virtual domains order question
Hi. Sorry or a noise.. I wanna make virtual domains so , that any mail on domain, exept one adress, will have one prepend one exception will have another prepend. Is it rigth to do this in a next manner: ---cut--- [EMAIL PROTECTED]:home alien.digger.org.ru:alien ---cut--- In other words: is it true that qmail reads virtualdomains string per string and applies 1st found rule, no matter what gives next string? Bye.Olli. //System administrator of "Russia Young" internet group. Any info regarding "Russia Young" Boris Nemtsov: http://www.rosmol.ru , http://www.nemtsov.ru , http://www.boris.nemtsov.ru
Giving up on ...
Seem to be a slightly offtopic.. Sorry , mebbe someone could anyway give me some little explanations: I got strange delivery error from exim.. My qmail said: 194.67.23.37 does not like recipient. Remote host said: exim in free(): warning: chunk is already free. Giving up on 194.67.23.37. Mebbe someone already got somth. like this? I misunderstand the following thing - is it really fatal error? I'm pretty shure that address where I'm sending mail is present, at list I got mail from real human about our frand.. well , in short: these messages explaning errors are not somthing static or not what about error code? Well , in log I see: Dec 16 17:27:32 vgsn qmail: 945376052.927936 delivery 1128: failure: 194.67.23.37_does_not_like_recipient./Remote_host_said:_exim_in_free(): _warning:_chunk_is_already_free./Giving_up_on_194.67.23.37./ well.. if address is valid - where is a bug - at my side (mebbe giving up on non-permanent error?) or at remote (anything). Antiofftopic: I have heared that there is NO WAY to say qmail use second MX if primary exist. Is it true? Bye.Olli. //System administrator of "Russia Young" internet group. Any info around "Russia Young" Boris Nemtsov: http://www.rosmol.ru , http://www.nemtsov.ru , http://www.boris.nemtsov.ru
Re: what _should_ I call our internal domain?
On Mon, 1 Nov 1999, Robbie Walker wrote: Here's related question. What should internal domains be called and how are they setup in DNS? I've always used a non-existant domain name that I made up, but I know this is wrong. What's the correct solution? AFAIK there is NO rule forchoosing those domain names. Only one is that this domain shouldn't already resolve. Bye.Olli. //System administrator of "Russia Young" internet group. Any info around "Russia Young" Boris Nemtsov: http://www.rosmol.ru , http://www.nemtsov.ru , http://www.boris.nemtsov.ru
qmail dns related question
On Thu, 30 Sep 1999, Dave Sill wrote: Sorry for a noise.. I read the following in the FAQ: Answer: The SMTP standard does not permit aliased hostnames, so qmail has to do a CNAME lookup in DNS for every recipient host. If the relevant DNS server is down, qmail defers the message. It will try again soon. Does this mean that I can't set up local (my LAN only) domain with MX set to real dns name and I have to add non-real domain to /var/qmail/control/locals ? I.e. I've mynet.org that is for masqueraded mashines only I resolve as vgsn.glasnet.ru. If I then write in named configs "mynet.org CNAME vgsn.glasnet.ru." do I have to add "mynet.org" to /var/qmail/control/locals ? Bye.Olli. //System administrator of "Russia Young" internet group. Any info around "Russia Young" Boris Nemtsov: http://www.rosmol.ru , http://www.nemtsov.ru , http://www.boris.nemtsov.ru
%
On Thu, 30 Sep 1999, Herwin Jan Steehouwer wrote: I got that for my qmail "%" "@" are diffrent % is treated as a part of name , not the user domain delimiter in emails . exim sendmail are treating `%` as a delimiter.. Is it normal that my qmail won't?? I.e.: [EMAIL PROTECTED] is not the same as sysop%domain.com for my qmail. Should I leave all as is or do somthing? what should I read in this case? Bye.Olli. //System administrator of "Russia Young" internet group. Any info around "Russia Young" Boris Nemtsov: http://www.rosmol.ru , http://www.nemtsov.ru , http://www.boris.nemtsov.ru
question around qmail-users
Hi. I got the following question: $ cat locals nemtsov.ru rosmol.ru vgsn.glasnet.ru I've address [EMAIL PROTECTED] that I wanna redirect to another address. Well, if I'll use /var/qmail/users/assign, then the question is "how to specify a string for exactly one domain of 3 in locals.?" I mean that string =info:nemtsov:554:562:/home/nemtsov::: will match all domains in locals, but I need only one domain - nemtsov.ru. As I see in man qmail-send I can't do this w/ virtualdomains , since it applies only if domain is not listed in locals. Also I'll be glad if someone will tell me how to construct .qmail-ext with fully qualified domain name. man dot-qmail doesn't contain too mach details about this.:( Well for example I wanna redefine behevior of qmail-local for address [EMAIL PROTECTED] - how then shoud .qmail-ext look? Bye.Olli. //System administrator of "Russia Young" internet group. Any info around "Russia Young" Boris Nemtsov: http://www.rosmol.ru , http://www.nemtsov.ru , http://www.boris.nemtsov.ru
mail relay for any IP,but only for valid logins - how??
On Sun, 23 May 1999, Per Birkeby wrote: I'm sorry for noise, but I didn't find that in FAQ.. Well , I need to allow mail relaying for anyone ( if it is easy to do this on a per user basis - very fine ) who have valid pop3/smtp account on my server. In /etc/tcp.smtp I can allow IPs.. Is it possible to allow/deny users with tcpserver? I'll be glad to see a name of the manual or url where I can find detailed explanation of tcp.cmtp used with tcpserver. Sorry - unfortunately I've got a lot of other work , so it's almost impossible for me (at least in 2 nearest weeks) to search the web w/ this question... Could anyone help,please? :)~ Bye.Olli.
Re: why this stais in a queue after ALRM ?
On Fri, 14 May 1999, Timothy L. Mayo wrote: What do your logs say? I'm totally sorry that I didn't look in maillog before asking. :(( When rotating logs I've set in logrotate.conf create 640 root wheel So qmail can't access the log file where qmail stores kludges for all messages going via my host. Sorry for my dumb question.ö( Bye.Olli.
why this stais in a queue after ALRM ?
I've a message in queue don't understand why it stays in queue after I do `killall -ALRM qmail-send` (being root). qmHandle -l says: 53538 (17, L) Return-path: [EMAIL PROTECTED] From: Vladimir [EMAIL PROTECTED] To: "domain ROSMOL.RU" [EMAIL PROTECTED] Subject: domain ROSMOL.RU Date: Wed, 12 May 1999 06:44:32 +0400 Size: 2373 bytes qmHandle -v53538 says: Received: (qmail 14161 invoked by uid 500); 12 May 1999 10:46:13 - Delivered-To: [EMAIL PROTECTED] Received: (qmail 14155 invoked from network); 12 May 1999 10:46:12 - Received: from unknown (HELO lexus.chph.ras.ru) (195.208.34.60) by vgsn.glasnet.ru with SMTP; 12 May 1999 10:46:12 - Received: (from Unknown UID 1026@localhost) by lexus.chph.ras.ru (8.9.1/8.9.1) id GAA30680; Wed, 12 May 1999 06:44:32 +0400 Date: Wed, 12 May 1999 06:44:32 +0400 Message-Id: [EMAIL PROTECTED] To: "domain ROSMOL.RU" [EMAIL PROTECTED] From: Vladimir [EMAIL PROTECTED] Subject: domain ROSMOL.RU message body skipped I ve the following settings: $ cd /var/qmail/control $ less rcpthosts localhost vgsn.glasnet.ru $ less plusdomain glasnet.ru $ less defaultdomain glasnet.ru $ less me vgsn.glasnet.ru $ less locals localhost vgsn.glasnet.ru $ cd ../users $ less assign +root:olli:500:500:/home/olli::: +postmaster:olli:500:500:/home/olli::: +hostmaster:olli:500:500:/home/olli::: +admin:olli:500:500:/home/olli::: +sysadmin:olli:500:500:/home/olli::: +sitemaster:olli:500:500:/home/olli::: +mailer-daemon:olli:500:500:/home/olli::: +anonymous:olli:500:500:/home/olli::: . I run qmail as follows: $ cd .. $ less rc #!/bin/sh /usr/local/tcpserver/bin/tcpserver -R -x/etc/tcp.smtp.cdb -c100 -u523 -g522 0 smtp /var/qmail/bin/qmail-smtpd exec env - PATH="/var/qmail/bin:$PATH" \ qmail-start ./Mailbox splogger qmail $ less /etc/tcp.smtp 192.168.0.1:allow,RELAYCLIENT="" 192.168.0.2:allow,RELAYCLIENT="" 192.168.0.3:allow,RELAYCLIENT="" 192.168.0.4:allow,RELAYCLIENT="" 192.168.0.5:allow,RELAYCLIENT="" 192.168.0.6:allow,RELAYCLIENT="" 192.168.0.7:allow,RELAYCLIENT="" 192.168.0.8:allow,RELAYCLIENT="" 192.168.0.9:allow,RELAYCLIENT="" 192.168.0.10:allow,RELAYCLIENT="" 192.168.0.25:allow,RELAYCLIENT="" 192.168.4.120:allow,RELAYCLIENT="" 195.218.173.129:allow,RELAYCLIENT="" 127.:allow,RELAYCLIENT="" PS: Ofcourse I olready ran qmail-newu .. Bye.Olli.
a question on repacking queue
Hi. If I need to repack immediately send mail I should killall -ALRM qmail-send. I do this then I got dialup user that wish to get mail via smtp. But what about big ISPs that have many dialup clients a big spool? Is it possible anyhow (I know that it is possible w/ sendmail) not to repack all mail (say we have 100Mb spool w/ 10kb for a dialup user) , but only that what should be sent to this dialup user? next problem I've heared about: if a dialup client that wish to get email via smtp is going to the net (sometimes) with windows (w/o smtp server), then qmail rejects mail to sender, but not defferring for later retry as it (AFAIK) should do. Is it possible to fix this? Bye.Olli.
Re: middleman for outgoing messages
On Tue, 11 May 1999 [EMAIL PROTECTED] wrote: I'm developing some sort of database which should keep all messages with a given subject (like listserver, but in the database would go all the messages with given subject). I wrote parser (PERL) to do it (pipe-driven). Now the question is: Where I could stick the parser so it would intercept all (local/remote) messages (check/make note to db), let them go? I suppose it should be hooked to qmail-queue, but could somebody more knowledgeable enlighten me please? Could it be done in "clean" way (without patching the sources)? As another way to do it is recompiling qmail w/ logging all mail (as in FAQ) then parse all from .qmail-log , but I'm not sure that it is better then what you wanna do. Bye.Olli.
Re: [PATCH] Resolving MAIL FROM domain
On Thu, 6 May 1999, Sam wrote: Nowadays I just bored to get mail from illegal hostnames and I created a diff against vanilla qmail-1.03 (see attachment). It is simple. It checks for a DNS entry for the MAIL FROM domain if control/mfcheck or the MFCHECK environment variable is set to nonzero. Please check it out. Any comments/bugfixes/etc are welcomed. A) It's been done before. Could you give an url then? I wanna disallow receiving/sending mail from _some_ illegal domains too.. Bye.Olli.
Re: virtualdomains question
On Sat, 24 Apr 1999, Giulio Orsero wrote: Well, can I use a domain name as a second part? As example: foo.com:foo1.com Will then qmail send mail to [EMAIL PROTECTED] to [EMAIL PROTECTED] ? No, try this instead: virtualdomains: foo.com:alias-foo ~alias/.qmail-foo-default |forward $[EMAIL PROTECTED] Thanx. I'll do it. Right now I got loopes w/ somth. like this,but I hope fix this in the nearest future.:) Actually, it might just be a whole lot easier to go in to the qmail user's directory, and edit the .qmail file to say "[EMAIL PROTECTED]" I thought he wanted to do this for every user at foo.com, and that "bob" was just an example; so it would be quite time consuming to edit every user's .qmail file :-) yes.that was "just an example".:) Actualy I use non-existent in the dns domain at our home LAN. There are 3 PCs in the LAN we connect to the internet via dialup to my server at work. The connection could be open from 2 mashines - my or my friend. 1st time I had idea to redirect the mail to my_fake_domain.ru to the same user on my server - that was why I asked about domain redirection. Now I wanna make better thing - just make mail work to the both ends. I add the following to the smtproutes: my_fake_domain.ru:192.168.4.120 So the bounces are returned to the sender on the fake_domain,not to me. But anyhow user on the my_fake_domain.ru have to be masqueraded as a user of my server or some hosts will return bounces like "sender domain must exist" . Bye.Olli.
Re: virtualdomains question (theoretical)
On Sat, 24 Apr 1999, Giulio Orsero wrote: Will then qmail send mail to [EMAIL PROTECTED] to [EMAIL PROTECTED] ? No, try this instead: virtualdomains: foo.com:alias-foo ~alias/.qmail-foo-default |forward $[EMAIL PROTECTED] Next question follows: virtualdomains: home.foo.com:foo home1.foo.com:foo1 ~alias/.qmail-foo-default: |forward $[EMAIL PROTECTED] ~alias/.qmail-foo1-default: |forward $[EMAIL PROTECTED] what to do if I wanna send mail to home1 only if it owns connection? The connection can be made by home home1 , both using qmail as an MTA both relays to each other. But I don't wanna to allow "home" receive mail for "home1" in couse it could be logged. The simplest solution is making connection from home1 with another IP addr , so the question is mostly theoretical - is there any solution to send mail to "home1" only if "home1" sits on the other end , not "home" ? Bye.Olli.
virtualdomains question
On Wed, 21 Apr 1999, Greg Owen {gowen} wrote:
from man:
A virtual domain has the form domain:prepend. It
applies to any recipient address at domain.
Well, can I use a domain name as a second part? As example:
foo.com:foo1.com
Will then qmail send mail to [EMAIL PROTECTED] to [EMAIL PROTECTED] ?
Bye.Olli.
Re: vacation
On Wed, 21 Apr 1999, Peter Samuel wrote: Rather than heavily modify vacation, why not modify your .qmail entry thusly | attachment_strip | vacation psamuel I've corresponding to this question: I wanna split mail for a some gate that allows messages only lower 16Kb. How should I do this for outgoing mail for some domains what programm will be better for deviding message for small parts under Linux? `man what?` ? AFAIK the dot files controls incoming mail. What should I use for outgoing? Bye.Olli.
Re: Another q about open relaying
On Mon, 19 Apr 1999, Chris Johnson wrote: But if I've domain in rcpthosts this domain is able to relay via my host.Thus I think that rcpthosts should contain only hostname aliases for it. Am I wrong? You're wrong. rcpthosts has nothing at all to with who can relay. It is a list of domains *for* which you're willing to receive mail via SMTP. If a remote host, during the course of an SMTP conversation, says: RCPT TO:[EMAIL PROTECTED] then somedomain.com had better be in rcpthosts, or else the mail will be rejected (unless you've set RELAYCLIENT in qmail-smtpd's environment, which is how selective relaying is implemented). Whether there exists an actual host named somedomain.com is irrelevant. WEll,but if I've two domains in rcpthosts: somedomain1.com somedomain2.com any user on somedomain1.com able to send any mail to any user on somedomain2.com vise versa.That's not good,especialy if U're using .com .net as a wildcard.This is a kind of mail relay. That what I meant by "this domain is able to relay". Bye.Olli.
Re: Another q about open relaying
On Fri, 16 Apr 1999, Chris Johnson wrote: I am having trouble preventing Qmail from doing open relaying without stopping mail service entirely. This is on a system that runs Listserv(R) from the L-Soft Corporation. When I put the system's name (and aliases) in a rcpthosts file, open relaying stops. The problem is that no one can send then Ur host work as relay only for itself. e-mail to any account on this system. Qmail says that the sending system is not allowed to relay. I do not understand this. In sendmail, I can stop third party relaying without totally disabaling mail functionality on the system, but I can't figure out how to do this with qmail. The Qmail FAQ file was unclear on this subject, which is why I am asking here. The Qmail FAQ contains almost enougth to turn off relaying. See selective mail relay part. For this U should install some additional programmes have the string like below in the file starting qmail: /usr/local/tcpserver/bin/tcpserver -R -x/etc/tcp.smtp.cdb -c100 -uuid -ggid 0 smtp /var/qmail/bin/qmail-smtpd This is Also disable smtp in inetd.conf make right tcp.smtp.cdb file as described in FAQ. Make shure that no special chars are in tcp.smtp.cdb or this won't work - I got problems once w/ this. What do you mean by "put the system's name (and aliases) in rcpthosts"? rcpthosts should be a list of domains for which you're willing to receive mail via SMTP. Some of these domains might be the same as your server's name and aliases; then again, none of them may be, and your server may have aliases for which you don't want to receive mail. I think rcpthosts should contain only hostname aliases for it. All clients that should be allowed for sending mail should be configured via tcp.smtp.cdb as in FAQ . Then all them will be allowed for sending mail to anywhere . All others cannot send anything through Ur host to nonlocal accounts. BTW: Is it possible to allow some clients send mail only to some domains? Make sure that your rcpthosts file contains only domains that are listed in locals or virtualdomains, and domains for which you're acting as secondary mail exchanger. Then you will be safe from unauthorized (or for that matter, any) relaying, and you'll still be able to receive mail for any of the domains you host. But if I've domain in rcpthosts this domain is able to relay via my host.Thus I think that rcpthosts should contain only hostname aliases for it. Am I wrong? Bye.Olli.
question on mail relay
Hello. Sorry for a noise.I've the following problem: /etc/tcp.smtp file as follows: 192.168.0.1:allow,RELAYCLIENT=" " 192.168.0.2:allow,RELAYCLIENT=" " 192.168.0.4:allow,RELAYCLIENT=" " 192.168.0.5:allow,RELAYCLIENT=" " 192.168.0.6:allow,RELAYCLIENT=" " 192.168.0.7:allow,RELAYCLIENT=" " 192.168.0.8:allow,RELAYCLIENT=" " 192.168.0.9:allow,RELAYCLIENT=" " 192.168.0.10:allow,RELAYCLIENT=" " 192.168.0.25:allow,RELAYCLIENT=" " 192.168.4.120:allow,RELAYCLIENT=" " 127.:allow,RELAYCLIENT=" " as in FAQ I do: cat /etc/tcp.smtp | /usr/local/tcpserver/bin/tcprules /etc/tcp.smtp.cdb ~/tcp.smtp.tmp I got the following answer: tcprules: fatal: unable to parse this line: 192.168.0.1:allow,RELAYCLIENT=" " What could be wrong? PS: I can make .cdb file by cdb itself ( I did) , but does it produce the same thing why then tcprules fail? After I created .cdb file via cdb I commented out the following line from inetd.conf: smtp stream tcp nowait qmaild /usr/sbin/tcpd /var/qmail/bin/tcp-env /var/qmail/bin/qmail-smtpd run the following script: #!/bin/sh killall -HUP inetd /usr/local/tcpserver/bin/tcpserver -R -x/etc/tcp.smtp.cdb -c100 -u599 -g598 0 smtp /var/qmail/bin/qmail-smtpd After this when my user sends email to microsoft.com from 192.168.0.1 we see the following error: 553 sorry, that domain isn't in my list of allowed rcpthosts (#5.7.1) The file rcpthosts is only 2 lines: localhost my.dns_host.name Well,I've read that in this situation rcpthosts is not used. Am I wrong? So - cdb tcprules seem to use diffrent formats or I'm wrong in somth. else there? if I'm not - what wrong w/ the linebelow: 192.168.0.1:allow,RELAYCLIENT=" " tcprules doesn't want to parse all strings in my /etc/tcp.smtp . Anyhow while compiling I got binaries w/o errrors. uname -a gives me: Linux my.dns_host.name 2.0.36 #1 ¿âÝ ¼Ðà 26 19:20:45 GMT+3 1999 i586 unknown VERSION file for tcpserver contains: ucspi-tcp 0.84 that's all. So could anyone tell me what's wrong? I'm tring to stop open mail relay (right now I've to make rcpthosts w/ commonly used domains in our company, so anyone there can use us as relay. :( ) Bye.Olli.
Re: question on mail relay
On Mon, 12 Apr 1999, Harald Hanche-Olsen wrote: | Sorry for a noise.I've the following problem: | /etc/tcp.smtp file as follows: [...] | as in FAQ I do: | cat /etc/tcp.smtp | /usr/local/tcpserver/bin/tcprules /etc/tcp.smtp.cdb ~/tcp.smtp.tmp Bad idea. The cdb file and the tmp file must be on the same filesystem. Your invocation would also have earned you a "Useless use them are on the same filesystem. snip,thanx Good question. tcprules parsed your file without difficulty when I tried it, so maybe there is a hidden control character in there. A return character at the end of the line yields this error, for example. unfortunately no ^M (or so) there. So I'll try to play w/ the code to add additional debugging messages... Bye.Olli.
