Re: [vchkpw] smtp auth with chkuser problems
Sigh- this is a shame - it doesn't work. still getting smtp auth issues with fehcom's auth. So i've given up on it for now it works now, but now simscan messages are bled in: simscan:[17008]:PASSTHRU (7.70/5.00):2.6977s:[SPAM] :93.89.85.51:ja...@imaj.es :ima...@gmail.com I'm wondering if i'm fundamentally doing something wrong- could i convince someone to login and take a look? Thanks, james On 11 Jun 2009, at 16:18, Remo Mattei wrote: #!/bin/sh QMAILDUID=`id -u vpopmail` NOFILESGID=`id -g vpopmail` MAXSMTPD=`cat /var/qmail/control/concurrencyincoming` export QMAILQUEUE=/var/qmail/bin/simscan export NOP0FCHECK=1 export SIMSCAN_DEBUG=0 #IPADDR=208.53.44.231 exec /usr/local/bin/softlimit -m 2200 \ /usr/local/bin/tcpserver -v -H -R -l 0 \ -x /home/vpopmail/etc/tcp.smtp.cdb -c $MAXSMTPD \ -u $QMAILDUID -g $NOFILESGID 0 smtp \ /usr/local/bin/rblsmtpd \ -r x.r.mail-abuse.com:see http://www.mail-abuse.com/cgi-bin/lo okup?ip_address=%IP% -r zen.spamhaus.org /var/qmail/bin/qmail-smtpd \ /home/vpopmail/bin/vchkpw /bin/true 21 Here you go... On 6/11/09 9:16 AM, James Cox ja...@imaj.es wrote: Remo, what's your full run script? -james On 11 Jun 2009, at 15:59, Remo Mattei wrote: Did u try this settings on your server? #!/bin/sh QMAILDUID=`id -u vpopmail` NOFILESGID=`id -g vpopmail` MAXSMTPD=`cat /var/qmail/control/concurrencyincoming` export QMAILQUEUE=/var/qmail/bin/simscan export NOP0FCHECK=1 export SIMSCAN_DEBUG=0 Just my 2 cents.. Remo On 6/11/09 8:44 AM, James Cox ja...@imaj.es wrote: I just did a fresh install of toaster. i'm still getting these frustrating smtp auth problems - it's conflating the first portion of domain, so if for example i have the user f...@example.com, it tries to auth foo.com@:myip huh?? -james On 11 Jun 2009, at 13:51, Tren Blackburn wrote: I apologize if this has already been mentioned but have you tried Bill Shupp's toaster if you're on Linux or Matt Simmerman's toaster if you're on BSD? There's others, but I've used both over the years with no problems. I haven't switched to netqmail 1.06 but I thought it was primarily just a version increment to reflect the change in qmail's license. But if these have already been suggested and are not viable to you for some reason then please disregardmy 2 cents here is in Canadian... ;) Regardless I hope you can track down your problem! Regards, Tren From: James Cox ja...@imaj.es To: vchkpw@inter7.com vchkpw@inter7.com Sent: Thu Jun 11 04:47:52 2009 Subject: Re: [vchkpw] smtp auth with chkuser problems On 10 Jun 2009, at 22:41, James Cox wrote: Patch in Shupp toaster is taken from Erwin Hoffmann's SMTP- AUTH (http://www.fehcom.de/qmail/smtpauth.html). qmail 1.0.5 and 1.0.6 should be extremely similar and I wonder if it is worth using 1.0.6. Weird, i installed the patch with Erwin's smtp-auth, and have ended up with failed auths: Jun 10 16:39:21 reason vpopmail[7505]: vchkpw-smtp: vpopmail user not found james.es@:86.13.225.60 when authing with username ja...@imaj.es all, halps! throwing this in again - chkuser + krystopf's smtp auth ends up spitting random log stuff into the smtp stream. now i'm seeing simscan messages after turning logging off for chkuser. So somehow either my service scripts or some patch to netqmail has caused errant bleeding of log messages into the smtp stream, which is of course weird and broken. I tried Erwin's smtp auth (fehcom) thinking this is where the problem lies- but alas, i can't auth at all there. anyone able to help shed some more light for me? thanks. james !DSPAM:4a324d2632667166074158!
Re: [vchkpw] smtp auth with chkuser problems
Thank you James, grazie Tonino. !DSPAM:4a30ba6832669637967409!
Re: [vchkpw] smtp auth with chkuser problems
On 10 Jun 2009, at 22:41, James Cox wrote: Patch in Shupp toaster is taken from Erwin Hoffmann's SMTP-AUTH (http://www.fehcom.de/qmail/smtpauth.html ). qmail 1.0.5 and 1.0.6 should be extremely similar and I wonder if it is worth using 1.0.6. Weird, i installed the patch with Erwin's smtp-auth, and have ended up with failed auths: Jun 10 16:39:21 reason vpopmail[7505]: vchkpw-smtp: vpopmail user not found james.es@:86.13.225.60 when authing with username ja...@imaj.es all, halps! throwing this in again - chkuser + krystopf's smtp auth ends up spitting random log stuff into the smtp stream. now i'm seeing simscan messages after turning logging off for chkuser. So somehow either my service scripts or some patch to netqmail has caused errant bleeding of log messages into the smtp stream, which is of course weird and broken. I tried Erwin's smtp auth (fehcom) thinking this is where the problem lies- but alas, i can't auth at all there. anyone able to help shed some more light for me? thanks. james !DSPAM:4a30ef1d32665615831132!
Re: [vchkpw] smtp auth with chkuser problems
I apologize if this has already been mentioned but have you tried Bill Shupp's toaster if you're on Linux or Matt Simmerman's toaster if you're on BSD? There's others, but I've used both over the years with no problems. I haven't switched to netqmail 1.06 but I thought it was primarily just a version increment to reflect the change in qmail's license. But if these have already been suggested and are not viable to you for some reason then please disregardmy 2 cents here is in Canadian... ;) Regardless I hope you can track down your problem! Regards, Tren From: James Cox ja...@imaj.es To: vchkpw@inter7.com vchkpw@inter7.com Sent: Thu Jun 11 04:47:52 2009 Subject: Re: [vchkpw] smtp auth with chkuser problems On 10 Jun 2009, at 22:41, James Cox wrote: Patch in Shupp toaster is taken from Erwin Hoffmann's SMTP-AUTH (http://www.fehcom.de/qmail/smtpauth.html). qmail 1.0.5 and 1.0.6 should be extremely similar and I wonder if it is worth using 1.0.6. Weird, i installed the patch with Erwin's smtp-auth, and have ended up with failed auths: Jun 10 16:39:21 reason vpopmail[7505]: vchkpw-smtp: vpopmail user not found james.es@:86.13.225.60 when authing with username ja...@imaj.es all, halps! throwing this in again - chkuser + krystopf's smtp auth ends up spitting random log stuff into the smtp stream. now i'm seeing simscan messages after turning logging off for chkuser. So somehow either my service scripts or some patch to netqmail has caused errant bleeding of log messages into the smtp stream, which is of course weird and broken. I tried Erwin's smtp auth (fehcom) thinking this is where the problem lies- but alas, i can't auth at all there. anyone able to help shed some more light for me? thanks. james !DSPAM:4a30fdd432661702533441!
Re: [vchkpw] smtp auth with chkuser problems
I just did a fresh install of toaster. i'm still getting these frustrating smtp auth problems - it's conflating the first portion of domain, so if for example i have the user f...@example.com, it tries to auth foo.com@:myip huh?? -james On 11 Jun 2009, at 13:51, Tren Blackburn wrote: I apologize if this has already been mentioned but have you tried Bill Shupp's toaster if you're on Linux or Matt Simmerman's toaster if you're on BSD? There's others, but I've used both over the years with no problems. I haven't switched to netqmail 1.06 but I thought it was primarily just a version increment to reflect the change in qmail's license. But if these have already been suggested and are not viable to you for some reason then please disregardmy 2 cents here is in Canadian... ;) Regardless I hope you can track down your problem! Regards, Tren From: James Cox ja...@imaj.es To: vchkpw@inter7.com vchkpw@inter7.com Sent: Thu Jun 11 04:47:52 2009 Subject: Re: [vchkpw] smtp auth with chkuser problems On 10 Jun 2009, at 22:41, James Cox wrote: Patch in Shupp toaster is taken from Erwin Hoffmann's SMTP-AUTH (http://www.fehcom.de/qmail/smtpauth.html ). qmail 1.0.5 and 1.0.6 should be extremely similar and I wonder if it is worth using 1.0.6. Weird, i installed the patch with Erwin's smtp-auth, and have ended up with failed auths: Jun 10 16:39:21 reason vpopmail[7505]: vchkpw-smtp: vpopmail user not found james.es@:86.13.225.60 when authing with username ja...@imaj.es all, halps! throwing this in again - chkuser + krystopf's smtp auth ends up spitting random log stuff into the smtp stream. now i'm seeing simscan messages after turning logging off for chkuser. So somehow either my service scripts or some patch to netqmail has caused errant bleeding of log messages into the smtp stream, which is of course weird and broken. I tried Erwin's smtp auth (fehcom) thinking this is where the problem lies- but alas, i can't auth at all there. anyone able to help shed some more light for me? thanks. james !DSPAM:4a31185532662012537108!
Re: [vchkpw] smtp auth with chkuser problems
Did u try this settings on your server? #!/bin/sh QMAILDUID=`id -u vpopmail` NOFILESGID=`id -g vpopmail` MAXSMTPD=`cat /var/qmail/control/concurrencyincoming` export QMAILQUEUE=/var/qmail/bin/simscan export NOP0FCHECK=1 export SIMSCAN_DEBUG=0 Just my 2 cents.. Remo On 6/11/09 8:44 AM, James Cox ja...@imaj.es wrote: I just did a fresh install of toaster. i'm still getting these frustrating smtp auth problems - it's conflating the first portion of domain, so if for example i have the user f...@example.com, it tries to auth foo.com@:myip huh?? -james On 11 Jun 2009, at 13:51, Tren Blackburn wrote: I apologize if this has already been mentioned but have you tried Bill Shupp's toaster if you're on Linux or Matt Simmerman's toaster if you're on BSD? There's others, but I've used both over the years with no problems. I haven't switched to netqmail 1.06 but I thought it was primarily just a version increment to reflect the change in qmail's license. But if these have already been suggested and are not viable to you for some reason then please disregardmy 2 cents here is in Canadian... ;) Regardless I hope you can track down your problem! Regards, Tren From: James Cox ja...@imaj.es To: vchkpw@inter7.com vchkpw@inter7.com Sent: Thu Jun 11 04:47:52 2009 Subject: Re: [vchkpw] smtp auth with chkuser problems On 10 Jun 2009, at 22:41, James Cox wrote: Patch in Shupp toaster is taken from Erwin Hoffmann's SMTP-AUTH (http://www.fehcom.de/qmail/smtpauth.html). qmail 1.0.5 and 1.0.6 should be extremely similar and I wonder if it is worth using 1.0.6. Weird, i installed the patch with Erwin's smtp-auth, and have ended up with failed auths: Jun 10 16:39:21 reason vpopmail[7505]: vchkpw-smtp: vpopmail user not found james.es@:86.13.225.60 when authing with username ja...@imaj.es all, halps! throwing this in again - chkuser + krystopf's smtp auth ends up spitting random log stuff into the smtp stream. now i'm seeing simscan messages after turning logging off for chkuser. So somehow either my service scripts or some patch to netqmail has caused errant bleeding of log messages into the smtp stream, which is of course weird and broken. I tried Erwin's smtp auth (fehcom) thinking this is where the problem lies- but alas, i can't auth at all there. anyone able to help shed some more light for me? thanks. james !DSPAM:4a311bdd32666086566072!
Re: [vchkpw] smtp auth with chkuser problems
- Original Message - From: James Cox To: vchkpw@inter7.com Sent: Thursday, June 11, 2009 7:44 AM Subject: Re: [vchkpw] smtp auth with chkuser problems I just did a fresh install of toaster. i'm still getting these frustrating smtp auth problems - it's conflating the first portion of domain, so if for example i have the user f...@example.com, it tries to auth foo.com@:myip huh?? -james This may be so obvious that I shouldn't mention it, but did you change your run script to reflect the new smtp_auth patch? If I remember correctly, the older version wanted things in a different order. I just don't remember if that applies to this particular problem as its been awhile and I don't have access to my vpopmail setup right now... Brian !DSPAM:4a311eb432664685113058!
Re: [vchkpw] smtp auth with chkuser problems
Remo, what's your full run script? -james On 11 Jun 2009, at 15:59, Remo Mattei wrote: Did u try this settings on your server? #!/bin/sh QMAILDUID=`id -u vpopmail` NOFILESGID=`id -g vpopmail` MAXSMTPD=`cat /var/qmail/control/concurrencyincoming` export QMAILQUEUE=/var/qmail/bin/simscan export NOP0FCHECK=1 export SIMSCAN_DEBUG=0 Just my 2 cents.. Remo On 6/11/09 8:44 AM, James Cox ja...@imaj.es wrote: I just did a fresh install of toaster. i'm still getting these frustrating smtp auth problems - it's conflating the first portion of domain, so if for example i have the user f...@example.com, it tries to auth foo.com@:myip huh?? -james On 11 Jun 2009, at 13:51, Tren Blackburn wrote: I apologize if this has already been mentioned but have you tried Bill Shupp's toaster if you're on Linux or Matt Simmerman's toaster if you're on BSD? There's others, but I've used both over the years with no problems. I haven't switched to netqmail 1.06 but I thought it was primarily just a version increment to reflect the change in qmail's license. But if these have already been suggested and are not viable to you for some reason then please disregardmy 2 cents here is in Canadian... ;) Regardless I hope you can track down your problem! Regards, Tren From: James Cox ja...@imaj.es To: vchkpw@inter7.com vchkpw@inter7.com Sent: Thu Jun 11 04:47:52 2009 Subject: Re: [vchkpw] smtp auth with chkuser problems On 10 Jun 2009, at 22:41, James Cox wrote: Patch in Shupp toaster is taken from Erwin Hoffmann's SMTP-AUTH (http://www.fehcom.de/qmail/smtpauth.html ). qmail 1.0.5 and 1.0.6 should be extremely similar and I wonder if it is worth using 1.0.6. Weird, i installed the patch with Erwin's smtp-auth, and have ended up with failed auths: Jun 10 16:39:21 reason vpopmail[7505]: vchkpw-smtp: vpopmail user not found james.es@:86.13.225.60 when authing with username ja...@imaj.es all, halps! throwing this in again - chkuser + krystopf's smtp auth ends up spitting random log stuff into the smtp stream. now i'm seeing simscan messages after turning logging off for chkuser. So somehow either my service scripts or some patch to netqmail has caused errant bleeding of log messages into the smtp stream, which is of course weird and broken. I tried Erwin's smtp auth (fehcom) thinking this is where the problem lies- but alas, i can't auth at all there. anyone able to help shed some more light for me? thanks. james !DSPAM:4a311fba32661067792816!
Re: [vchkpw] smtp auth with chkuser problems
Brian Lanier ha scritto: - Original Message - *From:* James Cox mailto:ja...@imaj.es *To:* vchkpw@inter7.com mailto:vchkpw@inter7.com *Sent:* Thursday, June 11, 2009 7:44 AM *Subject:* Re: [vchkpw] smtp auth with chkuser problems I just did a fresh install of toaster. i'm still getting these frustrating smtp auth problems - it's conflating the first portion of domain, so if for example i have the user f...@example.com mailto:f...@example.com, it tries to auth foo.com@:myip mailto:foo.com@:myip huh?? -james This may be so obvious that I shouldn't mention it, but did you change your run script to reflect the new smtp_auth patch? If I remember correctly, the older version wanted things in a different order. I just don't remember if that applies to this particular problem as its been awhile and I don't have access to my vpopmail setup right now... Brian Something like /var/qmail/bin/qmail-smtpd /home/vpopmail/bin/vchkpw /bin/true 21 Tonino -- in...@zioniInterazioni di Antonio Nati http://www.interazioni.it to...@interazioni.it !DSPAM:4a311fda32662016013213!
Re: [vchkpw] smtp auth with chkuser problems
#!/bin/sh QMAILDUID=`id -u vpopmail` NOFILESGID=`id -g vpopmail` MAXSMTPD=`cat /var/qmail/control/concurrencyincoming` export QMAILQUEUE=/var/qmail/bin/simscan export NOP0FCHECK=1 export SIMSCAN_DEBUG=0 #IPADDR=208.53.44.231 exec /usr/local/bin/softlimit -m 2200 \ /usr/local/bin/tcpserver -v -H -R -l 0 \ -x /home/vpopmail/etc/tcp.smtp.cdb -c $MAXSMTPD \ -u $QMAILDUID -g $NOFILESGID 0 smtp \ /usr/local/bin/rblsmtpd \ -r x.r.mail-abuse.com:see http://www.mail-abuse.com/cgi-bin/lo okup?ip_address=%IP% -r zen.spamhaus.org /var/qmail/bin/qmail-smtpd \ /home/vpopmail/bin/vchkpw /bin/true 21 Here you go... On 6/11/09 9:16 AM, James Cox ja...@imaj.es wrote: Remo, what's your full run script? -james On 11 Jun 2009, at 15:59, Remo Mattei wrote: Did u try this settings on your server? #!/bin/sh QMAILDUID=`id -u vpopmail` NOFILESGID=`id -g vpopmail` MAXSMTPD=`cat /var/qmail/control/concurrencyincoming` export QMAILQUEUE=/var/qmail/bin/simscan export NOP0FCHECK=1 export SIMSCAN_DEBUG=0 Just my 2 cents.. Remo On 6/11/09 8:44 AM, James Cox ja...@imaj.es wrote: I just did a fresh install of toaster. i'm still getting these frustrating smtp auth problems - it's conflating the first portion of domain, so if for example i have the user f...@example.com, it tries to auth foo.com@:myip huh?? -james On 11 Jun 2009, at 13:51, Tren Blackburn wrote: I apologize if this has already been mentioned but have you tried Bill Shupp's toaster if you're on Linux or Matt Simmerman's toaster if you're on BSD? There's others, but I've used both over the years with no problems. I haven't switched to netqmail 1.06 but I thought it was primarily just a version increment to reflect the change in qmail's license. But if these have already been suggested and are not viable to you for some reason then please disregardmy 2 cents here is in Canadian... ;) Regardless I hope you can track down your problem! Regards, Tren From: James Cox ja...@imaj.es To: vchkpw@inter7.com vchkpw@inter7.com Sent: Thu Jun 11 04:47:52 2009 Subject: Re: [vchkpw] smtp auth with chkuser problems On 10 Jun 2009, at 22:41, James Cox wrote: Patch in Shupp toaster is taken from Erwin Hoffmann's SMTP-AUTH (http://www.fehcom.de/qmail/smtpauth.html). qmail 1.0.5 and 1.0.6 should be extremely similar and I wonder if it is worth using 1.0.6. Weird, i installed the patch with Erwin's smtp-auth, and have ended up with failed auths: Jun 10 16:39:21 reason vpopmail[7505]: vchkpw-smtp: vpopmail user not found james.es@:86.13.225.60 when authing with username ja...@imaj.es all, halps! throwing this in again - chkuser + krystopf's smtp auth ends up spitting random log stuff into the smtp stream. now i'm seeing simscan messages after turning logging off for chkuser. So somehow either my service scripts or some patch to netqmail has caused errant bleeding of log messages into the smtp stream, which is of course weird and broken. I tried Erwin's smtp auth (fehcom) thinking this is where the problem lies- but alas, i can't auth at all there. anyone able to help shed some more light for me? thanks. james !DSPAM:4a31204432664417892754!
Re: [vchkpw] smtp auth with chkuser problems
James Cox wrote: I've had it running for a few hours, and have this: 1 CHKUSER rejected relaying 5 CHKUSER accepted any rcpt 28 CHKUSER relaying rcpt 362 CHKUSER accepted rcpt 1719 CHKUSER rejected rcpt 1758 CHKUSER accepted sender and... in my defines... neither of those two are enabled. version 2.0.9 for me. What version of SMTP AUTH are you using ? I know there is a version out there that causes the exact problem you are seeing, although to my knowledge it hasn't been seen in years. Regards, Rick !DSPAM:4a2fb48732661746112274!
Re: [vchkpw] smtp auth with chkuser problems
On 10 Jun 2009, at 14:26, Rick Macdougall wrote: James Cox wrote: I've had it running for a few hours, and have this: 1 CHKUSER rejected relaying 5 CHKUSER accepted any rcpt 28 CHKUSER relaying rcpt 362 CHKUSER accepted rcpt 1719 CHKUSER rejected rcpt 1758 CHKUSER accepted sender and... in my defines... neither of those two are enabled. version 2.0.9 for me. What version of SMTP AUTH are you using ? I know there is a version out there that causes the exact problem you are seeing, although to my knowledge it hasn't been seen in years. Rick: yeah, i saw that patch. but i am using the current version (i think?) 0.31 james !DSPAM:4a2fc87f3291712120!
Re: [vchkpw] smtp auth with chkuser problems
James Cox wrote: On 10 Jun 2009, at 14:26, Rick Macdougall wrote: James Cox wrote: I've had it running for a few hours, and have this: 1 CHKUSER rejected relaying 5 CHKUSER accepted any rcpt 28 CHKUSER relaying rcpt 362 CHKUSER accepted rcpt 1719 CHKUSER rejected rcpt 1758 CHKUSER accepted sender and... in my defines... neither of those two are enabled. version 2.0.9 for me. What version of SMTP AUTH are you using ? I know there is a version out there that causes the exact problem you are seeing, although to my knowledge it hasn't been seen in years. Rick: yeah, i saw that patch. but i am using the current version (i think?) 0.31 james Don't know what that patch is or does. I use Bill Shupp's toaster (http://www.shupp.org/toaster/) which uses the following smtp-auth patch v. 0.5.7 by Erwin Hoffmann http://www.fehcom.de/qmail/smtpauth.html Regards, Rick !DSPAM:4a2fd06a32661582142373!
Re: [vchkpw] smtp auth with chkuser problems
I used Bill's and works fine. I do have chkuser installed on mine with smtp auth. Remo On 6/10/09 9:25 AM, Rick Macdougall ri...@ummm-beer.com wrote: James Cox wrote: On 10 Jun 2009, at 14:26, Rick Macdougall wrote: James Cox wrote: I've had it running for a few hours, and have this: 1 CHKUSER rejected relaying 5 CHKUSER accepted any rcpt 28 CHKUSER relaying rcpt 362 CHKUSER accepted rcpt 1719 CHKUSER rejected rcpt 1758 CHKUSER accepted sender and... in my defines... neither of those two are enabled. version 2.0.9 for me. What version of SMTP AUTH are you using ? I know there is a version out there that causes the exact problem you are seeing, although to my knowledge it hasn't been seen in years. Rick: yeah, i saw that patch. but i am using the current version (i think?) 0.31 james Don't know what that patch is or does. I use Bill Shupp's toaster (http://www.shupp.org/toaster/) which uses the following smtp-auth patch v. 0.5.7 by Erwin Hoffmann http://www.fehcom.de/qmail/smtpauth.html Regards, Rick !DSPAM:4a2fd17b32661437732454!
Re: [vchkpw] smtp auth with chkuser problems
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 James Cox wrote: yeah, i saw that patch. but i am using the current version (i think?) 0.31 I'm not really sure *why* it would be happening and I don't really have a solution to pose to you. I just wanted you to be aware that the output you were seeing the SMTP session were not meant to be in the SMTP session, it's meant to be log output. Because of how tcpserver works, it's unlikely that a patch would accidentally push output into a server's data stream. Descriptors 6 and 7 are used for input and output, and generally debugging output, etc, are done with printf()s and fprintf()s which unless purposely mucked with, are going to hit descriptors 1 and 2. Anyway, please let us know if you figure out what's going on. - -- /* Matt Brookings m...@inter7.com GnuPG Key D9414F70 Software developer Systems technician Inter7 Internet Technologies, Inc. (815)776-9465 */ -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.9 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iEYEARECAAYFAkov02EACgkQ6QgvSNlBT3DlLACfWu87P74FLGWXEcfPu47T7qx7 /DgAoKKLl6TAbIMkbT0ZzQG4yv2TBEYc =Evt/ -END PGP SIGNATURE-
Re: [vchkpw] smtp auth with chkuser problems
Here is mine you can try to use my settings.. #!/bin/sh QMAILDUID=`id -u vpopmail` NOFILESGID=`id -g vpopmail` MAXSMTPD=`cat /var/qmail/control/concurrencyincoming` export QMAILQUEUE=/var/qmail/bin/simscan export NOP0FCHECK=1 export SIMSCAN_DEBUG=0 exec /usr/local/bin/softlimit -m 2200 \ /usr/local/bin/tcpserver -v -H -R -l 0 \ -x /home/vpopmail/etc/tcp.smtp.cdb -c $MAXSMTPD \ -u $QMAILDUID -g $NOFILESGID 0 smtp \ /usr/local/bin/rblsmtpd \ On 6/10/09 9:38 AM, Matt Brookings m...@inter7.com wrote: -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 James Cox wrote: yeah, i saw that patch. but i am using the current version (i think?) 0.31 I'm not really sure *why* it would be happening and I don't really have a solution to pose to you. I just wanted you to be aware that the output you were seeing the SMTP session were not meant to be in the SMTP session, it's meant to be log output. Because of how tcpserver works, it's unlikely that a patch would accidentally push output into a server's data stream. Descriptors 6 and 7 are used for input and output, and generally debugging output, etc, are done with printf()s and fprintf()s which unless purposely mucked with, are going to hit descriptors 1 and 2. Anyway, please let us know if you figure out what's going on. - -- /* Matt Brookings m...@inter7.com GnuPG Key D9414F70 Software developer Systems technician Inter7 Internet Technologies, Inc. (815)776-9465 */ -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.9 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iEYEARECAAYFAkov02EACgkQ6QgvSNlBT3DlLACfWu87P74FLGWXEcfPu47T7qx7 /DgAoKKLl6TAbIMkbT0ZzQG4yv2TBEYc =Evt/ -END PGP SIGNATURE- !DSPAM:4a2fd52832663695612844!
Re: [vchkpw] smtp auth with chkuser problems
Rick Macdougall wrote: James Cox wrote: On 10 Jun 2009, at 14:26, Rick Macdougall wrote: James Cox wrote: I've had it running for a few hours, and have this: 1 CHKUSER rejected relaying 5 CHKUSER accepted any rcpt 28 CHKUSER relaying rcpt 362 CHKUSER accepted rcpt 1719 CHKUSER rejected rcpt 1758 CHKUSER accepted sender and... in my defines... neither of those two are enabled. version 2.0.9 for me. What version of SMTP AUTH are you using ? I know there is a version out there that causes the exact problem you are seeing, although to my knowledge it hasn't been seen in years. Rick: yeah, i saw that patch. but i am using the current version (i think?) 0.31 james Don't know what that patch is or does. I use Bill Shupp's toaster (http://www.shupp.org/toaster/) which uses the following smtp-auth patch v. 0.5.7 by Erwin Hoffmann http://www.fehcom.de/qmail/smtpauth.html Regards, Rick Hi, Yup, I'm pretty sure your 0.31 patch is the culprit. -- quote -- now mostly superseded with Krysztof Dabrowski's (and Eric M. Johnston) qmail-smtpd-auth-0.31 patch to include support for CRAM-MD5 with an additional cmd5checkpw PAM. Unfortunately, though wide-spread, Krysztof Dabrowski's SMTP-Auth patch breaks the checkpassword interface for CRAM-MD5. Instead of transmitting the sequence 'userid\0password\0challenge\0' it uses 'userid\0challenge\0password\0'. *** Another obstacle is to close (like 'qmail-popup') unnecessarily file descriptor 2 (FD 2). This inhibits a common logging to STDERR. *** Also, the unconditional close of FD 3 (to provide the AUTH information to the PAM) conflicts with reading control/morercpthosts.cdb. Further, there are some problems decoding BASE64. -- end quote -- Regards, Rick !DSPAM:4a2fd83732661317915693!
Re: [vchkpw] smtp auth with chkuser problems
Hi James, what version of netqmail are you using? does anybody knows if chkuser is compatible with 1.06? Roberto James Cox ha scritto: I've had it running for a few hours, and have this: 1 CHKUSER rejected relaying 5 CHKUSER accepted any rcpt 28 CHKUSER relaying rcpt 362 CHKUSER accepted rcpt 1719 CHKUSER rejected rcpt 1758 CHKUSER accepted sender and... in my defines... neither of those two are enabled. version 2.0.9 for me. -james !DSPAM:4a2fdf4c32661011711836!
Re: [vchkpw] smtp auth with chkuser problems
Roberto ha scritto: Hi James, what version of netqmail are you using? does anybody knows if chkuser is compatible with 1.06? Roberto James Cox ha scritto: I've had it running for a few hours, and have this: 1 CHKUSER rejected relaying 5 CHKUSER accepted any rcpt 28 CHKUSER relaying rcpt 362 CHKUSER accepted rcpt 1719 CHKUSER rejected rcpt 1758 CHKUSER accepted sender and... in my defines... neither of those two are enabled. version 2.0.9 for me. -james Problem should be the auth patch which breaks the output. In the past other people with other auth patches complained. They passed to the one contained in Shupp's Toaster (the unique one I've checked) and all problems went away. As alternative, should try to disable logs. Ciao! Tonino -- in...@zioniInterazioni di Antonio Nati http://www.interazioni.it to...@interazioni.it !DSPAM:4a2fe72032662043116501!
Re: [vchkpw] smtp auth with chkuser problems
On 10 Jun 2009, at 18:02, Tonix (Antonio Nati) wrote: Roberto ha scritto: Hi James, what version of netqmail are you using? does anybody knows if chkuser is compatible with 1.06? Problem should be the auth patch which breaks the output. In the past other people with other auth patches complained. They passed to the one contained in Shupp's Toaster (the unique one I've checked) and all problems went away. As alternative, should try to disable logs. So, versions- I've got - netqmail 1.06 - smtp auth 1.03 from http://members.elysium.pl/brush/qmail-smtpd-auth/ - chkuser 2.0.9 i tried looking at the toaster, but it is patched against a different netqmail - 1.05? wasn't sure if i should look to back out that patch and rebuild qmail.. --james !DSPAM:4a300bed32661846241777!
Re: [vchkpw] smtp auth with chkuser problems
James Cox ha scritto: On 10 Jun 2009, at 18:02, Tonix (Antonio Nati) wrote: Roberto ha scritto: Hi James, what version of netqmail are you using? does anybody knows if chkuser is compatible with 1.06? Problem should be the auth patch which breaks the output. In the past other people with other auth patches complained. They passed to the one contained in Shupp's Toaster (the unique one I've checked) and all problems went away. As alternative, should try to disable logs. So, versions- I've got - netqmail 1.06 - smtp auth 1.03 from http://members.elysium.pl/brush/qmail-smtpd-auth/ - chkuser 2.0.9 i tried looking at the toaster, but it is patched against a different netqmail - 1.05? wasn't sure if i should look to back out that patch and rebuild qmail.. --james Patch in Shupp toaster is taken from Erwin Hoffmann's SMTP-AUTH (http://www.fehcom.de/qmail/smtpauth.html). qmail 1.0.5 and 1.0.6 should be extremely similar and I wonder if it is worth using 1.0.6. Trust and use Shupp's toaster! Ciao, Tonino -- in...@zioniInterazioni di Antonio Nati http://www.interazioni.it to...@interazioni.it !DSPAM:4a301f0732661607920333!
Re: [vchkpw] smtp auth with chkuser problems
James Cox wrote: On 10 Jun 2009, at 18:02, Tonix (Antonio Nati) wrote: Roberto ha scritto: Hi James, what version of netqmail are you using? does anybody knows if chkuser is compatible with 1.06? Problem should be the auth patch which breaks the output. In the past other people with other auth patches complained. They passed to the one contained in Shupp's Toaster (the unique one I've checked) and all problems went away. As alternative, should try to disable logs. So, versions- I've got - netqmail 1.06 - smtp auth 1.03 from http://members.elysium.pl/brush/qmail-smtpd-auth/ - chkuser 2.0.9 i tried looking at the toaster, but it is patched against a different netqmail - 1.05? wasn't sure if i should look to back out that patch and rebuild qmail.. Hi, Bill's qmail-toaster-0.9.1.patch.bz2 applies cleanly and makes cleanly against netqmail 1.06. I just tested that. I didn't install it how ever. Regards, Rick !DSPAM:4a3023b532661537351311!
Re: [vchkpw] smtp auth with chkuser problems
On 10 Jun 2009, at 22:00, Tonix (Antonio Nati) wrote: James Cox ha scritto: On 10 Jun 2009, at 18:02, Tonix (Antonio Nati) wrote: Roberto ha scritto: Hi James, what version of netqmail are you using? does anybody knows if chkuser is compatible with 1.06? Problem should be the auth patch which breaks the output. In the past other people with other auth patches complained. They passed to the one contained in Shupp's Toaster (the unique one I've checked) and all problems went away. As alternative, should try to disable logs. So, versions- I've got - netqmail 1.06 - smtp auth 1.03 from http://members.elysium.pl/brush/qmail-smtpd-auth/ - chkuser 2.0.9 i tried looking at the toaster, but it is patched against a different netqmail - 1.05? wasn't sure if i should look to back out that patch and rebuild qmail.. --james Patch in Shupp toaster is taken from Erwin Hoffmann's SMTP-AUTH (http://www.fehcom.de/qmail/smtpauth.html ). qmail 1.0.5 and 1.0.6 should be extremely similar and I wonder if it is worth using 1.0.6. Weird, i installed the patch with Erwin's smtp-auth, and have ended up with failed auths: Jun 10 16:39:21 reason vpopmail[7505]: vchkpw-smtp: vpopmail user not found james.es@:86.13.225.60 when authing with username ja...@imaj.es huh? -james !DSPAM:4a3028a832664575497802!
Re: [vchkpw] smtp auth with chkuser problems
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 James Cox wrote: Anyone got any tips for how to skip those log lines? I've been looking at the chkuser_settings and i'm not confident i've seen anything immediately obvious. I'm also not convinced that these lines should ever exist in the smtp conversation anyhow... You are supposed to redirect stdout and stderr to another location. Either to /dev/null or to logfiles. - -- /* Matt Brookings m...@inter7.com GnuPG Key D9414F70 Software developer Systems technician Inter7 Internet Technologies, Inc. (815)776-9465 */ -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.9 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iEYEARECAAYFAkoumQMACgkQ6QgvSNlBT3DcbwCfWLgzTdwb5V0vUmBJB8yVxXM9 g+cAn1xmhT0ENg/sf8Xn1kbtAZMQYewg =8SBM -END PGP SIGNATURE-
Re: [vchkpw] smtp auth with chkuser problems
On 9 Jun 2009, at 18:16, Matt Brookings wrote: -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 James Cox wrote: Anyone got any tips for how to skip those log lines? I've been looking at the chkuser_settings and i'm not confident i've seen anything immediately obvious. I'm also not convinced that these lines should ever exist in the smtp conversation anyhow... You are supposed to redirect stdout and stderr to another location. Either to /dev/null or to logfiles. Hmm - makes sense. This is how i'm running it, and not sure why i'm getting logs in the smtp conversation: env CHKUSER_START=DOMAIN \ /usr/local/bin/tcpserver -vHR -p -x /etc/tcp.smtp.cdb \ -u $QMAILDUID -g $NOFILESGID 0 smtp \ /usr/local/bin/rblsmtpd \ -r sbl-xbl.spamhaus.org \ /var/qmail/bin/qmail-smtpd /var/qmail/vpopmail/bin/vchkpw /bin/true 21 since it's running under supervise, and is logged... -james !DSPAM:4a2ebb8432661324210016!
Re: [vchkpw] smtp auth with chkuser problems
Hi James, You are copying stderr (file descriptor 2) to your stdout (that's what the terminating 21 is for). However, this log is only saved if multilog is indeed catching it. Find in the directory where this `run' file was located the directory `log', and publish the content of the `run' file in that directory... -- Kind regards, Harm van Tilborg http://zeroxcool.net James Cox wrote: On 9 Jun 2009, at 18:16, Matt Brookings wrote: -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 James Cox wrote: Anyone got any tips for how to skip those log lines? I've been looking at the chkuser_settings and i'm not confident i've seen anything immediately obvious. I'm also not convinced that these lines should ever exist in the smtp conversation anyhow... You are supposed to redirect stdout and stderr to another location. Either to /dev/null or to logfiles. Hmm - makes sense. This is how i'm running it, and not sure why i'm getting logs in the smtp conversation: env CHKUSER_START=DOMAIN \ /usr/local/bin/tcpserver -vHR -p -x /etc/tcp.smtp.cdb \ -u $QMAILDUID -g $NOFILESGID 0 smtp \ /usr/local/bin/rblsmtpd \ -r sbl-xbl.spamhaus.org \ /var/qmail/bin/qmail-smtpd /var/qmail/vpopmail/bin/vchkpw /bin/true 21 since it's running under supervise, and is logged... -james !DSPAM:4a2edf0532661060516316!
Re: [vchkpw] smtp auth with chkuser problems
hey Harm, Here's the run file for the log - exec /usr/local/bin/setuidgid qmaill /usr/local/bin/multilog t s250 n 10 /var/log/qmail/smtpd and yeah- i figured that i'm pushing to stdout... which i expect the log/run should catch via the multilog. therefore i'm a bit confused as to how it's still getting into the smtp conversation. :) -james On 9 Jun 2009, at 23:15, Harm van Tilborg wrote: Hi James, You are copying stderr (file descriptor 2) to your stdout (that's what the terminating 21 is for). However, this log is only saved if multilog is indeed catching it. Find in the directory where this `run' file was located the directory `log', and publish the content of the `run' file in that directory... James Cox wrote: On 9 Jun 2009, at 18:16, Matt Brookings wrote: -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 James Cox wrote: Anyone got any tips for how to skip those log lines? I've been looking at the chkuser_settings and i'm not confident i've seen anything immediately obvious. I'm also not convinced that these lines should ever exist in the smtp conversation anyhow... You are supposed to redirect stdout and stderr to another location. Either to /dev/null or to logfiles. Hmm - makes sense. This is how i'm running it, and not sure why i'm getting logs in the smtp conversation: env CHKUSER_START=DOMAIN \ /usr/local/bin/tcpserver -vHR -p -x /etc/tcp.smtp.cdb \ -u $QMAILDUID -g $NOFILESGID 0 smtp \ /usr/local/bin/rblsmtpd \ -r sbl-xbl.spamhaus.org \ /var/qmail/bin/qmail-smtpd /var/qmail/vpopmail/bin/vchkpw /bin/ true 21 since it's running under supervise, and is logged... -james !DSPAM:4a2edfda32661019412068!
Re: [vchkpw] smtp auth with chkuser problems
Hi James, What version of chkuser are you using? When I look at the 2.0.9 source, I see the following lines inside chkuser_settings.h: /* * the following line enables debugging of chkuser */ /* #define CHKUSER_DEBUG */ /* * The following line moves DEBUG output from STDOUT (default) to STDERR * Example of usage within sh: ./qmail-smtpd 2 /var/log/smtpd-debug.log */ /* #define CHKUSER_DEBUG_STDERR */ Did you perhaps uncomment one of these defines? That would explain the behaviour. You are indeed correct about how the output should be catched by multilog. What /do/ your logs provide (i.e. what's in /var/log/qmail/smtpd/current)? (Ow, and between your log's command `...n 10...' there's no need for a space in between) -- Kind regards, Harm van Tilborg http://zeroxcool.net James Cox wrote: hey Harm, Here's the run file for the log - exec /usr/local/bin/setuidgid qmaill /usr/local/bin/multilog t s250 n 10 /var/log/qmail/smtpd and yeah- i figured that i'm pushing to stdout... which i expect the log/run should catch via the multilog. therefore i'm a bit confused as to how it's still getting into the smtp conversation. :) -james On 9 Jun 2009, at 23:15, Harm van Tilborg wrote: Hi James, You are copying stderr (file descriptor 2) to your stdout (that's what the terminating 21 is for). However, this log is only saved if multilog is indeed catching it. Find in the directory where this `run' file was located the directory `log', and publish the content of the `run' file in that directory... James Cox wrote: On 9 Jun 2009, at 18:16, Matt Brookings wrote: -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 James Cox wrote: Anyone got any tips for how to skip those log lines? I've been looking at the chkuser_settings and i'm not confident i've seen anything immediately obvious. I'm also not convinced that these lines should ever exist in the smtp conversation anyhow... You are supposed to redirect stdout and stderr to another location. Either to /dev/null or to logfiles. Hmm - makes sense. This is how i'm running it, and not sure why i'm getting logs in the smtp conversation: env CHKUSER_START=DOMAIN \ /usr/local/bin/tcpserver -vHR -p -x /etc/tcp.smtp.cdb \ -u $QMAILDUID -g $NOFILESGID 0 smtp \ /usr/local/bin/rblsmtpd \ -r sbl-xbl.spamhaus.org \ /var/qmail/bin/qmail-smtpd /var/qmail/vpopmail/bin/vchkpw /bin/true 21 since it's running under supervise, and is logged... -james !DSPAM:4a2ee2bc32666440818484!
Re: [vchkpw] smtp auth with chkuser problems
I've had it running for a few hours, and have this: 1 CHKUSER rejected relaying 5 CHKUSER accepted any rcpt 28 CHKUSER relaying rcpt 362 CHKUSER accepted rcpt 1719 CHKUSER rejected rcpt 1758 CHKUSER accepted sender and... in my defines... neither of those two are enabled. version 2.0.9 for me. -james On 9 Jun 2009, at 23:31, Harm van Tilborg wrote: Hi James, What version of chkuser are you using? When I look at the 2.0.9 source, I see the following lines inside chkuser_settings.h: /* * the following line enables debugging of chkuser */ /* #define CHKUSER_DEBUG */ /* * The following line moves DEBUG output from STDOUT (default) to STDERR * Example of usage within sh: ./qmail-smtpd 2 /var/log/smtpd- debug.log */ /* #define CHKUSER_DEBUG_STDERR */ Did you perhaps uncomment one of these defines? That would explain the behaviour. You are indeed correct about how the output should be catched by multilog. What /do/ your logs provide (i.e. what's in / var/log/qmail/smtpd/current)? (Ow, and between your log's command `...n 10...' there's no need for a space in between) -- Kind regards, Harm van Tilborg http://zeroxcool.net James Cox wrote: hey Harm, Here's the run file for the log - exec /usr/local/bin/setuidgid qmaill /usr/local/bin/multilog t s250 n 10 /var/log/qmail/smtpd and yeah- i figured that i'm pushing to stdout... which i expect the log/run should catch via the multilog. therefore i'm a bit confused as to how it's still getting into the smtp conversation. :) -james On 9 Jun 2009, at 23:15, Harm van Tilborg wrote: Hi James, You are copying stderr (file descriptor 2) to your stdout (that's what the terminating 21 is for). However, this log is only saved if multilog is indeed catching it. Find in the directory where this `run' file was located the directory `log', and publish the content of the `run' file in that directory... James Cox wrote: On 9 Jun 2009, at 18:16, Matt Brookings wrote: -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 James Cox wrote: Anyone got any tips for how to skip those log lines? I've been looking at the chkuser_settings and i'm not confident i've seen anything immediately obvious. I'm also not convinced that these lines should ever exist in the smtp conversation anyhow... You are supposed to redirect stdout and stderr to another location. Either to /dev/null or to logfiles. Hmm - makes sense. This is how i'm running it, and not sure why i'm getting logs in the smtp conversation: env CHKUSER_START=DOMAIN \ /usr/local/bin/tcpserver -vHR -p -x /etc/tcp.smtp.cdb \ -u $QMAILDUID -g $NOFILESGID 0 smtp \ /usr/local/bin/rblsmtpd \ -r sbl-xbl.spamhaus.org \ /var/qmail/bin/qmail-smtpd /var/qmail/vpopmail/bin/vchkpw /bin/ true 21 since it's running under supervise, and is logged... -james !DSPAM:4a2ee3f232665271019884!