Re: [qmailtoaster] bounce back
The solution I found to work quickest and easiest was to edit /etc/clamav-unofficial-updates.conf (not at a computer right now, but if memory serves me correctly it was named something close to that) and comment out the 3 lines corresponding to the mbl databases to load. It was something like: mbl_dbs: mbl.ndb then I just re-ran the clamav-unofficial-updates script as it appears in the the cron script under /etc/cron.d/ Then just for the heck of it I ran qmail-clam -s restart That disables the mbl db and seemed to work for us for the time being. However, it would be nice if there was a bit more automation we could build into this that would test definitions before applying them and allow for a quick and easy rollback or auto-failover that could run on its own to prevent such issues from occurring and would rollback or disable the definitions if certain characteristics were met. Just my two cents. --Casey James Price Operations/Technical Support Smile Global 800-541-9794 www.smileglobal.com Sent with Sparrow (http://www.sparrowmailapp.com/?sig) On Thursday, August 22, 2013 at 8:56 AM, Dan McAllister wrote: This is a CLAMAV problem -- one of their vendors (MBL) released a pattern that essentially matches anything with a :// in it -- or any URL. It will also almost always match any attachment with a real message. The fix is to either wait out CLAMAV (or manually update with a freshclam start command); disable CLAMAV scanning (what I did overnight -- it's fixed today [Thurs]); or remove the pattern (beyond my CLAMAV config expertise). Dan On 8/22/2013 3:40 AM, Linux wrote: Hi All, I got the bounce back error every time as, Remote host said: 554 Your email was rejected because it contains the MBL_349876.UNOFFICIAL virus. Can anyone suggest me what to do? Regards, Vivek Patil system admin -- PLEASE TAKE NOTE OF OUR NEW ADDRESS === IT4SOHO, LLC 33 - 4th Street N, Suite 211 St. Petersburg, FL 33701-3806 CALL TOLL FREE: 877-IT4SOHO 877-484-7646 Phone 727-647-7646 Local 727-490-4394 Fax We have support plans for QMail!
Re: [qmailtoaster] Re: Increase file attachment size
Sounds good. I will add this to my list. --Casey James Price Operations/Technical Support Smile Global 800-541-9794 www.smileglobal.com Sent with Sparrow (http://www.sparrowmailapp.com/?sig) On Saturday, August 10, 2013 at 10:44 AM, Eric Shubert wrote: This will affect roundcube as well, I expect. Casey, will you look into ways we can have the squirrelmail-toaster and roundcube-toaster packages change this value to coincide with the stock databytes value? Perhaps we should modify the php.ini file in the %post-install section. Is there a local php.ini file we should have or be modifying? That is preferable to modifying a global configuration file. Thanks. -- -Eric 'shubes' On 08/09/2013 05:29 AM, Dan Page wrote: also if you want to allow web mail to attach larger files you have edit your /etc/php.ini file and increase the post_max_size. post_max_size = 10M will allow a 10M file attachment through squirrel mail. - Original Message - *From:* Hasan Akgöz mailto:hasanak...@mail.ru *To:* qmailtoaster-list@qmailtoaster.com mailto:qmailtoaster-list@qmailtoaster.com *Sent:* Friday, August 09, 2013 4:22 AM *Subject:* Re: [qmailtoaster] Increase file attachment size Hi ; Can you paste your tcp.smtpd file ? 2013/8/9 Linux li...@ikf.co.in mailto:li...@ikf.co.in Dear All, I want to attach 9 M of file but I can only sent 2 M of file size. /var/qmail/control/databytes 10485760 This is my databytes file. Please help me out. Thanks in Advance Vivek - To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com
Re: [qmailtoaster] COS5 kernel updates
Fabian, I usually feel the same way and tend to cringe as I watch yum install the latest kernel and other key components, but I haven't had any problems yet. I'm running a similar build and things seem to be working fine with the latest packages for COS5.9 x64 On another note...what can you tell me about your OpenPGP.js signature...do you have OpenPGP integrated with QMT? If so, how? Our company is VERY interested in offering email encryption to our customers, and have been looking through what's out there and the best way to implement it. Would love to hear your configuration info. (Sorry guys, wasn't trying to hi-jack the thread). --Casey James Price Operations/Technical Support Smile Global 800-541-9794 www.smileglobal.com Sent with Sparrow (http://www.sparrowmailapp.com/?sig) On Friday, July 19, 2013 at 8:29 PM, fsanti...@garden-life.org wrote: -BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Does anyone see any potential issues arising from updating to the newest available kernel ver 2.6.18-348.12.1.el5 on a 64-bit COS5.9 box running latest QMT? I'm always hesitant to apply latest rev of any OS related packages until I'm sure there's no issue. How does everyone else handle package updates? Fabian S. -BEGIN PGP SIGNATURE- Version: OpenPGP.js v.1.20130420 Comment: http://openpgpjs.org wsBcBAEBCAAQBQJR6gPpCRAphWqB7T5XkQAAIh0H/0MkdFQqLzJgFf3kAOGp /ZXVdAoqknk+6AIdV81SbjKB1DpEt/YqzEFRWZZu1VUU1pTILtkhnYQO6Tfs zMJLTBRcBbSndMe+sUOVzkhbvlupO0Ydumtm2Vb1FmAlBpvRjMSbpBX8crmT dv58FW8BiY/Mxywp3q6pvCINBoyEhuFOkJQF91TfLxo6V21r0BSjgQZzeGLk sbSWppyA+DTVqRNTmHijo1SEHNmrw0sGNlj9EAob9bmvX6BkoMhXMpjP714Y TwNw5avRe3MT/gmlCsVuzCGIJ8cgGgxKjYMcMtYfbnhej2OdqznKmHDhCa08 jWH6TwGPlt6STDOsFRAy744= =GyKp -END PGP SIGNATURE- - To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com
Re: [qmailtoaster] Re: moving from old vpopmail to new
Jon, Here is a script I found a while back and have been using ever since to migrate users from our old Solaris box that is running and old version Qmail Rocks over to the Linux boxes running the latest version of QMT...I know its probably different than FreeBSD, but I would think it should work with a little bit of modification. Using it is simple: # migrate-domain example.com The command above would create a set of tarballs in the current directory for each user account, one for the domain, and would generate a script to re-create all of the accounts, mailing lists, aliases, etc. The only thing I've ever had an issue with was when certain characters were used in the passwords - so I just had to update the import script and change the character for any passwords that reported an issue. Hope this helps. Casey James Price Operations/Technical Support www.smileglobal.com On 5/1/13 10:00 AM, Eric Shubert wrote: On 04/30/2013 03:03 PM, Dan McAllister wrote: On 4/30/2013 5:14 PM, Myers, Jon W wrote: I've got a few domains on a REAL old qmail/vpopmail server setup on FreeBSD, and want to move some of them to my newest qmail toaster box. the old system has all the domains in a single MySQL table called 'vpopmail'. Doing a mysql select statement is trivial to extract out domain by domain, but I'm wondering about passwords.. on the old server, passwords are 13 characters; similar to r;8U.kVPtX9oR (changed a few characters around in this post). On the new, qmailtoaster server, passwords are sometimes in $1$ format, and sometimes in that 13 character format. Old vpopmail is 5.0, new is 5.4.33 Does anyone know if I can just manually import the data into the new database, and have the passwords just work? Also, after creating the domain on the new server, is it ok to create accounts by just putting them in the database, and making the directories, or does something else need to be updated as well? - To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com Yes, as your example shows, the password encryption method is apparent in the format: - 13 characters (NOT starting with $1$) is the old CRYPT format (not that hard to crack, and only really USES the first 8 chars) - $1$ passwords are the newer hash (I don't recall offhand what it is, likely an MD5 variant) and uses the entire password/pass phrase the auth algorithms will allow either, but generally use the the newer one when passwords are changed I hope this helps Dan IT4SOHO Interesting, Dan. Thanks. IMO, the vpopmail database is a bit convoluted. Rather than becoming intimately familiar with it, I would consider writing a script to add the accounts from a flat file. That's pretty simple to do, provided you can deal with giving people new passwords. Once the accounts are created on the new host, you can simply rsync the Maildirs over from the old host and be good to go. You should also check any forwards on the old system. The current vpopmail stores them in the database, while I think it used to use the .qmail files. I'm not sure when that change occurred. The old .qmail files will still work, but I don't expect that qmailadmin will recognize them at all. HTH2. #!/bin/bash # # migrate-domain # John Simpson j...@jms1.net 2007-10-05 # # Full documentation at http://qmail.jms1.net/scripts/migrate-domain.shtml # # 2007-12-11 jms1 - adding explicit PATH assignment to generated script, # marking generated script executable. # # 2007-12-20 jms1 - fixing code to handle ezmlm lists and autoresponders. # # 2008-02-25 jms1 - removing double
Re: [qmailtoaster] Unable to change bounce processing with qmailadmin
I've experienced the same issue. Any ideas what might be causing this? Casey James Price Operations/Technical Support www.smileglobal.com On 2/15/13 9:37 PM, Cecil Yother, Jr. wrote: On 02/15/2013 05:39 PM, Eric Shubert wrote: I'm running qmailadmin 1.2.16 (with vpopmail 5.4.33), and when I click on an account's catchall button or otherwise attempt to change the catchall status for the domain, it simply returns a blank page without having changed anything. The url appears to be properly formatted, and I see what appears to be a normal message in the apache access log. I'm running the same version on several hosts, and they all have this problem. Anyone else experiencing this? I'm guessing that the latest upgrade broke something. The permissions of the files all look ok. I've looked at the C source code, and it appears that if there's a problem, it should be showing a message somewhere. I'm wonder if perhaps it's not getting to that point in the code. Anyone have any input on this? Thanks. Eric, I am experiencing the same problem here. On the same machine I am having trouble with vadddomain CJ
Re: [qmailtoaster] Re: Generating a report for a domain
Thanks Pak!
Casey James Price
Operations/Technical Support
www.smileglobal.com
On 12/13/12 8:03 AM, Pak Ogah wrote:
On 11/20/12 11:19, Casey James Price
wrote:
Anyone!?!
Help, please...
Hi Casey,
I don't know if you still need this. but I stumble upon my
colleague's blog and found a script to find which account (in a
domain) is forwarding his email, leave a copy on his account and
setup vacation notice
script:
#!/bin/bash
DOM=/home/vpopmail/domains/domain.com
LOG=/tmp/user.txt
LOG2=/tmp/user2.txt
LOG3=/tmp/hasil-forwad.txt
rm -rf $LOG3
find $DOM -iname
Maildir $LOG
awk -F/ '{print $6}' $LOG $LOG2
for i in `cat $LOG2`;
do
if [ -f /$RPX/$i/.qmail ];
then
echo "$i forwad
to" $LOG3
echo `cat
$DOM/$i/.qmail` $LOG3
echo ""
$LOG3
fi
done
rm -rf $LOG2
$LOG
result sample:
gartha
forwad to
akurnia...@holding.com
djunaedi
forwad to
/home/vpopmail/domains/holding.com/djunaedi/Maildir/
| /usr/bin/autorespond
86400 3 /home/vpopmail/domains/holding.com/djunaedi/vacation/message /home/vpopmail/domains/holding.com/djunaedi/vacation
novitarini
forwad to
/home/vpopmail/domains/holding.com/novitarini/Maildir/
mhafiizh
forwad to
hafiizh@gmail.com
/home/vpopmail/domains/holding.com/mhafiizh/Maildir/
[qmailtoaster] DMARC, anyone?
Recently came across an interesting sounding approach for combating spam and forged senders. Just wanted to see if anyone else has heard about this, tried deploying it, or if it is something Qmailtoaster is capable of doing. Domain-based Message Authentication, Reporting Conformance http://dmarc.org/overview.html -- Casey James Price Operations/Technical Support www.smileglobal.com
Re: [qmailtoaster] Re: Generating a report for a domain
Anyone!?! Help, please... Casey James Price Operations/Technical Support www.smileglobal.com On 11/14/12 5:08 PM, Casey James Price wrote: Hi all, Just wanted to follow up and see if anyone had any suggestions on this one. Our customer has been nagging at us to figure this one out. Thanks, Casey James Price Operations/Technical Support www.smileglobal.com On 10/24/12 10:02 AM, Eric Shubert wrote: On 10/24/2012 06:18 AM, Pak Ogah wrote: On 10/23/12 6:21, Eric Shubert wrote: On 10/22/2012 03:45 PM, Casey James Price wrote: Hi there, Just curious if there is a way to generate a report of all accounts belonging to a particular domain that are configured to forward to another account, and if this is possible - can you include the address it is set to forward to? One of our customers with 700 or so accounts is wanting do this, so I thought I'd ask the list if anyone else has been able to. Thanks in advance, -- /*Casey James Price*/ A farily simply mysql query should do the trick. Any dba types care to jump in on this? what stored on mysql is vpopmail.valias table. contains list of aliases that have been created not forward address list of forwarded address is available on file /home/vpopmail/domains.com/user/.qmail you need to check if .qmail exist on every user's folder and what's in it - I think forwards are the same as aliases in the QMT configuration, and are stored in the database. I don't have time to look into this right now. Can someone please confirm?
Re: [qmailtoaster] Re: Generating a report for a domain
Hi all, Just wanted to follow up and see if anyone had any suggestions on this one. Our customer has been nagging at us to figure this one out. Thanks, Casey James Price Operations/Technical Support www.smileglobal.com On 10/24/12 10:02 AM, Eric Shubert wrote: On 10/24/2012 06:18 AM, Pak Ogah wrote: On 10/23/12 6:21, Eric Shubert wrote: On 10/22/2012 03:45 PM, Casey James Price wrote: Hi there, Just curious if there is a way to generate a report of all accounts belonging to a particular domain that are configured to forward to another account, and if this is possible - can you include the address it is set to forward to? One of our customers with 700 or so accounts is wanting do this, so I thought I'd ask the list if anyone else has been able to. Thanks in advance, -- /*Casey James Price*/ A farily simply mysql query should do the trick. Any dba types care to jump in on this? what stored on mysql is vpopmail.valias table. contains list of aliases that have been created not forward address list of forwarded address is available on file /home/vpopmail/domains.com/user/.qmail you need to check if .qmail exist on every user's folder and what's in it - I think forwards are the same as aliases in the QMT configuration, and are stored in the database. I don't have time to look into this right now. Can someone please confirm?
[qmailtoaster] Generating a report for a domain
Hi there, Just curious if there is a way to generate a report of all accounts belonging to a particular domain that are configured to forward to another account, and if this is possible - can you include the address it is set to forward to? One of our customers with 700 or so accounts is wanting do this, so I thought I'd ask the list if anyone else has been able to. Thanks in advance, -- Casey James Price Operations/Technical Support www.smileglobal.com
[qmailtoaster] Question regarding whitelisting/blacklisting senders via spamdyke
Hi there, Just curious about which list takes priority when spamdyke is set to blacklist a specific domain via blacklist_senders and then whitelist a specific email address on that domain via whitelist_senders. Is this doable, or would it simply block the entire domain? *Example:* /blacklist_senders:/_ _...@abc.com /whitelist_senders:/ john...@abc.com In this example, would mail sent from john...@abc.com be allowed through even though @abc.com is listed in blacklist_senders? Thanks, -- Casey James Price Smile Global Technical Support Submit or check trouble tickets http://billing.smileglobal.com www.smileglobal.com http://www.smileglobal.com Follow us on Twitter https://twitter.com/#%21/SmileInternet Find us on Facebook https://www.facebook.com/smileglobal
Re: [qmailtoaster] Whitelisting in SpamAssassin
Thanks Gilbert. The main thing that separates my current configuration from most of QMT users is the fact that my company is using 3 different QMT Gateway hosts (these boxes are basically just running the core components of QMT + Spamydke, and then with the help of smtproutes, pass the traffic to the QMT spamassassin box, and from there it goes to either a legacy Solaris QMR install, or bypasses SA1 altogether and goes to an up-to-date standard QMT server). I'm working on consolidating the roles of the servers so that the gateway boxes also run SA, and then are passed off to a mailbox server, however for the time being my SpamAssassin server doesn't contain any of the users or mailboxes and strictly receives whatever the gateways allow and pass to it, and then it uses sa simscan to filter that mail before it is handed off to its final destination. Sowith all of that in mind, anyone have any further recommendations? Thanks everyone! Casey James Price Smile Global Technical Support Submit or check trouble tickets http://billing.smileglobal.com www.smileglobal.com http://www.smileglobal.com Follow us on Twitter https://twitter.com/#%21/SmileInternet Find us on Facebook https://www.facebook.com/smileglobal On 9/4/12 4:54 PM, Gilbert T. Gutierrez, Jr. wrote: If you are adding the whitelist rules on a user by user case, you need to add the flag allow_user_rules 1 to your local.cf. I store all my user specific rules in MySQL for spamassassin and I use whitelist_from. The whitelist_from never worked until I added the allow_user_rules 1 in the local.cf. Gilbert T. Gutierrez, Jr. Operations Manager Phoenix Internet On 8/30/2012 1:41 PM, Casey James Price wrote: Hi all, One of my customers is having an issue with emails being incorrectly classified as spam by SpamAssassin. They are using a 3rd party site with a form to handle registrations from customers. The form is configured to send the mail to a specific user on their domain (in this case lets call that a...@example.com)...the form is also setup so that the From and reply-to addresses point to whatever email addresss the user filling out the form inputs. I can see in my spamdyke logs that those messages are originating from skyride.digiknows.com, so I went ahead and tried whitelisting that address in spamdyke for the whitelist_senders list, but where I'm having problems is that spamassassin is still classifying the mail as spam. I tried whitelist_from *@skyride.digiknows.com as well as whitelist_from_rcvd (not sure if I fully understand how this one works though). Running the latest release of QMT/QTP. Here is a snippet from my local.cf ok_locales all skip_rbl_checks 1 required_score 5 report_safe 0 rewrite_header Subject [SPAM] SA1 use_pyzor 1 use_auto_whitelist 1 bayes_path /home/vpopmail/.spamassassin/bayes use_bayes 1 use_bayes_rules 1 bayes_auto_learn 1 bayes_auto_learn_threshold_spam 6.5 bayes_auto_learn_threshold_nonspam 0.1 bayes_auto_expire 1 loadplugin Mail::SpamAssassin::Plugin::URIDNSBL score FH_DATE_PAST_20XX 0.0 # Rule2XSBody - speedup by compilation of rulseset to native code loadplugin Mail::SpamAssassin::Plugin::Rule2XSBody trusted_networks 69.7.35.11 69.7.35.25 69.7.35.131 69.7.35.42 whitelist_from *@skyride.digiknow.com whitelist_from_rcvd *@skyride.digiknow.com skyride.digiknow.com whitelist_allows_relays s...@clevelandmetroparks.com Anyone have any ideas? Thanks! -- Casey James Price Smile Global Technical Support Submit or check trouble tickets http://billing.smileglobal.com www.smileglobal.com http://www.smileglobal.com Follow us on Twitter https://twitter.com/#%21/SmileInternet Find us on Facebook https://www.facebook.com/smileglobal - To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com
[qmailtoaster] Whitelisting in SpamAssassin
Hi all, One of my customers is having an issue with emails being incorrectly classified as spam by SpamAssassin. They are using a 3rd party site with a form to handle registrations from customers. The form is configured to send the mail to a specific user on their domain (in this case lets call that a...@example.com)...the form is also setup so that the From and reply-to addresses point to whatever email addresss the user filling out the form inputs. I can see in my spamdyke logs that those messages are originating from skyride.digiknows.com, so I went ahead and tried whitelisting that address in spamdyke for the whitelist_senders list, but where I'm having problems is that spamassassin is still classifying the mail as spam. I tried whitelist_from *@skyride.digiknows.com as well as whitelist_from_rcvd (not sure if I fully understand how this one works though). Running the latest release of QMT/QTP. Here is a snippet from my local.cf ok_locales all skip_rbl_checks 1 required_score 5 report_safe 0 rewrite_header Subject [SPAM] SA1 use_pyzor 1 use_auto_whitelist 1 bayes_path /home/vpopmail/.spamassassin/bayes use_bayes 1 use_bayes_rules 1 bayes_auto_learn 1 bayes_auto_learn_threshold_spam 6.5 bayes_auto_learn_threshold_nonspam 0.1 bayes_auto_expire 1 loadplugin Mail::SpamAssassin::Plugin::URIDNSBL score FH_DATE_PAST_20XX 0.0 # Rule2XSBody - speedup by compilation of rulseset to native code loadplugin Mail::SpamAssassin::Plugin::Rule2XSBody trusted_networks 69.7.35.11 69.7.35.25 69.7.35.131 69.7.35.42 whitelist_from *@skyride.digiknow.com whitelist_from_rcvd *@skyride.digiknow.com skyride.digiknow.com whitelist_allows_relays s...@clevelandmetroparks.com Anyone have any ideas? Thanks! -- Casey James Price Smile Global Technical Support Submit or check trouble tickets http://billing.smileglobal.com www.smileglobal.com http://www.smileglobal.com Follow us on Twitter https://twitter.com/#%21/SmileInternet Find us on Facebook https://www.facebook.com/smileglobal
[qmailtoaster] Rejecting mail from specific domains for certain users
Hi all, Quick question - one of my customers is getting spammed by a number of yahoo.com email addresses, and I was wondering how I might go about blocking mail for the entire yahoo.com domain...but only for his email addresses? Would this be doable with spamdyke or spamassassin? Thanks! -- Casey James Price Smile Global Technical Support Submit or check trouble tickets http://billing.smileglobal.com www.smileglobal.com http://www.smileglobal.com Follow us on Twitter https://twitter.com/#%21/SmileInternet Find us on Facebook https://www.facebook.com/smileglobal
Re: [qmailtoaster] Rejecting mail from specific domains for certain users
Thanks Brent. Is there any way to do this with spamdyke so that the message never enters the system? The customer has 4 or 5 different email addresses, so I'm looking for the most effective method. Thanks, Casey James Price Smile Global Technical Support Submit or check trouble tickets http://billing.smileglobal.com www.smileglobal.com http://www.smileglobal.com Follow us on Twitter https://twitter.com/#%21/SmileInternet Find us on Facebook https://www.facebook.com/smileglobal On 7/11/12 4:44 PM, Brent Gardner wrote: On 07/11/2012 04:25 PM, Casey James Price wrote: Hi all, Quick question - one of my customers is getting spammed by a number of yahoo.com email addresses, and I was wondering how I might go about blocking mail for the entire yahoo.com domain...but only for his email addresses? Would this be doable with spamdyke or spamassassin? Thanks! How about this: (SpamAssassin rule) header __AT_JOE ToCc =~ /\bjoe\@example\.com/i header __FROM_YAHOO_1 From =~ /\byahoo\.com/i header __FROM_YAHOO_2 EnvelopeFrom =~ /\byahoo\.com/i header __FROM_YAHOO_3 Received =~ /\byahoo\.com/i meta __FROM_YAHOO ( __FROM_YAHOO_1 || __FROM_YAHOO_2 || __FROM_YAHOO_3 ) meta YAHOO_SPAM_JOE ( __AT_JOE __FROM_YAHOO ) describe YAHOO_SPAM_JOE To Joe via Yahoo score YAHOO_SPAM_JOE 5.0 Brent Gardner - To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com
Re: [qmailtoaster] Re: Issue with qtp-ami-up2date
On 6/20/12 7:35 AM, Eric Shubert wrote: On 06/19/2012 05:51 PM, Casey James Price wrote: Just to make sure I've got this right, you are saying to change line 56 in qtp-get-pkg-list to what you have listed above, right? I tried this and then ran qtp-ami-up2date again and am still getting an error. Oops. Also delete the line containing: djbdns \ just a little before that. I did that in the script already, but forgot to tell you. If that doesn't do it, try grabbing the script from the qtp site. You can see it at http://qtp.qmailtoaster.com/trac/browser/bin/qtp-get-pkg-list and download it using the Original Format link at the bottom of that page. So, needless to say, I'm hoping to stick with djbdns for a bit at least on some of these boxes. Q2 and my vcluster1 box (yes, the name does in-fact say it all...its built following the guidelines from Jake's QMT ISP Array video series) both run QMT and bind as the resolver if I remember correctly, but my old Solaris boxes and their latest re-incarnations on the Linux side of things are using tinydns to provide DNS for the customers. Anyways, sorry to ramble on...these last two paragraphs or so don't really have much relevance in this whole issue, but I just wanted to explain where I was coming from. Thanks, nice to know. I wouldn't necessarily change from djbdns to something else if it's being used for authoritative dns (ie you have zones coded with it). Then again, I wouldn't put an authoritative DNS server on a QMT host either, but that's just me. I do however recommend using pdns-recursor (powerdns) or caching-nameserver (bind9) on a QMT host. Thanks Eric. That did the trick. Casey James Price Smile Global Technical Support Submit or check trouble tickets http://billing.smileglobal.com www.smileglobal.com http://www.smileglobal.com Follow us on Twitter https://twitter.com/#%21/SmileInternet Find us on Facebook https://www.facebook.com/smileglobal
Re: [qmailtoaster] Re: Issue with qtp-ami-up2date
On 6/19/12 8:14 AM, Eric Shubert wrote: On 06/19/2012 04:26 AM, Bharath Chari wrote: On Tuesday 19 June 2012 09:45 AM, Casey Price wrote: On 6/18/12 8:13 AM, Cecil Yother, Jr. wrote: On 06/18/2012 07:58 AM, Eric Shubert wrote: On 06/17/2012 11:33 PM, Casey Price wrote: Hi all, Just noticed a problem on one of my virtualized xen QMT boxes when running qtp-ami-up2date Received the following error: /usr/sbin/qtp-config: line 168: 1.el5: syntax error: invalid arithmetic operator (error token is .el5) I'm running CentOS 5.8 i386. Any ideas? Thanks, -- Casey Price Leave it to CJ to break something. ;) Please post: # rpm -q | grep toaster | sort That part of the code is comparing the installed version of a package to the version listed as current. It's a little tricky to do, at least in a shell script. Given that it's choking on 1.el5, where it appears to need simply 1, I'm guessing that a package that is installed on your system which has el5 in it at the end, where the stock QMT packages do not. The result of the command above may show us this. That definitely makes sense... Here is the output (BTW, *rpm -q |grep toaster |sort *throws back the following error: *rpmq: no arguments given for query*) However, running this seems to do the trick: *rpm -qa |grep toaster |sort * autorespond-toaster-2.0.4-1.3.6 clamav-toaster-0.97.4-1.4.0 control-panel-toaster-0.5-1.3.7 courier-authlib-toaster-0.59.2-1.3.10 courier-imap-toaster-4.1.2-1.3.10 daemontools-toaster-0.76-1.3.6 isoqlog-toaster-2.1-1.3.7 libdomainkeys-toaster-0.68-1.3.6 libsrs2-toaster-1.0.18-1.3.6 maildrop-toaster-2.0.3-1.3.8 maildrop-toaster-devel-2.0.3-1.3.8 qmailmrtg-toaster-4.2-1.3.6 qmail-pop3d-toaster-1.03-1.3.22 qmail-toaster-1.03-1.3.22 qmailtoaster-plus-0.3.2-1.4.18 qmailtoaster-plus.repo-0.2-2 ripmime-toaster-1.4.0.6-1.3.6 simscan-toaster-1.4.0-1.3.8 spamassassin-toaster-3.2.5-1.3.17 ucspi-tcp-toaster-0.88-1.3.9 vpopmail-toaster-5.4.17-1.3.7 As far as I can recall, no - I haven't built any customized version of any of the packages (its possible, but I'm pretty darn sure everything is stock, as I just recently built this host. rpmforge packages use .el5 . Did you update something from there? Just guessing here. Bharath What about # rpm -qa | grep djbdns ? Ahh, looks like we do have something here... djbdns-1.05-1.el5 So, what do I do now. Casey James Price Smile Global Technical Support Submit or check trouble tickets http://billing.smileglobal.com www.smileglobal.com http://www.smileglobal.com Follow us on Twitter https://twitter.com/#%21/SmileInternet Find us on Facebook https://www.facebook.com/smileglobal
Re: [qmailtoaster] Re: Mail Certificates
Amit, I'm also going to be in the market for some certs pretty quick here - what is the best way to go about getting a cert through you? Also, on a sidenote - since I'm in the email web hosting business I did have a question regarding implementation of SSL certs with QMT and wanted to find out some best practice recommendations for how a provider should setup there SSL infrastructure? Currently we have several QMT servers each with different roles, but I'd say primarily there are three (3) main Qmail/QMT servers that house the mailboxes and users. So, in the early days when most of the customers were using email addresses from domain names we provided it was simple, they would all have the same incoming and outgoing mail servers i.e.; pop.smileglobal.com, smtp.smileglobal.com However, nowadays we often setup the appropriate names in DNS that map pop.customer.com to pop.smileglobal.com, etc. Now what I'm unsure about is the best way to start utilizing SSL/TLS for these customers - here is where I need some help - 1) When using the customer's domain name for the incoming/outgoing servers this obviously increases the amount of certs that a provider will end up needing - so do you put this on the customer to provide, or do you go with a wildcard cert, or? 2) Is it possible to have multiple certs installed on a QMT host and have them all share the same IP? How do other providers handle this? Thanks guys! Casey James Price Smile Global Technical Support Submit or check trouble tickets http://billing.smileglobal.com www.smileglobal.com http://www.smileglobal.com Follow us on Twitter https://twitter.com/#%21/SmileInternet Find us on Facebook https://www.facebook.com/smileglobal On 6/19/12 5:09 AM, Ron Pacheco wrote: Amit, I'm going to need a few certs in the coming week, what's the procedure here? Send you the CSR in an email? Or is there an official web site or interface that we should go through? Thanks! Ron On 6/18/2012 1:04 PM, Amit wrote: I accept paypal. With Regards, Amit Dalia *From: *Natalio Gatti nga...@gmail.com mailto:nga...@gmail.com *Date: *Mon, 18 Jun 2012 12:17:21 -0300 *To: *qmailtoaster-list@qmailtoaster.com mailto:qmailtoaster-list@qmailtoaster.com *ReplyTo: *qmailtoaster-list@qmailtoaster.com mailto:qmailtoaster-list@qmailtoaster.com *Subject: *Re: [qmailtoaster] Re: Mail Certificates Amit, which payment methods do you accept? On Mon, Jun 18, 2012 at 12:03 PM, Eric Shubert e...@shubes.net mailto:e...@shubes.net wrote: Personally, I'd pay a little more for a cert from a QMT community member than one from the likes of GD. I'm sure the customer service would be much better! :) Please feel free to update the wiki appropriately with your information. Thanks Amit. -- -Eric 'shubes' On 06/18/2012 07:26 AM, Amit wrote: Hi Everyone, I'm reseller for various SSL service provide like Verisign , GeoTrust, Thwate and Rapid SSL. So if required I can provide SSL certificates to all qmailtoaster users on a good price. RAPID SSL certificate @ $11.95 for 1 year. If required email me personally. And please don't treat this email as a marketing email, it is just to help community members to get certificate on some good and reasonable price. *Amit Dalia** * *From:*Natalio Gatti [mailto:nga...@gmail.com mailto:nga...@gmail.com] *Sent:* Monday, June 18, 2012 6:40 PM *To:* qmailtoaster-list@qmailtoaster.com mailto:qmailtoaster-list@qmailtoaster.com *Subject:* Re: [qmailtoaster] Mail Certificates Nice and cheap! Thanks. On Mon, Jun 18, 2012 at 9:44 AM, Jens Galsgaard j...@gitservice.dk mailto:j...@gitservice.dk mailto:j...@gitservice.dk mailto:j...@gitservice.dk wrote: Personally I use Godaddy, you can get SSL certs for $12.99 with the *cjcssl12t2* promo code. Venlig hilsen, Jens Galsgaard *Gitservice.dk * *Fra: *Natalio Gatti nga...@gmail.com mailto:nga...@gmail.com mailto:nga...@gmail.com mailto:nga...@gmail.com *Til: *qmailtoaster-list@qmailtoaster.com mailto:qmailtoaster-list@qmailtoaster.com mailto:qmailtoaster-list@qmailtoaster.com mailto:qmailtoaster-list@qmailtoaster.com *Sendt: *mandag, 18. juni 2012 14:42:53 *Emne: *[qmailtoaster] Mail Certificates I need to buy a digital certificate for my qmail server. In the wiki there is a link to DiscountWebCerts. Do you still recomend them? Is there any other server? And one more question: Those cheap RapidSSL certificates are fully compatible with outlook? Thanks, Natalio. - To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com mailto:qmailtoaster-list
Re: [qmailtoaster] Re: Issue with qtp-ami-up2date
On 6/19/12 12:26 PM, Eric Shubert wrote: On 06/19/2012 11:59 AM, Casey James Price wrote: On 6/19/12 8:14 AM, Eric Shubert wrote: On 06/19/2012 04:26 AM, Bharath Chari wrote: On Tuesday 19 June 2012 09:45 AM, Casey Price wrote: On 6/18/12 8:13 AM, Cecil Yother, Jr. wrote: On 06/18/2012 07:58 AM, Eric Shubert wrote: On 06/17/2012 11:33 PM, Casey Price wrote: Hi all, Just noticed a problem on one of my virtualized xen QMT boxes when running qtp-ami-up2date Received the following error: /usr/sbin/qtp-config: line 168: 1.el5: syntax error: invalid arithmetic operator (error token is .el5) I'm running CentOS 5.8 i386. Any ideas? Thanks, -- Casey Price Leave it to CJ to break something. ;) Please post: # rpm -q | grep toaster | sort That part of the code is comparing the installed version of a package to the version listed as current. It's a little tricky to do, at least in a shell script. Given that it's choking on 1.el5, where it appears to need simply 1, I'm guessing that a package that is installed on your system which has el5 in it at the end, where the stock QMT packages do not. The result of the command above may show us this. That definitely makes sense... Here is the output (BTW, *rpm -q |grep toaster |sort *throws back the following error: *rpmq: no arguments given for query*) However, running this seems to do the trick: *rpm -qa |grep toaster |sort * autorespond-toaster-2.0.4-1.3.6 clamav-toaster-0.97.4-1.4.0 control-panel-toaster-0.5-1.3.7 courier-authlib-toaster-0.59.2-1.3.10 courier-imap-toaster-4.1.2-1.3.10 daemontools-toaster-0.76-1.3.6 isoqlog-toaster-2.1-1.3.7 libdomainkeys-toaster-0.68-1.3.6 libsrs2-toaster-1.0.18-1.3.6 maildrop-toaster-2.0.3-1.3.8 maildrop-toaster-devel-2.0.3-1.3.8 qmailmrtg-toaster-4.2-1.3.6 qmail-pop3d-toaster-1.03-1.3.22 qmail-toaster-1.03-1.3.22 qmailtoaster-plus-0.3.2-1.4.18 qmailtoaster-plus.repo-0.2-2 ripmime-toaster-1.4.0.6-1.3.6 simscan-toaster-1.4.0-1.3.8 spamassassin-toaster-3.2.5-1.3.17 ucspi-tcp-toaster-0.88-1.3.9 vpopmail-toaster-5.4.17-1.3.7 As far as I can recall, no - I haven't built any customized version of any of the packages (its possible, but I'm pretty darn sure everything is stock, as I just recently built this host. rpmforge packages use .el5 . Did you update something from there? Just guessing here. Bharath What about # rpm -qa | grep djbdns ? Ahh, looks like we do have something here... djbdns-1.05-1.el5 So, what do I do now. Casey James Price Smile Global Technical Support Submit or check trouble tickets http://billing.smileglobal.com www.smileglobal.com http://www.smileglobal.com Follow us on Twitter https://twitter.com/#%21/SmileInternet Find us on Facebook https://www.facebook.com/smileglobal I've modified qtp-get-pkg-list to skip djbdns. That's not a -toaster package, and we never update it. We'll keep it around for posterity, but it won't be the preferred dns resolver. The caching-nameserver (bind9) and pdns-recursor are both part of the centos base repos. Pick either one (my preference is pdns-recursor). The simplest way to get the fix for qtp-get-pkg-list until I cut a new QTP release will be to simply edit the file manually. Change line 56 from this: $pkg | zlib ) to this: $pkg | zlib | djbdns ) Let us know if that fixes it up. Just to make sure I've got this right, you are saying to change line 56 in qtp-get-pkg-list to what you have listed above, right? I tried this and then ran qtp-ami-up2date again and am still getting an error. Its not a big deal right now, as I built the RPM for the latest version of clamav from the spec file and got it installed, but this is definitely something I'd like to fix moving forward. We are using dbjdns as our primary backbone on our DNS servers as its what was in-place when I took over the company, its simple, and its been working well. It just so happens that this particular VPS is setup with the intention of being an offsite DNS server as well as MX server via QMT (one of the providers I've been using is Thrust:VPS aka Damn:VPS...my gateway3 box is OpenVZ and has had its share of problems...for some reason these guys have a very hard time keeping the VPS running all week long and I'm constantly finding myself contacting them to reboot it as their SolusVM interface doesn't actually work - however...I setup a xen-based VPS with them over in the UK a few months back and haven't hadf any issues with it at all, so I figured I would make this a backup MX server and also utilize the VPS to take the role of my current d.ns.smileglobal.com DNS server) So, needless to say, I'm hoping to stick with djbdns for a bit at least on some of these boxes. Q2 and my vcluster1 box (yes, the name does in-fact say it all...its built following the guidelines from Jake's QMT ISP Array video series) both run QMT and bind as the resolver if I remember correctly, but my old Solaris boxes and their latest re-incarnations on the Linux side
