Re[2]: [qmailtoaster] SA issue - again
Greetings, Eric. On 19 ??? 2006 ?., 20:05:37 you wrote: Alexey Loukianov wrote: Hello all, I'm forced to run a bunch of SA-specialized servers to be able to handle processing of all the incoming mail to the corporate servers. All the SA hosts utilize the same HA mysql for bayest storage DB, and a simple king of load-balancing for SA is achieved by built in spamc functionality. From time to time some of SA servers tend to 'stuck'. This shows up in logs like this: # qmlog -s @4000458765251acf0b74.s spamd | grep -E 'error|warn' 2006-12-19 00:53:00.508318500 [10802] warn: spamd: timeout: (300 second timeout while trying to PROCESS) at /usr/bin/spamd line 1686, GEN6356 line 254. 2006-12-19 00:53:14.979634500 [11224] warn: spamd: timeout: (300 second timeout while trying to PROCESS) at /usr/bin/spamd line 1686, GEN6395 line 337. 2006-12-19 00:53:20.724340500 [11225] warn: spamd: timeout: (300 second timeout while trying to PROCESS) at /usr/bin/spamd line 1686, GEN6400 line 319. 2006-12-19 00:53:25.781288500 [11226] warn: spamd: timeout: (300 second timeout while trying to PROCESS) at /usr/bin/spamd line 1686, GEN6403 line 300. 2006-12-19 00:53:44.309364500 [10261] warn: spamd: timeout: (300 second timeout while trying to PROCESS) at /usr/bin/spamd line 1686, GEN6428 line 319. 2006-12-19 00:58:13.590168500 [10802] error: child processing timeout at /usr/bin/spamd line 1085, GEN6359 line 334. 2006-12-19 00:58:13.590507500 [10802] error: child processing timeout at /usr/bin/spamd line 1085, GEN6359 line 334. 2006-12-19 00:58:16.081281500 [11224] error: child processing timeout at /usr/bin/spamd line 1085, GEN6401 line 664. 2006-12-19 00:58:16.081622500 [11224] error: child processing timeout at /usr/bin/spamd line 1085, GEN6401 line 664. 2006-12-19 00:58:24.804143500 [11225] error: child processing timeout at /usr/bin/spamd line 1085, GEN6401 line 253. 2006-12-19 00:58:24.804156500 [11225] error: child processing timeout at /usr/bin/spamd line 1085, GEN6401 line 253. 2006-12-19 00:58:33.883826500 [11226] error: child processing timeout at /usr/bin/spamd line 1085, GEN6406 line 321. 2006-12-19 00:58:33.883837500 [11226] error: child processing timeout at /usr/bin/spamd line 1085, GEN6406 line 321. 2006-12-19 00:58:43.214455500 [10261] error: child processing timeout at /usr/bin/spamd line 1085, GEN6430 line 1371. 2006-12-19 00:58:43.214841500 [10261] error: child processing timeout at /usr/bin/spamd line 1085, GEN6430 line 1371. From the moment the first warning shows up in the logs and until the spamd would be restarted by hand processing stucks, and all the spamd processes die after a 300 sec timeout, with a corresponding message in logs. I know that this issue is related to bayest rules, as if I turn'em off in local.cf - no hangs happen. Some time ago E.S. mentioned in list that there's an issue in current SA that might cause such timeouts, and that it's connected with SA bayest autoexpire function. No problems, turned autoexpire off in local.cf, restarted spamd, headed on to crontab and set up hourly job to force tokens expiry. Nevertheless, after about 11 hours the stuck happened again. Anybody else experiencing familiar issue? I haven't seen this problem since turning autoexpire off. Sounds like a mysql problem (either getting to or w/in). Any indications on the mysql side? Logs show that this is not a mysql problem. We've got here HA cluster for mysql with Hitachi TagmaStore AMS200 as a storage for them, so there should be no problems with mysql at all in any case. Problems are SA related, looks like a some kind of bug in it, as a simple restart of spamd fixes the things for a while. P.S. The new qmlog has grep built in. Perhaps I should've made it egrep? Still using older QMTP RPM, and I think that there's no need for qmlog to gain excess functionality. It's against The Unix Way (TM), and it will be always easier for experienced sysadm to pipe to a grep/egrep, instead of trying to remember correct opts for every utility he or she uses. -- Best regards, Alexey Loukianov mailto:[EMAIL PROTECTED] System Engineer, IT Department, Lavtech Corp - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] Replication over Internet
Thanks to Jake for the guides appreciate it very much. Cheers __ Do You Yahoo!? Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com
Re[2]: [qmailtoaster] 554 mail server permanently rejected message (#5.3.0) errors.
Greetings, Eric. On 19 ??? 2006 ?., 22:59:01 you wrote: Dan Herbon wrote: So it is safe to remove all signs of DK in the tcp.smtp file? Yes. You might want to keep DKSIGN for signing outgoing email if you've set up DK properly (generated key key and modified DNS appropriately). DKSIGN wouldn't work if you disabled DK using the instructions I originally posted in this mailing-list. Signing is done in qmail-dk, so you will need to have symlink qmail-queue to it from for signing to work. ATM qmail-dk bundled with QT causes problems with message delivery for some users, it's better to disable DK support and wait for fixed qmail-dk to appear in newer QT RPM releases (or try to use the patch I posted earlier to this list to fix qmail-dk). It's safe to keep DK-related stuff in tcprules file, as it'll free you from fetching docs later and re-creating this values back by hand. -- Best regards, Alexey Loukianov mailto:[EMAIL PROTECTED] System Engineer, IT Department, Lavtech Corp - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re[2]: [qmailtoaster] 554 mail server permanently rejected message (#5.3.0) errors.
Greetings, Dan. On 19 декабря 2006 г., 19:16:02 you wrote: I've never used a .patch file before. Can you give me some info on the best way to use the patch file? Well, it's not very easy but we can give it a try. First of all, I attach two files to this message. One is the patch for qmail-smtpd to allow verbose logging, second it a separate build tree for new qmail-dk. Before we begin I need to know, what OS do you have on your server? Most interest for me is the location of your RPMBUILD folder. In RedHat derivates it is generally located in /usr/src/redhat/. Easiest vay to find it out is to use: # locate /SPECS /home2/allukjanov/RPMBUILD/SPECS /usr/src/redhat/SPECS That is output for my system, I've got my personal separate build tree for RPMS is my homedir, as well as system-wide default CentOS4 RPMBUILD tree. Now, back to file attaches. Let us speak about smtpd patch after you would answer to my question above. As for new qmail-dk, you will have to build and install it as follows: 1.Store qmail-dk-0.6.beta.1.tar.gz somewhere on the system and chdir to that directory, then do: # mv qmail-dk-0.6.beta.1.tar.gz /the/place/you/plan/to/store/build/tree # cd /the/place/you/plan/to/store/build/tree # tar -zxvf qmail-dk-0.6.beta.1.tar.gz # cd qmail-dk # make 2. Now you will either have a successfully compiled new qmail-dk, or ended up with error messages - in that case mail them to me, I'll try to help you fix them. 3. Do the following: # cp qmail-dk qmail-dk-new # chmod 4711 qmail-dk-new # chown qmailq.qmail qmail-dk-new # mv qmail-dk-new /var/qmail/bin/ # cd /var/qmail/bin # rm -f ./qmail-queue; ln -s /var/qmail/bin/qmail-dk-new qmail-queue You're done, there's no need in restarting qmail. For qmail-dk-new to work you will have to put aprop. environment variables back to tcp.smtp file. PS. I CC this message to mailing list as this instructions might be useful for other users. -- Best regards, Alexey Loukianov mailto:[EMAIL PROTECTED] System Engineer, IT Department, Lavtech Corp qmail-dk-0.6.beta.1.tar.gz Description: GNU Zip compressed data qmail-smtpd-spf-qq-reject-logging.patch.gz Description: GNU Zip compressed data - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re[2]: [qmailtoaster] We need something to make searching qmail logs easier
Greetings, Jake. On 20 ??? 2006 ?., 0:24:54 you wrote: I have to agree. The logging in QMail plain sucks. It's almost made me switch to Postfix a few times. Unfortunately, I don't see any way of correlating the messages without modifying the patches, since there is no common discrimination between the logs. What a message is called (handle) in one log is something completely different in another log. If someone modified the various patches (a new patch, I think) to keep something common between the messages (even just a number that starts at 1 and increments) and found some way for the next daemon to keep track of this number and splice it into the logs I think we'd have something really good here. Otherwise you're at what I sent to Quinn a while back: cat * | grep [EMAIL PROTECTED] | tai64nlocal between the logs to find messages that come in at roughly the same times. I know this has given me problems in the past when multiple messages come in for the same recipient at the same time (high volume machine, LWQ based, not even Toaster). Not a solution, but my 2 cents. This trouble in qmail came from its main advantage: DJBs style of coding is strictly attached to The Unix Way (TM) of doing jobs. All tasks in qMail are done using small-and-bulletproof utilities, doing only a small part of greater job, but doing it very well. That's is the cause of trouble. Any message qMail receives through qmail-smtpd has no any unique ID until it gets queued by qmail-queue handler. After a message gets queued, and until it disappears from queue - it has an unique ID, that is taken from the basis on unix virtual file system - the file's inode number for a file containing the message in queue. It is possible (and would surely happen) for a different messages to got a same ID (inode) number, if they are not being in the queue at the same time. If we would like to change this behavior - we will have to totally rewrite all the qmail, resulting in less robust and stable MTA, with tonns of inherited code from qMail that won't fit good. In such case it's easier to switch to another MTA, instead of hacking up the stable system that do its job well. My approach is to aggregate all the logs from different services to a SQL-based database, and then to do several queries allowing me to quickly and relatively easily find all the info about any message in question. -- Best regards, Alexey Loukianov mailto:[EMAIL PROTECTED] System Engineer, IT Department, Lavtech Corp - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] RBL checker
Quinn Comendant wrote: Thanks Jake I noticed a couple things: - dig times out at 5 seconds by default, so if anybody set CEILING at more than 5 it will fail anyways, but you could set the +time=$CEILING option. - If a DNSBL is offline, won't dig return instantly with a NXDOMAIN? I guess that doesn't matter since if a DNSBL is offline it won't effect anything. You're only looking for slow responses. Quinn PS: Congrats on the new site! Thanks. It'll be a while for me to get all the scripts moved over, since I'm trying to put a lot of documentation in for the old ones. And thanks for the dig timeout thing. I'd completely forgotten about that. It's been added, and the script should now be in Unix format. Still trying to figure out how that one happened, since I wrote it on a Cent4 machine I did have to download it to my XP machine so that I could upload it to the web site, so it must've happened somewhere in there. smime.p7s Description: S/MIME Cryptographic Signature
Re: [qmailtoaster] 554 mail server permanently rejected message (#5.3.0) errors.
Alexey Loukianov wrote: Greetings, Eric. On 19 ??? 2006 ?., 22:59:01 you wrote: Dan Herbon wrote: So it is safe to remove all signs of DK in the tcp.smtp file? Yes. You might want to keep DKSIGN for signing outgoing email if you've set up DK properly (generated key key and modified DNS appropriately). DKSIGN wouldn't work if you disabled DK using the instructions I originally posted in this mailing-list. Signing is done in qmail-dk, so you will need to have symlink qmail-queue to it from for signing to work. ATM qmail-dk bundled with QT causes problems with message delivery for some users, it's better to disable DK support and wait for fixed qmail-dk to appear in newer QT RPM releases (or try to use the patch I posted earlier to this list to fix qmail-dk). It's safe to keep DK-related stuff in tcprules file, as it'll free you from fetching docs later and re-creating this values back by hand. Thanks for clearing this up, Alexey. I hope that EE can get your patches into a devel release soon. -- -Eric 'shubes' - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] RBL checker
Jake Vickers wrote: I know it's been talked about on the list before, but I finally got tired enough of RBLs taking a LONG time and wrote a quick script to check them. I know, a little late with the submission port, but better late than never. What it does is check a list of RBLs (defined in the head of the script) and see how long they take to answer. If they go above a ceiling (also defined in the head) it does not include them in the blacklists file when it regenerates them. I put up a quick posting about it on my site, and the file is also available from my site (www.v2gnu.com). If you encounter any bugs or have an improvement, please let me know! Nice new site, Jake. I love the layout (especially the color scheme) much better than the old one. Keep up the great work! -- -Eric 'shubes' - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] RBL checker
Eric Shubes wrote: Jake Vickers wrote: I know it's been talked about on the list before, but I finally got tired enough of RBLs taking a LONG time and wrote a quick script to check them. I know, a little late with the submission port, but better late than never. What it does is check a list of RBLs (defined in the head of the script) and see how long they take to answer. If they go above a ceiling (also defined in the head) it does not include them in the blacklists file when it regenerates them. I put up a quick posting about it on my site, and the file is also available from my site (www.v2gnu.com). If you encounter any bugs or have an improvement, please let me know! Nice new site, Jake. I love the layout (especially the color scheme) much better than the old one. Keep up the great work! Thanks. Its still got some work to go, but it's coming along. I'll be back in town tomorrow, so hopefully I'll get some more done over the weekend. smime.p7s Description: S/MIME Cryptographic Signature
[qmailtoaster] over quota message
Dear Sir, i have installed the qmail on my mail server and i have enjoyed using the same . presently i have one small issue with over quota message . In my setup the people email ids and login id are differnt , email id is mapped to the login id . i.e login id is [EMAIL PROTECTED] and email id is [EMAIL PROTECTED] i am receivin the below over quota error Hi. This is the qmail-send program at linux.abc.com. I'm afraid I wasn't able to deliver your message to the following addresses. This is a permanent error; I've given up. Sorry it didn't work out. [EMAIL PROTECTED]: user is over quota i want to change the above overquota message i.e [EMAIL PROTECTED]: user is over quota to [EMAIL PROTECTED]: user is over quota i.e i want to change the loginid - my actual email id . As all the external world mails me to this email address but they receive the error of my login id address . Pls help me out thks in advance Regards, vinay poojary Send free SMS to your Friends on Mobile from your Yahoo! Messenger. Download Now! http://messenger.yahoo.com/download.php
Re: [qmailtoaster] Can anyone
That's a good guess, either that or SPF. DK and SPF errors don't log any indication of rejection at the receiving server (unless you've installed Alexey's very cool patch). I'm very eager to see EE roll Alexey's patches into the toaster. Kyle Quillen wrote: Shed some light on this situation. I have just installed a fresh new server for a client but it seems to not be working they way it should I get this when I try to send out. Could this be something with the domain keys? i. This is the qmail-send program at mail.hwy39.net. I'm afraid I wasn't able to deliver your message to the following addresses. This is a permanent error; I've given up. Sorry it didn't work out. [EMAIL PROTECTED]: User and password not set, continuing without authentication. [EMAIL PROTECTED] 12.168.80.5 failed after I sent the message. Remote host said: 554 mail server permanently rejected message (#5.3.0) --- Below this line is a copy of the message. Return-Path: [EMAIL PROTECTED] Received: (qmail 17463 invoked by uid 89); 20 Dec 2006 16:48:16 - Comment: DomainKeys? See http://antispam.yahoo.com/domainkeys DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; s=private; d=hwy39.net; b=RbMLlNZ2VFlaAJTl+P8pj0ZPXc/y52dqczdV4QzKizY1mEcdCrMzfeS276jR6uD/ ; Received: from unknown (HELO 12.168.80.126) (127.0.0.1) by mail.hwy39.net with SMTP; 20 Dec 2006 16:48:16 - Received: from 12.168.80.3 (SquirrelMail authenticated user [EMAIL PROTECTED]) by 12.168.80.126 with HTTP; Wed, 20 Dec 2006 11:48:16 -0500 (EST) Message-ID: [EMAIL PROTECTED] Date: Wed, 20 Dec 2006 11:48:16 -0500 (EST) Subject: test From: [EMAIL PROTECTED] To: [EMAIL PROTECTED] User-Agent: SquirrelMail/1.4.8-1.3.4 MIME-Version: 1.0 Content-Type: text/plain;charset=iso-8859-1 Content-Transfer-Encoding: 8bit X-Priority: 3 (Normal) Importance: Normal test my man test Thanks much Q - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] -- -Eric 'shubes' - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] Can anyone
Greetings, Kyle. On 20 декабря 2006 г., 19:52:18 you wrote: Shed some light on this situation. I have just installed a fresh new server for a client but it seems to not be working they way it should I get this when I try to send out. Could this be something with the domain keys? i. This is the qmail-send program at mail.hwy39.net. I'm afraid I wasn't able to deliver your message to the following addresses. This is a permanent error; I've given up. Sorry it didn't work out. [EMAIL PROTECTED]: User and password not set, continuing without authentication. [EMAIL PROTECTED] 12.168.80.5 failed after I sent the message. Remote host said: 554 mail server permanently rejected message (#5.3.0) --- Below this line is a copy of the message. Return-Path: [EMAIL PROTECTED] Received: (qmail 17463 invoked by uid 89); 20 Dec 2006 16:48:16 - Comment: DomainKeys? See http://antispam.yahoo.com/domainkeys DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; s=private; d=hwy39.net; b=RbMLlNZ2VFlaAJTl+P8pj0ZPXc/y52dqczdV4QzKizY1mEcdCrMzfeS276jR6uD/ ; Received: from unknown (HELO 12.168.80.126) (127.0.0.1) by mail.hwy39.net with SMTP; 20 Dec 2006 16:48:16 - Received: from 12.168.80.3 (SquirrelMail authenticated user [EMAIL PROTECTED]) by 12.168.80.126 with HTTP; Wed, 20 Dec 2006 11:48:16 -0500 (EST) Message-ID: [EMAIL PROTECTED] Date: Wed, 20 Dec 2006 11:48:16 -0500 (EST) Subject: test From: [EMAIL PROTECTED] To: [EMAIL PROTECTED] User-Agent: SquirrelMail/1.4.8-1.3.4 MIME-Version: 1.0 Content-Type: text/plain;charset=iso-8859-1 Content-Transfer-Encoding: 8bit X-Priority: 3 (Normal) Importance: Normal test my man test Thanks much Looks like qmail-dk trouble. Fast fix is: # cd /var/qmail/bin # rm -f qmail-queue; ln -s qmail-queue.orig qmail-queue For more info, read more on it here: http://www.mail-archive.com/qmailtoaster-list@qmailtoaster.com/msg09460.html http://www.mail-archive.com/qmailtoaster-list@qmailtoaster.com/msg09841.html -- Best regards, Alexey Loukianov mailto:[EMAIL PROTECTED] System Engineer, IT Department, Lavtech Corp - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] Can anyone
On Wed, 2006-12-20 at 20:18 +0300, Alexey Loukianov wrote: Greetings, Kyle. On 20 декабря 2006 г., 19:52:18 you wrote: Shed some light on this situation. I have just installed a fresh new server for a client but it seems to not be working they way it should I get this when I try to send out. Could this be something with the domain keys? i. This is the qmail-send program at mail.hwy39.net. I'm afraid I wasn't able to deliver your message to the following addresses. This is a permanent error; I've given up. Sorry it didn't work out. [EMAIL PROTECTED]: User and password not set, continuing without authentication. [EMAIL PROTECTED] 12.168.80.5 failed after I sent the message. Remote host said: 554 mail server permanently rejected message (#5.3.0) --- Below this line is a copy of the message. Return-Path: [EMAIL PROTECTED] Received: (qmail 17463 invoked by uid 89); 20 Dec 2006 16:48:16 - Comment: DomainKeys? See http://antispam.yahoo.com/domainkeys DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; s=private; d=hwy39.net; b=RbMLlNZ2VFlaAJTl+P8pj0ZPXc/y52dqczdV4QzKizY1mEcdCrMzfeS276jR6uD/ ; Received: from unknown (HELO 12.168.80.126) (127.0.0.1) by mail.hwy39.net with SMTP; 20 Dec 2006 16:48:16 - Received: from 12.168.80.3 (SquirrelMail authenticated user [EMAIL PROTECTED]) by 12.168.80.126 with HTTP; Wed, 20 Dec 2006 11:48:16 -0500 (EST) Message-ID: [EMAIL PROTECTED] Date: Wed, 20 Dec 2006 11:48:16 -0500 (EST) Subject: test From: [EMAIL PROTECTED] To: [EMAIL PROTECTED] User-Agent: SquirrelMail/1.4.8-1.3.4 MIME-Version: 1.0 Content-Type: text/plain;charset=iso-8859-1 Content-Transfer-Encoding: 8bit X-Priority: 3 (Normal) Importance: Normal test my man test Thanks much Looks like qmail-dk trouble. Fast fix is: # cd /var/qmail/bin # rm -f qmail-queue; ln -s qmail-queue.orig qmail-queue For more info, read more on it here: http://www.mail-archive.com/qmailtoaster-list@qmailtoaster.com/msg09460.html http://www.mail-archive.com/qmailtoaster-list@qmailtoaster.com/msg09841.html Would this be done on the machine sending or the machine receiving because the machine receiving is working fine with dk turned on? Much thanks Q - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re[2]: [qmailtoaster] Can anyone
Greetings, Kyle. On 20 декабря 2006 г., 20:29:19 you wrote: On Wed, 2006-12-20 at 20:18 +0300, Alexey Loukianov wrote: Greetings, Kyle. On 20 декабря 2006 г., 19:52:18 you wrote: Shed some light on this situation. I have just installed a fresh new server for a client but it seems to not be working they way it should I get this when I try to send out. Could this be something with the domain keys? i. This is the qmail-send program at mail.hwy39.net. I'm afraid I wasn't able to deliver your message to the following addresses. This is a permanent error; I've given up. Sorry it didn't work out. [EMAIL PROTECTED]: User and password not set, continuing without authentication. [EMAIL PROTECTED] 12.168.80.5 failed after I sent the message. Remote host said: 554 mail server permanently rejected message (#5.3.0) --- Below this line is a copy of the message. Return-Path: [EMAIL PROTECTED] Received: (qmail 17463 invoked by uid 89); 20 Dec 2006 16:48:16 - Comment: DomainKeys? See http://antispam.yahoo.com/domainkeys DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; s=private; d=hwy39.net; b=RbMLlNZ2VFlaAJTl+P8pj0ZPXc/y52dqczdV4QzKizY1mEcdCrMzfeS276jR6uD/ ; Received: from unknown (HELO 12.168.80.126) (127.0.0.1) by mail.hwy39.net with SMTP; 20 Dec 2006 16:48:16 - Received: from 12.168.80.3 (SquirrelMail authenticated user [EMAIL PROTECTED]) by 12.168.80.126 with HTTP; Wed, 20 Dec 2006 11:48:16 -0500 (EST) Message-ID: [EMAIL PROTECTED] Date: Wed, 20 Dec 2006 11:48:16 -0500 (EST) Subject: test From: [EMAIL PROTECTED] To: [EMAIL PROTECTED] User-Agent: SquirrelMail/1.4.8-1.3.4 MIME-Version: 1.0 Content-Type: text/plain;charset=iso-8859-1 Content-Transfer-Encoding: 8bit X-Priority: 3 (Normal) Importance: Normal test my man test Thanks much Looks like qmail-dk trouble. Fast fix is: # cd /var/qmail/bin # rm -f qmail-queue; ln -s qmail-queue.orig qmail-queue For more info, read more on it here: http://www.mail-archive.com/qmailtoaster-list@qmailtoaster.com/msg09460.html http://www.mail-archive.com/qmailtoaster-list@qmailtoaster.com/msg09841.html Would this be done on the machine sending or the machine receiving because the machine receiving is working fine with dk turned on? This should be done on the server side, host 12.168.80.5 in your case. -- Best regards, Alexey Loukianov mailto:[EMAIL PROTECTED] System Engineer, IT Department, Lavtech Corp - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
[qmailtoaster] QTP
How do I check and see if I have the qmailtoaster plus installed already? I would like to utilize the rules emporium as I have been trying to do this for awhile but as we all know I am a little challenged when it comes to this stuff. LOL Thanks Q - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re[2]: [qmailtoaster] Can anyone
Greetings, Kyle. On 20 декабря 2006 г., 20:29:19 you wrote: Would this be done on the machine sending or the machine receiving because the machine receiving is working fine with dk turned on? This also might give you an insight: [EMAIL PROTECTED] bin]# dktest -v Return-Path: [EMAIL PROTECTED] Received: (qmail 17463 invoked by uid 89); 20 Dec 2006 16:48:16 - Comment: DomainKeys? See http://antispam.yahoo.com/domainkeys DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; s=private; d=hwy39.net; b=RbMLlNZ2VFlaAJTl+P8pj0ZPXc/y52dqczdV4QzKizY1mEcdCrMzfeS276jR6uD/ ; Received: from unknown (HELO 12.168.80.126) (127.0.0.1) by mail.hwy39.net with SMTP; 20 Dec 2006 16:48:16 - Received: from 12.168.80.3 (SquirrelMail authenticated user [EMAIL PROTECTED]) by 12.168.80.126 with HTTP; Wed, 20 Dec 2006 11:48:16 -0500 (EST) Message-ID: [EMAIL PROTECTED] Date: Wed, 20 Dec 2006 11:48:16 -0500 (EST) Subject: test From: [EMAIL PROTECTED] To: [EMAIL PROTECTED] User-Agent: SquirrelMail/1.4.8-1.3.4 MIME-Version: 1.0 Content-Type: text/plain;charset=iso-8859-1 Content-Transfer-Encoding: 8bit X-Priority: 3 (Normal) Importance: Normal test my man test Comment: DomainKeys? See http://domainkeys.sourceforge.net/ DomainKey-Status: no key dktest: DK_STAT_NOKEY: No public key available (permanent failure) I mean, your DK setup is wrong, there's no public DK key available, so it's impossible for server to check a message, and due to a bug in qmail-dk it gets bounced no matter the settings you've got in DKVERIFY environment variable on server. -- Best regards, Alexey Loukianov mailto:[EMAIL PROTECTED] System Engineer, IT Department, Lavtech Corp - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] QTP
Greetings, Kyle. On 20 декабря 2006 г., 20:42:06 you wrote: How do I check and see if I have the qmailtoaster plus installed already? Try something like this: [EMAIL PROTECTED] bin]# rpm -qa | grep qmail qmailtoaster-plus-0.2.1-1.3.3 qmail-toaster-1.03-1.3.7 qmail-pop3d-toaster-1.03-1.3.7 -- Best regards, Alexey Loukianov mailto:[EMAIL PROTECTED] System Engineer, IT Department, Lavtech Corp - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: Re[2]: [qmailtoaster] Can anyone
On Wed, 2006-12-20 at 20:46 +0300, Alexey Loukianov wrote: Greetings, Kyle. On 20 декабря 2006 г., 20:29:19 you wrote: Would this be done on the machine sending or the machine receiving because the machine receiving is working fine with dk turned on? This also might give you an insight: [EMAIL PROTECTED] bin]# dktest -v Return-Path: [EMAIL PROTECTED] Received: (qmail 17463 invoked by uid 89); 20 Dec 2006 16:48:16 - Comment: DomainKeys? See http://antispam.yahoo.com/domainkeys DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; s=private; d=hwy39.net; b=RbMLlNZ2VFlaAJTl+P8pj0ZPXc/y52dqczdV4QzKizY1mEcdCrMzfeS276jR6uD/ ; Received: from unknown (HELO 12.168.80.126) (127.0.0.1) by mail.hwy39.net with SMTP; 20 Dec 2006 16:48:16 - Received: from 12.168.80.3 (SquirrelMail authenticated user [EMAIL PROTECTED]) by 12.168.80.126 with HTTP; Wed, 20 Dec 2006 11:48:16 -0500 (EST) Message-ID: [EMAIL PROTECTED] Date: Wed, 20 Dec 2006 11:48:16 -0500 (EST) Subject: test From: [EMAIL PROTECTED] To: [EMAIL PROTECTED] User-Agent: SquirrelMail/1.4.8-1.3.4 MIME-Version: 1.0 Content-Type: text/plain;charset=iso-8859-1 Content-Transfer-Encoding: 8bit X-Priority: 3 (Normal) Importance: Normal test my man test Comment: DomainKeys? See http://domainkeys.sourceforge.net/ DomainKey-Status: no key dktest: DK_STAT_NOKEY: No public key available (permanent failure) I mean, your DK setup is wrong, there's no public DK key available, so it's impossible for server to check a message, and due to a bug in qmail-dk it gets bounced no matter the settings you've got in DKVERIFY environment variable on server. I think what I am getting is the fact that I don't have a domain key setup on the 80.5 address i think I will figure out how to do that then that might fix this issue. Thanks q - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re[4]: [qmailtoaster] Can anyone
Greetings, Kyle. On 20 декабря 2006 г., 20:51:57 you wrote: I think what I am getting is the fact that I don't have a domain key setup on the 80.5 address i think I will figure out how to do that then that might fix this issue. Consider this: [EMAIL PROTECTED] bin]# host -a gamma._domainkey.lavtech.ru Trying gamma._domainkey.lavtech.ru ;; -HEADER- opcode: QUERY, status: NOERROR, id: 26819 ;; flags: qr rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 3, ADDITIONAL: 3 ;; QUESTION SECTION: ;gamma._domainkey.lavtech.ru. IN ANY ;; ANSWER SECTION: gamma._domainkey.lavtech.ru. 89078 IN TXT t=y\; k=rsa\; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDffysEduzZf7/r0xxaAmTlKM2GEZKxkyLBYXIxL/xagheFlUIij2ukSF9ycOSKBqxde+VJuGWq5IfuR+qJg22LtPD5otTBmDAN1CherlwUYoAXwhbeII8nlk/UwUGdPsyRCMqrYs8Nu2TcF9Sm8yY1pKrkrmtZhr4P1PE7IQ/BrQIDAQAB ;; AUTHORITY SECTION: lavtech.ru. 604730 IN NS ns1.lavtech.ru. lavtech.ru. 604730 IN NS ns2.lavtech.ru. lavtech.ru. 604730 IN NS ns.lavtech.ru. ;; ADDITIONAL SECTION: ns.lavtech.ru. 67526 IN A 195.239.38.3 ns1.lavtech.ru. 67526 IN A 195.239.38.230 ns2.lavtech.ru. 67526 IN A 195.239.40.130 Received 389 bytes from 127.0.0.1#53 in 2 ms [EMAIL PROTECTED] bin]# host -a private._domainkey.hwy39.net Trying private._domainkey.hwy39.net Host private._domainkey.hwy39.net not found: 3(NXDOMAIN) Received 105 bytes from 127.0.0.1#53 in 1 ms First query is a query to my correctly settled up DNS server, second is the query to your, incorrect DK setup. That is the cause. -- Best regards, Alexey Loukianov mailto:[EMAIL PROTECTED] System Engineer, IT Department, Lavtech Corp - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
[qmailtoaster] Error when executing cnt40-perl-script
Hi . I really don't understand what's going on ! One week ago I did a fresh install on a Centos 4.4 server following the how-to guide for the perfect centos 4.3 setup . Now , after a fresh format ( it's a test server ...-) , the same identical procedure stops when I execute the cnt40-perl.sh script. I tried to launch a single command line such as perl -e 'use CPAN; install MIME::Base64;' and this is what I get : CPAN: Storable loaded ok Going to read /root/.cpan/Metadata Database was generated on Wed, 20 Dec 2006 14:25:13 GMT Running install for module MIME::Base64 Running make for G/GA/GAAS/MIME-Base64-3.07.tar.gz CPAN: Digest::MD5 loaded ok Checksum for /root/.cpan/sources/authors/id/G/GA/GAAS/MIME-Base64-3.07.tar.gz ok Scanning cache /root/.cpan/build for sizes MIME-Base64-3.07/ MIME-Base64-3.07/t/ MIME-Base64-3.07/t/warn.t MIME-Base64-3.07/t/bad-sv.t MIME-Base64-3.07/t/unicode.t MIME-Base64-3.07/t/quoted-print.t MIME-Base64-3.07/t/base64.t MIME-Base64-3.07/README MIME-Base64-3.07/QuotedPrint.pm MIME-Base64-3.07/MANIFEST MIME-Base64-3.07/Base64.pm MIME-Base64-3.07/Changes MIME-Base64-3.07/Makefile.PL MIME-Base64-3.07/Base64.xs Removing previously used /root/.cpan/build/MIME-Base64-3.07 CPAN.pm: Going to build G/GA/GAAS/MIME-Base64-3.07.tar.gz Checking if your kit is complete... Looks good Writing Makefile for MIME::Base64 make: Warning: File `/usr/lib/perl5/5.8.5/i386-linux-thread-multi/Config.pm' has modification time 1.3e+07 s in the future Makefile out-of-date with respect to /usr/lib/perl5/5.8.5/i386-linux-thread-multi/Config.pm /usr/lib/perl5/5.8.5/i386-linux-thread-multi/CORE/config.h Cleaning current config before rebuilding Makefile... /usr/bin/make -f Makefile.old clean /dev/null 21 || /bin/sh -c true /usr/bin/perl Makefile.PL Checking if your kit is complete... Looks good Writing Makefile for MIME::Base64 == Your Makefile has been rebuilt. == == Please rerun the make command. == false make: *** [Makefile] Error 1 /usr/bin/make -- NOT OK Running make test Can't test without successful make Running make install make had returned bad status, install seems impossible Any suggestion ? I really don't know what to do !! Thanks in advance max Italy - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: Re[4]: [qmailtoaster] Can anyone
On Wed, 2006-12-20 at 21:01 +0300, Alexey Loukianov wrote: Greetings, Kyle. On 20 декабря 2006 г., 20:51:57 you wrote: I think what I am getting is the fact that I don't have a domain key setup on the 80.5 address i think I will figure out how to do that then that might fix this issue. Consider this: [EMAIL PROTECTED] bin]# host -a gamma._domainkey.lavtech.ru Trying gamma._domainkey.lavtech.ru ;; -HEADER- opcode: QUERY, status: NOERROR, id: 26819 ;; flags: qr rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 3, ADDITIONAL: 3 ;; QUESTION SECTION: ;gamma._domainkey.lavtech.ru. IN ANY ;; ANSWER SECTION: gamma._domainkey.lavtech.ru. 89078 IN TXT t=y\; k=rsa\; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDffysEduzZf7/r0xxaAmTlKM2GEZKxkyLBYXIxL/xagheFlUIij2ukSF9ycOSKBqxde+VJuGWq5IfuR+qJg22LtPD5otTBmDAN1CherlwUYoAXwhbeII8nlk/UwUGdPsyRCMqrYs8Nu2TcF9Sm8yY1pKrkrmtZhr4P1PE7IQ/BrQIDAQAB ;; AUTHORITY SECTION: lavtech.ru. 604730 IN NS ns1.lavtech.ru. lavtech.ru. 604730 IN NS ns2.lavtech.ru. lavtech.ru. 604730 IN NS ns.lavtech.ru. ;; ADDITIONAL SECTION: ns.lavtech.ru. 67526 IN A 195.239.38.3 ns1.lavtech.ru. 67526 IN A 195.239.38.230 ns2.lavtech.ru. 67526 IN A 195.239.40.130 Received 389 bytes from 127.0.0.1#53 in 2 ms [EMAIL PROTECTED] bin]# host -a private._domainkey.hwy39.net Trying private._domainkey.hwy39.net Host private._domainkey.hwy39.net not found: 3(NXDOMAIN) Received 105 bytes from 127.0.0.1#53 in 1 ms First query is a query to my correctly settled up DNS server, second is the query to your, incorrect DK setup. That is the cause. So i am correct in stating that I need to setup a record in dns for the domain key. Do I use the private key that is in the /var/qmail/control/domainkeys/hwy39.net or do I have to create a public one. Further more do I just insert this in the zone config or do i need to create a seperate file. Once I get into keys such as ssl and etc I seem to get in over my head at least at this point. Thanks Q - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: Re[4]: [qmailtoaster] Can anyone
On Wed, 2006-12-20 at 13:17 -0500, Kyle Quillen wrote: So i am correct in stating that I need to setup a record in dns for the domain key. Do I use the private key that is in the /var/qmail/control/domainkeys/hwy39.net or do I have to create a public one. Further more do I just insert this in the zone config or do i need to create a seperate file. This is one thing where the documentation falls down. I had the same issue. Bottom line. You need two TXT records in your DNS. The first will be an entry for _domainkey in your hwy39.net zone. It tells the other mail servers what your domainkey policy is. Mine contains o=-\; [EMAIL PROTECTED] The o means the domain signs all email and the r is the responsible party address. The second DNS entry is a text record containing your public key. If you followed the directions verbatim you should have a directory /var/qmail/control/domainkeys/hw39.net In that directory you will have two files. One is called private the other is hwy39.net-dk.txt. The txt file is the public key to put in the DNS entry. You will create an entry called private._domainkey with the TXT value in the file. The reason it is called private is because that is the name on your private key. If you send out mail under other domain names you will need to create a directory and key under domainkeys for each domain you handle. Took me a couple of minutes to figure that one out. - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: Re[4]: [qmailtoaster] Can anyone
On Wed, 2006-12-20 at 10:35 -0800, Vince Callaway wrote: On Wed, 2006-12-20 at 13:17 -0500, Kyle Quillen wrote: So i am correct in stating that I need to setup a record in dns for the domain key. Do I use the private key that is in the /var/qmail/control/domainkeys/hwy39.net or do I have to create a public one. Further more do I just insert this in the zone config or do i need to create a seperate file. This is one thing where the documentation falls down. I had the same issue. Bottom line. You need two TXT records in your DNS. The first will be an entry for _domainkey in your hwy39.net zone. It tells the other mail servers what your domainkey policy is. Mine contains o=-\; [EMAIL PROTECTED] The o means the domain signs all email and the r is the responsible party address. The second DNS entry is a text record containing your public key. If you followed the directions verbatim you should have a directory /var/qmail/control/domainkeys/hw39.net In that directory you will have two files. One is called private the other is hwy39.net-dk.txt. The txt file is the public key to put in the DNS entry. You will create an entry called private._domainkey with the TXT value in the file. The reason it is called private is because that is the name on your private key. If you send out mail under other domain names you will need to create a directory and key under domainkeys for each domain you handle. Took me a couple of minutes to figure that one out. I see where I goofed now I did not take of the \ when i created the new domain key. Before in the domainkeys dir i only had private now i have hwy39.net-dk.txt and private. So now the only area that I am grey on is how do I implement this into my bind authoratative dns servers. As soon as I am done with this I am going to update the wiki with more detailed instructions. Thanks Q - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
RE: Re[4]: [qmailtoaster] Can anyone
Hi Kyle, Edit the domain name record in /var/named/chroot/var/named/ for your domain which is hwt39.net (I believe) and add a new TXT entry for the domain. Eg. private._domainkey IN TXT k=rsa; p=MEwwDQYp=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDffysEduzZf7/r0xxaAmTlKM2GE ZKxkyLBYXIxL/xagheFlUIij2ukSF9ycOSKBqxde+VJuGWq5IfuR+qJg22LtPD5otTBmDAN1Cher lwUYoAXwhbeII8nlk/UwUGdPsyRCMqrYs8Nu2TcF9Sm8yY1pKrkrmtZhr4P1PE7IQ/BrQIDAQAB IMPORTANT NOTE: You must include the quotation marks Then save and quit the file and finally restart bind. If you are running multiple bind servers and both are authoritative then add an entry into both of them. Don't forget to change the serial for the domain!! Regards, Rangi -Original Message- From: Kyle Quillen [mailto:[EMAIL PROTECTED] Sent: Thursday, 21 December 2006 7:47 a.m. To: qmailtoaster-list@qmailtoaster.com Subject: Re: Re[4]: [qmailtoaster] Can anyone On Wed, 2006-12-20 at 10:35 -0800, Vince Callaway wrote: On Wed, 2006-12-20 at 13:17 -0500, Kyle Quillen wrote: So i am correct in stating that I need to setup a record in dns for the domain key. Do I use the private key that is in the /var/qmail/control/domainkeys/hwy39.net or do I have to create a public one. Further more do I just insert this in the zone config or do i need to create a seperate file. This is one thing where the documentation falls down. I had the same issue. Bottom line. You need two TXT records in your DNS. The first will be an entry for _domainkey in your hwy39.net zone. It tells the other mail servers what your domainkey policy is. Mine contains o=-\; [EMAIL PROTECTED] The o means the domain signs all email and the r is the responsible party address. The second DNS entry is a text record containing your public key. If you followed the directions verbatim you should have a directory /var/qmail/control/domainkeys/hw39.net In that directory you will have two files. One is called private the other is hwy39.net-dk.txt. The txt file is the public key to put in the DNS entry. You will create an entry called private._domainkey with the TXT value in the file. The reason it is called private is because that is the name on your private key. If you send out mail under other domain names you will need to create a directory and key under domainkeys for each domain you handle. Took me a couple of minutes to figure that one out. I see where I goofed now I did not take of the \ when i created the new domain key. Before in the domainkeys dir i only had private now i have hwy39.net-dk.txt and private. So now the only area that I am grey on is how do I implement this into my bind authoratative dns servers. As soon as I am done with this I am going to update the wiki with more detailed instructions. Thanks Q - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: Re[4]: [qmailtoaster] Can anyone
On Wed, 2006-12-20 at 10:35 -0800, Vince Callaway wrote: On Wed, 2006-12-20 at 13:17 -0500, Kyle Quillen wrote: So i am correct in stating that I need to setup a record in dns for the domain key. Do I use the private key that is in the /var/qmail/control/domainkeys/hwy39.net or do I have to create a public one. Further more do I just insert this in the zone config or do i need to create a seperate file. This is one thing where the documentation falls down. I had the same issue. Bottom line. You need two TXT records in your DNS. The first will be an entry for _domainkey in your hwy39.net zone. It tells the other mail servers what your domainkey policy is. Mine contains o=-\; [EMAIL PROTECTED] The o means the domain signs all email and the r is the responsible party address. The second DNS entry is a text record containing your public key. If you followed the directions verbatim you should have a directory /var/qmail/control/domainkeys/hw39.net In that directory you will have two files. One is called private the other is hwy39.net-dk.txt. The txt file is the public key to put in the DNS entry. You will create an entry called private._domainkey with the TXT value in the file. The reason it is called private is because that is the name on your private key. If you send out mail under other domain names you will need to create a directory and key under domainkeys for each domain you handle. Took me a couple of minutes to figure that one out. Ok I think I have this figured out now would just like to know for sure before i go entering into my dns zone files my txt records would look like this _domainkey IN TXT o=-\; [EMAIL PROTECTED] private._domainkey IN TXT k=rsa;p=MEwwDQYJKoZI Only the second line would be with the full key and the quotes closed? Thanks Q - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
RE: Re[4]: [qmailtoaster] Can anyone
Correct!! -Original Message- From: Kyle Quillen [mailto:[EMAIL PROTECTED] Sent: Thursday, 21 December 2006 8:00 a.m. To: qmailtoaster-list@qmailtoaster.com Subject: Re: Re[4]: [qmailtoaster] Can anyone On Wed, 2006-12-20 at 10:35 -0800, Vince Callaway wrote: On Wed, 2006-12-20 at 13:17 -0500, Kyle Quillen wrote: So i am correct in stating that I need to setup a record in dns for the domain key. Do I use the private key that is in the /var/qmail/control/domainkeys/hwy39.net or do I have to create a public one. Further more do I just insert this in the zone config or do i need to create a seperate file. This is one thing where the documentation falls down. I had the same issue. Bottom line. You need two TXT records in your DNS. The first will be an entry for _domainkey in your hwy39.net zone. It tells the other mail servers what your domainkey policy is. Mine contains o=-\; [EMAIL PROTECTED] The o means the domain signs all email and the r is the responsible party address. The second DNS entry is a text record containing your public key. If you followed the directions verbatim you should have a directory /var/qmail/control/domainkeys/hw39.net In that directory you will have two files. One is called private the other is hwy39.net-dk.txt. The txt file is the public key to put in the DNS entry. You will create an entry called private._domainkey with the TXT value in the file. The reason it is called private is because that is the name on your private key. If you send out mail under other domain names you will need to create a directory and key under domainkeys for each domain you handle. Took me a couple of minutes to figure that one out. Ok I think I have this figured out now would just like to know for sure before i go entering into my dns zone files my txt records would look like this _domainkey IN TXT o=-\; [EMAIL PROTECTED] private._domainkey IN TXT k=rsa;p=MEwwDQYJKoZI Only the second line would be with the full key and the quotes closed? Thanks Q - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
RE: Re[4]: [qmailtoaster] Can anyone
Correction. Both must be enclosed in quotation marks. -Original Message- From: Kyle Quillen [mailto:[EMAIL PROTECTED] Sent: Thursday, 21 December 2006 8:00 a.m. To: qmailtoaster-list@qmailtoaster.com Subject: Re: Re[4]: [qmailtoaster] Can anyone On Wed, 2006-12-20 at 10:35 -0800, Vince Callaway wrote: On Wed, 2006-12-20 at 13:17 -0500, Kyle Quillen wrote: So i am correct in stating that I need to setup a record in dns for the domain key. Do I use the private key that is in the /var/qmail/control/domainkeys/hwy39.net or do I have to create a public one. Further more do I just insert this in the zone config or do i need to create a seperate file. This is one thing where the documentation falls down. I had the same issue. Bottom line. You need two TXT records in your DNS. The first will be an entry for _domainkey in your hwy39.net zone. It tells the other mail servers what your domainkey policy is. Mine contains o=-\; [EMAIL PROTECTED] The o means the domain signs all email and the r is the responsible party address. The second DNS entry is a text record containing your public key. If you followed the directions verbatim you should have a directory /var/qmail/control/domainkeys/hw39.net In that directory you will have two files. One is called private the other is hwy39.net-dk.txt. The txt file is the public key to put in the DNS entry. You will create an entry called private._domainkey with the TXT value in the file. The reason it is called private is because that is the name on your private key. If you send out mail under other domain names you will need to create a directory and key under domainkeys for each domain you handle. Took me a couple of minutes to figure that one out. Ok I think I have this figured out now would just like to know for sure before i go entering into my dns zone files my txt records would look like this _domainkey IN TXT o=-\; [EMAIL PROTECTED] private._domainkey IN TXT k=rsa;p=MEwwDQYJKoZI Only the second line would be with the full key and the quotes closed? Thanks Q - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: Re[4]: [qmailtoaster] Can anyone
On Wed, 2006-12-20 at 13:59 -0500, Kyle Quillen wrote: _domainkeyIN TXT o=-\; [EMAIL PROTECTED] You can remove the \ and it needs to be enclosed in quotes. private._domainkey IN TXT k=rsa;p=MEwwDQYJKoZI Only the second line would be with the full key and the quotes closed? Correct. - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: Re[6]: [qmailtoaster] Can anyone
well shit how the hell do i create the public key then On Wed, 2006-12-20 at 23:19 +0300, Alexey Loukianov wrote: - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: Re[6]: [qmailtoaster] Can anyone
Sorry, This is just getting kinda frustrating just becuase i am at a learning curve here with this whole keys thing. Thanks Q On Wed, 2006-12-20 at 15:25 -0500, Kyle Quillen wrote: well shit how the hell do i create the public key then On Wed, 2006-12-20 at 23:19 +0300, Alexey Loukianov wrote: - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
[qmailtoaster] Attachment error (invalid msg content)
Hi, I got some problem receiving attachments on my server. For example, someone send a Mp3 audio file and receive an error message (smtp;554 invalid message content (#5.3.2)). But this is not happening with all attachment. I was able to send to myself with a Hotmail account, an Mp3 file and everything goes fine (but fails with the first Mp3 file). Any ideas? Thanks in advance. Regards, Kaven G.
Re[8]: [qmailtoaster] Can anyone
Greetings, Kyle. On 20 декабря 2006 г., 23:25:36 you wrote: Normally you will generate keys like this: # cd ~ # dknewkey myserverkey 1024 myserverkey._domainkey IN TXT k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDtXq1/gjQ4iXnytD7bff5P1BWqkAQN0qjwgDn9rYWyywEze97jPnIX3dWYRxRU8vxTbwWoFnWF8+oJQz4NILfZ5QD/EeopTIjRtNAXNCCN2FtmnIiSbxzF7SpPpROEQ37kZaUcgYGsiL97///cJ1YQTCAQ8xnNKNtTyqDj++3E8QIDAQAB # ls mys* myserverkey # chmod 0600 myserverkey That's it. Copy to somewhere the output from dknewkey - that is your public key. Head on to your domains' zone file and edit it inserting the line you're copied somewhere. Don't forget to increment zone serial in SOA record, then check the zone file for spelling errors using named-checkzone (I assume that you're using Bind), and reload named using service named reload. Check if all is ok using: # host -a myserverkey._domainkey.your.domain.com To be totally DK-Draft-02 complaint you will also have to add _domainkey TXT record for your domain specifying your domain DK policy. Read more about it in the draft itself, I'm to lazy to write about it here :-). The file myserverkey contains the private key. Copy it to the /var/qmail/control/domainkeys/your.domain.com/ folder, head on to /etc/tcprules.d and edit tcp.smtp so your DKSIGN will look like this: DKSIGN=/var/qmail/control/domainkeys/%/myserverkey. Do # qmailctl cdb and you should be done. -- Best regards, Alexey Loukianov mailto:[EMAIL PROTECTED] System Engineer, IT Department, Lavtech Corp - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
RE: [qmailtoaster] Attachment error (invalid msg content)
I believe /var/qmail/control/simcontrol is set to block incoming .mp3 attachment files by default. You'd have the remove the .mp3 and rebuild the cdb with 'qmailctl cdb' _ From: Kaven Gagnon [mailto:[EMAIL PROTECTED] Sent: Wednesday, December 20, 2006 3:43 PM To: qmailtoaster-list@qmailtoaster.com Subject: [qmailtoaster] Attachment error (invalid msg content) Hi, I got some problem receiving attachments on my server. For example, someone send a Mp3 audio file and receive an error message (smtp;554 invalid message content (#5.3.2)). But this is not happening with all attachment. I was able to send to myself with a Hotmail account, an Mp3 file and everything goes fine (but fails with the first Mp3 file). Any ideas? Thanks in advance. Regards, Kaven G.
Re: Re[6]: [qmailtoaster] Can anyone
On Wed, 2006-12-20 at 12:41 -0800, Vince Callaway wrote: On Wed, 2006-12-20 at 23:19 +0300, Alexey Loukianov wrote: Private key is THE TOP SECRET YOU HAVE This is why I feel the documentation needs work. He is publishing the public key, but it is labeled private because that is what the docs say to use. I just read that in the docs before you sent this. Thanks for the clarification. I will update the Docs Later tonight Q - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re[8]: [qmailtoaster] Can anyone
Greetings, Vince. On 20 декабря 2006 г., 23:41:12 you wrote: Private key is THE TOP SECRET YOU HAVE This is why I feel the documentation needs work. He is publishing the public key, but it is labeled private because that is what the docs say to use. Agreed. Qmail DK documentation quality being ranged from pure to none. Someone with an adequate knowledge of English language should take a job of documenting it. Hope, here is somebody who want to do it, huh? -- Best regards, Alexey Loukianov mailto:[EMAIL PROTECTED] System Engineer, IT Department, Lavtech Corp - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] Attachment error (invalid msg content)
Greetings, Kaven. On 20 декабря 2006 г., 23:42:34 you wrote: I got some problem receiving attachments on my server. For example, someone send a Mp3 audio file and receive an error message (smtp;554 invalid message content (#5.3.2)). But this is not happening with all attachment… I was able to send to myself with a Hotmail account, an Mp3 file and everything goes fine (but fails with the first Mp3 file). Any ideas? Try to comment out all the stuff in /var/qmail/control/badloadertypes and /var/qmail/control/badmimetypes. Also, check out /var/qmail/control/simcontrol contents for attachments restrictions. After you're done with modifications to this files, do # qmailctl cdb You should be done. Try to send this .mp3 file again to see if it works. Also try to look into qmail-smtpd logs for a hint about the cause of message rejection. -- Best regards, Alexey Loukianov mailto:[EMAIL PROTECTED] System Engineer, IT Department, Lavtech Corp - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
RE: [qmailtoaster] Attachment error (invalid msg content)
Hi, No, .I removed .mp3 extension from simcontrol. Thanks. _ From: Dan Herbon [mailto:[EMAIL PROTECTED] Sent: December 20, 2006 3:48 PM To: qmailtoaster-list@qmailtoaster.com Subject: RE: [qmailtoaster] Attachment error (invalid msg content) I believe /var/qmail/control/simcontrol is set to block incoming .mp3 attachment files by default. You'd have the remove the .mp3 and rebuild the cdb with 'qmailctl cdb' _ From: Kaven Gagnon [mailto:[EMAIL PROTECTED] Sent: Wednesday, December 20, 2006 3:43 PM To: qmailtoaster-list@qmailtoaster.com Subject: [qmailtoaster] Attachment error (invalid msg content) Hi, I got some problem receiving attachments on my server. For example, someone send a Mp3 audio file and receive an error message (smtp;554 invalid message content (#5.3.2)). But this is not happening with all attachment. I was able to send to myself with a Hotmail account, an Mp3 file and everything goes fine (but fails with the first Mp3 file). Any ideas? Thanks in advance. Regards, Kaven G.
Re: [qmailtoaster] Attachment error (invalid msg content)
Should be noted that this is the new default in QmailToaster On 12/20/06, Kaven Gagnon [EMAIL PROTECTED] wrote: Hi, It worked! I try to comment the content of badmimetypes before posting my message without success. Work well if badmimetypes and badloadertypes are commented. Thanks a lot. Regards, Kaven G. -Original Message- From: Alexey Loukianov [mailto:[EMAIL PROTECTED] Sent: December 20, 2006 3:55 PM To: Kaven Gagnon Subject: Re: [qmailtoaster] Attachment error (invalid msg content) Greetings, Kaven. On 20 декабря 2006 г., 23:42:34 you wrote: I got some problem receiving attachments on my server. For example, someone send a Mp3 audio file and receive an error message (smtp;554 invalid message content (#5.3.2)). But this is not happening with all attachment: I was able to send to myself with a Hotmail account, an Mp3 file and everything goes fine (but fails with the first Mp3 file). Any ideas? Try to comment out all the stuff in /var/qmail/control/badloadertypes and /var/qmail/control/badmimetypes. Also, check out /var/qmail/control/simcontrol contents for attachments restrictions. After you're done with modifications to this files, do # qmailctl cdb You should be done. Try to send this .mp3 file again to see if it works. Also try to look into qmail-smtpd logs for a hint about the cause of message rejection. -- Best regards, Alexey Loukianov mailto:[EMAIL PROTECTED] System Engineer, IT Department, Lavtech Corp - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] over quota message
Dear Sir, thks for quick response . The lgoin id in my setup is the email account created via which the user can login to the webmail , configure outlook etc .But the email address for me is the aliases i have created for the user. here the login id address is not given to the client ,but the alias address is what is given to the client .I dont want to show the actual email account created for the external world , this is the reason i want to hide the same in the overquota msg . Regards, vinay poojary Alexey Loukianov [EMAIL PROTECTED] wrote: Greetings, vinay. On 20 ??? 2006 ?., 18:45:48 you wrote: Dear Sir, i have installed the qmail on my mail server and i have enjoyed using the same . presently i have one small issue with over quota message . In my setup the people email ids and login id are differnt , email id is mapped to the login id . i.e login id is [EMAIL PROTECTED] and email id is [EMAIL PROTECTED] Could you please give us a bit more info about your setup. Most interesting thing for me is how did you map email ids to login ids? And what is the exact meaning of login id for you? Is it real unix UID, or a something totally different? -- Best regards, Alexey Loukianov mailto:[EMAIL PROTECTED] System Engineer, IT Department, Lavtech Corp - QmailToaster hosted by: VR Hosted - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] Send free SMS to your Friends on Mobile from your Yahoo! Messenger. Download Now! http://messenger.yahoo.com/download.php
Re: [qmailtoaster] Can anyone
My apologies for the confusing documentation. I fleshed it out considerably from when I first set up domain keys, and was not much past the state that Kyle is in (confused). Perhaps private would be more appropriately named mydomain. A simplified explanation of the role of private and public keys would probably also be appropriate. Have at it! Kyle Quillen wrote: I have been taking notes on this whole thing and I am going to update as much as I know how hopefully that will help someone in the future thanks Q On Wed, 2006-12-20 at 23:49 +0300, Alexey Loukianov wrote: Greetings, Vince. On 20 декабря 2006 г., 23:41:12 you wrote: Private key is THE TOP SECRET YOU HAVE This is why I feel the documentation needs work. He is publishing the public key, but it is labeled private because that is what the docs say to use. Agreed. Qmail DK documentation quality being ranged from pure to none. Someone with an adequate knowledge of English language should take a job of documenting it. Hope, here is somebody who want to do it, huh? -- -Eric 'shubes' - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
[qmailtoaster] Upgrade
Hey all, I need to do some package updates and was wondering if I use the qtp to do the upgrade if I will need to recompile the vpopmail rpms inorder to keep the spam box or is there something in the scripts that I can modify to keep that option installed. Much thanks Q - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] Upgrade
Kyle Quillen wrote: Hey all, I need to do some package updates and was wondering if I use the qtp to do the upgrade if I will need to recompile the vpopmail rpms inorder to keep the spam box or is there something in the scripts that I can modify to keep that option installed. Much thanks Q I haven't gotten around to adding these options (or a way to select them) to the qtp-newmodel script yet. However, I'm planning to do some enhancements to the script soon, like by the end of next week. So you can: .) wait for the enhancements .) do the upgrade and rebuild the required packages again yourself .) modify your qtp-build-rpms script to include the proper flags on the appropriate packages If you give me exactly what needs to be done so I don't have to search the archives for it, I can probably add just that part for you in short order. Take your pick (and let me know). -- -Eric 'shubes' - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [qmailtoaster] Upgrade
Eric, It looks as though this is what would be required to do this.. At least for centos rpmbuild --rebuild --with cnt40 --define 'spambox 1' qmailadmin-toaster-*.src.rpm rpmbuild --rebuild --with cnt40 --define 'spambox 1' maildrop-toaster-*.src.rpm sorry for the first being on two lines. Thanks Q On Wed, 2006-12-20 at 21:14 -0700, Eric Shubes wrote: Kyle Quillen wrote: Hey all, I need to do some package updates and was wondering if I use the qtp to do the upgrade if I will need to recompile the vpopmail rpms inorder to keep the spam box or is there something in the scripts that I can modify to keep that option installed. Much thanks Q I haven't gotten around to adding these options (or a way to select them) to the qtp-newmodel script yet. However, I'm planning to do some enhancements to the script soon, like by the end of next week. So you can: .) wait for the enhancements .) do the upgrade and rebuild the required packages again yourself .) modify your qtp-build-rpms script to include the proper flags on the appropriate packages If you give me exactly what needs to be done so I don't have to search the archives for it, I can probably add just that part for you in short order. Take your pick (and let me know). - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re[2]: [qmailtoaster] over quota message
Greetings, vinay. On 21 ??? 2006 ?., 6:42:34 you wrote: i have installed the qmail on my mail server and i have enjoyed using the same . presently i have one small issue with over quota message . In my setup the people email ids and login id are differnt , email id is mapped to the login id . i.e login id is [EMAIL PROTECTED] and email id is [EMAIL PROTECTED] Could you please give us a bit more info about your setup. Most interesting thing for me is how did you map email ids to login ids? And what is the exact meaning of login id for you? Is it real unix UID, or a something totally different? The lgoin id in my setup is the email account created via which the user can login to the webmail , configure outlook etc .But the email address for me is the aliases i have created for the user. here the login id address is not given to the client ,but the alias address is what is given to the client .I dont want to show the actual email account created for the external world , this is the reason i want to hide the same in the overquota msg . Please, don't do top-posting, it makes reading up the replies much difficult for other users of mailing list. As for your question, there's no easy way to do the thing you want while keeping the setup you have. That is so because of the nature of qmail itself. Aliases don't have any quota interconnected with them, and they are one-way tickets. If a message came to a real mailbox through alias - there is no way in determining it except for parsing headers for that message. That will bring additional load to a server, and is unnecessary in general case, so either qmail and vpopmail don't support it at all. As always, you can write a patch for that yourself, or ask someone else to do it for you, either in commercial or a free way. Another possibility is to get rid of aliases at all. You can try to do as following (let's assume that the mail login is user, and an e-mail address is [EMAIL PROTECTED]): 1. Login as root to mail server. 2. Remove the alias you have for [EMAIL PROTECTED] 3. Do the following: # ~vpopmail/bin/vadduser [EMAIL PROTECTED] topsecretpassword # rm -fr ~vpopmail/domains/mydomain.com/user.surname # ln -s ~vpopmail/domains/mydomain.com/user ~vpopmail/domains/mydomain.com/user.surname Now you'd got tho separate login ids in your system pointing out to the same mailbox folder. You users will be able to use old settings without any change and need to reconfigure, while all bounce messages will have [EMAIL PROTECTED] included instead of [EMAIL PROTECTED] for all the messages sent to [EMAIL PROTECTED]. Keep in mind that such setup will bring you additional headache with account management, especially when you will need to rename or delete some of the [EMAIL PROTECTED] addresses. -- Best regards, Alexey Loukianov mailto:[EMAIL PROTECTED] System Engineer, IT Department, Lavtech Corp - QmailToaster hosted by: VR Hosted http://www.vr.org - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]