Big problem: [MAILER-DAEMON@windoms.sitek.net: failure notice]
Hi, I`ve set up a qmail server, using rblsmtpd (MAPS,DUL,ORBS) and closed relay ... but two days ago some bastards started to relay using the server ... I have no idea how they managed to do so with my server`s having only 2 entries in rcpthosts... they only way I could have stopped them from relaying is setting up a ipfwadm rule ... but as soon as I do this they start to use other domain from their side ... I would really appreciate any help ... they already have relayed helllotta spam ): Oh! they are: 193.127.65.2/24 194.152.210.10/24 150.187.30.2/24 168.77.8.2/24 Thanx for your time. -- http://www.spb.sitek.net/~pashah/public-key-0x97739141.pgp Hi. This is the qmail-send program at windoms.sitek.net. I tried to deliver a bounce message to this address, but the bounce bounced! [EMAIL PROTECTED]: Sorry, no mailbox here by that name. (#5.1.1) --- Below this line is the original bounce. Return-Path: Received: (qmail 18029 invoked by uid 71); 23 Mar 1999 08:35:41 - Received: from bangkok.digi-net.com (209.212.138.11) by windoms.sitek.net with SMTP; 23 Mar 1999 08:35:41 - To: [EMAIL PROTECTED] Subject: Delivery failure ([EMAIL PROTECTED]) From: [EMAIL PROTECTED] Message-Id: [EMAIL PROTECTED] Date: Tue, 23 Mar 1999 02:21:54 -0500 Your message has encountered delivery problems to the following recipients: [EMAIL PROTECTED] Unable to deliver to destination domain Failed to deliver to domain cns.com after 39 tries. Your message reads (in part): Received: from une.edu.ve (unverified [150.187.30.2]) by bangkok.digi-net.com (Rockliffe SMTPRA 2.1.6) with SMTP id [EMAIL PROTECTED] for [EMAIL PROTECTED]; Sun, 21 Mar 1999 23:52:27 -0500 Received: from windoms.sitek.net by une.edu.ve (SMI-8.6/SMI-SVR4) id BAA23551; Mon, 22 Mar 1999 01:04:12 +0400 From: [EMAIL PROTECTED] Message-Id: [EMAIL PROTECTED] Date: 3/21/99 8:30:48 PM Pacific Daylight Time Reply-To: [EMAIL PROTECTED] To: [EMAIL PROTECTED] Subject: $ THIS IS IT! $ *** $100,000+ FIRST YEAR INCOME *** · Earn $2000-$5000 weekly-Starting Within 1-4 weeks! · 78% Profit Paid Daily · No Selling · No Risk Guarantee · Work from home, No overhead, or employees · High Tech Training Support · Not MLM, 100x more profitable · Multi-Billion Dollar Travel Industry The most incredible part of our business is that I MENTOR ALL MY ASSOCIATES !!! ACCEPTING ONLY 12 NEW ASSOCIATES. This is not a hobby! Serious Inquiries Only! 24 Hour Toll Free Message!!! 888-209-7361 If you're an entrepreneur or have always wanted to be your own BOSS, read on. We supply state-of -the-art training and a support system that allows you to work your business from your home with just a phone- without cold calling. DO NOT CALL ME IF YOU'RE LOOKING FOR A "GET RICH QUICK" SCHEME or some extra cash or if you're lazy. We are only looking for FOCUSED, serious entrepreneurs. (PT/FT) with the DESIRE to improve their lifestyle immediately. ___ To be placed on a REMOVE LIST, return to "[EMAIL PROTECTED]" with "remove" in the subject heading.
NIS and qmail
Hi, I can`t make qmail deliver mail on a box that is NIS base (users have only pop3 accounts there and no homedirs) qmail keeps loggin infamous #5.1.1 mistake ... any ideas about what I could have messed up? Pashah -- http://www.spb.sitek.net/~pashah/public-key-0x97739141.pgp
again NIS and qmail: refined question
Hi, I`ve find out the problem, that made deliveries of local messages impossible - since all the users has the ~ set as /tmp (they have only vsm pop3 accounts) qmail refuses to deliver messages ... the [Q] is where do I tweak qmail sources for it to be more tolerant about this matter? I`ve checked conf-patrn ... my attempts to change bits in it didn`t work out ... Would some [c|qmail] gurus help me (: ? thanx in advance, Pashah -- http://www.spb.sitek.net/~pashah/public-key-0x97739141.pgp
Re: dot-qmail security
It is very easy to make users ftp in only to their ~home/public_html, thus they will not be able to alter the .qmail files. On Sun, Mar 14, 1999 at 06:30:59PM -0800, Mark Delany wrote: Often admins (at ISPs especially) give users some form of write access to their home directories so they can fiddle with their ~user home page or plonk stuff down for remote ftp. Pashah -- http://www.spb.sitek.net/~pashah/public-key-0x97739141.pgp
[LONG QUOTE] Re: dot-qmail security
On Mon, Mar 15, 1999 at 04:42:42PM +1100, Richard Antecki wrote: Forgive me for my stupidity, but can you please explain how this can be done? This is an extract from proftpd menual: --- Syntax: DefaultRoot directory [group-expression] Default: DefaultRoot / Context: server config,VirtualHost Compatibility: 0.99.0pl7 and later The DefaultRoot directive controls the default root directory assigned to a user upon login. If DefaultRoot is set to a directory other than "/", a chroot operation is performed immediately after a client authenticates. This can be used to effectively isolate the client from a portion of the host system filespace. The specified root directory must begin with a / or can be the magic character '~'; meaning that the client is chroot jailed into their home directory. If the DefaultRoot directive specifies a directory which disallows access to the logged-in user's home directory, the user's current working directory after login is set to the DefaultRoot instead of their normal home directory. DefaultRoot cannot be used in Anonymous configuration blocks, as the Anonymous directive explicitly contains a root directory used for Anonymous logins. - so, if you have a line in your /etc/proftpd reading: DefaultRoot ~/public_html ftpusers,!wheel thouse who belong to ftpusers will be chroot jailed to ~/public_html, thouse who belong to group whell will not. hope this helps. Pashah -- http://www.spb.sitek.net/~pashah/public-key-0x97739141.pgp
A problem with /var/qmail/rc
Hi, I`ve run upon a problem in /var/qmail/rc script ... and spent the whole nite trying to solve it \% it just wont start qmail-start ... if I try to use the cool daemontools ... I used to have the default script they where running okay ... due to some proprietary scripts running on the system I must use vsm delivery ... here is the script, maybe smd. can point me the mistake in it that stops it from running the qmail-start: --- #!/bin/sh /usr/local/bin/supervise /usr/local/qmail/supervise/tcpserver env - \ PATH="/usr/local/bin:$PATH" TZ=MSK-3MSD \ /usr/bin/tcpserver -v -c 70 \ -u 71 -g 71 -x /etc/tcp.smtp.cdb 0 smtp /usr/local/bin/smtplog \ /usr/local/bin/rblsmtpd -rrelays.orbs.org \ /usr/local/bin/rblsmtpd \ /var/qmail/bin/qmail-smtpd 21 | /usr/local/bin/accustamp \ | /usr/local/bin/cyclog -s14000 -n5 /var/log/smtpd /usr/local/bin/supervise /var/run/supervise/qmail-send env - \ PATH="/usr/local/bin:$PATH" TZ=MSK-3MSD \ /var/qmail/bin/qmail-start '|preline procmail' /usr/local/bin/accustamp \ | /usr/local/bin/cyclog -s14000 -n5 /var/log/maillog --- Any pointers are welcome, Pashah -- http://www.spb.sitek.net/~pashah/public-key-0x97739141.pgp
[SOLVED] Re: A problem with /var/qmail/rc
Oops, that was a really silly one (: my PATH statement didn`t contain /var/qmail/bin ... all fine now, thanx Adam. [ssnip] On Mon, Mar 15, 1999 at 01:07:35AM -0500, Adam D. McKenna wrote: :/usr/local/bin/supervise /var/run/supervise/qmail-send env - \ :PATH="/usr/local/bin:$PATH" TZ=MSK-3MSD \ [ssnip] Pashah -- http://www.spb.sitek.net/~pashah/public-key-0x97739141.pgp
Re: How to reject spam mail?
IMHO rblsmtpd + restrictive relay, should help a lot. On Mon, Mar 15, 1999 at 10:16:56AM -0800, Jose de Leon wrote: Could somebody please give me some ideas on what is best way to reject spam mail? I've scanned the QMail home page and although I've seen several patches, I'm not sure what is best for me. Pashah -- http://www.spb.sitek.net/~pashah/public-key-0x97739141.pgp
vsm - /Maildir/ migration script
Hi, maybe smd. has written already a script which will create the proper ~/Maildir/ for every user in /etc/passwd ? I would really be happy to get this one (: Pashah -- http://www.spb.sitek.net/~pashah/public-key-0x97739141.pgp
installing qmail on a free mail server
Hi, prev. sysadmin in my company left for me a server of free mail that uses sendmail ( Doh! ) The server has ~30k of users soo this is the right place for the qmail. the 1[Q] is: is there any patches I should apply. I simply can`t think of any decent strategy I should follow ... the server is already listed at ORBS hehe I do what to fix that situation and make it more difficult for spummers to use the server ... any advises? the 2[Q] is: has anybody managed to launch imp using qmail? thanx Pashah -- http://www.spb.sitek.net/~pashah/public-key-0x97739141.pgp
Killing mail according to certain header line
Hi, Is it possible to make qmail send mail, containing certain header line to /dev/null? I am espessialy intrested in killing mail containing 'X-Spanska: Yes' Usually this mail contains only one file infected with the Backorifice stuff. Um asking that because I want to make it globaly for the whole host. I`ve read through the man pages for tcpserver, it seems that it can not do that. any pointers are welcome. Pashah -- http://www.spb.sitek.net/~pashah/public-key-0x97739141.pgp
virtuslhost [Q]
Hi, If an ISP will set me a virtualhost up using qmail, ie all mail for that vh will go right to 1 account at ISP`s server, I will be fetching the mail via ppp - the [Q] is: were do I read about how do I set up my local qmail for it to deliver mail to different users in my localhost (there are 60 of them)? Any pointers are welcome. thank you in advance. -- Pashah
