Re: [vchkpw] Re: SMTP Auth HOW? *UPDATE* AMD64
Peter Palmreuther wrote: However your Base64-encoded your login data, something went wrong. There's a '\n' that shouldn't be there. The correct B64-data would be: Username: YnJvb2tzQGJyb29rc3JveS5jb20= Password: amo= Please try again with these data and report in. Peter, After tyring with these values I get: ps1:/tmp # tail -f qmail.log 24162 write(2, "tcpserver: status: 0/20\n", 24) = 24 24162 write(2, "tcpserver: status: 1/20\n", 24) = 24 24403 write(2, "tcpserver: pid 24403 from 192.168.5.50\n", 39) = 39 24403 write(2, "tcpserver: ok 24403 0:192.168.5.50:25 :192.168.5.50::32838\n", 59) = 59 24403 write(1, "220 box.prostream.net ESMTP\r\n", 29) = 29 24403 write(1, "250-box.prostream.net\r\n250-PIPELINING\r\n250-8BITMIME\r\n250 AUTH LOGIN PLAIN CRAM-MD5\r\n", 84) = 84 24403 write(1, "334 VXNlcm5hbWU6\r\n", 18) = 18 24403 write(1, "334 UGFzc3dvcmQ6\r\n", 18) = 18 24403 write(4, "[EMAIL PROTECTED]", 25) = 25 24597 write(4, "\33\0\0\1\215 \0\0\0root\0[_O\\SRHM\0vpopmail", 31) = 31 24597 write(4, "\240\0\0\0\3select pw_name, pw_passwd, pw_uid, pw_gid, pw_gecos, pw_dir, pw_shell , pw_clear_passwd from vpopmail where pw_name = \"brooks\" and pw_domain = \"brooksroy.com\" ", 164) = 164 24597 --- SIGSEGV (Segmentation fault) @ 0 (0) --- 24403 --- SIGCHLD (Child exited) @ 0 (0) --- 24403 write(1, "454 oops, problem with child and I can\'t auth (#4.3.0)\r\n", 56) = 56 Also in my /var/log/messages I am seeing: vchkpw[24597]: segfault at rip rsp 007fb450 error 14 Thanks!
Re: [vchkpw] Re: SMTP Auth HOW? *UPDATE* AMD64
Peter Palmreuther wrote: Please replace your strace call by strace -fF -s 4096 -o /tmp/qmail.log -e write ... (replace '...' with 'softlimit -m ...' and so on). else we'll not see what qmail hands over to vchkpw. 3906 write(2, "tcpserver: status: 0/20\n", 24) = 24 3906 write(2, "tcpserver: status: 1/20\n", 24) = 24 10092 write(2, "tcpserver: pid 10092 from 192.168.5.50\n", 39) = 39 10092 write(2, "tcpserver: ok 10092 0:192.168.5.50:25 :192.168.5.50::32817\n", 59) = 59 10092 write(1, "220 box.prostream.net ESMTP\r\n", 29) = 29 10092 write(1, "504 auth type unimplemented (#5.5.1)\r\n", 38) = 38 10092 write(1, "250-box.prostream.net\r\n250-PIPELINING\r\n250-8BITMIME\r\n250 AUTH LOGIN PLAIN CRAM-MD5\r\n", 84) = 84 10092 write(1, "334 VXNlcm5hbWU6\r\n", 18) = 18 10092 write(1, "334 UGFzc3dvcmQ6\r\n", 18) = 18 10092 write(4, "[EMAIL PROTECTED]", 27) = 27 10412 write(2, "domain invalid brooksroy.com\n\n", 30) = 30 10412 write(5, "\33\0\0\1\215 \0\0\0root\0W_OYDVUA\0vpopmail", 31) = 31 10412 write(5, "\v\1\0\0\3INSERT INTO vlog set user=\"brooks\", passwd=\"jj\n\", domain=\"brooksroy.com\n\", logon=\"[EMAIL PROTECTED]", remoteip=\"192.168.5.50\", message=\"vchkpw-smtp: invalid user/domain characters [EMAIL PROTECTED]:192.168.5.50\", error=3, timestamp=1085433138", 271) = 271 10412 write(5, "\1\0\0\0\1", 5) = 5 10092 --- SIGCHLD (Child exited) @ 0 (0) --- 10092 write(1, "535 authentication failed (#5.7.1)\r\n", 36) = 36
Re: [vchkpw] Re: SMTP Auth HOW? *UPDATE* AMD64
Peter Palmreuther wrote:
Where
does the space character after '.com' comes from? Seems there's
something wrong with Base64-decoding / handing decoded values over to
vchkpw. I might be wrong, but all logs similar to this found in my
system logs have ':' instead of ' :'.
I'd say this is a case for strace/truss, to see if qmail already write
the blank into fd #3 or if vchpw insertes it, and in the former case
it's a file for 'dbg' or similar (and a '-g2' compiled qmail), to
figure who inserts it. In the latter case one has to 'dbg' vchpw to
see when this blank appears first.
Peter,
Here is a copy of the strace log:
ps1:/service/qmail-smtpd # strace /usr/local/bin/softlimit -m 2000
/usr/local/bin/tcpserver -v -H -R -l 0 -x
/usr/local/vpopmail/etc/tcp.smtp.cdb -c 20 -u 616 -g 616 0 25
/var/qmail/bin/qmail-smtpd /usr/local/vpopmail/bin/vchkpw /bin/true
2>&1
execve("/usr/local/bin/softlimit", ["/usr/local/bin/softlimit", "-m",
"2000", "/usr/local/bin/tcpserver", "-v", "-H", "-R", "-l", "0",
"-x", "/usr/local/vpopmail/etc/tcp.smtp.cdb", "-c", "20", "-u", "616",
"-g", "616", "0", "25", "/var/qmail/bin/qmail-smtpd",
"/usr/local/vpopmail/bin/vchkpw", "/bin/true"], [/* 44 vars */]) = 0
uname({sys="Linux", node="ps1", ...}) = 0
brk(0) = 0x504000
mmap(NULL, 4096, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1,
0) = 0x2a9556b000
open("/etc/ld.so.preload", O_RDONLY) = -1 ENOENT (No such file or
directory)
open("/etc/ld.so.cache", O_RDONLY) = 3
fstat(3, {st_mode=S_IFREG|0644, st_size=43645, ...}) = 0
mmap(NULL, 43645, PROT_READ, MAP_PRIVATE, 3, 0) = 0x2a9556c000
close(3) = 0
open("/lib64/libc.so.6", O_RDONLY) = 3
read(3,
"\177ELF\2\1\1\0\0\0\0\0\0\0\0\0\3\0>\0\1\0\0\0\20\335\1"..., 640) =
640
fstat(3, {st_mode=S_IFREG|0755, st_size=1534814, ...}) = 0
mmap(NULL, 2365888, PROT_READ|PROT_EXEC, MAP_PRIVATE, 3, 0) =
0x2a9566d000
mprotect(0x2a95791000, 1169856, PROT_NONE) = 0
mmap(0x2a9586d000, 253952, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_FIXED,
3, 0x10) = 0x2a9586d000
mmap(0x2a958ab000, 14784, PROT_READ|PROT_WRITE,
MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x2a958ab000
close(3) = 0
mmap(NULL, 4096, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1,
0) = 0x2a958af000
munmap(0x2a9556c000, 43645) = 0
getrlimit(0x2, 0x7fb410) = 0
setrlimit(RLIMIT_DATA, {rlim_cur=2000, rlim_max=RLIM_INFINITY}) = 0
getrlimit(0x3, 0x7fb410) = 0
setrlimit(RLIMIT_STACK, {rlim_cur=2000, rlim_max=RLIM_INFINITY}) = 0
getrlimit(0x8, 0x7fb410) = 0
setrlimit(RLIMIT_MEMLOCK, {rlim_cur=2000, rlim_max=RLIM_INFINITY})
= 0
getrlimit(0x9, 0x7fb410) = 0
setrlimit(RLIMIT_AS, {rlim_cur=2000, rlim_max=RLIM_INFINITY}) = 0
execve("/usr/local/bin/tcpserver", ["/usr/local/bin/tcpserver", "-v",
"-H", "-R", "-l", "0", "-x", "/usr/local/vpopmail/etc/tcp.smtp"...,
"-c", "20", "-u", "616", "-g", "616", "0", "25", ...], [/* 44 vars */])
= 0
uname({sys="Linux", node="ps1", ...}) = 0
brk(0) = 0x50d000
mmap(NULL, 4096, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1,
0) = 0x2a9556b000
open("/etc/ld.so.preload", O_RDONLY) = -1 ENOENT (No such file or
directory)
open("/etc/ld.so.cache", O_RDONLY) = 3
fstat(3, {st_mode=S_IFREG|0644, st_size=43645, ...}) = 0
mmap(NULL, 43645, PROT_READ, MAP_PRIVATE, 3, 0) = 0x2a9556c000
close(3) = 0
open("/lib64/libc.so.6", O_RDONLY) = 3
read(3,
"\177ELF\2\1\1\0\0\0\0\0\0\0\0\0\3\0>\0\1\0\0\0\20\335\1"..., 640) =
640
fstat(3, {st_mode=S_IFREG|0755, st_size=1534814, ...}) = 0
mmap(NULL, 2365888, PROT_READ|PROT_EXEC, MAP_PRIVATE, 3, 0) =
0x2a9566d000
mprotect(0x2a95791000, 1169856, PROT_NONE) = 0
mmap(0x2a9586d000, 253952, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_FIXED,
3, 0x10) = 0x2a9586d000
mmap(0x2a958ab000, 14784, PROT_READ|PROT_WRITE,
MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x2a958ab000
close(3) = 0
mmap(NULL, 4096, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1,
0) = 0x2a958af000
munmap(0x2a9556c000, 43645) = 0
rt_sigprocmask(SIG_BLOCK, [CHLD], NULL, 8) = 0
rt_sigaction(SIGCHLD, {0x401ac0, [], 0x400}, NULL, 8) = 0
rt_sigaction(SIGTERM, {0x401ab0, [], 0x400}, NULL, 8) = 0
rt_sigaction(SIGPIPE, {SIG_IGN}, NULL, 8) = 0
open("/etc/dnsrewrite", O_RDONLY|O_NONBLOCK) = -1 ENOENT (No such file
or directory)
open("/etc/resolv.conf", O_RDONLY|O_NONBLOCK) = 3
read(3, "nameserver 127.0.0.1\nnameserver "..., 64) = 64
read(3, "t\n", 64) = 2
read(3, "", 64) = 0
close(3) = 0
socket(PF_INET, SOCK_STREAM, IPPROTO_IP) = 3
fcntl(3, F_GETFL) = 0x2 (flags O_RDWR|O_LARGEFILE)
fcntl(3, F_SETFL, O_RDWR|O_NONBLOCK) = 0
setsockopt(3, SOL_SOCKET, SO_REUSEADDR, [-4611694294829367295], 4) = 0
bind(3, {sa
[vchkpw] Using SA with Qmail/vpopmail
On another side note, I was looking for some other assistance in setting up spamassassin so that it can filter out e-mail and just not even show up in my box. My spam as become out of control as I am sure many systems are. I installed qmail-filter, but unsure how to configure it so that it will just delete/drop the spam and not even show up in my box. At the moment SA is just tagging my spam with ***SPAM*** in my subjects of the e-mail. I am also looking for other suggestions on how to get more modules into SA so that it will get rid of more junkmail. Thanks for the suggestions, Brooks Roy
[vchkpw] SMTP Auth HOW? *UPDATE* AMD64
Ok, after the huge number of irrevlent replies to my last thread I am attempting to post an update on my SMTP Auth problem. I have tried just most smtp patchs, the on in the contrib dir of vpopmail and http://shupp.org/patches/netqmail-1.05-tls-smtpauth-20040207.patch I have included captures of below. Both patches apply without error and compile/install fine. I am running a Dual AMD Opteron system with suse 64 bit. I have had other people look at this situation and there are no solutions. I can only assume the patch has a problem with 64bit systems. Here is an example of login and error and run file: ps1:~/ # telnet ps1 25 Trying 192.168.5.50... Connected to ps1. Escape character is '^]'. 220 box.prostream.net ESMTP ehlo 250-box.prostream.net 250-STARTTLS 250-PIPELINING 250-8BITMIME 250 AUTH LOGIN PLAIN CRAM-MD5 AUTH LOGIN 334 VXNlcm5hbWU6 YnJvb2tzQGJyb29rc3JveS5jb20K 334 UGFzc3dvcmQ6 amoK 535 authentication failed (#5.7.1) ==> /var/log/mail <== May 23 15:10:53 ps1 vpopmail[14133]: vchkpw-smtp: invalid user/domain characters [EMAIL PROTECTED] :192.168.5.50 Here is my run for qmail-smtpd.. I tried running it as vpopmail AND root QMAILDUID=`id -u root` NOFILESGID=`id -g root` MAXSMTPD=`cat /var/qmail/control/concurrencyincoming` QMAILQUEUE="/var/qmail/bin/qmail-scanner-queue.pl" export QMAILQUEUE exec /usr/local/bin/softlimit -m 2000 \ /usr/local/bin/tcpserver -v -H -R -l 0 \ -x /usr/local/vpopmail/etc/tcp.smtp.cdb \ -c "$MAXSMTPD" \ -u "$QMAILDUID" -g "$NOFILESGID" 192.168.5.50 25 \ /usr/local/bin/fixcrio \ /usr/local/bin/rblsmtpd -r relays.ordb.org \ /var/qmail/bin/qmail-smtpd \ /usr/local/vpopmail/bin/vchkpw /bin/true 2>&1 Here are captures of both patches and then the compile of qmail, 1st the netqmail-1.05-tls-smtpauth-20040207.patch patch. ps1:/usr/src/mail/netqmail-1.05 # ./collate.sh You should see 7 lines of text below. If you see anything else, then something might be wrong. [1] Extracting qmail-1.03... [2] Patching qmail-1.03 into netqmail-1.05. Look for errors below: 24 [4] The previous line should say 24 if you used GNU patch. [5] Renaming qmail-1.03 to netqmail-1.05... [6] Continue installing qmail using the instructions found at: [7] http://www.lifewithqmail.org/lwq.html#installation ps1:/usr/src/mail/netqmail-1.05 # patch -p0 < ../netqmail-1.05-tls-smtpauth-20040207.patch patching file ./netqmail-1.05/base64.c patching file ./netqmail-1.05/base64.h patching file ./netqmail-1.05/conf-cc patching file ./netqmail-1.05/dns.c patching file ./netqmail-1.05/hier.c patching file ./netqmail-1.05/ipalloc.h patching file ./netqmail-1.05/Makefile patching file ./netqmail-1.05/Makefile-cert.mk patching file ./netqmail-1.05/qmail-control.9 patching file ./netqmail-1.05/qmail-remote.8 patching file ./netqmail-1.05/qmail-remote.c patching file ./netqmail-1.05/qmail-smtpd.8 patching file ./netqmail-1.05/qmail-smtpd.c patching file ./netqmail-1.05/README.auth patching file ./netqmail-1.05/ssl_timeoutio.c patching file ./netqmail-1.05/ssl_timeoutio.h patching file ./netqmail-1.05/TARGETS patching file ./netqmail-1.05/tls.c patching file ./netqmail-1.05/tls.h patching file ./netqmail-1.05/update_tmprsadh.sh ps1:/usr/src/mail/netqmail-1.05 # cd netqmail-1.05/ ps1:/usr/src/mail/netqmail-1.05/netqmail-1.05 # make ( cat warn-auto.sh; \ echo CC=\'`head -1 conf-cc`\'; \ echo LD=\'`head -1 conf-ld`\' \ ) > auto-ccld.sh cat auto-ccld.sh make-load.sh > make-load chmod 755 make-load cat auto-ccld.sh find-systype.sh > find-systype chmod 755 find-systype ./find-systype > systype ( cat warn-auto.sh; ./make-load "`cat systype`" ) > load chmod 755 load cat auto-ccld.sh make-compile.sh > make-compile chmod 755 make-compile ( cat warn-auto.sh; ./make-compile "`cat systype`" ) > \ compile chmod 755 compile ( ( ./compile tryvfork.c && ./load tryvfork ) >/dev/null \ 2>&1 \ && cat fork.h2 || cat fork.h1 ) > fork.h rm -f tryvfork.o tryvfork ./compile qmail-local.c qmail-local.c: In function `main': qmail-local.c:450: warning: return type of `main' is not `int' ./compile qmail.c ./compile quote.c ./compile now.c ./compile gfrom.c ./compile myctime.c ./compile slurpclose.c cat auto-ccld.sh make-makelib.sh > make-makelib chmod 755 make-makelib ( cat warn-auto.sh; ./make-makelib "`cat systype`" ) > \ makelib chmod 755 makelib ./compile case_diffb.c ./compile case_diffs.c ./compile case_lowerb.c ./compile case_lowers.c ./compile case_starts.c ./makelib case.a case_diffb.o case_diffs.o case_lowerb.o \ case_lowers.o case_starts.o ./compile getln.c ./compile getln2.c ./makelib getln.a getln.o getln2.o ./compile subgetopt.c ./compile sgetopt.c ./makelib getopt.a subgetopt.o sgetopt.o ./compile sig_alarm.c ( ( ./compile trysgprm.c && ./load trysgprm ) >/dev/null \ 2>&1 \ && echo \#define HASSIGPROCMASK 1 || exit 0 ) > hassgprm.h rm -f trysgprm.o trysgprm ./compile sig_block.c ( ( ./compile trysgact.c && ./
[vchkpw] SMTP Auth HOWTO?
I am installing vchkpw + SMTP AUTH + qmail. I have installed qmail with this patch: qmail-smtpd-auth-0.31 from http://members.elysium.pl/brush/qmail-smtpd-auth/ Here is my run tcpserver script for qmail-smtpd: exec /usr/local/bin/softlimit -m 1000 \ /usr/local/bin/tcpserver -v -H -R -l "$LOCAL" -x \ /usr/local/vpopmail/etc/tcp.smtp.cdb -c "$MAXSMTPD" -u \ "$QMAILDUID" -g vchkpw 192.168.5.50 25 \ /usr/local/bin/fixcrio \ /usr/local/bin/rblsmtpd -r relays.ordb.org \ /var/qmail/bin/qmail-smtpd ps1.prostream.net \ /usr/local/vpopmail/bin/vchkpw /bin/true & I cannot get any users to authenticate when sending email. I then tried taking out ps1.prostream.net after /var/qmail/bin/qmail-smtpd and it lets all users authenticate. I am running SUSE 9.0 x86-64 with vpopmail 5.4.0 Any ideas why its not working? Thanks, Brooks Roy
[vchkpw] vchkpw and courierimap and qmail
I am using vpopmail, courier imap, and qmail. I am a bit overwhealmed on which SMTP auth patch to use. I want it so that when a user checks their imap e-mail it enters their IP into a table for SMTP auth. Where do i proceed to go to get this to work properly? Thanks, Brooks
[vchkpw] QmailAdmin compiling on x86-64
I am trying to configure QmailAdmin for my system to work with my
xf86-64 system and not having luck.. Here is the output:
ps2:/usr/src/qmail/qmailadmin-1.2.0 # ./configure
--enable-htmldir=/home/prostream/prostream.net
--enable-cgibindir=/home/prostream/cgi-bin/
--enable-autoresponder-bin=/usr/local/bin
--enable-ezmlmdir=/usr/local/bin/ezmlm --enable-ezmlmidx=y
--enable-vpopuser=vpopmail --includedir=/usr/local/vpopmail/include
checking for a BSD-compatible install... /usr/bin/install -c
checking whether build environment is sane... yes
checking for gawk... gawk
checking whether make sets ${MAKE}... yes
checking build system type... Invalid configuration
`x86_64-unknown-linuxoldld': machine `x86_64-unknown' not recognized
configure: error: /bin/sh ./config.sub x86_64-unknown-linuxoldld failed
how can I get it to build for x86-64 target?
