Re: [qmailtoaster] SPF rejecting test mode

[George Sweetnam]

That's a very good idea Tim  I'm going to do it too!

George S
- Original Message - 
From: "Tim Mancour" <[EMAIL PROTECTED]>

To: <[EMAIL PROTECTED]>
Sent: Monday, April 09, 2007 4:24 PM
Subject: RE: [qmailtoaster] SPF rejecting test mode



Eric,

I had to back off to a value of 3 for the same reason. Since I've observed
that Email's that return softfail are often spam I added the following 
rule

to my local.cf file:
 header spf_softfail Received-SPF =~ /softfail/
 score spf_softfail 1.0

Regards,
Tim


-Original Message-
From: Jake Vickers [mailto:[EMAIL PROTECTED]
Sent: Monday, April 09, 2007 4:53 PM
To: [EMAIL PROTECTED]
Subject: Re: [qmailtoaster] SPF rejecting test mode

Eric "Shubes" wrote:

It came to my attention today that my toaster is rejecting messages
based on SPF policy even though the sender's SPF policy indicates that
the domain is
testing:

http://www.openspf.org/[EMAIL PROTECTED]&ip=63.109.97
.44&receiver=doris

I have /var/qmail/control/spfbehavior set to 4 (reject softfail).
Perhaps I should back off to a value of 3 (the stock setting)?q

Has anyone else noticed this behavior?



Yes, I have seen this as well. I had assumed that a SPF record in testing
causing a "softfail" was the proper behavior, since technically it's not
passing.


-
QmailToaster hosted by: VR Hosted 
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]





-
QmailToaster hosted by: VR Hosted 
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: [qmailtoaster] allow relay with authentication

[George Sweetnam]

- Original Message - 
From: "Erik A. Espinoza" <[EMAIL PROTECTED]>

To: 
Sent: Wednesday, April 04, 2007 1:15 AM
Subject: Re: [qmailtoaster] allow relay with authentication



Why can't you just use smtp-auth on port 587?

Erik

On 4/3/07, George Sweetnam <[EMAIL PROTECTED]> wrote:


- Original Message -
From: "Joseph Lundgren" <[EMAIL PROTECTED]>
To: 
Cc: <[EMAIL PROTECTED]>
Sent: Tuesday, April 03, 2007 6:38 PM
Subject: RE: [qmailtoaster] allow relay with authentication


Jim,

In vpopmail terminology, this is called "roaming". Roaming is disabled
by default in the qmailtoaster distribution.  If you read
http://wiki.qmailtoaster.com/index.php/Vpopmail_roaming_users  you'll
see the steps necessary to enable this feature during compilation.


Sincerely,

--
Joseph Lundgren
Systems Engineer
Peak Internet, LLC
[EMAIL PROTECTED]

=
Eric or Erik will this work?
Humm... I've been experimenting with the chroot installation options and
would this work to enable roaming users when using QT+?

echo "--enable-roaming-users"
 >/opt/qmailtoaster-plus/etc/rpmbuild/vpopmail-toaster

Here are the build options for vpopmail-toaster:
rpm  vpopmail-toaster -q --info

The default is off and if we aren't specifying it in the file shouldn't 
it

work?


George Sweetnam


-



That works on most installations (including my personal boxes), but everyone 
has different issues in switching.  My company has 1000's of users on each 
box and many are off network... 587 will be the eventual solution.  If only 
all users could just figure out how to check "smtp server requires 
authorization" and then finding and changing the port setting easy for 
us... as for users ... well... im surprised they know where the on/off 
switches are.  I hate to say it but MS needs to update their clients to 
support it easier because the outlook clients are the most common (by far).


The rpm option didn't work when i tested it so, for now, it's best to 
manually build rpms.


George S.





-
QmailToaster hosted by: VR Hosted <http://www.vr.org>
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: [qmailtoaster] allow relay with authentication

[George Sweetnam]

- Original Message - 
From: "Joseph Lundgren" <[EMAIL PROTECTED]>

To: 
Cc: <[EMAIL PROTECTED]>
Sent: Tuesday, April 03, 2007 6:38 PM
Subject: RE: [qmailtoaster] allow relay with authentication


Jim,

In vpopmail terminology, this is called "roaming". Roaming is disabled
by default in the qmailtoaster distribution.  If you read
http://wiki.qmailtoaster.com/index.php/Vpopmail_roaming_users  you'll
see the steps necessary to enable this feature during compilation.


Sincerely,

--
Joseph Lundgren
Systems Engineer
Peak Internet, LLC
[EMAIL PROTECTED]

=
Eric or Erik will this work?
Humm... I've been experimenting with the chroot installation options and 
would this work to enable roaming users when using QT+?


echo "--enable-roaming-users" 
>/opt/qmailtoaster-plus/etc/rpmbuild/vpopmail-toaster


Here are the build options for vpopmail-toaster:
rpm  vpopmail-toaster -q --info

The default is off and if we aren't specifying it in the file shouldn't it 
work?



George Sweetnam 



-
QmailToaster hosted by: VR Hosted <http://www.vr.org>
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: [qmailtoaster] migration from qmailrocks to qmailtoaster

[George Sweetnam]

- Original Message - 
From: "Jake Vickers" <[EMAIL PROTECTED]>

To: 
Sent: Tuesday, April 03, 2007 2:07 PM
Subject: Re: [qmailtoaster] migration from qmailrocks to qmailtoaster



[EMAIL PROTECTED] wrote:

Hello, I am doing a migration from an old Mandriva 2005 and qmailrocks
installation WITHOUT the use of MYSQL but with Vpopmail.

My new machine is actually a QMT-iso version 1.0.


I usually just transferred the mails in the old Maildir to the same place
into the new machines Maildir, I understand that this wont work with qmt
and mysql.

Please advice me how to do this.


You can create the users in the QMT version, and then once they're created 
copy the emails to the directories. That's the easiest way to do it.




You can also uses the vconvert function for qmail instead of manually adding 
them (if you have a large group of users or encrypted passwords importing is 
much easier).  I've done it a few times from QMR and Shupp's installations 
and here are the basics.  I wish I was at work to look at my notes, but this 
should be all you need.  I have some scripts i wrote which zip and rsync to 
a new server and such, but they are overkill for only a couple of domains. 
I'm not sure I've seen anyone else post correct info on using vconvert 
elsewhere so I'll share because I know this works (10 minutes to write 
):


###

#zip up your old files and move them to the new server... gzip, zip, bzip2 
whatever flavor you like


#i unzip the vpopmail directory from the old server and put it where it 
goes.

# I unzip and untar the archive like this:
tar -xzvf domain.net.vpopmail.tar.gz

# change to the directory where it goes (move the files here if you unzipped 
it elsewhere):

cd /home/vpopmail/domains/

#IMPORTANT>>> THE PATH MUST BE CORRECT OR DELIVERY WILL FAIL
#you should edit the .vpasswd file to correct the paths to the mailboxes or 
it won't work because mysql will have an incorrect location for the 
toaster's mail files:

# use perl, sed or gsub to fix it; i like perl:

#syntax for single words
perl -pi -e's/oldinfo/newinfo/' file-to-work.on
#you have to use a "\"before the directory slashes so a path looks like 
this:

perl -pi -e's/\/oldpath\/goes\/here/\/newpath\/goes\/here/' .vpasswd

#add them to mysql using the built-in converter (reads the vpasswd files and 
imports it)

/var/bin/vconvert -c -m domain1.com
#(you can list more if you want just by using a space and then another 
domain)


#get your vpopmail user password for the next step:
cat /home/vpopmail/etc/vpopmail.mysql | awk -F\| '{print $4}'

#export the mysql database and grep for the domain you added to see if it 
imported (you'll need to know your vpopmail pass):

#(don't worry this just exports... drop is how you get rid of a database)
mysqldump -uvpopmail   vpopmail -p | grep domain

#note - there seems to be an issue with the usercount after importing the 
users and i haven't looked into it to fix it (other than manually editing 
the table value)


#note as a separate reminder (not related to converting) - you may want to 
compile with roaming users because it's not built by default by the toaster.


##
George Sweetnam 



-
QmailToaster hosted by: VR Hosted <http://www.vr.org>
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: [qmailtoaster] spam detection

[George Sweetnam]

- Original Message - 
From: "John" <[EMAIL PROTECTED]>

To: 
Sent: Saturday, March 24, 2007 3:07 PM
Subject: [qmailtoaster] spam detection


   Hi, I have followed the instructions on enabling spam detection in 
Qmailadmin at http://wiki.qmailtoaster.com/index.php/QMail-Toaster:FAQ 
(FAQ 3.6).

   As instructed, I added
echo "--define 'spambox 1'" 
/opt/qmailtoaster-plus/etc/rpmbuild/qmailadmin-toaster

(all one line)
and then ran qtp-newmodel. I don't see any "spam detection" box in 
Qmailadmin I've heard people refer to (it would be in edit/new email 
accounts interface, right?)?

   I found a tutorial for moving spam to a folder using mailfilters at
http://opensourceheaven.net/?page_id=98
I'll give that a try later, but I am feeling like my original efforts 
should have done something based on the discussions I've seen. 
Unfortunately, I see no effect in building Qmailadmin-toaster with the 
spambox 1 option.

Thanks in advance,
John


John,
Log in with the webmail client and you'll see the spam box listed there once 
spam is received.  There is nothing else for you to do.


George S. 



-
QmailToaster hosted by: VR Hosted 
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: [qmailtoaster] qtp 0.2.9-1.3.11 released

[George Sweetnam]

- Original Message - 
From: "Eric "Shubes"" <[EMAIL PROTECTED]>

To: "qmailtoaster-list" 
Sent: Friday, March 09, 2007 4:18 PM
Subject: [qmailtoaster] qtp 0.2.9-1.3.11 released



Changes in this version:
.) removes clamav-toaster before upgrading if installed clamav-toater <=
0.90.1-1.3.11
.) backs up / restores entire /usr/share/clamav directory
.) restore configuration files default changed to 'no'
.) missing package files in linked sandbox no longer fatal (message only)



That'll solve the issues I was having with clam too.  For some reason it was 
installing .10 and .11 at the same time (when upgrading).  The versions of 
the past 2 versions changed their syntax slightly (switching "." and "-").


I've been fighting issues where multilog can't write to the /var/log/qmail 
tree, but figured it out this AM.  I was looking at permissions, but didn't 
look at /var itself.  It'd been changed to being owned by vpopmail.vchkpw 
... nasty surprise!  I didn't find anything which caused it either, but now 
the logging works.  I am a bit puzzled why we don't use some of the 
daemontools features still (svcscanboot).  Without readproctitle running 
it's tough to troubleshoot when you don't have logs.  I made a custom rpm 
for daemontools to get some extras.


Off to fix /etc/hosts now so imap will work (happens every time on a new 
install when i deploy to a pub ip)


---removing xinetd because we're running tcpserver.

George S. 



-
QmailToaster hosted by: VR Hosted 
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: [qmailtoaster] qtp-newmodel and djbdns errors

[George Sweetnam]

- Original Message - 
From: "Eric "Shubes"" <[EMAIL PROTECTED]>

To: 
Sent: Tuesday, March 06, 2007 6:26 PM
Subject: Re: [qmailtoaster] qtp-newmodel and djbdns errors



George Sweetnam wrote:

Eric,
I've been experimenting on a new CentOs build today and have run into a
problem in the install script.

Ran this:
   /opt/qmailtoaster-plus/bin/qtp-newmodel

BEGIN OUTPUT ---
---snip--
qtp-build-rpms - rpm -Uvh failed for djbdns-1.05-1.0.3
qtp-build-rpms - see
/opt/qtp-sandbox/usr/src/qtp-upgrade/log/build-recent.log
Build failed, Exiting.
  END OUTPUT  ---



So I look at the file:
 tail -20  /opt/qtp-sandbox/usr/src/qtp-upgrade/log/build-recent.log

BEGIN OUTPUT ---
Installing djbdns-1.05-1.0.3 in the sandbox ...
error: Failed dependencies:
   djbdns-extcache conflicts with djbdns-1.05-1.0.3.i686
   djbdns conflicts with djbdns-extcache-1.05-1.0.3.i686
   djbdns-localcache conflicts with djbdns-extcache-1.05-1.0.3.i686
   djbdns-extcache conflicts with djbdns-localcache-1.05-1.0.3.i686
  END OUTPUT  ---


I think we have a need to question prior to the installation whether
it's going to be an interal only list or external only.  Then push the
result to the rpm -Uvh command to install the proper version.  [Have
internal be the default].

rpm -Uvh /usr/src/redhat/RPMS/i686/djbdns-1.05-1.0.3.i686.rpm




-
Also I'd recommend adding a "-v" switch to newmodel so the version of
the script is more apparent.
qtp-newmodel -v



George S



Yeah George, djbdns doesn't work with qtp-newmodel at this time
(http://qtp.qmailtoaster.com/ticket/7). I started in on a fix for it, but 
it

got to be a little more than I had anticipated.

I use bind myself, so I haven't had a chance to work out how djbdns should
be handled. Please update the ticket (you'll need to register first) with
any information about how you'd like it to work.

In the meantime, you'll need to deselect djbdns with qtp-newmodel, and
install it manually.

Thanks.

--
-Eric 'shubes'

===

I'll download the new version you put out of qtp-newmodel and start over. 
I'd been making notes of issues and it seems you've already resolved some 
(clamav requiring a second install attempt due to qmaill user/group).


George S. 



-
QmailToaster hosted by: VR Hosted <http://www.vr.org>
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

[qmailtoaster] qtp-newmodel and djbdns errors

[George Sweetnam]

Eric,
I've been experimenting on a new CentOs build today and have run into a 
problem in the install script.


Ran this:
   /opt/qmailtoaster-plus/bin/qtp-newmodel

BEGIN OUTPUT ---
---snip--
qtp-build-rpms - rpm -Uvh failed for djbdns-1.05-1.0.3
qtp-build-rpms - see 
/opt/qtp-sandbox/usr/src/qtp-upgrade/log/build-recent.log

Build failed, Exiting.
  END OUTPUT  ---



So I look at the file:
 tail -20  /opt/qtp-sandbox/usr/src/qtp-upgrade/log/build-recent.log

BEGIN OUTPUT ---
Installing djbdns-1.05-1.0.3 in the sandbox ...
error: Failed dependencies:
   djbdns-extcache conflicts with djbdns-1.05-1.0.3.i686
   djbdns conflicts with djbdns-extcache-1.05-1.0.3.i686
   djbdns-localcache conflicts with djbdns-extcache-1.05-1.0.3.i686
   djbdns-extcache conflicts with djbdns-localcache-1.05-1.0.3.i686
  END OUTPUT  ---


I think we have a need to question prior to the installation whether it's 
going to be an interal only list or external only.  Then push the result to 
the rpm -Uvh command to install the proper version.  [Have internal be the 
default].


rpm -Uvh /usr/src/redhat/RPMS/i686/djbdns-1.05-1.0.3.i686.rpm


-
Also I'd recommend adding a "-v" switch to newmodel so the version of the 
script is more apparent.

qtp-newmodel -v



George S 



-
QmailToaster hosted by: VR Hosted 
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: [qmailtoaster] New Qmailtoaster-Plus Home

[George Sweetnam]

- Original Message - 
From: "Eric "Shubes"" <[EMAIL PROTECTED]>

To: 
Sent: Monday, March 05, 2007 5:16 PM
Subject: Re: [qmailtoaster] New Qmailtoaster-Plus Home



Not as such. I think you're looking for
http://qtp.qmailtoaster.com/browser/releases
This is a much nicer interface for browsing than the vanilla svn pages.

The 'native' svn interface (http://qtp.qmailtoaster.com/svn) is borken, 
but

you can still use wget to get various modules by using
http://qtp.qmailtoaster.com/svn/releases/... I might someday figure out 
why

the 'native' svn is borked, but it's not high on my list. ;)

George Sweetnam wrote:

Does this exist?http://qtp.qmailtoaster.com/releases/
George S.
- Original Message - From: "Eric "Shubes"" <[EMAIL PROTECTED]>
To: "qmailtoaster-list" 
Sent: Monday, March 05, 2007 3:45 PM
Subject: [qmailtoaster] New Qmailtoaster-Plus Home



Hey all,

The migration of the QmailToaster-Plus project from shubes.net to
http://qtp.qmailtoaster.com has been completed. The old URLs at
shubes.net
will automatically redirect you to the new site. Documentation will soon
reflect the new location.

Thanks to Nick Hemmesch and Erik Espinoza for allowing the use and
setting
up of the qtp.qmailtoaster.com domain name, and special thanks to Jake
Vickers for hosting the new site.

If you have any problem or questions regarding the site, please email
the list.

--
-Eric 'shubes'




--
-Eric 'shubes'

- 
I was following the installation links on your new page 
(http://qtp.qmailtoaster.com) and the gpgkey and download links were broken. 
I can wget them now so I guess it's been corrected.  I was going to attempt 
to use the qtp to install from scratch on a clean system (i did put the 
pre-req's and some other perl stuff on it already though).


George.


-
QmailToaster hosted by: VR Hosted <http://www.vr.org>
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: [qmailtoaster] problems with install

[George Sweetnam]

- Original Message - 
From: "Eric "Shubes"" <[EMAIL PROTECTED]>

To: 
Sent: Monday, March 05, 2007 5:23 PM
Subject: Re: [qmailtoaster] problems with install



George Sweetnam wrote:


- Original Message - From: "Eric "Shubes"" <[EMAIL PROTECTED]>
To: 
Sent: Friday, March 02, 2007 6:37 PM
Subject: Re: [qmailtoaster] problems with install



Jim Shupert, Jr. wrote:

I did comment out the line for firewall.sh


===
#The line below is wrong in the file firewall.sh:
iptables -A INPUT -s $MYIP -i ! lo -j DROP

#Did you really mean to lock out the remote connection for the person
using the machine?

#I would recommend something like this in the ssh section (you may want
to omit the -i eth0 if you don't want to specify it) and removing the
line above entirely:

iptables -A INPUT -p tcp --dport 22 -i eth0 -m state --state NEW -m
cent   --set
iptables -A INPUT -p tcp --dport 22 -i eth0 -m state --state NEW -m
cent   --update --seconds 60 --hitcount 4 -j DROP
iptables -A INPUT -s $MYIP/255.255.255.255 -p tcp -m tcp --dport 22 -j
ACCEPT

#

George S



I simply added
iptables -A INPUT -s my.local.sub.net/255.255.255.0 -j ACCEPT
before the offending line(s) to accept everything from my local subnet.
Perhaps not the best solution.

George, will you create a flyspray enhancement task so that this can be
taken care of? I think it deserves some attention, whatever the solution
might be.

--
-Eric 'shubes'


==
i listed it as a bug request because it's a typo to specifically deny the 
installer (kinda funny really)


George.





-
QmailToaster hosted by: VR Hosted <http://www.vr.org>
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: [qmailtoaster] problems with install

[George Sweetnam]

repost... it wrapped badly and some of the characters were omitted (re in 
recent)


#The line below is wrong in the file firewall.sh:
iptables -A INPUT -s $MYIP -i ! lo -j DROP

#Did you really mean to lock out the remote connection for the person using 
the machine?


#I would recommend something like this in the ssh section (you may want to 
omit the -i eth0 if you don't want to specify it) and removing the line

above entirely:

iptables -A INPUT -p tcp --dport 22 -i eth0 -m state --state NEW -m 
recent --set
iptables -A INPUT -p tcp --dport 22 -i eth0 -m state --state NEW -m 
recent --update --seconds 60 --hitcount 4 -j DROP
iptables -A INPUT -s $MYIP/255.255.255.255 -p tcp -m tcp --dport 22 -j 
ACCEPT


#

George S 



-
QmailToaster hosted by: VR Hosted 
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: [qmailtoaster] problems with install

[George Sweetnam]

- Original Message - 
From: "Eric "Shubes"" <[EMAIL PROTECTED]>

To: 
Sent: Friday, March 02, 2007 6:37 PM
Subject: Re: [qmailtoaster] problems with install



Jim Shupert, Jr. wrote:

I did comment out the line for firewall.sh


===
#The line below is wrong in the file firewall.sh:
iptables -A INPUT -s $MYIP -i ! lo -j DROP

#Did you really mean to lock out the remote connection for the person using 
the machine?


#I would recommend something like this in the ssh section (you may want to 
omit the -i eth0 if you don't want to specify it) and removing the line 
above entirely:


iptables -A INPUT -p tcp --dport 22 -i eth0 -m state --state NEW -m 
cent   --set
iptables -A INPUT -p tcp --dport 22 -i eth0 -m state --state NEW -m 
cent   --update --seconds 60 --hitcount 4 -j DROP
iptables -A INPUT -s $MYIP/255.255.255.255 -p tcp -m tcp --dport 22 -j 
ACCEPT


#

George S 



-
QmailToaster hosted by: VR Hosted 
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: [qmailtoaster] New Qmailtoaster-Plus Home

[George Sweetnam]

Does this exist?http://qtp.qmailtoaster.com/releases/
George S.
- Original Message - 
From: "Eric "Shubes"" <[EMAIL PROTECTED]>

To: "qmailtoaster-list" 
Sent: Monday, March 05, 2007 3:45 PM
Subject: [qmailtoaster] New Qmailtoaster-Plus Home



Hey all,

The migration of the QmailToaster-Plus project from shubes.net to
http://qtp.qmailtoaster.com has been completed. The old URLs at shubes.net
will automatically redirect you to the new site. Documentation will soon
reflect the new location.

Thanks to Nick Hemmesch and Erik Espinoza for allowing the use and setting
up of the qtp.qmailtoaster.com domain name, and special thanks to Jake
Vickers for hosting the new site.

If you have any problem or questions regarding the site, please email the 
list.


--
-Eric 'shubes'

-
QmailToaster hosted by: VR Hosted 
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]





-
QmailToaster hosted by: VR Hosted 
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: [qmailtoaster] Problems with qtp-newmodel

[George Sweetnam]

- Original Message - 
From: "Guillermo Villasana" <[EMAIL PROTECTED]>

To: 
Sent: Thursday, March 01, 2007 11:52 AM
Subject: [qmailtoaster] Problems with qtp-newmodel


Hi guys, I have been trying to update my toaster, but when I get to the 
point of building the sandbox, it takes a lot of time, and my conection to 
the server is lost and the process stops, I tried to restart it, what 
should I do? I have set to be copied, should I use the linked version? I 
don't remember why it is best to use the copied instead of the linked 
version.

Thanks again
Terius

-
QmailToaster hosted by: VR Hosted 
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]



-

# I use "screen" to remotely install it.
yum install screen

type "screen" to start a session
run your script  "qmt-newmodel.sh"
use [cntl] + [a] + [d] to detach the screen session
type "screen -r" to resume it later.  Note: if you have more than one 
session just do a "screen -r #" (you will get a list of #s)

type "exit" when done

--

It's great for those late night unattended installs or when using a wireless 
in which you cordless phone likes to steal your channel and disconnect you!


George S. 



-
QmailToaster hosted by: VR Hosted 
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: [qmailtoaster] QMAIL TOASTER ISSUES

[George Sweetnam]

- Original Message - 
From: "Warren (mailing lists)" <[EMAIL PROTECTED]>

To: 
Sent: Tuesday, February 13, 2007 7:20 AM
Subject: Re: [qmailtoaster] QMAIL TOASTER ISSUES



Rajesh,

I run toasters on similar machines, a Dell PE 2950 and a Dell PE SC1425.

What JP says is true - you need to increase your connections.  You might 
also consider using one of the larger suggested profiles from mysql.


You may however also be running into another problem - memory.  I found 
that using a similar setup you need at least 3 GB of RAM - I actually 
ended up going to 6 GB because I had the budget to do so, but I am only 
using about 3-3.5 of it.  Consider throwing another two 1GB sticks into 
the server.


The other thing you should consider is moving off of Fedora and over to 
CentOS 4, which is not only a more stable platform, but is the platform 
upon which most toaster-related development seems to happen.


Regards,
Warren

Jean-Paul van de Plasse wrote:
The problem with authentication and users unknown is probably caused by 
not being able to connect to mysql.

Maybe you should up the limits there a bit.
It could very well be that all of your problems are related to this..
Check you my.cnf for max_connections and make it higher or add like this 
:

[mysqld]
max_connections = 500

Or even higher I guess..
(default is 100)


JP

- Original Message - From: "24x7server" 
<[EMAIL PROTECTED]>

To: 
Sent: Tuesday, February 13, 2007 1:34 PM
Subject: [qmailtoaster] QMAIL TOASTER ISSUES



hi

we dont know whether others are experiencing these problems but we are 
listing down our experiences with qmail toaster.


we provide email service and host around 35 independent domains for 
corporates totalling to around 2500 users per server


we have tried many different flavors of qmail for the past over 6 years 
and qmail toaster consumes the least resources and were very impressed 
by it.


but these are the problems faced by us recently

we have two servers, each is a dell, dual xeon, 2.8 with 2 gb ram and 
scsi drives having around 2500 users each


one installation is redhat enterprise 3 - qmailtoaster without mysql 
second installation fedora 4 - qmailtoaster with mysql


we are listing below the problems we are face which are common for both

we are running latest versions of qmail toaster with spamassing 3.1.7

when the number of concurrencyincoming connections are around upto 100 
everything is fine. works very nicely on both machines


the number of concurrent smtp connections is usually around 30-40

the problems come when the number of smtp connections increases. this 
does not happen every day but once in while and it happens on both 
machines almost simultaneously. concurrent smtp connections go as high 
as 300.


this happens even during night time when it is totally off business 
hours


we tried restarting qmail but no use -- the concurrent connections keep 
increasing till it is back to the same high level of around 250 - 300


we have a serious doubt as to whether we are targetted heavily by 
spammers.


1) we kept concurrency limit to around 300 connections then at around 
235 simultaneous connections authentication fails. when users try to 
send out emails thru port 25 outlook express / postmaster and other 
softwares keep asking for username and password ie authentication fails.


even if we use seperate mail submission port on 587 still authentication 
fails and email users on the servers are not able to send out emails.


2) email sent to domains on this server at this stage randomly bounces 
back with message -- chkuser says unknown recepient.


3) spamassassin fails to scan many emails (this is random) which are 
normally scanned perfectly. surbl look ups fail in many cases. sometimes 
viruses escape.


4) users on server get duplicate copies of emails

5) the qmail isoqlog does give any information on the details of emails 
sent / recd -- basically it does not match what we see in the smtp logs


we have attached herewith a copy of our smtp log

all help would be greatly appreciated

rajesh





-
QmailToaster hosted by: VR Hosted 
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]




One of our servers has 20k accounts on it and can surge to 450+ smtp 
connections, but it's nearly always caused by delays in rbl lists or issues 
doing dns lookups for spamassassin.  You should send a test message through 
your server to see where it's hanging... if it's spamc then you can disable 
spam scanning using the simcontrol file temporarily (enable for just your 
email until you figure out the cause).  Quite often just switching the 
blacklists file to something smaller, or removing any slow to respond and 
restarting the smtp process (svc -du /var/qmail/supervise/smtp) will fix it 
for you.

Re: [qmailtoaster] imap4 configuration files

[George Sweetnam]

- Original Message - 
From: "Philip" <[EMAIL PROTECTED]>

To: 
Sent: Tuesday, February 13, 2007 3:56 AM
Subject: [qmailtoaster] imap4 configuration files



Hello
I wanted to change a few options/configurations for imapd ..

If you check the run file you can see a
cat /etc/courier/imapd | /usr/bin/envconv
exec /usr/bin/envdir ./env/

You can guess that if you change a few variables in the /etc/courier/imapd 
if may reflect

but not at all, it is  bypassed ...
If you want to change the max connection you need to add a -c X (x= # of 
connections, default 40) to the run file
the MAXDAEMONS or MAXPERIP variables arent used whatever you set them up 
to ..

That's not exactly the way it should work I think.

Even if you can of course set  again a firewall to block ppl from 
connecting

more than x-times ... that option is there and should be used

The reason I wanted to increase the maxdaemons, I noticed that with the 
new courier, sometimes the connections were maxed , more or less coz the 
connection wasnt dropped and kept alive 


I will check more into that .. just found that out while changing the 
MAXDAEMONS :)




You shouldn't play with those setting because squirrelmail connects using 
the same ip (127.0.0.1) and you are limiting the total connections allowed 
to all of your web users.  You could see if there is a way to allow 
localhost more and limit the rest... I haven't played with the imap conf in 
a couple of years though.


George S. 



-
QmailToaster hosted by: VR Hosted 
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: [qmailtoaster] How to disable certain services

[George Sweetnam]

On 2/13/07, Eric Shubes <[EMAIL PROTECTED]> wrote:

Erik A. Espinoza wrote:
>> As long as there's 'svc' to control it, I see no need for putting
>> links into
>> /service/. For that matter, why is there a /service/ at all in the
>> toaster?
>> I'd be inclined to ditch it.
>
> Probably there since the Miguel Beccari days and hasn't been removed.
> You can rmdir it without side effect.
>
>> If someone wanted to disable a stock service permanently, will 
>> 'svc -d'

>> persist after a reboot, or would they need to modify the qmail script
>> to run it?
>
> No, 'svc -d' is a temporary disable. The only way to permanently
> remove it is to rm the dir. I usually leave everything running and
> just use the firewall to control access.
>
> For example on my system I don't allow imap or pop3 without ssl. Since
> tcpserver doesn't take any resources unless it is in use, then there
> is no worries.
>
> Erik
>

I suppose you could create an init script that runs 'svc -d' to disable
whatever service you didn't want.



No no no no... this is not how you disable a service from running in 
daemontools.  You can change it's normal state to "down" and leave it 
configured for future use.
(like in a post i made last year explaining how to clear the read proctile 
status of daemontools from the processess list ... this one:  readproctitle 
service errors: . )


If you do a svstat on the directory you will see status listings saying 
normally up or down (only services in an abnormal state will list a message 
saying they are different from the norm)

svstat /var/qmail/supervise/*

If you create a blank file named "down" in the service directory and then 
shut the service down its normal state will become "down" and will not run 
unless manually started... even after a reboot.


touch down /var/qmail/supervise/pop3-ssl/down

svstat /var/qmail/supervise/pop3-ssl
/service/pop3-ssl: up (pid 23468) 2 seconds, normally down  < lets you 
know it's different from how it should be


svc -d /var/qmail/supervise/pop3-ssl
/service/pop3-ssl: down 27 seconds

svstat /var/qmail/supervise/pop3-ssl


George S 



-
QmailToaster hosted by: VR Hosted 
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: [qmailtoaster] Installation on Ubuntu

[George Sweetnam]

It'd be great if QT ran on an Ubuntu (or debian) server, but that hasn't
been done yet, and to be honest, it's a fairly low priority at this point.
Having to support a non-rpm based distro would simply tax the developers 
too

much, and functional enhancements would suffer. That's not to say it
couldn't be done though. I'd personally like to see this happen too. If
someone were to "just do it", I think the contribution would be welcomed. 
It
would need to be done in an automated fashion though, using tools that 
would

convert rpms to debs automatically. Such tools do exist, it's just that no
one (TTBOMK) has applied them yet.

In the meantime, I find it hard to believe that FC won't work on your
machine if Ubuntu would. What's the problem with it?

--
-Eric 'shubes'

-


The best way would be to get toaster in an apt repository and apt-get it. 
But I've never built debian packages (yes debian is a package based system 
too)


To get you started on debian:
Since toaster is .rpm instead of a .deb you can use a program like alien 
(apt-get install alien) and unpack the files that way (alien -i 
toaster-filename.rpm).  I've done some of the rpm's like that to "tinker" 
with them on a debian system, but I've not actually run them on a live 
toaster w/ debian operating system.


George S. 



-
QmailToaster hosted by: VR Hosted 
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

[qmailtoaster] catchall settings questions

[George Sweetnam]

- Original Message - 
From: "Jean-Paul van de Plasse" <[EMAIL PROTECTED]>
To: 
Sent: Friday, February 09, 2007 8:33 AM
Subject: Re: [qmailtoaster] Telnet Port 25 could be relayed without 
authentication.


> The delete one makes it accept all and just trash it.
> change it to bounce-no-mailbox and it will work as expected.
> 
> JP



This brings up the point about whether we should be deleting or bouncing 
messages.  I don't bounce messages because I feel it gives email name 
harvesters a confirmation of which mailboxes are valid (they don't bounce).  I 
was just thinking that I may be defeating the purpose of chkuser

Questions:

1) Does using the delete setting in any way interfere with the chkuser options 
on setting the number of invalid rcpts?

2) At what point are the messages getting deleted?  -- are they being scanned 
for clam and spamd? I wonder if it only deletes when it clears the scans and 
delivery is attempted

3) If chkuser is bouncing then simscan wouldn't ever be called, but is that the 
case with the delete setting on the catchall? (sort of related to #1)


Feel free to ask other questions and discuss what would work best.

George S.

Re: [qmailtoaster] spamhaus - what do you think?

[George Sweetnam]

I just replaced the old sbl-xbl.spamhaus.org (zen blocks all the dynamic 
ones now ... I'd use sorbs if i wanted that) with cbl.abuseat.org which is 
what blocks most of them anyway.  I had sbl-xbl.spamhaus.org right after my 
cbl rbl list and found it blocked VERY few additional ip's... so I removed 
it completely.  Plus the response time on sbl-xbl.spamhaus.org is horrid at 
peak times.


George.

- Original Message - 
From: "Jake Vickers" <[EMAIL PROTECTED]>

To: 
Sent: Wednesday, January 31, 2007 7:21 AM
Subject: Re: [qmailtoaster] spamhaus - what do you think?



Eric "Shubes" wrote:


There appear to be plenty of BLs out there already. I think we simply 
need

to find a way to manage (classify/rate/select) them.

Perhaps it'd be useful to set up any easy way for the toaster to use an
anti-rbl list (the capability's built in to rblsmtpd). Each admin could 
then

maintain their own anti-rbl list containing addresses they would like to
allow. Keeping it up2date would be a challenge though. This would 
probably

only work with an automated update sort of like dyndns. Just a thought.

I agree that there are already a lot of lists out there. The ones that I 
liked all have either gone away, had serious issues that caused them to be 
unusable, or changed their policies and made themselves unusable. I was 
mainly just venting my frustration. I'll look into a vote-type system to 
link on the wiki somewhere, where we can vote on the RBLs - when I get 
back this evening.
I see where the anti-rbl list could be beneficial, but most of my users 
are NOT computer people in any way, shape, or form. I have one group of 
users that I have told 32 times now (I resorted to keeping hash-marks on a 
sticky-tab every time they called me for this issue) that you cannot email 
400M TIFF pictures. They pay well, but they also serious tax my sanity. If 
I had to then have them give me their IP address or get ANY technical 
information out of them whatsoever (that includes who their ISP is - 
really!), it would become a debacle and the owner would force another of 
his "sit-down" meetings that are a waste of time. In my situation they 
definetly would not work.
But I did see a user on the list a few months back that was using 
white-lists. From the little I remember he just put the whitelist first in 
his blacklists file.






-
QmailToaster hosted by: VR Hosted 
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: [qmailtoaster] SRS with multi frontend smtp

[George Sweetnam]

- Original Message - 
From: "Philip Nix Guru" <[EMAIL PROTECTED]>

To: 
Sent: Saturday, January 27, 2007 4:54 PM
Subject: Re: [qmailtoaster] SRS with multi frontend smtp



Actually
it is more :
incoming : internet -> scanners -> real box
if all scanners are down, internet -> real box (lowest mx priority)
outgoing  : realbox -> internet(on that setup, customers email arent 
scanned, we "trust" them in a way :) )


I just want to point out that by listing your "real box" as an mx and not 
having scanning on it you're going to get spammed hard.  I used to run a 
similar setup a couple of years ago and spammers love to go after lower 
priority mx servers (higher numbers) because they think it's less likely you 
have scanning on it.  Your "real server" is going to get targeted by the 
spammers and bypass the other ones.


George. 



-
QmailToaster hosted by: VR Hosted 
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: [qmailtoaster] Controlling SMTP access to mail server.

[George Sweetnam]

Erik Espinoza wrote:

A BSD admin that can take qmailtoaster and make it run on BSD can
implmenet a firewall policy using ipf.


Sure ;-D. But you're not taking into account admin laziness.


ES, port 587 is all about SMTP-AUTH, meaning that tcprules shouldn't
really matter as it's all done through auth. Port 25 doesn't require
auth, therefore it would need independent control.

What possible scenario would we need to control port 587 independently
of port 25 and why?

This seems like unnecessary complication, with no pay off at all.


You know, that is the reason I'd like to see that files separated.

Submission service and SMTP service in fact serve for totally different 
purposes. One is used for MUA->MTA message submission, other is used for 
MTA-to-MTA message transfer. I can hardly see why should I use same 
tcprules for totally different services?


In ideal world I would enable things like SPF and simscan only on SMTP 
service, and domainkeys or dkim signing only on SUBMISSION service. And I 
would never-ever add IP ranges with RELAYCLIENT="" to the tcprules for 
SUBMISSION service as it will look like nonsence there - I always want my 
users to auth themselves to use SUBMISSION service.


That is why I use separate rulesets for SMTP and SUBMISSION.


I asked nearly the same thing a couple of weeks ago and was told we use one 
file.  Since I consider much of what we do as a "basic" package and in many 
cases a work in progress, I created a second tcpserver submission file for 
my toaster box.  Submission port usage is similar, but very different.  It 
even has different services for each (part of the reason i decided to 
separate them)... if I typo the file for the smtp service (port 25), 
tcp.smtp, it would take down my smtp service, but not my submission 
service... thus making it easier to tell where the problem is... we already 
separate the logs.


Not to mention I have totally different rules in each for handling things 
like rbl lookups and friendly ip's.  I know about putting firewall/spam 
filters in front too we have a barracuda as an mx filter for some of our 
domains (debian, non-toaster server) and it's ridiculous to have it go 
through the scans too.  Our debian box essentially allows the mailfilter ip 
through unmolested and uses ":deny" for the rest because the customers are 
pointed to the submission port already.


I used to setup port 26 for customers (before submission and didn't use smtp 
auth's port) to get around isp's blocking port 25 to send (for our hosted 
customers off-net).  I allow relaying for friendly ip's through submission, 
and others can auth and send without passing through spamscanning and rbl 
lookups.  For anything on port 25... tough... you get the works (either mx 
level filtering on another box or rbl's/spam/clamd on the local server).


George


-
QmailToaster hosted by: VR Hosted 
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: [qmailtoaster] qtp-newmodel errors

[George Sweetnam]

>qtp-newmodel doesn't handle djbdns at the moment (I use bind, so testing
>djbdns is problematic for me). I hope to have it fixed in the next release.

Eric,
If you have a test version of your installation scripts with djbdns I can 
run some test installations for you.  I have a nice dualcpu server we use to 
test installations before updating to our public boxes.  If you want to 
specify an OS and such I'll work with that too.  Like Cent 4.4 - just 
specify if you want full or server editions tested.  I have working djbdns 
copies (and a some custom rbl lists installations, ect) on our debian and 
fedora boxes to reference if needed.

Spec of the test box:
 hp proliant dl380 (g4) w/ dual xeon (3.x) cpu's, 2g ram, dual raid (0 for 
boot, and 5 for data).


George.


-
 QmailToaster hosted by: VR Hosted 
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: [qmailtoaster] perl module mail::domainkeys

[George Sweetnam]

#about adding perl modules from cpan or rpm (which isn't a bad idea on an 
rpm based system)
#we don't have to load through cpan necessarily.  You can load modules from 
the command line too:

perl -MCPAN -e 'install Net::DNS'#orperl -e 'use CPAN; install 
Net::DNS;'When i was installing spamassassin from source (which i still do 
on several systems) I scripted a bunch of modules to install in this 
way.George 


-
 QmailToaster hosted by: VR Hosted 
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: Fw: [qmailtoaster] UPDATED PACKAGE: libsrs2-toaster

[George Sweetnam]

>> - submission port 587

>The latest qmail-toaster package has a separate smtp process listening on
>port 587 which acts as a MailSubmissionAgent. This can be used to allow
>users who would otherwise be blacklisted to submit email, as this MSA does
>not check blacklists, but requires authentication.

Where is the tcp.smtp file for the new smtp process found?  The existing one 
is in /etc/tcprules.d/

I'll guess it has something like this in it (but uses the new auth process):
:allow,RELAYCLIENT=""

George


-
 QmailToaster hosted by: VR Hosted 
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: [qmailtoaster] Invalid recipient bounces

[George Sweetnam]

You shouldn't set the catchall to bounce though... select delete.  The 
dictionary attacks will harvest the valid users if you select bounce!

George.
- Original Message - 
From: "Nathan Grennan" <[EMAIL PROTECTED]>
To: 
Sent: Friday, January 12, 2007 12:48 PM
Subject: Re: [qmailtoaster] Invalid recipient bounces


Eric "Shubes" wrote:
> I presume these are coming into your catchall account.
> Is
> http://wiki.qmailtoaster.com/index.php/Account_verification_using_badmailto
> what you're looking for?
>
>
  I thought I had disabled the catchall a while back. I just checked and
found it enabled on the postmaster account. I switched it to bounce.
This should give me the desired recipient checking without any more
backscatter?

-
 QmailToaster hosted by: VR Hosted 
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]



-
 QmailToaster hosted by: VR Hosted 
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: [qmailtoaster] Ldap Authentication

[George Sweetnam]

Switching to ldap means more than just the basic auth has to change, many of 
the toaster packages have to be rebuilt as well (courier, ect).

George.
- Original Message - 
From: Stefano Scalise 
To: qmailtoaster-list@qmailtoaster.com 
Sent: Wednesday, January 10, 2007 3:02 AM
Subject: Re: [qmailtoaster] Ldap Authentication


errata-corrige
NOT  I need an authentication method qmail-based
BUT  I need an authentication method ldap-based

  - Original Message - 
  From: Stefano Scalise 
  To: qmailtoaster-list@qmailtoaster.com 
  Sent: Wednesday, January 10, 2007 9:46 AM
  Subject: [qmailtoaster] Ldap Authentication


  Hi to all,

  I am going to implement a mail server based on qmailtoaster. I saw that 
qmailtoaster comes with a mysql-based installation. As I need an authentication 
method qmail-based, do you think it is easily switchable teh authentication 
from mysql to ldap?
  Thanks for your answers.
  Stefano.

Re: [qmailtoaster] smtp hanging up

[George Sweetnam]

If you have 4 network entries on a single interface, smtp will use the last 
of them.

So for eth0 you have :

ifcfg-eth0
ifcfg-eth0:0
ifcfg-eth0:1
ifcfg-eth0:2

The entry you want your primary ip on is 0:2.

George.


- Original Message - 
From: "Eric "Shubes"" <[EMAIL PROTECTED]>
To: 
Sent: Wednesday, January 10, 2007 2:16 PM
Subject: Re: [qmailtoaster] smtp hanging up


Thanks for the pointer, George. Nice thing to know!
To be more specific, is that the last one listed by ifconfig? (and what
determines that?)

George Sweetnam wrote:
> One thing to keep in mind when adding multiple ip's on a machine... the 
> smtp
> services will use the LAST ip listed on the box.  That can play havoc with
> reverse dns, tcprules, firewalls, ect.   I learned it the hard way with a
> machine I switched to add additional ip's last year and we started having
> smtp problems because of it (SPF mainly).
>
> George
> - Original Message - 
> From: "Eric "Shubes"" <[EMAIL PROTECTED]>
> To: 
> Sent: Thursday, January 04, 2007 11:33 PM
> Subject: Re: [qmailtoaster] smtp hanging up
>
>
> Erik Espinoza wrote:
>> Sounds like an smtp route is missing in the postfix.
>
> I'll buy that, since the /var/log/maillog on the web server says:
>
> Jan  4 21:47:51 hostname postfix/smtp[30371]: connect to
> mail.mydomain.com[10.0.1.70]: No route to host (port 25)
>
> (see reply to Jake)
>
>> Your postfix is
>> probably connecting to the outside static ip instead of attempting to
>> hit 10.0.1.69 directly on the private network.
>
> You may be on to something here, but I'm not sure.
>
> main.cf for postfix had relayhost = 10.0.1.70. I changed it to 10.0.1.69,
> and two messages made it through. That seems to have fixed things up
> somewhat. I'll have to talk with the networking guy tomorrow and see why 
> .70
> was used instead of .69.
>
> Thanks loads EE. You've pointed me in the right direction!
> Thanks to Jake and everyone else too! I really appreciate everyone's help.
>
>> See if, frm a diff machine, you can hit 10.0.1.69 from the outside ip.
>>
>>
>>
>> On 1/4/07, Eric Shubes <[EMAIL PROTECTED]> wrote:
>>> This problem has me stumped at the moment.
>>>
>>> A (relatively) high volume toaster (10.0.1.69) on CentOS4. It's been
>>> running
>>> fine for the most part. However, when processing messages from a local
>>> web
>>> server (10.0.1.66) relayed from postfix, the message doesn't go through.
>>> FWIW (doesn't make sense to me) the sending postfix queue shows that the
>>> connection timed out or no route to host.
>>>
>>> I turned on recordio to see what's happening, and here the smtp log for 
>>> a
>>> session:
>>>
>>> 2007-01-04 18:23:53.798287500 tcpserver: status: 0/100
>>> 2007-01-04 18:23:54.875954500 tcpserver: status: 1/100
>>> 2007-01-04 18:23:54.875962500 tcpserver: pid 5787 from 10.0.1.66
>>> 2007-01-04 18:23:54.875964500 tcpserver: ok 5787 spin4:10.0.1.69:25
>>> :10.0.1.66::43332
>>> 2007-01-04 18:23:54.875967500 5787 < [EOF]
>>> 2007-01-04 18:23:54.970660500 5787 > 220 mydomain.com - Welcome to Qmail
>>> Toaster Ver. 1.3 SMTP Server ESMTP^M
>>> 2007-01-04 18:23:54.970671500 5787 > [EOF]
>>> 2007-01-04 18:23:54.970673500 tcpserver: end 5787 status 256
>>> 2007-01-04 18:23:54.970675500 tcpserver: status: 0/100
>>>
>>> The smtp session rapidly terminates, out of the blue.
>>>
>>> I can telnet from the web server to the toaster just fine.
>>>
>>> tcp.smtp:
>>> 127.:allow,RELAYCLIENT=""
>>> 10.0.1.:allow,RELAYCLIENT=""
>>> :allow,BADMIMETYPE="",BADLOADERTYPE="M",CHKUSER_RCPTLIMIT="50",CHKUSER_WRONGRCPTLIMIT="10",QMAILQUEUE="/var/qmail/bin/simscan",DKSIGN="/var/qmail/control/domainkeys/%/private"
>>>
>>>
>>> qmail-dk has been taken out (qmail-queue -> qmail-queue.orig)
>>>
>>> timeoutsmtpd:
>>> 60
>>>
>>> Any thoughts/ideas?
>>>
>>> -- 
>>> -Eric 'shubes'
>>>
>
>


-- 
-Eric 'shubes'

-
 QmailToaster hosted by: VR Hosted <http://www.vr.org>
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]



-
 QmailToaster hosted by: VR Hosted <http://www.vr.org>
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: [qmailtoaster] smtp hanging up

[George Sweetnam]

One thing to keep in mind when adding multiple ip's on a machine... the smtp 
services will use the LAST ip listed on the box.  That can play havoc with 
reverse dns, tcprules, firewalls, ect.   I learned it the hard way with a 
machine I switched to add additional ip's last year and we started having 
smtp problems because of it (SPF mainly).

George
- Original Message - 
From: "Eric "Shubes"" <[EMAIL PROTECTED]>
To: 
Sent: Thursday, January 04, 2007 11:33 PM
Subject: Re: [qmailtoaster] smtp hanging up


Erik Espinoza wrote:
> Sounds like an smtp route is missing in the postfix.

I'll buy that, since the /var/log/maillog on the web server says:

Jan  4 21:47:51 hostname postfix/smtp[30371]: connect to
mail.mydomain.com[10.0.1.70]: No route to host (port 25)

(see reply to Jake)

> Your postfix is
> probably connecting to the outside static ip instead of attempting to
> hit 10.0.1.69 directly on the private network.

You may be on to something here, but I'm not sure.

main.cf for postfix had relayhost = 10.0.1.70. I changed it to 10.0.1.69,
and two messages made it through. That seems to have fixed things up
somewhat. I'll have to talk with the networking guy tomorrow and see why .70
was used instead of .69.

Thanks loads EE. You've pointed me in the right direction!
Thanks to Jake and everyone else too! I really appreciate everyone's help.

> See if, frm a diff machine, you can hit 10.0.1.69 from the outside ip.
>
>
>
> On 1/4/07, Eric Shubes <[EMAIL PROTECTED]> wrote:
>> This problem has me stumped at the moment.
>>
>> A (relatively) high volume toaster (10.0.1.69) on CentOS4. It's been
>> running
>> fine for the most part. However, when processing messages from a local
>> web
>> server (10.0.1.66) relayed from postfix, the message doesn't go through.
>> FWIW (doesn't make sense to me) the sending postfix queue shows that the
>> connection timed out or no route to host.
>>
>> I turned on recordio to see what's happening, and here the smtp log for a
>> session:
>>
>> 2007-01-04 18:23:53.798287500 tcpserver: status: 0/100
>> 2007-01-04 18:23:54.875954500 tcpserver: status: 1/100
>> 2007-01-04 18:23:54.875962500 tcpserver: pid 5787 from 10.0.1.66
>> 2007-01-04 18:23:54.875964500 tcpserver: ok 5787 spin4:10.0.1.69:25
>> :10.0.1.66::43332
>> 2007-01-04 18:23:54.875967500 5787 < [EOF]
>> 2007-01-04 18:23:54.970660500 5787 > 220 mydomain.com - Welcome to Qmail
>> Toaster Ver. 1.3 SMTP Server ESMTP^M
>> 2007-01-04 18:23:54.970671500 5787 > [EOF]
>> 2007-01-04 18:23:54.970673500 tcpserver: end 5787 status 256
>> 2007-01-04 18:23:54.970675500 tcpserver: status: 0/100
>>
>> The smtp session rapidly terminates, out of the blue.
>>
>> I can telnet from the web server to the toaster just fine.
>>
>> tcp.smtp:
>> 127.:allow,RELAYCLIENT=""
>> 10.0.1.:allow,RELAYCLIENT=""
>> :allow,BADMIMETYPE="",BADLOADERTYPE="M",CHKUSER_RCPTLIMIT="50",CHKUSER_WRONGRCPTLIMIT="10",QMAILQUEUE="/var/qmail/bin/simscan",DKSIGN="/var/qmail/control/domainkeys/%/private"
>>
>>
>> qmail-dk has been taken out (qmail-queue -> qmail-queue.orig)
>>
>> timeoutsmtpd:
>> 60
>>
>> Any thoughts/ideas?
>>
>> -- 
>> -Eric 'shubes'
>>


-- 
-Eric 'shubes'

-
 QmailToaster hosted by: VR Hosted 
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]



-
 QmailToaster hosted by: VR Hosted 
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: [qmailtoaster] simscan clam and spamassasin - please help!!!

[George Sweetnam]

It seems likely that something isn't installing completely with your 
toaster.  For spam and clam scanning to be enabled (and show in the headers) 
they must be installed, functional, and detected by simscan at the point 
it's updated.  Run this from the command line and see if it shows in your 
headers:

/var/qmail/bin/simscanmk
/var/qmail/bin/simscanmk -g

If you don't see it in the headers (or a test script) then it's likely 
spamassassin isn't functioning correctly ( tail -10 
/var/log/qmail/spamd/current )

George S.


- Original Message - 
From: "Hainarosie Razvan" <[EMAIL PROTECTED]>
To: 
Sent: Monday, November 13, 2006 9:33 AM
Subject: Re: [qmailtoaster] simscan clam and spamassasin - please help!!!


Hi can anyone give me some advise in the matter written below.
I did 3 or 4 fresh install of the qmailtoaster package and I do not kinow
where to go.
I can not figure out what is wrong.

Please help me.
Razvan




>> Hainarosie Razvan wrote:
>>> I am using a fresh install of Centos 4.2 and the stable version of
>>> qmailtoaster package.
>>> The problem is with my mail headers that looks like this:
>>>
>>> Received: from unknown (HELO mail.wavin.ro) (82.76.33.244)
>>>  by ares.itcompany.ro with (DHE-RSA-AES256-SHA encrypted) SMTP; 12
>>> Nov
>>> 2006 11:42:22 -
>>> Received-SPF: none (ares.itcompany.ro: domain at wavin.ro does not
>>> designate permitted sender hosts)
>>> Received: (qmail 3068 invoked by uid 89); 12 Nov 2006 11:19:56 -
>>> Received: by simscan 1.2.0 ppid: 3060, pid: 3063, t: 0.2296s
>>>  scanners: attach: 1.2.0 clamav: 0.88.5/m:41/d:2186
>>> Received: from unknown (HELO raluca) ([EMAIL PROTECTED]@192.168.10.100)
>>>  by mail.wavin.ro with ESMTPA; 12 Nov 2006 11:19:56 -
>>> From: "sss" <[EMAIL PROTECTED]>
>>> To: <[EMAIL PROTECTED]>
>>> Subject: test
>>> Date: Sun, 12 Nov 2006 13:19:52 +0200
>>> MIME-Version: 1.0
>>> Content-Type: multipart/alternative;
>>>  boundary="=_NextPart_000__01C7065D.3E543660"
>>> X-Mailer: Microsoft Office Outlook, Build 11.0.6353
>>> X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2900.2962
>>> Thread-Index: AccGTHBYvrpWPJSET72raOCVU0DbNA==
>>>
>>> Why I can not find "spam" at the "scanners: attach: 1.2.0 clamav:
>>> 0.88.5/m:41/d:2186" line
>>> Maybe is a stupid question but I am not able to solve it.
>>> PLease help me,
>>> Thanks,
>>> Razvan
>>>
>> What does your /var/qmail/control/simcontrol file contain?
>>
>> --
>> -Eric 'shubes'
>>
>> -
>>  QmailToaster hosted by: VR Hosted 
>> -
>> To unsubscribe, e-mail: [EMAIL PROTECTED]
>> For additional commands, e-mail: [EMAIL PROTECTED]
>>
>>
>
>
>
>
> my simcontrol file is:
>
> :clam=yes,spam=yes,spam_hits=12,attach=.mp3:.src:.bat:.pif
>
> and my tcp.smtp file look like this
> 127.:allow,RELAYCLIENT="",BADMIMETYPE="",BADLOADERTYPE="M",CHKUSER_RCPTLIMIT="15",CHKUSER_WRONGRCPTLIMIT="3",QMAILQUEUE="/var/qmail/bin/simscan"
> 192.168.1.:allow,RELAYCLIENT="",BADMIMETYPE="",BADLOADERTYPE="M",CHKUSER_RCPTLIMIT="40",CHKUSER_WRONGRCPTLIMIT="20",QMAILQUEUE="/var/qmail/bin/simscan"
> :allow,BADMIMETYPE="",BADLOADERTYPE="M",CHKUSER_RCPTLIMIT="50",CHKUSER_WRONGRCPTLIMIT="3",QMAILQUEUE="/var/qmail/bin/simscan"
>
>
>
> -
>  QmailToaster hosted by: VR Hosted 
> -
> To unsubscribe, e-mail: [EMAIL PROTECTED]
> For additional commands, e-mail: [EMAIL PROTECTED]
>
>



-
 QmailToaster hosted by: VR Hosted 
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]



-
 QmailToaster hosted by: VR Hosted 
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: [qmailtoaster] Quick Question about the list, not realted directly to qmailtoaster

[George Sweetnam]

We really do need an automated message posting 
every couple of weeks listing the particulars of posting/using the discussion 
group.  
 
George S.
- Original Message - 
From: Ryan Gibbons 
To: qmailtoaster-list@qmailtoaster.com 

Sent: Thursday, October 26, 2006 8:38 PM
Subject: Re: [qmailtoaster] Quick Question about the list, not 
realted directly to qmailtoaster
I didn't realize this, I thought it was just off the 
subject.  Damn, I learned two or three things today, I better slow done, i 
might wear myself out :)  Thanks for the help.Jake Vickers 
wrote: 
Ryan Gibbons wrote: 
  I didn't think about using my gmail account.  Yeah 
thunderbird's threading is starting to drive me crazy.  Like on this 
thread here, it has listed underneath the thread about Cannon communicate 
using internal ip :?geeknoob wrote: 
Well, I am also using Thunderbird for this list - 
  but I agree, there's a better way to do it.  Honestly, most of my 
  lists go through gmail, and I'll probably put this one on it as 
  well.  The threading is by far the best feature (that i most commonly 
  use) of google-mail, imo.~GNRyan Gibbons 
  wrote: 
  So this is the first mailing list I have 
actually followed religiously with an actual client, not just through 
the web.  What is the best client to use.  I have tried using 
Thunderbird, but the threading feature of it isn't too hot, is there 
something better to use for managing mailing list.  The 
more I find myself getting into development to more I see them being 
used, and it is actually becoming difficult to keep up in 
Thunderbird.  It doesn't match up the threads properly and just 
handles them funky imho, but that might b/c I'm not use to it.So 
what do you use?The 
  threading issue comes about when people (not to nit-pick) just select a 
  message and hit reply, then delete the subject and body to make a new post. 
  The thread data is still preserved. You're really supposed to send a 
  completely new message to qmailtoaster-list @ qmailtoaster.com when asking a 
  new question to start new thread data.

Re: [qmailtoaster] spamd/clamd not logging

[George Sweetnam]

look in the simcontrol file in /var/qmail/control/ and see if you have 
spam=no and clam=no (should be yes).

George S
- Original Message - 
From: "Rhaurison Bergamin" <[EMAIL PROTECTED]>
To: 
Sent: Friday, October 20, 2006 11:03 AM
Subject: [qmailtoaster] spamd/clamd not logging


I have one (specificaly one) server that is not logging spamd and clamd 
messages

It's all ok, but no log from these daemons
yes, supervise/*/log/ is running:
2310 pts/1S  0:00  \_ supervise log
 2336 pts/1S  0:00  |   \_ /usr/bin/multilog t s100 n100 
/var/log/qmail/spamd

the only thing that appears is: (when i start spamd/clamd)
@40004538fb611bfc1dac [2328] info: spamd: server started on port 783/tcp 
(running version 3.1.3)
@40004538fb611bfe5fcc [2328] info: spamd: server pid: 2328
@40004538fb611c4a68a4 [2328] info: spamd: server successfully spawned 
child process, pid 2434
@40004538fb611c7f95ec [2328] info: spamd: server successfully spawned 
child process, pid 2435
@40004538fb6131563dcc [2328] info: prefork: child states: II

no more..
the same for clamd, only log initial start messages.

I have other servers and had compared with this one but i have found nothing 
should do this.

-
 QmailToaster hosted by: VR Hosted 
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]



-
 QmailToaster hosted by: VR Hosted 
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: [qmailtoaster] clamav vulnerability

[George Sweetnam]

If you go to the new release of CLAMAV in the .90 series it's recommended to 
replace it (much of it is a total re-write...it took about 18 months to get 
to where it is now).

George S
- Original Message - 
From: "David Sanchez" <[EMAIL PROTECTED]>
To: 
Sent: Thursday, October 19, 2006 4:25 PM
Subject: Re: [qmailtoaster] clamav vulnerability



> Is it necessary, or just a precaution?

I did update clamav-toaster two times without erasing it first.

My complete procedure for update clamav-toaster is:

1.- Download
2.- rpmbuild stuff
3.- qmailctl stop
4.- /etc/init.d/freshclam stop
5.- rpm -Uvh clamav-toaster
6.- qmailctl cdb
7.- /etc/init.d/freshclam start
8.- Wait for qmail-send to die (may be it's running because it's sending
a message)
9.-  qmailctl start

I learned freshclam step the hard way (i found that my toaster was
accepting known new virus as freshclam was in locked state for a
day! :-(  )




> Did someone have an issue that it apparently resolved?
>
> Erik Espinoza wrote:
> > Dunno.
> >
> > On 10/19/06, Eric Shubes <[EMAIL PROTECTED]> wrote:
> >> Erik Espinoza wrote:
> >> > Incorrect, but close.
> >> >
> >> > 1) download the src.rpm
> >> > 2) compile
> >> > 3) service qmail stop
> >> > 4) rpm -e --nodeps clamav-toaster
> >> > 5) install the compiled binary
> >> > 6) service qmail cdb (rebuild versions)
> >> > 7) service qmail start
> >> >
> >>
> >> Why is it necessary to remove clamav-toaster?
> >>


-
 QmailToaster hosted by: VR Hosted 
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]



-
 QmailToaster hosted by: VR Hosted 
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: [qmailtoaster] clamav vulnerability

[George Sweetnam]

>- Original Message - 
>From: "Erik Espinoza" <[EMAIL PROTECTED]>

>Incorrect, but close.

>1) download the src.rpm
>2) compile
>3) service qmail stop
>4) rpm -e --nodeps clamav-toaster
>5) install the compiled binary
>6) service qmail cdb (rebuild versions)
>7) service qmail start



How about this:

###
1) #note: for spamassassin upgrades you should backup the local.cf file:
DATENAME=`date +%Y%m%d` && cp /etc/mail/spamassassin/local.cf 
/etc/mail/spamassassin/local.cf.$DATENAME

2) download the src.rpm
wget 
http://devel.qmailtoaster.com/download/clamav-toaster-0.90RC1-1.3.5.src.rpm  
-P /usr/src/redhat/SOURCES
wget 
http://www.qmailtoaster.com/download/stable/spamassassin-toaster-3.1.7-1.3.5.src.rpm
 - 
P /usr/src/redhat/SOURCES
wget 
http://www.qmailtoaster.com/download/stable/qmail-toaster-1.03-1.3.6.src.rpm 
  -P /usr/src/redhat/SOURCES

3) change to the install dir and compile it (use your distro, ie cnt4, 
fdr40, fdr50)
cd /usr/src/redhat/SOURCES/ && rpmbuild --rebuild --with fdr50 
clamav-toaster-0.90RC1-1.3.5.src.rpm
cd /usr/src/redhat/SOURCES/ && rpmbuild --rebuild --with fdr50 
spamassassin-toaster-3.1.7-1.3.5.src.rpm
cd /usr/src/redhat/SOURCES/ && rpmbuild --rebuild --with fdr50 
qmail-toaster-1.03-1.3.6.src.rpm

4) stop the qmail services prior to updating or removing any rpms
service qmail stop
service qmail stat
#note: all should be "stopped" status prior to proceeding

5) remove the old rpm clamav and spamassassin (the others just skip to #6)
rpm -e --nodeps clamav-toaster
rpm -e --nodeps spamassassin-toaster

6) install the compiled binary
rpm -Uvh /usr/src/redhat/RPMS/i386/clamav-toaster-0.90RC1-1.3.5.i386.rpm
rpm -Uvh /usr/src/redhat/RPMS/i386/spamassassin-toaster-3.1.7-1.3.5.i386.rpm
rpm -Uvh /usr/src/redhat/RPMS/i386/qmail-toaster-1.03-1.3.6.i386.rpm

7) service qmail cdb (rebuild versions)

8) service qmail start

9) SPAMASSASSIN ONLY:  If you upgraded spamassassin, copy the new file and 
then replace with your backup file:
mv /etc/mail/spamassassin/local.cf  /etc/mail/spamassassin/local.cf.orig
DATENAME=`date +%Y%m%d` && mv /etc/mail/spamassassin/local.cf.$DATENAME 
/etc/mail/spamassassin/local.cf
#note you will now have a local.cf, local.cf.orig, and a 
local.cf.dateofbackup

9) test it:
mkdir /test
echo "just testing" > /test/mailtest.txt
env QMAILQUEUE=/var/qmail/bin/simscan SIMSCAN_DEBUG=2 
/var/qmail/bin/qmail-inject [EMAIL PROTECTED] < /test/mailtest.txt

###



-
 QmailToaster hosted by: VR Hosted 
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: [qmailtoaster] BIND caching server?

[George Sweetnam]

You don't want to use bind for a caching server though... too slow for that. 
I have a caching server on our network, but it has 5 mailservers pointed at 
it so it makes more sense.

George S.
- Original Message - 
From: "Quinn Comendant" <[EMAIL PROTECTED]>
To: 
Sent: Monday, October 16, 2006 11:56 PM
Subject: [qmailtoaster] BIND caching server?


I asked the techs at Rackspace (where we have our qmail toaster) how to, and 
if they would recommend, setting up a caching name server. They replied to 
the contrary:

> To be honest, this may not provide you with any performance increase,
> and may even degrade performance, as doing this will incur an initial
> lookup delay on any non-cached domain, whereas using our caching
> nameservers you are pretty unlikely to get a cache miss on any given
> domain.

Are they nuts? (They are sometimes.) But they have local-cachine nameservers 
they provide, which, from my server, have ping latencies from 0.1-0.2 ms.

Quinn

-
 QmailToaster hosted by: VR Hosted 
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]



-
 QmailToaster hosted by: VR Hosted 
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: [qmailtoaster] Pls suggest on Spamassassin to catch spam

[George Sweetnam]

 
Jakes right, "CHKUSER_WRONGRCPTLIMIT="200"" is WAY too high.  One of our big 
servers averages over 5 messages a second and it's set to 3 (which might be a 
little low for some people).   The idea is to stop dictionary attacks 
to your domain... at worst you'll only get 3-5 messages through before they are 
told to go away.  
 
George S.
 
- Original Message - 
From: Jake Vickers 
To: qmailtoaster-list@qmailtoaster.com 

Sent: Monday, October 16, 2006 6:35 AM
Subject: Re: [qmailtoaster] Pls suggest on Spamassassin to catch 
spam
ashok wrote: 

  
  

  
  Dear 
  All,,
  
  Im newbie for 
  Spamassassin.
  
  I have installed qmail-toaster 
  and running my qmail server fine. Only problem is with SPAM getting lots of 
  Viagra , extra pounds ,online games etc…
  
  These are the below info for you 
  to analyse 
  
  [EMAIL PROTECTED] ~]# 
  cat /etc/tcprules.d/tcp.smtp
  #Once edited this pls execute 
  #tcprules tcp.smtp.cdb  .tcp.smtp.tmp < 
  tcp.smtp
  
  127.:allow,RELAYCLIENT=""
  206.13.200.66:allow,RELAYCLIENT=""
  #125.22.36.22:allow,RELAYCLIENT=""
  :allow,BADMIMETYPE="",BADLOADERTYPE="M",CHKUSER_RCPTLIMIT="200",CHKUSER_WRONGRCPTLIMIT="200"
  I 
can see the reason for 200 on the chkuser function, but 200 on the 
wrongrcptlimit is WAY too high. This should be more like 5 or 10.Add some 
more rules, and look at SURBL. They will help catch a lot of your spam. For the 
messages that are sending excerpts from books and pasting a GIF file over it, 
there's not  a good fix to this yet.

Re: [qmailtoaster] Archiving/Mail Storage?

[George Sweetnam]

I have a similar setup on one of my company servers.  One domain is tapped 
and archived in a box for 90 days.  I just use a find script (nightly cron) 
and have it remove files in the dir older than 90 days.

George S
- Original Message - 
From: "Peter Peltonen" <[EMAIL PROTECTED]>
To: 
Sent: Monday, October 16, 2006 9:58 AM
Subject: Re: [qmailtoaster] Archiving/Mail Storage?


On 10/16/06, Peter Peltonen <[EMAIL PROTECTED]> wrote:
> If there are not that many accounts, you could just make a forward
> (copy) all incoming mail
> to another storage account (that you must first create, of course)?
> This can be done from qmailadmin. If there are many accounts... Hm, I
> think that
>
> If you want to archive all already existing mail, just copying the
> message files from the Maildir
> to the storage account's Maildir should work (never tried that though)
> or use imapsync:
>
>   http://www.linux-france.org/prj/imapsync/
>
> (I've found it quite handy when I must transfer existing mail from one
> server to another).


Of course the setup I suggested only archives incoming mail. So qmail-tap 
looks
like the right solution here.

Regards,
Peter

-
 QmailToaster hosted by: VR Hosted 
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]



-
 QmailToaster hosted by: VR Hosted 
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: [qmailtoaster] qmailadmin problems

[George Sweetnam]

I had a missing module in my apache version about a year ago which caused 
it.  All the troubleshooting I did with the phppages was wasted... i just 
installed the base apache rpm and it worked again.  I've since replaced it 
with a source install naming most options (disabled in the httpd.conf file 
though).

George S.

- Original Message - 
From: "Igor Smitran" <[EMAIL PROTECTED]>
To: 
Sent: Friday, October 13, 2006 6:20 PM
Subject: Re: [qmailtoaster] qmailadmin problems


> Igor Smitran wrote:
>> You are correct, i can't see qmailadmin page links. when loged in as
>> postmaster i can only see:
>> domain name
>> Main menu (text, not link)
>>
>> on the left side i can see refresh menu and logout
>> below i can see only quick links title without links.
>>
>> Bottom line, i can't see any administrator link.
>> I've installed it form rpm, included in qmailtoaster distro. Everything
>> worked and then suddenly nothing works (in qmailadmin).
>>

> Again, I don't know.
> Something must have 'suddenly' changed. :(
> Anything in /var/log/httpd/error_log or access_log?
> Anything in virtual domain logs?

Nothing, not one error :(

-
 QmailToaster hosted by: VR Hosted 
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]



-
 QmailToaster hosted by: VR Hosted 
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: [qmailtoaster] qmailadmin problems

[George Sweetnam]

Igor,
I didn't see your original post, but if you can't get the qmail admin page 
to fully display, I've had some experience with that problem. If so, did you 
compile it from source or install an rpm version of it?  If this is not your 
problem there is no need to reply to me.

George S.

- Original Message - 
From: "Igor Smitran" <[EMAIL PROTECTED]>
To: 
Sent: Friday, October 13, 2006 4:01 PM
Subject: Re: [qmailtoaster] qmailadmin problems


Eric "Shubes" wrote:
> Have you searched the mailing list archives?

I have searched on google, and only one page came up. But, it was for about
older version that was inside cgi-bin. Noone had this problem in apache2 as
far as i can see. As i said, i already reinstalled qmailadmin (rpm -F) and
vpopmail but problem still remains. Then i've tried with default apache conf
and problem still remains. I don't have any idea what to try next.


-
 QmailToaster hosted by: VR Hosted 
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]



-
 QmailToaster hosted by: VR Hosted 
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: [qmailtoaster] R: [qmailtoaster] Problem disabling Web access for users

[George Sweetnam]

If all you want to do is give webmail to some users then just use a 
.htaccess file (you'll have to put it in the directory settings for 
webmail).  If you didn't need/want webmail at all you could remove it or 
turn it off (add a "down" file in the service directory).

George.

- Original Message - 
From: "Erik Espinoza" <[EMAIL PROTECTED]>
To: 
Sent: Wednesday, October 11, 2006 4:05 PM
Subject: Re: [qmailtoaster] R: [qmailtoaster] Problem disabling Web access 
for users


Disable web access is to disable qmailadmin access, not webmail
access. The only way to remove webmail access is to disable IMAP
access for the user. That will block direct IMAP as well as webmail.

Thanks,
Erik

On 10/11/06, Taxxolo <[EMAIL PROTECTED]> wrote:
>
>
> My problem is that i have to give access only to few users. I can't block
> the 127.0.0.1 port 143.
> Any other suggestion? maybe someone that have QT more updated than mine 
> can
> check if
> the option "Disable web access" works?
> Thanks!
>
>
> -Messaggio originale-
> Da: George Sweetnam [mailto:[EMAIL PROTECTED]
> Inviato: martedì 10 ottobre 2006 21.59
> A: qmailtoaster-list@qmailtoaster.com
> Oggetto: Re: [qmailtoaster] Problem disabling Web access for users
>
>
> You could block 127.0.0.1 on port 143 (not sure if this will have any 
> other
> repercussions though) , but why not just disable or put a .htaccess file 
> on
> the webmail via apache?
>
> George Sweetnam
>
> - Original Message -
> From: Taxxolo
> To: qmailtoaster-list@qmailtoaster.com
> Sent: Tuesday, October 10, 2006 5:07 AM
> Subject: [qmailtoaster] Problem disabling Web access for users
>
>
> Hi all,
> i've set the "Disable web access" options on all the users of my domain.
> In the Mysql vpopmail database all the users have got the value "4" into
> pw_gid field.
> But the server continue to accept the connection with squirrell webmail.
> Only if i disable the imap
> access, the connection via web doesn't work but doesn't work the local 
> imap
> connection too...
> These are my Qmailtoaster packages:
>
> daemontools-toaster-0.76-1.2.11
> qmail-toaster-1.03-1.3.2
> control-panel-toaster-0.5-1.2.9
> qmailmrtg-toaster-4.2-1.2.11
> vqadmin-toaster-2.3.4-1.2.13
> simscan-toaster-1.2-1.2.7
> ucspi-tcp-toaster-0.88-1.2.11
> qmail-pop3d-toaster-1.03-1.3.2
> autorespond-toaster-2.0.4-1.2.9
> ezmlm-toaster-0.53.324-1.2.11
> qmailadmin-toaster-1.2.9-1.2.13
> maildrop-toaster-1.8.1-1.2.11
> isoqlog-toaster-2.1-1.2.10
> squirrelmail-toaster-1.4.6-1.2.15
> clamav-toaster-0.88.2-1.2.15
> vpopmail-toaster-5.4.13-1.2.12
> courier-imap-toaster-3.0.8-1.2.10
> ezmlm-cgi-toaster-0.53.324-1.2.11
> maildrop-toaster-devel-1.8.1-1.2.11
> spamassassin-toaster-3.1.1-1.2.14
>
> What can i do?
> Thanks
> Paolo
>

-
 QmailToaster hosted by: VR Hosted <http://www.vr.org>
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]



-
 QmailToaster hosted by: VR Hosted <http://www.vr.org>
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: [qmailtoaster] A little question

[George Sweetnam]

Here's a link:
http://www.palomine.net/qmail/tarpit.patch
 
Basically it just says after X (tarpitcount) # of 
messages then start delaying them X (tarpitdelay) seconds.
 
George Sweetnam

  - Original Message - 
  From: 
  Özgür Kolukısa 
  To: qmailtoaster-list@qmailtoaster.com 
  
  Sent: Tuesday, October 10, 2006 3:08 
  AM
  Subject: [qmailtoaster] A little 
  question
  
  
  Good 
  days,
   
  I have a little question, what 
  is,what does and howto use tarpit? Can anybody explain it to 
  me?
   
  Regards
   

Re: [qmailtoaster] "slowness" in sending large # of messages:SOLVED

[George Sweetnam]

If you've been playing with tcp.smtp, it'd be a good idea to check for relay 
issues:
http://www.abuse.net/relay.html

George Sweetnam

- Original Message - 
From: "Michael Handiboe" <[EMAIL PROTECTED]>
To: 
Sent: Tuesday, October 10, 2006 1:37 PM
Subject: Re: [qmailtoaster] "slowness" in sending large # of messages:SOLVED


Jake Vickers wrote:
>> 127. applies rules only to the mail server host itself (or 'local'
>> mail?  So what's the difference?)
>> a.b.c.d applies rules to only mail sent from a.b.c.d to the mail host
>> and then the
>> :allow  line applies to everyone?  OR  everyone not explicitly listed
>> above?
>
> 127 is for local emails, such as the webmail (SquirrelMail).
> a.b.c.d applies for that specific IP address.
> :allow is for any connection that does not fall under the first rules.

Problem solved and I see where I was being tripped over.
Reason:  I think it's because I wasn't working with a new and freshly
built QT.

I had to put the  chkuser_settings.h  file into the right place
(it wasn't where this  http://wiki.qmailtoaster.com/index.php/Chkuser
said it would be) and edit it  and follow the directions AND modify my
/etc/tcprules.d/tcp.smtp  file appropriately.

My customer is now able to send 40+ messages in about 2 seconds.
Hooray!

I suffered only a little pain  :)
.
--Michael


-
 QmailToaster hosted by: VR Hosted <http://www.vr.org>
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]



-
 QmailToaster hosted by: VR Hosted <http://www.vr.org>
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: [qmailtoaster] Problem disabling Web access for users

[George Sweetnam]

Title: Messaggio



You could block 127.0.0.1 on port 143 (not 
sure if this will have any other repercussions though) , but why not just 
disable or put a .htaccess file on the webmail via apache?
 
George Sweetnam

  - Original Message - 
  From: 
  Taxxolo 
  To: qmailtoaster-list@qmailtoaster.com 
  
  Sent: Tuesday, October 10, 2006 5:07 
  AM
  Subject: [qmailtoaster] Problem disabling 
  Web access for users
  
  Hi 
  all,
  i've set the "Disable web 
  access" options on all the users of my domain.
  In the Mysql vpopmail 
  database all the users have got the value "4" into pw_gid 
  field.
  But the server continue 
  to accept the connection with squirrell webmail. Only if i disable the 
  imap
  access, the 
  connection via web doesn't work but doesn't work the local imap 
  connection too...
  These are my 
  Qmailtoaster packages:
   
  daemontools-toaster-0.76-1.2.11qmail-toaster-1.03-1.3.2control-panel-toaster-0.5-1.2.9qmailmrtg-toaster-4.2-1.2.11vqadmin-toaster-2.3.4-1.2.13simscan-toaster-1.2-1.2.7ucspi-tcp-toaster-0.88-1.2.11qmail-pop3d-toaster-1.03-1.3.2autorespond-toaster-2.0.4-1.2.9ezmlm-toaster-0.53.324-1.2.11qmailadmin-toaster-1.2.9-1.2.13maildrop-toaster-1.8.1-1.2.11isoqlog-toaster-2.1-1.2.10squirrelmail-toaster-1.4.6-1.2.15clamav-toaster-0.88.2-1.2.15vpopmail-toaster-5.4.13-1.2.12courier-imap-toaster-3.0.8-1.2.10ezmlm-cgi-toaster-0.53.324-1.2.11maildrop-toaster-devel-1.8.1-1.2.11spamassassin-toaster-3.1.1-1.2.14
  What can i 
  do?
  Thanks
  Paolo
   

Re: [qmailtoaster] RE: duplicate emails

[George Sweetnam]

Humm... in the past I used an init script as well, but discovered that using 
daemontools to manage it (and run it as a spamd too) was a better idea.
"I still cannot start spamassassin by using /etc/init.d/spamassassin 
restart "

Look at your processes and see if you are running spamd (spamd child)... 
it's a MUCH more efficient way to call spamassassin.   If you shut down your 
inet process you can always manually run it from the console and directly 
see the error messages too (highly recommened).  I suspect you aren't using 
spamd and you will run out of memory FAST under any kind of load if that's 
the case.

I do this to manually watch it and troubleshoot (yes you can read the logs, 
but you can react faster and change the start options more quickly:
svc -d /var/qmail/supervise/spamd
/usr/bin/spamd  -m5 -l -x -u vpopmail
 to exit
svc -u /var/qmail/supervise/spamd
Don't forget to start the init or daemon back up though or your mail will 
hang waitng on it.  The above spamd line is normally exec'd in this file 
(format is slightly different though):  /var/qmail/supervise/spamd/run

George Sweetnam

- Original Message - 
From: "Steve Ingraham" <[EMAIL PROTECTED]>
To: ; ; 

Sent: Thursday, September 28, 2006 1:51 PM
Subject: [qmailtoaster] RE: duplicate emails


Loren Wilton wrote:
>I did notice one possible problem in that debug output.  There was an
>'inappropriate ioctl for device' message in the whitelist stuff near
the
>end.

>This is something that has been a problem for other and has been
discussed
>before, but I don't recall what the usual fix is to solve this problem.
I
>don't think it is causing your duplicate emails, but there is a minor
nit
>there that is probably making AWL not work right.

Thanks for the information Loren, it appears that email is delivering
normally again.  I definitely would not know enough of what I was doing
to start changing anything with this issue.  I feel shell shocked for
now and want to leave well enough alone now that things are functioning
again.  I really do think I need an expert to look over my
configuration.  Who knows what I may have screwed up?  I will say that I
don't know for sure.

As a note, I "think" I may know what could have caused my problems with
duplicate emails.  I do believe that when I ran the RDJ script and
attempted to update the rules this bogged down the email server.  As
Jake mentioned the other day, this caused delivery problems with qmail.
Once I stopped the update; removed all of the rules out of
/etc/mail/spamassassin and rebooted the server (I still cannot start
spamassassin by using /etc/init.d/spamassassin restart), email started
delivering normally.  It appears that the server resources were being
maxed out.

On another note, I believe I had a compounding problem with our internal
email server running Exchange 2000 that coincided with the above
problem.  The C: drive on that server filled up and thus stopped the
Microsoft Exchange MTA Stack service that evidently delivers mail from
non-Exchange systems.

Here is Microsoft's description of the function of the Exchange MTA
Stack service:

The Microsoft Exchange MTA Stacks service (MTA) routes messages through
X.400 and gateway connectors to non-Exchange messaging systems. In a
mixed environment with servers running Exchange Server 5.5 in the local
routing group, the MTA is also used to transfer messages between
Exchange Server 2003 and Exchange Server 5.5. This occurs because
Exchange Server 5.5 MTAs communicate with each other in the local site
directly through RPCs. Exchange Server 2003 must rely on this
communication method for backward compatibility.

The executable file of the Microsoft Exchange MTA Stacks service is
EMSMTA.exe, which is located in the \Program Files\Exchsrvr\bin
directory. This service depends on System Attendant and maintains its
own specific message queues outside the Exchange store in the \Program
Files\Exchsrvr\Mtadata directory. The registry key is
HKEY_Local_Machine\System\CurrentControlSet\Services\MSExchangeMTA.

Note

You should leave the Microsoft Exchange MTA Stacks service running, so
that server monitors in their default configuration do not report a
server running Exchange Server as unavailable.

These two things I think were Cause 1 and Cause 2 of my failure, at
least I think they were.  I will say that stopping the RDJ update and
removing all unnecessary rule sets out of /etc/mail/spamassassin helped
get the system delivering again, furthermore, once I freed up space on
the Exchange 2000 machine and restarted the MTA Stack service things
started going back to normal.

Of course this brings me right back to my original reason for starting
this process this week.  Our users are getting a lot of spam in their
mailboxes that I was trying to block from getting through by updating
rules in spamassassin.  George, I have include

Re: [qmailtoaster] Catchall

[George Sweetnam]

Here are some options (delete, bounce, forward to, and send to another 
domain):

| /home/vpopmail/bin/vdelivermail '' delete
| /home/vpopmail/bin/vdelivermail '' bounce-no-mailbox
|/home/vpopmail/bin/vdelivermail '' [EMAIL PROTECTED]
|/home/vpopmail/bin/vdelivermail '' 
/home/vpopmail/domains/domain.com/postmaster

George
- Original Message - 
From: "Eric "Shubes"" <[EMAIL PROTECTED]>
To: 
Sent: Thursday, September 28, 2006 9:48 AM
Subject: Re: [qmailtoaster] Catchall


I'm not familiar with that version of qmailadmin.
The 1.3 toaster version allows you to specify which account is used for
catchall. There is no option (that I see) for bouncing catchall.

I would try turning off catchall bounced, and set postmaster as catchall
account.

K Anand wrote:
> Hi,
>
> I have not set any account as catchall...From the qmailadin, I used the 
> "Set
> Catchall bounced" option. I'm running qmail-toaster-1.03-1.2.10 with
> qmailadmin-toaster-1.2.9-1.2.11. Should I mark any account as a catchall
> account or by default it is set to some account ?? I just saw that the
> postmaster account was not set as a catchall account.
>
> Anand
>
>
> - Original Message - 
> From: "Eric "Shubes"" <[EMAIL PROTECTED]>
> To: 
> Sent: Wednesday, September 27, 2006 8:45 PM
> Subject: Re: [qmailtoaster] Catchall
>
>
>> K Anand wrote:
>>> OK ..thanx for the confirmation...So how do I stop these double bounces
> from
>>> filling up the mailbox of postmaster ??
>>>
>>> Anand
>> Don't bounce catchall email. IOW, set your catchall (postmaster or other)
>> account to standard routing.
>>
>> BTW, how did you set your catchall account to bounce? I don't see such an
>> option. What version of toaster are you running?
>> -- 
>> -Eric 'shubes'
>>


-- 
-Eric 'shubes'

-
 QmailToaster hosted by: VR Hosted 
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]



-
 QmailToaster hosted by: VR Hosted 
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: [qmailtoaster] duplicate emails

[George Sweetnam]

You need the -r which means to use as a rejection list -a is a white list 
(don't run through an rbl).  I don't have any problems using multiple lines 
when entering then in the blacklists file... putting it directly into the 
smtp/run file without a \ on the end of the line would be foolish though.

Use the qmail-inject line I sent last time to test your email...it'll show 
you where it's failing.

George.

- Original Message - 
From: "Eric "Shubes"" <[EMAIL PROTECTED]>
To: 
Cc: <[EMAIL PROTECTED]>
Sent: Wednesday, September 27, 2006 6:12 PM
Subject: Re: [qmailtoaster] duplicate emails


Steve Ingraham wrote:
> Eric (Shubes) wrote:
>> Caution: the contents of /var/qmail/control/blacklists must be on a
> single
>> line (I think - you might be able to escape the newline (CR), but I'm
> not
>> sure w/out testing it).
>
> Eric, can you explain what you are referring to in your Caution
> statement above?  Do you mean that all of the content should be listed
> on one line?  So using an example from George's blacklist below the
> content should look like:
>
> -r sbl.spamhaus.org -r bl.spamcop.net -r relays.ordb.org . . . etc.

Yes, that looks good.

> If this is the way it needs to be input into the blacklists file should
> there be commas, spaces or something else between each entry?

Just spaces between each entry. No commas, only space(s).

> If not,
> then I guess I am a little confused on what you are referring to.

Don't put them on separate lines.

> Steve Ingraham
> ___
>
>> George Sweetnam wrote:
>>> You might also want to add some additional blacklists from orbs
> (don't
>> do
>>> the all-in-one).  Some like the dynamic shouldn't be used, but the
>>> exploited
>>> server rbl is very handy.  I added 5 or 6 to my servers and it's
> helped
>>> even more.
>>> The content of my current blacklists control file (I does change):
>>> -r sbl.spamhaus.org
>>> -r bl.spamcop.net
>>> -r relays.ordb.org
>>> -r block.dnsbl.sorbs.net
>>> -r http.dnsbl.sorbs.net
>>> -r misc.dnsbl.sorbs.net
>>> -r rhsbl.sorbs.net
>>> -r smtp.dnsbl.sorbs.net
>>> -r socks.dnsbl.sorbs.net
>>> -r spam.dnsbl.sorbs.net
>>> -r web.dnsbl.sorbs.net
>>> -r zombie.dnsbl.sorbs.net
>>> Just eliminate the biggest files in your setup - comment out
> BLACKLIST
>>> and BLACKLIST_URL from your config. Those two are huge and taking
> them
>>> out of my setup returned my system to normal behavior.
>>
>> Thanks, I will look at adding to my blacklists control file.  Can you
>> tell me what the "-r" command means?
>>
>> Steve Ingraham
>>
>>
>>
>> --Original Message--
>>
>>> Steve Ingraham wrote:
>>>
>>> I need help with a problem. Our users are seeing some multiple
>>> duplicate emails coming from the same sender. This is not occurring
>>> with every email so there does not seem to be any pattern to which
>>> incoming emails will be duplicated and which ones won't. They are
> also
>>> reporting that duplicate emails are sent when they send to an outside
>>> email. Has anyone experienced this problem before? What could be
>>> causing this to occur and what can I do to stop this? I am running
>>> qmailtoaster and spamassassin as an external email gateway. There has
>>> been nothing changed with qmail but I did update some rules in SA
>>> using rules_du_jour yesterday. Would these rules updates cause this
>>> problem? If so, what would have changed?
>>>
>>> Jake Vickers wrote:
>>>
>>> If your system is low on resources (ie: RAM), then the spamd process
>>> can take too long, making Toaster think the mail got lost somewhere,
>>> so it resends it.
>>> Might want to check and see how much RAM you're using.
>>>
>>> I want to thank everyone who posted a reply on my inquiry. I believe
>>> Jake Vickers was right about the problem. The RAM on the email server
>>> was bogged down since yesterday when I updated the various .cf files
>>> using rules_du_jour. I had included just a handful of rules from RDJ
>>> but it appears that RDJ utilizes much too much of my server resources
>>> to use it to update my spamassassin rules. It was slowing down the
>>> server so much that simple functions were not responding. This
> appears
>>> to have affected the delivery of emails. In fact I noticed that my
>>> original message to these mail lists took se

Re: [qmailtoaster] problem receiving remote email

[George Sweetnam]

Since it worked when you disabled simscan you should turn it back on again 
and manually disable the spam and clam in the control file for it. 
spam=no,clam=no
On the line above the default entry (it reads down from the top put a line 
specific to your email address).  Turn spam off for all domains.  Then send 
a test message to the [EMAIL PROTECTED] and see if you can get it to that box.

[EMAIL 
PROTECTED]:clam=yes,spam=yes,trophie=yes,spam_hits=20,attach=.scr:.bat:.com:.pif:.exe:.vbs:.lnk:.wsh:.hta
[EMAIL 
PROTECTED]:clam=yes,spam=no,trophie=yes,attach=.scr:.bat:.com:.pif:.exe:.vbs:.lnk:.wsh:.hta
:clam=no,spam=no,trophie=no,spam_hits=5.5,attach=.scr:.bat:.com:.pif:.exe:.vbs:.lnk:.wsh:.hta


Then do this:
 /var/qmail/bin/simscanmk
 /var/qmail/bin/simscanmk -g

It's likely you did an update to spamassassin and forgot to update the 
simscan db file (-g command) previously to the network issue.   Then when 
you were having the problem rebooted the machine or restarted qmail, which 
made the update effective.


George Sweetnam


- Original Message - 
From: "Eric "Shubes"" <[EMAIL PROTECTED]>
To: "qmailtoaster-list" 
Sent: Wednesday, September 27, 2006 12:03 PM
Subject: [qmailtoaster] problem receiving remote email


I'm trying to track down a problem with a high volume server and would
appreciate any insights.

To begin with, there was a networking problem which I know nothing about
that apparently started this whole ordeal. The network problem is allegedly
fixed, but the email problem persists.

The smtp log appears to be normal, except that there are no simscan
messages. A test email eventually bounced with "Sorry, I wasn't able to
establish an SMTP connection. (#4.4.1)". Something's misleading though, as I
saw the smtp session for this message in the log, and it ended with status 0
(but no simscan record).

Guessing that simscan (or more likely something within it like SA or clamav)
was having a problem, I disabled simscan, and mail is flowing once again.

Any ideas what might be the problem here?
-- 
-Eric 'shubes'

-
 QmailToaster hosted by: VR Hosted <http://www.vr.org>
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]



-
 QmailToaster hosted by: VR Hosted <http://www.vr.org>
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: [qmailtoaster] duplicate emails

[George Sweetnam]

You should always test the mail going through your server when you make 
changes like that.  Anyone making changes to spamassassin, rbl's, clamav, 
ssattach, ect should be sending a test message to see if/where it hangs. 
Most of the time you'll see it's stuck on spamc.  I have a short script I've 
made to test mail myself (/home/testmail.sh) and it makes life much easier. 
It's a good idea to look for errors with:

spamassassin -D --lint

===repost (i've saved this one now!) ===

Anytime I make updates to the mailserver settings I also using qmail-inject 
to send a message through (great for showing what is failing):

echo "mail test message" > /tmp/mailtest.txt
env QMAILQUEUE=/var/qmail/bin/simscan SIMSCAN_DEBUG=2 
/var/qmail/bin/qmail-inject [EMAIL PROTECTED] < /tmp/mailtest.txt

==
George Sweetnam


- Original Message - 
From: Steve Ingraham
To: qmailtoaster-list@qmailtoaster.com ; users@spamassassin.apache.org ; 
qmail@list.cr.yp.to
Sent: Tuesday, September 26, 2006 4:39 PM
Subject: RE: [qmailtoaster] duplicate emails


Steve Ingraham wrote:
I need help with a problem.  Our users are seeing some multiple duplicate 
emails coming from the same sender.  This is not occurring with every email 
so there does not seem to be any pattern to which incoming emails will be 
duplicated and which ones won't.  They are also reporting that duplicate 
emails are sent when they send to an outside email.  Has anyone experienced 
this problem before?  What could be causing this to occur and what can I do 
to stop this?  I am running qmailtoaster and spamassassin as an external 
email gateway.  There has been nothing changed with qmail but I did update 
some rules in SA using rules_du_jour yesterday.  Would these rules updates 
cause this problem?  If so, what would have changed?

Jake Vickers wrote:
If your system is low on resources (ie: RAM), then the spamd process can 
take too long, making Toaster think the mail got lost somewhere, so it 
resends it.
Might want to check and see how much RAM you're using.

I want to thank everyone who posted a reply on my inquiry.  I believe Jake 
Vickers was right about the problem.  The RAM on the email server was bogged 
down since yesterday when I updated the various .cf files using 
rules_du_jour.  I had included just a handful of rules from RDJ but it 
appears that RDJ utilizes much too much of my server resources to use it to 
update my spamassassin rules.  It was slowing down the server so much that 
simple functions were not responding.  This appears to have affected the 
delivery of emails.  In fact I noticed that my original message to these 
mail lists took several hours to post and were duplicated also.  I resolved 
the problem by moving the various rules .cf files out of the 
/etc/mail/spamassassin folder and restarting spamassassin.

If anyone has a simple way of updating rules for spamassassin I would 
welcome your input.  I still need to update the rules as I have been getting 
a great number of emails coming through to users.  Specifically, we are 
getting a lot of the pharmaceutical spam and the stock spam.

Again, thanks to everyone for the posts.
Steve Ingraham 


-
 QmailToaster hosted by: VR Hosted <http://www.vr.org>
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: [qmailtoaster] duplicate emails

[George Sweetnam]

You might also want to add some additional blacklists from orbs (don't do 
the all-in-one).  Some like the dynamic shouldn't be used, but the exploited 
server rbl is very handy.  I added 5 or 6 to my servers and it's helped even 
more.

The content of my current blacklists control file (I does change):
 -r sbl.spamhaus.org
 -r bl.spamcop.net
 -r relays.ordb.org
 -r block.dnsbl.sorbs.net
 -r http.dnsbl.sorbs.net
 -r misc.dnsbl.sorbs.net
 -r rhsbl.sorbs.net
 -r smtp.dnsbl.sorbs.net
 -r socks.dnsbl.sorbs.net
 -r spam.dnsbl.sorbs.net
 -r web.dnsbl.sorbs.net
 -r zombie.dnsbl.sorbs.net


George Sweetnam
- Original Message - 
From: "Michael Amster" <[EMAIL PROTECTED]>
To: 
Cc: ; 
Sent: Tuesday, September 26, 2006 4:56 PM
Subject: Re: [qmailtoaster] duplicate emails


Just eliminate the biggest files in your setup - comment out BLACKLIST
and BLACKLIST_URL from your config. Those two are huge and taking them
out of my setup returned my system to normal behavior.

-MA

Steve Ingraham wrote:

> Steve Ingraham wrote:
>
> I need help with a problem. Our users are seeing some multiple
> duplicate emails coming from the same sender. This is not occurring
> with every email so there does not seem to be any pattern to which
> incoming emails will be duplicated and which ones won’t. They are also
> reporting that duplicate emails are sent when they send to an outside
> email. Has anyone experienced this problem before? What could be
> causing this to occur and what can I do to stop this? I am running
> qmailtoaster and spamassassin as an external email gateway. There has
> been nothing changed with qmail but I did update some rules in SA
> using rules_du_jour yesterday. Would these rules updates cause this
> problem? If so, what would have changed?
>
> Jake Vickers wrote:
>
> If your system is low on resources (ie: RAM), then the spamd process
> can take too long, making Toaster think the mail got lost somewhere,
> so it resends it.
> Might want to check and see how much RAM you're using.
>
> I want to thank everyone who posted a reply on my inquiry. I believe
> Jake Vickers was right about the problem. The RAM on the email server
> was bogged down since yesterday when I updated the various .cf files
> using rules_du_jour. I had included just a handful of rules from RDJ
> but it appears that RDJ utilizes much too much of my server resources
> to use it to update my spamassassin rules. It was slowing down the
> server so much that simple functions were not responding. This appears
> to have affected the delivery of emails. In fact I noticed that my
> original message to these mail lists took several hours to post and
> were duplicated also. I resolved the problem by moving the various
> rules .cf files out of the /etc/mail/spamassassin folder and
> restarting spamassassin.
>
> If anyone has a simple way of updating rules for spamassassin I would
> welcome your input. I still need to update the rules as I have been
> getting a great number of emails coming through to users.
> Specifically, we are getting a lot of the pharmaceutical spam and the
> stock spam.
>
> Again, thanks to everyone for the posts.
>
> Steve Ingraham
>


-
 QmailToaster hosted by: VR Hosted <http://www.vr.org>
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]



-
 QmailToaster hosted by: VR Hosted <http://www.vr.org>
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: [qmailtoaster] can not recieve mail

[George Sweetnam]

True, it just has to be incremented, but it's hard to tell if it's been 
updated if it's not using the date.  Upon a second look it does appear 
someone has added another digit to it too... yuck.  I'd hate to try and keep 
up with the updates to zone files not in date format.

George

- Original Message - 
From: "Erik Espinoza" <[EMAIL PROTECTED]>
To: 
Sent: Monday, September 25, 2006 8:46 PM
Subject: Re: [qmailtoaster] can not recieve mail


Serial numbesr do not have to follow the date. It's a suggestion and
not a requirement of the protocol.

Erik

On 9/25/06, Chris Marcellin <[EMAIL PROTECTED]> wrote:
>
>  I hear you. I already went to my registrar's DNS configuration, and 
> updated
> it. The last time i changed the serial was yesterday. what do you mean 
> last
> updated in 2004? how can you determine by the serial the last update, this
> is new to me, please give me more info.
>  Thans George
>
>
>  George Sweetnam wrote:
>
> Make sure to login to your registrars account and modify the name servers
> created for your domian (for directnic I choose the "modify name servers")
> This is not to be confused with modifying dns servers listed for your
> domain.  If it's not changed there nothing will update properly.  Also,
> don't be fooled into thinking changing ip's will work.  It's named
> based...the ip's will follow.
>
> Actually, upon reading your zone file... try updating the serial... it was
> last updated in 2004 according to it's value.
>
> George
>
>
> - Original Message -
>
> From: Chris Marcellin
> To: qmailtoaster-list@qmailtoaster.com
> Sent: Sunday, September 24, 2006 4:42 PM
> Subject: Re: [qmailtoaster] can not recieve mail
>
>  oh, you said parent servers. sorry, i thought you meant my "DNS bind"
> servers. yeah, it does look like it is stemming from the parent servers,
> but, unfortunately i have no control over that, and like i said it's had
> more than enough time to propagate. is there a way to fix this?
>
>  Chris Marcellin wrote:
> Jon;
>
>  I know, that's the test i did to confirm my problems. The records at my
> parent servers are fine.
>  here's a copy of my bind zone file for canus.org:
>
>  $TTL86400
>  $ORIGIN canus.org.
>  @   IN  SOA ns1.canus.org. postmaster.canus.org. (
>  2004042731  ; serial
>  21600   ; refresh
>  3600; retry
>  604800  ; expires
>  86400 ) ; minimum
>
>
>  IN  NS  ns1.canus.org.
>
>  IN  NS  ns.teksavvy.com.
>
>  IN  NS  mail.canus.org.
>
>  IN  MX  10  webmail.canus.org.
>
>  IN  A   206.248.143.18
>
>
>  ns1 IN  A   206.248.143.18
>  mailIN  A   206.248.143.19
>  www IN  A   206.248.143.18
>  pop3IN  A   206.248.143.19
>  smtpIN  A   206.248.143.19
>  webmail IN  A   206.248.143.19
>
>  _domainkey.canus.org IN TXT "t=y; o=-; [EMAIL PROTECTED]"
>
>  private._domainkey  IN  TXT "k=rsa;
> p=MEwwDQYJKoZIhvcNAQEBBQADOwAwOA
> IxAMAUw1o85CevJFR9sE6a271S5LNbKCAMnVCFQvnKvdZHhwxGd+nvwgtTSptGEylx1QIDAQAB"
>
>  canus.org.  IN  TXT "v=spf1 ip4:206.248.143.16/29
> ip4:206.24
>  8.139.43 a mx ptr ~all"
>
>  webmail.canus.org.  IN  TXT "v=spf1 a -all"
>
>
>
>  Jon Darrington wrote:
>
> Chris,
>
> Have a quick look at:
>
> http://www.dnsreport.com/tools/dnsreport.ch?domain=canus.org
>
> it suggests that the problems stem from differences with your records at
> your parent servers.
>
> Hope this helps,
>
> Jon
>
> -Original Message-
>  From: Chris Marcellin [mailto:[EMAIL PROTECTED]
>  Sent: 24 September 2006 21:21
>  To: qmailtoaster-list@qmailtoaster.com
>  Subject: Re: [qmailtoaster] can not recieve mail
>
>  to make matters even more interesting. i have a dns problem. i can't 
> figure
> it out, as well, and my ISP's DNS administrator can't figure it out too. a
> while back, my dns servers were, ns.canus.org and ns1.canus.org,
> ns1.teksavvy.com. however, i changed that to ns1.canus.org, and
> mail.canus.org. i did all the configurations correctly, and it's been 
> about
> 4 weeks now that i have made the changes,  so, it has ha

Re: [qmailtoaster] can not recieve mail

[George Sweetnam]

Title: Message



    
2004042731  ; serial
 
- Original Message - 
From: Chris Marcellin 
To: qmailtoaster-list@qmailtoaster.com 

Sent: Monday, September 25, 2006 8:41 PM
Subject: Re: [qmailtoaster] can not recieve mail
I hear you. I already went to my registrar's DNS configuration, 
and updated it. The last time i changed the serial was yesterday. what do you 
mean last updated in 2004? how can you determine by the serial the last update, 
this is new to me, please give me more info.Thans GeorgeGeorge 
Sweetnam wrote: 

  
  Make sure to login to your registrars account and 
  modify the name servers created for your domian (for directnic I choose the 
  "modify name servers")  This is not to be confused with modifying dns 
  servers listed for your domain.  If it's not changed there nothing will 
  update properly.  Also, don't be fooled into thinking changing ip's will 
  work.  It's named based...the ip's will follow.  
   
  Actually, upon reading your zone file... try 
  updating the serial... it was last updated in 2004 according to it's 
  value.
   
  George
   
   
  - Original Message - 
  
  From: 
  Chris Marcellin 
  
  To: qmailtoaster-list@qmailtoaster.com 
  
  Sent: Sunday, September 24, 2006 4:42 PM
  Subject: Re: [qmailtoaster] can not recieve mail
  oh, you said parent servers. sorry, i thought you meant my "DNS 
  bind" servers. yeah, it does look like it is stemming from the parent servers, 
  but, unfortunately i have no control over that, and like i said it's had more 
  than enough time to propagate. is there a way to fix this?Chris 
  Marcellin wrote: 
  Jon;I 
know, that's the test i did to confirm my problems. The records at my parent 
servers are fine.here's a copy of my bind zone file for 
canus.org:$TTL    86400$ORIGIN 
canus.org.@   
IN  SOA ns1.canus.org. 
postmaster.canus.org. 
(    
2004042731  ; 
serial    
21600   ; 
refresh    
3600    ; 
retry    
604800  ; 
expires    
86400 ) ; 
minimum    
IN  NS  
ns1.canus.org.    
IN  NS  
ns.teksavvy.com.    
IN  NS  
mail.canus.org.    
IN  MX  
10  
webmail.canus.org.    
IN  A   
206.248.143.18ns1 
IN  A   
206.248.143.18mail    
IN  A   
206.248.143.19www 
IN  A   
206.248.143.18pop3    
IN  A   
206.248.143.19smtp    
IN  A   
206.248.143.19webmail 
IN  A   
206.248.143.19_domainkey.canus.org IN TXT "t=y; o=-; [EMAIL PROTECTED]"private._domainkey  
IN  TXT "k=rsa; 
p=MEwwDQYJKoZIhvcNAQEBBQADOwAwOAIxAMAUw1o85CevJFR9sE6a271S5LNbKCAMnVCFQvnKvdZHhwxGd+nvwgtTSptGEylx1QIDAQAB"canus.org.  
IN  TXT "v=spf1 
ip4:206.248.143.16/29 ip4:206.248.139.43 a mx ptr 
~all"webmail.canus.org.  
IN  TXT "v=spf1 a -all"Jon 
Darrington wrote: 

  
  Chris,
   
  Have a quick look at:
   
  http://www.dnsreport.com/tools/dnsreport.ch?domain=canus.org
   
  it suggests that the problems stem from differences with your 
  records at your parent servers.
   
  Hope this helps,
   
  Jon
  
-Original Message-From: Chris 
Marcellin [mailto:[EMAIL PROTECTED]] 
Sent: 24 September 2006 21:21To: qmailtoaster-list@qmailtoaster.comSubject: 
Re: [qmailtoaster] can not recieve mailto make 
matters even more interesting. i have a dns problem. i can't figure it 
out, as well, and my ISP's DNS administrator can't figure it out too. a 
while back, my dns servers were, ns.canus.org and ns1.canus.org, 
ns1.teksavvy.com. however, i changed that to ns1.canus.org, and 
mail.canus.org. i did all the configurations correctly, and it's been 
about 4 weeks now that i have made the changes,  so, it has had 
plenty of time for the root servers to propagate. but, the root servers 
still have ns.canus.org in their database. and because of that, my dns 
isn't working perfectly. anyone have any ideas what the problem or 
solution can be.Jon Darrington wrote: 

  
  Hi Chris,
   
  I could not get an smtp reply or any other typical 
  response (http, https, icmp - ping), so thought there was no 
  server there - hence the question as to had your ip 
  changed.
   
  Glad it's all sorted now,
   
  Jon
  
-Original 

Re: [qmailtoaster] can not recieve mail

[George Sweetnam]

Title: Message



Make sure to login to your registrars account and 
modify the name servers created for your domian (for directnic I choose the 
"modify name servers")  This is not to be confused with modifying dns 
servers listed for your domain.  If it's not changed there nothing will 
update properly.  Also, don't be fooled into thinking changing ip's will 
work.  It's named based...the ip's will follow.  
 
Actually, upon reading your zone file... try 
updating the serial... it was last updated in 2004 according to it's 
value.
 
George
 
 
- Original Message - 

From: Chris Marcellin 
To: qmailtoaster-list@qmailtoaster.com 

Sent: Sunday, September 24, 2006 4:42 PM
Subject: Re: [qmailtoaster] can not recieve mail
oh, you said parent servers. sorry, i thought you meant my "DNS 
bind" servers. yeah, it does look like it is stemming from the parent servers, 
but, unfortunately i have no control over that, and like i said it's had more 
than enough time to propagate. is there a way to fix this?Chris 
Marcellin wrote: 
Jon;I know, 
  that's the test i did to confirm my problems. The records at my parent servers 
  are fine.here's a copy of my bind zone file for 
  canus.org:$TTL    86400$ORIGIN 
  canus.org.@   
  IN  SOA ns1.canus.org. 
  postmaster.canus.org. 
  (    
  2004042731  ; 
  serial    
  21600   ; 
  refresh    
  3600    ; 
  retry    
  604800  ; 
  expires    
  86400 ) ; 
  minimum    
  IN  NS  
  ns1.canus.org.    
  IN  NS  
  ns.teksavvy.com.    
  IN  NS  
  mail.canus.org.    
  IN  MX  
  10  
  webmail.canus.org.    
  IN  A   
  206.248.143.18ns1 
  IN  A   
  206.248.143.18mail    
  IN  A   
  206.248.143.19www 
  IN  A   
  206.248.143.18pop3    
  IN  A   
  206.248.143.19smtp    
  IN  A   
  206.248.143.19webmail 
  IN  A   
  206.248.143.19_domainkey.canus.org IN TXT "t=y; o=-; [EMAIL PROTECTED]"private._domainkey  
  IN  TXT "k=rsa; 
  p=MEwwDQYJKoZIhvcNAQEBBQADOwAwOAIxAMAUw1o85CevJFR9sE6a271S5LNbKCAMnVCFQvnKvdZHhwxGd+nvwgtTSptGEylx1QIDAQAB"canus.org.  
  IN  TXT "v=spf1 
  ip4:206.248.143.16/29 ip4:206.248.139.43 a mx ptr 
  ~all"webmail.canus.org.  
  IN  TXT "v=spf1 a -all"Jon 
  Darrington wrote: 
  

Chris,
 
Have a quick look at:
 
http://www.dnsreport.com/tools/dnsreport.ch?domain=canus.org
 
it 
suggests that the problems stem from differences with your records at your 
parent servers.
 
Hope this helps,
 
Jon

  -Original Message-From: Chris 
  Marcellin [mailto:[EMAIL PROTECTED]] Sent: 
  24 September 2006 21:21To: qmailtoaster-list@qmailtoaster.comSubject: 
  Re: [qmailtoaster] can not recieve mailto make 
  matters even more interesting. i have a dns problem. i can't figure it 
  out, as well, and my ISP's DNS administrator can't figure it out too. a 
  while back, my dns servers were, ns.canus.org and ns1.canus.org, 
  ns1.teksavvy.com. however, i changed that to ns1.canus.org, and 
  mail.canus.org. i did all the configurations correctly, and it's been 
  about 4 weeks now that i have made the changes,  so, it has had 
  plenty of time for the root servers to propagate. but, the root servers 
  still have ns.canus.org in their database. and because of that, my dns 
  isn't working perfectly. anyone have any ideas what the problem or 
  solution can be.Jon Darrington wrote: 
  

Hi Chris,
 
I could not get an smtp reply or any other typical 
response (http, https, icmp - ping), so thought there was no server 
there - hence the question as to had your ip 
changed.
 
Glad it's all sorted now,
 
Jon

  -Original Message-From: Chris 
  Marcellin [mailto:[EMAIL PROTECTED]] 
  Sent: 24 September 2006 15:27To: qmailtoaster-list@qmailtoaster.comSubject: 
  Re: [qmailtoaster] can not recieve mailHi 
  Jon;sorry, i should have replied back to my message. the funny 
  thing is, when i connection got dropped, and while i was 
  troubleshooting it with my ISP, they forgot tore-enable my subnet 
  of static ip's. i finally figured that out when i just couldn't get 
  any sort of replied from outside regarding smtp. i then called them 
  and askedif whether my static ip's were set, ps.so, I 
  thank you Jon. just out of curiosity, what sort of replies did you get 
  when you looked up those ip's below?Ch

Re: [qmailtoaster] messages stuck in the queue

[George Sweetnam]

Jake, you should run your own rbl and return a 553 
message back to the sender.  Since you are running a dns caching anyway it 
isn't hard to setup.  I think the one we have a work contains several 
hundred entries now (some of /19 and /20 networks)
 
George Sweetnam
 
 
- Original Message - 
From: Jake Vickers 
To: qmailtoaster-list@qmailtoaster.com 

Sent: Thursday, September 21, 2006 9:12 AM
Subject: Re: [qmailtoaster] messages stuck in the queue
Steve Ingraham wrote: 

  
  

  
  Steve Ingraham wrote: 
  I am seeing a large 
  number of messages stuck in the queue everyday.  Each morning I am seeing 
  over 500 messages in the queue.  With very few exceptions they all are 
  spam messages that the postmaster account has stopped delivery on because the 
  spam message is trying to deliver to an account that does not exist in our 
  domain.  What is directing mail to go to the queue?  Where are the 
  settings for this?  What can I do to stop these messages from going to 
  the queue?  I am currently going into the qmail queue and deleting all 
  the messages that are spam and leaving any legitimate messages in the queue 
  which then get delivered once the spam messages are deleted.  Is there 
  something else I should be doing to keep this spam from collecting in the 
  queue?
   
   
  Jake Vickers 
  wrote:
  There's not a whole 
  lot you can do. What the spammers are doing is sending an email to your domain 
  (bad address), with a different return address (usually also bad), so your 
  machine is trying to bounce the message back to the sender, which as I said is 
  also invalid. I set my queuelifetime to something reasonable like 2 or 3 
  hours, which helps clean them out of the queue faster. It's also a good idea 
  for businesses, since if they send a message and there is an error they get a 
  message back in 2-3 hours, instead of 5 days like the default. Gives them a 
  chance to see their error, and send the message again after 
  correcting.Other than that, some good BLs is about the best you can really 
  do.
   
  Thank you Jake for 
  the reply, so decreasing the time a message sits in the queue is about the 
  extent of what I can do?  Can you tell me where I can set the 
  queuelifetime?  Also, what do you mean by “BLs”?  Are you referring 
  to “blacklists”?
   The queue lifetime controls how long a 
message sits in the queue before it gets sent to /dev/null. It's controlled by 
the /var/qmail/control/queuelifetime file, and needs to have a value in it of 
how long you'd like the threshold to be. This number is in seconds. I'm using 
10800 for a value on one of my machines (I happened to be logged into it while 
typing this).And yes, I meant blacklists. While not extremely effective, 
they will stop SOME spammer's bad IP addresses from connecting.It's a little 
bit of work, but you may check your logs to see what IP addresses the messages 
are coming from. I've found that whenever I got a "storm" like this, 80%-90% 
would be from a single IP trying to relay through me and I just add an entry in 
my iptables to deny connections.

Re: [qmailtoaster] Mail flood question

[George Sweetnam]

the tcp.smtp file should contain these options: (I set my wrong limit VERY 
low)
CHKUSER_RCPTLIMIT="50"
CHKUSER_WRONGRCPTLIMIT="10"

- Original Message - 
From: "Craig Smith" <[EMAIL PROTECTED]>
To: 
Sent: Thursday, September 21, 2006 7:16 AM
Subject: [qmailtoaster] Mail flood question


We've just had a problem with several thousand (20 000+) bombarding our
server on random but valid accounts.

I was wondering if there was anyway, to prevent or control the amount of
incoming mail?  The only ones I'm aware off are the
concurrencyincoming and remote, but they are on 100 and 60, and I believe
they control physical connections don't they?

I can't for the life of me think on how to prevent this type of flooding,
although not debilitating, it has an impact on our bandwidth.

Any help you guys can provide as ever would be greatly appreciated.


---
Craig Smith - Systems Engineer - Doctor Net
t. 0870 770 4990 - f. 0870 770 4991

Visit www.doc-net.com - let us be your key to success
Visit www.eMailCampaigner.com - close sales cheaper and faster
Visit www.SprintCRM.com - understand your customers better and increase
sales
---
The information transmitted is intended only for the person or entity to
which it is addressed and may contain confidential and/or privileged
material. If you received this in error, please contact the sender and
delete the material.


-
 QmailToaster hosted by: VR Hosted 
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]



-
 QmailToaster hosted by: VR Hosted 
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: [qmailtoaster] Failed dependecies for courier-authlib-toaster-0.58-1.3.1.i386.rpm fdr40-install-script.sh

[George Sweetnam]

I've run into the same issues many times with lib files from source.  You 
can simlink the dir and then installs work from that point forward, but for 
things like regex they use the /usr/local/lib if you don't remember to use 
the --prefix= option first.  Manual installs of simscan fail if you don't 
modify some things first.

George Sweetnam.

- Original Message - 
From: "Eric "Shubes"" <[EMAIL PROTECTED]>
To: 
Sent: Monday, September 18, 2006 2:15 PM
Subject: Re: [qmailtoaster] Failed dependecies for 
courier-authlib-toaster-0.58-1.3.1.i386.rpm fdr40-install-script.sh


fuzzy wrote:
> On Mon, September 18, 2006 12:32 pm, Francisco Paco Peralta wrote:
>> Help please!
>
> {snip}
>
>> [EMAIL PROTECTED]  qtms-install]# ls -al /usr/local/lib
>> total 704
>> drwxr-xr-x   4  root root   4096 Sep 21  2005 .
>> drwxr-sr-x  16 root  root   4096 Jul 20  2005 ..
>
> {snip}
>
>> -rw-r--r--   1 root root  24528 Jul  20  2005 libltdl.a
>> -rwxr-xr-x   1 root root 795 Jul 20  2005 libltdl.la
>> lrwxrwxrwx   1 root  root 16 Jul 20  2005 libltdl.so ->
>> libltdl.so.3.1.0
>> lrwxrwxrwx   1 root root  16 Jul 20  2005 libltdl.so.3 ->
>> libltdl.so.3.1.0
>> -rwxr-xr-x   1 root root  22772 Jul 20   2005 libltdl.so.3.1.0
>> drwxr-xr-x   2 root root   4096 Sep  21  2005  pkgconfig
>
> from your ls output, the file is on your system, and ownership and perms
> look ok.

Looks ok to me too.

> do this:
> #cat $PATH

I think you mean
# echo $PATH

> is /usr/local/lib in your $PATH?  i assume it is not, otherwise that file
> should be found, yes?

No. $PATH is used for executables such as /bin and /sbin (and /usr/bin and
/usr/local/bin etc). /lib is for dynamically loaded executables, and
shouldn't be in your $PATH. /lib (and /usr/lib and /usr/local/lib) modules
need to be loaded (or linked) before being executed, so they're inherently
different, although they do technically contain execuable code.

> /usr/local/lib is in my $PATH on my centos box, and the file in question
> is in /usr/lib here.

I don't think you want any /lib directories in your $PATH. My 2 centos boxes
don't have them, and they work just fine.

> maybe a symlink or a $PATH correction is in order.  check that out.

I don't think so. On my FC5 box, these files are in /usr/lib, not
/usr/local/lib. This leads me to believe that these modules were installed
from source instead of from a binary rpm. This file is part of the
libtool-ltdl package.

I would try
# yum install libtool-ltdl
to fix the problem. You might want to remove the locally built one first.

> i always advise the use of centos...it is what they develop this on.
> centos+qmailtoaster works with zero install issues, it has a lng life
> cycle(2012), it is easy to admin if you are already using rh (fedora? no
> new skills needed), and it is stable.  if all you need is a (q)mail
> server, look no further.

I think that CentOS is the most appropriate distro for the toaster too.

-- 
-Eric 'shubes'

-
 QmailToaster hosted by: VR Hosted <http://www.vr.org>
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]



-
 QmailToaster hosted by: VR Hosted <http://www.vr.org>
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: [qmailtoaster] qmail-tap patch

[George Sweetnam]

This gets asked fairly often.  What do you think of including a taps.sample 
or a taps.instructions file with the distro?

George Sweetnam

- Original Message - 
From: "Jake Vickers" <[EMAIL PROTECTED]>
To: 
Sent: Monday, September 18, 2006 10:55 AM
Subject: Re: [qmailtoaster] qmail-tap patch


Ed Morrison wrote:
> It's my understanding that the qmail-tap patch is installed by default
> with the toaster install.  I do not see the /var/qmail/control/tap
> file.  Has the location to control the settings changed? If so, where?
>
The patch is included, but it is not set up. You must create the tap
file to define how you want it set up.

-
 QmailToaster hosted by: VR Hosted <http://www.vr.org>
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]



-
 QmailToaster hosted by: VR Hosted <http://www.vr.org>
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: [qmailtoaster] 3rd party spamassassin scanning service

[George Sweetnam]

Craig,
If you want to offer only spam scanning and not have the irritating problem 
of verifying users you can have receive the mail and then forward to your 
scanning cluster from their simscan application.  That way postfix and other 
mail programs could send you mail for scanning.  I have a similar setup and 
all you have to do is recompile simscan with a spamc option which points to 
a dns name.  The dns name then points to several servers.  Works like a 
charm and offloads the incredible load scanning mail causes our servers. 
Just make sure you setup your scanning servers to accept mail for their 
domains.

Simscan compile options:
#
You can do it locally with this:
--enable-spamc-args='-f -H -d 127.0.0.1\

Or remotely with this:
--enable-spamc-args='-f -H -d scanner.yourdomain.com'\


This is my build option (don't use these CFLAGS unless you know you have a 
multiprocessor p4 box that needs it or you'll be sorry!)
CFLAGS='-march=nocona -O2 -pipe' \
./configure --enable-user=clamav \
--enable-clamav=y \
--enable-spam=y \
--enable-spam-passthru=y \
--enable-per-domain=y \
--enable-ripmime \
--enable-attach=y \
--enable-custom-smtp-reject \
--enable-spam-hits=10 \
--enable-regex=y \
--enable-spamc-args='-f -H -d scanner.yourdomain.com' \
--enable-received=y

Simscan has many more options (like -U /tmp/spamd.sock \ )



- Original Message - 
From: "Craig Smith" <[EMAIL PROTECTED]>
To: 
Sent: Friday, September 15, 2006 5:27 AM
Subject: RE: [qmailtoaster] 3rd party spamassassin scanning service


Thanks Erik, I already had the format for the smtproutes file.  I've already
run several tests and it works like a charm.
Can't believe it's that easy.  Thanks again.  Also in the tests I ran, I've
done it both with and without the port referance
and it works either way.  It probably checks 25 by default, at least that's
what I assume it does, but I will include the info in
wiki.


> Will qmail accept the mail even though users don't exist?  If you add the
> smtp route for domainx, does qmail just interpret that as "forward all
mail
> for domainx to this address and don't check locally?"

>>No, re-read my original e-mail. You must add it to rcpthosts (tells
>>Qmail to accept for that domain) then add an a line in smtproutes for
>>Qmail to figure out where the destination truly lies.

Sorry Erik I wasn't very clear here, what I meant was that doing the above
(your text) tells qmail to just route the mail to
point x based on smtptroutes and rcpthosts and not worry about local
authentication/account checkup.  However I've already answered this question
myself through the testing.

Thanks again, I'm sure my boss will be pleased.
Regards
Craig

-Original Message-
From: Erik Espinoza [mailto:[EMAIL PROTECTED]
Sent: 15 September 2006 11:24
To: qmailtoaster-list@qmailtoaster.com
Subject: Re: [qmailtoaster] 3rd party spamassassin scanning service

> That's excellent thanks.  Are there any pitfalls potential loops etc I
> should be aware of.
> I guess if company x sets up a catch all account it will prevent the
double
> bounce.  Is there any danger of that double
> bounce becoming a loop, or possibly leading to our server being listed as
a
> spam source?

Anythings possible. You will be notified of double bounces, otherwise
you will just do a regular bounce to users.

> Last question, is it really that easy? :-)  If so that is excellent news,
> and news that I'm sure will earn me some good points
> with the boss.  Thanks for that.

Yes, it really is that easy.

> As for the Wiki, I will indeed add the info, is there anything else I
should
> include, or is the basic premise, change Mx to point to scanning server,
add
> smtproute to receiving server and add domain to rcpthosts?

Ensure that you follow the format of domain:remoteserver:port from
/var/qmail/doc/README.remote-auth

For example: gmail.com:mail.gmail.com:25

Otherwise this will not work. I just mention it, since the default
smtproutes doesn't need port.

> Will qmail accept the mail even though users don't exist?  If you add the
> smtp route for domainx, does qmail just interpret that as "forward all
mail
> for domainx to this address and don't check locally?"

No, re-read my original e-mail. You must add it to rcpthosts (tells
Qmail to accept for that domain) then add an a line in smtproutes for
Qmail to figure out where the destination truly lies.

> Thanks again for the replies, this list is the best.
>
> Regards
> Craig
>
> -Original Message-
> From: Erik Espinoza [mailto:[EMAIL PROTECTED]
> Sent: 15 September 2006 01:47
> To: qmailtoaster-list@qmailtoaster.com
> Subject: Re: [qmailtoaster] 3rd party spamassassin scanning service
>
> The answer is yes. You can scan other domains frm your box.
>
> The mx points to you. You put an smtproute that points to their server
> and you add the domain to rcpthosts.
>
> The problem is going to be double bounces. Since your box doesn't have
> a list of valid users, it will accept any m

Re: [qmailtoaster] Eric - upgrade script test qmt-newmodel.sh

[George Sweetnam]

Any more testing you want done on the sandbox?  Other than the error below 
the past 2 installations have been flawless (good job btw!).  I'll likely 
put the box in production soon and can test on some other hardware another 
time.  I'm in no rush with this though ... I plan on doing some custom perl 
applications and trial conversions of the vpasswd to mysql file ... then if 
all goes well I'll switch to sql for spamassassin too.

George Sweetnam.


-
 QmailToaster hosted by: VR Hosted <http://www.vr.org>
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: [qmailtoaster] firewall

[George Sweetnam]




Yep, if you used the firewall script it'll block 
192.168.x.x ip's.  I personally use a second nic for backups/provisioning 
(no ssh connections from the public ip) and it's a real pain to have 
the local ip's blocked.  When you do an update or installation you 
should (in the future) keep your ssh connection open and attempt to create a new 
one.  As long as you maintain your current connection you can still change 
the firewall.  This would be good advise for the wiki too.
 
George
 
 
- Original Message - 
From: Kisakye Alex 

To: qmailtoaster-list@qmailtoaster.com 

Sent: Sunday, September 03, 2006 5:08 PM
Subject: [qmailtoaster] firewall

Hi list
i have just installed a iotest box for 
qmail-toaster
am using fedora-core 5 and also an internal ip 
address (ie 192.168...)!
Now the problem is that i can't access the box 
using ssh, or even http://ip/admin-toaster/ , I cant even ping 
the box anymore! all this was possible on this box before i started 
installation! Could have the firewall locked me out? How can I reconfigure 
it(firewall)
 
Thanks
Alex

Re: [qmailtoaster] incoming mail delay, tcpserver status 256, delayed simscan logging, lost mail

[George Sweetnam]

451's  can be generated in different places
rblsmtpd -b will give 451 -B gives 553 (what I use because I don't want it 
confused with out of memory errors).

Oh, one side effect of using multiple rbls... make sure they are VERY 
reliable.  If they don't work your smtp session could be sitting on it and 
timing out -t 300 is 5 minutes (I use 20 seconds).  I've had users complain 
about our server being down in the past when it was actually an rbl which 
was not responding!  Just image a server with 3-5 pieces of mail a second 
getting a 5 minute timeout on an rbl... 18000 messages in the queue very 
quickly (about an hour).   Someday I might convert the big server to a 
toaster, but it's not rpm based and is still using vpasswd files (w /1500 
domains) which is a bigger project than I can spare the time for right now.

I'd also recommend checking the spamd logs and seeing if there are errors 
about needing more children or reaching the max setting.  When all else 
fails you can test from the command line sending mail and watch where it's 
failing easily.

George Sweetnam

- Original Message - 
From: "Eric "Shubes"" <[EMAIL PROTECTED]>
To: 
Sent: Tuesday, August 29, 2006 2:39 PM
Subject: Re: [qmailtoaster] incoming mail delay, tcpserver status 256, 
delayed simscan logging, lost mail


Eric "Shubes" wrote:
> I haven't otherwise noticed missing email (except with lists that don't
> consider domainkeys). This one is confirmed not spam, and the sending
> server repeats every 15 minutes like clockwork. Do you suppose I should
> turn recordio on for a spell?
>
> I don't think the failure is in SURBL, because it appears that smtp is
> failing very shortly after handing off to SA. Besides which, simscan
> reports the message as clean.
>
> I'm not sure about Nate's problem either, but it could be related. Is
> nate getting tcpserver end  status 256?

Ok, here's the log with recordio running:
2006-08-29 11:35:39.716219500 17585 < http://pobox.com/~djb/docs/smtplf.html.^M
2006-08-29 11:35:39.718514500 17585 > [EOF]
2006-08-29 11:35:39.719922500 tcpserver: end 17585 status 256
2006-08-29 11:35:39.720051500 tcpserver: status: 1/100
2006-08-29 11:35:42.999573500 simscan:[1]:CLEAN
(0.60/12.00):3.4350s:Long-Term Care Insurance:66.150.173.104::
2006-08-29 11:36:34.725007500 tcpserver: status: 0/100

In the words of Chief Inspector Clouseau, "Ah yes, the old smtplf ploy". ;)

Looks as if the incoming email is malformed. My question then becomes, if
smtp is sending a temporary failure (451) message to the sender, then why is
simscan processing it?

-- 
-Eric 'shubes'

-
 QmailToaster hosted by: VR Hosted <http://www.vr.org>
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]



-
 QmailToaster hosted by: VR Hosted <http://www.vr.org>
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: [qmailtoaster] invalid sender address format

[George Sweetnam]

Have them send you a test email and look at the header.  It's likely the 
sender has their emailaddress bufar'd.  You can test yourself by setting up 
a test email box on that domain or another and sending yourself a message 
from offnetwork (it's what I do).

George.

- Original Message - 
From: "Eric "Shubes"" <[EMAIL PROTECTED]>
To: 
Sent: Wednesday, August 30, 2006 5:20 PM
Subject: Re: [qmailtoaster] invalid sender address format


[EMAIL PROTECTED] wrote:
>> [EMAIL PROTECTED] wrote:
 [EMAIL PROTECTED] wrote:
> Hello,
>
> I am running qmail toaster for a company i work for and am running
> into
> the following random problem.
>
> ./smtp/@400044ef7dda2ab1dcec.s:@400044ef35420e6d36e4 CHKUSER
> rejected sender: from <[EMAIL PROTECTED]@domain.com::> remote
>  :
> invalid
> sender address format
>
>
> any ideas to why this might happen? Ive taken note that for some
> reason
> qmail attaches the domain twice in this output from my smtp log file.
>
>
 Qmail doesn't attach the domain twice, it's the sender who is doing
 that.
 That's why it's an invalid format - two '@' characters.

 I'm guessing that the sender has '[EMAIL PROTECTED]' in their account
 name,
 where they should only have 'sender'.

 --
 -Eric 'shubes'

>>> So does this mean that the send would be representing thmeselves as
>>>  John Doe <[EMAIL PROTECTED]>
>> I don't know what you mean.
>>
>>> or is there a way to make chkusr accept it anyways?
>> There is, but I don't think you want to go there.
>>
>>> every since i upgraded i have had problems with this.
>> I don't think it's a problem. Do you know who this particular email is
>> coming from? If so, please elaborate. If not, let it go.
>>
>>> andy
>>>
>> --
>> -Eric 'shubes'
>>
>> -
>>  QmailToaster hosted by: VR Hosted 
>> -
>> To unsubscribe, e-mail: [EMAIL PROTECTED]
>> For additional commands, e-mail: [EMAIL PROTECTED]
>>
>>
> The email is comming from frontiernet.net  It is someone trying to reply
> to an email a customer of ours sent from the domain
> galesburganimalhospital.com which we host email for the customer
>
>
> andy
>

Ok. It's still my guess that the client software (sender's host) sending via
  frontiernet.net is configured improperly. Can the person who's sending it
verify their configuration with frontiernet.net? Can you help them somehow?

I just don't see how it could be a toaster problem. The toaster is doing
what it's supposed to do.

-- 
-Eric 'shubes'

-
 QmailToaster hosted by: VR Hosted 
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]



-
 QmailToaster hosted by: VR Hosted 
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: [qmailtoaster] Restoring mailing lists.

[George Sweetnam]

This reminds me... I moved servers once and had to manually move the address 
books from squirrelmail.  We may want to add it to the backup & restore 
scripts (I haven't checked them in a long time actually).

George
- Original Message - 
From: "Jake Vickers" <[EMAIL PROTECTED]>
To: 
Sent: Monday, August 28, 2006 2:44 PM
Subject: Re: [qmailtoaster] Restoring mailing lists.


Kaven Gagnon wrote:
> Hi, last week, I migrate my old server to a new one and now, the only 
> thing
> that doesn't work is mailing lists.  No mailing lists are displayed on
> qmailadmin and it said user unknown if I tried to send a mail to list. 
> But
> the mailing list directory exist in /home/vpopmail/domain/"domain"/"list".
> I checked for file/folder permissions and everything seems to be all 
> right.
>
> Any ideas?
>
 From the old server to the new, did the users change? Weren't you the
one that had to run qmailnewu?

-
 QmailToaster hosted by: VR Hosted 
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]



-
 QmailToaster hosted by: VR Hosted 
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: [qmailtoaster] Eric - upgrade script test qmt-newmodel.sh

[George Sweetnam]

Just got home and checked my screen session for the build messages and it 
ended with this:
===
All Done :)


===
The earlier build without the random ability failed and exited.
(> RPM build errors: Bad exit status from /var/tmp/rpm-tmp.51382 
(%install) )

It most likely didn't fail on upgrades because there was an existing cert to 
use on failure (just a guess).

I'll use Jake's remove tool and then re-install with your updated scripts 
again next week too.

George


-
 QmailToaster hosted by: VR Hosted 
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: [qmailtoaster] problem with tcpserver on a quad Xeon 64 bit system

[George Sweetnam]

What he's talking about are CFLAGS specified in the Makefile.  Toaster uses 
general settings and it sound like the basic "wall" setting was changed for 
a build.  Normally that only happens when someone is custom building a 
package and looking to make it run better with a particular cpu.  I change 
settings for a quad processor Xeon mailserver I manage for my work (not a 
toaster server).  Let me tell you recompiling with updated CFLAGS on 
simscan/clamav/spamassassin on a server doing 5 messages a second helps 
tremendously.

George.
- Original Message - 
From: "Eric "Shubes"" <[EMAIL PROTECTED]>
To: 
Sent: Saturday, August 26, 2006 11:20 AM
Subject: Re: [qmailtoaster] problem with tcpserver on a quad Xeon 64 bit 
system


TV SIVARAMAN wrote:
> Our qmail SMTP, POP, IMAP stopped functioning after 15
> days and would quit after one second. The problem was
> traced to ucspi-tcp-toaster after extensive Google
> search, something to do with gcc -O2 parameter. Is
> this problem being looked into? If so, how to solve
> it?
>
> Sivaraman.
>

Please specify distro, toaster, versions, and google result reference.

-- 
-Eric 'shubes'

-
 QmailToaster hosted by: VR Hosted 
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]



-
 QmailToaster hosted by: VR Hosted 
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: [qmailtoaster] still having trouble with spamassassign

[George Sweetnam]

Welcom Aaron,
First thing, is that the full simcontrol 
file?  Any line above that rule could be taking precidence over your 
default rule
Second, after you make changes to that 
file you have to do the following commands to make it 
effective:
 
/var/qmail/bin/simscanmk 
/var/qmail/bin/simscanmk -g
 
George Sweetnam
 
- Original Message - 
From: Aaron Bliss 

To: qmailtoaster-list@qmailtoaster.com 

Sent: Saturday, August 26, 2006 11:36 AM
Subject: [qmailtoaster] still having trouble with 
spamassassign
Hi everyone, I'm still having trouble getting qmail to automatically delete this mail; spamassassign identified the message as spam, this is what /var/qmail/control/simcontrol looks like:clam=yes,spam=yes,spam_hits=5,attach=.mp3:.src:.bat:.pif
Any ideas?  Spamassassign is inserting the word "SPAM" into the subject line, but doesn't seem to want to get rid of it.Thanks very much Received: by simscan 1.2.0 ppid: 21067, pid: 21069, t: 
1.3928s scanners: attach: 1.2.0 clamav: 0.88.3/m:39/d:1638 spam: 3.1.3X-Spam-Flag: YESX-Spam-Checker-Version: SpamAssassin 3.1.3 (2006-06-01) on 	
centos1.theblissfamily.orgX-Spam-Level: **X-Spam-Status: Yes, score=10.1 required=5.0 tests=DATE_IN_FUTURE_03_06,	FORGED_MUA_OUTLOOK,HELO_DYNAMIC_IPADDR2,HG_HORMONE,HTML_MESSAGE 	autolearn=no version=
3.1.3

Re: [qmailtoaster] Eric - upgrade script test qmt-newmodel.sh

[George Sweetnam]

You could always just use the "setenforce 0" in the script to turn if off, 
but that should really be a user option.  Maybe just prompt to turn it off 
at the start (and don't allow a batch answer for it).  I just sent a 
"setenforce 9" and it said it was enabled (any number other than 0 or 1 will 
give you the status of it)... what i get for testing on a stock installation 
though.

I got all the way to generating the ssl certs before it failed this time. 
It's looking for /dev/random and not finding it now.  I can manually install 
it... sounds like it can't reach it in the sandbox.

This is the error:
random number generator:SSLEAY_RAND_BYTES:PRNG not seeded:md_rand

#here is what it needs
crw-rw-rw- 1 root root 1, 8 Aug 25 21:15 /dev/random
cr--r--r-- 1 root root 1, 9 Aug 25 21:15 /dev/urandom

#do the following 2 lines to make them in the sandbox:
mknod -m 644 /opt/qmt-sandbox/dev/random c 1 8
mknod -m 444 /opt/qmt-sandbox/dev/urandom c 1 9

George


===

STEP 2: Generating X.509 certificate signing request for CA
You are about to be asked to enter information that will be incorporated
into your certificate request.
What you are about to enter is what is called a Distinguished Name or a DN.
There are quite a few fields but you can leave some blank
For some fields there will be a default value,
If you enter '.', the field will be left blank.
-
1. Country Name (2 letter code) []:2. State or Province Name 
(full name) []:3. Locality Name(eg, city)  []:4. 
Organization Name(eg, company)   [Qmail Toaster Server]:5. 
Organizational Unit Name (eg, section)   [For testing purposes only]:6. 
Common Name  (eg, CA name)   [www.qmailtoaster.com]:7. Email 
Address(eg, [EMAIL PROTECTED]) []:28664:error:24064064:random 
number 
generator:SSLEAY_RAND_BYTES:PRNG not seeded:md_rand.c:503:You need to read 
the OpenSSL FAQ, http://www.openssl.org/support/faq.html
28664:error:04088003:rsa routines:RSA_setup_blinding:BN lib:rsa_lib.c:407:
28664:error:04066044:rsa routines:RSA_EAY_PRIVATE_ENCRYPT:internal 
error:rsa_eay.c:364:
28664:error:0D0C3006:asn1 encoding routines:ASN1_item_sign:EVP 
lib:a_sign.c:276:
cca:Error: Failed to generate certificate signing request
error: Bad exit status from /var/tmp/rpm-tmp.51382 (%install)


RPM build errors:
Bad exit status from /var/tmp/rpm-tmp.51382 (%install) 


-
 QmailToaster hosted by: VR Hosted 
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: [qmailtoaster] Eric - upgrade script test qmt-newmodel.sh

[George Sweetnam]

Ok...responses:

This should be done by the user, per the wiki. I suppose that I could have
the script do it, but this will be taken care of by the qtp package (soon to
be announced). Stay tuned for that development!
- ok, I wasn't following the wiki.  I thought this was a replacement script 
for the mirad of install options/scripts we currrently have available.


> #note the user vpopmail hasn't been build along with the sandbox so the 
> user
> won't exist yet.
That's ok (I think).
- I think the user and group have to be installed... things like 
spamassassin use it.


Do you have selinux disabled? If not, disable and reboot.
-duhh... forgot all about it.  It's running in targeted mode/enforce.  I'll 
disable and install
# for others following or searching later... you just need to vi 
/etc/selinux/config and then choose disabled.  You can manually turn it off, 
but for testing purposes I'll reboot and keep it off until done.


George 


-
 QmailToaster hosted by: VR Hosted 
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: [qmailtoaster] Eric - upgrade script test qmt-newmodel.sh

[George Sweetnam]

Continuing ...
cp: cannot stat `/home/vpopmail': No such file or directory
Sandbox has been built successfully!

Starting to build the binary rpms ...(pizza anyone?)

If you want to view compile messages, you can open another terminal and:
# tail -f /opt/qmt-sandbox/usr/src/qmt/log/build-recent.log

chroot: cannot run command `/home/geos/newtest/qmt-build-rpms.sh': 
Permission denied
Build failed, Exiting.
#
#attmped to satisfy this error:
#if it works you'll want to set the file to new perms since I just wget from 
your page
chmod 777 qmt-build-rpms.sh
chmod 777 /opt/qmt-sandbox/home/geos/newtest/qmt-build-rpms.sh

#note the user vpopmail hasn't been build along with the sandbox so the user 
won't exist yet.
#I don't want to add it because I want to test the installation script
#this alone will cause the build to fail... was there a pre-installation 
script to setup the users I missed?

#


#continuing attempt without removing it:
sh qmt-newmodel.sh


The sandbox may be built in any partition.
The 'linked' option is only available in the / partition
The sandbox is configured to be built at /opt/qmt-sandbox
Shall we continue? (yes, no|skip, batch, quit) [y] / n|s / b / q :
Running in background, replied 'yes'
Shall we build a new sandbox at /opt/qmt-sandbox? (yes, no) y/[n] :
Running in background, replied 'no'

Starting to build the binary rpms ...(pizza anyone?)

If you want to view compile messages, you can open another terminal and:
# tail -f /opt/qmt-sandbox/usr/src/qmt/log/build-recent.log

Building daemontools-toaster-0.76-1.3.1 ...
qmt-build-rpms.sh - rpmbuild failed for daemontools-toaster-0.76-1.3.1
qmt-build-rpms.sh - see /opt/qmt-sandbox/usr/src/qmt/log/build-recent.log
Build failed, Exiting.

#
#output of build-recent.log
Building daemontools-toaster-0.76-1.3.1 ...
error: unpacking of archive failed on file 
/usr/src/redhat/SOURCES/daemontools-0.76-man.tar.bz2: cpio: lsetfilecon 
failed - Invalid argument
error: /usr/src/qmt/SRPMS/daemontools-toaster-0.76-1.3.1.src.rpm cannot be 
installed
Installing /usr/src/qmt/SRPMS/daemontools-toaster-0.76-1.3.1.src.rpm

-George



-
 QmailToaster hosted by: VR Hosted 
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: [qmailtoaster] Eric - upgrade script test qmt-newmodel.sh

[George Sweetnam]

Oh... another comment.  You should echo the script version before the 
sandbox build to the screen so when people paste the output you know for 
sure what release it is.  example echo "SCRIPT VERSION: 
qmt-newmodel.es.20060825" (use the date in this way so it always sorts 
correctly).

George Sweetnam


- Original Message - 
From: "George Sweetnam" <[EMAIL PROTECTED]>
To: 
Sent: Friday, August 25, 2006 7:07 PM
Subject: Re: [qmailtoaster] Eric - upgrade script test qmt-newmodel.sh


Per your email post saying you made changes, I've opened a new screen
window, deleted the old install, downloaded the new scripts, and started a
new install to let it run while i'm away.  I'll post again letting you know
the final result when I get a chance.

George Sweetnam


The 'linked' option is only available in the / partition
The sandbox is configured to be built at /opt/qmt-sandbox
Shall we continue? (yes, no|skip, batch, quit) [y] / n|s / b / q :
Running in background, replied 'yes'
Would you like to create a linked sandbox? (yes, no) y/[n] :
Running in background, replied 'no'
Creating Copied sandbox: /opt/qmt-sandbox ... (coffee anyone?)
Creating /opt/qmt-sandbox/backup ...
find: /backup: No such file or directory
Creating /opt/qmt-sandbox/bin ...
Creating /opt/qmt-sandbox/command ...
find: /command: No such file or directory
Creating /opt/qmt-sandbox/etc ...
Creating /opt/qmt-sandbox/lib ...
Creating /opt/qmt-sandbox/sbin ...
Creating /opt/qmt-sandbox/usr/bin ...
Creating /opt/qmt-sandbox/usr/etc ...
Creating /opt/qmt-sandbox/usr/include ...
Creating /opt/qmt-sandbox/usr/kerberos ...
Creating /opt/qmt-sandbox/usr/lib ...
Creating /opt/qmt-sandbox/usr/libexec ...
Creating /opt/qmt-sandbox/usr/local ...
Creating /opt/qmt-sandbox/usr/man ...
Creating /opt/qmt-sandbox/usr/sbin ...
Creating /opt/qmt-sandbox/usr/share ...




- Original Message - 
From: "Eric "Shubes"" <[EMAIL PROTECTED]>
To: 
Sent: Thursday, August 24, 2006 10:13 PM
Subject: Re: [qmailtoaster] Eric - upgrade script test qmt-newmodel.sh


George wrote:
> #operating system:  fedora5
>
> uname -a
> #Linux name.of.server 2.6.17-1.2157_FC5 #1 Tue Jul 11 22:55:46 EDT 2006
> i686
> athlon i386 GNU/Linux
>
> cat /proc/cpuinfo
> #AMD Athlon(tm) XP 2600+
>
> free
> #515644
>
> df -h
> #size=110G used=5.5G available=99G
>
> #change to install dir
> cd /home/builduser/newtest/
>
> #change to a build user (forces root build)
> su -
>
> #clear existing sandbox (it tested once already)
> rm /opt/qmt-sandbox -rf
>
> #note files aren't owned by root (doesn't really matter though)
>
> #files downloaded from website:
> wget http://qmt.shubes.net/qmt-newmodel.sh
> wget http://qmt.shubes.net/qmt-build-rpms.sh
> wget http://qmt.shubes.net/qtp-build-rpms
> wget http://qmt.shubes.net/qtp-newmodel

You only need qmt-newmodel.sh and qmt-build-rpms.sh.
If you want to try qtp-newmodel instead, you'll need (only) qtp-build-rpms
and qtp-whatami along with it.

Now would have been a good time to chmod 755 the files. ;)
(see http://wiki.qmailtoaster.com/index.php/Upgrading)

> #verify there are no toaster rpms installed:
> rpm -qa | grep toaster
>
> #start it up:
> sh qmt-newmodel.sh
>
> #first odd thing:
> zlib-1.2.3-1.2.1 is installed.
> Do you want to Upgrade zlib to version 1.2.3-1.0.3
> #note:  not an upgrade, need => in script

Yeah, I noticed that yesterday too. Ron managed to have two different
versions of zlib installed, and it did an 'interesting' thing. The script
presently assumes that if they're not equal, then the one one on the toaster
site is newer. Good thing it asks (and I'm glad you paid close attention!).

I'll be adding => logic soon. I'd like to have an option to grab releases
off the development site too, in which case I'll need it for that.

Thanks for pointing this out.

> #answer for rest:
> b (batch)

You've got a lotta nerve! ;)

> #note: I have about 3G of files in /usr/local...damn this will take a
> while

Yeah, I know. The sandbox is a bit bloated, but it was the fastest way I
could think of to get it working. Might trim it down sometime in the future.

> #note2...moving it to a home dir because this takes to damn long and there
> were errors in the lib files for it being linked
>

If you put is somewhere in the '/' partition and use the linked option, it
takes a lot less space and runs a bit quicker too.

> ===partial output==
> Warning: This script does not check for available disk space.
> You'll need anywhere from 100M (linked) to 2.4G+ (copied)
>   to build the sandbox.
> The sandbox may be built in any partition.
> The 'linked' option is only available in the / partit

Re: [qmailtoaster] Eric - upgrade script test qmt-newmodel.sh

[George Sweetnam]

Per your email post saying you made changes, I've opened a new screen 
window, deleted the old install, downloaded the new scripts, and started a 
new install to let it run while i'm away.  I'll post again letting you know 
the final result when I get a chance.

George Sweetnam


The 'linked' option is only available in the / partition
The sandbox is configured to be built at /opt/qmt-sandbox
Shall we continue? (yes, no|skip, batch, quit) [y] / n|s / b / q :
Running in background, replied 'yes'
Would you like to create a linked sandbox? (yes, no) y/[n] :
Running in background, replied 'no'
Creating Copied sandbox: /opt/qmt-sandbox ... (coffee anyone?)
Creating /opt/qmt-sandbox/backup ...
find: /backup: No such file or directory
Creating /opt/qmt-sandbox/bin ...
Creating /opt/qmt-sandbox/command ...
find: /command: No such file or directory
Creating /opt/qmt-sandbox/etc ...
Creating /opt/qmt-sandbox/lib ...
Creating /opt/qmt-sandbox/sbin ...
Creating /opt/qmt-sandbox/usr/bin ...
Creating /opt/qmt-sandbox/usr/etc ...
Creating /opt/qmt-sandbox/usr/include ...
Creating /opt/qmt-sandbox/usr/kerberos ...
Creating /opt/qmt-sandbox/usr/lib ...
Creating /opt/qmt-sandbox/usr/libexec ...
Creating /opt/qmt-sandbox/usr/local ...
Creating /opt/qmt-sandbox/usr/man ...
Creating /opt/qmt-sandbox/usr/sbin ...
Creating /opt/qmt-sandbox/usr/share ...




- Original Message - 
From: "Eric "Shubes"" <[EMAIL PROTECTED]>
To: 
Sent: Thursday, August 24, 2006 10:13 PM
Subject: Re: [qmailtoaster] Eric - upgrade script test qmt-newmodel.sh


George wrote:
> #operating system:  fedora5
>
> uname -a
> #Linux name.of.server 2.6.17-1.2157_FC5 #1 Tue Jul 11 22:55:46 EDT 2006 
> i686
> athlon i386 GNU/Linux
>
> cat /proc/cpuinfo
> #AMD Athlon(tm) XP 2600+
>
> free
> #515644
>
> df -h
> #size=110G used=5.5G available=99G
>
> #change to install dir
> cd /home/builduser/newtest/
>
> #change to a build user (forces root build)
> su -
>
> #clear existing sandbox (it tested once already)
> rm /opt/qmt-sandbox -rf
>
> #note files aren't owned by root (doesn't really matter though)
>
> #files downloaded from website:
> wget http://qmt.shubes.net/qmt-newmodel.sh
> wget http://qmt.shubes.net/qmt-build-rpms.sh
> wget http://qmt.shubes.net/qtp-build-rpms
> wget http://qmt.shubes.net/qtp-newmodel

You only need qmt-newmodel.sh and qmt-build-rpms.sh.
If you want to try qtp-newmodel instead, you'll need (only) qtp-build-rpms
and qtp-whatami along with it.

Now would have been a good time to chmod 755 the files. ;)
(see http://wiki.qmailtoaster.com/index.php/Upgrading)

> #verify there are no toaster rpms installed:
> rpm -qa | grep toaster
>
> #start it up:
> sh qmt-newmodel.sh
>
> #first odd thing:
> zlib-1.2.3-1.2.1 is installed.
> Do you want to Upgrade zlib to version 1.2.3-1.0.3
> #note:  not an upgrade, need => in script

Yeah, I noticed that yesterday too. Ron managed to have two different
versions of zlib installed, and it did an 'interesting' thing. The script
presently assumes that if they're not equal, then the one one on the toaster
site is newer. Good thing it asks (and I'm glad you paid close attention!).

I'll be adding => logic soon. I'd like to have an option to grab releases
off the development site too, in which case I'll need it for that.

Thanks for pointing this out.

> #answer for rest:
> b (batch)

You've got a lotta nerve! ;)

> #note: I have about 3G of files in /usr/local...damn this will take a 
> while

Yeah, I know. The sandbox is a bit bloated, but it was the fastest way I
could think of to get it working. Might trim it down sometime in the future.

> #note2...moving it to a home dir because this takes to damn long and there
> were errors in the lib files for it being linked
>

If you put is somewhere in the '/' partition and use the linked option, it
takes a lot less space and runs a bit quicker too.

> ===partial output==
> Warning: This script does not check for available disk space.
> You'll need anywhere from 100M (linked) to 2.4G+ (copied)
>   to build the sandbox.
> The sandbox may be built in any partition.
> The 'linked' option is only available in the / partition
> The sandbox is configured to be built at /opt/qmt-sandbox
> Shall we continue? (yes, no|skip, batch, quit) [y] / n|s / b / q :
> Running in background, replied 'yes'
> Would you like to create a linked sandbox? (yes, no) y/[n] :
> Running in background, replied 'no'
> Creating Copied sandbox: /opt/qmt-sandbox ... (coffee anyone?)
> Creating /opt/qmt-sandbox/backup ...
> find: /backup: No such file or directory
> Creating /opt/qmt-sandbox/bin ...
> Creating

Re: [qmailtoaster] Eric - upgrade script test qmt-newmodel.sh

[George Sweetnam]

I'll do that if I put this in production for my personal server, but for now 
I just thought I'd lend some devl time.

George

- Original Message - 
From: "Erik Espinoza" <[EMAIL PROTECTED]>
To: 
Sent: Thursday, August 24, 2006 5:22 PM
Subject: Re: [qmailtoaster] Eric - upgrade script test qmt-newmodel.sh


Make sure you get the vpopmail from my site. The new MySQL 5 doesn't
work well with the  old version of vpopmail.

Erik

On 8/24/06, George <[EMAIL PROTECTED]> wrote:
> #operating system:  fedora5
>
> uname -a
> #Linux name.of.server 2.6.17-1.2157_FC5 #1 Tue Jul 11 22:55:46 EDT 2006 
> i686
> athlon i386 GNU/Linux
>
> cat /proc/cpuinfo
> #AMD Athlon(tm) XP 2600+
>
> free
> #515644
>
> df -h
> #size=110G used=5.5G available=99G
>
> #change to install dir
> cd /home/builduser/newtest/
>
> #change to a build user (forces root build)
> su -
>
> #clear existing sandbox (it tested once already)
> rm /opt/qmt-sandbox -rf
>
> #note files aren't owned by root (doesn't really matter though)
>
> #files downloaded from website:
> wget http://qmt.shubes.net/qmt-newmodel.sh
> wget http://qmt.shubes.net/qmt-build-rpms.sh
> wget http://qmt.shubes.net/qtp-build-rpms
> wget http://qmt.shubes.net/qtp-newmodel
>
> #verify there are no toaster rpms installed:
> rpm -qa | grep toaster
>
> #start it up:
> sh qmt-newmodel.sh
>
> #first odd thing:
> zlib-1.2.3-1.2.1 is installed.
> Do you want to Upgrade zlib to version 1.2.3-1.0.3
> #note:  not an upgrade, need => in script
>
> #answer for rest:
> b (batch)
>
> #note: I have about 3G of files in /usr/local...damn this will take a 
> while
> #note2...moving it to a home dir because this takes to damn long and there
> were errors in the lib files for it being linked
>
> ===partial output==
> Warning: This script does not check for available disk space.
> You'll need anywhere from 100M (linked) to 2.4G+ (copied)
>   to build the sandbox.
> The sandbox may be built in any partition.
> The 'linked' option is only available in the / partition
> The sandbox is configured to be built at /opt/qmt-sandbox
> Shall we continue? (yes, no|skip, batch, quit) [y] / n|s / b / q :
> Running in background, replied 'yes'
> Would you like to create a linked sandbox? (yes, no) y/[n] :
> Running in background, replied 'no'
> Creating Copied sandbox: /opt/qmt-sandbox ... (coffee anyone?)
> Creating /opt/qmt-sandbox/backup ...
> find: /backup: No such file or directory
> Creating /opt/qmt-sandbox/bin ...
> Creating /opt/qmt-sandbox/command ...
> find: /command: No such file or directory
> Creating /opt/qmt-sandbox/etc ...
> snip
> Creating /opt/qmt-sandbox/var ...
> Unexpected named pipe: /var/run/screen/S-root/1946.pts-0.dod4
> prw--- 1 root root 0 Aug 24 15:15 
> /var/run/screen/S-root/1946.pts-0.dod4
> Continuing ...
> cp: cannot stat `/home/vpopmail': No such file or directory
> Sandbox has been built successfully!
>
> Starting to build the binary rpms ...(pizza anyone?)
>
> If you want to view compile messages, you can open another terminal and:
> # tail -f /opt/qmt-sandbox/usr/src/qmt/log/build-recent.log
>
> chroot: cannot run command `/home/builduser/newtest/qmt-build-rpms.sh':
> Permission denied
> Build failed, Exiting.
>
> =
>
> I made no further changes ... do you want me to change the perms on the 
> file
> that failed?
>
> George Sweetnam
>
>
>
>
>
>
> -
>  QmailToaster hosted by: VR Hosted <http://www.vr.org>
> -
> To unsubscribe, e-mail: [EMAIL PROTECTED]
> For additional commands, e-mail: [EMAIL PROTECTED]
>
>

-
 QmailToaster hosted by: VR Hosted <http://www.vr.org>
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]



-
 QmailToaster hosted by: VR Hosted <http://www.vr.org>
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: [qmailtoaster] upgrade script errors - Still no love

[George Sweetnam]

Eric,
You should include a link to your website (test installation qmt) in your 
sig file.  I had some time this afternoon on a fedora5 box and was going to 
run it.  Repost the link if you would and I'll see if I can test build for 
you.

George Sweetnam.

- Original Message - 
From: "Eric "Shubes"" <[EMAIL PROTECTED]>
To: 
Cc: <[EMAIL PROTECTED]>
Sent: Wednesday, August 23, 2006 3:05 PM
Subject: Re: [qmailtoaster] upgrade script errors - Still no love


Ron Jones wrote:
>> # ls -l /bin/bash
> -rwxr-xr-x  1 root root 772760 Feb 17 2005 /bin/bash
>
>> # ls -l /lib/libtermcap.so.2
> lrwxrwxrwx  1 root root 19 Sep 29  2005 /lib/libtermcap.so.2 ->
> libtermcap.so.2.0.8
>
>> # ls -l /lib/libdl.so.2
> lrwxrwxrwx  1 root root 14 Mar 22 06:00 /lib/libdl.so.2 -> libdl-2.3.4.so
>
>> # ls -l /lib/tls/libc.so.6
> lrwxrwxrwx  1 root root 13 Mar 22 06:00 /lib/tls/libc.so.6 -> 
> libc-2.3.4.so
>
>> # ls -l /lib/ld-linux.so.2
> lrwxrwxrwx  1 root root 11 Mar 22 06:00 /lib/ld-linux.so.2 -> ld-2.3.4.so
>
>> Now let's verify that they look the same in the sandbox:
>>
>> # ls -l /opt/qmt-sandbox/bin/bash
> -rwxr-xr-x  1 root root 772760 Feb 17  2005 /opt/qmt-sandbox/bin/bash
>
>
>> # ls -l /opt/qmt-sandbox/lib/libtermcap.so.2
> lrwxrwxrwx  1 root root 20 Aug 20 12:18 
> /opt/qmt-sandbox/lib/libtermcap.so.2
> ->  libtermcap.so.2.0.8
>
>> # ls -l /opt/qmt-sandbox/lib/libdl.so.2
> lrwxrwxrwx  1 root root 15 Aug 20 12:17 /opt/qmt-sandbox/lib/libdl.so.2 ->
> libdl-2.3.4.so
>
>> # ls -l /opt/qmt-sandbox/lib/tls/libc.so.6
> lrwxrwxrwx  1 root root 14 Aug 20 12:17 /opt/qmt-sandbox/lib/tls/libc.so.6
> ->  libc-2.3.4.so
>
>> # ls -l /opt/qmt-sandbox/lib/ld-linux.so.2
> lrwxrwxrwx  1 root root 12 Aug 20 12:18 /opt/qmt-sandbox/lib/ld-linux.so.2
> ->  ld-2.3.4.so
>
>
>> Ron, let's back up a bit. A straight 'chroot /opt/qmt-sandbox' should 
>> work,
> and give you a bash prompt.
> [EMAIL PROTECTED] bin]# chroot /opt/qmt-sandbox/
> Chroot: cannot run command '/bin/bash' : No such file or directory
>
>> Please do these commands on your machine and post the results. I'm 
>> thinking
> at this point that
>> 64-bit might have something to do with it, but that's just a guess since
> it's the only thing I see
>> that's different (so far).
>
> See results of commands (above) shown below the commands themselves
>
> Ron
>

Man, this error is subtle. There's a bug in the script that causes bash64 to
include a space in front of the link target names (notice "->  ld-2.3.4.so).
Much easier to notice when doing ls -l while logged on to your machine -
invalid symlinks are bold red. For whatever reason, bash32 interprets the
leading space as being outside of the variable name when it's not quoted, so
it 'worked', but it wasn't quite right.

I've got a fix for you to try. I'm confident that this will at least fix
this bug.

Edit qmt-newmodel.sh, changing line 783 from
 target=${ls#*->}
to
 target=${ls#*-> }
IOW, add a space after the '>', and the leading space will be removed from
$target.

Then rerun the script, rebuilding the sandbox. While the sandbox is
building, you can 'ls -l /opt/qmt-sandbox/lib' after that directory is
built, and you should see no more broken links (bold red).

Let me know how you make out.

-- 
-Eric 'shubes'

-
 QmailToaster hosted by: VR Hosted <http://www.vr.org>
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]



-
 QmailToaster hosted by: VR Hosted <http://www.vr.org>
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: [qmailtoaster] Possible to point simcontrol - spamassassin to remote SPAMD?

[George Sweetnam]

You can also list the -d servername in the setup for simscan to use.  I 
point to a scanner group which rotates between 3 machines to do the 
scanning.   Just remember to turn off spam in the simcontrol file for your 
domains if you patch spamassassin or you can stop mail from working!

George.



- Original Message - 
From: "Jim Scott" <[EMAIL PROTECTED]>
To: 
Sent: Wednesday, August 23, 2006 9:27 AM
Subject: Re: [qmailtoaster] Possible to point simcontrol - spamassassin to 
remote SPAMD?



>
> I create an /etc/mail/spamassassin/spamc.conf file with the parameter:
>
> -d 
>
> In it.  Seems to work!
>
> Ray
>

Ray, thank you very much. That fixed the problem immediately.

-
 QmailToaster hosted by: VR Hosted 
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]



-
 QmailToaster hosted by: VR Hosted 
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: [qmailtoaster] SA bayes database issues

[George Sweetnam]

Mine looks like this: (oh if you run a mailserver 
which receives 3-5 messagse a second I'd turn bayes off!).  The larger aned 
more rules you have the more it'll chew up your memory available.
 
use_auto_whitelist 0lock_method 
flockreport_safe  0 dns_available yesskip_rbl_checks 
1required_hits 5.5 rewrite_header Subject ***POSSIBLE 
SPAM***(_SCORE_)use_bayes 1bayes_file_mode 0700bayes_path 
/etc/mail/spamassassin/.spamassassin/bayesbayes_auto_learn 
1bayes_auto_learn_threshold_spam 8.0bayes_auto_learn_threshold_nonspam 
-2.5bayes_min_ham_num 10bayes_min_spam_num 10use_razor2 1 
razor_timeout 5ok_locales entrusted_networks 
111.111.111.111/19##score FORGED_RCVD_HELO 1score NO_REAL_NAME 1 
score NO_DNS_FOR_FROM 1score RCVD_NUMERIC_HELO 1score 
MISSING_HEADERS 1
 
 
- Original Message - 
From: Jake Vickers 
To: qmailtoaster-list@qmailtoaster.com 

Sent: Wednesday, August 23, 2006 12:48 PM
Subject: Re: [qmailtoaster] SA bayes database issues
Justice London wrote: 

  
  

  
  The permissions are 
  set when the files are created.  Directory/file permissions 
  are:
  
  drwx--   
  2 vpopmail vchkpw   61 Aug 23 10:33 .
  drwxr-xr-x  12 
  vpopmail vchkpw 4.0K Aug  9 08:27 ..
  -rw---   
  1 vpopmail vchkpw  40M Aug 23 10:33 
  auto-whitelist
  -rw---   
  1 vpopmail vchkpw 160K Aug 23 10:33 bayes_seen
  -rw---   
  1 vpopmail vchkpw 5.0M Aug 23 10:33 bayes_toks
  Same here. Okay, wanted to make sure. I 
have not run into this problem, but I'm probably also defining a few more config 
variables than you are:<---snip--->use_bayes 
1bayes_file_mode 0700#bayes_path /root/.spamassassin/bayesbayes_path 
/etc/mail/spamassassin/.spamassassin/bayesbayes_auto_learn_threshold_spam 
8.0bayes_auto_expire 1#use_dcc 1use_auto_whitelist 
1auto_whitelist_file_mode 0700#auto_whitelist_path 
/root/.spamassassin/auto-whitelistauto_whitelist_path 
/etc/mail/spamassassin/.spamassassin/auto-whitelist<---snip--->

Re: [qmailtoaster] "spamassassin -D --lint" as user vpopmail

[George Sweetnam]

You are correct, I have it hard set in my local.cf file too.  The -D lint 
and sa-learn need it to function properly.  Otherwise you get multiple 
copies of the database to figure out.  I had my script wrong for a 
looong time before I changed it into the crontab for vpopmail.

George Sweetnam.
- Original Message - 
From: "Eric "Shubes"" <[EMAIL PROTECTED]>
To: 
Sent: Monday, August 21, 2006 10:34 PM
Subject: Re: [qmailtoaster] "spamassassin -D --lint" as user vpopmail


Jake Vickers wrote:
> The bayes DB that SpamAssassin is actually using will be defined in your
> lcoal.cf file.

There's nothing like that in my local.cf file. SA's simply using the
default, which would be the .spamassassin file in the user who's running
it's home directory (vpopmail for spamd, but root for 
spamassassin -D --lint).

> I know originally it was in
> /etc/mail/spamassassin/.spamassassin and then it moved to
> /root/.spamassassin (not sure if it moved again or not).

Mine seems to be in /home/vpopmail/.spamassassin, since spamd runs under
user vpopmail.

It took me a while to find
# man Mail::SpamAssassin::Conf
which explained what I was looking for.

You're right, there is a setting for this. I added
bayes_path /home/vpopmail/.spamassassin/bayes
to local.cf, and now I'm getting a valid report.

I'm thinking that this line should be in the spamassassin-toaster package,
since that's where the database is already going. Otherwise, when someone 
runs
# spamassassin -D --lint
as root, they don't get the 'live' bayes database information.

Is this correct, or am I missing something (again)?

-- 
-Eric 'shubes'

-
 QmailToaster hosted by: VR Hosted <http://www.vr.org>
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]



-
 QmailToaster hosted by: VR Hosted <http://www.vr.org>
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: [qmailtoaster] log files

[George Sweetnam]

Humm... where to begin?  The logs aren't 
rotated by isoqlog or mrtg...they have nothing to do with the logging of 
qmail.  The logging is run through multilog; which is part of the 
daemontools package - see http://cr.yp.to/daemontools/multilog.html, 
please see the section about automatic rotation.  
 
George
 
- Original Message - 
From: Stanley 
Robins 
To: qmailtoaster-list@qmailtoaster.com 

Sent: Friday, August 11, 2006 4:55 AM
Subject: Re: [qmailtoaster] log files
i opened all the files one by one and checked the date and i cant 
find anything about yesterday also.. how can this happen, is logrotate deleting 
my old log files ?? i have stopped isoqlog also,.. but i think mrtg is still 
runing as a cron script should i stop it also ?? thank you
On 8/11/06, Stanley 
Robins <[EMAIL PROTECTED]> 
wrote:

  ok i will change that to 10, but now on my send logs i did a  
  cat * | tai64nlocal | grep 2006-08-10and i cannot see any entry, but i 
  when i do 2006-08-11 i do get all the emails which were sent. also where are 
  my old logs going that is my question..  and i read it with * still i 
  cannot get what now ?? 
  
  On 8/11/06, George 
  Sweetnam < 
  [EMAIL PROTECTED]> wrote:
  


It all depends on whether you like 100's of 
small files or a smaller number of large files.  I maintain 80 
10 size files.  You are handling about 50 4 files ... I 
personally would hate trying to read in that size and with only 50 they are 
rotated away too quickly.  To give you an idea you are filling your 
default size limit in about 9 minutes (per your post earlier). 
 
Oh there was an earlier post telling you how to 
read the files with "@" in front of them... you have to use a \ before the @ 
to read them.
 
like this:
cat  [EMAIL PROTECTED] | 
tai64nlocal

 
 
George 
 

- Original Message - 
From: Stanley Robins 

To: qmailtoaster-list@qmailtoaster.com 

Sent: Friday, August 11, 2006 12:23 AM
Subject: Re: [qmailtoaster] log files

my /logsize is 4 should i change it to 10  ? 
    
On 8/11/06, George 
Sweetnam < 
[EMAIL PROTECTED] > wrote: 

  
  
  The file sizes should be greater than "0" , 
  but you didn't post enough info for us to know if they are blank.  I 
  suspent the run file is calling a size variable which is not created in 
  your setup.  Do this: 
      
  cat /var/qmail/supervise/smtp/log/run
   
  you should see something like 
  this:
  ###
      
  #!/bin/sh
      
  LOGSIZE=`cat 
  /var/qmail/control/logsize`    
  LOGCOUNT=`cat /var/qmail/control/logcount` 
      exec /usr/bin/setuidgid 
  qmaill /usr/bin/multilog t s$LOGSIZE n$LOGCOUNT /var/log/qmail/send 
  2>&1
  
   
  Logsize points to a file in the control 
  directory and I'd bet it's 0.  Do this:
    echo 
  "10" > /var/qmail/control/logsize
   
  You'll just need to restart your log send 
  program to make it start logging again (in the current file):
    svc -du 
  /var/qmail/supervise/send 
   
  I usually look for log dir problems by 
  looking for readproctitle errors in the running processes:
    ps aux | 
  grep readproctitle 
   
  It should look like this:
  readproctitle service errors: 
  ...
   
  Good luck to you,
  
   
  George Sweetnam
  
   
   
   
  - Original Message - 
  From: Stanley Robins 
  
  To: qmailtoaster-list@qmailtoaster.com 
  Sent: Thursday, August 10, 2006 11:10 PM
  Subject: Re: [qmailtoaster] log files
  Jake all those files say 2006-08-10 and thats it.. also the 
  time stamps are also of  the 2006-8-10 . thank you
  On 8/10/06, Jake 
  Vickers < [EMAIL PROTECTED]> 
  wrote: 
  Stanley 
Robins wrote:> Jake these are all files and not directories.. and 
also the date is i> am getting is only 2006-08-10 and nothing 
other than that.. not even> that of 
yesterday.>Correct. Those files are your log files. They've 
been renamed from "current" to the time and date they're reporting 
on. View one of thefiles, you'll 
see.- 
 QmailToaster hosted by: VR Hosted < http://www.vr.org>- 
To unsubscribe, e-mail: [EMAIL PROTECTED] For 
additional commands, e-mail: [EMAIL PROTECTED]

Re: [qmailtoaster] spam filtering proxy

[George Sweetnam]

Erik is on the money with this one.  smtproutes is the way to go.  I have 
several domains who list us as their mx... we just pass the mail to their 
internal server after scanning.

George.
- Original Message - 
From: "Erik Espinoza" <[EMAIL PROTECTED]>
To: 
Sent: Friday, August 11, 2006 10:32 PM
Subject: Re: [qmailtoaster] spam filtering proxy


Thats not true, you can do both. In fact I sent out the instructions a
while ago.

Erik

On 8/11/06, Gabriel Lai - E Technology <[EMAIL PROTECTED]> wrote:
> Hi Ron,
>
> Is it a mandatory to host company2 on qmailtoaster since you have company1
> on Exchange? qmailtoaster relay box cannot host any server it just 
> acts
> as a scanning of inbound & outbound server only...
>
>
> - Original Message -
> From: "Ron Jones" <[EMAIL PROTECTED]>
> To: 
> Sent: Saturday, August 12, 2006 11:24 AM
> Subject: RE: [qmailtoaster] spam filtering proxy
>
>
> > Yes! That's what I'd like to do.
> >
> > As long as I can continue to host company2 on the qmailtoaster box as I
> > have
> > been doing.
> >
> > Can you point me towards some documentation that may help me step 
> > through
> > this?
> >
> > Thanks
> >
> >
> > Ron Jones
> > P 678.921.0318
> > C 770.378.3647
> >
> > www.tftgi.com
> >
> > -Original Message-
> > From: Gabriel Lai - E Technology [mailto:[EMAIL PROTECTED]
> > Sent: Friday, August 11, 2006 11:18 PM
> > To: qmailtoaster-list@qmailtoaster.com
> > Subject: Re: [qmailtoaster] spam filtering proxy
> >
> > What I've done before was qmail relay box where any emails coming from
> > Internet will go into Qmail for scanning 1st, once it's clean, it will 
> > be
> > send automatically to the Exchange Box.
> >
> > Internet <> qmailtoaster <> Exchange Server
> >
> > Inbound & Outbound will be going thru qmailtoaster for scanning 
> > purposes..
> > another meaning, qmailtoaster is at frontend, exchange is hidden at
> > backend.
> >
> > Hope this helps.
> >
> > Cheers
> > - Original Message -
> > From: "Ron Jones" <[EMAIL PROTECTED]>
> > To: 
> > Sent: Saturday, August 12, 2006 11:17 AM
> > Subject: RE: [qmailtoaster] spam filtering proxy
> >
> >
> >> Sorry, what I should have said (more clearly) was
> >>
> >> The exchange box is separate unto itself (SBS 2003), the qmailtoaster
> >> box,
> >> though separate, is on the same LAN. Currently, I have 
> >> mail.company1.com
> >> hosted on the exchange box, and mail.company2.com hosted on the
> >> qmailtoaster
> >> box.
> >>
> >> What I'd like to do is use the qmailtoaster box as a spam-filtering,
> >> virus
> >> killing proxy for company1, and continue to host the mail for company 
> >> 2.
> >>
> >> Is this possible?
> >>
> >>
> >> Ron Jones
> >> P 678.921.0318
> >> C 770.378.3647
> >>
> >> www.tftgi.com
> >>
> >> -Original Message-
> >> From: Erik Espinoza [mailto:[EMAIL PROTECTED]
> >> Sent: Friday, August 11, 2006 11:05 PM
> >> To: qmailtoaster-list@qmailtoaster.com
> >> Subject: Re: [qmailtoaster] spam filtering proxy
> >>
> >> Not without virtualization. QmailToaster doesn't run on XP Server.
> >>
> >> Erik
> >>
> >> On 8/11/06, Ron Jones <[EMAIL PROTECTED]> wrote:
> >>>
> >>>
> >>> Is it possible to set up QmailToaster as a spam-filtering proxy for
> >>> one domain (which uses an exchange server), and on the same box, host
> >>> the mail for a completely second domain?
> >>>
> >>> Thanks
> >>>
> >>>
> >>>
> >>> Ron Jones
> >>> The Fulcrum Technology Group, Inc
> >>> 585 Creek Landing Lane
> >>> Alpharetta, GA 30005
> >>> P 678.921.0318
> >>> F 678.921.0403
> >>> C 770.378.3647
> >>>
> >>> www.tftgi.com
> >>
> >> -
> >> QmailToaster hosted by: VR Hosted 
> >> -
> >> To unsubscribe, e-mail: [EMAIL PROTECTED]
> >> For additional commands, e-mail: 
> >> [EMAIL PROTECTED]
> >>
> >>
> >>
> >> -
> >> QmailToaster hosted by: VR Hosted 
> >> -
> >> To unsubscribe, e-mail: [EMAIL PROTECTED]
> >> For additional commands, e-mail: 
> >> [EMAIL PROTECTED]
> >>
> >
> >
> > -
> > QmailToaster hosted by: VR Hosted 
> > -
> > To unsubscribe, e-mail: [EMAIL PROTECTED]
> > For additional commands, e-mail: [EMAIL PROTECTED]
> >
> >
> >
> > -
> > QmailToaster hosted by: VR Hosted 
> > -
> > To unsubscribe, e-mail: [EMAIL PROTECTED]
> > For additional commands, e-mail: [EMAIL PROTECTED]
> >
>
>
> -
>

Re: [qmailtoaster] log files

[George Sweetnam]

It all depends on whether you like 100's of small 
files or a smaller number of large files.  I maintain 80 10 size 
files.  You are handling about 50 4 files ... I personally would hate 
trying to read in that size and with only 50 they are rotated away too 
quickly.  To give you an idea you are filling your default size limit in 
about 9 minutes (per your post earlier).
 
Oh there was an earlier post telling you how to 
read the files with "@" in front of them... you have to use a \ before the @ to 
read them.
 
like this:
cat  [EMAIL PROTECTED] | tai64nlocal
 
 
George
 
- Original Message - 
From: Stanley 
Robins 
To: qmailtoaster-list@qmailtoaster.com 

Sent: Friday, August 11, 2006 12:23 AM
Subject: Re: [qmailtoaster] log files
my /logsize is 4 should i change it to 10 
 ?
On 8/11/06, George 
Sweetnam <[EMAIL PROTECTED] > 
wrote:

  
  
  The file sizes should be greater than "0" , but 
  you didn't post enough info for us to know if they are blank.  I suspent 
  the run file is calling a size variable which is not created in your 
  setup.  Do this: 
      cat 
  /var/qmail/supervise/smtp/log/run
   
  you should see something like this:
  ###
      
  #!/bin/sh
      
  LOGSIZE=`cat 
  /var/qmail/control/logsize`    
  LOGCOUNT=`cat 
  /var/qmail/control/logcount`    
  exec /usr/bin/setuidgid qmaill /usr/bin/multilog t s$LOGSIZE n$LOGCOUNT 
  /var/log/qmail/send 2>&1
  
   
  Logsize points to a file in the control directory 
  and I'd bet it's 0.  Do this:
    echo 
  "10" > /var/qmail/control/logsize
   
  You'll just need to restart your log send program 
  to make it start logging again (in the current file):
    svc -du 
  /var/qmail/supervise/send 
   
  I usually look for log dir problems by looking 
  for readproctitle errors in the running processes:
    ps aux | grep 
  readproctitle 
   
  It should look like this:
  readproctitle service errors: 
  ...
   
  Good luck to you,
  
   
  George Sweetnam
  
   
   
   
   
  - Original Message - 
  From: Stanley Robins 
  To: qmailtoaster-list@qmailtoaster.com 
  Sent: Thursday, August 10, 2006 11:10 PM
  Subject: Re: [qmailtoaster] log files
  Jake all those files say 2006-08-10 and thats it.. also the 
  time stamps are also of  the 2006-8-10 . thank you
  On 8/10/06, Jake 
  Vickers < [EMAIL PROTECTED]> 
  wrote: 
  Stanley 
Robins wrote:> Jake these are all files and not directories.. and 
also the date is i> am getting is only 2006-08-10 and nothing other 
than that.. not even> that of yesterday.>Correct. Those 
files are your log files. They've been renamed from "current" to the 
time and date they're reporting on. View one of thefiles, you'll 
see.- 
 QmailToaster hosted by: VR Hosted < http://www.vr.org>- 
To unsubscribe, e-mail: [EMAIL PROTECTED] For 
additional commands, e-mail: [EMAIL PROTECTED]

Re: [qmailtoaster] REPOST: [qmailtoaster]/etc/mail/mailfilter currently disabled?

[George Sweetnam]

Just be careful of the word wrap because it doesn't run if it's not on the 
intended line (split in the post)

George
- Original Message - 
From: "Daniele Paoni" <[EMAIL PROTECTED]>
To: 
Sent: Wednesday, August 09, 2006 7:30 AM
Subject: Re: [qmailtoaster] REPOST: [qmailtoaster]/etc/mail/mailfilter 
currently disabled?


On Wed, 2006-08-09 at 08:21 -0400, Jake Vickers wrote:
> >
> Yes, there is a workaround. Add this to your tcp.smtp to fix the quota
> problem:
> CHKUSER_MBXQUOTA="99" for all your entries, and the problem should
> stop.  [...]

Thanks. I will try it.
Daniele


-
 QmailToaster hosted by: VR Hosted 
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]



-
 QmailToaster hosted by: VR Hosted 
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: [qmailtoaster] log files

[George Sweetnam]

The file sizes should be greater than "0" , but you 
didn't post enough info for us to know if they are blank.  I suspent the 
run file is calling a size variable which is not created in your setup.  Do 
this:
    cat 
/var/qmail/supervise/smtp/log/run
 
you should see something like this:
###
    
#!/bin/sh
    
LOGSIZE=`cat 
/var/qmail/control/logsize`    
LOGCOUNT=`cat 
/var/qmail/control/logcount`    exec 
/usr/bin/setuidgid qmaill /usr/bin/multilog t s$LOGSIZE n$LOGCOUNT 
/var/log/qmail/send 2>&1

 
Logsize points to a file in the control directory 
and I'd bet it's 0.  Do this:
  echo "10" 
> /var/qmail/control/logsize
 
You'll just need to restart your log send program 
to make it start logging again (in the current file):
  svc -du 
/var/qmail/supervise/send
 
I usually look for log dir problems by looking for  
readproctitle errors in the running processes:
  ps aux | grep  
readproctitle
 
It should look like this:
readproctitle service errors: 
...
 
Good luck to you,
 
George Sweetnam
 
 
 
 
- Original Message - 
From: Stanley 
Robins 
To: qmailtoaster-list@qmailtoaster.com 

Sent: Thursday, August 10, 2006 11:10 PM
Subject: Re: [qmailtoaster] log files
Jake all those files say 2006-08-10 and thats it.. also the time 
stamps are also of  the 2006-8-10 .thank you
On 8/10/06, Jake 
Vickers < [EMAIL PROTECTED]> 
wrote:
Stanley 
  Robins wrote:> Jake these are all files and not directories.. and also 
  the date is i> am getting is only 2006-08-10 and nothing other than 
  that.. not even> that of yesterday.>Correct. Those files are 
  your log files. They've been renamed from "current" to the time and date 
  they're reporting on. View one of thefiles, you'll 
  see.- 
  QmailToaster hosted by: VR Hosted < http://www.vr.org>-To 
  unsubscribe, e-mail: [EMAIL PROTECTED] 
  For additional commands, e-mail: [EMAIL PROTECTED]

Re: [qmailtoaster] CNAME Lookup

[George Sweetnam]

The only thing more fun is when some idiot sets their mx to point at 
0.0.0.0.  Boy that is fun coming from spammers!

Geo.
- Original Message - 
From: "Jake Vickers" <[EMAIL PROTECTED]>
To: 
Sent: Monday, July 24, 2006 11:38 AM
Subject: Re: [qmailtoaster] CNAME Lookup


Warren (mailing lists) wrote:
> Mail eXchangers should never be CNAMEs.  If you find anyone who has an
> MX record pointing to a CNAME rather than to an A record, or even to an
> IP address they are configured incorrectly.
>
> W
Correct, according to the RFC. I tried to tell Sympatico cable that
(200,000 subscribers), but they didn't want to listen. I think AOL may
do this as well. If nothing else, it's a way to keep the average spammer
out - look at all the extra work you have to do to get these domains to
work right; spammers usually aren't up that long.

-
 QmailToaster hosted by: VR Hosted 
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]



-
 QmailToaster hosted by: VR Hosted 
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: [qmailtoaster] server rsync script

[George Sweetnam]

Here's my weekly backup script (yes portions of 
this are based on a copy of Jake's script from long ago)... I need to 
give Jake some of the credit for the idea.  His script has gone a 
different direction and now looks sustantially different, but I have a working 
rsync backup script (with keys) and don't need to change anything.
 
George
 
 
##
#!/bin/sh# VERSION geobackup -  
04/21/06
 
#    
User Variables    
#
 
#  Please put the MySQL Root Password 
Below.# CHANGE THIS ###  
mysqlrootpass=sqlpasswordhere
 
#remote site data (for ftp/rsync/scp of the 
files);# CHANGE THESE ##  
FTPPASS=passwordhereREMOTEIP=ftpmachineipaddressREMUSER=usernameonremotemachine[EMAIL PROTECTED]
 
# Static items:starttime=`date [EMAIL PROTECTED]`VPOPDOMAINS="/home/vpopmail/domains"USERASSIGN="/var/qmail/users"DOMAINDATADIR="/var/www/html"QMAILCONTROLDIR="/var/qmail/control"BACKUPDEST=/backupOLDBACKUPDIR="/var/log/oldbackups"APACHEDIR="/etc/httpd/conf"SCRIPTSDIR="/scripts"#the 
hostname below is used to log into 
mysqlHOSTNAME="localhost"DATENAME=`date 
+%Y%m%d%H%M`SPAMLOCALCF="/etc/mail/spamassassin/local.cf"SPAMTOKS="/home/vpopmail/.spamassassin"FRONTPAGEDIR="/usr/local/frontpage"NAMEDCONFDIR="/var/named/chroot/etc"NAMEDCONFFILE="/var/named/chroot/etc/named.conf"IPTABLESFILE="/etc/sysconfig/iptables"NCFTPDIR="/ncftpd"NCFTPCONFFILES="/ncftpd/etc/ncftpd/*.cf"
 
#backup file 
names:qmailcontrol="$DATENAME-qmailcontrol.tar.bz2"vpopmail="$DATENAME-vpopmail.tar.bz2"database="$DATENAME-vpopmail.sql"gzmysqldata="$DATENAME-vpopmail.sql.gz"apacheconf="$DATENAME-conf.tar.gz"domainbackup="$DATENAME-domainbackup.tar.gz"scriptsbackup="$DATENAME-scriptsbackup.tar.gz"usersassign="$DATENAME-assign.tar.bz2"spamlocalcf="$DATENAME-spamlocalcf.tar.gz"spamtoks="$DATENAME-spamtoks.tar.gz"frontpagedir="$DATENAME-frontpagedir.tar.gz"dnsdir="$DATENAME-dnsdir.tar.gz"namedconf="$DATENAME-namedconf.tar.gz"iptables="$DATENAME-iptables.tar.gz"ncftpconf="$DATENAME-ncftpconf.tar.gz"ncftpdir="$DATENAME-ncftpdir.tar.gz"
 
## Method of offsite transfer  - y/n for each 
... only choose oneuseftp=n usersync=yusescp=n
 
## E-Mail Information and Destination - send 
completion email y/nemailinfo=yemail=$EMAILADDY
 
#  Syntax for ftpserver:  ftp://user:[EMAIL PROTECTED]/folder  
(WITHOUT Trailing /)#note this section is NOT 
testedftpserver=ftp://$REMUSER:[EMAIL PROTECTED]#note you must have an 
ssh key uploaded for these to workrsyncserver="[EMAIL PROTECTED]:~/backup/"scpserver="[EMAIL PROTECTED]:~/weeklybackup"
 
#  Actual Backup Script 
Below  #if [ ! -d $BACKUPDEST ] ; 
then    echo "making the backup 
directory for you"    mkdir 
$BACKUPDESTfi
 
if [ ! -d $OLDBACKUPDIR ] ; 
then    echo "making the backup 
directory for you"    mkdir 
$OLDBACKUPDIRfi
 
echo "##removing old backup data from directory##"mv 
$BACKUPDEST/* $OLDBACKUPDIR/
 
#it'd be a good idea to do what is on the next line (keep only 7 days 
locally)find $OLDBACKUPDIR -type f -mtime +7 -exec rm -v {} ';'
 
echo "##Backing up qmail config files##"cd 
$QMAILCONTROLDIR/tar cfvj $BACKUPDEST/$qmailcontrol rcp* virtual* bad* 
tarpit* smtp* auth* queuelife* double*   >> /dev/null
 
echo "##Backing up vpopmail domains##"cd $BACKUPDEST/tar 
cfvj $vpopmail $VPOPDOMAINS >> /dev/null
 
echo "##Backing up MYSQL Data##"mysqldump -uroot -h$HOSTNAME 
-p$mysqlrootpass vpopmail > $BACKUPDEST/$databasegzip 
$BACKUPDEST/$database
 
echo "##Backing up conf files##"cd $APACHEDIR/tar cvfpzP 
$BACKUPDEST/$apacheconf *.conf
 
echo "##Backing up domain data files###"cd 
$DOMAINDATADIR/tar cvfpzP $BACKUPDEST/$domainbackup *
 
echo "###Backing Scripts Directory##"cd $SCRIPTSDIR/ tar 
cvfpzP $BACKUPDEST/$scriptsbackup $SCRIPTSDIR
 
echo "###Backup /var/qmail/users/assign file###"tar cfvj 
$BACKUPDEST/$usersassign $USERASSIGN/assign
 
echo "###Backing Spamassassin ##"tar cvfpzP 
$BACKUPDEST/$spamlocalcf $SPAMLOCALCFtar cvfpzP $BACKUPDEST/$spamtoks 
$SPAMTOKS
 
echo "###Backing FRONTPAGE ##"tar cvfpzP 
$BACKUPDEST/$frontpagedir $FRONTPAGEDIR
 
echo "###Backing DNS ##"tar cvfpzP $BACKUPDEST/$namedconf 
$NAMEDCONFFILEtar cvfpzP $BACKUPDEST/$dnsdir $NAMEDCONFDIR
 
echo "###Backing IPTABLES ##"tar cvfpzP $BACKUPDEST/$iptables 
$IPTABLESFILE
 
echo "###Backing NCFTP ##"tar cvfpzP $BACKUPDEST/$ncftpdir 
$NCFTPDIRtar cvfpzP $BACKUPDEST/$ncftpconf $NCFTPCONFFILES
 
if [ $useftp = y ] ; thencurl -T $BACKUPDEST/* $ftpserver/echo " 
Backup has been uploaded to the FTP Server"fi
 
if [ $usersync = y ] ; thenmkdir /test/me/ -pcd /test/me/rsync 
-vrculpogtz --rsh=ssh $BACKUPDEST/ $rsyncserverecho " Backup has been 
uploaded to the RSYNC Server"fi
 
if [ $usescp

[qmailtoaster] server rsync script

[George Sweetnam]

Hey all,
I thought i'd pass along some of the scripts I use 
to backup my server.  I have an all-in-one server I maintain for some 
friends and had to make a couple of backup scripts.
 
This script makes rsync backups to a server which 
is essentially a mirror of it (no live services on it).  I have another 
which zips everything and sends it's backup to yet another server (array for 
many other servers' backups).
 
George.
 
##
#!/bin/sh# VERSION geoserver rsync backup 
-  04/21/06
 
#    
User Variables    
#
 
#  Please put the MySQL Root Password 
Below.  
 CHANGE THIS 
###mysqlrootpass=yourpasswordhere
 
# Static items:starttime=`date [EMAIL PROTECTED]`VPOPDOMAINS="/home/vpopmail/domains"USERASSIGN="/var/qmail/users"DOMAINDATADIR="/var/www/html"QMAILCONTROLDIR="/var/qmail/control"BACKUPDEST=/backupOLDBACKUPDIR="/var/log/oldbackups"APACHEDIR="/etc/httpd/conf"SCRIPTSDIR="/scripts"#note 
the hostname below is used to log into 
mysqlHOSTNAME="localhost"DATENAME=`date 
+%Y%m%d%H%M`SPAMLOCALCFDIR="/etc/mail/spamassassin"SPAMTOKS="/home/vpopmail/.spamassassin"FRONTPAGEDIR="/usr/local/frontpage"NAMEDCONFDIR="/var/named/chroot/etc"NAMEDCONFFILE="/var/named/chroot/etc/named.conf"IPTABLESFILE="/etc/sysconfig/iptables"NCFTPDIR="/ncftpd"NCFTPCONFFILES="/ncftpd/etc/ncftpd/*.cf"
 
## E-Mail Information and Destination - send 
completion email y/nemailinfo=y
 
 CHANGE THIS 
###[EMAIL PROTECTED]
 
#note you must have an ssh key uploaded for these 
to work
 CHANGE THESE 
###rsyncserver="[EMAIL PROTECTED]:~/mailserver"rsyncserver2="user@remoteserver.com:~/scriptsdir"rsyncserver3="user@remoteserver.com:~/dnsserver"rsyncserver4="user@remoteserver.com:~/webserver"
 
 CHANGE THIS 
###
scpserver="user@dod2.remoteserver.com:~/mailserver"
 
#  Actual Backup Script 
Below  #
 
echo "##Backing up MYSQL Data##"rm $BACKUPDEST/mysqldatabase.gz 
-fmysqldump -uroot -h$HOSTNAME -p$mysqlrootpass vpopmail > 
$BACKUPDEST/mysqldatabasegzip $BACKUPDEST/mysqldatabasersync 
-vrculpogtz  --delete --times  --exclude "/proc/*" --rsh=ssh 
$BACKUPDEST/mysqldatabase.gz $rsyncserver
 
echo "##Backing up qmail config files##"rsync -vrculpogtz  
--delete --times  --exclude "/proc/*" --rsh=ssh $QMAILCONTROLDIR 
$rsyncserver 
 
echo "##Backing up vpopmail domains##"rsync -vrculpogtz  
--delete --times  --exclude "/proc/*" --rsh=ssh $VPOPDOMAINS $rsyncserver 
>> /dev/null
 
echo "##Backing up conf files##"rsync -vrculpogtz  
--delete --times  --exclude "/proc/*" --rsh=ssh $APACHEDIR 
$rsyncserver4
 
echo "##Backing up domain data files###"rsync -vrculpogtz  
--delete --times  --exclude "/proc/*" --rsh=ssh $DOMAINDATADIR 
$rsyncserver4  >> /dev/null
 
echo "###Backing Scripts Directory##"rsync -vrculpogtz  
--delete --times  --exclude "/proc/*" --rsh=ssh $SCRIPTSDIR 
$rsyncserver2
 
echo "###Backup /var/qmail/users/assign file###"rsync 
-vrculpogtz  --delete --times  --exclude "/proc/*" --rsh=ssh 
$USERASSIGN $rsyncserver
 
echo "###Backing Spamassassin ##"rsync -vrculpogtz  
--delete --times  --exclude "/proc/*" --rsh=ssh $SPAMLOCALCFDIR 
$rsyncserverrsync -vrculpogtz  --delete --times  --exclude 
"/proc/*" --rsh=ssh $SPAMTOKS $rsyncserver
 
echo "###Backing FRONTPAGE ##"rsync -vrculpogtz  --delete 
--times  --exclude "/proc/*" --rsh=ssh $FRONTPAGEDIR $rsyncserver4
 
echo "###Backing DNS ##"rsync -vrculpogtz  --delete 
--times  --exclude "/proc/*" --rsh=ssh $NAMEDCONFDIR $rsyncserver3
 
echo "###Backing IPTABLES ##"rsync -vrculpogtz  --delete 
--times  --exclude "/proc/*" --rsh=ssh $IPTABLESFILE $rsyncserver2
 
echo "###Backing NCFTP ##"rsync -vrculpogtz  --delete 
--times  --exclude "/proc/*" --rsh=ssh $NCFTPDIR $rsyncserver4
 
endtime=`date [EMAIL PROTECTED]`
 
if [ $emailinfo = y ] ; thenecho "The $LOCALHOST RSYNC has Run.  
Please verify it." > /tmp/emailmsg.txtecho "Backup Start Time: 
$starttime" >> /tmp/emailmsg.txtecho "Backup End Time: $endtime" 
>> /tmp/emailmsg.txtecho "  " >> /tmp/emailmsg.txt
 
echo "backup up the important stuff now" >> 
/tmp/emailmsg.txtcat /tmp/emailmsg.txt | mail -s"$HOSTNAME RSYNC is Done" 
$emailrm -f /tmp/emailmsg.txtelseecho "E-Mail not turned 
on"fi
 

Re: [qmailtoaster] User Access now failing: Help?

[George Sweetnam]

The ones specifically created to solve issues in my logs were fixed with 
these links:
libcrypto.so.4 -> /lib/libcrypto.so.0.9.8a
libssl.so.4 -> /lib/libssl.so.0.9.8a
libc.so.6 -> libc-2.4.so


Here is a full list of the ones I created, or that re-installing programs 
made after my initial install (to fix installations of 
mysql5,apache2.2,php5,courier, ect:
  libgcc_s.so.1 -> libgcc_s-4.1.1-20060525.so.1
  libutil.so.1 -> libutil-2.4.so
  libthread_db.so.1 -> libthread_db-1.0.so
  librt.so.1 -> librt-2.4.so
  libresolv.so.2 -> libresolv-2.4.so
  libpthread.so.0 -> libpthread-2.4.so
  libnss_nis.so.2 -> libnss_nis-2.4.so
  libnss_nisplus.so.2 -> libnss_nisplus-2.4.so
  libnss_hesiod.so.2 -> libnss_hesiod-2.4.so
  libnss_files.so.2 -> libnss_files-2.4.so
  libnss_dns.so.2 -> libnss_dns-2.4.so
  libnss_compat.so.2 -> libnss_compat-2.4.so
  libnsl.so.1 -> libnsl-2.4.so
  libm.so.6 -> libm-2.4.so
  libdl.so.2 -> libdl-2.4.so
  libc.so.6 -> libc-2.4.so
  libcrypt.so.1 -> libcrypt-2.4.so
  libcidn.so.1 -> libcidn-2.4.so
  libBrokenLocale.so.1 -> libBrokenLocale-2.4.so
  libanl.so.1 -> libanl-2.4.so
  ld-linux.so.2 -> ld-2.4.so
  libpam.so.0 -> libpam.so.0.81.3
  libpam_misc.so.0 -> libpam_misc.so.0.81.2
  libpamc.so.0 -> libpamc.so.0.81.0
  libdbus-1.so.2 -> libdbus-1.so.2.0.0
  libasound.so.2 -> libasound.so.2.0.0
  libssl.so.4 -> /lib/libssl.so.0.9.8a
  libcrypto.so.4 -> /lib/libcrypto.so.0.9.8a


Hope it helps.  I'll warn you though, be VERY carefull when playing with 
simlinks.   If you remove one to create another you'll likely segfault your 
system and have a really nasty time fixing it.  Library files I normally 
only play with when I have  something in my error logs telling me a 
particular version is missing.  Then I create a link for that name to point 
to the version I am running.  You should NEVER remove them!  When in doubt, 
google is your friend.

George.

- Original Message - 
From: "Roxanne Sandesara" <[EMAIL PROTECTED]>
To: 
Sent: Saturday, June 24, 2006 7:04 PM
Subject: Re: [qmailtoaster] User Access now failing: Help?


George --

If you could compile for me a list of the simlinks you created, I
would be interested in seeing that list and attempting to recreate
them on my system to see if they would manage to change the behavior.
I confess, what I want most right this second is a way to reconfigure
vpopmail so that it attempts a new connection to the MySQL server
every time it needs to check information.

Anyway. I'm eagerly awaiting.

On Jun 24, 2006, at 7:38 PM, George Sweetnam wrote:

>
> Im running a bastardized FC5 installation (a crashed FC2 install I
> wiped
> /boot and /lib due to some corruption problems).  This machine had
> a working
> copy of the previous toaster version.
> To  make this very long story short I had to upgrade to mysql 5 and
> php 5,
> redo apache, chroot dns, ect ... ect.. ect.  To make toaster
> authenticate
> for imap and pop3 I had to create a series of simlinks for some lib
> files.
> After creating them I haven't had any issues with authentication on
> FC5.
> I've missed most of this thread, but would be willing to compare or
> try and
> duplicate your problem on one of my systems if needed.
>
> Not all of my toaster apps are current, but they should work for
> testing.
> Here they are:
> qmail-toaster-1.03-1.2.10
> control-panel-toaster-0.5-1.2.8
> qmailmrtg-toaster-4.2-1.2.8
> vqadmin-toaster-2.3.4-1.2.12
> spamassassin-toaster-3.1.1-1.2.14
> daemontools-toaster-0.76-1.2.9
> vpopmail-toaster-5.4.10-1.2.10
> autorespond-toaster-2.0.4-1.2.8
> qmailadmin-toaster-1.2.9-1.2.11
> isoqlog-toaster-2.1-1.2.9
> courier-imap-toaster-3.0.8-1.2.9
> ezmlm-cgi-toaster-0.53.324-1.2.10
> maildrop-toaster-devel-1.8.1-1.2.10
> clamav-toaster-0.88.2-1.2.15
> ucspi-tcp-toaster-0.88-1.2.9
> qmail-pop3d-toaster-1.03-1.2.10
> ezmlm-toaster-0.53.324-1.2.10
> maildrop-toaster-1.8.1-1.2.10
> squirrelmail-toaster-1.4.5-1.2.13
> simscan-toaster-1.1-1.2.7
>
> George.
>
>
> - Original Message -
> From: "Roxanne Sandesara" <[EMAIL PROTECTED]>
> To: 
> Sent: Saturday, June 24, 2006 2:22 PM
> Subject: Re: [qmailtoaster] User Access now failing: Help?
>
>
> Eric is correct. I'm running on an FC5 box, which is running
> mysql-5.0.22-1.FC5.1.
>
> On 6/24/06, Eric Shubes <[EMAIL PROTECTED]> wrote:
>> Jake Vickers wrote:
>>> Roxanne Sandesara wrote:see
>>>> No. It is connecting to the mysql server running on the same
>>>> machine.
>>>> But MySQL v5+ does not hold even localhost persistent conne

Re: [qmailtoaster] User Access now failing: Help?

[George Sweetnam]

Im running a bastardized FC5 installation (a crashed FC2 install I wiped 
/boot and /lib due to some corruption problems).  This machine had a working 
copy of the previous toaster version.
To  make this very long story short I had to upgrade to mysql 5 and php 5, 
redo apache, chroot dns, ect ... ect.. ect.  To make toaster authenticate 
for imap and pop3 I had to create a series of simlinks for some lib files. 
After creating them I haven't had any issues with authentication on FC5. 
I've missed most of this thread, but would be willing to compare or try and 
duplicate your problem on one of my systems if needed.

Not all of my toaster apps are current, but they should work for testing. 
Here they are:
qmail-toaster-1.03-1.2.10
control-panel-toaster-0.5-1.2.8
qmailmrtg-toaster-4.2-1.2.8
vqadmin-toaster-2.3.4-1.2.12
spamassassin-toaster-3.1.1-1.2.14
daemontools-toaster-0.76-1.2.9
vpopmail-toaster-5.4.10-1.2.10
autorespond-toaster-2.0.4-1.2.8
qmailadmin-toaster-1.2.9-1.2.11
isoqlog-toaster-2.1-1.2.9
courier-imap-toaster-3.0.8-1.2.9
ezmlm-cgi-toaster-0.53.324-1.2.10
maildrop-toaster-devel-1.8.1-1.2.10
clamav-toaster-0.88.2-1.2.15
ucspi-tcp-toaster-0.88-1.2.9
qmail-pop3d-toaster-1.03-1.2.10
ezmlm-toaster-0.53.324-1.2.10
maildrop-toaster-1.8.1-1.2.10
squirrelmail-toaster-1.4.5-1.2.13
simscan-toaster-1.1-1.2.7

George.


- Original Message - 
From: "Roxanne Sandesara" <[EMAIL PROTECTED]>
To: 
Sent: Saturday, June 24, 2006 2:22 PM
Subject: Re: [qmailtoaster] User Access now failing: Help?


Eric is correct. I'm running on an FC5 box, which is running
mysql-5.0.22-1.FC5.1.

On 6/24/06, Eric Shubes <[EMAIL PROTECTED]> wrote:
> Jake Vickers wrote:
> > Roxanne Sandesara wrote:see
> >> No. It is connecting to the mysql server running on the same machine.
> >> But MySQL v5+ does not hold even localhost persistent connections
> >> permanently. If it can be set to allow such, I do not know where or
> >> how, as nothing I have found in my.conf or mysql.config speaks to
> >> such.
> >>
> > Which distro is rolling out Mysql 5 so I can look into it? I run all
> > Cent4 and FC4 machines, and they all run mysql 4.1.
> >
>
> I saw in an earlier post that she's running FC5.
>
> --
> -Eric 'shubes'
>
> -
>  QmailToaster hosted by: VR Hosted 
> -
> To unsubscribe, e-mail: [EMAIL PROTECTED]
> For additional commands, e-mail: [EMAIL PROTECTED]
>
>

-
 QmailToaster hosted by: VR Hosted 
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]



-
 QmailToaster hosted by: VR Hosted 
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: [qmailtoaster] Hep me pleez...

[George Sweetnam]

Out of curiosity, did you create the files manually or actually copy working 
versions between servers.  In particular is your users assign file.  I had a 
similar problem and it was caused by a missing "." on the last line...what a 
headache that was.

file example (notice the dot on a line by itself to end it).

tail -2 /var/qmail/users/assign
=
+testdomain.com-:testdomain.com:89:89:/home/vpopmail/domains/testdomain.com:-::
.
=

George
- Original Message - 
From: "Operations" <[EMAIL PROTECTED]>
To: 
Sent: Thursday, June 08, 2006 1:04 PM
Subject: Re: [qmailtoaster] Hep me pleez...


If anyone has any insight on this, any help woudl be greatly appreciated.
It killing me, if my customers don't first
Operations wrote:

> Hi all -
> I was browsing through the archives for somehting on this, maybe
> someon knows off
> of the top of their head... (fingers crossed).  Here is the problem:
>
> 1) Qmail is receiving email, but not delivering.
>
> Here is what caused the problem:
>
> I in-advertantly deleted the /var/qmail directory, so all that was
> working is not,
> had to re-create.
> This is what I have done so far:
>
> 1) recreated the 'assign' file.
> 2) recreated the 'locals' file.
> 3) recreated the 'rcpthost' file.
>
> Pop is working, I can log into it just fine.  It appears qmail-send is
> not authenticating
> properly.  I get the following errors:
>
> Hi. This is the qmail-send program at daffy.frontierbroadband.com.
> I'm afraid I wasn't able to deliver your message to the following
> addresses.
> This is a permanent error; I've given up. Sorry it didn't work out.
>
> <[EMAIL PROTECTED]>:  <- this is a real email address,
> couldn't resist a twist on it...
> Sorry, no mailbox here by that name. (#5.1.1)
>
>
>
> vuserinfo returns appropriate data.
>
> This seems to be just related to the distribution only...
>
> -
> QmailToaster hosted by: VR Hosted 
> -
> To unsubscribe, e-mail: [EMAIL PROTECTED]
> For additional commands, e-mail: [EMAIL PROTECTED]
>
>


-
 QmailToaster hosted by: VR Hosted 
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]



-
 QmailToaster hosted by: VR Hosted 
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: [qmailtoaster] SpamAssasssin and alternate SMTP port

[George Sweetnam]

Have you updated simscan since you made the 
changes?
 
/var/qmail/bin/simscanmk
/var/qmail/bin/simscanmk -g
 
Anytime I make updates to the mailserver settings I 
also using qmail-inject to send a message through (great for showing what is 
failing):
echo "mail test message" > /tmp/mailtest.txt
env QMAILQUEUE=/var/qmail/bin/simscan SIMSCAN_DEBUG=2 /var/qmail/bin/qmail-inject [EMAIL PROTECTED] < /tmp/mailtest.txt
 
George.
 
- Original Message - 
From: Jon M. Ernster 

To: qmailtoaster-list@qmailtoaster.com 

Sent: Tuesday, June 06, 2006 6:53 AM
Subject: RE: [qmailtoaster] SpamAssasssin and alternate SMTP 
port


Jake,
 
I rebooted the server 
and sent a new email but to no avail – there still aren’t lines in the header 
like below:
 X-Spam-Checker-Version: SpamAssassin 3.1.0 (2005-09-13) on     ns1.vickersconsulting.netX-Spam-Level: X-Spam-Status: No, score=-0.9 required=5.0 tests=AWL,BAYES_00,HTML_MESSAGE,    JV_Junk3r,SARE_SUB_OBFU_Q1 autolearn=no version=3.1.0
 
Any other ideas?  
Not sure what could be the causing the problem to be 
honest.
 
Thanks for your 
help.
 
Jon
 




From: Jake Vickers 
[mailto:[EMAIL PROTECTED] Sent: 
Monday, June 05, 2006 7:26 PMTo: qmailtoaster-list@qmailtoaster.comSubject: Re: [qmailtoaster] SpamAssasssin 
and alternate SMTP port
 
Jon M. Ernster wrote: 
I’m just having problem sending out.  
Since my ISP blocks port 25 I have to use their SMTP server, or setup an 
alternate port on my mail server which I know my ISP has open 
(8889).
 
BTW, even though the 
status of spamd is now up, I sent an email from an external address to my mail 
server and the header didn’t indicate any checking by spamassassin – is the 
spamassassin pretty much bare bones and I have to add a bunch of rules to learn 
from now?  (Forgive me, this is the first time I’ve set up a production 
web/mail server on Linux – I’m use to having cpanel which made things pretty 
easy)
 
I checked out your site 
and installed the qmail-spam script – was reading your spam sucks section too, 
that’s why I’m asking…I’ll have to read all of it when I’m not at work. 
J
 
You can set it up to 
send through their mail server, which should accept port 25 to it.If you 
haven't done so, reboot the machine. Send a message again, and check the 
/var/qmail/spamd/current log, as well as the /var/log/qmail/smtp log and see if 
the logs coincide.In the header of your messages, you should see something 
like this:From - Mon Jun 05 22:22:20 2006X-Account-Key: account10X-UIDL: 1149560404.M29408P21575V0308I005B831F.ns1.vickersconsulting.net,S=12982X-Mozilla-Status: 0011X-Mozilla-Status2: Content-Filter: maildrop-toasterReturn-Path: <[EMAIL PROTECTED]>Delivered-To: [EMAIL PROTECTED]Received: (qmail 21558 invoked by uid 89); 6 Jun 2006 02:20:03 -Received: by simscan 1.1.0 ppid: 21543, pid: 21554, t: 1.2130s scanners: clamav: 0.87.1/m:34/d:1162 spam: 3.1.0X-Spam-Checker-Version: SpamAssassin 3.1.0 (2005-09-13) on     ns1.vickersconsulting.netX-Spam-Level: X-Spam-Status: No, score=-0.9 required=5.0 tests=AWL,BAYES_00,HTML_MESSAGE,    JV_Junk3r,SARE_SUB_OBFU_Q1 autolearn=no version=3.1.0Received: from unknown (HELO ns1.qmailtoaster.com) (38.99.66.144)  by ns1.vickersconsulting.net with (DHE-RSA-AES256-SHA encrypted) SMTP; 6 Jun 2006 02:20:02 -Received-SPF: pass (ns1.vickersconsulting.net: SPF record at qmailtoaster.com designates 38.99.66.144 as permitted sender)Received: (qmail 1549 invoked by uid 89); 6 Jun 2006 02:13:32 -Mailing-List: contact [EMAIL PROTECTED]; run by ezmlmPrecedence: bulkList-Post: List-Help: List-Unsubscribe: List-Subscribe: Reply-To: qmailtoaster-list@qmailtoaster.comDelivered-To: mailing list qmailtoaster-list@qmailtoaster.comReceived: (qmail 1543 invoked by uid 89); 6 Jun 2006 02:13:32 -Received-SPF: none (ns1.qmailtoaster.com: domain at dumbfounded.net does not designate permitted sender hosts)
 

Re: [qmailtoaster] problems with simscan on fedora 4

[George Sweetnam]

The first thing you need to do is verify the rpm's you've installed.  It's 
likely one or more failed and you'll need to manually install them to 
overcome a dependency issue.

George
- Original Message - 
From: "Hainarosie Razvan" <[EMAIL PROTECTED]>
To: 
Sent: Monday, January 30, 2006 12:31 AM
Subject: [qmailtoaster] problems with simscan on fedora 4


Hy list,
I'm new at qmailtoaster.
My distribution is Fedora Core 4.
I have everything updated so my setup using current-install-sctipt (I have
modify inside my distribution) works just fine with no errors.
The problems is that when I look in my email headers I am not able to find
the simscan, clam and spam etc..
I test the email with eicar virus test and my mails are not filtered by
clam and spam.
Can you give me some clues, please.
I am able to start or stop manualy clam.
I think is something to do with simscan.
I did "/var/qmail/bin/simscanmk -g", but the problem was not solved.

Thanks,
Razvan


-
 QmailToaster hosted by: VR Hosted 
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]



-
 QmailToaster hosted by: VR Hosted 
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: [qmailtoaster] toaster ssh service on a different port

[George Sweetnam]

Very good idea.  I actually had ssh crash and had to physically drive to the 
data center once... very annoying

George
- Original Message - 
From: "Jake Vickers" <[EMAIL PROTECTED]>
To: 
Sent: Thursday, January 26, 2006 6:17 AM
Subject: Re: [qmailtoaster] toaster ssh service on a different port


George Sweetnam wrote:

>if you are remote to the machine you might want to keep the current
>connection open and add an additional port (not replace it until you can
>confirm it's up and running).  Locking yourself out is not fun (I change my
>port always too)
>
>
A good site is iptablesrocks.org (same guy that runs qmailrocks.org). I
got a good tip from him, in regards to setting up a cron job while
building your firewall remotely. Have the cron job reset the firewall
rules every 30 minutes back to open. That way, if you accidentally lock
yourself out by forgetting to open a port, it will reset in 30 minutes
and you can get back in. I do almost all of my setups remotely, so this
was a great tip. Saved me from having to drive to the office/another
state to unbork a box.

-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]



-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: [qmailtoaster] basic qmail with qmailtoaster / firewall.sh

[George Sweetnam]

If i remember correctly 113 is still used by some mailservers (ident).  I do 
know 20/21 are ftp/ftpadmin and are not needed though.

George
- Original Message - 
From: "Alex" <[EMAIL PROTECTED]>
To: 
Sent: Wednesday, January 25, 2006 10:25 PM
Subject: RE: [qmailtoaster] basic qmail with qmailtoaster / firewall.sh


Great. I closed them down in firewall.sh and the server still working
fine :)

-Original Message-
From: Erik Espinoza [mailto:[EMAIL PROTECTED]
Sent: Wednesday, January 25, 2006 7:41 PM
To: qmailtoaster-list@qmailtoaster.com
Subject: Re: [qmailtoaster] basic qmail with qmailtoaster / firewall.sh

Both port 20/21 and 113 are not necessary for QmailToaster operation.
I can't speak for Nick, but maybe he just left those ports open
because the machine he wrote the script for actually has an ftp and
ident server.

Erik

On 1/25/06, Alex <[EMAIL PROTECTED]> wrote:
> I am trying to set up qmailtoaster on one of my servers to be used
only
> as smtp server that receives and processes emails into a mysql db and
> allows https admin-toaster management.
>
> I was updating the firewall.sh to block incoming imap, pop, popssl
> etc.. and noticed the port 20/21 ftp incoming connections and port 113
> open. Can anyone tell me what those are for? If i turn them off, will
> that affect anything in qmailtoaster.
>
> Also is it possible to disable imap/pop services from even starting
> when i run qmailctl start. I really do not need them, but will qmail
> need them running in order for me to do the following on the server:
>
> 1. receive emails into maildirs for certain virtual user accounts
> 2. be able to access the emails on the server and put them in mysql
> 3. delete/move emails etc.
>
> Thank you
>
>
>
>
>
> -
> To unsubscribe, e-mail: [EMAIL PROTECTED]
> For additional commands, e-mail:
[EMAIL PROTECTED]
>
>

-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]






-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]



-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: [qmailtoaster] toaster ssh service on a different port

[George Sweetnam]

if you are remote to the machine you might want to keep the current 
connection open and add an additional port (not replace it until you can 
confirm it's up and running).  Locking yourself out is not fun (I change my 
port always too)

George
- Original Message - 
From: "Erik Espinoza" <[EMAIL PROTECTED]>
To: 
Sent: Wednesday, January 25, 2006 1:14 PM
Subject: Re: [qmailtoaster] toaster ssh service on a different port


Yes, you will need to add 2392 to firewall.sh where it currently says port 
22

On 1/25/06, Alex <[EMAIL PROTECTED]> wrote:
>
> On centos 4.2 qmailtoaster server I would like to move ssh to a
> different port. Do I need to add/edit firewall.sh and rerun it. So far I
> changed
>
> /etc/ssh/sshd_config
> /ets/services
>
> Port 2392
>
> Then "service sshd restart", when I look at netstat -nl, the server is
> listening on 2392, but remotely I can not connect to ssh on that port
> and I cant connect on 22. Only localhost connection will work on 2392
> from the same machine.
>
> Thanks
>
>
>
> -
> To unsubscribe, e-mail: [EMAIL PROTECTED]
> For additional commands, e-mail: [EMAIL PROTECTED]
>
>

-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]



-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: [qmailtoaster] how to modify the attachment size

[George Sweetnam]

If you are talking about sending through webmail you can edit the php.conf 
file

George.
- Original Message - 
From: "Natalio Gatti" <[EMAIL PROTECTED]>
To: 
Sent: Saturday, January 21, 2006 7:34 AM
Subject: Re: [qmailtoaster] how to modify the attachment size


You can specify the maximun size in /var/qmail/control/databytes

Natalio

On 1/21/06, rama seshagiri <[EMAIL PROTECTED]> wrote:
> Dear friends,
> What is the default size of an attachment that can be
> sent? How to modify the size.
>
> Thankyou,
> GR Seshagiri
>
>
> __
> Do You Yahoo!?
> Tired of spam?  Yahoo! Mail has the best spam protection around
> http://mail.yahoo.com
>
> -
> To unsubscribe, e-mail: [EMAIL PROTECTED]
> For additional commands, e-mail: [EMAIL PROTECTED]
>
>

-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]



-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: SV: [qmailtoaster] Install on Centos 4.2 x86_64

[George Sweetnam]

Are you listening on the ports?  I have 25,465,113,110,993,995, and 143 open 
in my firewall. Do a netstat -l and see if you see smtp, pop3, imap, ect.

The 1 second uptime indicates it's most likely starting and stopping due to 
an error.

tail -f /var/log/qmail/pop3/current | tai64nlocal

George

- Original Message - 
From: "Thijs Cadier" <[EMAIL PROTECTED]>
To: 
Sent: Thursday, January 19, 2006 11:27 AM
Subject: Re: SV: [qmailtoaster] Install on Centos 4.2 x86_64


This gives:

clamd: up (pid 19954) 372 seconds
imap4: up (pid 27740) 1 seconds
imap4-ssl: up (pid 27729) 1 seconds
pop3-ssl: up (pid 27724) 1 seconds
send: up (pid 19937) 372 seconds
smtp: up (pid 27734) 1 seconds
spamd: up (pid 19934) 372 seconds
clamd/log: up (pid 19959) 372 seconds
imap4/log: up (pid 19939) 372 seconds
imap4-ssl/log: up (pid 19967) 372 seconds
pop3-ssl/log: up (pid 19982) 372 seconds
send/log: up (pid 19940) 372 seconds
smtp/log: up (pid 19969) 372 seconds
spamd/log: up (pid 19938) 372 seconds

But there aren't any open sockets, nothing in netstat -a and nmap...



On 19-jan-2006, at 18:24, Jake Vickers wrote:

> qmailctl stat


-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]



-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]