Re: [vchkpw] vacation messages
Andrew Preece wrote: That's actually very good. I'd make a cron job to check the db entries. then every five minutes it would write the dot qmail files based on what the db says. the script should write indevidual dot qmailfiles for each user in their home dirs that way compatability with qmailadmin isn't broken. The only problem I see with this, is that it's a very specific glue. Which isn't all that bad, I guess. Is there a safe way to let the horde script write the .qmail file? I think that would be a little more elegant than a cron job, and less maintenance. Then it could take effect immediately, as well. Then, all I'd have to write is a horde drive for vacation that could read the vpopmail data, and make the appropriate change to the file Er, doesn't qmailadmin do a respectable job at writing vacation messages? #1, you could let your users into qmailadmin. (I mean, how many vactions do they take in a year :) They can always use a different interface besides Horde.) #2, you could mimic whatever qmailadmin does. #3, neither one of these uses MySQL directly, which is that what you want, or do you not really care? Again, how many people are going to be hammering MySQL trying to go on vacation, and the server is too slow? Well, let me see. I guess if vchkpw is using MySQL backend, then I think the vacation message stuff has gotta be in MySQL... Hadn't thought of that, but there it is. Personally, I use qmailadmin, but my users usually don't. But that's just a policy decision. Anyway, I think Tom Collins wrote it, more or less, or maintains it. Surprised he hasn't said something here yet. Billy
Re: [vchkpw] Why does Inter7 opt Qmail?
Bruno Negrão wrote: Hi everybody, Thank you very much for the info. Let me tell more info about us. We already use Qmail in our 6 mailservers for 4 years. I installed all of them. I even wrote http://www.qmailwiki.org/Simscan/Related_Docs/Simscan_ClamAV_Chkuser_Installation_Guide What means I'm used to the Qmail+Inter7-tools+Patches lifestyle, I know it works. Let me tell you some things we(specially him) don't like in Qmail, some of them were already mentioned: 1) the fact that qmail stopped being developed so every improvement has to be made craftily: applying patches, install a bunch of administrative tools, install antivirus, etc. All these procedures are made manually, there's no "Super Qmail 2005" package, with all the pieces already gathered. Well, hold on here. There is, but they are developed by people independently of DJB, obviously. What they are called (Get your Google finger ready) are Mail Toasters based on qmail, net-qmail, etc. If I remember correctly, you will find two big ones out there -- Shupp and Matt Simerson. I use a Mail Toaster based on Matt's, using FreeBSD. There also seems to be something called qmailrocks, but I don't generally hear as good reports as from the Toasters. You will need to choose one of these that installs fast, has a large user base, and is constantly being updated. Of course, it will need to support your platform, and have users which are familiar with your OS. In 2005, these are your choices for qmail and a rolled-into-one package. Maybe someone will put one on a bootable CD or something that you can install en masse on a bunch, or every time you want another mail server. But for now, they are all linked to the couple of dozen ports and packages which can change at any minute (everything from openssl to perl to spamassassin) When you see what is rolled into the Toasters -- you could make a few mistakes. #1, assume everything included is for you. #2, assume some of the stuff included is worthless. Look into each unfamiliar port or app they install to see if they are worth adding to your already complicated installation. Maybe after a while of testing the basics (say 3 to 6 months), you might get a glimmer and realize how you really could use app-x. 2) a lot of research is needed to find how to install each improvement. This time could be used for other things, of course. So there is a cost here. 3) We don't have personnel and don't intend to dedicade C programmers to develop patches for qmail by ourselves. My boss actually dreams on making us a mail outsourcer for other companies.We are already a small ISP, but he dreams about our customers stop using their MS Outlook's to use our supposed beautiful webmail/domain-administration solution of his dreams. So he wants to know if there is something already close to it on the open-source market. He wants to know if there is something ready. (don't get mad with me, I'm just researching what he asked) What's bad on inter7 tools? For example, my boss thinks Sqwebmail is ugly, and it really is. But, IMP is a pain in the ass to set it up. We substituted Sqwebmail to IMP, but when I have to update IMP I almost break down and cry. Sqwebmail is easy and ugly, IMP is handsome and very complicated to install. But we're happy with Qmailadmin though. But could be nicer if Sqwebmail and Qmailadmin were integrated and very good looking, providing a continuos look and feel pattern. When I saw Squirrelmail a few years ago, I cried as I installed all the nifty plugin stuff for it. But once installed, they really haven't gone through drastic changes in the source code since, so I have enjoyed a nice webmail for years, and no hassles doing upgrades. I just know it can be difficult to figure out all the pretty plugins I use (about 40, some stock). I will say this: sqwebmail is ridiculous. Dump it. Squirrelmail over the years has never really given me a glitch. I wrote, by the way, a lot of the Wiki on installing SquirrelMail to a Windows box. I run both Windows and UNIX squirrelmail servers. Both run quite well. I would recommend an imapproxy for this and any webmail server, though, for speed. I want to comment what Kyle said here: But look at it this way: there's nothing in the license that says you can't take qmail, rename it to (mySweetMailserver, for example), and release it under the GPL. That nobody's done that says something. I don't understand about licensing, but I researching on Qmail-ldap, I heard it is licensed "under BSD which is DFSG-free" - having this licensing, could it be shipped with the distributions? Do you have some opinion on Qmail-ldap? Some ideas with webmail applications and domain administration? Best regards, bnegrao Overall, I would say, the new development in qmail is done by the folks which bundle up net-qmail, which is at revision 1.05. That is what to tell your boss -- DJB is basically
Re: [vchkpw] Re: block non-relay from remote to local?
Peter Palmreuther wrote: > Hello Billy, > > On Saturday, July 2, 2005 at 6:32:47 PM Billy wrote: > > >>>N.B.: Number of authentication should not play a role in accessing >>>your cdb-file, if you're configured vpopmail to only use MySQL the cdb >>>will be as static as your kernel: unless *you* change it, it won't >>>change. > > >>(I'm going by memory, so this is a paraphrase.) > > >>If you aren't familiar with the Matt Simerson mysql patch, it was born >>because there can be major lookup problems with the cdb file, especially >>using POP before SMTP. > > > Have tested it a long time ago and know why it was developed, albeit I > don't actively use it. > > >>Mysql has no problem with the above scenario, as it is designed for >>heavy accesses and changes to its tables. > > > Absolutely right. > > But: what's the matter with 'POP-before-SMTP done through MySQL' and > additionally using a .cdb-file for static entries? > Does the patch nevertheless a MySQL-lookup, even if something is found > in .cdb-file? In this case a .cdb-file in fact wouldn't make much > sense, except the fact the answer from MySQL could kept short (no > result) and some parsing time could be spared. Well, I had to look up the stuff myself. I'm not completely positive, but it looks like you can still use -x and the (Matt Simerson hack) -S, too. See http://www.tnpi.biz/internet/mail/toaster/patches/tcpserver-mysql.shtml I use a lot of Matt's stuff, but as you can see, this hack is for the big leagues. (I just looked at my service "run" files, which are automatically generated. No -S, just -x /usr/local/vpopmail/etc/tcp.smtp.cdb -- I don't do pop-before-smtp) But using both, you do two reads per SMTP access. Only consider that if the cdb file is static, that small of a file will be resident in your memory cache almost assuradly. I think you are splitting hairs, until you get a 10,000+ user system and benchmark it. You will need to see the source hack to see what is done, when, and how, or benchmark it. Or ask Matt! Billy
Re: [vchkpw] Re: block non-relay from remote to local?
Paul Theodoropoulos wrote: At 09:32 AM 7/2/2005, you wrote: there is no 'internal' port 25 traffic. My service provides email service for businesses. I'm not an ISP. all traffic to my servers is inbound from the global internet. I guess I was looking at your "customer" as having an SMTP relay server at his site. That's just the way I read your original post. I was talking about the customer's system needing the firewall, not yours -- I see now you were talking about your own POP server, not theirs. note also that there is *no* reason for anyone to use port 587. more below. As my other clue, your customer and others should get used to using port 587 as their SMTP relay port, rather than port 25. That way, some of your customer's users could be on the global Internet, and still send mail to their firewalled-port-25-is-illegal mail server all day on the submission port 587. It would work internally, too. We provide alternate access to our SMTP server for those customer's whose ISP's block port 25. We use port 2525. what, you say? 2525 is registered to "MS V Worlds". my response is, so freaking what? *there are no restrictions on the use of registered ports for any service one desires*. true, i haven't spent a lot of time checking the RFC's. but i'm pretty sure that IANA's 'rules' are only 'recommendations'. 587 is dandy, but it's also another random string of digits for customers to try to remember. 2525 is easy for customers to remember. if it should ever conflict with someone's use of "MS V Worlds", well by gosh we'll just start another server on another port just for them. I'm not holding my breath. Well, I can't say I didn't do the the same thing until recently. I chose my own secret port number to bypass a port 25 block. Blocking port 25 is becoming a major reality now. I was merely saying that there is a standard way to allow things to happen. You will see back there at Matt Simerson's site that he is now getting qmail to effectively listen on SMTP and submission ports to start abinding by the RFC for roaming users. Since it is a rather new phenonimon, not many know about it, but as more ISP's block and more mail providers (like you and I) try to avoid these issues, the port 587 number will become fairly well-known. And, by the way, in the case of a clueless user anyway, one port number is just as hard as another to use, as they will need a lot of handholding to setup their client. And for those who get the idea, port 587 will eventually be memorable. We weren't around when the RFC got written, or we might have tried for a smarter port number. In any case, I only feel that once I catch a clue, I might as well start using the right port number. I just opened up both the one I picked and 587, and determined to stick with the published standard unless necessary. Rumors persist that some ISP's might block port 587, but that is mostly hearsay. Billy
Re: [vchkpw] Re: block non-relay from remote to local?
Peter Palmreuther wrote: YMMD, but 'fopen()', a fast, hash-driven, seek (the way 'cdb' works) and a quick 'read' for a few bytes should be less overhead than a complete SQL query, including parsing the result. Even if your MySQL would run locally and accessed through UNIX-socket I'd expect it to be not only more overhead, but also taking more time than this quick local, read-only, precise access in a small file. But it's your system, whatever makes you happy and serves your needs can be your solution. N.B.: Number of authentication should not play a role in accessing your cdb-file, if you're configured vpopmail to only use MySQL the cdb will be as static as your kernel: unless *you* change it, it won't change. (I'm going by memory, so this is a paraphrase.) If you aren't familiar with the Matt Simerson mysql patch, it was born because there can be major lookup problems with the cdb file, especially using POP before SMTP. Imagine the POP server populating the text file (and re-compiling the CDB) 10 times per second. Now, imagine 20 queries per second on the CDB file, that in some cases is in the middle of a file alteration. The disk, in cases like this, hardly ever gets to writing the file from a kernel buffer, so what you are seeing is memory accesses on this file most of the time. There will simply be cases where the CDB file gets hammered too hard and corrupted. It will need attention by the admin during peak hours. Mysql has no problem with the above scenario, as it is designed for heavy accesses and changes to its tables. By the way, a way to solve the original problem sound to me the JOB FOR a FIREWALL and ROUTER! I am not sure if the server in question has one or two Ethernet interfaces, but if it doesn't, they often cost about $10 to $30 (unless they both need global IP's). If you route inbound mail from your upstream MXs to one interface (say, fxp0) and that is the only source of port 25 traffic from the global internet, you could have qmail listen to that interface. Firewall setup is simple -- only allow the MX servers to talk to that port 25. Meanwhile, the internal port 25 traffic (which as another topic should be port 587) can come into the other interface, say fxp1. The firewall would need no restriction for this interface. As my other clue, your customer and others should get used to using port 587 as their SMTP relay port, rather than port 25. That way, some of your customer's users could be on the global Internet, and still send mail to their firewalled-port-25-is-illegal mail server all day on the submission port 587. It would work internally, too. So here is a summary: fxp0 - global internet -- inbound port 25 only allowed from 3 IP addresses. port 587 is allowed for SMTP AUTH. fxp1 - internal net like 10.0.0.21 -- inbound port 25 and port 587 is allowed for SMTP or SMTP AUTH. Billy
Re: [vchkpw] authdaemond memory leak?
Jan-Willem Regeer wrote: > Look and see if you have the time to check with "valgrind" if you can > find the error. It is in the ports tree, and looks for memory leakage by > programs. > > Hope you find what the problem is. > > > Note: I am not using authdaemond myself. > Jan-Willem Regeer > I tried running it through valgrind's memcheck. I don't see any issues whatsoever to be concerned with. I ran with it for about 12 hours of normal use. It looks to me that the program itself is collecting a lot of information, putting it in memory legitimately, and it simply uses gobs of it. Not a memory leak per se, but a programming mistake. Just so you know the output I got here was essentially the same when I only ran it for a few minutes... the small leaks detected here seem to be the same as when I ran the quick tests. Here's the output I got. I ran it with the --trace-children=yes option, so the process ID's (about three of them) represent the different children. ==45544== Is the main (parent) ==45549== is the worker thread (#2) ==45548== is the worker thread (#1) Here's the output. Billy ==45544== Memcheck, a memory error detector for x86-linux. ==45544== Copyright (C) 2002-2004, and GNU GPL'd, by Julian Seward. ==45544== Using valgrind-2.1.2.CVS, a program supervision framework for x86-linux. ==45544== Copyright (C) 2000-2004, and GNU GPL'd, by Julian Seward. ==45544== ==45544== My PID = 45544, parent PID = 45543. Prog and args are: ==45544==/usr/local/libexec/courier-authlib/authdaemond ==45544== For more details, rerun with: -v ==45544== ==45549== ==45548== ==45549== ERROR SUMMARY: 0 errors from 0 contexts (suppressed: 0 from 0) ==45548== ERROR SUMMARY: 0 errors from 0 contexts (suppressed: 0 from 0) ==45548== malloc/free: in use at exit: 21793446 bytes in 7800 blocks. ==45548== malloc/free: 39152 allocs, 31352 frees, 150866381 bytes allocated. ==45548== For counts of detected errors, rerun with: -v ==45548== searching for pointers to 7800 not-freed blocks. ==45549== malloc/free: in use at exit: 22053598 bytes in 7893 blocks. ==45549== malloc/free: 39651 allocs, 31758 frees, 152789639 bytes allocated. ==45549== For counts of detected errors, rerun with: -v ==45549== searching for pointers to 7893 not-freed blocks. ==45549== checked 10292868 bytes. ==45548== checked 10195776 bytes. ==45549== ==45549== 11 bytes in 1 blocks are definitely lost in loss record 1 of 12 ==45548== ==45548== 11 bytes in 1 blocks are definitely lost in loss record 1 of 12 ==45549==at 0x3C03772F: malloc (in /usr/local/lib/valgrind/vgpreload_memcheck.so) ==45548==at 0x3C03772F: malloc (in /usr/local/lib/valgrind/vgpreload_memcheck.so) ==45549==by 0x3C1038A2: strdup (in /lib/libc.so.5) ==45548==by 0x3C1038A2: strdup (in /lib/libc.so.5) ==45549==by 0x8049963: (within /usr/local/libexec/courier-authlib/authdaemond) ==45548==by 0x8049963: (within /usr/local/libexec/courier-authlib/authdaemond) ==45549==by 0x804B014: start (in /usr/local/libexec/courier-authlib/authdaemond) ==45548==by 0x804B014: start (in /usr/local/libexec/courier-authlib/authdaemond) ==45548== ==45549== ==45548== ==45549== ==45548== 34 bytes in 2 blocks are definitely lost in loss record 4 of 12 ==45549== 34 bytes in 2 blocks are definitely lost in loss record 4 of 12 ==45548==at 0x3C03772F: malloc (in /usr/local/lib/valgrind/vgpreload_memcheck.so) ==45549==at 0x3C03772F: malloc (in /usr/local/lib/valgrind/vgpreload_memcheck.so) ==45548==by 0x3C03CA4C: lt_emalloc (in /usr/local/lib/libltdl.so.4) ==45549==by 0x3C03CA4C: lt_emalloc (in /usr/local/lib/libltdl.so.4) ==45548==by 0x3C03D6F2: canonicalize_path (in /usr/local/lib/libltdl.so.4) ==45549==by 0x3C03D6F2: canonicalize_path (in /usr/local/lib/libltdl.so.4) ==45548==by 0x3C03E494: try_dlopen (in /usr/local/lib/libltdl.so.4) ==45549==by 0x3C03E494: try_dlopen (in /usr/local/lib/libltdl.so.4) ==45548== ==45548== ==45549== ==45548== 455840 bytes in 2590 blocks are possibly lost in loss record 11 of 12 ==45549== ==45549== 461296 bytes in 2621 blocks are possibly lost in loss record 11 of 12 ==45548==at 0x3C03772F: malloc (in /usr/local/lib/valgrind/vgpreload_memcheck.so) ==45549==at 0x3C03772F: malloc (in /usr/local/lib/valgrind/vgpreload_memcheck.so) ==45548==by 0x3C2888CE: my_malloc (in /usr/local/lib/mysql/libmysqlclient.so.14) ==45549==by 0x3C2888CE: my_malloc (in /usr/local/lib/mysql/libmysqlclient.so.14) ==45548==by 0x3C2A3536: mysql_store_result (in /usr/local/lib/mysql/libmysqlclient.so.14) ==45549==by 0x3C2A3536: mysql_store_result (in /usr/local/lib/mysql/libmysqlclient.so.14) ==45548==by 0x3C26CE5A: vget_limits (in /usr/local/lib/courier-authlib/libauthvchkpw.so) ==45549==by 0x3C26CE5A: vget_limits (in /usr/local/lib/courier-authlib/libauthvchkpw.so) ==45548== ==45548== LEAK SUMMARY: ==45548==definitely lost: 45 bytes in 3 blocks. ==45549== ==45548==po
Re: [vchkpw] authdaemond memory leak?
Billy Newsom wrote: I just looked at how many times per day authdaemond logs this: "received auth request" it is around 6000 to 7000 times per day. That's about one every 12 seconds or so. Not a heavy use. In fact, I may have one bad auth per day, so all of those are successful. But I have noticed that the daemons are slowly increasing their memory usage without bounds. They are starting to cause the server to use swapfile space. Here is output from top: PID USERNAME PRI NICE SIZERES STATE C TIME WCPU CPU COMMAND 75331 root40 292M 13444K select 1 9:48 0.00% 0.00% authdaemond 75332 root 960 292M 13532K select 1 9:47 0.00% 0.00% authdaemond 75329 root40 2128K88K select 1 0:06 0.00% 0.00% authdaemond It got worse. I just reached 100% swapfile use today. last pid: 15020; load averages: 0.23, 0.15, 0.17 up 25+07:28:57 09:55:54 139 processes: 1 running, 129 sleeping, 9 zombie Mem: 299M Active, 55M Inact, 105M Wired, 21M Cache, 60M Buf, 13M Free Swap: 448M Total, 448M Used, 40K Free, 99% Inuse PID USERNAME PRI NICE SIZERES STATE C TIME WCPU CPU COMMAND 75331 root 960 393M 21908K select 1 13:13 0.00% 0.00% authdaemond 75332 root 960 393M 21976K select 0 13:13 0.00% 0.00% authdaemond imapd 75329 root40 2128K80K select 0 0:08 0.00% 0.00% authdaemond That's now 788MB of memory use. The web server uses 14MB, and imapd is under 100MB. I just restarted authdaemond. I guess I'm going to run a script that shuts it down nightly and brings it back up. Billy #date ; ls -l /var/run/authdaemond/ Wed Jun 22 20:43:50 CDT 2005 total 2 -rw-r--r-- 1 root courier 6 Jun 12 09:13 pid -rw--- 1 root courier 0 Jun 12 09:13 pid.lock srwxrwxrwx 1 root courier 0 Jun 12 09:13 socket (Ten days and 586 MB of memory hogging! Ouch. And that is 270MB resident.) Now, the reason I am only running two daemons should be obvious!! I saw how much memory each one used, and I looked for ways to reduce it. So I only run two now. Anyway, does anyone know of a memory leak detector that could find such a problem? As far as I know, a previous version of authdaemon had no such issue, but I upgraded around May 21, 2005 using the latest in the FreeBSD ports tree. I only see one change since that date, but that was specific to FreeBSD and the startup script (rc.d). (That may be good, because there was a bug in the "restart" of the one I got in May). So it seems like I have the 0.56 of the auth package, and I believe that is current. Thanks for your help, Billy
[vchkpw] authdaemond memory leak?
I just looked at how many times per day authdaemond logs this: "received auth request" it is around 6000 to 7000 times per day. That's about one every 12 seconds or so. Not a heavy use. In fact, I may have one bad auth per day, so all of those are successful. But I have noticed that the daemons are slowly increasing their memory usage without bounds. They are starting to cause the server to use swapfile space. Here is output from top: PID USERNAME PRI NICE SIZERES STATE C TIME WCPU CPU COMMAND 75331 root40 292M 13444K select 1 9:48 0.00% 0.00% authdaemond 75332 root 960 292M 13532K select 1 9:47 0.00% 0.00% authdaemond 75329 root40 2128K88K select 1 0:06 0.00% 0.00% authdaemond #date ; ls -l /var/run/authdaemond/ Wed Jun 22 20:43:50 CDT 2005 total 2 -rw-r--r-- 1 root courier 6 Jun 12 09:13 pid -rw--- 1 root courier 0 Jun 12 09:13 pid.lock srwxrwxrwx 1 root courier 0 Jun 12 09:13 socket (Ten days and 586 MB of memory hogging! Ouch. And that is 270MB resident.) Now, the reason I am only running two daemons should be obvious!! I saw how much memory each one used, and I looked for ways to reduce it. So I only run two now. Anyway, does anyone know of a memory leak detector that could find such a problem? As far as I know, a previous version of authdaemon had no such issue, but I upgraded around May 21, 2005 using the latest in the FreeBSD ports tree. I only see one change since that date, but that was specific to FreeBSD and the startup script (rc.d). (That may be good, because there was a bug in the "restart" of the one I got in May). So it seems like I have the 0.56 of the auth package, and I believe that is current. Thanks for your help, Billy
[vchkpw] authdaemond and MySQL server has gone away
I have been having a strange issue with authdaemond ever since it split into a seperate auth port. I am running FreeBSD 5.4, net-qmail, vpopmail, Courier-IMAP, and using a mysql backend to vpopmail. The only authentication package I use or need is the vchkpw. Most or all of these are pretty late versions of these programs. Well, what seems to be the problem is during a server *reboot* 1. authdaemond boots up, using an rc.d script (FreeBSD's autoexec files) 2. I think this is before mysql is loaded. 3. auth requests come in to the IMAP server almost immediately. 4. ALL AUTHs FAIL until I do the following. When I get to the root shell a few hours later, I can get AUTHs working by restarting the daemons (I frantically restart imap, authdaemond, and mysql). But, by the way, the authdaemond script is broken, and I have to stop and start it (typing /usr/local/etc/rc.d/courier-authdaemond.sh restart only stops the daemon). At this stage, all AUTHs now work! Yeah! But what is going on? During the AUTH failures, nobody can login, and everyone has to retype their mail passwords (Mozilla, for example, resets the IMAP password) Here is what mysql logs said. Notice, it appears that mysql started *AFTER* the first AUTH attempt. 050601 02:28:45 mysqld started 050601 2:28:49 InnoDB: Started; log sequence number 0 43740 /usr/local/libexec/mysqld: ready for connections. Version: '4.1.11' socket: '/tmp/mysql.sock' port: 3306 FreeBSD port: mysql-server-4.1.11_1 Here is my mail and debug log. I tried to put in spaces just to show different user login attempts. Jun 1 02:28:40 ibm authdaemond: modules="authvchkpw", daemons=5 Jun 1 02:28:40 ibm authdaemond: Installing libauthvchkpw Jun 1 02:28:40 ibm authdaemond: Installation complete: authvchkpw Jun 1 02:28:41 ibm imapd: Connection, ip=[192.168.0.11] Jun 1 02:28:41 ibm authdaemond: received auth request, service=imap, authtype=login Jun 1 02:28:41 ibm authdaemond: authvchkpw: trying this module Jun 1 02:28:41 ibm authdaemond: vchkpw: user does not exist Jun 1 02:28:41 ibm authdaemond: authvchkpw: REJECT - try next module Jun 1 02:28:41 ibm authdaemond: FAIL, all modules rejected Jun 1 02:28:41 ibm imapd: LOGIN FAILED, user=test, ip=[192.168.0.11] Jun 1 02:28:42 ibm pop3d: Connection, ip=[192.168.0.18] Jun 1 02:28:42 ibm authdaemond: received auth request, service=pop3, authtype=login Jun 1 02:28:42 ibm authdaemond: authvchkpw: trying this module Jun 1 02:28:42 ibm authdaemond: vchkpw: user does not exist Jun 1 02:28:42 ibm authdaemond: authvchkpw: REJECT - try next module Jun 1 02:28:42 ibm authdaemond: FAIL, all modules rejected Jun 1 02:28:42 ibm pop3d: LOGIN FAILED, user=tester, ip=[192.168.0.18] Jun 1 02:28:44 ibm pop3d: Connection, ip=[192.168.0.17] Jun 1 02:28:44 ibm authdaemond: received auth request, service=pop3, authtype=login Jun 1 02:28:44 ibm authdaemond: authvchkpw: trying this module Jun 1 02:28:44 ibm authdaemond: vchkpw: user does not exist Jun 1 02:28:44 ibm authdaemond: authvchkpw: REJECT - try next module Jun 1 02:28:44 ibm authdaemond: FAIL, all modules rejected Jun 1 02:28:44 ibm pop3d: LOGIN FAILED, user=ppp, ip=[192.168.0.17] Jun 1 02:28:44 ibm imapd: Connection, ip=[127.0.0.1] Jun 1 02:28:44 ibm imapd: LOGOUT, ip=[127.0.0.1] Jun 1 02:28:45 ibm pop3d: Connection, ip=[192.168.0.9] Jun 1 02:28:45 ibm authdaemond: received auth request, service=pop3, authtype=login Jun 1 02:28:45 ibm authdaemond: authvchkpw: trying this module Jun 1 02:28:45 ibm authdaemond: vchkpw: user does not exist Jun 1 02:28:45 ibm authdaemond: authvchkpw: REJECT - try next module Jun 1 02:28:45 ibm authdaemond: FAIL, all modules rejected Jun 1 02:28:45 ibm pop3d: LOGIN FAILED, user=, ip=[192.168.0.9] Jun 1 02:28:46 ibm imapd: Disconnected, ip=[192.168.0.11], time=5 Jun 1 02:28:46 ibm pop3d: Connection, ip=[192.168.0.6] Jun 1 02:28:46 ibm authdaemond: received auth request, service=pop3, authtype=login Jun 1 02:28:46 ibm authdaemond: authvchkpw: trying this module Jun 1 02:28:46 ibm authdaemond: vchkpw: user does not exist Jun 1 02:28:46 ibm authdaemond: authvchkpw: REJECT - try next module Jun 1 02:28:46 ibm authdaemond: FAIL, all modules rejected Jun 1 02:28:46 ibm authdaemond: vmysql: sql error[3]: MySQL server has gone away Jun 1 02:28:46 ibm pop3d: LOGIN FAILED, user=jjj, ip=[192.168.0.6] Jun 1 02:28:47 ibm pop3d: Disconnected, ip=[192.168.0.18] Jun 1 02:28:49 ibm pop3d: Disconnected, ip=[192.168.0.17] Jun 1 02:28:50 ibm pop3d: Disconnected, ip=[192.168.0.9] Jun 1 02:28:51 ibm pop3d: Connection, ip=[192.168.0.21] Jun 1 02:28:51 ibm authdaemond: received auth request, service=pop3, authtype=login Jun 1 02:28:51 ibm authdaemond: authvchkpw: trying this module Jun 1 02:28:51 ibm authdaemond: authvchkpw: sysusername=, sysuserid=89, sysgroupid=89, homedir=/usr/local/vpopmail/domains/aaa.com/ccc, [EMAIL PROTECTED], fullname=ccc, maildir=, quota=, options=disablewebmai