Re: Compiling Problem

2000-10-20 Thread Paul Schinder 

At 8:16 AM -0700 10/20/00, Zack Zeiler wrote:
>Hi.  Got a question.  I have a  new installation of Solaris 8.
>
>I have setup qmail on Linux a dozen times, no problem. First time on
>solaris.
>
># make setup check
>
>It goes throught the standard stuff and gets stuck here each time.
>
>./compile qmail-local.c
>/usr/ucb/cc:  language optional software package not installed
>*** Error code 1
>make: Fatal error: Command failed for target `qmail-local.o'
>
>I've checked and /usr/ucb/cc does exist.

Now run "more /usr/ucb/cc", and look at the last few lines.

Edit conf-cc and change the compiler to gcc.  Of course, you must 
have gcc installed.  You can get it at 

>
>Can you advise on this?
>
>Thanks,
>
>Zack Z.
>VPI.Net

-- 
--
Paul J. Schinder
NASA Goddard Space Flight Center
Code 693
[EMAIL PROTECTED]

Re: port 25 cannot telnet

2000-09-19 Thread Paul Schinder 

At 1:53 PM -0700 9/19/00, <[EMAIL PROTECTED]> wrote:
> I am in the process of learning scripts so please be patient.
>When you said use numbers did you mean gid and uid numbers instead of
>
>id -u qmaild
>id -g qmaild, so it will look something like this QMAILDUID=100
>
>NOFILESGID=1001

Yes, exactly.

>than I can take -u and -g from this line
> -u $QMAILDUID  -g $NOFILESGID 0 smtp

No, you leave this just the way it is.

>/var/qmail/bin/qmail-smtpd 2>&1
>correct?
>Thank you
>Denis
>
-- 
--
Paul J. Schinder
NASA Goddard Space Flight Center
Code 693
[EMAIL PROTECTED]

Re: port 25 cannot telnet

2000-09-19 Thread Paul Schinder 

At 8:33 PM -0700 9/18/00, <[EMAIL PROTECTED]> wrote:
>I am trying to install qmail on the Solaris 7 x86 system using Life with
>qmail. I have few problems:
>1. /var/qmail/supervise/qmail-smtpd/run script is having some errors
>
>QMAILDUID=`id -u qmaild`
>NOFILESGID=`id -g qmaild`
>exec /usr/local/bin/softlimit -m 200 \
> /usr/local/bin/tcpserver -v -p -x /etc/tcp.smtp.cdb \
> -u $QMAILDUID  -g $NOFILESGID 0 smtp /var/qmail/bin/qmail-smtpd 2>&1
>
>when I run the script I get errors -u -g illegal option. I am not sure what
>those options are doing, I took them out and replaced with -a that seem to
>work.
>2. Cannot telnet on the port 25 tried everything but it tells me connection
>refused. Sendmail is gone so there is no port "sharing"
>I found an error in the qmail log
>@400039c80c1404df8924 tcpserver: fatal: unable to figure out port number
>for gid=100(nofiles)
>I think this is my problem, but I do not know how to fix it.

Your problem is that id on Solaris is not the same as id under Linux:

leprss% id -u qmaild
id: illegal option -- u
Usage: id [user]
id -a [user]

Just put the numbers in the script by hand.

The error in the log is cause by the fact that NOFILESGID isn't set right.

>Please help
>Denis

-- 
--
Paul J. Schinder
NASA Goddard Space Flight Center
Code 693
[EMAIL PROTECTED]

Re: Anti Virus

2000-08-04 Thread Paul Schinder 

At 4:20 AM -0400 8/4/00, Adam McKenna wrote:
>On Fri, Aug 04, 2000 at 10:17:41AM +0200, Robin S. Socha wrote:
>>  your way of quoting *may* be convenient for you. It is, however, annoying
>>  for probably everyone else (particularly people not reading your "threads"
>>  in a row. It also adds a *massive* amount of unnecessary overhead. May I
>>  suggest your grabbing a copy - really, just about any - of the netiquette
>>  and fixing your mail toys?
>
>For christ sake, leave the guy alone.  IMHO your incessant personal attacks
>are way more annoying than his quoting style.

Does anyone else see what he's complaining about?  I've read this 
thread using MacOS Eudora, and just looked at one of the messages 
with mutt, and I see nothing out of the ordinary.  (Reminds me of the 
time some idiot flamed me on Usenet for using "}" instead of ">" as 
the quoting character.)

>
>--Adam

-- 
--
Paul J. Schinder
NASA Goddard Space Flight Center
Code 693
[EMAIL PROTECTED]

Re: new qmail install

2000-07-15 Thread Paul Schinder 

At 6:30 PM -0400 7/15/00, [EMAIL PROTECTED] wrote:
>I have re-installed qmail-1.03, daemontools-0.70, and ucspi-tcp-0.88. I
>used Life With Qmail as a guide. I can send mail out using pine. Sending
>to a different address, I can receive it on netscape. Netscape picked up
>the Maildir, and now reads and stores there. I cannot receive under
>[EMAIL PROTECTED] which is the mail server I set up with qmail. I have
>not been able to make the adjustment to pine to get it to read from the
>new Maildir inbox. Here is the ps for qmail
>[root@basicq nsmail]# ps -ef | grep qmail
>root   488   487  0 11:33 ?00:00:00 supervise qmail-send
>root   489   487  0 11:33 ?00:00:00 supervise qmail-smtpd
>qmails 490   488  0 11:33 ?00:00:00 qmail-send
>qmaild 491   489  0 11:33 ?00:00:00 /usr/local/bin/tcpserver
>-v -p -
>root   498   490  0 11:33 ?00:00:00 qmail-lspawn ./Maildir/
>qmailr 499   490  0 11:33 ?00:00:00 qmail-rspawn
>qmailq 500   490  0 11:33 ?00:00:00 qmail-clean
>root 11333  5535  0 18:24 pts/000:00:00 grep qmail
>
>I do have a firewall in front of the server. I have made the ipchains
>rules to allow the server to work, as best I could figure it out.
>
>Last few lines in /var/log/mail/messages is
>
>[root@basicq log]# tail maillog
>Jul 12 17:14:27 basicq qmail: 963436467.513805 delivery 190: deferral:
>Uh-oh:_home_directory_is_writable._(#4.7.0)/
>Jul 12 17:14:27 basicq qmail: 963436467.513962 status: local 0/10 remote
>0/20
>Jul 12 17:22:06 basicq qmail: 963436926.512758 starting delivery 191:
>msg 27998 to remote [EMAIL PROTECTED]
>Jul 12 17:22:06 basicq qmail: 963436926.512908 status: local 0/10 remote
>1/20
>Jul 12 17:22:06 basicq qmail: 963436926.572078 delivery 191: deferral:
>Sorry,_I_wasn't_able_to_establish_an_SMTP_connection._(#4.4.1)/
>Jul 12 17:22:06 basicq qmail: 963436926.572228 status: local 0/10 remote
>0/20
>Jul 12 17:26:35 basicq qmail: 963437195.563015 starting delivery 192:
>msg 28035 to local [EMAIL PROTECTED]
>Jul 12 17:26:35 basicq qmail: 963437195.563164 status: local 1/10 remote
>0/20
>Jul 12 17:26:35 basicq qmail: 963437195.571547 delivery 192: deferral:
>Uh-oh:_home_directory_is_writable._(#4.7.0)/
>Jul 12 17:26:35 basicq qmail: 963437195.571679 status: local 0/10 remote
>0/20
>
>Any suggestions on how to get this going?


It's telling you exactly what's wrong.  qmail will not deliver to a 
directory where someone else can blow away your .qmail files and 
create their own.  Unfortunately, some Linux distributions with a 
"single person per group" setup can cause qmail to complain, since it 
doesn't like group writable any more than world writable.  You have 
two choices; change the permissions on your home directory or tell 
qmail what mask you want it to complain about (conf-patrn).  This has 
been discussed in the list before, and so should be in the archives.

As for pine, install mutt.  mutt knows how to read maildirs, and is a 
better client than pine.




-- 
--
Paul J. Schinder
NASA Goddard Space Flight Center
Code 693
[EMAIL PROTECTED]

Re: IMAP vs POP - small company < 50

2000-07-13 Thread Paul Schinder 

At 8:55 AM -0700 7/13/00, Steven M. Klass wrote:
>Hello all
>
>   Sorry to tread on holy ground, but which is better.  Some 
>company info..  Only a few of us travel, most of us want to remotely 
>log in, and see if we have any mail.  Everyone accesses mail locally 
>at work - obviously..

They serve different purposes. and it's not an either/or proposition. 
IMAP allows you to keep and manipulate the mail on the server, while 
POP will always drag a copy to the client machine (although it might 
also be set to "leave mail on server".).  Which you want depends on 
circumstances. Reading mail using IMAP (like I'm doing right now) can 
be a little slow over a slow link if you have it set up to not bring 
the entire text of the message over until you need it.  But with 
IMAP, you can control the same mail store from wherever you are.

IMAP is more flexible, and that's why I'm using it, but I still have 
POP around for my Newton and my old Powerbook, for which IMAP clients 
aren't available (or are technically available but don't work).

>
>
>Thanks
>
>Steven M. Klass
>Systems Administrator
>
>Andigilog Inc.
>7404 W. Detroit Street, Suite 100
>Chandler, AZ 85226
>Ph: 602-940-6200 ext. 18
>Fax: 602-940-4255
>
>[EMAIL PROTECTED]
>http://www.andigilog.com/

-- 
--
Paul J. Schinder
NASA Goddard Space Flight Center
Code 693
[EMAIL PROTECTED]

Re: fetchmail

2000-07-12 Thread Paul Schinder 

At 2:09 PM -0400 7/12/00, [EMAIL PROTECTED] wrote:
>On Wed, Jul 12, 2000 at 06:42:51PM +, Thomas Duterme wrote:
>>  This is taken from some documentation on fetchmail.  Is there anyway I can
>>  inject things back into Maildir instead of mbox?  (my other solution is to
>>  start hacking the fetchmail source)
>>
>
>If I understand you correctly -- and I'm not certain I do -- you want
>fetchmail to deliver into a Maildir?
>
>Tell fetchmail to deliver to procmail, which can easily deliver to a
>Maildir.

There's no need unless you want to use procmail's abilities.  By 
default fetchmail delivers to port 25 on the local machine, and qmail 
certainly knows how to deliver to a Maildir.

(I also found the question a little strange.  Configuring fetchmail 
to deliver to qmail is straightforward and well documented.)

>
>Example:
>
>mda "/usr/bin/procmail  -d %T"
>
>and in .procmailrc
>
>:0
>~/Maildir/
>
>-dsr-

-- 
--
Paul J. Schinder
NASA Goddard Space Flight Center
Code 693
[EMAIL PROTECTED]

Re: timestamp problem

2000-06-17 Thread Paul Schinder 

At 5:10 PM +0200 6/17/00, Jens Georg wrote:
>hello,
>
>i am running qmail on a suse linux server with its systemclock set
>correctly. unfortunately, qmail sets an incorrect time to every outgoing
>mail. system time and time in mails differs in exactly 2 hours, i.e.
>writing a mail at 16:00 o'clock sets time to 14:00 o'clock in the mail.
>
>any ideas why ?

Because qmail always uses GMT and you're GMT+2.


>
>--
>jens
>---
>department computer science, university of dortmund
>linux ... life's too short for reboots!

-- 
--
Paul J. Schinder
NASA Goddard Space Flight Center
Code 693
[EMAIL PROTECTED]

Re: 8bit characters ... URGENT

2000-06-15 Thread Paul Schinder 

At 6:24 AM -0700 6/15/00, mwangu wrote:
>Paul,
>
>Thank you for your response.
>
>Please do not take offence at my conclusion that qmail
>is partly to blame. While my familiarity with MTAs
>stops at sendmail, I am only just getting to grips
>with the workings of qmail (I have been looking at
>this issue for the last 4 days, and yes, I have
>trawled through a mass of documentation.
>
>I can appreciate what you're saying. Now, is there any
>way for me to get qmail to emulate this particular
>feature of sendmailfor the next 2 months while I work
>on ripping out this insidioud accounting application?

You need to find a filter to change octal 200-377 into the equivalent 
MIME quoted printable encoding.  There's a perl module at CPAN, 
MIME::Decoder::QuotedPrint, part of the MIME-tools package, that 
looks like it will do the job.  I think the actual conversion, 
though, can be done in a single line of perl, or maybe tr(1) is 
enough.

Where to put it is the question only you can decide.  If it's only a 
single person or a small number of people that need to see the mail 
"correctly", then putting the filter in .qmail should work.  If all 
mail needs to be converted, then you can use the default delivery 
instruction to do it, but I've never done anything like that myself. 
Look at http://www.qmail.org/ and the list archives to get some ideas.

The alternative is to simply install sendmail on the new machine.  I 
can't believe there's a machine that runs qmail that won't run 
sendmail.  But using a filter is going to be much easier, and much 
safer.

> I realise that what I have just asked borders on
>heresy, but I am desparate to get this resolved as I
>do have more pressing jobs to get on with which will
>allow me to get rid of sendmail completely as it has
>proved to be an insecure MTA time and time again.
>qmail as I understand it could close this hole, but
>before I do that I need to implement our new
>accounting system, and before I do that I have to run
>the old one without the sendmail relay host which has
>now been poached,  and so on, I'm sure you get the
>picture.
>
>Thank you.
>
>
>__
>Do You Yahoo!?
>Yahoo! Photos -- now, 100 FREE prints!
>http://photos.yahoo.com

-- 
--
Paul J. Schinder
NASA Goddard Space Flight Center
Code 693
[EMAIL PROTECTED]

Re: 8bit characters ... URGENT

2000-06-15 Thread Paul Schinder 

At 5:38 AM -0700 6/15/00, mwangu wrote:
>I must be doing something wrong then.

No, you're expecting the wrong thing.  Here's what I think is
happening,  although it's been years since I allowed sendmail on any
machine that I control. As I recall, sendmail thinks it's just fine
to muck around with the contents of email.  (My first order of
business after booting a new OS is to remove sendmail immediately.)

>
>1) When I send the same message directly to qmail. I
>get no Sterling signs.

qmail leaves the data untouched, and the software you're using to
view it doesn't know how to display the 8-bit character for pound
sign.  (Use a Mac, for example, and you might run into the difference
between ISO and MacRoman, although your £ below displayed properly on
my iBook.)

>
>2) When I send exactly the same message to a sendmail
>relay, which then sends to the qmail address in 1), I
>get Sterling signs.

sendmail "helpfully" changes the data, and the MIME encoding that
sendmail replaces the pound sign with is correctly interpreted by the
software you're using.

Use the proper tool to examine the data before making accusations.
(It's amazing how many people are so quick to accuse qmail of doing
things that it's not doing.)  Use od(1) to examine the data before
and after you send it through the MTA.  I think you'll find that
qmail leaves it alone, while sendmail changes it.  qmail does *not*
change the content of email.

>
>If my statment below was incorrect, then please
>explain to me how this is.
>
>Thank you.
>
>
>
>__
>Do You Yahoo!?
>Yahoo! Photos -- now, 100 FREE prints!
>http://photos.yahoo.com

--
--
Paul J. Schinder
NASA Goddard Space Flight Center
Code 693
[EMAIL PROTECTED]

Re: 8bit characters ... URGENT

2000-06-15 Thread Paul Schinder 

At 5:03 AM -0700 6/15/00, mwangu wrote:
>To add to the info,
>
>I am being forced to work with a legacy accounting
>system with a mail client which is incapable of adding
>MIME headers to emails as appropriate. When qmail
>recieves the e-mail it strips out the £ (Sterling
>sign) and replaces with (? or #).

No, it doesn't.  qmail doesn't touch the content of email, and is 8-bit clean.

>
>We currenlty send the messages to a sendmail host
>first and then accept relay them to qmail. Due to
>budget cuts, I have to give up the sendmail host, and
>would like to receive mail directly to qmail ... is
>this possible?

sendmail may be doing it.  Or it might be one of the clients on either end.

>
>Thank you
>
>--- mwangu <[EMAIL PROTECTED]> wrote:
>
>
>__
>Do You Yahoo!?
>Yahoo! Photos -- now, 100 FREE prints!
>http://photos.yahoo.com

--
--
Paul J. Schinder
NASA Goddard Space Flight Center
Code 693
[EMAIL PROTECTED]

Re: qmail+maildrop+amavis

2000-06-07 Thread Paul Schinder 

At 4:54 PM +0100 6/7/00, Nuno Ferreira wrote:
>Thanks,
>
>Meanwhile I was able to get it working.
>
>However, I still am unable to make maildrop work with QMail.
>I have installed maildrop-0.76b, I have
>
>the following in ~/.qmail
>./Maildir/
>| /var/qmail/bin/preline /usr/local/bin/maildrop
>
>and the folowing in ~/.mailfilter
>DEFAULT="./Maildir/"
>if ( /^(To|Cc|From|Reply-To): *@hotmail.com*/ )
>{
>to [EMAIL PROTECTED]
>}
>
>I think maildrop is being called correctly, because I had a permission
>problem that appeared in the logs and now it stopped appearing.
>However, with this configuration, I [EMAIL PROTECTED] never gets any
>message coming to me from hotmail.com.

The pattern above doesn't match any valid address from hotmail.com.
"man maildropfilter" and read again what kind of regular expressions
maildrop supports.

>Maybe there's something wrong with the "if", but I can't see it. Furthermore
>I think that with this configuration some mails (the ones from hotmail.com)
>get thrown back into the queue and come back to me several times.

Looks to me that they'll be delivered twice, once by the ./Maildir/
in .qmail, and once by maildrop's default.

>
>Is there anybody able to shed some light.
>
>TIA
>
>
>Nuno Ferreira
>Departamento de Informática da APCMC
>  Tel: 22 5074212
>  Fax: 22 5074219
>  [EMAIL PROTECTED]
>-
--
--
Paul J. Schinder
NASA Goddard Space Flight Center
Code 693
[EMAIL PROTECTED]

Re: qmail+maildrop+amavis

2000-06-05 Thread Paul Schinder 

At 11:59 AM +0100 6/5/00, Nuno Ferreira wrote:
>Alright, what I am seeing is this.
>~/.qmail is working, forward works swell for example, but I either cannot
>get the program (the | program) to work or I can but it is the program
>that's not working.
>
>My specific problem is this:
>
>in ~/.qmail I have
>./Maildir/
>| preline /var/local/bin/maildrop user
>
>in ~/.mailfilter I have
>DEFAULT="./Maildir/"
>if ( /^(To|Cc|From|Reply-To): .*guy_I_want_to_caught*/ )
>to [EMAIL PROTECTED]

What Do The Logs Say (TM)?  In particular, the maildrop log that you
should be writing to since you're having trouble.  man maildropfilter
and look for logfile.

>
>
>other destination never gets the message.
>
>Also, I would really appreciate any info, pointers on AMaVIS and QMail.
>
>TIA,
>
>Nuno Ferreira
>Departamento de Informática da APCMC
>  Tel: 22 5074212
>  Fax: 22 5074219
>  [EMAIL PROTECTED]
>-
>- Original Message -
>From: "Eric Cox" <[EMAIL PROTECTED]>
>To: <[EMAIL PROTECTED]>
>Sent: Monday, June 05, 2000 10:14 AM
>Subject: Re: qmail+maildrop+amavis
>
>
>>
>>
>>  Nuno Ferreira wrote:
>>  >
>>  > Hi,
>>  >
>>  > Two questions.
>>  > Seems my ~/.qmail never gets executed by Qmail, so I am not able to have
>a
>>  > functional maildrop or procmail. BTW, is ~/.qmail a script that gets
>>  > executed by QMail or is it a file that is read by it to know how to
>perform
>>  > to specific users.
>>
>>  Nope, ~/.qmail isn't a script...
>>
>>  There are copious numbers of man pages that come with the default
>>  installation.  The one you want is 'man dot-qmail'.
>>
>>  Hope that helps,
>>  Eric
>>

--
--
Paul J. Schinder
NASA Goddard Space Flight Center
Code 693
[EMAIL PROTECTED]

Re: ORBS prevention

2000-05-08 Thread Paul Schinder 

At 11:34 AM +0900 5/8/00, Kristina wrote:
>I am at the point of setting up my qmail-server as the mail-hub for my
>organization.  I have only used qmail for testing purposes so far and I am not
>experienced with anti-spam techniques.
>
>Now that I want to use my qmail-server in real life, there are many
>other issues involved--like preventing my qmail server from being put on
>the ORBS database. I have referred to the archives, however, there is much
>heated discussion without much pratical detail.
>
>Pleae let me know what I need to do for ORBS prevention and any other
>configuration details necessary for a secure, anti-spam mail-hub.

Absolutely nothing.  qmail as installed won't relay for third 
parties, and therefore won't get in ORBS.

It's what you *shouldn't* do that's important.  Under no 
circumstances should you remove the rcpthosts file.  Read Dave Sill's 
Life with qmail and some of the other documents that you must have 
run across if you've read all the "heated discussion" to learn how to 
properly set up relaying with qmail.

>
>
>Thankyou in advance,
>Kristina

-- 
--
Paul J. Schinder
NASA Goddard Space Flight Center
Code 693
[EMAIL PROTECTED]

Re: Global filtering

2000-05-05 Thread Paul Schinder 

At 9:33 PM -0400 5/4/00, Bennett Samowich wrote:
>Greetings,
>
>I am relatively new to qmail, so forgive me if this is too simple...
>
>With all of the current goings on about the "luv bug", I have a 
>question concerning qmail and filtering.  My customer base uses 
>sendmail primarily, while I have been experimenting with qmail at my 
>site.  With the sendmail sites I was able to implement a 
>configuration "hack" to stop initial instances of the message.  I 
>was also able to implement a global procmail filter to accomplish 
>the same thing.
>
>My question is this:
>Does qmail have the ability to implement global filters.  I know 
>that I can put procmail lines in each users .qmail file, but that 
>seems like alot of work.

IIRC, the default delivery instruction in /var/qmail/rc can be a pipe 
to a program.  So you can qmail-start "| preline /path/to/procmail" 
and have mail by default run through procmail.  Of course, you still 
have a .qmail problem: any user with a .qmail will override the 
default instruction.  "man qmail-command" gives you some details.

>
>Thanks in advance,
>- Bennett

-- 
--
Paul J. Schinder
NASA Goddard Space Flight Center
Code 693
[EMAIL PROTECTED]

Re: send mail to remote hosts...

2000-05-01 Thread Paul Schinder 

At 10:35 PM -0400 4/30/00, Mrs. Brisby wrote:
>   2) pop3 command XTND XMIT.
>   obvious PRO: no second connection necessary!
>   obvious CON: needs a custom client. I am looking for 
>one of these (preferably for windows and/or macos)
>-- anyone want to let me know of one?

You mean server or client?  Eudora implements XTND XMIT (definitely 
on MacOS, probably on Windoze).  That's why Qualcomm's qpopper also 
implements XTND XMIT.  Of course, using qpopper means using mbox 
rather than Maildir.
-- 
--
Paul J. Schinder
NASA Goddard Space Flight Center
Code 693
[EMAIL PROTECTED]

Re: Compilation errors

2000-04-27 Thread Paul Schinder 

At 11:41 AM +0800 4/27/00, Isaiah Chua wrote:
>hi folks,
>
>I'm not sure if this has been asked before, but searching the FAQs 
>didn't produce anything, so I assume it could be new.
>
>I'm trying to compile qMail on our RedHat 6.2 server and have 
>downloaded all the necessary files for qMail to be compiled and take 
>over sendmail.
>
>However, whenever I try to compile either of the modules and qMail 
>itself, I get a rather similar message for all... after typing 'make 
>setup check':
>
>bash# cd qmail*
>bash# make setup check
>( ( ./compile tryvfork.c && ./load tryvfork ) >/dev/null \
>2>&1 \
>&& cat fork.h2 || cat fork.h1 ) > fork.h
>rm -f tryvfork.o tryvfork
>./compile qmail-local.c
>qmail-local.c: In function `main':
>qmail-local.c:448: warning: return type of `main' is not `int'
>./compile qmail.c
>./compile quote.c
>./compile now.c
>./compile gfrom.c
>./compile myctime.c
>./compile slurpclose.c
>./compile case_diffb.c
>./compile case_diffs.c
>./compile case_lowerb.c
>./compile case_lowers.c
>./compile case_starts.c
>./makelib case.a case_diffb.o case_diffs.o case_lowerb.o \
>case_lowers.o case_starts.o
>./compile getln.c
>./compile getln2.c
>./makelib getln.a getln.o getln2.o
>./compile subgetopt.c
>./compile sgetopt.c
>./makelib getopt.a subgetopt.o sgetopt.o
>./compile sig_alarm.c
>In file included from /usr/include/signal.h:300,
>  from sig_alarm.c:1:
>/usr/include/bits/sigcontext.h:28: asm/sigcontext.h: No such file or
>directory
>make: *** [sig_alarm.o] Error 1
>
>I already have all the GNU C compilers installed on the server.
>
>Anyone has any ideas why?
>

You're missing the kernel headers, most likely.  You'll need to get 
them from somewhere before you can proceed.  There's an rpm, I think. 
On my Yellow Dog Linux machine (a RedHat clone for PPC), 
/usr/include/asm is a symlink into the kernel sources.

>
>
>

-- 
--
Paul J. Schinder
NASA Goddard Space Flight Center
Code 693
[EMAIL PROTECTED]

Re: Maildir format

2000-04-17 Thread Paul Schinder 

At 9:41 PM +0200 4/17/00, quanta wrote:
>Sorry I have one more question, I am using The Maildir format to make it
>works with qmail-pop3d
>but I can't find any client like pine or elm to work with it, do I have to
>patch something??

Try mutt.  http://www.mutt.org.

>
>THX
>Mikael

-- 
--
Paul J. Schinder
NASA Goddard Space Flight Center
Code 693
[EMAIL PROTECTED]

Re: qmail relay opened

2000-04-05 Thread Paul Schinder 

At 9:53 AM -0300 4/5/00, Luis Bezerra wrote:
>Peter Pan, I not want your opinion. I want one solution

He told you the truth.  It should not be delivering these mails,
unless you've misconfigured qmail.  Therefore, it's not a relay.
Therefore, there is no "qmail relay opened".   A relay is a machine
that accepts mail from off site third parties and *delivers it* to
off site third parties.

You want a solution?  Block all connections from the IP of the
machine that tries the relay.  (This is one of those brain damaged
"spam tests", right?).  This has showed up in this list many times,
and you should go through the list archives.

>
>
>
>Peter van Dijk wrote:
>
>>  On Mon, Apr 03, 2000 at 04:10:40PM -0300, Luis Bezerra wrote:
>>  > Hello everyone,
>>  >
>>  >
>>  > my qmail MTA is accepting mails like
>>  >
>>  >
>>  > test%test.com.br
>>  >
>>  > anyone has one patch for resolve this problem?
>>
>>  Unless you did something wrong, it is not delivering these mails.
>>
>>  It is therefore not a problem.
>>
>>  Greetz, Peter.
>>  --
>>  Peter van Dijk - student/sysadmin/ircoper/madly in love/pretending coder
>>  |
>>  | 'C makes it easy to shoot yourself in the foot;
>>  |  C++ makes it harder, but when you do it blows your whole leg off.'
>>  | Bjarne Stroustrup, Inventor of C++
>
>--
>-
>Luís Bezerra de A. Junior
>[EMAIL PROTECTED]
>SecrelNet Informática LTDA
>Fortaleza - Ceará - Brasil
>Fone: 021852882090
>-

--
--
Paul J. Schinder
NASA Goddard Space Flight Center
Code 693
[EMAIL PROTECTED]

Re: blocking with rbl.maps.vix.com doesn't work ?

2000-04-02 Thread Paul Schinder 

At 6:36 AM -0700 4/2/00, Irwan Hadi wrote:
>I use this syntax at
>/var/qmail/supervise/qmail-smtpd/run file
>
>[irwan@server qmail-smtpd]$ cat run
>#!/bin/sh
>QMAILDUID=`id -u qmaild`
>NOFILESGID=`id -g qmaild`
>exec /usr/local/bin/softlimit -m 300 \
> /usr/local/bin/tcpserver -v -p -c 100 -x /etc/tcp.smtp.cdb \
> -u $QMAILDUID -g $NOFILESGID 0 smtp \
>/usr/local/bin/rblsmtpd -t 60 -b -r rbl.maps.vix.com -r 
>relays.mail-abuse.org \
>/var/qmail/bin/qmail-smtpd 2>&1
> 
>
>Why the test is fail ?
>Delivered-To: [EMAIL PROTECTED]
>Received: (qmail 19769 invoked from network); 2 Apr 2000 21:50:55 +0700
>Received: from linux.crynwr.com (192.203.78.39)
>   by 202.147.253.25 with SMTP; 2 Apr 2000 21:50:55 +0700
>From: [EMAIL PROTECTED]
>To: [EMAIL PROTECTED]
>Date: Sun, 2 Apr 2000 14:51:9 -
>Message-Id: <[EMAIL PROTECTED]>
>Status:  U
>X-UIDL: 954687056.19771.server.bpkpenabur.or.id
>
>Uh-oh, your RBL block is not working!

Where did you get the rblsmtpd that you're using?  Older versions did 
not allow more than one -r.  I'm not sure what happened when you had 
more than one with the old version.  The current version, which comes 
with the current ucspi-tcp distribution, does allow more than one -r.

Did this only happen one time?  Maybe rbl.maps.vix.com is down or unreachable.


>
>
>But the RSS blocking is work
>Delivered-To: [EMAIL PROTECTED]
>Received: (qmail 19780 invoked from network); 2 Apr 2000 21:51:04 +0700
>Received: from ns1.crynwr.com (HELO ns.crynwr.com) (192.203.178.14)
>   by 202.147.253.25 with SMTP; 2 Apr 2000 21:51:04 +0700
>Received: (qmail 23121 invoked by uid 500); 2 Apr 2000 14:50:58 -
>Date: 2 Apr 2000 14:50:58 -
>Message-ID: <[EMAIL PROTECTED]>
>From: [EMAIL PROTECTED]
>Subject: Your RSS test report
>To: [EMAIL PROTECTED]
>Status:  U
>X-UIDL: 954687065.19782.server.bpkpenabur.or.id
>
>Testing your RSS block.  See http://www.crynwr.com/spam/ for more info
>
>Here's how the conversation looked from rrss.crynwr.com.
>Note that some sites don't apply the RSS block to postmaster, so
>I use your envelope sender as the To: address.
>
>I connected to 202.147.253.25 and here's the conversation I had:
>
>220 rblsmtpd.local
>helo rrss.crynwr.com
>250 rblsmtpd.local
>mail from:<>
>250 rblsmtpd.local
>rcpt to:<[EMAIL PROTECTED]>
>553 Open relay problem - see
>http://www.mail-abuse.org/cgi-bin/nph-rss?192.203.178.70>
>Terminating conversation
>
>
>---
>AFLHI 058009990407128029/089802---(102598//991024)

-- 
--
Paul J. Schinder
NASA Goddard Space Flight Center
Code 693
[EMAIL PROTECTED]

Re: Poor documentation of anti-spam options?

2000-04-01 Thread Paul Schinder 

At 11:53 PM -0500 3/31/00, Patrick Bihan-Faou wrote:
>Hi,
>
>From: "Paul Schinder" <[EMAIL PROTECTED]>
>>  At 3:06 PM -0500 3/31/00, Dave Sill wrote:
>>  >Do the spammers:
>>  >
>>  >   1) throw up their hands and admit defeat, or
>>  >   2) start using valid (but wrong) domains in their envelope return
>>  >  paths, thereby defeating your rejection and escalating the arms
>>  >  race?
>>  >
>>  >Note that many are already doing (2), of course.
>>
>>  I've had several emails using my @pobox.com address as the MAIL FROM
>>  bounced because spammers use phony @pobox.com addresses.  I've never
>>  seen a single spam that originated on pobox's servers.  Most of the
>>  spam I see comes from China or relay raped machines outside the US.
>>  And, of course, I've seen numerous pieces of spam with phony
>>  @yahoo.com, @hotmail.com, @aol.com, etc.
>>
>
>
>Maybe one way to deal with this is:
>1. verify that the domain of MAIL FROM is correct
>2. verify that the address of the server sending the mail
>resolves to that domain...

That's not a good idea at all.  It defeats the entire purpose of a 
mail redirection service like pobox.  I use my @pobox.com address on 
all sorts of mail, but I've *never* used pobox's servers to send out. 
The mail goes out through a variety of routes.  All of the machines I 
send out from have resolvable IP's, but none of them are in pobox's 
domain.

>
>This is probably not the best answer, but if you apply that to some key
>domains, then you should be able to cut down on a fairly good volume of spam
>with fake addresses. Also it should be fairly easy to implement a scheme
>like this in qmail (although it also means more DNS lookups for a good
>number of incoming mail messages).
>
>
>Patrick.

-- 
--
Paul J. Schinder
NASA Goddard Space Flight Center
Code 693
[EMAIL PROTECTED]

Re: Poor documentation of anti-spam options?

2000-03-31 Thread Paul Schinder 

At 3:06 PM -0500 3/31/00, Dave Sill wrote:
>Do the spammers:
>
>   1) throw up their hands and admit defeat, or
>   2) start using valid (but wrong) domains in their envelope return
>  paths, thereby defeating your rejection and escalating the arms
>  race?
>
>Note that many are already doing (2), of course.

I've had several emails using my @pobox.com address as the MAIL FROM 
bounced because spammers use phony @pobox.com addresses.  I've never 
seen a single spam that originated on pobox's servers.  Most of the 
spam I see comes from China or relay raped machines outside the US. 
And, of course, I've seen numerous pieces of spam with phony 
@yahoo.com, @hotmail.com, @aol.com, etc.

>
>-Dave

-- 
--
Paul J. Schinder
NASA Goddard Space Flight Center
Code 693
[EMAIL PROTECTED]

Re^3: Running qmail on a 4x Xeon 550MHz system

2000-03-25 Thread Paul Schinder 

At 4:51 PM + 3/25/00, Andreas Aardal Hanssen wrote:
>  >>> Does anyone have any idea what could be the problem? The
  disk IO is very low and my computer is *really* sleeping,
  with a load average (uptime etc) of approx. 1.4..
>>>  A loadaverage of 1.4 means you have on average 1.4 task waiting to run. Or,
>>>  to put it in percentages: your machine has 140% of it's time filled with
>>>  tasks that want to run.
>>>  Even for an idle quad Xeon, that is way to high.
>>  I agree. I manage a similar system (quad Xeon, 1GB memory) with a
>>  loadaverage of 0.3 or thereabouts.
>>  Although I'm not familiar with the intricacies of how load is
>>  distributed across multiple CPUs among different OS's, I would suspect
>>  something is wrong with your system.
>
>Ok, the average of 1.4 was taken at the start of this discussion,
>with great activity. The load average is now down to 0.7 and
>dropping.
>
>My point was: qmail should interpret 25% of this load as the
>capability of these computers are 4x what a normal computer
>can handle with the same configuration in 1x.
>
>I want mail delivery to go much faster, the computer can do
>much better than this!!! I want the qmail-send program to deliver
>4x as many mails.

But qmail doesn't "know" what the load on your machine is, or how 
many processors are available.  Scheduling of processes is controlled 
by the operating system, not the processes themselves.  There might 
be something wrong with the way your OS is set up.

There are things that you can do to "tune" a qmail installation, like 
setting concurrency remote.  IIRC they're covered by "Life with 
qmail".  Start at www.qmail.org.

>
>Andreas
>
>--
>Andreas Aardal Hanssen
>Software Developer
>mailto:[EMAIL PROTECTED]

-- 
--
Paul J. Schinder
NASA Goddard Space Flight Center
Code 693
[EMAIL PROTECTED]

Re: A very simple question

2000-03-18 Thread Paul Schinder 

At 11:24 AM -0800 3/18/00, David E. Weekly wrote:
>Uwe,
>
>Okay. Fair enough. So I have a very, very trivial question for the list.
>(BTW, ext2fs gave me a kernel Oops this morning: something I haven't seen
>for 4.5 years!) I think that it is an appropriate one.
>
>I have a Linux server with a good amount of storage, a decent amount of
>RAM, a fast processor, and a blazing fast network connection.
>
>I want to use it as my mail server (for JUST ME!) and be able to check my
>email efficiently from multiple locations. I happen to have a lot of mail
>(>5000 messages, ~200/day), so I'd also like to be able to filter my
>messages.
>
>The answer so far has been to use qmail w/IMAP patched for Maildir. But now
>that it seems that my underlying filesystem is unhappy enough about this
>idea to crash my kernel, it's not seeming like such a hot notion.
>Previously, I had used qmail with an mbox file. This worked until my mbox
>grew to about 50Mb, at which point my system choked, since every five
>minutes when my client would duck in to see if it had any mail, the entire
>mbox file would be loaded in from disk, parsed, and stored in memory,
>causing my disk to thrash not only due to constantly reading in such big
>files, but also from the paging generated from having a 50Mb process in
>memory.
>
>I have not found a trivial way to use filtering with the two above
>scenarios. (A pointer to a FAQ and/or an answer would be great: I'm more
>than happy to RTFM when I know where the FM is.)
>
>So right now, as a single user on a powerful system, I have no good way to
>handle email. This seems pretty pathetic. Anyone care to lend (well, okay,
>give) a few words of advice?

Sounds to me like you need two things, a better IMAP server and a 
better mail client.  You don't say which client you're using, but I'd 
suggest giving mutt a try. mutt can handle both maildirs and 
mailboxes natively, and also do IMAP.  You should also give Sam's 
courier-imap a try, which is written for Maildirs and is also likely 
to be far more efficient than imapd.  (I go only by the reputation of 
imapd, since I've never used it (and, with its CERT record, never 
would).  courier-imap I do use, and it works well.)  Sam's maildrop 
does filtering, and also understands Maildir, and there are procmail 
patches for Maildir if you want to use procmail for filtering.

I get around 200 messages a day myself, but very little of that gets 
saved.  I find filtering with maildrop, using courier-imap and Eudora 
or mutt as clients to be a good solution for that kind of volume. 
Sounds to me like you're saving a lot, and you might want to look 
into saving into a database for long term storage.

>
> -david
>
-- 
--
Paul J. Schinder
NASA Goddard Space Flight Center
Code 693
[EMAIL PROTECTED]

Re: Mac client

2000-03-12 Thread Paul Schinder 

At 8:03 PM + 3/12/00, David Pratt wrote:
>Can anyone recommend an email client for Macs that it is qmail compatible?
>I don't appear to be having any success trying to get my mail with Eudora.

Eudora on a Mac works fine with qmail-pop3d.  (I'm using Eurora on a 
Mac right now, but I've long since switched to courier-imap to 
retrieve mail.)  You're going to have to tell us what's exactly is 
going wrong.  Eudora has a mode to log every byte sent in and out 
during a connection. (In Special->Settings->Logging.)  Turn it on and 
see what's happening.

>Best regards,
>David

-- 
--
Paul J. Schinder
NASA Goddard Space Flight Center
Code 693
[EMAIL PROTECTED]

Re: Maildir imap and vpopmail

2000-03-03 Thread Paul Schinder 

At 2:57 PM + 3/3/00, Derek Smith wrote:
>Hi,
>
>I want to have imapd use Maildir format maildrops and use vchpw also.
>
>Does anyone do this, are there patches available for imap-maildir (or
>another imap server) or is there another method of implementing this?

Sounds like you should check out: 

>
>Thanks in advance,
>
>Cheers,
>
>Del.

-- 
--
Paul J. Schinder
NASA Goddard Space Flight Center
Code 693
[EMAIL PROTECTED]

Re: qmail-pop3d slowness

2000-02-24 Thread Paul Schinder 

At 10:40 PM -0500 2/24/00, Juan E Suris wrote:
>Hello All,
>
>Like a good qmail user, I changed qmail-pop3d from inetd to 
>tcpserver, but now it's really slow. It takes about 10 secs to 
>respond. Is this usual.
>Following are my start scripts.
>
>Thanks,
>JES
>
>here's what my run script look like:
>/var/qmail/supervise/qmail-pop3d/run
>#!/bin/sh
>VUID=`id -u vpopmail`
>VGID=`id -g vpopmail`
>exec /usr/local/bin/softlimit -m 200 \
>  /usr/local/bin/tcpserver -v -R -u $VUID -g $VGID 0 pop-3 \


Turn off reverse lookups.  Add a -H.

>  /var/qmail/bin/qmail-popup \
>  www.ypay4it.com /mail/bin/vchkpw 
>/var/qmail/bin/qmail-pop3d \
>  Maildir 2>&1
>
>/var/qmail/supervise/qmail-pop3d/log/run
>#!/bin/sh
>exec /usr/local/bin/setuidgid qmaill /usr/local/bin/multilog t \
>  /var/log/qmail/pop3d
>
>
>___
>Get your free, private email, mailing lists and web site at 
>http://www.Ypay4it.com

--
Paul J. Schinder
NASA Goddard Space Flight Center
Code 693
[EMAIL PROTECTED]

Re: imap, CRAM-MD5

2000-02-11 Thread Paul Schinder 

At 11:55 AM -0500 2/11/00, Dave Sill wrote:
>I'm having the same trouble with imap-4.5 (with David Harris' maildir
>patches) that I had with APOP: plaintext login authentication works
>fine, but CRAM-MD5 authentication fails every time.
>
>With APOP, the challenge/response are easy to calculate, e.g.:
>
>   echo -n "<[EMAIL PROTECTED]>apoptest"|md5
>
>where the message-ID-looking thing is the challenge, and "apoptest" is
>the password. But CRAM-MD5 does something different...some sort of
>"keyed md5".
>
>Anyone know how to manually generate the proper response?
>
>Anyone know if fetchmail does it right?

Yes, it does.  I can log into courier-imap with it:

leprss% fetchmail -vv -c --protocol IMAP-CRAMMD5 mors.gsfc.nasa.gov
Enter password for [EMAIL PROTECTED]:
fetchmail: 5.2.0 querying mors.gsfc.nasa.gov (protocol IMAP-LOGIN) at 
Fri, 11 Fe
b 2000 12:01:18 -0500 (EST)
fetchmail: IMAP< * OK Courier-IMAP ready. Copyright 1998-1999 Double Precision,
Inc.  See COPYING for distribution information.
fetchmail: IMAP> A0001 CAPABILITY
fetchmail: IMAP< * CAPABILITY IMAP4rev1 NAMESPACE AUTH=CRAM-MD5
fetchmail: IMAP< A0001 OK CAPABILITY completed
fetchmail: Protocol identified as IMAP4 rev 1
fetchmail: CRAM-MD5 authentication is supported
fetchmail: IMAP> A0002 AUTHENTICATE CRAM-MD5
fetchmail: IMAP< + 
PDMwMjkxM0I4QjlDNEMyRDc3ODVDNjJBOTg2RjRFMjJBQG1vcnMuZ3NmYy5uY
XNhLmdvdj4=
fetchmail: decoded as <[EMAIL PROTECTED]>
fetchmail: replying with schinder 4513b42652255597820d812cdfe3e0a5
fetchmail: IMAP> c2NoaW5kZXIgNDUxM2I0MjY1MjI1NTU5NzgyMGQ4MTJjZGZlM2UwYTU=
fetchmail: IMAP< A0002 OK LOGIN Ok.
fetchmail: selecting or re-polling default folder
fetchmail: IMAP> A0003 EXAMINE INBOX
fetchmail: IMAP< * FLAGS (\Answered \Flagged \Deleted \Seen \Recent)
fetchmail: IMAP< * OK [PERMANENTFLAGS ()] No permanent flags permitted
fetchmail: IMAP< * 10 EXISTS
fetchmail: IMAP< * 1 RECENT
fetchmail: IMAP< * OK [UIDVALIDITY 947781516]
fetchmail: IMAP< A0003 OK [READ-ONLY] Ok
10 messages (9 seen) for schinder at mors.gsfc.nasa.gov.
fetchmail: IMAP> A0004 LOGOUT
fetchmail: IMAP< * BYE Courier-IMAP server shutting down
fetchmail: IMAP< A0004 OK LOGOUT completed
fetchmail: normal termination, status 0


>
>Anyone using imap-4.5 with CRAM-MD5 successfully?

I'm using courier-imap with CRAM-MD5.  Both fetchmail and MacOS 
Eudora can log in.

>
>-Dave

--
Paul J. Schinder
NASA Goddard Space Flight Center
Code 693
[EMAIL PROTECTED]

Re: checkpw, APOP

2000-02-10 Thread Paul Schinder 

At 3:21 PM -0500 2/10/00, Dave Sill wrote:
>
>Solaris 7 SPARC, gcc 2.8.1.

Compiler bug, maybe?  I'm using 2.95.2 now, and it was 2.95.1 that 
compiled the checkpw that does this:

leprss% fetchmail -vv -c --protocol APOP mors.gsfc.nasa.gov
Enter password for [EMAIL PROTECTED]:
fetchmail: 5.2.0 querying mors.gsfc.nasa.gov (protocol APOP) at Thu, 
10 Feb 2000
  15:25:58 -0500 (EST)
fetchmail: POP3< +OK <[EMAIL PROTECTED]>
fetchmail: POP3> APOP schinder b765dc6f5216e38f4d349c3ecc057541
fetchmail: POP3< +OK
fetchmail: selecting or re-polling default folder
fetchmail: POP3> STAT
fetchmail: POP3< +OK 5 19217
fetchmail: POP3> LAST
fetchmail: POP3< +OK 0
5 messages for schinder at mors.gsfc.nasa.gov (19217 octets).
fetchmail: POP3> QUIT
fetchmail: POP3< +OK
fetchmail: normal termination, status 0

Of course, checkpw was compiled on a 32 bit SparcIPX, and is now 
running on a 64 bit Ultra 5.  I could send the binary to you if you 
want (12k), since you're running on a SPARC.

>
>-Dave

--
Paul J. Schinder
NASA Goddard Space Flight Center
Code 693
[EMAIL PROTECTED]

Re: checkpw, APOP

2000-02-10 Thread Paul Schinder 

At 2:39 PM -0500 2/10/00, Dave Sill wrote:
>I installed Shinya Ohira's checkpw checkpassword replacement, and it
>works fine with "checkpw" (standard USER + PASS authentication), but
>with "checkapoppw" I get "authorization failed". I'm using fetchmail,
>but I have the same problem when I "manually" generate the APOP hash.

Really?  It works for me.  Do you have a ~/Maildir/.password with the 
right permissions?

>
>How can I debug this?

Put recordio in the chain, or fetchmail -vv.

>
>-Dave

--
Paul J. Schinder
NASA Goddard Space Flight Center
Code 693
[EMAIL PROTECTED]

Re: checkpw, APOP

2000-02-10 Thread Paul Schinder 

At 2:58 PM -0500 2/10/00, Dave Sill wrote:
>Paul Schinder <[EMAIL PROTECTED]> wrote:
>
>  >At 2:39 PM -0500 2/10/00, Dave Sill wrote:
>  >>I installed Shinya Ohira's checkpw checkpassword replacement, and it
>  >>works fine with "checkpw" (standard USER + PASS authentication), but
>  >>with "checkapoppw" I get "authorization failed". I'm using fetchmail,
>  >>but I have the same problem when I "manually" generate the APOP hash.
>  >
>  >Really?  It works for me.  Do you have a ~/Maildir/.password with the
>  >right permissions?
>
>Yeah, really. I put the .password in place, verified it using checkpw,
>switched to checkapoppw without touching .password, and it fails.
>
>  >>How can I debug this?
>  >
>  >Put recordio in the chain, or fetchmail -vv.
>
>I'll try recordio, but here's what fetchmail -vv said:
>
>$ fetchmail -vv
>fetchmail: 5.1.0 querying emaildev (protocol APOP) at Thu, 10 Feb 
>2000 14:49:04 -0500 (EST)
>fetchmail: POP3< +OK <[EMAIL PROTECTED]>
>fetchmail: POP3> APOP de5 377129bbb5e2a8e84b0576cddaf384c9
>fetchmail: POP3< -ERR authorization failed
>fetchmail: authorization failed
>fetchmail: Authorization failure on de5@emaildev
>fetchmail: POP3> QUIT
>fetchmail: authorization error while fetching from emaildev
>fetchmail: Query status=3
>fetchmail: normal termination, status 3
>fetchmail: Deleting fetchids file.
>
>(.password contained "apoptest" at the time)

I doubt that recordio will help you any more than this.

>
>And:
>
>$ echo -n "<[EMAIL PROTECTED]>apoptest"|md5
>377129bbb5e2a8e84b0576cddaf384c9

I get the same checksum on both Mac and Sun.

Is it an Inhell chip?  (It'd give me a perverse pleasure to see 
something fail on an Intel chip for a change because of endian 
problems.)  Maybe checkpw's md5 calculation assumes big endian?  I 
use it on both PPC (Linux) and Sparc (Solaris 7) with no problems.

>
>-Dave

--
Paul J. Schinder
NASA Goddard Space Flight Center
Code 693
[EMAIL PROTECTED]

Re: workaround for port 25 block? (fwd)

2000-02-07 Thread Paul Schinder 

At 10:12 AM -0800 2/7/00, Brandon Dudley wrote:
>
>BTW: I work for excite@Home, and just wanted to let you know that the pricing
>and service levels and such are set by the cable partners, not by us.
>
>B

Who sets the policies, like "no servers" (whatever that means)?  In 
this day of HTML only documentation, it's difficult to get by without 
running an HTTP server on one's house network.  And I'm not allowed 
to run X clients on remote machines, because I need an X "server" 
running on my local machine?  Personally I think that policy needs a 
great deal of clarification.

I have an ATT@Home account, and I interpret that "no servers" to mean 
that I shouldn't let others use my machines or bandwidth.  I run 
"servers" on my machines (qmail, for example), that are strictly 
controlled either by passwords or by the remote IP addresses allowed 
to access them or both.  I run portsentry on my machine, which 
listens on lots of ports (so I suppose could be considered a 
"server"), so I can detect the script kiddies that hunt on @Home (and 
recently, the scans for NNTP proxies from @Home itself) and take 
appropriate action.  That *I* should be able to use my own machines 
from wherever I am on the Internet I take as a given. That's what 
Internet connectivity is all about. I did it with dialups (machines 
dialed in using cron so I could get to them while I was at work), so 
I'll do it with cable.

--
Paul J. Schinder
NASA Goddard Space Flight Center
Code 693
[EMAIL PROTECTED]

Re: Routin only some virtual-adresses

2000-02-04 Thread Paul Schinder 

At 12:43 PM +0100 2/4/00, Puck wrote:
>
>Yes, that's what i thought of ... if i would be able to code this :-<
>I don't know (anymore) how to c-code and in perl i'm not familar 
>with sockets and so on :-((

Install libnet, available from CPAN (if you don't know what CPAN is, 
you should:   http://cpan.perl.org), and you won't have to deal with 
sockets and so on.  You simply "use Net::SMTP;" and proceed from 
there, following the documentation.


>Anyone there who could do this? :-)
>
>Thomas

--
Paul J. Schinder
NASA Goddard Space Flight Center
Code 693
[EMAIL PROTECTED]

Re: qmail and rblsmtpd

2000-02-04 Thread Paul Schinder 

At 10:44 AM + 2/4/00, kevin wrote:
>Hi All,
>
>Is there anyone who knows about how to setup rblsmtpd ?
>
>I've tried loads of different sources and I can't seem to find a way to
>set-up qmail to bloke relay spam to my server.
>
>This my current start-up for qmail in /etc/init.d :
>  /usr/local/bin/tcpserver -v -u 101 -g 100 0 smtp
>/var/qmail/bin/qmail-smtpd &
>
>I have tried the following combinations :
>
>Here is the rblsmtpd help prompt :
>  rblsmtpd [ -b ] [ -R ] [ -r domain ] [ -t timeout ] smtpd [ arg ...
>]
>
>And in theory this should work :
>  /usr/local/bin/tcpserver -v -u 101 -g 100 0 smtp
>/opt/software/bin/rblmstpd /var/qmail/bin/qmail-smtpd &
>
>But, ir doesn't bloke reply spam from the test from RSS list?

Because you didn't tell it to.  rblsmtpd by default only checks the 
RBL.  You can chain them:

rblsmtpd rbmsmtpd -rrelays.mail-abuse.org ...

or there's a patch available at www.qmail.org to allow rblsmtpd to 
take more than one -r.

But you say you're trying to block "relay spam".  Do you mean that a 
spammer is relaying spam through your server?  If so, rblsmtpd isn't 
going to fix that.  You've botched the installation of qmail if 
spammers can relay, since by default qmail won't relay.


>
>Any ideas?
>
>
>Regards,
>
>Kevin Smith
>Lemon Lainey Design UK
>http://www.lemonlaineydesign.com

--
Paul J. Schinder
NASA Goddard Space Flight Center
Code 693
[EMAIL PROTECTED]

Re: where is the mistake

2000-02-01 Thread Paul Schinder 

At 11:54 AM +0100 2/1/00, Vincent Schonau wrote:
>From your emails to the list it seems that you're attempting to use 
>qmail using serveral different approaches. You should probably start 
>over, and follow the instructions at
>http://web.infoave.net/~dsill/lwq.html#installation> *exactly*.

Actually, I was helping a guy get qmail running on Yellow Dog Linux 
(runs on PPC's, i.e. Macs), and it was failing precisely *because* he 
was following the instructions exactly.   The problem turned out to 
be this

>exec /usr/local/bin/softlimit -m 200 \
>  /usr/local/bin/tcpserver -v -p -x /etc/tcp.smtp.cdb \
>  -u $QMAILDUID -g $NOFILESGID 0 smtp /var/qmail/bin/qmail-smtpd
>2>&1

The memory limit was too small for tcpserver (takes about 1.5 M) to 
load a copy of glibc (about 1M), so getservbyname was failing, so no 
smtp service could be found.

Dave, you should make clear that 200 may need adjusting.  This 
would likely have failed on my new Sun Ultra 5's as well, although I 
use my own scripts there, so I've never actually tried it.

--
Paul J. Schinder
NASA Goddard Space Flight Center
Code 693
[EMAIL PROTECTED]

Re: using fetchmail on qmail

2000-02-01 Thread Paul Schinder 

At 11:11 AM +0600 2/1/00, Md. Sifat Ullah Patwary wrote:
>Thanks Okky,
>But I need fetchmail not to use pop account rather Queued mail from an SMTP
>(qmail smtp) server. (Off line basis)

But, as you showed us, the remote server does not support ETRN, so 
you can't do what you're trying to do.  And it's not qmail, so no 
AUTOTURN.


>
>Any solution please.

Find another way to get your mail.  Does the remote server support 
POP or IMAP or UUCP?  At this point you should be asking your ISP, 
not us.  qmail really has nothing to do with your problem.

>
>
>
>At 12:09 PM 2/1/00 +0700, you wrote:
>  >I use qmail on my server, and run fetchmail as daemon to
>  >check my external POP account.
>  >
>  >Here's my command line:
>  >fetchmail -u  --monitor -v my.external.pop.server
>  >
>  >Without -p, fetchmail will try every available protocol to
>  >use and if there's none, it exits with an error.
>  >
>  >-Okky
>  >
>  >On Tue, 1 Feb 2000, Md. Sifat Ullah Patwary wrote:
>  >
>  >> Hi all,
>  >>
>  >> I issued the command 'fetchmail -p ETRN mail.xxx.com' and fetchmail gave
>  >> the result as below: (The mail.xxx.com is a qmail server)
>  >>
>  >> fetchmail: mail.spnetctg.com's SMTP listener does not support ETRN
>  >> fetchmail: client/server protocol error while fetching from
>mail.spnetctg.com
>  >> fetchmail: Query Status=4
>  >>
>  >>
>  >>
>  >> Any help?
>  >>
>  >> Sifat.
>  >>
>  >>
>  >
>  >
>  >
>  >
>  >

--
Paul J. Schinder
NASA Goddard Space Flight Center
Code 693
[EMAIL PROTECTED]

Re: Funny but sad...

2000-01-26 Thread Paul Schinder 

At 6:47 AM +1100 1/27/00, Giles Lean wrote:
>On Wed, 26 Jan 2000 20:24:27 -  "Petr Novotny" wrote:
>
>  > I have recently spoken to a guy who said me something along
>  > these lines:
>  >
>  > "I have considered qmail once. I found it easy to install and
>  > configure. But I had to write all the top-level domains to some file,
>  > can't remember which one, to be able to deliver mail to them. It
>  > was too difficult for me to manage that file, and I ditched qmail
>  > therefore. Has the situation changed recently?"
>
>This hasn't been true ever in my experience of qmail.  Of course, I
>only started with it about 0.9 or so.
>
>It sounds like the person you were talking to had some sort of DNS
>problem he or she failed to solve.

No, no, he was talking about rcpthosts.  The usual "My users are 
having trouble sending mail out through my server.  Do I really have 
to put *all* the domains that my users send to in rcpthosts?".

>
>Regards,
>
>Giles

--
Paul J. Schinder
NASA Goddard Space Flight Center
Code 693
[EMAIL PROTECTED]

Re: 3 quickies!

1999-12-23 Thread Paul Schinder 

At 10:24 AM -0500 12/23/99, [EMAIL PROTECTED] wrote:
>"Marc-Adrian Napoli" spake unto me and said:
>  >
>  > What i'm after is a solution that falls into place at the
>  > qmail-send/qmail-local stage that will quickly check the
>  > headers of the message to be delivered locally first for
>  > any particular strings. (Silly email addresses or anything
>  > with the word "buy now" or "sell now" etc)
>
>I recommend that you be _VERY_ careful with this idea,
>especially if you are an ISP. In particular, bouncing
>emails may anger your customers, and destroying emails
>can get your butt sued off.
>
>Suppose one of your customers is sent an email from his stock
>broker, saying "Sell Now" Your customer never gets the
>email, and loses his shirt, because of your spam "protection".
>You will deserve whatever happens to you.
>
>Other than RBL-blocking, and making sure _your_ relay is closed,
>I recommend that you only use filters which are _explicitly_
>approved by _each_ affected customer. Deciding for your
>_customer_ which emails look "bad" to _you_ is very foolish.
>
>Check out  for a good example of spam
>filtering which is _customer_ approved.

I agree with your sentiment completely.  I don't want *my* ISP making 
*any* of these decisions without my knowing, and I'd certainly want a 
way of creating my own "tunnels" through any of their blocks.

But the example is poor, IMHO.  I have a pobox account for non-work 
related mail, and I had their spam filtering on for a while before 
finally turning it off.  It tagged things as spam that weren't. It 
missed tagging most real spam.  In short, it wasn't any help at all. 
What I want them to offer, what I'd pay extra for, and what they 
don't offer (at least the last time I checked), is RBL+DUL+RSS on my 
incoming mail stream with the ability to tunnel selected IP's 
through, and the ability to find out what was blocked.  (Which is 
exactly what I do use on my work machines with rblsmtpd.)  DUL by 
itself would catch most of the spam I get through my pobox account.

So since I can't RBL+DUL+RSS the mail passing through pobox in any 
convenient way, I pass it through some maildrop filters on one of my 
home machines and access it from there.  In the end, only I know what 
is spam and what is not, so I prefer dealing with the problem at the 
end of the chain which I control rather than at the points in between 
over which I have little or no control.  Unfortunately, that means I 
have to accept the spam in the before programmatically discarding it.

>
>Len.

--
Paul J. Schinder
NASA Goddard Space Flight Center
Code 693
[EMAIL PROTECTED]

Re: RRSS, was LOTS of Orbs hits

1999-06-06 Thread Paul Schinder 

On 6 Jun 1999 13:23:01 -0400, John R. Levine wrote:
>
>>>I've heard good things about RRSS (http://relays.radparker.com/>)
and
>>>the person running it certainly seems to be much calmer and more
>>>professional about it.
>>
>>I saw this site mentioned on the Tidbits Talk list about a week ago. I
>>took a look, and I didn't see anything very useful. It looked to me like
a
>>Vixie RBL clone, only listing sites that had already spammed. I rarely
get
>>RBL hits, and would guess that RRSS hits would be equally as rare.
>
>On the contrary, I get scads of delivery attempts from hosts in RRSS.
>
>RRSS is like ORBS in that when an IP is nominated, it sends a relay
>test and adds the host immediately if the relay test succeeds.  This
>can take as little as a minute or two.  Many sites, including mine,
>have spam trap addresses set up to automatically send nominations to
>RRSS whenever spam arrives from an unknown address, meaning that a new
>relay is typically listed within a few minutes of starting a spam run.

But how is this different from Vixie RBL, except for the openness check?
Or are you saying that if a site does spam but turns out not to be open it
doesn't get listed?

>
>>The usefulness of ORBS to me has always been that they do list sites that
>>have never spammed but are open to abuse.
>
>That's part of the problem -- the vast majority of hosts in ORBS have
>never relayed any spam and never will, and I hope we agree that the
>goal is not to block legitimate non-spam mail.  RRSS lists actual open
>spam relays, and gets them in promptly.

Yes, that is the problem with ORBS. So many of the sites that we get
legitimate mail from, including universities, other NASA sites, and ISP's
both national and regional, are in the ORBS that I have a large list of
sites permitted to tunnel through, and I have to keep a close eye on my
logs. Maybe I will dump ORBS and give RRSS a try.

>
>
>
>
>-- 
>John R. Levine, IECC, POB 727, Trumansburg NY 14886 +1 607 387 6869
>[EMAIL PROTECTED], Village Trustee and Sewer Commissioner,
http://iecc.com/johnl,
>Member, Provisional board, Coalition Against Unsolicited Commercial E-mail
>


Paul J. Schinder
NASA Goddard Space Flight Center
Code 693
Greenbelt, MD 20770
[EMAIL PROTECTED]

Re: LOTS of Orbs hits

1999-06-06 Thread Paul Schinder 

On 05 Jun 1999 21:49:04 -0700, Russ Allbery wrote:
>
>As a side note, I'd strongly recommend dumping ORBS in favor of a more
>ethical blackhole list.  The maintainer of ORBS has gone on public record
>as blocking hosts because he "doesn't like their attitude," even if spam
>has never gone anywhere near them.
>
>I've heard good things about RRSS (http://relays.radparker.com/>) and
>the person running it certainly seems to be much calmer and more
>professional about it.

I saw this site mentioned on the Tidbits Talk list about a week ago. I
took a look, and I didn't see anything very useful. It looked to me like a
Vixie RBL clone, only listing sites that had already spammed. I rarely get
RBL hits, and would guess that RRSS hits would be equally as rare.

The usefulness of ORBS to me has always been that they do list sites that
have never spammed but are open to abuse. From what you say above, it
looks like its finally time to dump ORBS. It's always been an
administrative headache, since so many sites that send us legitimate mail,
including Goddard's own main mail servers, are in ORBS. But I will miss
the before-the-fact prevention.

>
>-- 
>Russ Allbery ([EMAIL PROTECTED]) http://www.eyrie.org/~eagle/>
>


Paul J. Schinder
NASA Goddard Space Flight Center
Code 693
Greenbelt, MD 20770
[EMAIL PROTECTED]

Re: Three solutions for spam

1999-02-01 Thread Paul Schinder 

On Mon, Feb 01, 1999 at 12:11:28PM -0800, Mike Holling wrote:
} >  > Are you going to consider ADSL/cablemodem IP pools "dialups" as
} >  > well?
} > 
} > No.  Unlike dialup spammers, they don't have the option of calling a
} > different ISP.
} 
} But how long will this be true?  In a few years, xDSL services will be
} more standardized, and folks will own their own DSL modems and switch
} providers at will - just like they do now with analog modems.  I already
} have the choice of 5 or 6 different ISPs to use for ADSL, retaining the
} same DSL "dialtone" from the telco in each case.  I've already seen spam
} coming from cablemodems and DSL links as well.  I doubt the distinction
} between "analog dialup" and "cablemodem/DSL" will stick around for very
} long, and it's a short step from "I'm going to ban dialups" to "I'm going
} to ban any IP assigned to ISP end-users".

It may come to that.  If DSL IP banks become a significant, easily
blockable source of mostly spam, then of course they will be blocked.
So?  Why is this supposed to be a problem for me if I block them?
Personally, I think it will be more of a problem for me if I don't.


} 
} - Mike
} 
} 

-- 

Paul J. Schinder
NASA Goddard Space Flight Center
[EMAIL PROTECTED]

Re: Multiple outgoing messages

1999-01-28 Thread Paul Schinder 

On Thu, Jan 28, 1999 at 05:04:06PM -0500, Joe Garcia wrote:
} Hey some of us youngins weren't around for the low bandwidth (modem) email
} days, which is what UUCP was created for.  I couldn't even begin to tell you
} how to set up UUCP it my life depended on it.  >:)  The funny part about
} this is that I am old enough to remeber a pre-web Internet.
} 
}   Anyway he is correct that is the best way to do it.  Unfortunately qmail
} won't do that, only one I know of is the beast, Sendmail.

qmail won't do what?  qmail is perfectly capable of working with uucp.
I have it set up to do that myyself.  See the FAQ.

-- 

Paul J. Schinder
NASA Goddard Space Flight Center
[EMAIL PROTECTED]

Re: Does one change qmail, or fetchmail?

1998-12-23 Thread Paul Schinder 

On Wed, 23 Dec 1998 15:37:28 -0500 (EST), Alan McConnell wrote:
>
>When fetchmail attempts to deliver mail to my home box, from 
>my ISP mail-box, qmail won't let it.  qmail says:
>SMTP listener doesn't like recipient address 'alan@localhost'
>(actually that is what fetchmail is telling me that qmail tells it)
>This is of course perfectly proper behavior of qmail.
>
>So I want to put something in my .fetchmailrc that tells fetchmail
>to deliver to "@alan17.his.com".  I thought that
>'localdomains alan17.his.com' in my .fetchmailrc would do it, but
>it doesn't show up when I run fetchmail -V.
>
>So maybe there is a qmail way of fixing this? something in qmail/alias?
>or qmail/control?
>

There's a simple fetchmail fix. I can't see any of my .fetchmailrc's at
the moment, but there's a fetchmail variable called "smtphost", or
something similar. So you can put smtphost your.host.name in the
.fetchmailrc, and it will use that instead of @localhost, in the RCPT
TO.

This is, of course, for sufficiently new fetchmails. I'm using the latest,
4.7.1.

>All suggestions gratefully accepted, and I apologize that this message
>is, perhaps, more about fetchmail than about qmail.
>
>TIA,
>
>Alan McConnell
>
>-- 
>Alan McConnell  Linux!  The choice of a GNU generation;
>Pixel Analysis  already at a site near you!
>


Paul J. Schinder
NASA Goddard Space Flight Center
Code 693
Greenbelt, MD 20770
[EMAIL PROTECTED]