Re: [vchkpw] pop3 login frequency patch
Jake S wrote: Hi ! Is there any patch for blocking too frequent pop3-logins (bruteforce attacks) ?? If not, is anyone interested in some ? I'm doing this right at the moment ! I'm looking for the same thing, but I want to stop bruteforce on qmail-smtpd. I've tried to do it with tcpserver, but I had no success. I think that would be better if this patch was made for tcpserver (since I use tcpserver to set up both pop3 and smtpd). [[]]'s Eduardo M. Bragatto.
Re: [vchkpw] pop3 login frequency patch
On Sun, 2004-02-08 at 07:25, Eduardo M. Bragatto wrote: Jake S wrote: Hi ! Is there any patch for blocking too frequent pop3-logins (bruteforce attacks) ?? If not, is anyone interested in some ? I'm doing this right at the moment ! I'm looking for the same thing, but I want to stop bruteforce on qmail-smtpd. I've tried to do it with tcpserver, but I had no success. I think that would be better if this patch was made for tcpserver (since I use tcpserver to set up both pop3 and smtpd). that could only be done in tcpserver by rate limiting connections by IP address, and would also affect legitimate connections made by valid users using proper authentication credentials. I'd be mighty upset if anyone rate limited my pop3 connections ;) Of course, special provisions could be made, but -Jeremy [[]]'s Eduardo M. Bragatto. -- Jeremy Kitchen Systems Administrator [EMAIL PROTECTED] Kitchen @ #qmail on EFNet - Join the party! . Inter7 Internet Technologies, Inc. www.inter7.com 866.528.3530 toll free 847.492.0470 int'l 847.492.0632 fax GNUPG key ID: 93BDD6CE -- Jeremy Kitchen Systems Administrator [EMAIL PROTECTED] Kitchen @ #qmail on EFNet - Join the party! . Inter7 Internet Technologies, Inc. www.inter7.com 866.528.3530 toll free 847.492.0470 int'l 847.492.0632 fax GNUPG key ID: 93BDD6CE
Re: [vchkpw] pop3 login frequency patch
Jeremy Kitchen wrote: that could only be done in tcpserver by rate limiting connections by IP address, and would also affect legitimate connections made by valid users using proper authentication credentials. I'd be mighty upset if anyone rate limited my pop3 connections ;) Of course, special provisions could be made, but I don't want it at the pop3, I want it on smtpd. Spammers are hammering my server, sending messages to lots of domains that I'm hosting. If I could set a limit like 5 simultaneously connections for each IP address, no one would be able to use all my slots. [[]]'s Eduardo M. Bragatto.
[vchkpw] Vconvert problem in 5.4.0 - help
Does anyone know if there is a problem in the vconvert program converting from cdb to mysql in vpopmail 5.4.0? After running vconvert across all domains here is the contents of the mysql vpopmail table: | pw_name| pw_domain | pw_passwd | pw_uid | pw_gid | pw_gecos | pw_dir| pw_shell| pw_clear_passwd | ++---+++++---+-+-+ | spam | emm15.org | $1$Squ80GTv$x/0r6Qqm51cxi0r3RborU1 | 1 | 0 | spam | /home/vpopmail/domains/5/emm15.org/spam | 20485760S,1000C | xxx | | postmaster | emm15.org | $1$ag6IlD6H$/USpGUDz5jaAOq7Mc72rH/ | 1 | 0 | Postmaster | /home/vpopmail/domains/5/emm15.org/postmaster | 20485760S,1000C | bxer| ++---+++++---+-+-+ But yet when I run 'vdominfo emm15.org' I get: orion:/home/vpopmail/bin# ./vdominfo emm15.org domain: emm15.org uid:89 gid:89 dir:/home/vpopmail/domains/5/emm15.org users: 0 It show 0 users when the mysql table shows 2 users. (I'm depressed.) Best Regards, Jeff Koch
[vchkpw] Upgrade and conversion to mysql problem Vpopmail 5.4.0
A few more details on our problem converting a vpopmail 5.4.0rc1 cdb system to vpopmail 5.4.0 using mysql. We built a brand new server running Bill's Toaster with vpopmail 5.4.0 with mysql and qmailadmin 1.2.0. Everything worked great mysql tables were working, mail was properly recieved and put in the rights places, we could pop in and get mail, we could send mail, etc. Qmailadmin was working just great with mysql. Then we tried to transfer over our 500 virtual domains and 2500 mail accounts. We tar-zipped the /home/vpopmail/domains directory and expanded it on the new server. We transferred over /var/qmail/control/assign and cdb and /var/qmail/control rcpthosts, morercpthosts, morercpthosts.cdb and virtualdomains. The we ran ./vconvert which seemed to properly convert the vpasswd files into the mysql tables. However, at this point we can send email to the server and it gets put into the correct maildir location (and chkuser.mysql.tdma patch is working), we can use 'vadddomain' to add domains and they get added to the mysql tables but 'vdominfo' does not work and the pop server won't let us in to pick up email. Any ideas how we could have screwed up this conversion? Were we supposed to delete the vpasswd files after converting to mysql? We are absolutely sure vpopmail was compiled with mysql support since that was working previously. Any advice would be appreciated. Best Regards, Jeff Koch
Re: [vchkpw] Re: Problem with qmail-scanner
At 06/02/04 18:38 (), Peter Palmreuther wrote: Hello Devendra, On Friday, February 6, 2004 at 11:34:34 AM you wrote (at least in part): [QMAILUEUE RELAYCLIENT] In my Case I am using smtp-auth patch from http://www.fehcom.de/qmail/smtpauth.html Don't know which version you're using, as I don't know when this site first listed 0.4.2. If you're using 0.31 it does not set RELAYCLIENT for authenticated users, 0.4.2 should do set it. and it is calling spamassassin for the authenticated users sending out mails. Perhaps the RELAYCLIENT is not set for authenticated users. Quite easy to check: 'strings /var/qmail/bin/qmail-smtpd |less' and search for 'RELAYCLIENT='. -- Best regards Peter Palmreuther How do you tell when you run out of invisible ink? Dear Peter, Thanks for the clue. I tried searching the string 'RELAYCLIENT=' into /var/qmail/bin/qmail-smtpd. I was able to find a 'RELAYCLIENT' but not RELAYCLIENT=. I was using the Spamcontrol patch spamcontrol-209_tgz.bin instead of the latest spamcontrol-225_tgz.bin. I think this should solve the issue. I would try it out ASAP. Thanks. Devendra Singh
