus Wiki/FAQ: http://cyrusimap.web.cmu.edu/twiki List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Sorry, modsequences have not been enabled on this mailbox
hi all, i've groked around but cannot seem to find out what this means ... how do i enable this -- cyradm has no option, and i didn't see anything in imapd.conf or cyrus.conf ... cheers charles Cyrus Home Page: http://cyrusimap.web.cmu.edu/ Cyrus Wiki/FAQ: http://cyrusimap.web.cmu.edu/twiki List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: [OT] m$ activesync with cyrus backend
On Thu, 2008-09-18 at 17:18 +0200, Sebastian Hagedorn wrote: > --On 18. September 2008 16:35:03 +0200 lartc <[EMAIL PROTECTED]> > wrote: > > > essentially what's happening here is that apple's sdk has no api > > connections to calender/tasks/notes/etc -- only contacts. > > I get that ... > > > so without > > jailbreaking the iphone, the only way to sync without wires is MobileME > > or exchange. > > Not quite, unless I'm mistaken. If all you're interested in is mail, you > could just as well configure an IMAP account for your Cyrus server, > couldn't you? I thought the only advantage to ActiveSync for mail was push. > Am I wrong? Is there more to it? > -- > .:.Sebastian Hagedorn - RZKR-R1 (Gebäude 52), Zimmer 18.:. > Zentrum für angewandte Informatik - Universitätsweiter Service RRZK > .:.Universität zu Köln / Cologne University - ✆ +49-221-478-5587.:. >.:.:.:.Skype: shagedorn.:.:.:. hi sebastien, yes ... i am using imap on the iphone to cyrus without any issues -- it's syncing contacts/calender/tasks/etc where i'm stuck i've downloaded and played with z-push -- the missing piece is to be able to sync pc outlook data up to the z-push instance, and then sync a mobile. looks like the only way to do that is to buy the zafara product ... then your outlook syncs to zafara and iphone as well. i'm trying to find a freeware solution to sync everything -- i've got the funambol outlook plugin running on a PC, so the contacts/calendars/etc all get syncd up perfectly. it's the iphone (with the official funambol plugin) that only syncs contacts and not the rest. looks like i'm going to have to break out of jail to get the full funambol.app to work. charles Cyrus Home Page: http://cyrusimap.web.cmu.edu/ Cyrus Wiki/FAQ: http://cyrusimap.web.cmu.edu/twiki List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: [OT] m$ activesync with cyrus backend
On Thu, 2008-09-18 at 16:00 +0200, Sebastian Hagedorn wrote: > --On 16. September 2008 18:31:31 + Andy Fiddaman <[EMAIL PROTECTED]> > wrote: > > > ; is there a way to mimic exchange server in the linux environment where i > > ; can keep my cyrus/postfix/amavis install -- is there a linux app that > > ; speaks "exchange"? > > > > Z-Push (http://z-push.sourceforge.net/) does the job nicely. I use that > > for my iPhone with Cyrus as the backend. > > After I read that, I am now trying to get that to work. I don't have any > ActiveSync-capable clients myself, but a colleague of mine has a Windows > Mobile cell phone. He managed to configure the account, the login to our > Cyrus server is successful, but nothing is synchronized. I've enabled > debug.txt, but there's nothing enlightening to be found there. > > What's more, without having gotten it to work, I fail to see what the > advantage over a proper IMAP account is. I don't see how there could be an > actual push component with such a setup. Maybe I'm missing something? > -- > .:.Sebastian Hagedorn - RZKR-R1 (Gebäude 52), Zimmer 18.:. > Zentrum für angewandte Informatik - Universitätsweiter Service RRZK > .:.Universität zu Köln / Cologne University - ✆ +49-221-478-5587.:. >.:.:.:.Skype: shagedorn.:.:.:. Hi Again, I need more coffee and a bigger brain. This looks EXACTLY like what I need -- downloading now THANKS Charles Cyrus Home Page: http://cyrusimap.web.cmu.edu/ Cyrus Wiki/FAQ: http://cyrusimap.web.cmu.edu/twiki List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: [OT] m$ activesync with cyrus backend
On Thu, 2008-09-18 at 16:00 +0200, Sebastian Hagedorn wrote: > --On 16. September 2008 18:31:31 + Andy Fiddaman <[EMAIL PROTECTED]> > wrote: > > > ; is there a way to mimic exchange server in the linux environment where i > > ; can keep my cyrus/postfix/amavis install -- is there a linux app that > > ; speaks "exchange"? > > > > Z-Push (http://z-push.sourceforge.net/) does the job nicely. I use that > > for my iPhone with Cyrus as the backend. > > After I read that, I am now trying to get that to work. I don't have any > ActiveSync-capable clients myself, but a colleague of mine has a Windows > Mobile cell phone. He managed to configure the account, the login to our > Cyrus server is successful, but nothing is synchronized. I've enabled > debug.txt, but there's nothing enlightening to be found there. > > What's more, without having gotten it to work, I fail to see what the > advantage over a proper IMAP account is. I don't see how there could be an > actual push component with such a setup. Maybe I'm missing something? > -- > .:.Sebastian Hagedorn - RZKR-R1 (Gebäude 52), Zimmer 18.:. > Zentrum für angewandte Informatik - Universitätsweiter Service RRZK > .:.Universität zu Köln / Cologne University - ✆ +49-221-478-5587.:. >.:.:.:.Skype: shagedorn.:.:.:. hi sebastian, essentially what's happening here is that apple's sdk has no api connections to calender/tasks/notes/etc -- only contacts. so without jailbreaking the iphone, the only way to sync without wires is MobileME or exchange. my users a hyper paranoid, so MobileME isn't possible, and installing m$ exchange is also not a solution. only other way is to jailbreak the iphone and install the latest/uncertified funambol connector and then you can sync wirelessly. i was wondering if anyone had come up with an exchange proxy of sorts, allowing us to specify cyrus for mail, funambol or ldap for contacts/calenders/etc. this way we could use the native certified exchange connector in the phone to sync. cheers charles -- "simplified chinese" is not nearly as easy as they would have you believe ... a superlative oxymoron --anonymous Cyrus Home Page: http://cyrusimap.web.cmu.edu/ Cyrus Wiki/FAQ: http://cyrusimap.web.cmu.edu/twiki List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
querying message flags -- finding list of unread message
hi all, is there a way to query a message store to find what message are unread in a user's inbox? many thanks charles Cyrus Home Page: http://cyrusimap.web.cmu.edu/ Cyrus Wiki/FAQ: http://cyrusimap.web.cmu.edu/twiki List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: suggestion need to design an email system.
hi, well, you can edit the gosa config file to only show you the users and their e-mail, etc. you're not obligated to use the entire system ... when install it for clients, i only leave a few pieces of functionality (so they don't blow their foot off). cheers charles Cyrus Home Page: http://cyrusimap.web.cmu.edu/ Cyrus Wiki/FAQ: http://cyrusimap.web.cmu.edu/twiki List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: Cyrus-imapd not providing realm information
Woops. Yep. More coffee needed. Cheers Charles On Mon, 2008-08-25 at 14:51 +0200, tarjei wrote: > -BEGIN PGP SIGNED MESSAGE- > Hash: SHA1 > > Hi Again, > tarjei wrote: > > lartc wrote: > >> Hi, > > > >> I've got the same setup -- you should have > > > >> ldap_realm: yourdomain.com > > It seems that the parameter that needed to be set was > ldap_default_realm, as I found when reading > http://thread.gmane.org/gmane.mail.imap.cyrus/22049. > > Again, thanks for helping me. > > Kind regards, > Tarjei > > > > > >> in /etc/saslauthd.conf > > > >> and you should start saslauthd daemon with the "-r" argument > > > > > > Hi Charles, thank you for your quick reply. > > > > I tried your suggestions, but they do not seem to solve my problem. The > > same problem persists. > > > > Kind regards, > > tarjei > > > >> hth, > > > >> charles > > > > > > > > > >> On Mon, 2008-08-25 at 14:04 +0200, tarjei wrote: > >> Hi, I'm trying to get Cyrus IMAPD + saslauthd working with an > >> virtdomains setup. > > > >> Relevant info: > >> OS: Centos 5.2 > >> Cyrus-Imapd: 2.3.7 > >> Sasl: 2.1.22 > > > >> imapd.conf: > >> altnamespace: yes > >> autocreatequota:-1 > >> createonpost: no > >> autocreate_sieve_script: /var/lib/imap/sieve/default.script > >> autocreateinboxfolders: Spam|Drafts|Sent|Trash > >> autosubscribeinboxfolders: Spam|Drafts|Sent|Trash > >> autosubscribesharedfolders: Spam|Ikke-Spam > >> defaultdomain: example.com > >> virtdomains: userid > >> servername: mail.example.com > >> unixhierarchysep: 1 > >> sasl_mech_list: plain > >> sasl_pwcheck_method: saslauthd > >> cmtp_overquota_perm_failure: no > > > >> saslauthd.conf: > >> ldap_servers: ldaps://ldap.example.com > >> ldap_version: 3 > >> ldap_timeout: 10 > >> ldap_time_limit: 10 > >> ldap_search_base: dc=example,dc=com > >> ldap_bind_dn: uid=saslauthd,ou=Services,dc=example,dc=com > >> ldap_password:password > >> ldap_scope: sub > >> ldap_uidattr: mail > >> ldap_filter_mode: yes > >> ldap_filter: ([EMAIL PROTECTED]) > > > >> testsaslauth works: > >> testsaslauthd -u tarjei -r example.com -p password > >> 0: OK "Success." > > > >> but imtest fails: > >> imtest -u [EMAIL PROTECTED] -a [EMAIL PROTECTED] -t "" localhost > >> ... > >> S: A01 NO authentication failure > >> Authentication failed. generic failure > > > >> I then find the following in the log files: > >> saslauthd[27506]: do_auth : auth failure: [user=tarjei] > >> [service=imap] [realm=] [mech=ldap] [reason=Unknown] > > > >> And in the ldap log: > >> SRCH base="dc=example,dc=com" scope=2 deref=0 filter="(mail=tarjei@)" > > > > > >> It seems to me that for some reason, the imap server is not passing on > >> the full username - but just the part before the domainname. > > > >> Does anyone know what I am doing wrong? I seem so close :) > > > >> Kind regards, > >> Tarjei > > > > > > Cyrus Home Page: http://cyrusimap.web.cmu.edu/ > > Cyrus Wiki/FAQ: http://cyrusimap.web.cmu.edu/twiki > > List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html > > > -BEGIN PGP SIGNATURE- > Version: GnuPG v1.4.6 (GNU/Linux) > Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org > > iD8DBQFIsqrrYVRKCnSvzfIRAjBHAKCBQYe6u8ZZOd7ssM68vSQ6en8oAwCgrUl+ > 8dnhnjUTrfUoeL/nU6OZxp8= > =cPzT > -END PGP SIGNATURE- -- "simplified chinese" is not nearly as easy as they would have you believe ... a superlative oxymoron" --anonymous Cyrus Home Page: http://cyrusimap.web.cmu.edu/ Cyrus Wiki/FAQ: http://cyrusimap.web.cmu.edu/twiki List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: Cyrus-imapd not providing realm information
Hi, I've got the same setup -- you should have ldap_realm: yourdomain.com in /etc/saslauthd.conf and you should start saslauthd daemon with the "-r" argument hth, charles On Mon, 2008-08-25 at 14:04 +0200, tarjei wrote: > -BEGIN PGP SIGNED MESSAGE- > Hash: SHA1 > > Hi, I'm trying to get Cyrus IMAPD + saslauthd working with an > virtdomains setup. > > Relevant info: > OS: Centos 5.2 > Cyrus-Imapd: 2.3.7 > Sasl: 2.1.22 > > imapd.conf: > altnamespace: yes > autocreatequota:-1 > createonpost: no > autocreate_sieve_script: /var/lib/imap/sieve/default.script > autocreateinboxfolders: Spam|Drafts|Sent|Trash > autosubscribeinboxfolders: Spam|Drafts|Sent|Trash > autosubscribesharedfolders: Spam|Ikke-Spam > defaultdomain: example.com > virtdomains: userid > servername: mail.example.com > unixhierarchysep: 1 > sasl_mech_list: plain > sasl_pwcheck_method: saslauthd > cmtp_overquota_perm_failure: no > > saslauthd.conf: > ldap_servers: ldaps://ldap.example.com > ldap_version: 3 > ldap_timeout: 10 > ldap_time_limit: 10 > ldap_search_base: dc=example,dc=com > ldap_bind_dn: uid=saslauthd,ou=Services,dc=example,dc=com > ldap_password:password > ldap_scope: sub > ldap_uidattr: mail > ldap_filter_mode: yes > ldap_filter: ([EMAIL PROTECTED]) > > testsaslauth works: > testsaslauthd -u tarjei -r example.com -p password > 0: OK "Success." > > but imtest fails: > imtest -u [EMAIL PROTECTED] -a [EMAIL PROTECTED] -t "" localhost > ... > S: A01 NO authentication failure > Authentication failed. generic failure > > I then find the following in the log files: > saslauthd[27506]: do_auth : auth failure: [user=tarjei] > [service=imap] [realm=] [mech=ldap] [reason=Unknown] > > And in the ldap log: > SRCH base="dc=example,dc=com" scope=2 deref=0 filter="(mail=tarjei@)" > > > It seems to me that for some reason, the imap server is not passing on > the full username - but just the part before the domainname. > > Does anyone know what I am doing wrong? I seem so close :) > > Kind regards, > Tarjei > > -BEGIN PGP SIGNATURE- > Version: GnuPG v1.4.6 (GNU/Linux) > Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org > > iD8DBQFIsp/pYVRKCnSvzfIRAoN2AJ94nmeUJ1ir+SWICgZQwz1W9JQskACgn4X4 > kt/8icmlER1QImZK+ZR/r7U= > =zTtD > -END PGP SIGNATURE- > > Cyrus Home Page: http://cyrusimap.web.cmu.edu/ > Cyrus Wiki/FAQ: http://cyrusimap.web.cmu.edu/twiki > List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html Cyrus Home Page: http://cyrusimap.web.cmu.edu/ Cyrus Wiki/FAQ: http://cyrusimap.web.cmu.edu/twiki List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: Recomendations for a 15000 Cyrus Mailboxes (Thanks)
Hi Nestor, Would love to the impad.conf and cyrus.conf if you would be so kind as to share them ... Cheers Charles On Wed, 2007-04-11 at 01:15 -0500, Nestor A. Diaz wrote: > Thank you all of you who give me that precious tips, i am going to put > them on practice, and i will tell you when the system will be finished > in order to share my experience with you. > > Slds. Cyrus Home Page: http://cyrusimap.web.cmu.edu/ Cyrus Wiki/FAQ: http://cyrusimap.web.cmu.edu/twiki List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: how to enable TLs encryption only ?
Ho Joy,
your cyrus.conf probably looks something like:
START {
recover cmd="ctl_cyrusdb -r"
idled cmd="idled"
}
SERVICES {
imap cmd="imapd -p 2" listen="imap" prefork=0
imaps cmd="imapd -s" listen="imaps" prefork=0
pop3 cmd="pop3d" listen="pop3" prefork=0
pop3s cmd="pop3d -s" listen="pop3s" prefork=0
sieve cmd="timsieved -p 2" listen="sieve" prefork=0
lmtpunix cmd="lmtpd" listen="/var/spool/postfix/public/lmtp"
prefork=1
}
EVENTS {
checkpointcmd="ctl_cyrusdb -c" period=5
delprune cmd="cyr_expire -E 3" at=0400
tlsprune cmd="tls_prune" at=1400
squatter cmd="squatter -r *" period=1440
}
kill or rem out the "imap" line leaving only "imaps" in the "SERVICES"
stanza -- you will only listen on 993 and take only secure connections.
cheers
charles
On Fri, 2007-03-30 at 15:32 +0530, JOYDEEP wrote:
> Carsten Mathaes wrote:
> > JOYDEEP wrote:
> >
> >
> >> is it possible to enable the TLs encryption in cyrus ? I don't need the
> >> certificate to authenticate the client. only the transportation will be
> >> encrypted.
> >>
> >
> > Hi!
> >
> > A look at /cyrus-imapd_source/doc/install-configure.html
> >
>
> Hi Carsten,
>
> Thanks a lot for your response. I have already done this with the help
> of Rudy.
> Now I want to restrict cyrus so that it only allow TLS encrption and
> nothing else.
> any suggestion ?
> have a nice day.
>
> > shows:
> >
> > SSL, TLS, and OpenSSL
> >
> > [...]
> >
> > Configuring Cyrus with OpenSSL
> >
> > [...]
> >
> > 1. openssl req -new -x509 -nodes -out /var/imap/server.pem -keyout
> > /var/imap/server.pem -days 365
> > [...]
> >
> > 2. Make sure to make key file(s) readable by the Cyrus user. For
> > example: chown cyrus /var/imap/server.pem
> >
> > 3. Add the following to /etc/imapd.conf to tell the server where to find
> > the certificate and key file (used for ALL services):
> > tls_cert_file: /var/imap/server.pem
> > tls_key_file: /var/imap/server.pem
> > [...]
> >
> > 4. You can test STARTTLS by using imtest:
> > imtest -t "" foobar.andrew.cmu.edu
> >
> > In your imapd.conf I think there must be a line like
> > imaps cmd="imapd -s" listen="imaps" prefork=0
> >
> >
> > More details in your_source-tree/doc/
> >
> > Ciao!
> >
> > Carsten.
> >
> > Cyrus Home Page: http://cyrusimap.web.cmu.edu/
> > Cyrus Wiki/FAQ: http://cyrusimap.web.cmu.edu/twiki
> > List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
> >
> >
> >
>
>
> Cyrus Home Page: http://cyrusimap.web.cmu.edu/
> Cyrus Wiki/FAQ: http://cyrusimap.web.cmu.edu/twiki
> List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
--
"simplified chinese" is not nearly as easy as they would
have you believe ... a superlative oxymoron" --anonymous
Cyrus Home Page: http://cyrusimap.web.cmu.edu/
Cyrus Wiki/FAQ: http://cyrusimap.web.cmu.edu/twiki
List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: how to enable TLs encryption only ?
Hi, you can try this in imapd.conf: tls_ca_file: /etc/x509/your_ca_cert.pem tls_cert_file: /etc/x509/your_pub_cert.pem tls_key_file: /etc/x509/your_private.key tls_require_cert: no tlscache_db: berkeley On Fri, 2007-03-30 at 12:57 +0530, JOYDEEP wrote: > Dear list, > > is it possible to enable the TLs encryption in cyrus ? I don't need the > certificate to authenticate the client. only the transportation will be > encrypted. > How can I do this ? > thanks > > Cyrus Home Page: http://cyrusimap.web.cmu.edu/ > Cyrus Wiki/FAQ: http://cyrusimap.web.cmu.edu/twiki > List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html Cyrus Home Page: http://cyrusimap.web.cmu.edu/ Cyrus Wiki/FAQ: http://cyrusimap.web.cmu.edu/twiki List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: Postfix and catch all
hi paul, using ldap in postfix, i setup a mail alias: @domain.com all mail is going to the user ... cheers charles On Mon, 2007-03-05 at 10:13 +0100, Paul van der Vlis wrote: > Hello, > > When I want to use catch-all with Postfix without virtual hosts, there > is an option luser_relay, but luser_relay works only for the default > Postfix local delivery agent. > > Is there another way to make a catch-all-mailbox without using virtual > hosts? > > With regards, > Paul van der Vlis. > Cyrus Home Page: http://cyrusimap.web.cmu.edu/ Cyrus Wiki/FAQ: http://cyrusimap.web.cmu.edu/twiki List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: Integrted tool for adminstering Cyrus IMAP and LDAP.
hi all, do also look at gosa -- while it takes a bit of effort for installation, the end result is fabulous. http://gosa.gonicus.de/ cheers charles -- "simplified chinese" is not nearly as easy as they would have you believe ... a superlative oxymoron --anonymous Cyrus Home Page: http://cyrusimap.web.cmu.edu/ Cyrus Wiki/FAQ: http://cyrusimap.web.cmu.edu/twiki List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: Spam control
hi martin, i have the same setup as you ... easiest way that i found was to create 2 shared mailboxes on the imap server -- one for ham-learn, and one for spam-learn. in cron, i have fetchmail that retrieves these messages and feeds them to sa-learn. fetchmail -a -s -n --folder 'Spam' -m 'sa-learn --spam' fetchmail -a -s -n --folder 'Ham' -m 'sa-learn --ham' there are probably much better solutions, but this works for me ... cheers charles On Tue, 2006-06-20 at 10:33 +0200, Martin Schiøtz wrote: > Hi > > I have installed Postfix, Cyrus, Cyrus-sasl, web-cyradm. Every thing > is using postgres for storing usernames, passwords etc. I'm using lmtp > for local delivery from Postfix/smtp to Cyrus. All mailboxes are > virtual. > > My next step is to install Spam control. My plan is to use > Spamassassin with dcc, razor, pyzor and bayes system. A want mail > users to be able to disable and enable spam control. I also wan't mail > users that has enabled spam control to train (sa-laern) and keep their > own bayes database. > > I have configured a similar system that does these things but with > sendmail, uw-imap and procmail. But How can I do this with > postfix/cyrus and virtual bailboxes? > > I can see a lot docs about postfix, cyrus and amavisd-new but can > amavis-new work with personal bayes db and sa-learn etc.? > > Best regards, > Martin > > Cyrus Home Page: http://asg.web.cmu.edu/cyrus > Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu > List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html -- "simplified chinese" is not nearly as easy as they would have you believe ... a superlative oxymoron" --anonymous Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: Cyrus IMAP / SASL / LDAP virtual domain authentication
hi john, try adding ldap_default_realm: domain.tld ldap_realm: domain.tld to your saslauthd.conf & restart saslauthd cheers charles On Tue, 2006-04-18 at 05:12 -0400, [EMAIL PROTECTED] wrote: > Hello, > > I'm trying to set up Cyrus IMAP for virtual domains and authenticating > users in LDAP. > > I have the basic configuration working but I have a problem that for > "[EMAIL PROTECTED]" the authentication sent to LDAP is just for "myuser". > I believe this is down to SASL defaulting the ldap filter to "myuser" > instead of "[EMAIL PROTECTED]". > > I can "fix" this by adding "ldap_filter: [EMAIL PROTECTED]" in saslauthd.conf > and this > works for fully qualified names like "[EMAIL PROTECTED]" but for simple > users like "cyrus" this does not work as the authentication is then > performed like "cyrus@". > > I need SASL to just authenticate with the name supplied by the user, > verbatim. > > Can someone please offer guidance of how this can be achieved ? > > Thanks, > John > > > > mail2web - Check your email from the web at > http://mail2web.com/ . > > > > Cyrus Home Page: http://asg.web.cmu.edu/cyrus > Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu > List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html -- "simplified chinese" is not nearly as easy as they would have you believe ... a superlative oxymoron" --anonymous Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: messages not deleted from /var/spool/mail/ directory
hi ken, yea -- very tired here ... so, the messages are not deleted after a pop pickup. if i run reconstruct, they get purged. any ideas? cheers charles On Mon, 2006-04-10 at 07:59 -0400, Ken Murchison wrote: > lartc wrote: > > sorry :-) > > EXPUNGE is an IMAP command and has nothing to do with POP3. If a POP > client issues a DELE, then the messages will be removed when the client > issues QUIT, as long as it doesn't do a RSET first. > -- "simplified chinese" is not nearly as easy as they would have you believe ... a superlative oxymoron" --anonymous Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
messages not deleted from /var/spool/mail/ directory -- ignore -- just read about expunge
sorry :-) -- "simplified chinese" is not nearly as easy as they would have you believe ... a superlative oxymoron" --anonymous Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
messages not deleted from /var/spool/mail/ directory
hi all, i managed to get virtual domains working, however, i now notice that messages (even though they were received using pop with DELE on) are still living in the /var/spool/imap/user/... directory. is there a parameter for this (that i don't know about) thanks charles Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: cyrus virtual domains -- real not passed to saslauthd with virtdomains: userid
hi igor, thanks for your note -- yes i have the -r flag, but still no realm coming thru. this morning, i added ldap_default_realm and ldap_realm to my saslauthd.conf, and all is happy. thanks charles On Fri, 2006-04-07 at 15:13 -0400, Igor Brezac wrote: > On Fri, 7 Apr 2006, lartc wrote: > > > hi all, > > > > no joy even after googling for hours and looking thru the archives ... > > > > i cannot get imap to pass the realm either in the userid or realm field > > to saslauthd. > > > > i can successfully authenticate [EMAIL PROTECTED] using testsaslauthd, > > however, imtest test fails and debugging saslauthd does not show the > > realm. > > Use saslauthd -r or use %r or %R tokens in ldap_filter: > (ldap_filter: ( & (mail=%u%R) (uid=%U) ) > > -Igor > > > > > below are my configs. > > > > any help greatly appreciated :-) > > > > cheers > > > > charles > > > > /etc/saslauthd.conf > > ldap_servers: ldap://ldap.domain.com/ > > ldap_search_base: dc=domain,dc=com > > ldap_version: 3 > > ldap_filter: ( & (mail=%u) (uid=%U) )altnamespace: yes > > > > /etc/imapd.conf > > allowanonymouslogin: no > > allowapop: no > > allowplaintext: yes > > annotation_db: berkeley > > anysievefolder: yes > > autocreatequota: 10240 > > configdirectory: /var/lib/imap > > createonpost: true > > defaultdomain: domain.com > > duplicate_db: berkeley-nosync > > duplicatesuppression: no > > hashimapspool: yes > > idlesocket: /var/lib/imap/socket/idle > > imapidresponse: no > > ldap_realm: domain.com > > lmtp_downcase_rcpt: yes > > lmtp_over_quota_perm_failure: yes > > lmtpsocket: /var/spool/postfix/public/lmtp > > loginrealms: domain.com domain2.com > > mboxlist_db: berkeley > > partition-default: /var/spool/imap > > reject8bit: no > > sasl_mech_list: PLAIN > > sasl_pwcheck_method: saslauthd > > sasl_ldap_realm: domain.com > > sendmail: /usr/sbin/sendmail.postfix > > servername: domain.com > > sievedir: /var/lib/imap/sieve > > subscription_db: berkeley > > tls_ca_file: /etc/x509/ca.service/domain.com.pem > > tls_cert_file: /etc/x509/service.cyrus/public/service.cyrus.domain.com.pem > > tls_key_file: /etc/x509/service.cyrus/private/service.cyrus.domain.com.pem > > tls_require_cert: no > > tlscache_db: berkeley > > username_tolower: yes > > unixhierarchysep: yes > > virtdomains: userid > > > > > > > > > > > > > > Cyrus Home Page: http://asg.web.cmu.edu/cyrus > > Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu > > List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html > > > -- "simplified chinese" is not nearly as easy as they would have you believe ... a superlative oxymoron" --anonymous Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
cyrus virtual domains -- real not passed to saslauthd with virtdomains: userid
hi all, no joy even after googling for hours and looking thru the archives ... i cannot get imap to pass the realm either in the userid or realm field to saslauthd. i can successfully authenticate [EMAIL PROTECTED] using testsaslauthd, however, imtest test fails and debugging saslauthd does not show the realm. below are my configs. any help greatly appreciated :-) cheers charles /etc/saslauthd.conf ldap_servers: ldap://ldap.domain.com/ ldap_search_base: dc=domain,dc=com ldap_version: 3 ldap_filter: ( & (mail=%u) (uid=%U) )altnamespace: yes /etc/imapd.conf allowanonymouslogin: no allowapop: no allowplaintext: yes annotation_db: berkeley anysievefolder: yes autocreatequota: 10240 configdirectory: /var/lib/imap createonpost: true defaultdomain: domain.com duplicate_db: berkeley-nosync duplicatesuppression: no hashimapspool: yes idlesocket: /var/lib/imap/socket/idle imapidresponse: no ldap_realm: domain.com lmtp_downcase_rcpt: yes lmtp_over_quota_perm_failure: yes lmtpsocket: /var/spool/postfix/public/lmtp loginrealms: domain.com domain2.com mboxlist_db: berkeley partition-default: /var/spool/imap reject8bit: no sasl_mech_list: PLAIN sasl_pwcheck_method: saslauthd sasl_ldap_realm: domain.com sendmail: /usr/sbin/sendmail.postfix servername: domain.com sievedir: /var/lib/imap/sieve subscription_db: berkeley tls_ca_file: /etc/x509/ca.service/domain.com.pem tls_cert_file: /etc/x509/service.cyrus/public/service.cyrus.domain.com.pem tls_key_file: /etc/x509/service.cyrus/private/service.cyrus.domain.com.pem tls_require_cert: no tlscache_db: berkeley username_tolower: yes unixhierarchysep: yes virtdomains: userid Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: Shared folders are invisible?
hi, try turning on alternate name space in your imapd.conf altnamespace: yes restart cyrus and give it a try cheers charles On Tue, 2006-02-14 at 17:28 +0200, Georgy Goshin wrote: > Hi! > > I need shared folders, I'm trying to create this, but can't see the folders > from client (in Outlook Express in IMAP Folders i don;t see these folders). > How to make them visible? > > > D. > > > here is my imapd.conf: > > configdirectory:/var/lib/imap > partition-default: /var/spool/imap > admins: cyrus > sievedir: /var/lib/imap/sieve > sendmail: /usr/sbin/sendmail > hashimapspool: true > tls_cert_file: /share/ssl/certs/cyrus-imapd.pem > tls_key_file: /share/ssl/certs/cyrus-imapd.pem > tls_ca_file:/usr/share/ssl/certs/ca-bundle.crt > sasl_pwcheck_method:auxprop > sasl_auxprop_plugin:sasldb > sasldb_path:/etc/sasl2/sasldb2 > sasl_mech_list: LOGIN PLAIN CRAM-MD5 DIGEST-MD5 > unixhierarchysep: on > allowanonymouslogin:no > virtdomains:userid > dafaultdomain: omega.domain.tld > implicit_owner_rights: lrswida > sharedprefix: shared > autosubscribesharedfolders: SPAM | NOSPAM > > > > In cyradmin I made: > localhost.localdomain> cm shared/SPAM > localhost.localdomain> cm shared/NOSPAM > localhost.localdomain> sam shared/SPAM anyone all > localhost.localdomain> sam shared/NOSPAM anyone all > localhost.localdomain> lam shared/SPAM > anyone lrswipcda > localhost.localdomain> > > > Cyrus Home Page: http://asg.web.cmu.edu/cyrus > Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu > List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html > -- "simplified chinese" is not nearly as easy as they would have you believe ... a superlative oxymoron" --anonymous Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: Cyrus Install on Centos
hi kevin,
i'm using both cento-4 and rhel-4 go ahead and install the rpm ... along
with all the cyrus-sasl rpms as well.
here's my /etc/cyrus.conf
START {
recover cmd="ctl_cyrusdb -r"
idled cmd="idled"
}
SERVICES {
imap cmd="imapd" listen="imap" prefork=5
imaps cmd="imapd -s" listen="imaps" prefork=1
pop3 cmd="pop3d" listen="pop3" prefork=3
pop3s cmd="pop3d -s" listen="pop3s" prefork=1
sieve cmd="timsieved" listen="sieve" prefork=0
lmtpunix cmd="lmtpd" listen="/var/spool/postfix/public/lmtp"
prefork=1
}
EVENTS {
checkpointcmd="ctl_cyrusdb -c" period=30
delprune cmd="cyr_expire -E 3" at=0400
tlsprune cmd="tls_prune" at=0400
and i am also using potfix (recommended, i think)
cheers
charles
On Tue, 2006-01-24 at 11:15 +, [EMAIL PROTECTED] wrote:
> Hi,
>
> I am new to his group. Can someone please point me in the right direction
> I want to get away from using Dovecot and use Cyrus. Does any one know of
> a good howto guide on setting up Cyrus on either Centos or Redhat.
>
> Thanks very much
>
> Kevin
>
--
"simplified chinese" is not nearly as easy as they would
have you believe ... a superlative oxymoron" --anonymous
Cyrus Home Page: http://asg.web.cmu.edu/cyrus
Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu
List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: efficient and simple ham and spam learn with cyrus
hi andrez, hi andreas, thanks for your suggestions -- will do both :-) cheers charles Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
efficient and simple ham and spam learn with cyrus
hi all, i have a cyrus/postfix/amavis setup and would like to ask if anyone has developed a simple methodology to handle learning of ham and spam in an imap mailbox. in general do you have your user forward messages to piped user, or have sa-learn run on an imap mailbox? cheers charles Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: Log level question
hi franco, On Tue, 2005-09-27 at 13:28 -0300, Franco Bruno Borghesi wrote: > Yeps, that's what I told him. But I've got no access to his home > computer, and he keeps saying that his computer is correctly > configured. That's why I would like to have a record in the log file. not sure how he's accessing (dial-in, dsl, etc) but your could certainly catch him by doing a tcpdump filtering on pop3 (and hopefully) his ip address. you'll see the DELE command in the data section of the tcp packets ... of course, some sort of transaction logging would be better :-), but if all else fails ... cheers charles Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: Log level question
hi franco if i had to guess -- the client machine using pop3 has it setup to delete messages rather than leaving them on the server. so when the user checked his mail using pop3, all the message went locally to that machine. cheers charles On Tue, 2005-09-27 at 12:30 -0300, Franco Bruno Borghesi wrote: > Hi everyone on this list. This is my very first post, although I've > been using cyrus imap for a couple of years now. > > My question is: is there any way to log when a user deletes/purges an > email from his account? > > There is an user of an imap installation who told me a couple of weeks > ago that he had lost almost all his messages. I restored then from a > backup; didn't found anything suspicious on this server, so I told him > to check his home computer configuration. > > Same thing happened today. This users access mail from his work > computer (via IMAP), his home computer (via POP3) and webmail > (SquirrelMail). Checking the backups I found that messages where > deleted on sunday (there where 158 messages on saturday's night > backup, and only 33 on sunday's night). > > So, is there any way to increase log level, so I can find out from > where and when the messages are being deleted? > > Thanks in advance. > > Cyrus Home Page: http://asg.web.cmu.edu/cyrus > Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu > List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html -- "simplified chinese" is not nearly as easy as they would have you believe ... a superlative oxymoron" --anonymous Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: Cyrus Imap Authentication Problems
hi, try installing the sasl authentification packages ... i had the same thing ... cyrus-sasl-md5 cyrus-sasl-plain cyrus-sasl-ntlm cyrus-sasl-gssapi "plain" is the minimum install ... cheers chalres On Sun, 2005-09-25 at 21:31 +0200, evildad wrote: > HI there, > i'd like to set-up an working IMAP Server on my Gentoo > System. I used the Postfix-Cyrus-Web-cyradm-HOWTO from > http://www.delouw.ch/linux/Postfix-Cyrus-Web-cyradm-HOWTO/html/index.html > > Because I use Gentoo, I compiled all the packages > with the „emerge“ command. Here are the versions for > my installed packages: > > cyrus-sasl-2.1.21-r1 > cyrus-imapd-2.2.12 > postfix-2.1.5-r2 > pam_mysql-0.6.0 > mysql-4.0.25-r2 > web-cyradm-0.5.4.1 > > > They all compiled without errors but after i wanted to > create the user cyrus with the command > > # saslpasswd2 -c cyrus > Password: > Again (for verification): > > > ... the following errors appear in /var/log/messages: > > Sep 25 17:21:01 evildad saslpasswd2: sql_select option > missing > Sep 25 17:21:01 evildad saslpasswd2: auxpropfunc error > no mechanism available > Sep 25 17:21:01 evildad saslpasswd2: _sasl_plugin_load > failed on sasl_auxprop_plug_init for plugin: sql > Sep 25 17:21:05 evildad saslpasswd2: setpass succeeded > for cyrus > Sep 25 17:21:05 evildad saslpasswd2: error deleting > entry from sasldb: DB_NOTFOUND: No matching key/data > pair found > Sep 25 17:21:05 evildad saslpasswd2: error deleting > entry from sasldb: DB_NOTFOUND: No matching key/data > pair found > Sep 25 17:21:05 evildad saslpasswd2: error deleting > entry from sasldb: DB_NOTFOUND: No matching key/data > pair found > > > I don't understand why sasl won't find the DB. > > Another Problem is the command to connect to the > Server. > > When i type in the following command to the Server I > get the following output: > > # cyradm --user cyrus --server localhost --auth plain > Password: > IMAP Password: > Login failed: authentication failure at > /usr/lib/perl5/site_perl/5.8.6/x86_64-linux/Cyrus/IMAP/Admin.pm > line 118 > cyradm: cannot authenticate to server with plain as > cyrus > > > and in /var/log/messages: > > Sep 25 21:18:26 evildad master[7102]: about to exec > /usr/lib/cyrus/imapd > Sep 25 21:18:26 evildad imap[7102]: executed > Sep 25 21:18:26 evildad imap[7102]: sql auxprop plugin > using mysql engine > Sep 25 21:18:26 evildad imap[7102]: accepted > connection > Sep 25 21:18:37 evildad imap[7102]: badlogin: > localhost [127.0.0.1] PLAIN [SASL(-16): encryption > needed to use mechanism: security flags do not match > required] > Sep 25 21:18:40 evildad perl: No worthy mechs found > Sep 25 21:18:44 evildad imap[7102]: sql plugin Parse > the username cyrus > Sep 25 21:18:44 evildad imap[7102]: sql plugin try and > connect to a host > Sep 25 21:18:44 evildad imap[7102]: sql plugin trying > to open db 'mail' on host 'localhost' > Sep 25 21:18:44 evildad imap[7102]: sql plugin Parse > the username cyrus > Sep 25 21:18:44 evildad imap[7102]: sql plugin try and > connect to a host > Sep 25 21:18:44 evildad imap[7102]: sql plugin trying > to open db 'mail' on host 'localhost' > Sep 25 21:18:44 evildad saslauthd[6930]: DEBUG: > auth_pam: pam_acct_mgmt failed: User account has > expired > Sep 25 21:18:44 evildad saslauthd[6930]: do_auth > : auth failure: [user=cyrus] [service=imap] [realm=] > [mech=pam] [reason=PAM acct error] > Sep 25 21:18:44 evildad imap[7102]: badlogin: > localhost [127.0.0.1] plaintext cyrus SASL(-13): > authentication failure: checkpass failed > Sep 25 21:19:47 evildad master[20809]: process 7102 > exited, status 0 > > > Hope anyone can help me to get the authentication > work... > And i don't know why the User account has been expired > though it has never worked before... > > Thanks in advance, > Evildad > > > > > > ___ > Was denken Sie über E-Mail? Wir hören auf Ihre Meinung: > http://surveylink.yahoo.com/wix/p0379378.aspx > > Cyrus Home Page: http://asg.web.cmu.edu/cyrus > Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu > List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html > -- "simplified chinese" is not nearly as easy as they would have you believe ... a superlative oxymoron" --anonymous Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: Spam coming from list server??
hi all, i also have been receiving hundreds of mailer-daemon messages -- apparently, the spammer has harvested e-mail address from this list and others and used my address as the from: large quantities of these messages are quite "legitimate" bounces from real smtp servers, so i have to install filters to class them as spam. Ayeee. Charles On Mon, 2005-05-16 at 09:05 +0100, Alain Williams wrote: > On Sun, May 15, 2005 at 07:40:25PM -0400, Derrick J Brashear wrote: > > On Sun, 15 May 2005, Patrick Gibson wrote: > > > > >Is there any particular reason why info-cyrus is not a closed list? It is > > >unnecessary in my opinion to be receiving spam via a list that can easily > > >restrict posting to subscribed members. > > > > The spam can be (and on other lists has been) forged as from members. Then > > what? > > Quite possible ... but more difficult for the spammer to do. > > Making it closed would improve matters. > > I would also like to see '[info-cyrus]' put on the subject line. > --- Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
sieve problems
hello list,
i have a problem with sieve that i'm having a very hard time working
out: i'm running on fedora core 3 and have tried versions from 2.1.19
thru to the the latest stable 2.2.12
essentially, i cannot connect to sieve server process thru sivtest or
sieveshell
there are two pertinent threads that i followed, but to no avail:
[1] http://www.mail-archive.com/info-
[EMAIL PROTECTED]/msg10774.html
[2] http://oss.gonicus.de/pipermail/gosa/2004-December/85.html
[1] describes the exact issue as does [2] -- theoretically this was
fixed in a previous version.
any help would be greatly appreciated!
cheers
charles shick
saslauthd successfully uses ldap for its auth mechanism:
here's some output generated by my server:
[root]# saslauthd -v
saslauthd 2.1.19
authentication mechanisms: getpwent kerberos5 pam rimap shadow ldap
[root]# testsaslauthd -u cyrus -p tototo -s sieve localhost
0: OK "Success."
--during the last command, here's saslauthd debugging:
saslauthd[7357]:do_auth:auth success: [user=cyrus] [service=sieve]
[realm=] [mech=ldap]
saslauthd[7357] :do_request : response: OK
[root]# cyradm --user cyrus --authz cyrus localhost
IMAP Password:
localhost>
--during the last command, here's saslauthd debugging:
saslauthd[8006] :do_auth : auth success: [user=cyrus]
[service=imap] [realm=] [mech=ldap]
saslauthd[8006] :do_request : response: OK
here's the sivtest and sieveshell tests -- saslauthd reports OK for the
auth:
[root]# sieveshell --user cyrus --authname cyrus localhost
connecting to localhost
Please enter your password:
unable to connect to server at /usr/bin/sieveshell line 169,
line 1.
from /var/log/messages
perl: No worthy mechs found
[root]# sivtest -u cyrus -a cyrus -w tototo localhost
S: "IMPLEMENTATION" "Cyrus timsieved v2.2.10-Invoca-
RPM-2.2.10-1.RHEL4.1"
S: "SASL" "PLAIN"
S: "SIEVE" "fileinto reject envelope vacation imapflags notify
subaddress relational comparator-i;ascii-numeric regex"
S: "STARTTLS"
S: OK
C: AUTHENTICATE "PLAIN" {24+}
Y3lydXMAY3lydXMAdG90b3Rv
S: NO "Authentication Error"
Authentication failed. generic failure
Security strength factor: 0
---
Cyrus Home Page: http://asg.web.cmu.edu/cyrus
Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu
List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
