Re: [qmailtoaster] Bellsouth Yahoo Domainkeys
Domainkeys on the toaster is known to be broken. Signing of outgoing emails appears to work reliably, but checking of incoming emails is intermittently errant. You can do one of 2 things to work around the problem. If you want to disable only incoming checking and continue to sign outgoing messages, you can remove all DKxxx definitions in /etc/tcprules.d/tcp.smtp EXCEPT DKSIGN. (don't forget to rebuild the cdb) If you want to disable DomainKeys entirely, the best way is documented here: http://wiki.qmailtoaster.com/index.php/Disabling_Domain_Keys HTH Kent Busbee wrote: Every since there seems to have been some sort of merge/joint project with bellsouth and yahoo, I have had problems receiving bellsouth emails. Thier domainkeys seem to be messed up. I keep getting things like this: 02-17 11:16:52 tcpserver: pid 581 from 67.195.8.69 02-17 11:16:52 tcpserver: ok 581 mail.northlakechristian.org:192.168.1.8:25 :67. 195.8.69::47684 02-17 11:16:58 CHKUSER accepted rcpt: from vikif...@bellsouth.net:: remote we b180005.mail.gq1.yahoo.com:unknown:67.195.8.69 rcpt gnob...@northlakechristian .org : found existing recipient 02-17 11:16:58 spamdyke[581]: ALLOWED from: vikif...@bellsouth.net to: gnob...@n orthlakechristian.org origin_ip: 67.195.8.69 origin_rdns: web180005.mail.gq1.yah oo.com auth: (unknown) 02-17 11:17:02 simscan:[584]:CLEAN (-0.10/7.00):4.2746s::67.195.8.69:vikif...@be llsouth.net:gnob...@northlakechristian.org: 02-17 11:17:02 qmail-smtpd: qq hard reject (DomainKeys verify status: no key (#5.3.0)): MAILFROM:vikif...@bellsouth.net RCPTTO:gnob...@northlakechristia n.org 02-17 11:17:03 tcpserver: end 581 status 0 02-17 11:17:03 tcpserver: status: 6/100 02-17 11:17:17 tcpserver: status: 7/100 Is anyone else having such problems? I have never had problems with domainkeys in the past. Kent Busbee Director of Technology Northlake Christian School -- -Eric 'shubes' - To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com
Re: [qmailtoaster] Bellsouth Yahoo Domainkeys
Too bad! It seems to have been working for the last two years. Anyhow, I edited the file /etc/tcp.smtp and it would not let me save. I am logged in as root am I missing something? [r...@mail tcprules.d]# whoami root [r...@mail tcprules.d]# ls -l total 40 -rw-r--r-- 1 root root 479 Oct 16 2007 tcp.smtp -rw-r--r-- 1 root root 479 Feb 17 12:36 tcp.smtp~ -rw-r--r-- 2 root root 479 Oct 5 2007 tcp.smtp.backup -rw-r--r-- 2 root root 460 Oct 2 2007 tcp.smtp.bk2 -rw-r--r-- 1 root root 2560 Oct 17 13:47 tcp.smtp.cdb -rw-r--r-- 1 root root 418 Feb 17 12:47 tcp.smtp.dksignonly -rw-r--r-- 1 root root 479 Feb 17 12:34 tcp.smtp.domainkeys -rw-r--r-- 2 root root 293 Oct 16 2007 tcp.smtp.org -rw-r--r-- 2 root root 354 Mar 26 2007 tcp.smtp.sav -rw-r--r-- 1 root root 479 Feb 17 14:32 tcp.smtz~ [r...@mail tcprules.d]# cp tcp.smtp.dksignonly tcp.smtp cp: overwrite `tcp.smtp', overriding mode 0644? y cp: cannot create regular file `tcp.smtp': Permission denied [r...@mail tcprules.d]# touch tcp.smtp touch: cannot touch `tcp.smtp': Permission denied [r...@mail tcprules.d]# See response above; Eric Shubert wrote: Domainkeys on the toaster is known to be broken. Signing of outgoing emails appears to work reliably, but checking of incoming emails is intermittently errant. You can do one of 2 things to work around the problem. If you want to disable only incoming checking and continue to sign outgoing messages, you can remove all DKxxx definitions in /etc/tcprules.d/tcp.smtp EXCEPT DKSIGN. (don't forget to rebuild the cdb) If you want to disable DomainKeys entirely, the best way is documented here: http://wiki.qmailtoaster.com/index.php/Disabling_Domain_Keys HTH Kent Busbee wrote: Every since there seems to have been some sort of merge/joint project with bellsouth and yahoo, I have had problems receiving bellsouth emails. Thier domainkeys seem to be messed up. I keep getting things like this: 02-17 11:16:52 tcpserver: pid 581 from 67.195.8.69 02-17 11:16:52 tcpserver: ok 581 mail.northlakechristian.org:192.168.1.8:25 :67. 195.8.69::47684 02-17 11:16:58 CHKUSER accepted rcpt: from vikif...@bellsouth.net:: remote we b180005.mail.gq1.yahoo.com:unknown:67.195.8.69 rcpt gnob...@northlakechristian .org : found existing recipient 02-17 11:16:58 spamdyke[581]: ALLOWED from: vikif...@bellsouth.net to: gnob...@n orthlakechristian.org origin_ip: 67.195.8.69 origin_rdns: web180005.mail.gq1.yah oo.com auth: (unknown) 02-17 11:17:02 simscan:[584]:CLEAN (-0.10/7.00):4.2746s::67.195.8.69:vikif...@be llsouth.net:gnob...@northlakechristian.org: 02-17 11:17:02 qmail-smtpd: qq hard reject (DomainKeys verify status: no key (#5.3.0)): MAILFROM:vikif...@bellsouth.net RCPTTO:gnob...@northlakechristia n.org 02-17 11:17:03 tcpserver: end 581 status 0 02-17 11:17:03 tcpserver: status: 6/100 02-17 11:17:17 tcpserver: status: 7/100 Is anyone else having such problems? I have never had problems with domainkeys in the past. Kent Busbee Director of Technology Northlake Christian School -- -Eric 'shubes' - To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com Kent Busbee Director of Technology Northlake Christian School - To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com
Re: [qmailtoaster] Bellsouth Yahoo Domainkeys
Ok, now I am worried! I did a reboot to force a diskcheck: shutdown -r -F now Still no joy. It is as if I have no permissions to the file as ROOT, yet they are there 744. And, it will not allow me to even change the permissions. suggestions??? See response above; Kent Busbee wrote: Too bad! It seems to have been working for the last two years. Anyhow, I edited the file /etc/tcp.smtp and it would not let me save. I am logged in as root am I missing something? [r...@mail tcprules.d]# whoami root [r...@mail tcprules.d]# ls -l total 40 -rw-r--r-- 1 root root 479 Oct 16 2007 tcp.smtp -rw-r--r-- 1 root root 479 Feb 17 12:36 tcp.smtp~ -rw-r--r-- 2 root root 479 Oct 5 2007 tcp.smtp.backup -rw-r--r-- 2 root root 460 Oct 2 2007 tcp.smtp.bk2 -rw-r--r-- 1 root root 2560 Oct 17 13:47 tcp.smtp.cdb -rw-r--r-- 1 root root 418 Feb 17 12:47 tcp.smtp.dksignonly -rw-r--r-- 1 root root 479 Feb 17 12:34 tcp.smtp.domainkeys -rw-r--r-- 2 root root 293 Oct 16 2007 tcp.smtp.org -rw-r--r-- 2 root root 354 Mar 26 2007 tcp.smtp.sav -rw-r--r-- 1 root root 479 Feb 17 14:32 tcp.smtz~ [r...@mail tcprules.d]# cp tcp.smtp.dksignonly tcp.smtp cp: overwrite `tcp.smtp', overriding mode 0644? y cp: cannot create regular file `tcp.smtp': Permission denied [r...@mail tcprules.d]# touch tcp.smtp touch: cannot touch `tcp.smtp': Permission denied [r...@mail tcprules.d]# See response above; Eric Shubert wrote: Domainkeys on the toaster is known to be broken. Signing of outgoing emails appears to work reliably, but checking of incoming emails is intermittently errant. You can do one of 2 things to work around the problem. If you want to disable only incoming checking and continue to sign outgoing messages, you can remove all DKxxx definitions in /etc/tcprules.d/tcp.smtp EXCEPT DKSIGN. (don't forget to rebuild the cdb) If you want to disable DomainKeys entirely, the best way is documented here: http://wiki.qmailtoaster.com/index.php/Disabling_Domain_Keys HTH Kent Busbee wrote: Every since there seems to have been some sort of merge/joint project with bellsouth and yahoo, I have had problems receiving bellsouth emails. Thier domainkeys seem to be messed up. I keep getting things like this: 02-17 11:16:52 tcpserver: pid 581 from 67.195.8.69 02-17 11:16:52 tcpserver: ok 581 mail.northlakechristian.org:192.168.1.8:25 :67. 195.8.69::47684 02-17 11:16:58 CHKUSER accepted rcpt: from vikif...@bellsouth.net:: remote we b180005.mail.gq1.yahoo.com:unknown:67.195.8.69 rcpt gnob...@northlakechristian .org : found existing recipient 02-17 11:16:58 spamdyke[581]: ALLOWED from: vikif...@bellsouth.net to: gnob...@n orthlakechristian.org origin_ip: 67.195.8.69 origin_rdns: web180005.mail.gq1.yah oo.com auth: (unknown) 02-17 11:17:02 simscan:[584]:CLEAN (-0.10/7.00):4.2746s::67.195.8.69:vikif...@be llsouth.net:gnob...@northlakechristian.org: 02-17 11:17:02 qmail-smtpd: qq hard reject (DomainKeys verify status: no key (#5.3.0)): MAILFROM:vikif...@bellsouth.net RCPTTO:gnob...@northlakechristia n.org 02-17 11:17:03 tcpserver: end 581 status 0 02-17 11:17:03 tcpserver: status: 6/100 02-17 11:17:17 tcpserver: status: 7/100 Is anyone else having such problems? I have never had problems with domainkeys in the past. Kent Busbee Director of Technology Northlake Christian School -- -Eric 'shubes' - To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com Kent Busbee Director of Technology Northlake Christian School - To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com Kent Busbee Director of Technology Northlake Christian School - To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com
Re: [qmailtoaster] Bellsouth Yahoo Domainkeys
Kent Busbee wrote: Ok, now I am worried! I did a reboot to force a diskcheck: shutdown -r -F now Still no joy. It is as if I have no permissions to the file as ROOT, yet they are there 744. And, it will not allow me to even change the permissions. suggestions??? Hmm. Sounds like you may have drive issues; do you have free space? - To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com
Re: [qmailtoaster] Bellsouth Yahoo Domainkeys
What are the permissions on /etc ? Kent Busbee wrote: Too bad! It seems to have been working for the last two years. Anyhow, I edited the file /etc/tcp.smtp and it would not let me save. I am logged in as root am I missing something? [r...@mail tcprules.d]# whoami root [r...@mail tcprules.d]# ls -l total 40 -rw-r--r-- 1 root root 479 Oct 16 2007 tcp.smtp -rw-r--r-- 1 root root 479 Feb 17 12:36 tcp.smtp~ -rw-r--r-- 2 root root 479 Oct 5 2007 tcp.smtp.backup -rw-r--r-- 2 root root 460 Oct 2 2007 tcp.smtp.bk2 -rw-r--r-- 1 root root 2560 Oct 17 13:47 tcp.smtp.cdb -rw-r--r-- 1 root root 418 Feb 17 12:47 tcp.smtp.dksignonly -rw-r--r-- 1 root root 479 Feb 17 12:34 tcp.smtp.domainkeys -rw-r--r-- 2 root root 293 Oct 16 2007 tcp.smtp.org -rw-r--r-- 2 root root 354 Mar 26 2007 tcp.smtp.sav -rw-r--r-- 1 root root 479 Feb 17 14:32 tcp.smtz~ [r...@mail tcprules.d]# cp tcp.smtp.dksignonly tcp.smtp cp: overwrite `tcp.smtp', overriding mode 0644? y cp: cannot create regular file `tcp.smtp': Permission denied [r...@mail tcprules.d]# touch tcp.smtp touch: cannot touch `tcp.smtp': Permission denied [r...@mail tcprules.d]# See response above; Eric Shubert wrote: Domainkeys on the toaster is known to be broken. Signing of outgoing emails appears to work reliably, but checking of incoming emails is intermittently errant. You can do one of 2 things to work around the problem. If you want to disable only incoming checking and continue to sign outgoing messages, you can remove all DKxxx definitions in /etc/tcprules.d/tcp.smtp EXCEPT DKSIGN. (don't forget to rebuild the cdb) If you want to disable DomainKeys entirely, the best way is documented here: http://wiki.qmailtoaster.com/index.php/Disabling_Domain_Keys HTH Kent Busbee wrote: Every since there seems to have been some sort of merge/joint project with bellsouth and yahoo, I have had problems receiving bellsouth emails. Thier domainkeys seem to be messed up. I keep getting things like this: 02-17 11:16:52 tcpserver: pid 581 from 67.195.8.69 02-17 11:16:52 tcpserver: ok 581 mail.northlakechristian.org:192.168.1.8:25 :67. 195.8.69::47684 02-17 11:16:58 CHKUSER accepted rcpt: from vikif...@bellsouth.net:: remote we b180005.mail.gq1.yahoo.com:unknown:67.195.8.69 rcpt gnob...@northlakechristian .org : found existing recipient 02-17 11:16:58 spamdyke[581]: ALLOWED from: vikif...@bellsouth.net to: gnob...@n orthlakechristian.org origin_ip: 67.195.8.69 origin_rdns: web180005.mail.gq1.yah oo.com auth: (unknown) 02-17 11:17:02 simscan:[584]:CLEAN (-0.10/7.00):4.2746s::67.195.8.69:vikif...@be llsouth.net:gnob...@northlakechristian.org: 02-17 11:17:02 qmail-smtpd: qq hard reject (DomainKeys verify status: no key (#5.3.0)): MAILFROM:vikif...@bellsouth.net RCPTTO:gnob...@northlakechristia n.org 02-17 11:17:03 tcpserver: end 581 status 0 02-17 11:17:03 tcpserver: status: 6/100 02-17 11:17:17 tcpserver: status: 7/100 Is anyone else having such problems? I have never had problems with domainkeys in the past. Kent Busbee Director of Technology Northlake Christian School -- -Eric 'shubes' - To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com Kent Busbee Director of Technology Northlake Christian School -- -Eric 'shubes' - To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com
Re: [qmailtoaster] Bellsouth Yahoo Domainkeys
See response below; Jake Vickers wrote: Kent Busbee wrote: Ok, now I am worried! I did a reboot to force a diskcheck: shutdown -r -F now Still no joy. It is as if I have no permissions to the file as ROOT, yet they are there 744. And, it will not allow me to even change the permissions. suggestions??? Hmm. Sounds like you may have drive issues; do you have free space? Checked that, plenty of room: [r...@mail tcprules.d]# df -h FilesystemSize Used Avail Use% Mounted on /dev/sda2 365G 15G 332G 5% / /dev/sda1 244M 47M 184M 21% /boot none 1013M 0 1013M 0% /dev/shm [r...@mail tcprules.d]# Could the file be locked by anything else? I am the only one logged in, and I am not editing it on a bg job or anything... It may be a good time to use qtp-backup. The funny thing is that the file is readable, and looks fine. It just won't let me write to it or change permissions as root. Anyone else seen anything like this? what else can I do to check. Kent Busbee Director of Technology Northlake Christian School - To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com
Re: [qmailtoaster] Bellsouth Yahoo Domainkeys
They seem to be fine: [r...@mail /]# ls -ld etc drwxr-xr-x 84 root root 12288 Feb 17 15:42 etc [r...@mail /]# ls -ld etc/tcprules.d/ drwxr-xr-x 2 root root 4096 Feb 17 17:14 etc/tcprules.d/ [r...@mail /]# [r...@mail /]# cd /etc/tcprules.d/ [r...@mail tcprules.d]# [r...@mail tcprules.d]# ls -inlq total 32 18122463 -rw-r--r-- 1 0 0 479 Oct 16 2007 tcp.smtp 18122880 -rw-r--r-- 2 0 0 479 Oct 5 2007 tcp.smtp.backup 18122925 -rw-r--r-- 2 0 0 460 Oct 2 2007 tcp.smtp.bk2 18122501 -rw-r--r-- 1 0 0 2560 Oct 17 13:47 tcp.smtp.cdb 18123670 -rw-r--r-- 1 0 0 418 Feb 17 12:47 tcp.smtp.dksignonly 18122533 -rw-r--r-- 1 0 0 479 Feb 17 12:34 tcp.smtp.domainkeys 18122949 -rw-r--r-- 2 0 0 293 Oct 16 2007 tcp.smtp.org 18122882 -rw-r--r-- 2 0 0 354 Mar 26 2007 tcp.smtp.sav also, ownership and groups look right, and the inodes seem correct. This is bugging me now See response above; Eric Shubert wrote: What are the permissions on /etc ? Kent Busbee wrote: Too bad! It seems to have been working for the last two years. Anyhow, I edited the file /etc/tcp.smtp and it would not let me save. I am logged in as root am I missing something? [r...@mail tcprules.d]# whoami root [r...@mail tcprules.d]# ls -l total 40 -rw-r--r-- 1 root root 479 Oct 16 2007 tcp.smtp -rw-r--r-- 1 root root 479 Feb 17 12:36 tcp.smtp~ -rw-r--r-- 2 root root 479 Oct 5 2007 tcp.smtp.backup -rw-r--r-- 2 root root 460 Oct 2 2007 tcp.smtp.bk2 -rw-r--r-- 1 root root 2560 Oct 17 13:47 tcp.smtp.cdb -rw-r--r-- 1 root root 418 Feb 17 12:47 tcp.smtp.dksignonly -rw-r--r-- 1 root root 479 Feb 17 12:34 tcp.smtp.domainkeys -rw-r--r-- 2 root root 293 Oct 16 2007 tcp.smtp.org -rw-r--r-- 2 root root 354 Mar 26 2007 tcp.smtp.sav -rw-r--r-- 1 root root 479 Feb 17 14:32 tcp.smtz~ [r...@mail tcprules.d]# cp tcp.smtp.dksignonly tcp.smtp cp: overwrite `tcp.smtp', overriding mode 0644? y cp: cannot create regular file `tcp.smtp': Permission denied [r...@mail tcprules.d]# touch tcp.smtp touch: cannot touch `tcp.smtp': Permission denied [r...@mail tcprules.d]# See response above; Eric Shubert wrote: Domainkeys on the toaster is known to be broken. Signing of outgoing emails appears to work reliably, but checking of incoming emails is intermittently errant. You can do one of 2 things to work around the problem. If you want to disable only incoming checking and continue to sign outgoing messages, you can remove all DKxxx definitions in /etc/tcprules.d/tcp.smtp EXCEPT DKSIGN. (don't forget to rebuild the cdb) If you want to disable DomainKeys entirely, the best way is documented here: http://wiki.qmailtoaster.com/index.php/Disabling_Domain_Keys HTH Kent Busbee wrote: Every since there seems to have been some sort of merge/joint project with bellsouth and yahoo, I have had problems receiving bellsouth emails. Thier domainkeys seem to be messed up. I keep getting things like this: 02-17 11:16:52 tcpserver: pid 581 from 67.195.8.69 02-17 11:16:52 tcpserver: ok 581 mail.northlakechristian.org:192.168.1.8:25 :67. 195.8.69::47684 02-17 11:16:58 CHKUSER accepted rcpt: from vikif...@bellsouth.net:: remote we b180005.mail.gq1.yahoo.com:unknown:67.195.8.69 rcpt gnob...@northlakechristian .org : found existing recipient 02-17 11:16:58 spamdyke[581]: ALLOWED from: vikif...@bellsouth.net to: gnob...@n orthlakechristian.org origin_ip: 67.195.8.69 origin_rdns: web180005.mail.gq1.yah oo.com auth: (unknown) 02-17 11:17:02 simscan:[584]:CLEAN (-0.10/7.00):4.2746s::67.195.8.69:vikif...@be llsouth.net:gnob...@northlakechristian.org: 02-17 11:17:02 qmail-smtpd: qq hard reject (DomainKeys verify status: no key (#5.3.0)): MAILFROM:vikif...@bellsouth.net RCPTTO:gnob...@northlakechristia n.org 02-17 11:17:03 tcpserver: end 581 status 0 02-17 11:17:03 tcpserver: status: 6/100 02-17 11:17:17 tcpserver: status: 7/100 Is anyone else having such problems? I have never had problems with domainkeys in the past. Kent Busbee Director of Technology Northlake Christian School -- -Eric 'shubes' - To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com Kent Busbee Director of Technology Northlake Christian School -- -Eric 'shubes' - To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com Kent Busbee Director of Technology Northlake Christian School - To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com
Re: [qmailtoaster] Bellsouth Yahoo Domainkeys
# id # lsof | grep tcp.smtp ? Kent Busbee wrote: They seem to be fine: [r...@mail /]# ls -ld etc drwxr-xr-x 84 root root 12288 Feb 17 15:42 etc [r...@mail /]# ls -ld etc/tcprules.d/ drwxr-xr-x 2 root root 4096 Feb 17 17:14 etc/tcprules.d/ [r...@mail /]# [r...@mail /]# cd /etc/tcprules.d/ [r...@mail tcprules.d]# [r...@mail tcprules.d]# ls -inlq total 32 18122463 -rw-r--r-- 1 0 0 479 Oct 16 2007 tcp.smtp 18122880 -rw-r--r-- 2 0 0 479 Oct 5 2007 tcp.smtp.backup 18122925 -rw-r--r-- 2 0 0 460 Oct 2 2007 tcp.smtp.bk2 18122501 -rw-r--r-- 1 0 0 2560 Oct 17 13:47 tcp.smtp.cdb 18123670 -rw-r--r-- 1 0 0 418 Feb 17 12:47 tcp.smtp.dksignonly 18122533 -rw-r--r-- 1 0 0 479 Feb 17 12:34 tcp.smtp.domainkeys 18122949 -rw-r--r-- 2 0 0 293 Oct 16 2007 tcp.smtp.org 18122882 -rw-r--r-- 2 0 0 354 Mar 26 2007 tcp.smtp.sav also, ownership and groups look right, and the inodes seem correct. This is bugging me now See response above; Eric Shubert wrote: What are the permissions on /etc ? Kent Busbee wrote: Too bad! It seems to have been working for the last two years. Anyhow, I edited the file /etc/tcp.smtp and it would not let me save. I am logged in as root am I missing something? [r...@mail tcprules.d]# whoami root [r...@mail tcprules.d]# ls -l total 40 -rw-r--r-- 1 root root 479 Oct 16 2007 tcp.smtp -rw-r--r-- 1 root root 479 Feb 17 12:36 tcp.smtp~ -rw-r--r-- 2 root root 479 Oct 5 2007 tcp.smtp.backup -rw-r--r-- 2 root root 460 Oct 2 2007 tcp.smtp.bk2 -rw-r--r-- 1 root root 2560 Oct 17 13:47 tcp.smtp.cdb -rw-r--r-- 1 root root 418 Feb 17 12:47 tcp.smtp.dksignonly -rw-r--r-- 1 root root 479 Feb 17 12:34 tcp.smtp.domainkeys -rw-r--r-- 2 root root 293 Oct 16 2007 tcp.smtp.org -rw-r--r-- 2 root root 354 Mar 26 2007 tcp.smtp.sav -rw-r--r-- 1 root root 479 Feb 17 14:32 tcp.smtz~ [r...@mail tcprules.d]# cp tcp.smtp.dksignonly tcp.smtp cp: overwrite `tcp.smtp', overriding mode 0644? y cp: cannot create regular file `tcp.smtp': Permission denied [r...@mail tcprules.d]# touch tcp.smtp touch: cannot touch `tcp.smtp': Permission denied [r...@mail tcprules.d]# See response above; Eric Shubert wrote: Domainkeys on the toaster is known to be broken. Signing of outgoing emails appears to work reliably, but checking of incoming emails is intermittently errant. You can do one of 2 things to work around the problem. If you want to disable only incoming checking and continue to sign outgoing messages, you can remove all DKxxx definitions in /etc/tcprules.d/tcp.smtp EXCEPT DKSIGN. (don't forget to rebuild the cdb) If you want to disable DomainKeys entirely, the best way is documented here: http://wiki.qmailtoaster.com/index.php/Disabling_Domain_Keys HTH Kent Busbee wrote: Every since there seems to have been some sort of merge/joint project with bellsouth and yahoo, I have had problems receiving bellsouth emails. Thier domainkeys seem to be messed up. I keep getting things like this: 02-17 11:16:52 tcpserver: pid 581 from 67.195.8.69 02-17 11:16:52 tcpserver: ok 581 mail.northlakechristian.org:192.168.1.8:25 :67. 195.8.69::47684 02-17 11:16:58 CHKUSER accepted rcpt: from vikif...@bellsouth.net:: remote we b180005.mail.gq1.yahoo.com:unknown:67.195.8.69 rcpt gnob...@northlakechristian .org : found existing recipient 02-17 11:16:58 spamdyke[581]: ALLOWED from: vikif...@bellsouth.net to: gnob...@n orthlakechristian.org origin_ip: 67.195.8.69 origin_rdns: web180005.mail.gq1.yah oo.com auth: (unknown) 02-17 11:17:02 simscan:[584]:CLEAN (-0.10/7.00):4.2746s::67.195.8.69:vikif...@be llsouth.net:gnob...@northlakechristian.org: 02-17 11:17:02 qmail-smtpd: qq hard reject (DomainKeys verify status: no key (#5.3.0)): MAILFROM:vikif...@bellsouth.net RCPTTO:gnob...@northlakechristia n.org 02-17 11:17:03 tcpserver: end 581 status 0 02-17 11:17:03 tcpserver: status: 6/100 02-17 11:17:17 tcpserver: status: 7/100 Is anyone else having such problems? I have never had problems with domainkeys in the past. Kent Busbee Director of Technology Northlake Christian School -- -Eric 'shubes' - To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com Kent Busbee Director of Technology Northlake Christian School -- -Eric 'shubes' - To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com Kent Busbee Director of Technology Northlake Christian School -- -Eric 'shubes' - To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com
Re: [qmailtoaster] Bellsouth Yahoo Domainkeys
Could it by how the disk is mounted? /etc/fstab - Original Message - From: Kent Busbee kbus...@northlakechristian.org To: qmailtoaster-list@qmailtoaster.com Sent: Tuesday, February 17, 2009 5:33 PM Subject: Re: [qmailtoaster] Bellsouth Yahoo Domainkeys They seem to be fine: [r...@mail /]# ls -ld etc drwxr-xr-x 84 root root 12288 Feb 17 15:42 etc [r...@mail /]# ls -ld etc/tcprules.d/ drwxr-xr-x 2 root root 4096 Feb 17 17:14 etc/tcprules.d/ [r...@mail /]# [r...@mail /]# cd /etc/tcprules.d/ [r...@mail tcprules.d]# [r...@mail tcprules.d]# ls -inlq total 32 18122463 -rw-r--r-- 1 0 0 479 Oct 16 2007 tcp.smtp 18122880 -rw-r--r-- 2 0 0 479 Oct 5 2007 tcp.smtp.backup 18122925 -rw-r--r-- 2 0 0 460 Oct 2 2007 tcp.smtp.bk2 18122501 -rw-r--r-- 1 0 0 2560 Oct 17 13:47 tcp.smtp.cdb 18123670 -rw-r--r-- 1 0 0 418 Feb 17 12:47 tcp.smtp.dksignonly 18122533 -rw-r--r-- 1 0 0 479 Feb 17 12:34 tcp.smtp.domainkeys 18122949 -rw-r--r-- 2 0 0 293 Oct 16 2007 tcp.smtp.org 18122882 -rw-r--r-- 2 0 0 354 Mar 26 2007 tcp.smtp.sav also, ownership and groups look right, and the inodes seem correct. This is bugging me now See response above; Eric Shubert wrote: What are the permissions on /etc ? Kent Busbee wrote: Too bad! It seems to have been working for the last two years. Anyhow, I edited the file /etc/tcp.smtp and it would not let me save. I am logged in as root am I missing something? [r...@mail tcprules.d]# whoami root [r...@mail tcprules.d]# ls -l total 40 -rw-r--r-- 1 root root 479 Oct 16 2007 tcp.smtp -rw-r--r-- 1 root root 479 Feb 17 12:36 tcp.smtp~ -rw-r--r-- 2 root root 479 Oct 5 2007 tcp.smtp.backup -rw-r--r-- 2 root root 460 Oct 2 2007 tcp.smtp.bk2 -rw-r--r-- 1 root root 2560 Oct 17 13:47 tcp.smtp.cdb -rw-r--r-- 1 root root 418 Feb 17 12:47 tcp.smtp.dksignonly -rw-r--r-- 1 root root 479 Feb 17 12:34 tcp.smtp.domainkeys -rw-r--r-- 2 root root 293 Oct 16 2007 tcp.smtp.org -rw-r--r-- 2 root root 354 Mar 26 2007 tcp.smtp.sav -rw-r--r-- 1 root root 479 Feb 17 14:32 tcp.smtz~ [r...@mail tcprules.d]# cp tcp.smtp.dksignonly tcp.smtp cp: overwrite `tcp.smtp', overriding mode 0644? y cp: cannot create regular file `tcp.smtp': Permission denied [r...@mail tcprules.d]# touch tcp.smtp touch: cannot touch `tcp.smtp': Permission denied [r...@mail tcprules.d]# See response above; Eric Shubert wrote: Domainkeys on the toaster is known to be broken. Signing of outgoing emails appears to work reliably, but checking of incoming emails is intermittently errant. You can do one of 2 things to work around the problem. If you want to disable only incoming checking and continue to sign outgoing messages, you can remove all DKxxx definitions in /etc/tcprules.d/tcp.smtp EXCEPT DKSIGN. (don't forget to rebuild the cdb) If you want to disable DomainKeys entirely, the best way is documented here: http://wiki.qmailtoaster.com/index.php/Disabling_Domain_Keys HTH Kent Busbee wrote: Every since there seems to have been some sort of merge/joint project with bellsouth and yahoo, I have had problems receiving bellsouth emails. Thier domainkeys seem to be messed up. I keep getting things like this: 02-17 11:16:52 tcpserver: pid 581 from 67.195.8.69 02-17 11:16:52 tcpserver: ok 581 mail.northlakechristian.org:192.168.1.8:25 :67. 195.8.69::47684 02-17 11:16:58 CHKUSER accepted rcpt: from vikif...@bellsouth.net:: remote we b180005.mail.gq1.yahoo.com:unknown:67.195.8.69 rcpt gnob...@northlakechristian .org : found existing recipient 02-17 11:16:58 spamdyke[581]: ALLOWED from: vikif...@bellsouth.net to: gnob...@n orthlakechristian.org origin_ip: 67.195.8.69 origin_rdns: web180005.mail.gq1.yah oo.com auth: (unknown) 02-17 11:17:02 simscan:[584]:CLEAN (-0.10/7.00):4.2746s::67.195.8.69:vikif...@be llsouth.net:gnob...@northlakechristian.org: 02-17 11:17:02 qmail-smtpd: qq hard reject (DomainKeys verify status: no key (#5.3.0)): MAILFROM:vikif...@bellsouth.net RCPTTO:gnob...@northlakechristia n.org 02-17 11:17:03 tcpserver: end 581 status 0 02-17 11:17:03 tcpserver: status: 6/100 02-17 11:17:17 tcpserver: status: 7/100 Is anyone else having such problems? I have never had problems with domainkeys in the past. Kent Busbee Director of Technology Northlake Christian School -- -Eric 'shubes' - To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com Kent Busbee Director of Technology Northlake Christian School -- -Eric 'shubes' - To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com Kent Busbee Director of Technology Northlake Christian School - To unsubscribe, e-mail: qmailtoaster
Re: [qmailtoaster] Bellsouth Yahoo Domainkeys
I think I chose not to use selinux, and did a single partition: [r...@mail tcprules.d]# cat /etc/fstab # This file is edited by fstab-sync - see 'man fstab-sync' for details LABEL=/ / ext3defaults1 1 LABEL=/boot1/boot ext3defaults1 2 none/dev/ptsdevpts gid=5,mode=620 0 0 none/dev/shmtmpfs defaults0 0 none/proc procdefaults0 0 none/syssysfs defaults0 0 LABEL=SWAP-sda3 swapswapdefaults0 0 /dev/hda/media/cdromauto pamconsole,exec,noauto,managed 0 0 /dev/fd0/media/floppy auto pamconsole,exec,noauto,managed 0 0 [r...@mail tcprules.d]# See response above; Eric Broch wrote: Could it by how the disk is mounted? /etc/fstab - Original Message - From: Kent Busbee kbus...@northlakechristian.org To: qmailtoaster-list@qmailtoaster.com Sent: Tuesday, February 17, 2009 5:33 PM Subject: Re: [qmailtoaster] Bellsouth Yahoo Domainkeys They seem to be fine: [r...@mail /]# ls -ld etc drwxr-xr-x 84 root root 12288 Feb 17 15:42 etc [r...@mail /]# ls -ld etc/tcprules.d/ drwxr-xr-x 2 root root 4096 Feb 17 17:14 etc/tcprules.d/ [r...@mail /]# [r...@mail /]# cd /etc/tcprules.d/ [r...@mail tcprules.d]# [r...@mail tcprules.d]# ls -inlq total 32 18122463 -rw-r--r-- 1 0 0 479 Oct 16 2007 tcp.smtp 18122880 -rw-r--r-- 2 0 0 479 Oct 5 2007 tcp.smtp.backup 18122925 -rw-r--r-- 2 0 0 460 Oct 2 2007 tcp.smtp.bk2 18122501 -rw-r--r-- 1 0 0 2560 Oct 17 13:47 tcp.smtp.cdb 18123670 -rw-r--r-- 1 0 0 418 Feb 17 12:47 tcp.smtp.dksignonly 18122533 -rw-r--r-- 1 0 0 479 Feb 17 12:34 tcp.smtp.domainkeys 18122949 -rw-r--r-- 2 0 0 293 Oct 16 2007 tcp.smtp.org 18122882 -rw-r--r-- 2 0 0 354 Mar 26 2007 tcp.smtp.sav also, ownership and groups look right, and the inodes seem correct. This is bugging me now See response above; Eric Shubert wrote: What are the permissions on /etc ? Kent Busbee wrote: Too bad! It seems to have been working for the last two years. Anyhow, I edited the file /etc/tcp.smtp and it would not let me save. I am logged in as root am I missing something? [r...@mail tcprules.d]# whoami root [r...@mail tcprules.d]# ls -l total 40 -rw-r--r-- 1 root root 479 Oct 16 2007 tcp.smtp -rw-r--r-- 1 root root 479 Feb 17 12:36 tcp.smtp~ -rw-r--r-- 2 root root 479 Oct 5 2007 tcp.smtp.backup -rw-r--r-- 2 root root 460 Oct 2 2007 tcp.smtp.bk2 -rw-r--r-- 1 root root 2560 Oct 17 13:47 tcp.smtp.cdb -rw-r--r-- 1 root root 418 Feb 17 12:47 tcp.smtp.dksignonly -rw-r--r-- 1 root root 479 Feb 17 12:34 tcp.smtp.domainkeys -rw-r--r-- 2 root root 293 Oct 16 2007 tcp.smtp.org -rw-r--r-- 2 root root 354 Mar 26 2007 tcp.smtp.sav -rw-r--r-- 1 root root 479 Feb 17 14:32 tcp.smtz~ [r...@mail tcprules.d]# cp tcp.smtp.dksignonly tcp.smtp cp: overwrite `tcp.smtp', overriding mode 0644? y cp: cannot create regular file `tcp.smtp': Permission denied [r...@mail tcprules.d]# touch tcp.smtp touch: cannot touch `tcp.smtp': Permission denied [r...@mail tcprules.d]# See response above; Eric Shubert wrote: Domainkeys on the toaster is known to be broken. Signing of outgoing emails appears to work reliably, but checking of incoming emails is intermittently errant. You can do one of 2 things to work around the problem. If you want to disable only incoming checking and continue to sign outgoing messages, you can remove all DKxxx definitions in /etc/tcprules.d/tcp.smtp EXCEPT DKSIGN. (don't forget to rebuild the cdb) If you want to disable DomainKeys entirely, the best way is documented here: http://wiki.qmailtoaster.com/index.php/Disabling_Domain_Keys HTH Kent Busbee wrote: Every since there seems to have been some sort of merge/joint project with bellsouth and yahoo, I have had problems receiving bellsouth emails. Thier domainkeys seem to be messed up. I keep getting things like this: 02-17 11:16:52 tcpserver: pid 581 from 67.195.8.69 02-17 11:16:52 tcpserver: ok 581 mail.northlakechristian.org:192.168.1.8:25 :67. 195.8.69::47684 02-17 11:16:58 CHKUSER accepted rcpt: from vikif...@bellsouth.net:: remote we b180005.mail.gq1.yahoo.com:unknown:67.195.8.69 rcpt gnob...@northlakechristian .org : found existing recipient 02-17 11:16:58 spamdyke[581]: ALLOWED from: vikif...@bellsouth.net to: gnob...@n orthlakechristian.org origin_ip: 67.195.8.69 origin_rdns: web180005.mail.gq1.yah oo.com auth: (unknown) 02-17 11:17:02 simscan:[584]:CLEAN (-0.10/7.00):4.2746s::67.195.8.69:vikif...@be llsouth.net:gnob...@northlakechristian.org: 02-17 11:17:02 qmail-smtpd: qq hard reject (DomainKeys verify status: no key (#5.3.0)): MAILFROM:vikif
Re: [qmailtoaster] Bellsouth Yahoo Domainkeys
good question: [r...@mail tcprules.d]# id uid=0(root) gid=0(root) groups=0(root),1(bin),2(daemon),3(sys),4(adm),6(disk),10(wheel) [r...@mail tcprules.d]# lsof | grep tcp.smtp [r...@mail tcprules.d]# unfortunate answer... I'm probably going to have to go into single user mode and see if I can edit it from there, but I am working from home tonight. Thanks for all the tips, any other thoughts?? See response below; Eric Shubert wrote: # id # lsof | grep tcp.smtp ? Kent Busbee wrote: They seem to be fine: [r...@mail /]# ls -ld etc drwxr-xr-x 84 root root 12288 Feb 17 15:42 etc [r...@mail /]# ls -ld etc/tcprules.d/ drwxr-xr-x 2 root root 4096 Feb 17 17:14 etc/tcprules.d/ [r...@mail /]# [r...@mail /]# cd /etc/tcprules.d/ [r...@mail tcprules.d]# [r...@mail tcprules.d]# ls -inlq total 32 18122463 -rw-r--r-- 1 0 0 479 Oct 16 2007 tcp.smtp 18122880 -rw-r--r-- 2 0 0 479 Oct 5 2007 tcp.smtp.backup 18122925 -rw-r--r-- 2 0 0 460 Oct 2 2007 tcp.smtp.bk2 18122501 -rw-r--r-- 1 0 0 2560 Oct 17 13:47 tcp.smtp.cdb 18123670 -rw-r--r-- 1 0 0 418 Feb 17 12:47 tcp.smtp.dksignonly 18122533 -rw-r--r-- 1 0 0 479 Feb 17 12:34 tcp.smtp.domainkeys 18122949 -rw-r--r-- 2 0 0 293 Oct 16 2007 tcp.smtp.org 18122882 -rw-r--r-- 2 0 0 354 Mar 26 2007 tcp.smtp.sav also, ownership and groups look right, and the inodes seem correct. This is bugging me now See response above; Eric Shubert wrote: What are the permissions on /etc ? Kent Busbee wrote: Too bad! It seems to have been working for the last two years. Anyhow, I edited the file /etc/tcp.smtp and it would not let me save. I am logged in as root am I missing something? [r...@mail tcprules.d]# whoami root [r...@mail tcprules.d]# ls -l total 40 -rw-r--r-- 1 root root 479 Oct 16 2007 tcp.smtp -rw-r--r-- 1 root root 479 Feb 17 12:36 tcp.smtp~ -rw-r--r-- 2 root root 479 Oct 5 2007 tcp.smtp.backup -rw-r--r-- 2 root root 460 Oct 2 2007 tcp.smtp.bk2 -rw-r--r-- 1 root root 2560 Oct 17 13:47 tcp.smtp.cdb -rw-r--r-- 1 root root 418 Feb 17 12:47 tcp.smtp.dksignonly -rw-r--r-- 1 root root 479 Feb 17 12:34 tcp.smtp.domainkeys -rw-r--r-- 2 root root 293 Oct 16 2007 tcp.smtp.org -rw-r--r-- 2 root root 354 Mar 26 2007 tcp.smtp.sav -rw-r--r-- 1 root root 479 Feb 17 14:32 tcp.smtz~ [r...@mail tcprules.d]# cp tcp.smtp.dksignonly tcp.smtp cp: overwrite `tcp.smtp', overriding mode 0644? y cp: cannot create regular file `tcp.smtp': Permission denied [r...@mail tcprules.d]# touch tcp.smtp touch: cannot touch `tcp.smtp': Permission denied [r...@mail tcprules.d]# See response above; Eric Shubert wrote: Domainkeys on the toaster is known to be broken. Signing of outgoing emails appears to work reliably, but checking of incoming emails is intermittently errant. You can do one of 2 things to work around the problem. If you want to disable only incoming checking and continue to sign outgoing messages, you can remove all DKxxx definitions in /etc/tcprules.d/tcp.smtp EXCEPT DKSIGN. (don't forget to rebuild the cdb) If you want to disable DomainKeys entirely, the best way is documented here: http://wiki.qmailtoaster.com/index.php/Disabling_Domain_Keys HTH Kent Busbee wrote: Every since there seems to have been some sort of merge/joint project with bellsouth and yahoo, I have had problems receiving bellsouth emails. Thier domainkeys seem to be messed up. I keep getting things like this: 02-17 11:16:52 tcpserver: pid 581 from 67.195.8.69 02-17 11:16:52 tcpserver: ok 581 mail.northlakechristian.org:192.168.1.8:25 :67. 195.8.69::47684 02-17 11:16:58 CHKUSER accepted rcpt: from vikif...@bellsouth.net:: remote we b180005.mail.gq1.yahoo.com:unknown:67.195.8.69 rcpt gnob...@northlakechristian .org : found existing recipient 02-17 11:16:58 spamdyke[581]: ALLOWED from: vikif...@bellsouth.net to: gnob...@n orthlakechristian.org origin_ip: 67.195.8.69 origin_rdns: web180005.mail.gq1.yah oo.com auth: (unknown) 02-17 11:17:02 simscan:[584]:CLEAN (-0.10/7.00):4.2746s::67.195.8.69:vikif...@be llsouth.net:gnob...@northlakechristian.org: 02-17 11:17:02 qmail-smtpd: qq hard reject (DomainKeys verify status: no key (#5.3.0)): MAILFROM:vikif...@bellsouth.net RCPTTO:gnob...@northlakechristia n.org 02-17 11:17:03 tcpserver: end 581 status 0 02-17 11:17:03 tcpserver: status: 6/100 02-17 11:17:17 tcpserver: status: 7/100 Is anyone else having such problems? I have never had problems with domainkeys in the past. Kent Busbee Director of Technology Northlake Christian School -- -Eric 'shubes' - To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com Kent Busbee Director of Technology Northlake Christian School -- -Eric 'shubes' - To unsubscribe, e-mail:
Re: [qmailtoaster] Bellsouth Yahoo Domainkeys
If you do an lsattr on the file does it have a +i? Is the immunity bit set? (only thing I can think of). Paul On Tue, 2009-02-17 at 20:02 -0600, Kent Busbee wrote: good question: [r...@mail tcprules.d]# id uid=0(root) gid=0(root) groups=0(root),1(bin),2(daemon),3(sys),4(adm),6(disk),10(wheel) [r...@mail tcprules.d]# lsof | grep tcp.smtp [r...@mail tcprules.d]# unfortunate answer... I'm probably going to have to go into single user mode and see if I can edit it from there, but I am working from home tonight. Thanks for all the tips, any other thoughts?? See response below; Eric Shubert wrote: # id # lsof | grep tcp.smtp ? Kent Busbee wrote: They seem to be fine: [r...@mail /]# ls -ld etc drwxr-xr-x 84 root root 12288 Feb 17 15:42 etc [r...@mail /]# ls -ld etc/tcprules.d/ drwxr-xr-x 2 root root 4096 Feb 17 17:14 etc/tcprules.d/ [r...@mail /]# [r...@mail /]# cd /etc/tcprules.d/ [r...@mail tcprules.d]# [r...@mail tcprules.d]# ls -inlq total 32 18122463 -rw-r--r-- 1 0 0 479 Oct 16 2007 tcp.smtp 18122880 -rw-r--r-- 2 0 0 479 Oct 5 2007 tcp.smtp.backup 18122925 -rw-r--r-- 2 0 0 460 Oct 2 2007 tcp.smtp.bk2 18122501 -rw-r--r-- 1 0 0 2560 Oct 17 13:47 tcp.smtp.cdb 18123670 -rw-r--r-- 1 0 0 418 Feb 17 12:47 tcp.smtp.dksignonly 18122533 -rw-r--r-- 1 0 0 479 Feb 17 12:34 tcp.smtp.domainkeys 18122949 -rw-r--r-- 2 0 0 293 Oct 16 2007 tcp.smtp.org 18122882 -rw-r--r-- 2 0 0 354 Mar 26 2007 tcp.smtp.sav also, ownership and groups look right, and the inodes seem correct. This is bugging me now See response above; Eric Shubert wrote: What are the permissions on /etc ? Kent Busbee wrote: Too bad! It seems to have been working for the last two years. Anyhow, I edited the file /etc/tcp.smtp and it would not let me save. I am logged in as root am I missing something? [r...@mail tcprules.d]# whoami root [r...@mail tcprules.d]# ls -l total 40 -rw-r--r-- 1 root root 479 Oct 16 2007 tcp.smtp -rw-r--r-- 1 root root 479 Feb 17 12:36 tcp.smtp~ -rw-r--r-- 2 root root 479 Oct 5 2007 tcp.smtp.backup -rw-r--r-- 2 root root 460 Oct 2 2007 tcp.smtp.bk2 -rw-r--r-- 1 root root 2560 Oct 17 13:47 tcp.smtp.cdb -rw-r--r-- 1 root root 418 Feb 17 12:47 tcp.smtp.dksignonly -rw-r--r-- 1 root root 479 Feb 17 12:34 tcp.smtp.domainkeys -rw-r--r-- 2 root root 293 Oct 16 2007 tcp.smtp.org -rw-r--r-- 2 root root 354 Mar 26 2007 tcp.smtp.sav -rw-r--r-- 1 root root 479 Feb 17 14:32 tcp.smtz~ [r...@mail tcprules.d]# cp tcp.smtp.dksignonly tcp.smtp cp: overwrite `tcp.smtp', overriding mode 0644? y cp: cannot create regular file `tcp.smtp': Permission denied [r...@mail tcprules.d]# touch tcp.smtp touch: cannot touch `tcp.smtp': Permission denied [r...@mail tcprules.d]# See response above; Eric Shubert wrote: Domainkeys on the toaster is known to be broken. Signing of outgoing emails appears to work reliably, but checking of incoming emails is intermittently errant. You can do one of 2 things to work around the problem. If you want to disable only incoming checking and continue to sign outgoing messages, you can remove all DKxxx definitions in /etc/tcprules.d/tcp.smtp EXCEPT DKSIGN. (don't forget to rebuild the cdb) If you want to disable DomainKeys entirely, the best way is documented here: http://wiki.qmailtoaster.com/index.php/Disabling_Domain_Keys HTH Kent Busbee wrote: Every since there seems to have been some sort of merge/joint project with bellsouth and yahoo, I have had problems receiving bellsouth emails. Thier domainkeys seem to be messed up. I keep getting things like this: 02-17 11:16:52 tcpserver: pid 581 from 67.195.8.69 02-17 11:16:52 tcpserver: ok 581 mail.northlakechristian.org:192.168.1.8:25 :67. 195.8.69::47684 02-17 11:16:58 CHKUSER accepted rcpt: from vikif...@bellsouth.net:: remote we b180005.mail.gq1.yahoo.com:unknown:67.195.8.69 rcpt gnob...@northlakechristian .org : found existing recipient 02-17 11:16:58 spamdyke[581]: ALLOWED from: vikif...@bellsouth.net to: gnob...@n orthlakechristian.org origin_ip: 67.195.8.69 origin_rdns: web180005.mail.gq1.yah oo.com auth: (unknown) 02-17 11:17:02 simscan:[584]:CLEAN (-0.10/7.00):4.2746s::67.195.8.69:vikif...@be llsouth.net:gnob...@northlakechristian.org: 02-17 11:17:02 qmail-smtpd: qq hard reject (DomainKeys verify status: no key (#5.3.0)): MAILFROM:vikif...@bellsouth.net RCPTTO:gnob...@northlakechristia n.org 02-17 11:17:03 tcpserver: end 581 status 0 02-17 11:17:03 tcpserver: status: 6/100 02-17 11:17:17 tcpserver: status: 7/100 Is anyone else having such problems? I have never had problems with domainkeys in the past. Kent Busbee Director of Technology Northlake Christian School -- -Eric 'shubes' - To unsubscribe, e-mail:
Re: [qmailtoaster] Bellsouth Yahoo Domainkeys
Holy cow, I think you maybe right! [r...@mail tcprules.d]# lsattr tcp.smtp i tcp.smtp [r...@mail tcprules.d]# How do I correct this? Should it be? See response above; Paul Zimdars wrote: If you do an lsattr on the file does it have a +i? Is the immunity bit set? (only thing I can think of). Paul On Tue, 2009-02-17 at 20:02 -0600, Kent Busbee wrote: good question: [r...@mail tcprules.d]# id uid=0(root) gid=0(root) groups=0(root),1(bin),2(daemon),3(sys),4(adm),6(disk),10(wheel) [r...@mail tcprules.d]# lsof | grep tcp.smtp [r...@mail tcprules.d]# unfortunate answer... I'm probably going to have to go into single user mode and see if I can edit it from there, but I am working from home tonight. Thanks for all the tips, any other thoughts?? See response below; Eric Shubert wrote: # id # lsof | grep tcp.smtp ? Kent Busbee wrote: They seem to be fine: [r...@mail /]# ls -ld etc drwxr-xr-x 84 root root 12288 Feb 17 15:42 etc [r...@mail /]# ls -ld etc/tcprules.d/ drwxr-xr-x 2 root root 4096 Feb 17 17:14 etc/tcprules.d/ [r...@mail /]# [r...@mail /]# cd /etc/tcprules.d/ [r...@mail tcprules.d]# [r...@mail tcprules.d]# ls -inlq total 32 18122463 -rw-r--r-- 1 0 0 479 Oct 16 2007 tcp.smtp 18122880 -rw-r--r-- 2 0 0 479 Oct 5 2007 tcp.smtp.backup 18122925 -rw-r--r-- 2 0 0 460 Oct 2 2007 tcp.smtp.bk2 18122501 -rw-r--r-- 1 0 0 2560 Oct 17 13:47 tcp.smtp.cdb 18123670 -rw-r--r-- 1 0 0 418 Feb 17 12:47 tcp.smtp.dksignonly 18122533 -rw-r--r-- 1 0 0 479 Feb 17 12:34 tcp.smtp.domainkeys 18122949 -rw-r--r-- 2 0 0 293 Oct 16 2007 tcp.smtp.org 18122882 -rw-r--r-- 2 0 0 354 Mar 26 2007 tcp.smtp.sav also, ownership and groups look right, and the inodes seem correct. This is bugging me now See response above; Eric Shubert wrote: What are the permissions on /etc ? Kent Busbee wrote: Too bad! It seems to have been working for the last two years. Anyhow, I edited the file /etc/tcp.smtp and it would not let me save. I am logged in as root am I missing something? [r...@mail tcprules.d]# whoami root [r...@mail tcprules.d]# ls -l total 40 -rw-r--r-- 1 root root 479 Oct 16 2007 tcp.smtp -rw-r--r-- 1 root root 479 Feb 17 12:36 tcp.smtp~ -rw-r--r-- 2 root root 479 Oct 5 2007 tcp.smtp.backup -rw-r--r-- 2 root root 460 Oct 2 2007 tcp.smtp.bk2 -rw-r--r-- 1 root root 2560 Oct 17 13:47 tcp.smtp.cdb -rw-r--r-- 1 root root 418 Feb 17 12:47 tcp.smtp.dksignonly -rw-r--r-- 1 root root 479 Feb 17 12:34 tcp.smtp.domainkeys -rw-r--r-- 2 root root 293 Oct 16 2007 tcp.smtp.org -rw-r--r-- 2 root root 354 Mar 26 2007 tcp.smtp.sav -rw-r--r-- 1 root root 479 Feb 17 14:32 tcp.smtz~ [r...@mail tcprules.d]# cp tcp.smtp.dksignonly tcp.smtp cp: overwrite `tcp.smtp', overriding mode 0644? y cp: cannot create regular file `tcp.smtp': Permission denied [r...@mail tcprules.d]# touch tcp.smtp touch: cannot touch `tcp.smtp': Permission denied [r...@mail tcprules.d]# See response above; Eric Shubert wrote: Domainkeys on the toaster is known to be broken. Signing of outgoing emails appears to work reliably, but checking of incoming emails is intermittently errant. You can do one of 2 things to work around the problem. If you want to disable only incoming checking and continue to sign outgoing messages, you can remove all DKxxx definitions in /etc/tcprules.d/tcp.smtp EXCEPT DKSIGN. (don't forget to rebuild the cdb) If you want to disable DomainKeys entirely, the best way is documented here: http://wiki.qmailtoaster.com/index.php/Disabling_Domain_Keys HTH Kent Busbee wrote: Every since there seems to have been some sort of merge/joint project with bellsouth and yahoo, I have had problems receiving bellsouth emails. Thier domainkeys seem to be messed up. I keep getting things like this: 02-17 11:16:52 tcpserver: pid 581 from 67.195.8.69 02-17 11:16:52 tcpserver: ok 581 mail.northlakechristian.org:192.168.1.8:25 :67. 195.8.69::47684 02-17 11:16:58 CHKUSER accepted rcpt: from vikif...@bellsouth.net:: remote we b180005.mail.gq1.yahoo.com:unknown:67.195.8.69 rcpt gnob...@northlakechristian .org : found existing recipient 02-17 11:16:58 spamdyke[581]: ALLOWED from: vikif...@bellsouth.net to: gnob...@n orthlakechristian.org origin_ip: 67.195.8.69 origin_rdns: web180005.mail.gq1.yah oo.com auth: (unknown) 02-17 11:17:02 simscan:[584]:CLEAN (-0.10/7.00):4.2746s::67.195.8.69:vikif...@be llsouth.net:gnob...@northlakechristian.org: 02-17 11:17:02 qmail-smtpd: qq hard reject (DomainKeys verify status: no key (#5.3.0)): MAILFROM:vikif...@bellsouth.net RCPTTO:gnob...@northlakechristia n.org 02-17 11:17:03 tcpserver: end 581 status 0 02-17 11:17:03 tcpserver: status: 6/100 02-17 11:17:17 tcpserver: status: 7/100 Is anyone else having such problems? I have never had problems with domainkeys in the
Re: [qmailtoaster] Bellsouth Yahoo Domainkeys
chattr -i tcp.smtp (you probably set it a while ago but forgot..you can set it after you are done by doing a chattr +i tcp.smtp but then you might forget again ;) ). Paul On Tue, 2009-02-17 at 21:23 -0600, Kent Busbee wrote: Holy cow, I think you maybe right! [r...@mail tcprules.d]# lsattr tcp.smtp i tcp.smtp [r...@mail tcprules.d]# How do I correct this? Should it be? See response above; Paul Zimdars wrote: If you do an lsattr on the file does it have a +i? Is the immunity bit set? (only thing I can think of). Paul On Tue, 2009-02-17 at 20:02 -0600, Kent Busbee wrote: good question: [r...@mail tcprules.d]# id uid=0(root) gid=0(root) groups=0(root),1(bin),2(daemon),3(sys),4(adm),6(disk),10(wheel) [r...@mail tcprules.d]# lsof | grep tcp.smtp [r...@mail tcprules.d]# unfortunate answer... I'm probably going to have to go into single user mode and see if I can edit it from there, but I am working from home tonight. Thanks for all the tips, any other thoughts?? See response below; Eric Shubert wrote: # id # lsof | grep tcp.smtp ? Kent Busbee wrote: They seem to be fine: [r...@mail /]# ls -ld etc drwxr-xr-x 84 root root 12288 Feb 17 15:42 etc [r...@mail /]# ls -ld etc/tcprules.d/ drwxr-xr-x 2 root root 4096 Feb 17 17:14 etc/tcprules.d/ [r...@mail /]# [r...@mail /]# cd /etc/tcprules.d/ [r...@mail tcprules.d]# [r...@mail tcprules.d]# ls -inlq total 32 18122463 -rw-r--r-- 1 0 0 479 Oct 16 2007 tcp.smtp 18122880 -rw-r--r-- 2 0 0 479 Oct 5 2007 tcp.smtp.backup 18122925 -rw-r--r-- 2 0 0 460 Oct 2 2007 tcp.smtp.bk2 18122501 -rw-r--r-- 1 0 0 2560 Oct 17 13:47 tcp.smtp.cdb 18123670 -rw-r--r-- 1 0 0 418 Feb 17 12:47 tcp.smtp.dksignonly 18122533 -rw-r--r-- 1 0 0 479 Feb 17 12:34 tcp.smtp.domainkeys 18122949 -rw-r--r-- 2 0 0 293 Oct 16 2007 tcp.smtp.org 18122882 -rw-r--r-- 2 0 0 354 Mar 26 2007 tcp.smtp.sav also, ownership and groups look right, and the inodes seem correct. This is bugging me now See response above; Eric Shubert wrote: What are the permissions on /etc ? Kent Busbee wrote: Too bad! It seems to have been working for the last two years. Anyhow, I edited the file /etc/tcp.smtp and it would not let me save. I am logged in as root am I missing something? [r...@mail tcprules.d]# whoami root [r...@mail tcprules.d]# ls -l total 40 -rw-r--r-- 1 root root 479 Oct 16 2007 tcp.smtp -rw-r--r-- 1 root root 479 Feb 17 12:36 tcp.smtp~ -rw-r--r-- 2 root root 479 Oct 5 2007 tcp.smtp.backup -rw-r--r-- 2 root root 460 Oct 2 2007 tcp.smtp.bk2 -rw-r--r-- 1 root root 2560 Oct 17 13:47 tcp.smtp.cdb -rw-r--r-- 1 root root 418 Feb 17 12:47 tcp.smtp.dksignonly -rw-r--r-- 1 root root 479 Feb 17 12:34 tcp.smtp.domainkeys -rw-r--r-- 2 root root 293 Oct 16 2007 tcp.smtp.org -rw-r--r-- 2 root root 354 Mar 26 2007 tcp.smtp.sav -rw-r--r-- 1 root root 479 Feb 17 14:32 tcp.smtz~ [r...@mail tcprules.d]# cp tcp.smtp.dksignonly tcp.smtp cp: overwrite `tcp.smtp', overriding mode 0644? y cp: cannot create regular file `tcp.smtp': Permission denied [r...@mail tcprules.d]# touch tcp.smtp touch: cannot touch `tcp.smtp': Permission denied [r...@mail tcprules.d]# See response above; Eric Shubert wrote: Domainkeys on the toaster is known to be broken. Signing of outgoing emails appears to work reliably, but checking of incoming emails is intermittently errant. You can do one of 2 things to work around the problem. If you want to disable only incoming checking and continue to sign outgoing messages, you can remove all DKxxx definitions in /etc/tcprules.d/tcp.smtp EXCEPT DKSIGN. (don't forget to rebuild the cdb) If you want to disable DomainKeys entirely, the best way is documented here: http://wiki.qmailtoaster.com/index.php/Disabling_Domain_Keys HTH Kent Busbee wrote: Every since there seems to have been some sort of merge/joint project with bellsouth and yahoo, I have had problems receiving bellsouth emails. Thier domainkeys seem to be messed up. I keep getting things like this: 02-17 11:16:52 tcpserver: pid 581 from 67.195.8.69 02-17 11:16:52 tcpserver: ok 581 mail.northlakechristian.org:192.168.1.8:25 :67. 195.8.69::47684 02-17 11:16:58 CHKUSER accepted rcpt: from vikif...@bellsouth.net:: remote we b180005.mail.gq1.yahoo.com:unknown:67.195.8.69 rcpt gnob...@northlakechristian .org : found existing recipient 02-17 11:16:58 spamdyke[581]: ALLOWED from: vikif...@bellsouth.net to: gnob...@n orthlakechristian.org origin_ip: 67.195.8.69 origin_rdns: web180005.mail.gq1.yah oo.com auth: (unknown) 02-17 11:17:02 simscan:[584]:CLEAN (-0.10/7.00):4.2746s::67.195.8.69:vikif...@be llsouth.net:gnob...@northlakechristian.org: 02-17 11:17:02 qmail-smtpd: qq hard
Re: [qmailtoaster] Bellsouth Yahoo Domainkeys
That was IT. You are brilliant! Thank you everyone for all your help. [r...@mail tcprules.d]# lsattr tcp.smtp i tcp.smtp [r...@mail tcprules.d]# [r...@mail tcprules.d]# chattr -i tcp.smtp [r...@mail tcprules.d]# lsattr tcp.smtp - tcp.smtp [r...@mail tcprules.d]# cp tcp.smtp.dksignonly tcp.smtp cp: overwrite `tcp.smtp'? y [r...@mail tcprules.d]# [r...@mail tcprules.d]# qmailctl cdb Reloaded /etc/tcprules.d/tcp.smtp Reloaded /var/qmail/control/badmimetypes.cdb Reloaded /var/qmail/control/badloadertypes.cdb Reloaded /var/qmail/control/simversions.cdb Reloaded /var/qmail/control/simcontrol.cdb [r...@mail tcprules.d]# See response above; Paul Zimdars wrote: If you do an lsattr on the file does it have a +i? Is the immunity bit set? (only thing I can think of). Paul On Tue, 2009-02-17 at 20:02 -0600, Kent Busbee wrote: good question: [r...@mail tcprules.d]# id uid=0(root) gid=0(root) groups=0(root),1(bin),2(daemon),3(sys),4(adm),6(disk),10(wheel) [r...@mail tcprules.d]# lsof | grep tcp.smtp [r...@mail tcprules.d]# unfortunate answer... I'm probably going to have to go into single user mode and see if I can edit it from there, but I am working from home tonight. Thanks for all the tips, any other thoughts?? See response below; Eric Shubert wrote: # id # lsof | grep tcp.smtp ? Kent Busbee wrote: They seem to be fine: [r...@mail /]# ls -ld etc drwxr-xr-x 84 root root 12288 Feb 17 15:42 etc [r...@mail /]# ls -ld etc/tcprules.d/ drwxr-xr-x 2 root root 4096 Feb 17 17:14 etc/tcprules.d/ [r...@mail /]# [r...@mail /]# cd /etc/tcprules.d/ [r...@mail tcprules.d]# [r...@mail tcprules.d]# ls -inlq total 32 18122463 -rw-r--r-- 1 0 0 479 Oct 16 2007 tcp.smtp 18122880 -rw-r--r-- 2 0 0 479 Oct 5 2007 tcp.smtp.backup 18122925 -rw-r--r-- 2 0 0 460 Oct 2 2007 tcp.smtp.bk2 18122501 -rw-r--r-- 1 0 0 2560 Oct 17 13:47 tcp.smtp.cdb 18123670 -rw-r--r-- 1 0 0 418 Feb 17 12:47 tcp.smtp.dksignonly 18122533 -rw-r--r-- 1 0 0 479 Feb 17 12:34 tcp.smtp.domainkeys 18122949 -rw-r--r-- 2 0 0 293 Oct 16 2007 tcp.smtp.org 18122882 -rw-r--r-- 2 0 0 354 Mar 26 2007 tcp.smtp.sav also, ownership and groups look right, and the inodes seem correct. This is bugging me now See response above; Eric Shubert wrote: What are the permissions on /etc ? Kent Busbee wrote: Too bad! It seems to have been working for the last two years. Anyhow, I edited the file /etc/tcp.smtp and it would not let me save. I am logged in as root am I missing something? [r...@mail tcprules.d]# whoami root [r...@mail tcprules.d]# ls -l total 40 -rw-r--r-- 1 root root 479 Oct 16 2007 tcp.smtp -rw-r--r-- 1 root root 479 Feb 17 12:36 tcp.smtp~ -rw-r--r-- 2 root root 479 Oct 5 2007 tcp.smtp.backup -rw-r--r-- 2 root root 460 Oct 2 2007 tcp.smtp.bk2 -rw-r--r-- 1 root root 2560 Oct 17 13:47 tcp.smtp.cdb -rw-r--r-- 1 root root 418 Feb 17 12:47 tcp.smtp.dksignonly -rw-r--r-- 1 root root 479 Feb 17 12:34 tcp.smtp.domainkeys -rw-r--r-- 2 root root 293 Oct 16 2007 tcp.smtp.org -rw-r--r-- 2 root root 354 Mar 26 2007 tcp.smtp.sav -rw-r--r-- 1 root root 479 Feb 17 14:32 tcp.smtz~ [r...@mail tcprules.d]# cp tcp.smtp.dksignonly tcp.smtp cp: overwrite `tcp.smtp', overriding mode 0644? y cp: cannot create regular file `tcp.smtp': Permission denied [r...@mail tcprules.d]# touch tcp.smtp touch: cannot touch `tcp.smtp': Permission denied [r...@mail tcprules.d]# See response above; Eric Shubert wrote: Domainkeys on the toaster is known to be broken. Signing of outgoing emails appears to work reliably, but checking of incoming emails is intermittently errant. You can do one of 2 things to work around the problem. If you want to disable only incoming checking and continue to sign outgoing messages, you can remove all DKxxx definitions in /etc/tcprules.d/tcp.smtp EXCEPT DKSIGN. (don't forget to rebuild the cdb) If you want to disable DomainKeys entirely, the best way is documented here: http://wiki.qmailtoaster.com/index.php/Disabling_Domain_Keys HTH Kent Busbee wrote: Every since there seems to have been some sort of merge/joint project with bellsouth and yahoo, I have had problems receiving bellsouth emails. Thier domainkeys seem to be messed up. I keep getting things like this: 02-17 11:16:52 tcpserver: pid 581 from 67.195.8.69 02-17 11:16:52 tcpserver: ok 581 mail.northlakechristian.org:192.168.1.8:25 :67. 195.8.69::47684 02-17 11:16:58 CHKUSER accepted rcpt: from vikif...@bellsouth.net:: remote we b180005.mail.gq1.yahoo.com:unknown:67.195.8.69 rcpt gnob...@northlakechristian .org : found existing recipient 02-17 11:16:58 spamdyke[581]: ALLOWED from: vikif...@bellsouth.net to: gnob...@n orthlakechristian.org origin_ip: 67.195.8.69 origin_rdns: web180005.mail.gq1.yah oo.com auth: (unknown) 02-17 11:17:02 simscan:[584]:CLEAN