Re: [vchkpw] Roaming-users could not work with secure pop3 ?
Thank you the problem has been solved - Original Message - From: Jeremy Kitchen [EMAIL PROTECTED] To: vchkpw@inter7.com Sent: Friday, May 19, 2006 7:28 PM Subject: Re: [vchkpw] Roaming-users could not work with secure pop3 ?
Re: [vchkpw] Roaming-users could not work with secure pop3 ?
Yes I use sslserver from ucspi-ssl. How can I solve this problem ? - Original Message - From: Jeremy Kitchen [EMAIL PROTECTED] To: vchkpw@inter7.com Sent: Thursday, May 18, 2006 11:22 PM Subject: Re: [vchkpw] Roaming-users could not work with secure pop3 ?
Re: [vchkpw] Roaming-users could not work with secure pop3 ?
On Thursday 18 May 2006 23:19, Bulent wrote: Yes I use sslserver from ucspi-ssl. great :) How can I solve this problem ? now that you've finally given the information I asked you for, I can give you a better answer. make sure you have the -e flag set so that sslserver will set the $TCP* environment variables, which is what vchkpw uses to determine what IP is connecting to the server. the reason the -e flag exists at all is because ucspi-ssl provides a ucspi-compliant interface[1], but most programs just assume a TCP protocol (including, strangely, qmail-smtpd *boggle*) [1]: http://cr.yp.to/proto/ucspi.txt -Jeremy -- Jeremy Kitchen ++ [EMAIL PROTECTED] http://ipaction.org/ -- defend your rights to fair use pgpkL0jxpJQHu.pgp Description: PGP signature
[vchkpw] Roaming-users could not work with secure pop3 ?
Hello I use vpopmail5.4 on qmail-1.03. I use securepop3 protocol (port 995 ) to incoming mails in my mail clients. When I use touch send/recieve or send an email to anyone with my vpopmail server, Vpopmail server could not write in open-smtp file. But When I use pop3 protocol (port 110) then it wrote open-smtp. How can I solve this problem ? Thanks
Re: [vchkpw] Roaming-users could not work with secure pop3 ?
* Bulent [EMAIL PROTECTED] [2006-05-18 14:13:23 +0300]: I use securepop3 protocol (port 995 ) to incoming mails in my mail clients. When I use touch send/recieve or send an email to anyone with my vpopmail server, Vpopmail server could not write in open-smtp file. But When I use pop3 protocol (port 110) then it wrote open-smtp. How can I solve this problem ? http://www.tnpi.biz/internet/mail/toaster/patches/tcpserver-mysql.shtml -- Kim Christensen We have just lost cabin pressure
Re: [vchkpw] Roaming-users could not work with secure pop3 ?
On Thursday 18 May 2006 04:25, Kim Christensen wrote: * Bulent [EMAIL PROTECTED] [2006-05-18 14:13:23 +0300]: I use securepop3 protocol (port 995 ) to incoming mails in my mail clients. When I use touch send/recieve or send an email to anyone with my vpopmail server, Vpopmail server could not write in open-smtp file. But When I use pop3 protocol (port 110) then it wrote open-smtp. How can I solve this problem ? how are you enabling ssl? Are you using the sslserver program from ucspi-ssl? http://www.tnpi.biz/internet/mail/toaster/patches/tcpserver-mysql.shtml way to COMPLETELY ignore the problem. *claps* -Jeremy -- Jeremy Kitchen ++ [EMAIL PROTECTED] http://ipaction.org/ -- defend your rights to fair use pgpBU6Zs8g17W.pgp Description: PGP signature
Re: [vchkpw] Roaming-users could not work with secure pop3 ?
That's to say, First I have to convert cdb database to mysql. don't I ? - Original Message - From: Jeremy Kitchen [EMAIL PROTECTED] To: vchkpw@inter7.com Sent: Thursday, May 18, 2006 7:43 PM Subject: Re: [vchkpw] Roaming-users could not work with secure pop3 ?
Re: [vchkpw] Roaming-users could not work with secure pop3 ?
On Thursday 18 May 2006 11:04, Bulent wrote: That's to say, First I have to convert cdb database to mysql. don't I ? if you want to use that patch, yes, but that patch is not the solution to your problem. Please answer the question I asked you in the previous email. -Jeremy -- Jeremy Kitchen ++ [EMAIL PROTECTED] http://ipaction.org/ -- defend your rights to fair use pgpe8iLhront2.pgp Description: PGP signature
Re: [vchkpw] Roaming-users could not work with secure pop3 ?
I use openssl for secure pop3(port 995). Also I use cdb for database of users. - Original Message - From: Jeremy Kitchen [EMAIL PROTECTED] To: vchkpw@inter7.com Sent: Thursday, May 18, 2006 9:07 PM Subject: Re: [vchkpw] Roaming-users could not work with secure pop3 ?
Re: [vchkpw] Roaming-users could not work with secure pop3 ?
On Thursday 18 May 2006 12:53, Bulent wrote: I use openssl for secure pop3(port 995). ... right. What I meant was, are you using xinetd with some sort of ssl wrapper, or tcpserver with an ssl patch or sslserver from ucspi-ssl, or what? -Jeremy -- Jeremy Kitchen ++ [EMAIL PROTECTED] http://ipaction.org/ -- defend your rights to fair use pgpaFGIPe5XLV.pgp Description: PGP signature
Re: [vchkpw] Roaming-users could not work with secure pop3 ?
My guess is that he's using a program that just encrypts a connection to localhost:110. If that's the case, it will appear that the user is coming from localhost, and therefore not possible to open up SMTP relaying for them. If you follow Bill Shupp's directions http://shupp.org/toaster/ for setting up pop/secure-pop, roaming-users should work. I'm a big fan of using SMTP AUTH instead of roaming-users (aka pop-before-smtp). If they configure their email client for SMTP AUTH, then you won't have to fix roaming-users for secure pop3. -- Tom Collins - [EMAIL PROTECTED] QmailAdmin: http://qmailadmin.sf.net/ Vpopmail: http://vpopmail.sf.net/
Re: [vchkpw] roaming-users issue
On Wed, 2005-12-28 at 09:56 +0200, Cristi Tauber wrote: hello ppl, i installed qmail + vpopmail + mysql + courier-imap on a debian 3.1 with kernel 2.6. vpopmail was configured as : ./configure --enable-logging=p --enable-auth-module=mysql \ --disable-passwd --enable-clear-passwd --disable-many-domains \ --enable-auth-logging --enable-sql-logging --enable-valias \ --disable-mysql-limits --enable-roaming-users \ --enable-relay-clear-minutes=120 --enable-learn-passwords \ --enable-libdir=/usr/lib see ?? enable-roaming-users ... qmail is with smtp-auth patch. if i put authentification on my outgoing server i can relay, but pop-before-smtp doesn't work !!! i try several vpopmail versions ... so i think is a configuration problem not vpopmail installation one. but ... i don't have a clue ... ideeas ??? Cristi a small add-on. i look-up in the relay table in mysql and the ip's authenticated with pop are there : mysql select * from relay; +++ | ip_addr| timestamp | +++ | 82.y.x.11 | 1135753861 | | 212.y.x.143| 1135756281 | +++ 2 rows in set (0.00 sec) but i cannot send : error #5.7.1 that domains insn't in my allowed rcphosts. cristi --- This message and its contents have been scanned and certified for transmission as being free from malicious code by eTrust Antivirus. This message may contain confidential, privileged or other legally protected information. It is intended for the addressee(s) only. If you are not the addressee, or someone the addressee authorized to receive this message, you are prohibited from copying, distributing or otherwise using it. Please notify the sender and return it.Thank you.
[vchkpw] roaming-users issue
hello ppl, i installed qmail + vpopmail + mysql + courier-imap on a debian 3.1 with kernel 2.6. vpopmail was configured as : ./configure --enable-logging=p --enable-auth-module=mysql \ --disable-passwd --enable-clear-passwd --disable-many-domains \ --enable-auth-logging --enable-sql-logging --enable-valias \ --disable-mysql-limits --enable-roaming-users \ --enable-relay-clear-minutes=120 --enable-learn-passwords \ --enable-libdir=/usr/lib see ?? enable-roaming-users ... qmail is with smtp-auth patch. if i put authentification on my outgoing server i can relay, but pop-before-smtp doesn't work !!! i try several vpopmail versions ... so i think is a configuration problem not vpopmail installation one. but ... i don't have a clue ... ideeas ??? Cristi --- This message and its contents have been scanned and certified for transmission as being free from malicious code by eTrust Antivirus. This message may contain confidential, privileged or other legally protected information. It is intended for the addressee(s) only. If you are not the addressee, or someone the addressee authorized to receive this message, you are prohibited from copying, distributing or otherwise using it. Please notify the sender and return it.Thank you.
Re: [vchkpw] roaming users
When I do the command qmailctl cdbmy box reload /etc/tcp.smtp and /etc/tcp.pop3. It is not reading from /home/vpopmail/etc/tcp.smtp. How can I get it to read the ~vpopmail/etc/tcp.smtp instead, and how can I know that my vpopmail is recompiling my tcp.smtp file when there is pop authentication.ThanksRaymondUpon exiting my qmailadmin, it tells me the version of qmailadmin and vpopmail I'm using. The vpopmail still say version 5.4.3 you can check version with ~vpopmail/bin/vadduser -v and you need to recompile Qmailadmin for update version. I still can not do pop before smtp. qmailctl cdb ~vpopmail/bin/clearopensmtp qmailctl restart /--enable-tcpserver-file=/home/vpopmail/etc/tcp.smtp where is tcp.smtp? I use the whereis command for the tcp.smtp, it tells me its located in /etc/tcp.smtp.I don't know what is the problem you need to use 'locate' command On Thursday 17 June 2004 05:09 pm, Raymond Luong wrote: I jus t upgraded my vpopmail 5.4.3 to 5.4.4 with roaming user enable. here is my following configuration:./configure \--enable-roaming-users \ --enable-tcprules-prog=/usr/local/bin/tcprules /--enable-tcpserver-file=/home/vpopmail/etc/tcp.smtp --enable-relay-clear-minutes=180--enable-logging=p \ /--disable-passwd \--enable-clear-passwd \--disable-domain-quotas \ /--enable-auth-module=mysql \--disable-many-domains \--enable-auth-logging \--enable-mysql-logging \ /--enable-valias \--disable-mysql-limits�then I follow with:make�make install-stripThere was no error in return, everything seem to compile fine.Upon exiting my qmailadmin, it tells me the version of qmailadmin and vpopmail I'm using. The vpopmail still say version 5.4.3. I would like to know is that true or not? Does qmailadmin check vpopmail version everrytime or does it just record the vpopmail version when it was� install.My next problem. It seem even though I enable roaming users for vpopmail, I still can not do pop before smtp. When I try to send from outlook express, still tell me I'm not on the allow rcpthosts list. Is there some step I'm missing?I check my tcprules and tcp.smtp files and they� where they support to be but when I use the whereis command for the tcp.smtp, it tells me its located in /etc/tcp.smtp.I don't know what is the problem. Can someone offer me some suggestion.Raymond -- Best Regard, Songrit Srilasak Technical Support Network Administrators eGuide (Thailand) Co., Ltd. 25th Flr., Empire Tower (park wing), 195 South Sathorn Rd., Yannawa, Sathorn, Bangkok 10120 Tel: 0-2670-0888 ext 600 Fax: 0-2670-0889
Re: [vchkpw] roaming users
>From what you are saying, I will have to recompile everything to get roaming user to work?raymond Franck (Linuxpourtous) wrote: I just upgraded my vpopmail 5.4.3 to 5.4.4 with roaming user enable. There was no error in return, everything seem to compile fine.Upon exiting my qmailadmin, it tells me the version of qmailadmin and vpopmail I'm using. The vpopmail still say version 5.4.3. I would like to know is that true or not? Yes, that is true. Qmailadmin is staticlly linked to vpopmail, which means that every time you recompile vpopmail you have to compile _everything_ that uses it. Qmailadmin, sqwebmail, the qmail-smtpd patch that verifies incoming email... anything that uses vpopmail for authentication. Rick
Re: [vchkpw] roaming users
please don't post html only messages to mailing lists (or even multipart/alternative) use text only. On Friday 18 June 2004 11:06 am, Raymond Luong wrote: When I do the command qmailctl cdb my box reload /etc/tcp.smtp and /etc/tcp.pop3. It is not reading from /home/vpopmail/etc/tcp.smtp. How can I get it to read the ~vpopmail/etc/tcp.smtp instead, and how can I know that my vpopmail is recompiling my tcp.smtp file when there is pop authentication. the cdb file that tcpserver reads is specified on tcpserver's command line. http://cr.yp.to/ucspi-tcp/tcpserver.html simply modify your tcpserver command line for the respective service and restart it. Simple as that. -Jeremy -- Jeremy Kitchen ++ Systems Administrator ++ Inter7 Internet Technologies, Inc. [EMAIL PROTECTED] ++ www.inter7.com ++ 866.528.3530 ++ 847.492.0470 int'l kitchen @ #qmail #gentoo on EFnet ++ scriptkitchen.com/qmail
Re: [vchkpw] roaming users
I would like to add, since my qmailctl cdb is still reading off my /etc/tcp.smtp, and assuming my vpopmail is recompileing my tcp.smtp everytime someone login through pop3, can I just edit my qmailctl and qmail-smtp file and point the tcp.smtp at my ~vpopmail/etc/tcp.smtp? Will that work. I am afraid to do it because my mail box is a live production box. Don't want to do it unless I get more feed back.raymond When I do the command qmailctl cdbmy box reload /etc/tcp.smtp and /etc/tcp.pop3. It is not reading from /home/vpopmail/etc/tcp.smtp. How can I get it to read the ~vpopmail/etc/tcp.smtp instead, and how can I know that my vpopmail is recompiling my tcp.smtp file when there is pop authentication.ThanksRaymond
Re: [vchkpw] roaming users
On Friday 18 June 2004 11:30 am, Raymond Luong wrote: I would like to add, since my qmailctl cdb is still reading off my /etc/tcp.smtp, and assuming my vpopmail is recompileing my tcp.smtp everytime someone login through pop3, can I just edit my qmailctl and qmail-smtp file and point the tcp.smtp at my ~vpopmail/etc/tcp.smtp? Will that work. I am afraid to do it because my mail box is a live production box. Don't want to do it unless I get more feed back. well, if you're using vpopmail's roaming users you'll probably want to use vpopmail's built in function to rebuild the cdb file or you won't get the proper relay entries (at least until the next time someone checks their mail) ~vpopmail/bin/clearopensmtp Then just tell tcpserver to look at that cdb file and you're all set. -Jeremy -- Jeremy Kitchen ++ Systems Administrator ++ Inter7 Internet Technologies, Inc. [EMAIL PROTECTED] ++ www.inter7.com ++ 866.528.3530 ++ 847.492.0470 int'l kitchen @ #qmail #gentoo on EFnet ++ scriptkitchen.com/qmail
Re: [vchkpw] roaming users
Well, I'm really sorry, and I'm very thankful for your help but can you give me more detail on how to tell my tcpserver to look at my ~vpopmail/etc/tcp.smtp instead. Also, I am using vpopmail's roaming usres function, but it is not working. thats why I'm writing this email. raymond On Friday 18 June 2004 11:30 am, Raymond Luong wrote: I would like to add, since my qmailctl cdb is still reading off my /etc/tcp.smtp, and assuming my vpopmail is recompileing my tcp.smtp everytime someone login through pop3, can I just edit my qmailctl and qmail-smtp file and point the tcp.smtp at my ~vpopmail/etc/tcp.smtp? Will that work. I am afraid to do it because my mail box is a live production box. Don't want to do it unless I get more feed back. well, if you're using vpopmail's roaming users you'll probably want to use vpopmail's built in function to rebuild the cdb file or you won't get the proper relay entries (at least until the next time someone checks their mail) ~vpopmail/bin/clearopensmtp Then just tell tcpserver to look at that cdb file and you're all set. -Jeremy -- Jeremy Kitchen ++ Systems Administrator ++ Inter7 Internet Technologies, Inc. [EMAIL PROTECTED] ++ www.inter7.com ++ 866.528.3530 ++ 847.492.0470 int'l kitchen @ #qmail #gentoo on EFnet ++ scriptkitchen.com/qmail
Re: [vchkpw] roaming users
http://scripkitchen.com/godkills.jpg -- please, think of the kittens! On Friday 18 June 2004 11:43 am, Raymond Luong wrote: Well, I'm really sorry, and I'm very thankful for your help but can you give me more detail on how to tell my tcpserver to look at my ~vpopmail/etc/tcp.smtp instead. http://cr.yp.to/ucspi-tcp/tcpserver.html look at the -x flag. Then, look at your startup script. It should magically come to you. Also, I am using vpopmail's roaming usres function, but it is not working. thats why I'm writing this email. right, probably because you're not telling tcpserver to look at the proper file. -Jeremy -- Jeremy Kitchen ++ Systems Administrator ++ Inter7 Internet Technologies, Inc. [EMAIL PROTECTED] ++ www.inter7.com ++ 866.528.3530 ++ 847.492.0470 int'l kitchen @ #qmail #gentoo on EFnet ++ scriptkitchen.com/qmail
Re: [vchkpw] roaming users
My startup script is my qmailctl script right? I'm really sorry about the stupid question. This is like navigate the Universe for me. raymond http://scripkitchen.com/godkills.jpg -- please, think of the kittens! On Friday 18 June 2004 11:43 am, Raymond Luong wrote: Well, I'm really sorry, and I'm very thankful for your help but can you give me more detail on how to tell my tcpserver to look at my ~vpopmail/etc/tcp.smtp instead. http://cr.yp.to/ucspi-tcp/tcpserver.html look at the -x flag. Then, look at your startup script. It should magically come to you. Also, I am using vpopmail's roaming usres function, but it is not working. thats why I'm writing this email. right, probably because you're not telling tcpserver to look at the proper file. -Jeremy -- Jeremy Kitchen ++ Systems Administrator ++ Inter7 Internet Technologies, Inc. [EMAIL PROTECTED] ++ www.inter7.com ++ 866.528.3530 ++ 847.492.0470 int'l kitchen @ #qmail #gentoo on EFnet ++ scriptkitchen.com/qmail
Re: [vchkpw] roaming users
http://scriptkitchen.com/godkills.jpg --- please, think of the kittens. On Friday 18 June 2004 11:57 am, Raymond Luong wrote: My startup script is my qmailctl script right? I'm really sorry about the stupid question. This is like navigate the Universe for me. not likely. You should go back and look at whatever you used to install and set up qmail to see where it says your startup scripts are. If you can't figure it out you should remove what you have and follow www.lifewithqmail.org so you know what you're doing. -Jeremy -- Jeremy Kitchen ++ Systems Administrator ++ Inter7 Internet Technologies, Inc. [EMAIL PROTECTED] ++ www.inter7.com ++ 866.528.3530 ++ 847.492.0470 int'l kitchen @ #qmail #gentoo on EFnet ++ scriptkitchen.com/qmail
Re: [vchkpw] roaming users
Is the start up script my qmail-smtpd run file. Because in that file it has a command -v -x /etc/tcp.smtp.cdb \ if I change that to ~vpopmail/etc/tcp.smtp.cdb will that work. Also do I need to change qmailctl to point to ~vpopmail/etc/tcp.smtp I followed the instruction from http://www.pipeline.com.au/staff/mbowe/isp/webmail-server.htm in building my box. Thanks a lot for your input so far. Raymond http://scriptkitchen.com/godkills.jpg --- please, think of the kittens. On Friday 18 June 2004 11:57 am, Raymond Luong wrote: My startup script is my qmailctl script right? I'm really sorry about the stupid question. This is like navigate the Universe for me. not likely. You should go back and look at whatever you used to install and set up qmail to see where it says your startup scripts are. If you can't figure it out you should remove what you have and follow www.lifewithqmail.org so you know what you're doing. -Jeremy -- Jeremy Kitchen ++ Systems Administrator ++ Inter7 Internet Technologies, Inc. [EMAIL PROTECTED] ++ www.inter7.com ++ 866.528.3530 ++ 847.492.0470 int'l kitchen @ #qmail #gentoo on EFnet ++ scriptkitchen.com/qmail
[vchkpw] roaming users
I jus t upgraded my vpopmail 5.4.3 to 5.4.4 with roaming user enable. here is my following configuration:./configure \--enable-roaming-users \ --enable-tcprules-prog=/usr/local/bin/tcprules--enable-tcpserver-file=/home/vpopmail/etc/tcp.smtp --enable-relay-clear-minutes=180--enable-logging=p \--disable-passwd \--enable-clear-passwd \--disable-domain-quotas \--enable-auth-module=mysql \--disable-many-domains \--enable-auth-logging \--enable-mysql-logging \--enable-valias \--disable-mysql-limits then I follow with:make make install-stripThere was no error in return, everything seem to compile fine.Upon exiting my qmailadmin, it tells me the version of qmailadmin and vpopmail I'm using. The vpopmail still say version 5.4.3. I would like to know is that true or not? Does qmailadmin check vpopmail version everrytime or does it just record the vpopmail version when it was install.My next problem. It seem even though I enable roaming users for vpopmail, I still can not do pop before smtp. When I try to send from outlook express, still tell me I'm not on the allow rcpthosts list. Is there some step I'm missing?I check my tcprules and tcp.smtp files and they where they support to be but when I use the whereis command for the tcp.smtp, it tells me its located in /etc/tcp.smtp.I don't know what is the problem. Can someone offer me some suggestion.Raymond
Re: [vchkpw] roaming users
Upon exiting my qmailadmin, it tells me the version of qmailadmin and vpopmail I'm using. The vpopmail still say version 5.4.3 you can check version with ~vpopmail/bin/vadduser -v and you need to recompile Qmailadmin for update version. I still can not do pop before smtp. qmailctl cdb ~vpopmail/bin/clearopensmtp qmailctl restart /--enable-tcpserver-file=/home/vpopmail/etc/tcp.smtpbr / where is tcp.smtp? I use the whereis command for the tcp.smtp, it tells me its located in /etc/tcp.smtp.br /I don't know what is the problem you need to use 'locate' command On Thursday 17 June 2004 05:09 pm, Raymond Luong wrote: I jus t upgraded my vpopmail 5.4.3 to 5.4.4 with roaming user enable. here is my following configuration:.br //configure \--enable-roaming-users \ br /--enable-tcprules-prog=/usr/local/bin/tcprulesbr /--enable-tcpserver-file=/home/vpopmail/etc/tcp.smtpbr / --enable-relay-clear-minutes=180--enable-logging=p \br /--disable-passwd \br /--enable-clear-passwd \--disable-domain-quotas \br /--enable-auth-module=mysql \br /--disable-many-domains \--enable-auth-logging \br /--enable-mysql-logging \br /--enable-valias \br /--disable-mysql-limitsbr /then I follow with:br /makebr /make install-stripbr /There was no error in return, everything seem to compile fine.Upon exiting my qmailadmin, it tells me the version of qmailadmin and vpopmail I'm using. The vpopmail still say version 5.4.3. I would like to know is that true or not? Does qmailadmin check vpopmail version everrytime or does it just record the vpopmail version when it was install.br /My next problem. It seem even though I enable roaming users for vpopmail, I still can not do pop before smtp. When I try to send from outlook express, still tell me I'm not on the allow rcpthosts list. Is there some step I'm missing?br /I check my tcprules and tcp.smtp files and they where they support to be but when I use the whereis command for the tcp.smtp, it tells me its located in /etc/tcp.smtp.br /I don't know what is the problem. Can someone offer me some suggestion.br /br /Raymondbr /br /br /br / -- Best Regard, Songrit Srilasak Technical Support Network Administrators eGuide (Thailand) Co., Ltd. 25th Flr., Empire Tower (park wing), 195 South Sathorn Rd., Yannawa, Sathorn, Bangkok 10120 Tel: 0-2670-0888 ext 600 Fax: 0-2670-0889
[vchkpw] Roaming users / POP toasters
How are people on this list using POP before SMTP (Roaming users) when their POP3 server is separate from their SMTP server? The way that I understand that roaming users work is that once you pop in and check mail, the POP3 server rebuilds the tcpserver cdb file with the users IP address added as RELAYCLIENT. How does the separate SMTP server receive this file in a timely manner? Are you NFS mounting the tcpserver CDB file? If so, how is performance in this scenario? Thanks for any response. John Councilman Broadband Systems Engineer / Postmaster Knology [EMAIL PROTECTED] Cell: 706-773-5076 Office: 706-634-6742 --- Outgoing mail is certified Virus Free. Checked by AVG anti-virus system (http://www.grisoft.com). Version: 6.0.581 / Virus Database: 368 - Release Date: 2/9/2004
RE: [vchkpw] Roaming users / POP toasters
We do it, but we are using MySQL auth. The servers only need to see the sql server to get the information. Im also using the tcpserver patch so as to not have to rebuild the cdb file. Shane From: John [mailto:[EMAIL PROTECTED] Sent: Friday, 27 February 2004 12:11 AMTo: [EMAIL PROTECTED]Subject: [vchkpw] Roaming users / POP toasters How are people on this list using POP before SMTP (Roaming users) when their POP3 server is separate from their SMTP server? The way that I understand that roaming users work is that once you pop in and check mail, the POP3 server rebuilds the tcpserver cdb file with the users IP address added as RELAYCLIENT. How does the separate SMTP server receive this file in a timely manner? Are you NFS mounting the tcpserver CDB file? If so, how is performance in this scenario? Thanks for any response. John Councilman Broadband Systems Engineer / Postmaster Knology [EMAIL PROTECTED] Cell: 706-773-5076 Office: 706-634-6742 ---Outgoing mail is certified Virus Free.Checked by AVG anti-virus system (http://www.grisoft.com).Version: 6.0.581 / Virus Database: 368 - Release Date: 2/9/2004
[vchkpw] roaming users
Hello, I've been through the archives and poked around in google and cannot find an answer to this one. I set up and have been running qmail/vpopmail/smtp-after-pop3 for the last two years. I recently, 6 months ago, rebuilt my qmail/vpopmail from scratch due to a harddrive failure. When I rebuilt it, from clean sources and following the steps in David Sill's qmail handbook I enabled roaming users. I configured my laptop's email client to download my email from my qmail server. Worked beautifully. I sent email after the pop3 auth. Worked beautifully. I did this from a cafe with a wireless connection. Now the only place I can send email from is that same cafe. The symptom is that if I try to connect to my qmail smtp server (port 25) from the cafe where I can send email it works beautifully, from anyplace else qmail won't even allow a connection on port 25. Even after pop3 auth. I am assuming that the ip address of the lovely little cafe is now cached someplace by vpopmail. I am also assuming that: 1) there must be some way to clear that cache (if it exsists) 2) I don't fully understand the concept of roaming users in vpopmail 3) there is some configuration bit that I missed that will when used allow me to send email from many lovely little cafes which are much closer to my house. To address these things I am asking: 1) If the cache does exsist where is the documention that tells me how to clear it? 2) If its possible to have roaming users to use variable ip addresses where is the documentation for that? any help would be great. sparky
Re: [vchkpw] roaming users
davila wrote: 1) there must be some way to clear that cache (if it exsists) ~vpopmail/bin/clearopensmtp does that job. Somewhere in your install instructions you should be adding that to crontab so it is run periodically. 2) I don't fully understand the concept of roaming users in vpopmail If you add --enable-roaming-users when you comile vpopmail, vdelivermail will add the IP address of mail users that successfully login to check mail to a list. (~vpopmail/etc/open_smtp) That list is combined with another list of clients that is always allowed to relay. (I don't remember right now where that list is kept. My base mail setup doesn't change much.) The combined lists ends up in a cdb file (~vpopmail/etc/tcp.smtp.cdb) which is used to decide if an incoming smtp request will be allowed. (Your file names may be different.) 3) there is some configuration bit that I missed that will when used allow me to send email from many lovely little cafes which are much closer to my house. If old entries are not removed, you are probably missing the cron job. If new entries are not being added, are you sure you are really using the right vdelivermail binary? If the binary is right maybe you have mixed two different sets of installation instructions. Different people put things in different places in their toasters, so you may not be able to mix them. To address these things I am asking: 1) If the cache does exsist where is the documention that tells me how to clear it? There isn't a lot of documentation... or there is a lot of documentation on the individual parts, but not much on how it all fits together. The biggest problem with Qmail is that it works so well, when there is a problem, I don't remember anything about how to set it up and I have to learn it all over. 2) If its possible to have roaming users to use variable ip addresses where is the documentation for that? It is possible. I mostly used Bill Shupp's patches and toaster, but I use CDB instead of MySQL, so I had to change a few things. http://www.shupp.org/ Rick
Re: [vchkpw] roaming users
On Tuesday 24 February 2004 5:36 pm, davila wrote: Hello, I've been through the archives and poked around in google and cannot find an answer to this one. I set up and have been running qmail/vpopmail/smtp-after-pop3 for the last two years. I recently, 6 months ago, rebuilt my qmail/vpopmail from scratch due to a harddrive failure. When I rebuilt it, from clean sources and following the steps in David Sill's qmail handbook I enabled roaming users. I configured my laptop's email client to download my email from my qmail server. Worked beautifully. I sent email after the pop3 auth. Worked beautifully. I did this from a cafe with a wireless connection. Now the only place I can send email from is that same cafe. The symptom is that if I try to connect to my qmail smtp server (port 25) from the cafe where I can send email it works beautifully, from anyplace else qmail won't even allow a connection on port 25. Even after pop3 auth. If it does not allow a connection from some locates but it does allow a connection from another location then it's highly possible the connection is being blocked by the network you are on. Many sites block outbound port 25 connections. An easy way to test is: telnet your-mail-servers-ip 25 If you do not get a connection then it is being blocked by some firewall. Ken Jones
Re: [vchkpw] roaming users
- Original Message - From: davila [EMAIL PROTECTED] 2) I don't fully understand the concept of roaming users in vpopmail Here is some text that I wrote so it could be distributed with vpopmail-5.4.0 as README.roamingusers : November 2003 : Michael Bowe [EMAIL PROTECTED] VPOPMAIL ROAMING USERS ~~ Latest version available from : http://www.pipeline.com.au/staff/mbowe/isp/webmail-server.htm With qmail, the typical way to control mail relaying is to put a list of rules into a file called tcp.smtp. The tcprules program is then used to compile this file into cdb database format with the output being stored in a file called tcp.smtp.cdb. The tcpserver program is configured (using the -x parameter) to read this file and thus know which SMTP clients are permitted to relay mail. This type of configuration works well if there is a known range of IP addresses that are permitted to relay mail. eg the IP's on the qmail server's local LAN. However if the qmail server needs to provide outbound SMTP services for clients who may be connecting from any IP, you are going to run into problems. What is needed is some way to automate the process of granting users the ability to relay mail, without opening up access to all and sundry on the Internet. vpopmail includes a solution for this problem. The solution is known as roaming users and is implemented with a technique known as POP-before-SMTP. Once a client has successfully authenticated via POP3, vpopmail will add the client's IP to a list. vpopmail then merges this list with the contents of the tcp.smtp file and runs the tcprules program to compile a new version of the tcp.smtp.cdb file. Thus the client can now relay mail. In addition to storing the client's IP address, vpopmail will also store the time of authentication. The postmaster uses a cronjob on the qmail server to periodically (eg once per hour) run the clearopensmtp program. This program scans through the list of roaming clients and removes any entries that exceed the nominated age (eg 3 hours). This ensures that the list of IPs does not grow out of bounds, and that the roaming IPs are closed within a reasonable timeframe after being opened. Configuration options for vpopmail that relate to roaming users : ./configure \ --enable-roaming-users \ - enable roaming users functionality --enable-tcprules-prog=path \ - defaults to /usr/local/bin/tcprules --enable-tcpserver-file=path \- defaults to /home/vpopmail/etc/tcp.smtp --enable-relay-clear-minutes=minutes - defaults to 180 Notes : qmail servers are typically built with the tcp.smtp files being located in the /etc directory. This is not usually suitable for vpopmail roaming users, since the /etc directory will (should) not have write permissions for the vpopmail user. Therefore it is not going to be possible for vpopmail to write out updated versions of the tcp.smtp.cdb file. For use with roaming users, it is recommended that the tcp.smtp files are stored in ~vpopmail/etc If a POP user auths, and their IP already exists in the roaming IP list, the timestamp for the entry is updated, but the tcprules program is not run. There is no need to rebuild the tcp.smtp.cdb file as the IP address is already permitted to relay. Rebuilding the file will only waste disk and CPU time. If the vpopmail server is using the default cdb authentication backend, then the list of roaming IPs will be stored in a file called ~vpopmail/etc/open-smtp. If the vpopmail server is using the MySQL backend, the roaming IPs will be stored in a database table called relay. The SQL backend will give better performance on a busy server. Either way though, you should be cautious about enabling roaming user functionality on a very busy server, as a large amount of disk and CPU will be used with the continual rebuilding of the tcp.smtp.cdb file. If the server is busy enough you could run into nasty file locking issues which will cause vpopmail password authentication to intermittently fail. If you absolutely must have POP-before-SMTP functionality on your busy server, then there are only two possible solutions that I can think of : 1) you could try putting the tcp.smtp files onto a RAM disk, or 2) use vpopmail's MySQL auth backend, plus use Matt Simerson's tcpserver patch that allows all of the tcp.smtp files to be stored in MySQL http://matt.simerson.net/computing/mail/qmail/ucspi-tcp-0.88-mysql.patch Over time POP-before-SMTP seems to slowly becoming a less favored way of allowing roaming users to relay mail. SMTP-Auth appears to becoming the more preferred option, as it scales much more easily on a busy server. However for a small to medium sized server, POP-before-SMTP is still quite a workable option. If you would like investigate the use of SMTP-Auth, take a look at this patch http://www.fehcom.de/qmail/smtpauth.html#PATCHES
Re: [vchkpw] roaming users, configure not working
Hi Payal, On a previously installed vpopmail system, how do I know which parameters were passed to ./configure ? I have the directory in which the tar file was untarred into. Then look into the config.status file. Also should the tcpserver file be /etc/tcp.smtp or /home/vpopmail/etc/tcp.smtp ? Both locations will work fine, but vpopmail will need root access if you want to use the /etc location. What exactly do I do for giving vpopmail root access? chown root ~vpopmail/bin/vchkpw chmod u+s ~vpopmail/bin/vchkpw However, I'd only suggest to do this if you have your domains managed under different user id's (in fact, then you'll _need_ these modifications); if you're going with all domains under the vpopmail id, you'll go better with ~vpopmail/etc/tcp.smtp. And address extensions=OFF as shown above, will it mean I won't be able to use .qmail-payal-linux kind of addresses? No; these addresses will be handled by qmail itself _before_ vpopmail drops in (through being called out of .qmail-default) and work in either case. Then what is the use of qmail-ext parameter for ./configure ? See the ChangeLog (this option appeared in 4.10.12): - added new configure option --enable-qmail-ext. This was the default in old installations. Now there is an option to turn it off. --enable-qmail-ext=y (default) will deliver mail for [EMAIL PROTECTED] to [EMAIL PROTECTED] --enable-qmail-ext=n will NOT deliver mail for [EMAIL PROTECTED] to [EMAIL PROTECTED] It will only deliver it to [EMAIL PROTECTED] Jonas
[vchkpw] Roaming users
I am using FreeBSD 4.7 and have configured vpopmail with enable-roaming=y and still roaming (Alternate ISP Clients) cannot authenticate. What am I missing? Anthony Aveley
[vchkpw] roaming users don't work
Hello, I'm having problems with roaming users, I am using vpopmail5.2.1 and courier-imap1.5.3, i compiled vpopmail with: --enable-roaming-users=y --enable-tcpserver-file=/home/vpopmail/etc/tcp.smtp --enable-relay-clear-minutes=60 ..but it just doesn't seem to work, i mean... i cannot relay unless I modify /etc/tcp.smtp (and then creating tcp.smtp.cdb) manually... any ideas? /home/vpopmail/etc/tcp.smtp and /home/vpopmail/etc/tcp.smtp are always empty... i followed the lifewithqmail instructions to install and run qmail so i am running smtp and stuff with the following line: exec /usr/local/bin/softlimit -m 400 /usr/local/bin/tcpserver -v -R -l 0 -x /etc/tcp.smtp.cdb -c $MAXSMTPD -u $QMAILUID -g $NOFILESGID 0 smtp /home/qmail/bin/qmail-smtpd 21 ...on /service/qmail-smtp/run script. anyone can help me?? please, i am lost =/ Thank you. Miguel.
Re: [vchkpw] roaming users don't work
On 2002.09.23_18:50:11_+, [EMAIL PROTECTED] wrote: Hello, I'm having problems with roaming users, I am using vpopmail5.2.1 and courier-imap1.5.3, i compiled vpopmail with: --enable-roaming-users=y --enable-tcpserver-file=/home/vpopmail/etc/tcp.smtp --enable-relay-clear-minutes=60 .but it just doesn't seem to work, i mean... i cannot relay unless I modify /etc/tcp.smtp (and then creating tcp.smtp.cdb) manually... any ideas? Why did you use /etc/tcp.smtp but passed /home/vpopmail/etc/tcp.smtp to the configure line? Current best practice is to use /home/vpopmail/etc/tcp.smtp as vchkpw may not have access to write tcp.smtp in /etc. /home/vpopmail/etc/tcp.smtp and /home/vpopmail/etc/tcp.smtp are always empty... i followed the lifewithqmail instructions to install and run qmail so i am running smtp and stuff with the following line: True, because you didn't add entries into /home/vpopmail/etc/tcp.smtp but /etc/tcp.smtp. Also, what is the content of /home/vpopmail/etc? exec /usr/local/bin/softlimit -m 400 /usr/local/bin/tcpserver -v -R -l 0 -x /etc/tcp.smtp.cdb -c $MAXSMTPD -u $QMAILUID -g $NOFILESGID 0 smtp /home/qmail/bin/qmail-smtpd 21 Change /etc/tcp.smtp.cdb to /home/vpopmail/etc/tcp.smtpd.cdb ..on /service/qmail-smtp/run script. anyone can help me?? please, i am lost =/ HTH Thank you. Miguel. -- H. D. Lee
RE: [vchkpw] roaming users don't work
Try changing your run file to specify -x /home/vpopmail/etc/tcp.smtp.cdb and move that tcp.smtp into /home/vpopmail/etc as that's where it should be. Regards, Tren -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] Sent: Monday, September 23, 2002 6:50 PM To: [EMAIL PROTECTED] Subject: [vchkpw] roaming users don't work Hello, I'm having problems with roaming users, I am using vpopmail5.2.1 and courier-imap1.5.3, i compiled vpopmail with: --enable-roaming-users=y --enable-tcpserver-file=/home/vpopmail/etc/tcp.smtp --enable-relay-clear-minutes=60 ..but it just doesn't seem to work, i mean... i cannot relay unless I modify /etc/tcp.smtp (and then creating tcp.smtp.cdb) manually... any ideas? /home/vpopmail/etc/tcp.smtp and /home/vpopmail/etc/tcp.smtp are always empty... i followed the lifewithqmail instructions to install and run qmail so i am running smtp and stuff with the following line: exec /usr/local/bin/softlimit -m 400 /usr/local/bin/tcpserver -v -R -l 0 -x /etc/tcp.smtp.cdb -c $MAXSMTPD -u $QMAILUID -g $NOFILESGID 0 smtp /home/qmail/bin/qmail-smtpd 21 ...on /service/qmail-smtp/run script. anyone can help me?? please, i am lost =/ Thank you. Miguel.
Re: [vchkpw] roaming users
Hello marine, On Thursday, September 19, 2002 at 3:37:59 AM you wrote: I don't know why it did not tell this clearly in the installation guide, maybe it is a bug in the Vpopmail installation guide? Because it is in the FAQ. The installation guide can't cover all scenarios, therefore a FAQ exists. When installing software _all_ README, INSTALL and FAQ files should be read. Ever. -- Best regards Peter Palmreuthermailto:[EMAIL PROTECTED]
[vchkpw] roaming users (was: [vchkpw] Vpopmail Issues)
On Wed, 18 Sep 2002 18:21:37 +0800 marine yin [EMAIL PROTECTED] wrote: But after the installation and configuration with the guide of VpopInstallGuide, I can't let the roaming user to use my qmail-smtp service to relay. [...] /usr/local/bin/tcpserver -x /etc/tcp.smtp.cdb -D -H -R -u 504 -g 504 0 smtp /var/qmail/bin/qmail-smtpd 21 | /var/qmail/bin/splogger smtpd 3 File: FAQ Location: directory of extracted vpopmail sources. Content: 4. How do I allow roaming users to use our smtp server without opening the machine up to everyone on the internet? Your startup script for the qmail smtp server must use the tcpserver -x file command similar to this startup line. env - PATH=/var/qmail/bin:/usr/local/bin \ tcpserver -H -R -x /path/to/vpopmail/etc/tcp.smtp.cdb \ -c20 -u504 -g503 0 smtp \ /var/qmail/bin/qmail-smtpd 21 /dev/null [...] So how about exchanging '-x /etc/tcp.smtp.cdb' with '-x /path/to/vpopmail/etc/tcp.smtp.cdb' ??? -- Pit
: [vchkpw] roaming users (was: [vchkpw] Vpopmail Issues)
Yeah: That is great, it work well. Thank you Peter Palmreuther [[EMAIL PROTECTED]]. I don't know why it did not tell this clearly in the installation guide, maybe it is a bug in the Vpopmail installation guide? -ÔʼÓʼþ- ·¢¼þÈË: Peter Palmreuther [mailto:[EMAIL PROTECTED]] ·¢ËÍʱ¼ä: 2002Äê9ÔÂ18ÈÕ 22:39 ÊÕ¼þÈË: [EMAIL PROTECTED] Ö÷Ìâ: [vchkpw] roaming users (was: [vchkpw] Vpopmail Issues) On Wed, 18 Sep 2002 18:21:37 +0800 marine yin [EMAIL PROTECTED] wrote: But after the installation and configuration with the guide of VpopInstallGuide, I can't let the roaming user to use my qmail-smtp service to relay. [...] /usr/local/bin/tcpserver -x /etc/tcp.smtp.cdb -D -H -R -u 504 -g 504 0 smtp /var/qmail/bin/qmail-smtpd 21 | /var/qmail/bin/splogger smtpd 3 File: FAQ Location: directory of extracted vpopmail sources. Content: 4. How do I allow roaming users to use our smtp server without opening the machine up to everyone on the internet? Your startup script for the qmail smtp server must use the tcpserver -x file command similar to this startup line. env - PATH=/var/qmail/bin:/usr/local/bin \ tcpserver -H -R -x /path/to/vpopmail/etc/tcp.smtp.cdb \ -c20 -u504 -g503 0 smtp \ /var/qmail/bin/qmail-smtpd 21 /dev/null [...] So how about exchanging '-x /etc/tcp.smtp.cdb' with '-x /path/to/vpopmail/etc/tcp.smtp.cdb' ??? -- Pit