checkpassword
is it possible to have a password for qmail-pop3d different then the linux password because the current passwords for the current internal server (using window$ $oftware) have only a 2 letter password (i know that it's impossible to have it under linux with kernel 2.2.16) and for a simply way for upgrading server to qmail, i would like to know how i can do P.S : i know that it isn't good to have only two letters for a password, but i have not the choice... thx Dji. -- Audouy Jérôme - 3rd year student in E.S.S.I. (Ecole Supérieure en Sciences Informatiques) e-mail : [EMAIL PROTECTED] / [EMAIL PROTECTED] www: http://djidji.citeweb.net / http://www.essi.fr/~audouy
checkpassword ...
Hi. I'm using qmail-1.03 with openldap-1.2.11 and have applied qmail-ldap patch (2701). mail delivery is working fine, but when i tried to configure pop3 i could not find checkpassword (just checkpassword.o). The documentation says qmail-ldaplookup is similar to checkpassword but i still can't figure how to use it. I'm using tcpserver and it works with : /usr/local/bin/tcpserver 0 pop3 /var/qmail/bin/qmail-popup server_name /bin/checkpassword /var/qmail/bin/qmail-pop3d Maildir & when i don't user ldap. another question : if the directory where mail should be deliver doesn't exist then it is created based on the mailmessagestore attribute in the ldap db and then the Maildir is created. which maildirmake is used for creating this Maildir? this is because i also need to use courier-imap which comes with it's own maildirmake. thanks in advance juan calderon
checkpassword
What is the most standard checkpassword - program? I get to this www.qmail.org and follow links from there, and I only get to a page with many different options, which all seem very complicated and unstandard. I tried a few, with no results. -Maria
checkpassword
Hi I have this configuration - starting qmail-pop3d /usr/local/bin/tcpserver 0 110 /var/qmail/bin/qmail-popup qmail.xx.net \ /bin/checkpassword /var/qmail/bin/qmail-pop3d ./ & I have this user list that checkpassword should follow #xx: /var/qmail/users > cat assign =martin:martin:1120:0:/webdisk/mail/martin::: +martin-:martin:1120:0:/webdisk/mail/martin:-:: . But when checkpassword chdir's into the users directory it follow the /etc/passwd file and NOT the users/assign file as it should. Why?? Any fix to this - or any other programs that I can use? Thanks, Martin Staael NetGroup A/S St. Kongensgade 40H. 2.th.,1264 København K., Tel.. +45 33691228, Fax. +45 33130066 --- - Origin: Glace Bleu d'origine... :) ([EMAIL PROTECTED])
checkpassword
I am relatively new to this, but how do you get the encrypted password into the assign files? I am trying to setup the pop3 users and I need to create the assigns file. Do you use the unix's crypt command and then cut and paste this into the file? What key do you use to encrypt the password using the crypt command? Do you use the root user's password as the key? thanks
CheckPassword
Anyone familiar with what Environment Variables the standard checkpassword sets for qmail-popup & what environment variables it receives from qmail-pop3d? J - Original Message - From: prashant To: [EMAIL PROTECTED] Sent: Friday, June 23, 2000 8:12 AM Subject: virtual domains hello friends i have installed qmail 1.03 with qmail-ldap -latest-patch on RedHat linux 6.1 i want to configure virtual domains with out using ".qmail" file in users home dir and also dont want to use /etc/passwd is this possible ? i can use some ldap entries rather then using .qmail flat files thanks Prashant Desai
RE: checkpassword
hi you have to use a checkpassword replacement that checks another file, let say /etc/poppasswd... -Original Message- From: Audouy Jérôme [mailto:[EMAIL PROTECTED]] Sent: Wednesday, July 19, 2000 4:24 PM To: [EMAIL PROTECTED] Subject: checkpassword is it possible to have a password for qmail-pop3d different then the linux password because the current passwords for the current internal server (using window$ $oftware) have only a 2 letter password (i know that it's impossible to have it under linux with kernel 2.2.16) and for a simply way for upgrading server to qmail, i would like to know how i can do P.S : i know that it isn't good to have only two letters for a password, but i have not the choice... thx Dji. -- Audouy Jérôme - 3rd year student in E.S.S.I. (Ecole Supérieure en Sciences Informatiques) e-mail : [EMAIL PROTECTED] / [EMAIL PROTECTED] www: http://djidji.citeweb.net / http://www.essi.fr/~audouy checklocalpwd-1.0.tar.gz
tcpserver/checkpassword
I'm running Linux Slackware 2.0.35, I have been running Qmail on three other machines now just over a year. Right now I run Qmail mail from inetd and had been working great. I only wanted to install tcpserver because of the spam filtering I could do with it. I installed Qmail 1.03(tarball), and tcpserver 0.84(tarball), I have in my /etc/rc.d/rc.local file tcpserver -u 1001 -g 101 0 smtp /var/qmail/bin/qmail-smtpd -x /etc/tcp.smtp.cdb & tcpserver 0 pop3 /var/qmail/bin/qmail-popup dns1.surftheusa.com \ /bin/checkpasswd /var/qmail/bin/qmail-pop3 Maildir & I installed checkpassword just as the INSTALL file said. make, make setup check It said that's it, then I ran the tests just as it said and it shows it works. Now the problems I'm having. All mail does get delivered when I send to the host. When I try to check the mail with Outlook Express, or Netscape mail, even Netscape with X windows the auth fails and asks me to enter the password again. I did re-did the password three times to make sure and it still fails on all mail programs. Thanks in advance Bob Ross
Re: checkpassword
On Sat, Aug 14, 1999 at 12:13:21PM +0200, Maria Zevenhoven wrote: > What is the most standard checkpassword - program? The qmail author's checkpassword, which checks just system accounts, is at ftp://koobera.math.uic.edu/www/software/checkpassword-0.81.tar.gz. > I get to this www.qmail.org and follow links from there, and I only get to a > page with many different options, which all seem very complicated and > unstandard. They're supposed to be "unstandard." They let you use POP user databases that aren't stored in /etc/passwd. > I tried a few, with no results. What does that mean? Chris
checkpassword interface
Hi, I'm writing a checkpassword replacement (for my own use, but I might release it if it gets really good :). I have one problem though. I want qmail-popup to be a little more verbose than '-ERR authorization failed'. How should I go about this? Greetz, Peter. -- .| Peter van Dijk | stoned worden of coden .| [EMAIL PROTECTED] | dat is de levensvraag | coden of stoned worden | stonend worden En coden | hmm | dan maar stoned worden en slashdot lezen:)
checkpassword RPMs?
Is there an existing RPM anywhere for checkpassword? Chris -- Chris Garrigues virCIO +1 512 432 4046 4314 Avenue CO- http://www.DeepEddy.Com/~cwg/ Austin, TX 78751-3709 +1 512 374 0500 My email address is an experiment in SPAM elimination. For an explanation of what we're doing, see http://www.DeepEddy.Com/tms.html Nobody ever got fired for buying Microsoft, but they could get fired for relying on Microsoft. PGP signature
checkpassword questions
I'm trying to use an existing virtual user database instead of the users in /etc/passwd, I got the script to create .qmail files and Maildirs, I just can't get the pop login thing to work. Is there a plain English description of what/how checkpassword does? How about what qmail-popup spits out and what qmail-pop3d wants to see? >From the man page: "The information supplied on descriptor 3 is a login name terminated by \0, a password terminated by \0, a timestamp terminated by \0, and possibly more data." All I can retrieve from argv is "/var/qmail/bin/qmail-pop3d" and "Maildir", there is nothing else there. "If the password is acceptable, checkpassword uses execvp to run subprogram with the given arguments." execvp isn't referenced in the K&R book, what's it all about? As to the flame war - if you need warning labels and RPMs to install software, maybe you should do something else for a living (I'm seriously considering truck-driver school). If you think qmail is a bitch to deal with, you really ought to try sendmail as a tarball. I'm sure as hell no guru, but a plain vanilla qmail installation is a lot easier to get running than sendmail could ever hope to be. Qmail took 4 hours out of my life to install and configure on an $80 486 box (so much for the "can't afford a test machine" argument). It's happily delivering mail for 8 domains now, and it freed up a pentium box for harder work. The docs for the add-ons and mods are cryptic and written in pure geek-speak, but then, look at "sendmail.cf" - now there's a real treat.
Re: checkpassword
On Thu, Jan 28, 1999 at 10:49:13AM +0100, Martin Staael wrote: > > Hi > > I have this configuration - starting qmail-pop3d > > /usr/local/bin/tcpserver 0 110 /var/qmail/bin/qmail-popup qmail.xx.net \ > /bin/checkpassword /var/qmail/bin/qmail-pop3d ./ & > > I have this user list that checkpassword should follow > > #xx: /var/qmail/users > cat assign > =martin:martin:1120:0:/webdisk/mail/martin::: > +martin-:martin:1120:0:/webdisk/mail/martin:-:: > . > > But when checkpassword chdir's into the users directory it follow the > /etc/passwd file and NOT the users/assign file as it should. Why?? users/assign applies only to mail delivery. checkpassword never looks at it. > Any fix to this - or any other programs that I can use? There are different versions of checkpassword that use your own password file instead of (or in addition to) /etc/passwd. See the checkpassword section of www.qmail.org for various implementations. I use a checkpassword that uses a separate poppasswd file after checking /etc/passwd for a system account. Chris
Re: checkpassword
> > /bin/checkpassword /var/qmail/bin/qmail-pop3d ./ & blah! my previously working checkpassword just stopped working. How strange. I'm sure it's something other than checkpassword, but since I can log in, I wonder what it could be that is making checkpassword fail. Has anyone else experienced this? Scott
tcpserver - checkpassword
is it possible to use checkpassword (tcpserver) with Mailbox and not Maildir?? Thanks Federico.
Checkpassword / Plaintext
hello all, be coming crazy to find out how i can compile checkpassword to use plaintext, im standing now here any body knows what exactly is to do ??? thanks ... mike
checkpassword question
Hello all, I am a newbie to this list. Now, I want to authenticate SMTP and POP3 and SMTPD and POP3D do well in the "qmaild" user which I set its uid to root id (0). But do I have to let "qmaild" become super-user? Have any other way to do this , because "qmaild" super-user is not good enough to me. Any help would be appreciated. Best Regard Â½ê¿ Rick Lu [EMAIL PROTECTED]
Perl checkpassword
Someone had asked for this some time ago... But I forget who or when. DJB, if you would, please archive locally to www.qmail.org. --Larry checkpassword.pl
checkpassword and sasl
Hello list, I have checked the list archive and have not found what I'm looking for. I've been searching everywhere and anywhere, with no answer. I'm nearly convinced that this is currently impossible, or that nobody else is doing it yet. I have a sendmail + cyrus mail server which contains no unix users. The users live in a sasl database. Cyrus imap speaks to the sasl database. I have these remaining items still to go. The main ingredient (I think) that I am missing is a checkpassword compatible program that will talk to the /etc/sasldb user database. I want to do SMTP AUTH against this same sasl database. The cmd5chkpasswd mentions something about sasl, but it donen't link to the sasl libraries, or open /etc/sasldb itself. DJB's checkpassword (if I remember) only does /etc/poppasswd checks. I think if I had a checkpassowrd compatible program for sasl, then I could use that as an argument for the patched qmail-smtpd. Is there anyway to do this? Jeremy
checkpassword and IMAP
Hi, I'm running both IMAP and POP servers. Both are using the same authvchpw authentication module by IMAP. I run pop as: /usr/local/bin/tcpserver -v -R 0 pop3 /var/qmail/bin/qmail-popup FQDN \ /home/mail/bin/vchkpw /var/qmail/bin/qmail-pop3d Maildir 2>&1 | /var/qmail/bin/splogger pop3d & I run imap as: /usr/local/bin/tcpserver -v -R 0 imap /usr/local/courier/bin/imapd 2>&1 & However, I'm always having problems making vpopmail and courier-imap work together. (Compiling courier-imap with --with-authvchpw always give me problems), thus I want to use checkpassword for IMAP authentication. This means that I want to install IMAP independent of vpopmail, and use checkpassword for authentication. What's the proper tcpserver syntax to do this? Or, can checkpassword work with authvchkpw? Regards, --mel.
ssh and checkpassword
Has anyone successfully used ssh to provide a secure channel for POP3 authentication? Actually, I'm looking for a more general case of secure checkpassword authentication for any tcpserver app. -- John White johnjohn at triceratops.com PGP Public Key: http://www.triceratops.com/john/public-key.pgp
vchkpw / checkpassword error
Ok, I'm fairly new to this. I ran a Free/BSD system for e-mail in '95 using sendmail and ipop3, but that ended in '96. Now in '99 I'm setting up a RedHat Linux 5.2 system using qMail to handle mail and virtual domains. At this point delivery to my server is working fine. I am having problems with qmail-pop3d and vchkpw. I'm using Inetd my pop-3 line in inetd is: pop-3 stream tcp nowait root /var/qmail/bin/qmail-popup qmail-popup mydomain.com /home/popusers/vin/vchkpw /var/qmail/bin/qmail-pop3d Maildir If I telnet to myserver.com port 110, and type in user NAME [ENTER] pass PASSWORD [ENTER] and get: -ERR authorization failed Where do I go from here in trouble shooting this issue? Thanks, -Coby P. Randquist
Re: tcpserver/checkpassword
On Tue, Aug 03, 1999 at 08:54:21AM -0700, Bob Ross wrote: > I'm running Linux Slackware 2.0.35, I have been running Qmail on three > other machines now just over a year. Right now I run Qmail mail from > inetd and had been working great. I only wanted to install tcpserver > because of the spam filtering I could do with it. > > I installed Qmail 1.03(tarball), and tcpserver 0.84(tarball), > > I have in my /etc/rc.d/rc.local file > tcpserver -u 1001 -g 101 0 smtp /var/qmail/bin/qmail-smtpd -x > /etc/tcp.smtp.cdb & > tcpserver 0 pop3 /var/qmail/bin/qmail-popup dns1.surftheusa.com \ > /bin/checkpasswd /var/qmail/bin/qmail-pop3 Maildir & > > I installed checkpassword just as the INSTALL file said. > make, > make setup check > > It said that's it, then I ran the tests just as it said and it shows it > works. > > Now the problems I'm having. > > All mail does get delivered when I send to the host. When I try to check > the mail with Outlook Express, or Netscape mail, even Netscape with X > windows the auth fails and asks me to enter the password again. > > I did re-did the password three times to make sure and it still fails on > all mail programs. If you have shadow passwords installed, did you use that option in the make file? -- Brad Shelton On Line Exchange http://ole.net
Re: tcpserver/checkpassword
On Tue, 3 Aug 1999, Bob Ross wrote:
> I'm running Linux Slackware 2.0.35, I have been running Qmail on three
> other machines now just over a year. Right now I run Qmail mail from
> inetd and had been working great. I only wanted to install tcpserver
> because of the spam filtering I could do with it.
>
> I installed Qmail 1.03(tarball), and tcpserver 0.84(tarball),
>
> I have in my /etc/rc.d/rc.local file
> tcpserver -u 1001 -g 101 0 smtp /var/qmail/bin/qmail-smtpd -x
> /etc/tcp.smtp.cdb &
> tcpserver 0 pop3 /var/qmail/bin/qmail-popup dns1.surftheusa.com \
> /bin/checkpasswd /var/qmail/bin/qmail-pop3 Maildir &
Are you absolutely sure about that path? Is
checkpasswd in /var/qmail/bin or /bin? I don't run it, it just doesn't
look right.
Vince.
--
==
Vince Vielhaber -- KA8CSH email: [EMAIL PROTECTED] flame-mail: /dev/null
# includeTEAM-OS2
Online Campground Directoryhttp://www.camping-usa.com
Online Giftshop Superstorehttp://www.cloudninegifts.com
==
Re: tcpserver/checkpassword
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 > I'm running Linux Slackware 2.0.35, I have been running Qmail on three > other machines now just over a year. Right now I run Qmail mail from inetd > and had been working great. I only wanted to install tcpserver because of > the spam filtering I could do with it. tcpserver has nothing to do with checkpassword > I installed Qmail 1.03(tarball), and tcpserver 0.84(tarball), > > I have in my /etc/rc.d/rc.local file > tcpserver -u 1001 -g 101 0 smtp /var/qmail/bin/qmail-smtpd -x > /etc/tcp.smtp.cdb & > tcpserver 0 pop3 /var/qmail/bin/qmail-popup dns1.surftheusa.com \ > /bin/checkpasswd /var/qmail/bin/qmail-pop3 Maildir & So far so good... only that -x parameter must be BEFORE the first zero; this way, -x is parameter of qmail-smtpd and not tcpserver. That's not what you want. > I installed checkpassword just as the INSTALL file said. > make, > make setup check With which patches? PAM-enabled? Shadow passwords? > All mail does get delivered when I send to the host. When I try to check > the mail with Outlook Express, or Netscape mail, even Netscape with X > windows the auth fails and asks me to enter the password again. What happens if you telnet to port 110 on the computer and say USER username PASS password (that's the authentication part of POP3 session) > I did re-did the password three times to make sure and it still fails on > all mail programs. Does your system use PAM? Does it use shadow passwords? (Does it use MD5 passwords?) -BEGIN PGP SIGNATURE- Version: PGP 6.0.2 -- QDPGP 2.60 Comment: http://community.wow.net/grt/qdpgp.html iQA/AwUBN6cgRFMwP8g7qbw/EQKBZwCdFV4K7VsYfAP0mOx0Fd+u2ZjVlO8AoJnB TgrglRQlOzEYrLIbuoNsM2/v =mHHQ -END PGP SIGNATURE- -- Petr Novotny, ANTEK CS [EMAIL PROTECTED] http://www.antek.cz PGP key ID: 0x3BA9BC3F -- Don't you know there ain't no devil there's just God when he's drunk. [Tom Waits]
Re: tcpserver/checkpassword
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 > Are you absolutely sure about that path? Is > checkpasswd in /var/qmail/bin or /bin? I don't run it, it just doesn't > look right. It's wherever you copy it to. There's not make install in the makefile (or at least there hasn't been any when I did that) BUT, on my computer it's called checkpassword, not checkpasswd! Couldn't that be your problem? -BEGIN PGP SIGNATURE- Version: PGP 6.0.2 -- QDPGP 2.60 Comment: http://community.wow.net/grt/qdpgp.html iQA/AwUBN6cg6lMwP8g7qbw/EQLTwwCgoYLNaTTwk4NTiR4hDi7lOBF4FdAAn0lG Koq0XUlWNhIVO/egZ+6iq2Zf =ow4h -END PGP SIGNATURE- -- Petr Novotny, ANTEK CS [EMAIL PROTECTED] http://www.antek.cz PGP key ID: 0x3BA9BC3F -- Don't you know there ain't no devil there's just God when he's drunk. [Tom Waits]
RE: tcpserver/checkpassword
> I'm running Linux Slackware 2.0.35, I have been running Qmail on three> other machines now just over a year. Right now I run Qmail mail from> inetd and had been working great. I only wanted to install tcpserver> because of the spam filtering I could do with it.> > I installed Qmail 1.03(tarball), and tcpserver 0.84(tarball),> > I have in my /etc/rc.d/rc.local file> tcpserver -u 1001 -g 101 0 smtp /var/qmail/bin/qmail-smtpd -x> /etc/tcp.smtp.cdb & My line is the following and works fine: tcpserver -x /etc/tcp.smtp.cdb -v -u 1005 -g 801 0 smtp /var/qmail/bin/qmail-smtpd \2>&1 | /var/qmail/bin/splogger smtpd 3 & > tcpserver 0 pop3 /var/qmail/bin/qmail-popup dns1.surftheusa.com \> /bin/checkpasswd/var/qmail/bin/qmail-pop3 Maildir & I made the same mistake. When we read Live with qmail of Dave Sill, we see checkpasswd. But the correct form is checkpassword. > I installed checkpassword just as the INSTALL file said.> make,> make setup check> > It said that's it, then I ran the tests just as it said and it shows it> works.> > Now the problems I'm having.> > All mail does get delivered when I send to the host. When I try to check> the mail with Outlook Express, or Netscape mail, even Netscape with X> windows the auth fails and asks me to enter the password again.> > I did re-did the password three times to make sure and it still fails on> all mail programs.> > Thanks in advance> Bob Ross>
RE: tcpserver/checkpassword
"Alvaro Escobar" <[EMAIL PROTECTED]> wrote: > >I made the same mistake. When we read Live with qmail of Dave Sill, >we see checkpasswd. But the correct form is checkpassword. That's been fixed for some time, now. -Dave
checkpassword and MD5
A quick one: does checkpassword (and thus qmail-pop3d) work ok with MD5 shadow passwords? begin:vcard n:Castro;Juan tel;work:55 (21) 540-9100 x-mozilla-html:FALSE url:http://www.appi.com.br/jcastro org:APPI Informática Ltda.;Desenvolvimento adr:;;Av. Ataulfo de Paiva, 135/1410;Rio de Janeiro;RJ;22449-900;Brazil version:2.1 email;internet:[EMAIL PROTECTED] title:Consultor note:One man alone cannot fight the future. USE LINUX! x-mozilla-cpt:;28896 fn:Juan Carlos Castro y Castro end:vcard
SQL enabled checkpassword
Hi Gang, Perhaps this has been covered in the past, perhaps even recently, but does there exist a checkpassword which can authenticate against a SQL database? Last i heard Ken from inter7 was working on integrating this functionality into vchkpw. Thanks, Jonathan W. Herbert
checkpassword and Unixware
Hi. I'm trying to get checkpassword working on my UnixWare 7.x box and for some reason I cant get it to do the authentication right. I have tried running it with a valid username and password through qmail-popup my_hostname qmail-pop3d pwd and it fails. I also tried running the test from the qmail homepage with the printf and that didn't work either. I have some truss output from the program and can send it to anyone that could help. By the way... the system does use shadow passwords and I think this has something to do with my problem.. i've tried including -lshadow but that wont work because there is no -lshadow on my unixware boxes... thanks -- |-|---| | Hitesh Patel|[EMAIL PROTECTED] | |-|---| | Network Administrator |_ | | Preferred Communications Inc. | / __ / /__ __/ | | | / /_/ / / / / | | Voice: (541) 759-3126 | / / /__/ /__| | Fax: (541) 759-3214 |/__/ /__/___/| | | | |-|---|
Unable to checkpassword
I have a new install of RH 5.2 on a subdomain linux.oceania.net I hope to have a mailing list set up here for our local lug. I am installing memphis which I have done on several occasiions but this time something is amiss. qmail seems to be running fine and ps -aux gives qmaild 313 0.0 0.7 840 404 ? S07:40 0:00 tcpserver -v -c40 -x qmaild 330 0.0 0.6 800 344 ? S07:40 0:00 tcpserver -v -c40 -u8 qmaill 296 0.0 0.5 736 284 ? S07:40 0:00 cyclog -s 100 /va qmaill 311 0.0 0.4 720 228 ? S07:40 0:00 accustamp qmaill 312 0.0 0.5 736 284 ? S07:40 0:00 cyclog -s 100 /va qmaill 327 0.0 0.3 720 220 ? S07:40 0:00 accustamp qmaill 328 0.0 0.5 736 284 ? S07:40 0:00 cyclog -s 100 /va qmaill 336 0.0 0.4 720 228 ? S07:40 0:00 accustamp qmail qmailq 339 0.0 0.5 736 296 ? S07:40 0:00 qmail-clean qmailr 338 0.0 0.5 736 280 ? S07:40 0:00 qmail-rspawn qmails 300 0.0 0.6 780 336 ? S07:40 0:00 qmail-send although there is also root 295 0.0 0.4 724 252 ? S07:40 0:00 supervise /var/lock/q root 310 0.0 0.4 724 252 ? S07:40 0:00 supervise /var/lock/q root 326 0.0 0.4 724 252 ? S07:40 0:00 supervise /var/lock/q root 337 0.0 0.5 736 280 ? S07:40 0:00 qmail-lspawn # Using In /var/lock there is qmailqmail-qmqpd qmail-smtpd subsys Do these belong here? I have checkpassword installed in /bin but when I try to collect mail I get Could not log into mail server The server responded This user has no $HOME/Maildir Please enter a new password for [EMAIL PROTECTED] ls /bin/checkpassword produses -rwx-- 1 root root 4460 Dec 11 00:27 /bin/checkpassword I am able to send mail to the user from outside and the messages are in /home/kevin/Maildir/new but I cannot retrieve them. Perhaps the updated rpms are different from other installs on other machines? Any thoughts on this kindly appreciated Kevin
HELP: need Checkpassword
Hi, Is there someone nice enough to send the checkpassword package from Dan Bernstein to me by e-mail. I try a dozen times since two weeks to access http://pobox.com/~djb/, it's impossible ! I need it to have pop working. I know that there is some other similar package but I want to keep "pure line" first before testing other solution. I'm learning qmail. TIA Patrick
Re: checkpassword RPMs?
On Mon, Apr 05, 1999 at 04:40:07PM -0500, Chris Garrigues wrote: > Is there an existing RPM anywhere for checkpassword? Yes. I have one at http://www.qcc.sk.ca/~bguenter/distrib/checkpassword/ -- Bruce Guenter, QCC Communications Corp. EMail: [EMAIL PROTECTED] Phone: (306)249-0220 WWW: http://www.qcc.sk.ca/~bguenter/
Re: checkpassword RPMs?
> From: Bruce Guenter <[EMAIL PROTECTED]> > Date: Mon, 5 Apr 1999 15:53:37 -0600 > > On Mon, Apr 05, 1999 at 04:40:07PM -0500, Chris Garrigues wrote: > > Is there an existing RPM anywhere for checkpassword? > > Yes. I have one at > http://www.qcc.sk.ca/~bguenter/distrib/checkpassword/ If you check your ftp logs you'll see I've already been there. It's 0.76, however, and 0.81 appears to be the latest. I suppose I'm going to have to learn to make my own RPMs one of these days. Chris -- Chris Garrigues virCIO +1 512 432 4046 4314 Avenue CO- http://www.DeepEddy.Com/~cwg/ Austin, TX 78751-3709 +1 512 374 0500 My email address is an experiment in SPAM elimination. For an explanation of what we're doing, see http://www.DeepEddy.Com/tms.html Nobody ever got fired for buying Microsoft, but they could get fired for relying on Microsoft. PGP signature
Re: checkpassword RPMs?
Chris Garrigues wrote: > > > On Mon, Apr 05, 1999 at 04:40:07PM -0500, Chris Garrigues wrote: > > > Is there an existing RPM anywhere for checkpassword? > > > > Yes. I have one at > > http://www.qcc.sk.ca/~bguenter/distrib/checkpassword/ > > If you check your ftp logs you'll see I've already been there. It's 0.76, > however, and 0.81 appears to be the latest. > > I suppose I'm going to have to learn to make my own RPMs one of these days. You can also screw RPMs, install the thing under /bin and be happy (like me). -- ___THE___ One man alone cannot fight the future. USE LINUX! \ \ / / ___ \ V / |Juan Carlos Castro y Castro| \ /|[EMAIL PROTECTED] | / \|Linuxeiro, alvinegro, X-Phile e Carioca Folgado| / ^ \ |Diretor de Informática e Eventos Sobrenaturais | / / \ \ |da E-RACE CORPORATION | ~~~ ~~~ --- RACER
Re: checkpassword RPMs?
Chris Garrigues wrote: > > From: Bruce Guenter <[EMAIL PROTECTED]> > > Date: Mon, 5 Apr 1999 15:53:37 -0600 > > > > On Mon, Apr 05, 1999 at 04:40:07PM -0500, Chris Garrigues wrote: > > > Is there an existing RPM anywhere for checkpassword? > > > > Yes. I have one at > > http://www.qcc.sk.ca/~bguenter/distrib/checkpassword/ > > If you check your ftp logs you'll see I've already been there. It's 0.76, > however, and 0.81 appears to be the latest. I have 81-2 on a site ftp://linux.oceania.net/pub/memphis
checkpassword and pop
Hi, Im running qmail 1.03 with checkpassword 0.81 on a Pentium 133Mhz with 64 MB ram with RedHat, it has about 1000 accounts. After installing the ver 0.81 of checkpassword the system runs like a dream. But Ive got this new cusomer running Lotus Notes and he claims that it needs to check all his 100 accounts at the same time, of what I can see the system has "plenty" of power to handle this. But when he does kick off this 100 requests at one time qmail spawns a lot of pop3 processes and then after 30-50 has been executed pop3 dies completely - why ? And what can I do to make the system able to handle this kind of (ab)use ? Thanks, Thomas P.S. here is a typical cut from top after I've installed the new checkpassword. 2:45pm up 3:03, 1 user, load average: 0.02, 0.09, 0.08 66 processes: 65 sleeping, 1 running, 0 zombie, 0 stopped CPU states: 1.3% user, 2.1% system, 0.0% nice, 96.8% idle Mem: 63168K av, 55420K used, 7748K free, 35880K shrd, 34824K buff Swap: 97276K av, 0K used, 97276K free 5756K cached
problem qmail / checkpassword
I'm an newbie to qmail (and also linux) and hope to find help. After setting up qmail on SuSE-Linux 6.1 I found a problem with my pop3-server. When contacting the pop3-server the messages "authorization failed" appears. I start the pop3-server in /etc/inetd.conf with this line: pop3 stream tcp nowait root /var/qmail/bin/qmail-popup qmail-popup michael.neubert.de /bin/checkpassword /var/qmail/bin/qmail-pop3d /home/$USER/.mailspool/ After a few tests, I found the following: run 1. test as user michael@michael:~ > /var/qmail/bin/qmail-popup host /bin/checkpassword pwd +OK <569.945710144@host> user linux +OK pass 12345 -ERR authorization failed michael@michael:~ > run 2. test as root michael:~ # /var/qmail/bin/qmail-popup host /bin/checkpassword pwd +OK <548.945710015@host> user linux +OK pass 12345 /home/linux michael:~ # I have already checked the rights of /var/qmail... and /bin/checkpassword. All looks like described in the qmail INSTALL...-files. Thanks in advance for any idea! Michael
pop3 and checkpassword
This is what happens when I telnet port 110. #telnet mail.server 110 trying xxx.xxx.xxx.xxx connected to mail server Escape character is '^]' +ok <573.950693006@INIT VERSION=sysvinit-2.74 user mike +ok pass gomike -ERR authorization failed Connection closed by foreign host I can't for the life of me figure out what the problem is! I have red all the checkpassword doc's and qmail faq's I can fined but see nothing on this problem. Jerry
Checkpassword for OpenBSD
Dear fellows, #1. OpenBSD gots a port for checkpassword, its in /usr/ports/mail/checkpassword.. #2, are you sure its /bin/checkpassword and not /usr/local/bin/checkpassword? #3, OpenBSD 2.7-beta is out, try it, its great... #4, is your checkpassword executable and owned by root.wheel? so it can check /etc/master.passwd... Jonathan Fortin Revelex System Administrator
Re: tcpserver - checkpassword
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On 9 Jun 00, at 17:53, Federico Barbazza wrote: > is it possible to use checkpassword (tcpserver) with Mailbox and not > Maildir?? Sorry? It is "possible" to "use" tcpserver, qmail-popup and checkpassword with Mailbox since these programs don't use it, frankly. However, it is not possible to use qmail-pop3d with Mailbox. You'd have to write a replacement for qmail-pop3d (something with identical interface, but acting on Mailbox). -BEGIN PGP SIGNATURE- Version: PGP 6.0.2 -- QDPGP 2.60 Comment: http://community.wow.net/grt/qdpgp.html iQA/AwUBOUEGLlMwP8g7qbw/EQLx/wCg/kKDa8FMi9AL28/Koorg6qU7erMAoNRC niLJh3lAgqjAUnyshUxgZpTO =TG7N -END PGP SIGNATURE- -- Petr Novotny, ANTEK CS [EMAIL PROTECTED] http://www.antek.cz PGP key ID: 0x3BA9BC3F -- Don't you know there ain't no devil there's just God when he's drunk. [Tom Waits]
Finished my checkpassword
I finished my checkpassword to allow multiple domains over one ip address by having users login with [EMAIL PROTECTED] It checks /var/qmail/domains/domain.com.passwd for the username/password/mail root & shell. It is intended to operate with the single uid/gid "popuser" system by Paul Gregg and you can get it from me if you want it. Just let me know. Regards, Julian Cardarelli - Original Message - From: Magnus Bodin <[EMAIL PROTECTED]> To: qmail list <[EMAIL PROTECTED]> Sent: Saturday, June 24, 2000 5:11 PM Subject: Re: Qmail Clients > On Sat, Jun 24, 2000 at 10:06:24AM -0700, John van V. wrote: > > > > > > Hi all, I hooked up a free smtp/pop3 page which sorta worked but broke on > > attachments. > > > [..] > > > > I hardwired al-the-pal's to qmail inject and the new proc may be expensive but > > its only for replys. Managing Maildir actually looks like a piece of cake, all > > I need is an open source set of CGI's to play with. > > > I really don't got the message of your mail, but you may have a look > at Mail::Folder::Maildir at the nearest CPAN. > > http://search.cpan.org/search?dist=MailFolder > > /magnus > > -- > http://x42.com/
checkpassword with Ldap
Hi all I installed qmail on big server, it work perfectly with SpWebMail, but could you tell me how to config checkpassword for Authentication with Ldap (open Ldap) Thanks a lot Get Your Private, Free E-mail from MSN Hotmail at http://www.hotmail.com
Re: checkpassword question
On Wed, Dec 27, 2000 at 10:24:55AM +0800, Rick Lu wrote: > I am a newbie to this list. Now, I want to authenticate SMTP and POP3 > and SMTPD and POP3D do well in the "qmaild" user which I set its uid to root id (0). > But do I have to let "qmaild" become super-user? Have any other way to do this , >because > "qmaild" super-user is not good enough to me. 1) it's a really bad idea to set the uid of qmaild to zero. this will have no effect, until you completely recompile the qmail package. 2) what exactly is your problem? \Maex -- SpaceNet AG | http://www.Space.Net/ | Stress is when you wake Research & Development| mailto:[EMAIL PROTECTED] | up screaming and you Joseph-Dollinger-Bogen 14 | Tel: +49 (89) 32356-0| realize you haven't D-80807 Muenchen | Fax: +49 (89) 32356-299 | fallen asleep yet.
ANNOUNCE: Checkpassword replacement
Hello, I have been thought for a long time of setting up msa-auth server using qmail. The idea is simple. Several hosts with no relay, and one host with qmail-msa. The client MUA sends smtp-auth: login: login%other.server.com pass: pop3passfromthatserver Qmail-smtpd checks via pop3 or imap that password on other.server.com; accepts mail for relay if it is proper. It is very good idea for big networks, setting up such a centralised server. A Zmailer solution, made by Artur Urbanowicz (see http://www.zmailer.org/mhalist/1999/msg00605.html) is introduced for example at http://msa.lublin.pl/ in LubMAN network, Poland. But I have decided to set up qmail solution. I wrote checkpassword replacement which invokes fetchmail -c (idea is the same). It requires /etc/remotehosts file with domains and hosts allowed to authorize. For example: # coments start with hash, allowed hosts or domains are colon delimited :host1.domain.com: :.host2.com: Complete code is available at http://www.liap.eu.org/checkremote/ I have been tested it with Mrs.Brisby qmail-smtp-auth patch, and it works fine. But qmail-smtpd patched like that is very slow, even with original checkpassword. If you have any suggestion or bug reports please send it to me. And an ask for qmail.org webmasters -is my code good enough to add info about my program to qmail website? Regards, -- * Lukasz Komsta * ICQ 14892426 * http://www.luke.eu.org/ *
Re: Perl checkpassword
On Tue, Feb 06, 2001 at 12:17:44PM -0600, Larry M. Smith is the BPFH wrote: > Someone had asked for this some time ago... But I forget who or when. > > DJB, if you would, please archive locally to www.qmail.org. That would be [EMAIL PROTECTED], aka Russ Nelson, but I'm sure he'll see the message. Regards.
pam-checkpassword .diff ?
Hi... I'm trying to achieve a authentication system by which all pop3 and IMAP accounts are authenticated via our PDC(NT4). The IMAP authentication works well using pam_smb but given that qmail-pop3d needs to use checkpass I need to patch it to support PAM. Which brings me to my question... does anyone use pam-checkpassword ? http://www.glasswings.com.au/qmail/pam-checkpassword-0.81-diffs As I'm a relative newbie when it comes to matters regarding patching and .diff's, I need to know what I have to do with the .diff file. I have tried to contact "Kelley L" at "[EMAIL PROTECTED]" with no success (bounced email) Can anyone offer any advice? Cheers Dennis
checkpassword (pop3d) problem
Hello, I using qmail-1.03 and I compiled checkpassword-0.90 and vpopmail-4.9.8-1. But it will not work with qmail-pop3d. my boot script : #!/bin/sh HOST=`192.168.0.100` CHKPASS="/home/vpopmail/bin/vchkpw" COMMAND="/var/qmail/bin/qmail-pop3d" exec tcpserver -R -H 0 110 /var/qmail/bin/qmail-popup \ $HOST $CHKPASS $COMMAND Maildir & I make a telnet to my localhost to port 110, and the qmail respond me. I put the user name : arqam , and the passwd : password But I get some error "ERR this user has no $HOME/Maildir". What's wrong? telnet 192.168.0.100 110 Trying 192.168.0.100... Connected to 192.168.0.100. Escape character is '^]'. +OK <17257.983161225@/home/vpopmail/bin/vchkpw> user [EMAIL PROTECTED] +OK pass password -ERR this user has no $HOME/Maildir Connection closed by foreign host. Thank's | Abu Arqam |
multiple checkpassword routines
I have some domains in vpopmail and some in vmailmgr, both of which need to do POP. Before I go requesting another IP address, is there a checkpassword dropin that actually executes an arbitrary number of other checkpassword dropins and, finding one that works, executes the rest of the command line? Does that make sense? Thanks for the help, /pg -- Peter Green : Gospel Communications Network, SysAdmin : [EMAIL PROTECTED] --- Linux! Guerrilla UNIX Development Venimus, Vidimus, Dolavimus. (By [EMAIL PROTECTED], Mark A. Horton KA4YBR)
PAM-enabled checkpassword?
Is there a PAM-enabled checkpassword? www.qmail.org has a link to a patch for checkpassword-0.81, but the only version available now seems to be checkpassword-0.90.
SMTP AUTH + MYSQL Checkpassword
Hi, I've read all that I can find on the subject and tried to build this setup a few different ways with a few peoples patches and all with no luck. I built checkpassword .9 setup for MySQL... if I test it it works. I built qmail-smtpd with the patch to authenticate and call checkpassword. Eric M. Johnston's YAQSAP. Unfortunately when I put it together it doesn't work. The behavior I see is that it does not respond to the connection and I also see another qmail-smtpd process fire up and get stuck. I can make a check password that always _exit(1) or _exit(0) and then the authentication process seems to work... the dialog box pops up in Outlook. Any ideas? Even some suggestions on how to better debug would be great because I find that qmail-smtpd does not log any error messages. Thanks, Steve
Re: checkpassword and sasl
jeremy brand <[EMAIL PROTECTED]> wrote: > > The main ingredient (I think) that I am missing is a checkpassword > compatible program that will talk to the /etc/sasldb user database. I > want to do SMTP AUTH against this same sasl database. A checkpassword replacement than handles sasl (whatever that is) is, indeed, the missing piece you need. > The cmd5chkpasswd mentions something about sasl, but it donen't link to > the sasl libraries, or open /etc/sasldb itself. DJB's checkpassword (if I > remember) only does /etc/poppasswd checks. > > I think if I had a checkpassowrd compatible program for sasl, then I could > use that as an argument for the patched qmail-smtpd. > > Is there anyway to do this? Can SASL be made to work with PAM, and does your OS support PAM? If so, you could use a PAM-enabled checkpassword -- there is at least one version out there, mentioned at qmail.org, I believe. Charles -- --- Charles Cazabon<[EMAIL PROTECTED]> GPL'ed software available at: http://www.qcc.sk.ca/~charlesc/software/ ---
Re: checkpassword and sasl
Hi Charles, > Can SASL be made to work with PAM, and does your OS support PAM? If so, > you could use a PAM-enabled checkpassword -- there is at least one > version out there, mentioned at qmail.org, I believe. Ah, that is a good thought. I will have to check into that. FYI, sasl: http://asg2.web.cmu.edu/sasl/ SASL can use PAM, I don't know if PAM can use SASL. Jeremy
Re: ssh and checkpassword
At 19:51 1999-05-19 -0700, you wrote: >Has anyone successfully used ssh to provide a secure channel >for POP3 authentication? Yes... take a look at http://www.linux-howto.com/LDP/HOWTO/mini/Secure-POP+SSH.html >Actually, I'm looking for a more general case of secure >checkpassword authentication for any tcpserver app. You'll understand how to do that if you read the howto but it will probably give your users more work. I'm thinking of combining a webinterface with SSL when it comes to POP3. --- Joergen Persson Sysadmin TLTH
Re: ssh and checkpassword
Hi! [EMAIL PROTECTED] wrote: > > Has anyone successfully used ssh to provide a secure channel > for POP3 authentication? > > Actually, I'm looking for a more general case of secure > checkpassword authentication for any tcpserver app. > There is an utility called sslwrap that might help. What it does is create an SSL encrypted link for services that usualy start from inetd (and maybe tcpserver). You can find it at: http://www.rickk.com/sslwrap/ Nuno Andrade [ Sysadmin @ Centro de Comunicacoes da Universidade do Minho ] -- "...we shall wrestle gravity, capture Light, shrink Time, measure Space and survive, man within machine within God." - Ray Bradbury
Re: vchkpw / checkpassword error
Coby Randquist <[EMAIL PROTECTED]> wrote: > >pop-3 stream tcp nowait root /var/qmail/bin/qmail-popup qmail-popup >mydomain.com /home/popusers/vin/vchkpw /var/qmail/bin/qmail-pop3d Maildir If that "vin" is really "vin", that could be a problem, especially if the directory is actually called "bin". >Where do I go from here in trouble shooting this issue? www.qmail.org has some tips. Also, search the list archives. -Dave
Re: SQL enabled checkpassword
We use a own modified checkpassword to authenticate the users against Radiator (Radius) that again SQL query against Informix SQL server. Mostly this is a custom built solution, but I don't think it should be to hard to implement this on other sites. I'm kind of strict regarding not to alter to much of home made code, for later upgrading purposes. This is why Qmail is so perfect with it's module support. --- IDG New Media Einar Bordewich System Manager Phone: +47 2205 3034 E-Mail: [EMAIL PROTECTED] --- - Original Message - From: Jonathan Herbert <[EMAIL PROTECTED]> To: <[EMAIL PROTECTED]> Sent: Tuesday, September 14, 1999 6:12 PM Subject: SQL enabled checkpassword Hi Gang, Perhaps this has been covered in the past, perhaps even recently, but does there exist a checkpassword which can authenticate against a SQL database? Last i heard Ken from inter7 was working on integrating this functionality into vchkpw. Thanks, Jonathan W. Herbert
Re: SQL enabled checkpassword
Yes, I have seen it either at the qmail home page, or at the MySQL home www.tcx.se - Original Message - From: Jonathan Herbert <[EMAIL PROTECTED]> To: <[EMAIL PROTECTED]> Sent: Tuesday, September 14, 1999 9:12 AM Subject: SQL enabled checkpassword Hi Gang, Perhaps this has been covered in the past, perhaps even recently, but does there exist a checkpassword which can authenticate against a SQL database? Last i heard Ken from inter7 was working on integrating this functionality into vchkpw. Thanks, Jonathan W. Herbert
Shadow Password and checkpassword
Hi! After looking through the archive, is checkpassword able to authenticate shadow passwords? I've got a RH 6 box running qmail, but I don't seem to be able to authenticate through pop3. Please do advise, I'm close to ripping my hair out ;-) Hak Beng Singapore
Re: checkpassword and Unixware
Hitesh Patel writes: > I'm trying to get checkpassword working on my UnixWare 7.x box There's a separate mailing list for checkpassword. Subscribe to that list, and send a copy of the UnixWare shadow password documentation, and perhaps someone will be able to help you. ---Dan
Re: checkpassword and Unixware
On Mon, 11 Jan 1999, Hitesh Patel wrote: > By the way... the system does use shadow passwords and I > think this has something to do with my problem.. i've tried including > -lshadow but that wont work because there is no -lshadow on my unixware > boxes... Maybe this one is included with the checkpassword-PAM-patch available somewhere on www.qmail.org? Regards Mirko -- mailto:[EMAIL PROTECTED] http://sites.inka.de/picard
Re: HELP: need Checkpassword
Patrick Paysant writes: > Is there someone nice enough to send the checkpassword > package from Dan Bernstein to me by e-mail. > > I try a dozen times since two weeks to access > http://pobox.com/~djb/, it's impossible ! Try ftp://koobera.math.uic.edu. Or if that fails, try ftp://ftp.qmail.org/pub/koobera.math.uic.edu. -- -russ nelson <[EMAIL PROTECTED]> http://crynwr.com/~nelson Crynwr supports Open Source(tm) Software| PGPok | There is good evidence 521 Pleasant Valley Rd. | +1 315 268 1925 voice | that freedom is the Potsdam, NY 13676-3213 | +1 315 268 9201 FAX | cause of world peace.
Re: HELP: need Checkpassword
Patrick Paysant wrote: > Hi, > > Is there someone nice enough to send the checkpassword > package from Dan Bernstein to me by e-mail. > Do you mean the RPM ? Kevin
checkpassword is the problem.
checkpassword-0.81 with pam mods seems not to be able to handle a shadow passwd file over a certain amount of users. Mine has about 4000 users and it takes a year for it to find the passwd. Any ideas on what I can do to get rid of this problem? Reid Sutherland Network Administrator ISYS Technology Inc. http://www.isys.ca Fingerprint: 1683 001F A573 B6DF A074 0C96 DBE0 A070 28BE EEA5
Re: checkpassword and pop
> But when he does kick off this 100 requests at one time qmail spawns > a lot of pop3 processes and then after 30-50 has been executed pop3 > dies completely - why ? And what can I do to make the system able to > handle this kind of (ab)use ? I would think you run pop3 from inetd and when suddenly someone starts 100 simultaneous connections, inetd freaks out and slams the brakes. If I'm right, the solution is to kick inetd and use xinetd or, preferably, tcpserver. -- Petr Novotny, ANTEK CS [EMAIL PROTECTED] http://www.antek.cz -- Don't you know there ain't no devil there's just God when he's drunk. [Tom Waits]
Re: checkpassword and pop
This is so true. Inetd blows. Reid Sutherland Network Administrator ISYS Technology Inc. http://www.isys.ca Fingerprint: 1683 001F A573 B6DF A074 0C96 DBE0 A070 28BE EEA5 -Original Message- From: Petr Novotny <[EMAIL PROTECTED]> To: [EMAIL PROTECTED] <[EMAIL PROTECTED]> Date: Wednesday, April 21, 1999 9:02 AM Subject: Re: checkpassword and pop > But when he does kick off this 100 requests at one time qmail spawns > a lot of pop3 processes and then after 30-50 has been executed pop3 > dies completely - why ? And what can I do to make the system able to > handle this kind of (ab)use ? I would think you run pop3 from inetd and when suddenly someone starts 100 simultaneous connections, inetd freaks out and slams the brakes. If I'm right, the solution is to kick inetd and use xinetd or, preferably, tcpserver. -- Petr Novotny, ANTEK CS [EMAIL PROTECTED] http://www.antek.cz -- Don't you know there ain't no devil there's just God when he's drunk. [Tom Waits]
qmail-popup/checkpassword information
Where can I find out exactly what the gazintas/gazoutas are for checkpassword? I need to use a non-standard user/password file, and have to modify a login program to work for the pop logins.
Re: problem qmail / checkpassword
On Tue, Dec 21, 1999 at 08:27:05PM +0100, Michael Neubert wrote: > I'm an newbie to qmail (and also linux) and hope to find help. You've come to the right place. > michael:~ # /var/qmail/bin/qmail-popup host /bin/checkpassword pwd > +OK <548.945710015@host> > user linux > +OK > pass 12345 > /home/linux > michael:~ # > > I have already checked the rights of /var/qmail... and > /bin/checkpassword. All looks like described in the qmail > INSTALL...-files. You probably have shadow passwords. These cannot be read by any user but root. This means that checkpassword needs to be 'set user id root', suid root for short. Try this: chown root:root /bin/checkpassword chmod +s /bin/checkpassword Regards, bert hubert. -- +---+ | http://www.rent-a-nerd.nl | nerd for hire | | +---+ | - U N I X - | | Inspice et cautus eris - D11T'95
Re: problem qmail / checkpassword
On Tue, Dec 21, 1999 at 08:36:07PM +0100, bert hubert wrote: > You probably have shadow passwords. These cannot be read by any user but > root. This means that checkpassword needs to be 'set user id root', suid > root for short. Try this: > > chown root:root /bin/checkpassword > chmod +s /bin/checkpassword DO NOT DO THIS. Sorry. Braino on my part. checkpassword needs to be invoked by root, it should not be suid. Regards, bert hubert. -- +---+ | http://www.rent-a-nerd.nl | nerd for hire | | +---+ | - U N I X - | | Inspice et cautus eris - D11T'95
Re: problem qmail / checkpassword
On Tue, Dec 21, 1999 at 08:40:06PM +0100, bert hubert wrote: > On Tue, Dec 21, 1999 at 08:36:07PM +0100, bert hubert wrote: > > > You probably have shadow passwords. These cannot be read by any user but > > root. This means that checkpassword needs to be 'set user id root', suid > > root for short. Try this: > > > > chown root:root /bin/checkpassword > > chmod +s /bin/checkpassword > > DO NOT DO THIS. Sorry. Braino on my part. checkpassword needs to be invoked > by root, it should not be suid. And, as ahu and I discussed on irc, a suid checkpassword is just a /bin/su with a difficult interface and no logging :) Greetz, Peter. -- Peter van Dijk - student/sysadmin/ircoper/womanizer/pretending coder | | 'C makes it easy to shoot yourself in the foot; | C++ makes it harder, but when you do it blows your whole leg off.' | Bjarne Stroustrup, Inventor of C++
Re: problem qmail / checkpassword
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On 21 Dec 99, at 20:36, bert hubert wrote: > You probably have shadow passwords. These cannot be read by any user but > root. This means that checkpassword needs to be 'set user id root', suid > root for short. Try this: > > chown root:root /bin/checkpassword > chmod +s /bin/checkpassword Huh? Since checkpassword runs as root anyway (that's who spawns it), it doesn't needs suid root. Plus, noone else should be running checkpassword (unless you are inviting everyone to a dictionary attack against passwords). In other words, DON'T EVER DO THAT! -BEGIN PGP SIGNATURE- Version: PGP 6.0.2 -- QDPGP 2.60 Comment: http://community.wow.net/grt/qdpgp.html iQA/AwUBOGCajVMwP8g7qbw/EQK+QwCeORD2HfIXMKb15jpPiRwaUWuFz2cAoKNu eitdAeSF8Lum22w374d68yLy =Q6bR -END PGP SIGNATURE- -- Petr Novotny, ANTEK CS [EMAIL PROTECTED] http://www.antek.cz PGP key ID: 0x3BA9BC3F -- Don't you know there ain't no devil there's just God when he's drunk. [Tom Waits]
Re: problem qmail / checkpassword
Petr Novotny wrote: > > > On 21 Dec 99, at 20:27, Michael Neubert wrote: > > pop3 stream tcp nowait root /var/qmail/bin/qmail-popup qmail-popup > > michael.neubert.de /bin/checkpassword /var/qmail/bin/qmail-pop3d > > /home/$USER/.mailspool/ > > Will not work. At the moment inetd is reading the file, it has no > idea what $USER means. It simply would not work this way. > > Change the "/home/$USER/.mailspool/" to simple ".mailspool" and > tell me what happened. > That's it! After changing that line the pop3-server is working fine. Thank you ( and all the others ) very much! Michael
checkpassword on Solaris 7
Hi, presently I am fighting to setup pop3 access to the qmail server. I have attempted to use both the commands/configurations from the FAQ (using tcpserver) and from the Living With Qmail doco (using inetd) and I receive the same error using both. telnet 110 +OK <18972.950238486@hostname> user +OK pass -ERR authorization failed I have confirmed that the username and password I am using is correct. Is there an underlying issue with Solaris 7 and the checkpassword program, or am I missing something else. Any help would be greatly appreciated. Thanks Mark P
Re: pop3 and checkpassword
> This is what happens when I telnet port 110. > #telnet mail.server 110 > trying xxx.xxx.xxx.xxx > connected to mail server > Escape character is '^]' > +ok <573.950693006@INIT VERSION=sysvinit-2.74 > user mike > +ok > pass gomike > -ERR authorization failed > Connection closed by foreign host > > I can't for the life of me figure out what the problem is! I have red all > the checkpassword doc's and qmail faq's I can fined but see nothing on this > problem. The most common problem is that the line you're using to start up the POP3 daemon doesn't have the correct path to the password checking program. For example, with: env - PATH="/var/qmail/bin:/usr/local/bin" tcpserver 0 pop-3 /var/qmail/bin/qmail-popup codon.com /virtuals/bin/vchkpw /var/qmail/bin/qmail-pop3d Maildir & the "/virtuals/bin/vchkpw" is the program used by the daemon to check the user's password. Check and make sure that your startup line points to a program that actually exists. : ) steve
Re: pop3 and checkpassword
On Wed, Feb 16, 2000 at 10:33:10PM +1300, kiwitp wrote: > Escape character is '^]' > +ok <573.950693006@INIT VERSION=sysvinit-2.74 the qmail-popup command (more precisely the "main" function) was started with a garbled command line and environment. That is, it thinks "INIT VERSION=sysvinit-2.74" is the host name ... how do you start it? Regards, Uwe
checkpassword and Openbsd 2.6
I am using Openbsd 2.6 and I am having a problem with checkpassword. When I do the test in the install doc for checkpassword /var/qmail/bin/qmail-popup host /bin/checkpassword pwd It works fine, verifies my user id and password. When I try to telnet to the server using it's fqdn on port 110 I get this: atlas# telnet atlas.teoi.net 110 Trying 206.30.147.56... Connected to atlas.teoi.net. Escape character is '^', +OK ([EMAIL PROTECTED]) user dale +OK pass mypass -ERR authorization failed Connection closed by foreign host. atlas# If I telnet to localhost i get the same error as above but the line with the numbers@atlas etc has different numbers. The same happens if I try this from any machine in my subnet. Here is what one of my machines with win98se & outlook express (the one for IE5) spit out at me There was a problem logging onto your mail server. Your Password was rejected. Account: 'atlas.teoi.net', Server: 'atlas.teoi.net', Protocol: POP3, Server Response: '-ERR authorization failed', Port: 110, Secure(SSL): No, Server Error: 0x800CCC90, Error Number: 0x800CCC92 I can send mail out and get it at the destination address with out any problems. I have tried turning on and off the "require authentication" option in outlook but no luck...gave me another error which was obvious (not running ssh/ssl on the pop3d). I haven't tried this in netscape communicator's mail, the only machine I have it on is mine running RH61 and ns 4.61. I am using the win98 box with outlook so I don't have to mess with my netscape on my machine. I'm going to replace my slackware box with the openbsd eventually. Another thing I noticed is my pop3 sessions are getting logged, splogger is logging my smtp but they are setup the same as far as I know. Here are my start up's for both: if [ -x /usr/local/bin/tcpserver ]; then echo -n ' Qmail-smtp'; /usr/local/bin/tcpserver -x /etc/tcp.smtp.cdb -v -u 2850 -g 32750 0 smtp /var/qmail/bin/qmail-smtpd 2>&1 \ /var/qmail/bin/splogger smtpd 3 & fi if [ -x /usr/local/bin/tcpserver ]; then echo -n ' Qmail-pop3'; /usr/local/bin/tcpserver -v -R 0 pop3 /var/qmail/bin/qmail-popup atlas.teoi.net \ /bin/checkpassword /var/qmail/bin/qmail-pop3d Maildir 2>&1 \ /var/qmail/bin/splogger pop3d 3 & fi Please let me know if this wrong, it appears to work for the smtp without a problem. I saw an example on one of the web sites that put a | right after 2>&1 and when I did that splogger wouldn't load...error said it couldn't find it. I took the | out and and it loaded but pop3d is only one not logging. Thanks in advance for any ideas/suggestions. Dale
Re: Checkpassword for OpenBSD
jon wrote: > Dear fellows, > > #1. OpenBSD gots a port for checkpassword, its in > /usr/ports/mail/checkpassword.. > > #2, are you sure its /bin/checkpassword and not /usr/local/bin/checkpassword? > > #3, OpenBSD 2.7-beta is out, try it, its great... > > #4, is your checkpassword executable and owned by root.wheel? > so it can check /etc/master.passwd... > > Jonathan Fortin > > Revelex System Administrator I have tried the one in /usr/ports/mail/checkpassword and I have tried the one off of the checkpassword web site. The difference is the one off of the checkpassword web site installs in /bin/checkpassword and the ports one installs in /usr/local/bin/checkpassword . Other wise they are the same size and version. They both work using the test in the install doc but will not work telnet'ing to the pop3 server. Both of them are owned by root.wheel . Thanks, Dale
Re: Checkpassword for OpenBSD
On Sat, May 06, 2000 at 03:27:58PM -0400, Dale Miracle wrote: > jon wrote: > > > Dear fellows, > > > > #1. OpenBSD gots a port for checkpassword, its in > > /usr/ports/mail/checkpassword.. > > > > #2, are you sure its /bin/checkpassword and not /usr/local/bin/checkpassword? > > > > #3, OpenBSD 2.7-beta is out, try it, its great... > > > > #4, is your checkpassword executable and owned by root.wheel? > > so it can check /etc/master.passwd... Ownership does not matter. Running as root (BUT DON'T SUID IT!) does. Greetz, Peter. -- Peter van Dijk - student/sysadmin/ircoper/madly in love/pretending coder | | 'C makes it easy to shoot yourself in the foot; | C++ makes it harder, but when you do it blows your whole leg off.' | Bjarne Stroustrup, Inventor of C++
Re: checkpassword with Ldap
On Mon, Jun 26, 2000 at 07:15:19AM +, Nguyen Hong Son wrote: > Hi all > I installed qmail on big server, it work perfectly with SpWebMail, but could > you tell me how to config checkpassword for Authentication with Ldap (open > Ldap) You don't. At least, not like that. But... There's hope for you ;-) Check out qmail-ldap's home, at http://www.nrg4u.com/ Also... Subscribe qmail-ldap's list (instruccions can be found at the bottom of that page). Most bugs and patches come out from there. Regards; Ricardo -- +--- | Ricardo Cerqueira | PGP Key fingerprint - B7 05 13 CE 48 0A BF 1E 87 21 83 DB 28 DE 03 42 | Novis - Engenharia ISP / Rede Técnica | Pç. Duque Saldanha, 1, 7º E / 1050-094 Lisboa / Portugal | Tel: +351 21 3166730/00 (24h/dia) - Fax: +351 21 3166701
Checkpassword with Plaintext auth
i need to compile checkpassword to use mysql plain- text password only !! ~~ what are the steps i should do ?? i compiled checkpassword with mysql patch, these works fine, but i see in the mysql log entry that he reads the crypt and noch the plaintext field as password. if i let the crypt field empty i can login, so im sure thats only because checkpwd reads the false.. be coming crazy to find out how i can compile checkpassword to use plaintext for mysql and qmail, im standing now here any body knows what exactly is to do ??? i found some doc files, and web sites but nothing util, you have one other ? thanks you 4 all ... mike
Re: Re: checkpassword question
Hello, Thanks Maex. as we all know, there are two super-user functions in checkpassword package: setuid & setgid. because qmaild is only a normal user in nofiles group, so he has no privilege to call these codes. it will show "-ERR authorization failed". My question is that how qmaild user can use checkpassword and I do not have to set the uid of this user to zero. >1) it's a really bad idea to set the uid of qmaild to zero. > this will have no effect, until you completely recompile the qmail > package. >2) what exactly is your problem? > > \Maex > Xin Lu [EMAIL PROTECTED]
Re: Re: checkpassword question
On Thu, Dec 28, 2000 at 10:13:56AM +0800, Rick Lu wrote: > as we all know, there are two super-user functions in checkpassword package: setuid >& > setgid. > > because qmaild is only a normal user in nofiles group, so he has no privilege to >call > these codes. it will show "-ERR authorization failed". Typically qmail-pop3d is started from tcpserver like: /usr/local/bin/tcpserver -R -v -c 150 0 pop3 \ /var/qmail/bin/qmail-popup \ /var/qmail/bin/checkpassword \ /var/qmail/bin/qmail-pop3d Maildir 2>&1 \ | /var/qmail/bin/splogger qmail-pop3d 17 & That is qmail-popup (and checkpassword) is started as root and not as user qmaild and so everything will just work fine and checkpassword is able to use the setuid/setgid calls to set the user to the authenticated one. \Maex -- SpaceNet AG | http://www.Space.Net/ | Stress is when you wake Research & Development| mailto:[EMAIL PROTECTED] | up screaming and you Joseph-Dollinger-Bogen 14 | Tel: +49 (89) 32356-0| realize you haven't D-80807 Muenchen | Fax: +49 (89) 32356-299 | fallen asleep yet.
Re: checkpassword (pop3d) problem
Abu Arqam <[EMAIL PROTECTED]> wrote: > > I using qmail-1.03 and I compiled checkpassword-0.90 and vpopmail-4.9.8-1. [...] > But I get some error "ERR this user has no $HOME/Maildir". What's wrong? The user has no $HOME/Maildir/. Seriously -- the error message tells you exactly what's wrong. However, it does make the following assumptions: -you know what a Maildir is -since you've chosen to use qmail-pop3d, which only supports Maildirs, it assumes you've properly created Maildirs for your users So, did you create a Maildir for the user? Is it located in their home directory, and named "Maildir"? Does the user own their home directory and the Maildir? Charles -- --- Charles Cazabon<[EMAIL PROTECTED]> GPL'ed software available at: http://www.qcc.sk.ca/~charlesc/software/ Any opinions expressed are just that -- my opinions. ---
Re: multiple checkpassword routines
On Mon, Mar 19, 2001 at 04:08:41PM -0500, Peter Green wrote: > I have some domains in vpopmail and some in vmailmgr, both of which need to > do POP. Before I go requesting another IP address, is there a checkpassword > dropin that actually executes an arbitrary number of other checkpassword > dropins and, finding one that works, executes the rest of the command line? > > Does that make sense? Thanks for the help, Shouldn't a simple shell script as a wrapper do the trick?? Starting tcpserver something like: tcpserver 0 pop3 qmail-popup myhost.invalid \ mycheckpasswd qmail-pop3d Maildir Jörgen
Re: multiple checkpassword routines
* Jörgen Persson <[EMAIL PROTECTED]> [010320 04:24]: > On Mon, Mar 19, 2001 at 04:08:41PM -0500, Peter Green wrote: > > I have some domains in vpopmail and some in vmailmgr, both of which need to > > do POP. Before I go requesting another IP address, is there a checkpassword > > dropin that actually executes an arbitrary number of other checkpassword > > dropins and, finding one that works, executes the rest of the command line? > > > > Does that make sense? Thanks for the help, > > Shouldn't a simple shell script as a wrapper do the trick?? Starting > tcpserver something like: > > tcpserver 0 pop3 qmail-popup myhost.invalid \ > mycheckpasswd qmail-pop3d Maildir Sure, but the mycheckpasswd part is hanging me up. Specifically, writing to the numbered FDs is hanging me up, and I didn't have a lot of time to figure this out, so I was hoping something already existed. If anyone could whip up the important bits (the IO redirection and the execution string), I could easily figure out the rest. And I'd be extremely grateful. :-) Thanks, /pg -- Peter Green : Gospel Communications Network, SysAdmin : [EMAIL PROTECTED] --- "And it _really_ moves" G Galilei (Linus Torvalds, announcing a yet better kernel)
Re: multiple checkpassword routines
On Tue, Mar 20, 2001 at 06:26:35AM -0500, Peter Green wrote: [snip] > Sure, but the mycheckpasswd part is hanging me up. Specifically, writing to > the numbered FDs is hanging me up, and I didn't have a lot of time to figure > this out, so I was hoping something already existed. > > If anyone could whip up the important bits (the IO redirection and the > execution string), I could easily figure out the rest. And I'd be extremely > grateful. :-) > > Thanks, Sorry for the delay but I'm at work... Well, here's some help with the file descriptors, I tested the following successfully under bash-2.03. # checkpassword echo $? 3< /tmp/dummypwd 0 # od -c /tmp/dummypwd 000 d u m m y \0 d u m m y d u m m y 020 \0 9 8 5 0 9 3 2 3 9 004 Check out http://cr.yp.to/checkpwd/interface.html G'luck Jörgen
Re: multiple checkpassword routines
On Tue, Mar 20, 2001 at 03:27:07PM +0100, Jörgen Persson wrote: [snip] > # checkpassword echo $? 3< /tmp/dummypwd > 0 [snip] I realized $? is misleading since it's the previous error code. Change it to ''pwd'' or whatever: # checkpassword pwd 3< /tmp/dummypwd /home/dummy # echo $? 0 # checkpassword pwd 3< /tmp/badpwd # echo $? 1 Jörgen
Re: multiple checkpassword routines
* Jörgen Persson <[EMAIL PROTECTED]> [010320 09:27]: > On Tue, Mar 20, 2001 at 06:26:35AM -0500, Peter Green wrote: > [snip] > > Sure, but the mycheckpasswd part is hanging me up. Specifically, writing to > > the numbered FDs is hanging me up, and I didn't have a lot of time to figure > > this out, so I was hoping something already existed. > > > > If anyone could whip up the important bits (the IO redirection and the > > execution string), I could easily figure out the rest. And I'd be extremely > > grateful. :-) > > > > Thanks, > > Sorry for the delay but I'm at work... Well, here's some help with the > file descriptors, I tested the following successfully under bash-2.03. > > # checkpassword echo $? 3< /tmp/dummypwd > 0 > # od -c /tmp/dummypwd > 000 d u m m y \0 d u m m y d u m m y > 020 \0 9 8 5 0 9 3 2 3 9 004 > > Check out http://cr.yp.to/checkpwd/interface.html Thanks for the help, Jörgen! However, it wasn't the format of the string checkpassword (and friends) expects; it's the IO. For example, let's say I wanted to do this in bash2. I might do, simply: #!/bin/bash2 # check vmailmgr first; save the environment # /tmp/scr just executes /usr/bin/id ENVIRON = $(/usr/bin/checkvpw /tmp/scr Maildir/) rc=$? if [ $rc -ne 0 ]; then # failed; try vpopmail ENVIRON = $(/usr/local/vpopmail/bin/vchkpw /tmp/scr Maildir/) rc=$? if [ $rc -ne 0 ]; then # failed all echo "-ERR Authorization failed" exit $rc else export $ENVIRON exec qmail-pop3d "$@" fi else export $ENVIRON exec qmail-pop3d "$MAILDIR" fi It mostly works, since all child processes inherit FD 3 properly. However, if the first method fails, it cannot try the second method, since FD 3 has already hit EOF; how can I rewind this from bash? Also, if it succeeds, the exec line simply does not work; the error is always ``-ERR this user has no $HOME/Maildir''. I have double-checked the environment with ``env>>/tmp/debug'' after the export call, and home get set properly. This is simply out of my league, I think. Any additional thoughts before I throw in the towel? Would this be useful for other situations? Thanks for the continued help! /pg -- Peter Green : Gospel Communications Network, SysAdmin : [EMAIL PROTECTED] --- If Bill Gates is the Devil then Linus Torvalds must be the Messiah. (Unknown source)
Re: multiple checkpassword routines
On Tue, Mar 20, 2001 at 12:36:13PM -0500, Peter Green wrote: [snip] > #!/bin/bash2 > > # check vmailmgr first; save the environment > # /tmp/scr just executes /usr/bin/id > ENVIRON = $(/usr/bin/checkvpw /tmp/scr Maildir/) > rc=$? > if [ $rc -ne 0 ]; then > # failed; try vpopmail > ENVIRON = $(/usr/local/vpopmail/bin/vchkpw /tmp/scr Maildir/) > rc=$? > if [ $rc -ne 0 ]; then > # failed all > echo "-ERR Authorization failed" > exit $rc > else > export $ENVIRON > exec qmail-pop3d "$@" > fi > else > export $ENVIRON > exec qmail-pop3d "$MAILDIR" > fi > > It mostly works, since all child processes inherit FD 3 properly. However, > if the first method fails, it cannot try the second method, since FD 3 has > already hit EOF; how can I rewind this from bash? Also, if it succeeds, the > exec line simply does not work; the error is always ``-ERR this user has no > $HOME/Maildir''. I have double-checked the environment with > ``env>>/tmp/debug'' after the export call, and home get set properly. [snip] You can rewind by saving FD3 to an ordinary file. Try this example: #! /bin/sh exec 0<&3 cat>/tmp/pwd exec 3
Re: multiple checkpassword routines
[ I've taken this off-list since (a) you seem to be the only person helping, and (b) debugging scripts isn't really on-topic. :-) ] * Jörgen Persson <[EMAIL PROTECTED]> [010320 19:04]: > You can rewind by saving FD3 to an ordinary file. Try this example: Great! > I don't know if you mind the file /tmp/pwd or if it is possible to get > rid of it at all but pop is insecure anyway -- don't forget to create a > unique file instead (and to remove it after the session). Right. > I had the same problem with $HOME/Maildir when I started qmail-pop3d by > itself... > > This example isn't all good since qmail-pop3d terminates directly :) Here's the latest: #!/bin/sh exec 0<&3 cat>/tmp/auth.info exec 3> /tmp/debug if [ $rc -ne 0 ]; then echo "vpopmail failed" >> /tmp/debug exec 3> /tmp/debug exit "$rc" Obviously, the ``echo "exit:...'' line and following are never reached, since both conditions of the if-else result in an exec. So it probably isn't needed. However, I cannot get an interactive POP session at all. Here's what happens when I use a vpopmail/vchkpw user: (pcg@rome) ~> telnet localhost 1100 Trying 127.0.0.1... Connected to localhost.localdomain. Escape character is '^]'. +OK <[EMAIL PROTECTED]> user [EMAIL PROTECTED] +OK pass +OK +OK Connection closed by foreign host. [log] rc1: 0 And here's what happens when I use a vmailmgr/checkvpw user: (pcg@rome) ~> telnet localhost 1100 Trying 127.0.0.1... Connected to localhost.localdomain. Escape character is '^]'. +OK <[EMAIL PROTECTED]> user [EMAIL PROTECTED] +OK pass st0rmfel +OK Connection closed by foreign host. [log] rc1: 3 vpopmail failed Both times, authentication succeeds, but the connection just dies. Any other ideas? BTW, I am really sorry if this is easy stuff, or if I'm wasting your time. If you need to be doing something else, please let me know and I'll leave you alone. Otherwise, thank you a whole bunch for your patience! :-) /pg -- Peter Green : Gospel Communications Network, SysAdmin : [EMAIL PROTECTED] --- Sometimes when I feel like killing someone, I do a little trick to calm myself down. I'll go over to the persons house and ring the doorbell. When the person comes to the door, I'm gone, but you know what I've left on the porch? A jack-o-lantern with a knife stuck in the side of it's head with a note that says: 'You.' After that I usually feel a lot better, and no harm done. (Jack Handey)
Re: multiple checkpassword routines
Oops, sent that last message to the list. Sorry, all. /pg -- Peter Green : Gospel Communications Network, SysAdmin : [EMAIL PROTECTED] --- Instead of a trap door, what about a trap window? The guy looks out it, and if he leans too far, he falls out. Wait. I guess that's like a regular window. (Jack Handey)
[SOLVED] multiple checkpassword routines
With significant help from both Jörgen Persson and Bruce Guenter, I was able to concoct a script that allows both vpopmail and vmailmgr users to authenticate on the same POP3 port, same IP address. The authentication information is stored in a file on the filesystem, owned by root.root, 0600 permissions. The filename is not necessarily random, but was about as good as I could think of: PID + TCPREMOTEPORT + "." + date. Any suggestions are certainly welcome. Thanks again to everyone who helped! /pg -- Peter Green : Gospel Communications Network, SysAdmin : [EMAIL PROTECTED] --- > How about the startup code? Is that freed from GPL? Eyes: n, devices used to examine things to find answers. Fingers: n, devices uses far too much to ask questions before Eyes (qv) have been applied to problem documentation. (An answer by Alan Cox on the Linux kernel list.) multichkpw.sh
Checkpassword & PAM on Solaris
Is anyone using the pam-checkpassword-0.81-diffs on Solaris? I've been trying to build it on a Solaris 7 box, but it appears that I lack some of the PAM header files that the patch uses. $ make ./compile log_pam.c log_pam.c:23: security/pam_misc.h: No such file or directory log_pam.c:26: security/pam_filter.h: No such file or directory make: *** [log_pam.o] Error 1 I can't find them on any version of Solaris that we're running. My /usr/include/security includes only pam_appl.h and pam_modules.h. I'm guessing they're Linux-specific? If anyone is using the patch on Solaris, I would really appreciate knowing where you obtained the files. We're moving toward LDAP for authentication, and using the PAM-enabled checkpassword with the pam_LDAP module from padl.com seemed like the path of least resistance for POP3. We're currently using sendmail for our MTA; otherwise, we'd probably go with qmail-ldap (may still in the end). We use the qmail POP3 service to handle our Maildir mailboxes. Sorry for the newbie question. :-) Thanks for your time! Dawn Lee [EMAIL PROTECTED]
Re: SMTP AUTH + MYSQL Checkpassword
> Hi, > > I've read all that I can find on the subject and tried to build this > setup a few different ways with a few peoples patches and all with no > luck. > > I built checkpassword .9 setup for MySQL... if I test it it works. > > I built qmail-smtpd with the patch to authenticate and call checkpassword. > Eric M. Johnston's YAQSAP. > > Unfortunately when I put it together it doesn't work. The behavior I see > is that it does not respond to the connection and I also see another > qmail-smtpd process fire up and get stuck. I can make a check password that > always _exit(1) or _exit(0) and then the authentication process seems to > work... the dialog box pops up in Outlook. > > Any ideas? Even some suggestions on how to better debug would be great > because I find that qmail-smtpd does not log any error messages. While I wasn't using the checkpassword setup for MySQL (I'm using the 4.10.x series of vpopmail), I had a similar experiance. Make sure that the checkpassword program that you are using is written so it's using exit(1) not exit(0) for everything except a successfull authentication. Once I made those changes to vchkpw, it worked like a champ. > > Thanks, > > Steve Dave W
checkpassword from the command line
I know this has been posted in the past, but I can't figure it out for the life of me. Here's what I'm trying to do: Take a username and password from user entry (CGI script). Check it against the master password database. I have tried the command-line solution given on the qmail.org homepage, but I can't make it work. Here's been my try so far : I have printed the string "user\000password\000Y123456\000" into a file using a perl script, so it turns the \000 into the null character checkpassword is looking for (I believe. I then pass the file to checkpassword like so : /bin/checkpassword /bin/id 3
Re: Unable to checkpassword Solution
Once again I have found the solution in re-installing RedHat and qmail This time there was no problems at all Redhat installed normally Qmail installed normally ezmlm installed normally Thanks particularly to Mate for his help After installing ezmlm, is it good/wise to upgrade to ezmlm.edx Kind regards Kevin
Re: checkpassword is the problem.
We maintain a linux mailserver that uses PAM and Shadow and has about 4000 users. We have had no problems with checkpassword-0.81. The problem must be somewhere else. BTW when you compiled checkpasswd did you change the encrypt function in the Makefile to -lcrypt? That is necessary for linux. chau - eric Reid Sutherland escribió: > > checkpassword-0.81 with pam mods seems not to be able to handle a shadow > passwd file over a certain amount of users. Mine has about 4000 users and it > takes a year for it to find the passwd. Any ideas on what I can do to get > rid of this problem? > > Reid Sutherland > Network Administrator > ISYS Technology Inc. > http://www.isys.ca > Fingerprint: 1683 001F A573 B6DF A074 0C96 DBE0 A070 28BE EEA5
FIXED: checkpassword qmail-pop3d problem
It helps to do a make -lcrypt in checkpassword-0.81 Damn this is fast now! Reid Sutherland Network Administrator ISYS Technology Inc. http://www.isys.ca Fingerprint: 1683 001F A573 B6DF A074 0C96 DBE0 A070 28BE EEA5
Re: qmail-popup/checkpassword information
On Fri, Apr 23, 1999 at 02:32:13PM -0400, Mark Bitting wrote: > Where can I find out exactly what the gazintas/gazoutas are for > checkpassword? I need to use a non-standard user/password file, and > have to modify a login program to work for the pop logins. The best thing to do is probably to download ftp://koobera.math.uic.edu/www/software/checkpassword-0.81.tar.gz and examine the checkpassword.c source file. It's really very straightforward. I've written a couple of patches to the above to make checkpassword use a separate POP user/password file (one a flat text file and the other a cdb database). It was done with a minumum of fuss. Chris
