Re: [vchkpw] about smtp auth
On Friday 15 October 2004 05:51 pm, Andrea Riela wrote: > Tom Collins wrote: > > On Oct 15, 2004, at 8:40 AM, Andrea Riela wrote: > >> 250-AUTH LOGIN CRAM-MD5 PLAIN > >> 250-AUTH=LOGIN CRAM-MD5 PLAIN > > > > That's an old, outdated patch. Use the other patch mentioned (or the > > one included in the vpopmail contrib directory). > > Well, I've installed the last fehcom (0.43), but nothing, the same > problem (the email client send a password request ... always). > > now: > observe# telnet 127.0.0.1 25 > Trying 127.0.0.1... > Connected to localhost. > Escape character is '^]'. > 220 nesys.it ESMTP > ehlo > 250-nesys.it > 250-PIPELINING > 250-8BITMIME > 250 AUTH LOGIN PLAIN CRAM-MD5 > > what I've to check? try authenticating right there. http://fehcom.de/qmail/smtpauth.html tells you the protocol for SMTP auth... also, your server advertises cram-md5, most mail clients will use the most secure method available, which in this case is cram-md5.. but in order for cram-md5 to work you have to have the clear text password on both sides of the authentication. Do you have clear password support in vpopmail? -Jeremy -- Jeremy Kitchen ++ Systems Administrator ++ Inter7 Internet Technologies, Inc. [EMAIL PROTECTED] ++ www.inter7.com ++ 866.528.3530 ++ 815.776.9465 int'l kitchen @ #qmail #gentoo on EFnet ++ scriptkitchen.com/qmail GnuPG Key ID: 481BF7E2 ++ scriptkitchen.com/kitchen.asc pgpYfNR2qPJgD.pgp Description: PGP signature
Re: [vchkpw] about smtp auth
Tom Collins wrote: On Oct 15, 2004, at 8:40 AM, Andrea Riela wrote: 250-AUTH LOGIN CRAM-MD5 PLAIN 250-AUTH=LOGIN CRAM-MD5 PLAIN That's an old, outdated patch. Use the other patch mentioned (or the one included in the vpopmail contrib directory). Well, I've installed the last fehcom (0.43), but nothing, the same problem (the email client send a password request ... always). now: observe# telnet 127.0.0.1 25 Trying 127.0.0.1... Connected to localhost. Escape character is '^]'. 220 nesys.it ESMTP ehlo 250-nesys.it 250-PIPELINING 250-8BITMIME 250 AUTH LOGIN PLAIN CRAM-MD5 what I've to check? Now I use bincimap with vchkpw-noroaming, and qmail-smtpds (with ucspi-ssl) with vchkpw-noroaming. thanks for all Regards Andrea
Re: [vchkpw] chkuser and SSL with stunnel
On Friday 15 October 2004 05:26 pm, Florian Munz wrote: > Hi, > > I finally found the time to install the much needed chkuser-patch and it > is working really good - almost :) > > I provide SMTPS (SMTP over SSL on port 456) via stunnel and I have > problems with some mail clients (mainly Thunderbird) > > I got the following error-message when sending mail in Thunderbird: > > An error occured while sending mail. The mail server responded: SER > accepted sender: from <[EMAIL PROTECTED]:[EMAIL PROTECTED]:> remote > <[192.168.1.2]:unknown:80.184.128.120> rcpt <> : sender accepted. Please > verify that your email address is correct in you Mail preferences and > try again. > > So there is some chkuser-ouput coming through, but obviously no > error-message. With Thunderbird and normal SMTP the whole thing is > working fine. can you provide recordio [1] output of the session? (hopefully you're using something like sslserver from the ucspi-ssl package [2] to run this ssl service and not some patch to qmail-smtpd) That will help greatly to debug the problem you're having. -Jeremy [1]: http://cr.yp.to/ucspi-tcp/recordio.html [2]: http://superscript.com/ucspi-ssl/sslserver.html -- Jeremy Kitchen ++ Systems Administrator ++ Inter7 Internet Technologies, Inc. [EMAIL PROTECTED] ++ www.inter7.com ++ 866.528.3530 ++ 815.776.9465 int'l kitchen @ #qmail #gentoo on EFnet ++ scriptkitchen.com/qmail GnuPG Key ID: 481BF7E2 ++ scriptkitchen.com/kitchen.asc pgpXNJJ8zJs9t.pgp Description: PGP signature
[vchkpw] chkuser and SSL with stunnel
Hi, I finally found the time to install the much needed chkuser-patch and it is working really good - almost :) I provide SMTPS (SMTP over SSL on port 456) via stunnel and I have problems with some mail clients (mainly Thunderbird) I got the following error-message when sending mail in Thunderbird: An error occured while sending mail. The mail server responded: SER accepted sender: from <[EMAIL PROTECTED]:[EMAIL PROTECTED]:> remote <[192.168.1.2]:unknown:80.184.128.120> rcpt <> : sender accepted. Please verify that your email address is correct in you Mail preferences and try again. So there is some chkuser-ouput coming through, but obviously no error-message. With Thunderbird and normal SMTP the whole thing is working fine. I tested this SSL setup with The Bat! and Apple Mail and there it is working also. So is this a bug in Thunderbird or chkuser, anything I can do about this? I'm starting stunnel with this supervise-script: #!/bin/sh exec env - CHKUSER_START="NONE" \ /usr/local/bin/tcpserver -R -H -l 0 -x /etc/tcp.smtp.cdb \ -v -u 90 -g 90 0 smtps /usr/local/sbin/stunnel \ /usr/local/etc/stunnel/smtps.conf and the following smtps.conf for stunnel exec = /var/qmail/bin/qmail-smtpd execargs = qmail-smtpd /var/vpopmail/bin/vchkpw /usr/bin/true So this is rather strange, isn't it? Florian
Re: [vchkpw] vmysql: sql error[3]: No Database Selected
Nice Tom, thanks! Is there nay place where i can download some good documentation about upgrading vpopmail? I tried to do this once and didn't work out... Another strange thing: i have four servers just like this one (with vpopmail 5.4.4), all of them accesses the same database and just one specific server is with this problem. Maybe it's a coincidence, but all the error messages comes up from the MAILER-DAEMON of this server. Thanks -- Rafael Felix Correa PS: this problem i've posted here is a known bug? On Sex, 2004-10-15 at 18:35, Tom Collins wrote: > On Oct 15, 2004, at 10:12 AM, Rafael Felix Correa wrote: > > I use vpopmail 5.4.4. The mysql database that vpopmail connects in > > located outside this box. > > 5.4.5 and later should take care of that problem. > > -- > Tom Collins - [EMAIL PROTECTED] > QmailAdmin: http://qmailadmin.sf.net/ Vpopmail: http://vpopmail.sf.net/ > Info on the Sniffter hand-held Network Tester: http://sniffter.com/ > >
Re: [vchkpw] vmysql: sql error[3]: No Database Selected
On Oct 15, 2004, at 10:12 AM, Rafael Felix Correa wrote: I use vpopmail 5.4.4. The mysql database that vpopmail connects in located outside this box. 5.4.5 and later should take care of that problem. -- Tom Collins - [EMAIL PROTECTED] QmailAdmin: http://qmailadmin.sf.net/ Vpopmail: http://vpopmail.sf.net/ Info on the Sniffter hand-held Network Tester: http://sniffter.com/
[vchkpw] vmysql: sql error[3]: No Database Selected
Hi everyone, One of my customers is trying to send mail through my email server, and (sometimes) gets this message: - From: <[EMAIL PROTECTED]> To: <[EMAIL PROTECTED]> Sent: Friday, October 15, 2004 1:28 PM Subject: failure notice Hi. This is the qmail-send program at mail005.ifxwh.com.br. I'm afraid I wasn't able to deliver your message to the following addresses. This is a permanent error; I've given up. Sorry it didn't work out. <[EMAIL PROTECTED]>: vmysql: sql error[1]: Can't create database 'vpopmail'. Database exists vmysql: sql error[3]: No Database Selected could not create limits table CREATE TABLE limits ( domain CHAR(64) PRIMARY KEY, maxpopaccounts INT(10) NOT NULL DEFAULT -1, maxaliases INT(10) NOT NULL DEFAULT -1, maxforwards INT(10) NOT NULL DEFAULT -1, maxautorespondersINT(10) NOT NULL DEFAULT -1, maxmailinglists INT(10) NOT NULL DEFAULT -1, diskquotaINT(12) NOT NULL DEFAULT 0, maxmsgcount INT(12) NOT NULL DEFAULT 0, defaultquota INT(12) NOT NULL DEFAULT 0, defaultmaxmsgcount INT(12) NOT NULL DEFAULT 0, disable_pop TINYINT(1) NOT NULL DEFAULT 0, disable_imap TINYINT(1) NOT NULL DEFAULT 0, disable_dialup TINYINT(1) NOT NULL DEFAULT 0, disable_passwordchanging TINYINT(1) NOT NULL DEFAULT 0, disable_webmail TINYINT(1) NOT NULL DEFAULT 0, disable_relayTINYINT(1) NOT NULL DEFAULT 0, disable_smtp TINYINT(1) NOT NULL DEFAULT 0, perm_account TINYINT(2) NOT NULL DEFAULT 0, perm_alias TINYINT(2) NOT NULL DEFAULT 0, perm_forward TINYINT(2) NOT NULL DEFAULT 0, perm_autoresponder TINYINT(2) NOT NULL DEFAULT 0, perm_maillist TINYINT(4) NOT NULL DEFAULT 0, perm_quota TINYINT(2) NOT NULL DEFAULT 0, perm_defaultquotaTINYINT(2) NOT NULL DEFAULT 0 ) vmysql: sql error[p]: No Database Selected user does not exist, but will deliver to /var/vpopmail/domains/9/qodes.com/atendimento/ can not open new email file errno=2 file=/var/vpopmail/domains/9/qodes.com/atendimento/Maildir/tmp/1097857680.17561.mail005.ifxwh.com.br,S=74013 system error -- I really don't know what could be happening. The problem affect random accounts, in random domains on the same server. Bug of vpopmail, maybe? I use vpopmail 5.4.4. The mysql database that vpopmail connects in located outside this box. Thanks in advance -- Rafael Felix Correa Administrador de Sistemas - IFX Networks
Re: [vchkpw] about smtp auth
On Oct 15, 2004, at 9:24 AM, Jeremy Kitchen wrote: /var/qmail/bin/qmail-smtpd nesys.it /usr/local/vpopmail/bin/vchkpw-noroaming /bin/true 2>&1 Change qmail-smtpd to run as the vpopmail user and it should Just Work. But he's using the old patch (it requires a hostname as the first arg to qmail-smtpd) which isn't compatible with vpopmail 5.4.x. Use the fehcom patch. Either the latest version from Erwin's site, or the older one included in vpopmail's contrib directory. -- Tom Collins - [EMAIL PROTECTED] QmailAdmin: http://qmailadmin.sf.net/ Vpopmail: http://vpopmail.sf.net/ Info on the Sniffter hand-held Network Tester: http://sniffter.com/
Re: [vchkpw] about smtp auth
On Oct 15, 2004, at 8:40 AM, Andrea Riela wrote: 250-AUTH LOGIN CRAM-MD5 PLAIN 250-AUTH=LOGIN CRAM-MD5 PLAIN That's an old, outdated patch. Use the other patch mentioned (or the one included in the vpopmail contrib directory). -- Tom Collins - [EMAIL PROTECTED] QmailAdmin: http://qmailadmin.sf.net/ Vpopmail: http://vpopmail.sf.net/ Info on the Sniffter hand-held Network Tester: http://sniffter.com/
Re: [vchkpw] about smtp auth
On Friday 15 October 2004 10:40 am, Andrea Riela wrote: > QMAILDUID=`id -u qmaild` > NOFILESGID=`id -g qmaild` [snip] > /var/qmail/bin/qmail-smtpd nesys.it > /usr/local/vpopmail/bin/vchkpw-noroaming /bin/true 2>&1 > well, the problem is: > when I try to connect to send an email, I receive a password request for > the user (the same as account user), I type the same password as account > user, but, I couldn't send the email, and I receive always the password > request. Can the qmaild user read your vpopmail information? I certainly hope not :) Change qmail-smtpd to run as the vpopmail user and it should Just Work. -Jeremy -- Jeremy Kitchen ++ Systems Administrator ++ Inter7 Internet Technologies, Inc. [EMAIL PROTECTED] ++ www.inter7.com ++ 866.528.3530 ++ 815.776.9465 int'l kitchen @ #qmail #gentoo on EFnet ++ scriptkitchen.com/qmail GnuPG Key ID: 481BF7E2 ++ scriptkitchen.com/kitchen.asc pgpI7HeaMaCVo.pgp Description: PGP signature
Re: [vchkpw] about smtp auth
Jeremy Kitchen wrote: there's someone here that use Freebsd and qmail+vpopmail+smtp auth? The recommended smtp auth patch to use is the one found at http://fehcom.de/qmail/smtpauth.html Which works fine. Installation instructions are either on the site or included in the tarball; can't remember. -- Regards, Charles. signature.asc Description: OpenPGP digital signature
Re: [vchkpw] about smtp auth
Well, I've tested http://students.imsa.edu/~ngroot/qmail-1.03-starttls-smtp-auth.patch (that is in /usr/ports/mail in Freebsd), my steps was: cd /usr/ports/mail/qmail-smtp_auth+tls make cp work/.../qmail-smtpd /var/qmail/bin/qmail-smtpd observe# telnet 127.0.0.1 25 Trying 127.0.0.1... Connected to localhost. Escape character is '^]'. 220 nesys.it ESMTP ehlo 250-nesys.it 250-AUTH LOGIN CRAM-MD5 PLAIN 250-AUTH=LOGIN CRAM-MD5 PLAIN 250-STARTTLS 250-PIPELINING 250 8BITMIME My runscript is: #!/bin/sh CERTFILE="/var/qmail/certs/pop3s.cert" KEYFILE="/var/qmail/certs/pop3s.key" DHFILE="/var/qmail/certs/dh1024.pem" export CERTFILE KEYFILE DHFILE QMAILDUID=`id -u qmaild` NOFILESGID=`id -g qmaild` MAXSMTPD=`cat /var/qmail/control/concurrencyincoming` if [ -z "$QMAILDUID" -o -z "$NOFILESGID" -o -z "$MAXSMTPD" ]; then echo QMAILDUID, NOFILESGID, or MAXSMTPD is unset in echo /var/qmail/supervise/qmail-smtpd/run exit 1 fi exec /usr/local/bin/softlimit -m 1000 \ /usr/local/bin/sslserver -e -v -R -h -l 0 -x /usr/local/vpopmail/etc/tcp.smtp.cdb -c "$MAXSMTPD" \ -u "$QMAILDUID" -g "$NOFILESGID" 0 465 /var/qmail/bin/qmail-smtpd nesys.it /usr/local/vpopmail/bin/vchkpw-noroaming /bin/true 2>&1 well, the problem is: when I try to connect to send an email, I receive a password request for the user (the same as account user), I type the same password as account user, but, I couldn't send the email, and I receive always the password request. What I've to do? Regards Andrea
Re: [vchkpw] about smtp auth
On Friday 15 October 2004 04:42 am, Andrea Riela wrote: > Hi folks, > > there's someone here that use Freebsd and qmail+vpopmail+smtp auth? > the smtp auth patch in freebsd ports could use vchkpw? > there's an howto about that? I'm sure it can. There are two types of smtp auth patches out there. Ones that require that you have the hostname, and ones that don't. I highly recommend, however, that you do not use the qmail from ports and simply roll your own tarball. The recommended smtp auth patch to use is the one found at http://fehcom.de/qmail/smtpauth.html -Jeremy -- Jeremy Kitchen ++ Systems Administrator ++ Inter7 Internet Technologies, Inc. [EMAIL PROTECTED] ++ www.inter7.com ++ 866.528.3530 ++ 815.776.9465 int'l kitchen @ #qmail #gentoo on EFnet ++ scriptkitchen.com/qmail GnuPG Key ID: 481BF7E2 ++ scriptkitchen.com/kitchen.asc pgp0mky8XHuzq.pgp Description: PGP signature
Re: [vchkpw] pop-before-smtp issues
replying to a 4 month old post and clearing out all of the text in the message including the subject line to start a new, completely unrelated thread is not a good thing. Please don't hijack threads as it breaks the list archive and breaks mail clients that can do threaded message display. Please use the 'new' function of your mail client, and if your mail client doesn't have a 'new' function, go find yourself a better one. The proof of your wrongdoing is here (snipped from the headers of your message): In-Reply-To: <[EMAIL PROTECTED]> References: <[EMAIL PROTECTED]> That being said: On Friday 15 October 2004 07:13 am, Kent Ritchie wrote: > I have a qmail/vpopmail setup using pop-before-smtp, and the roaming is > working fine for 99.9% of the users, but a very few are having problems > with it. The normal forced send / recieve does not update thier IP's in > the relay table, nor does deleting and recreating the accounts. I am > almost positive this is a user issue, but I wanted to check the list > before I lay the smack-down on some users. At first I thought it was my > rbl blocking the IP's, but I have disabled it for the moment. Check vuserinfo for the users having the problems. Perhaps pop-before-smtp is disabled for them. Better yet, ditch pop-before-smtp and use smtp auth. http://fehcom.de/qmail/smtpauth.html -Jeremy -- Jeremy Kitchen ++ Systems Administrator ++ Inter7 Internet Technologies, Inc. [EMAIL PROTECTED] ++ www.inter7.com ++ 866.528.3530 ++ 815.776.9465 int'l kitchen @ #qmail #gentoo on EFnet ++ scriptkitchen.com/qmail GnuPG Key ID: 481BF7E2 ++ scriptkitchen.com/kitchen.asc pgpVEQyOPokR9.pgp Description: PGP signature
[vchkpw] "vpopmail directory" bug
Hello all! ./configure script set home of vpopmail users as vpopmail directory for instalation and ignore --prefix options. It's bug or feature? =) Dmitriy MiksIr
[vchkpw] pop-before-smtp issues
I have a qmail/vpopmail setup using pop-before-smtp, and the roaming is working fine for 99.9% of the users, but a very few are having problems with it. The normal forced send / recieve does not update thier IP's in the relay table, nor does deleting and recreating the accounts. I am almost positive this is a user issue, but I wanted to check the list before I lay the smack-down on some users. At first I thought it was my rbl blocking the IP's, but I have disabled it for the moment.
[vchkpw] about smtp auth
Hi folks, there's someone here that use Freebsd and qmail+vpopmail+smtp auth? the smtp auth patch in freebsd ports could use vchkpw? there's an howto about that? thank you very much for your support Regards Andrea