[vchkpw] Force Auth from all but localhost
Hi, how can I enforce that everybody (except localhost) has to authenticate via smtp auth. The way I have it configured now is that all that are not in rcpthosts have to authenticate, but all that are in rcpthosts can be send email without auth. How can I change that? Thank you. -- Sascha Ebach Digitale Wertschöpfung Hugo-Junkers-Str. 26 50739 Köln Tel: 0221 / 5994393Fax: 0221 / 5994394 mailto:[EMAIL PROTECTED] Web: http://www.digitale-wertschoepfung.de
[vchkpw] How to bypass quota
Hello, I use qmail + vpopmail + courrier-imap ... and i have activated quota for each users to 100M . It work fine fine but, some users would like to be prevent when their Maildir box size is greater than quota and continue to receive their mail. Can i do that ? i think to make some change in maildrop but don't know where . Thank's Rgds
[vchkpw] vadddomain -u issues
When I add a domain using vadddomain -u domain, I have to change the permission of /var/qmail/vpopmail/etc/vpopmail.mysql to o+r ? Thanks.
Re: [vchkpw] Force Auth from all but localhost
Sascha Ebach wrote: Hi, how can I enforce that everybody (except localhost) has to authenticate via smtp auth. The way I have it configured now is that all that are not in rcpthosts have to authenticate, but all that are in rcpthosts can be send email without auth. How can I change that? Hi, You can't, other wise how would external mail servers send mail to you ? Regards, Rick
Re: [vchkpw] vadddomain -u issues
kengheng wrote: When I add a domain using vadddomain -u domain, I have to change the permission of /var/qmail/vpopmail/etc/vpopmail.mysql to o+r ? Thanks. Yes. By default, and for security reasons, the ~vpopmail/etc/vpopmail.mysql file is only readable by the vpopmail user. If you add any domain under a different user, that user will need access to that file. You could either grant access to all users, or you could make sure the vchkpw group has access and include the new user in the vchkpw group. -- Ken Jones inter7
Re: [vchkpw] Force Auth from all but localhost
You'd want something like http://www.netable.com/~dburkes/qmail-smtpd-requireauth/dist/qmail-smtpd-requireauth-0.30.tar.gz to do it. Note that this patch is against old/different versions of the auth patch, so you'll have to just use it as a guide and do it by hand. In specific, and if I recall correctly, authd is renamed and you have to move a define for requireauth up a bit higher in the file. If you need a hand with that let me know. Then add REQUIREAUTH="" to your tcp.smtp file.You _DO NOT_ want to have this on port 25 for the default connection if you're receiving mail from others. It is useful for port 587 or some other submission port where you don't want non-authenticated mail to come through, so that you don't have to worry about Spam on these ports, and always know you have a user [useful for domainkeys for example to make sure that the auth user is always set].localhost:allowmy.class.c.:allow:allow,REQUIREAUTH=""-MSascha Ebach [EMAIL PROTECTED] wrote: Hi,how can I enforce that everybody (except localhost) has to authenticate via smtp auth. The way I have it configured now is that all that are not in rcpthosts have to authenticate, but all that are in rcpthosts can be send email without auth. How can I change that?Thank you.--Sascha Ebach Digitale Wertsch�pfungHugo-Junkers-Str. 26 50739 K�lnTel: 0221 / 5994393Fax: 0221 / 5994394mailto:[EMAIL PROTECTED]Web: http://www.digitale-wertschoepfung.de
Re: [vchkpw] vadddomain -u issues
On Apr 14, 2006, at 9:57 AM, Ken Jones wrote: kengheng wrote: When I add a domain using vadddomain -u domain, I have to change the permission of /var/qmail/vpopmail/etc/vpopmail.mysql to o+r ? Thanks. Yes. By default, and for security reasons, the ~vpopmail/etc/vpopmail.mysql file is only readable by the vpopmail user. If you add any domain under a different user, that user will need access to that file. You could either grant access to all users, or you could make sure the vchkpw group has access and include the new user in the vchkpw group. Note that making it world-readable opens up a dangerous security hole. If someone can get access to the server, they can learn the username and password for the entire vpopmail database. If that server just does email, and only admins have access/accounts, then it's less of a risk. Doing it on a server that does web hosting and allows users to upload their own cgi scripts would be very dangerous. -- Tom Collins - [EMAIL PROTECTED] QmailAdmin: http://qmailadmin.sf.net/ Vpopmail: http://vpopmail.sf.net/
