qmail Digest 1 Mar 2001 11:00:00 -0000 Issue 1290

[qmail-digest-help]

qmail Digest 1 Mar 2001 11:00:00 -0000 Issue 1290

Topics (messages 58042 through 58126):

Re: QMail log: is human DATE/TIME available
        58042 by: japc.co.sapo.pt

Re: qmail-send progress with large queue/todo
        58043 by: Peter van Dijk
        58045 by: Manvendra Bhangui
        58064 by: David Dyer-Bennet
        58065 by: Charles Cazabon

Re: nfs mounting /var/qmail/alias
        58044 by: Peter van Dijk

Re: [Qmail-scanner-general]amavis or qmail-scanner ?
        58046 by: Bruno Wolff III
        58049 by: Michael Peppard
        58051 by: marcth
        58106 by: Brett Randall

Re: How to create two mailboxes for one user
        58047 by: Sean Swehla

Re: Relay-ctrl and qmail
        58048 by: Charles Cazabon
        58054 by: Bruce Guenter
        58058 by: Enrique Vadillo
        58087 by: inter7.mail.delanet.com

How can I test the capability of my qmail server?
        58050 by: root

help for smtp-server on MAPS DULed IP
        58052 by: Christoph Hertel
        58053 by: Charles Cazabon

Re: tcpserver for pop3 and telnet
        58055 by: Dave Sill
        58056 by: Charles Cazabon
        58059 by: Tim Hunter

tls.patch causing qmail-remote to crash
        58057 by: John McCoy, Jr

amavis or qmail-scanner ?
        58060 by: Jйrйmy Cluzel
        58063 by: Olivier M.
        58067 by: schoon.amgt.com
        58079 by: Jason Haar

Re: About qmail & sendmail.
        58061 by: David Dyer-Bennet

Re: Return address for autoresponder
        58062 by: David Dyer-Bennet

Announcing cr.yp.to-update list
        58066 by: Dave Sill

qmail-0.0.0.0.patch not found
        58068 by: Claudio Nieder
        58107 by: Scott Gifford

Re: mailserver buffering
        58069 by: Andy Bradford
        58113 by: Markus Stumpf

Relay-ctrl and qmail: problem more fundamental, I think
        58070 by: Bill Isaacs
        58071 by: Charles Cazabon
        58072 by: Bill Isaacs
        58074 by: Charles Cazabon
        58084 by: Bill Isaacs
        58088 by: Chris Johnson
        58090 by: Charles Cazabon
        58109 by: Bill Isaacs

Re: Can Qmail send out 2 million mails in 12 hour window?
        58073 by: inter7.mail.delanet.com
        58111 by: Markus Stumpf

pop3 acct name
        58075 by: Dean Browett
        58091 by: Chris Johnson

Duplicate mails on mailing list.
        58076 by: Andy Bradford

What does this mean.
        58077 by: inter7.mail.delanet.com
        58078 by: Charles Cazabon
        58081 by: denis

Attachment Limit
        58080 by: Cristopher Daniluk
        58082 by: Charles Cazabon

unsubcribe
        58083 by: inter7.mail.delanet.com

List Mirroring
        58085 by: David Coley

Time::HiRes for Qmail-Scanner on RH7 ?
        58086 by: inter7.mail.delanet.com
        58089 by: Olivier M.

Re: checkpassword (pop3d) problem
        58092 by: inter7.mail.delanet.com

qmail+system accounts+virt. dom. POPs
        58093 by: inter7.mail.delanet.com

Using Virtual Consoles with multilog
        58094 by: Roger Waterhouse
        58095 by: Peter van Dijk
        58096 by: Charles Cazabon

Re: warning: trouble opening remote/4/r
        58097 by: inter7.mail.delanet.com

Re: Cannot receive mail from some sites
        58098 by: inter7.mail.delanet.com

Useful Unix Networking/Programming site
        58099 by: Bruce Dang

Partition swap broke qmail
        58100 by: Stewart Vardaman
        58101 by: schoon.amgt.com
        58102 by: Sean Reifschneider
        58103 by: Chris Johnson

Lost the Battle
        58104 by: dennis
        58120 by: Stefaan A Eeckels
        58121 by: Jason Radford

procmail problems (RH6.2)
        58105 by: Joe Janitor

qmail vulnerability
        58108 by: D. J. Bernstein
        58118 by: Andy Bradford

qmail 2.0 exploit
        58110 by: Peter Cavender
        58112 by: Ian Lance Taylor
        58117 by: Vince Vielhaber

Scalable Mail Solution
        58114 by: Tim Hassan
        58115 by: Brett Randall
        58116 by: Hubbard, David
        58124 by: Adam Jacob

SSL Support
        58119 by: Green Onyx

logging alternatives to qmail-pop3d and checkpassword
        58122 by: Jцrgen Persson

<NOVICE> no mailbox here by tht name...
        58123 by: Ken Corey
        58125 by: Olivier M.

Qmail - to slow?
        58126 by: Thomas Kцnig

Administrivia:

To unsubscribe from the digest, e-mail:
        [EMAIL PROTECTED]

To subscribe to the digest, e-mail:
        [EMAIL PROTECTED]

To bug my human owner, e-mail:
        [EMAIL PROTECTED]

To post to the list, e-mail:
        [EMAIL PROTECTED]


----------------------------------------------------------------------

---

Pipe the logs files through tai64nlocal (man tai64nlocal), for instance

cat current | /usr/local/bin/tai64nlocal

.

On Wed, Feb 28, 2001 at 01:06:26PM +0300, Alexander Cherepanov wrote:
> I couldn't found anywhere how can I get human-readable date and time stamps
> in qmail logs. Can anybody do that?
> 
> Thanks for you help,
> Alexander
> 

-- 
Jose AP Celestino
<[EMAIL PROTECTED]>
-------------------------------

---

---

On Wed, Feb 28, 2001 at 01:50:36AM -0700, Sean Reifschneider wrote:
> On Tue, Feb 27, 2001 at 02:13:47PM -0600, Bruce Guenter wrote:
> >I've been thinking about this issue, and was wondering if it would be
> >possible to fix this in some simple way.  Would it be possible to modify
> 
> If one has big-todo, is there any point in spending so much time
> working the todo?  Switching the priority so that todo isn't processed
> until the loop runs without starting any qmail-remotes (meaning
> we're either at concurrency, or we have no more messages to deal with).

With or without big-todo, you risk ending up with a f*cking big todo
queue after that. Switching off todo-handling for a while,
automatically, sounds like a *very* bad idea to me.

Greetz, Peter.

---

---

This problem of todo had created a havoc with my site and qmail was unable
to cope up with the volume of incoming mails which my site was getting. In
fact
I had starting cursing the design of the todo processing. But with a slight
change to qmail-queue I have managed to get the queue (both
remote and local to zeror). I have done the following

Created 5 instances of qmail (by changing conf-qmail and compiling)
1 (/var/qmail, /var/qmail2, /var/qmail3, /var/qmail4, /var/qmail5)
2 linked the control, alias and users directory of /var/qmail2, /var/qmail3,
   /var/qmail4, /var/qmail5
   to /var/qmail/control, /var/qmail/alias, /var/qmail/users.
   By doing this I have to change configuration only in /var/qmail
3. Created directory /usr/qmail/bin, /usr/qmail2/bin, /usr/qmail3/bin, etc
4. Moved the original qmail-queue from /var/qmail/bin to /usr/qmail/bin
    and similarly for all the other qmail installations
5. Wrote the following qmail-queue program in /var/qmail/bin,
/var/qmail2/bin
    /var/qmail3/bin, /var/qmail4/bin, /var/qmail5/bin and started 5
instances
   of qmail-deliver (qmail-send). qmail-smtp now can be run from any
   one of the 5 instances

listing of qmail-queue.c wrapper
#include <sys/param.h>
main(int argc, char **argv)
{
    int              tmval;
    char             path[MAXPATHLEN];
    char            *qmail_queue[] = { "/usr/qmail", "/usr/qmail2",
"/usr/qmail3",
                                                     "/usr/qmail4",
"/usr/qmail5"};

     tmval = time(0) % 5;
    sprintf(path, "%s/bin/qmail-queue", qmail_queue[tmval]);
    /*- printf("%s\n", path); -*/
    execv(path, argv);
}

The above program depending on the time distributes the queue across the
five queues. Thus even with each qmail instance giving me a low concurrency,
I am achieving high concurrency by running 5 instances of qmail



----- Original Message -----
From: Peter van Dijk <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Wednesday, February 28, 2001 6:04 PM
Subject: Re: qmail-send progress with large queue/todo


> On Wed, Feb 28, 2001 at 01:50:36AM -0700, Sean Reifschneider wrote:
> > On Tue, Feb 27, 2001 at 02:13:47PM -0600, Bruce Guenter wrote:
> > >I've been thinking about this issue, and was wondering if it would be
> > >possible to fix this in some simple way.  Would it be possible to
modify
> >
> > If one has big-todo, is there any point in spending so much time
> > working the todo?  Switching the priority so that todo isn't processed
> > until the loop runs without starting any qmail-remotes (meaning
> > we're either at concurrency, or we have no more messages to deal with).
>
> With or without big-todo, you risk ending up with a f*cking big todo
> queue after that. Switching off todo-handling for a while,
> automatically, sounds like a *very* bad idea to me.
>
> Greetz, Peter.


_________________________________________________________
Do You Yahoo!?
Get your free @yahoo.com address at http://mail.yahoo.com

---

---

Peter van Dijk <[EMAIL PROTECTED]> writes:

> On Wed, Feb 28, 2001 at 01:50:36AM -0700, Sean Reifschneider wrote:
> > On Tue, Feb 27, 2001 at 02:13:47PM -0600, Bruce Guenter wrote:
> > >I've been thinking about this issue, and was wondering if it would be
> > >possible to fix this in some simple way.  Would it be possible to modify
> > 
> > If one has big-todo, is there any point in spending so much time
> > working the todo?  Switching the priority so that todo isn't processed
> > until the loop runs without starting any qmail-remotes (meaning
> > we're either at concurrency, or we have no more messages to deal with).
> 
> With or without big-todo, you risk ending up with a f*cking big todo
> queue after that. Switching off todo-handling for a while,
> automatically, sounds like a *very* bad idea to me.

Why is a fscking big todo queue any worse than a fscking big queue?
The current system of favoring todo processing over sending out mail
seems to rather bite.
-- 
David Dyer-Bennet      /      Welcome to the future!      /      [EMAIL PROTECTED]
SF: http://www.dd-b.net/dd-b/          Minicon: http://www.mnstf.org/minicon/
Photos: http://dd-b.lighthunters.net/

---

---

David Dyer-Bennet <[EMAIL PROTECTED]> wrote:
> Peter van Dijk <[EMAIL PROTECTED]> writes:
> 
> > With or without big-todo, you risk ending up with a f*cking big todo
> > queue after that. Switching off todo-handling for a while,
> > automatically, sounds like a *very* bad idea to me.
> 
> Why is a fscking big todo queue any worse than a fscking big queue?
> The current system of favoring todo processing over sending out mail
> seems to rather bite.

Indeed, the current handling of todo tends to turn a busy qmail queue into
a LIFO setup -- would not favouring the current contents of the queue
over todo (turning it into a FIFO) make more sense?

Charles
-- 
-----------------------------------------------------------------------
Charles Cazabon                            <[EMAIL PROTECTED]>
GPL'ed software available at:  http://www.qcc.sk.ca/~charlesc/software/
Any opinions expressed are just that -- my opinions.
-----------------------------------------------------------------------

---

---

On Tue, Feb 27, 2001 at 08:02:15PM -0800, Phil Oester wrote:
> Any issues with NFS mounting the alias directory so a common version can be
> shared by all mail servers?

Make sure you use users/assign. No other problems are to be expected.

Greetz, Peter.

---

---

On Wed, Feb 28, 2001 at 11:23:20AM +0100,
  Jérémy Cluzel <[EMAIL PROTECTED]> wrote:
> and wath about scanners ? which is the best one ? and why ?
> are they really needed for such antivirus ?
> I've heard that some AV (live avp) have their own scanner (which tends to
> replace amavis or qmail scanner).

I my opinion, doing the virus scanning on the mail server is a waste of
resources. It doesn't fully protect the people/systems that need protection
and it wastes resources protecting people/systems that don't need protection.

For people/systems that need antivirus protection, get something on their
desktop that can guard (as well as antvivirus stuff can) against files
entering the system by email, web downloads, portable media and file sharing.
Have something in place to automatically do updates (availability of updates
should be checked daily) from a local mirror. (You don't want to get stuff
directly from the antivirus people as they screw up once in a while and the
updates should be tested for your environment before being used.)

---

---

I absolutely disagree.

You guys remember those Outlook bugs a few months ago?  We didn't have one
get in here, although I was returning dozens of rejected mails to other
companies that got hit.  Given how hard it is to arrange timely upgrading
of desktop antivirus software over an enterprise on every computer, I'm not
terribly surprised that the other companies got hit.

I am not saying that desktop virus detectors are not important, they are
very
important *too.  The operative word is too.  Use both, but check the
statistics on
how many viruses are getting sent by email first - just to check my
reasoning out.

A good mail checker that gets updated multi-daily will keep bugs out
extremely
effectively.  With windoze you take your chances with viruses, if you just
use a
desktop scanner - face it the operating system is riddled with holes that
have
to be filled almost hourly :)

(My favorite is Sophos with-in qmail, I LIKE IT, but this letter isn't meant
to
be a plug.)

Cheers
-Mike

-----Original Message-----
From: Bruno Wolff III [mailto:[EMAIL PROTECTED]]
Sent: Wednesday, February 28, 2001 8:59 AM
To: Jérémy Cluzel
Cc: Qmail cr.yp.to
Subject: Re: [Qmail-scanner-general]amavis or qmail-scanner ?


On Wed, Feb 28, 2001 at 11:23:20AM +0100,
  Jérémy Cluzel <[EMAIL PROTECTED]> wrote:
> and wath about scanners ? which is the best one ? and why ?
> are they really needed for such antivirus ?
> I've heard that some AV (live avp) have their own scanner (which tends to
> replace amavis or qmail scanner).

I my opinion, doing the virus scanning on the mail server is a waste of
resources. It doesn't fully protect the people/systems that need protection
and it wastes resources protecting people/systems that don't need
protection.

For people/systems that need antivirus protection, get something on their
desktop that can guard (as well as antvivirus stuff can) against files
entering the system by email, web downloads, portable media and file
sharing.
Have something in place to automatically do updates (availability of updates
should be checked daily) from a local mirror. (You don't want to get stuff
directly from the antivirus people as they screw up once in a while and the
updates should be tested for your environment before being used.)

---

---

Well,

I agree wholeheartedly, it's a must to have the desktop covered, but if
you don't try to catch the virii coming in, you'll never have any idea  
about what comes in by mail, as most users will soon not tell you about
it anymore.
I use amavis on the internet connected systems, and inflex on the inside
where I still run sendmail due to the way we distribute the mail to
different servers.
Both use mcafee, and I get a warning the moment something suspicious is
sent by email.
If there's a wave of virii coming in, which has happened, I know what's
going on, I can block that site even, if I want to.

On the other hand, if something happens on a machine that isn't
protected, and something bad gets sent, it'll quite likely get caught
before it goes out onto the 'net. Currently there is no liability on that,
but what if there is ? A mailicious user is all it takes. How many
companies will be happy about being the source of a new virus ?

It doesn't cost me anything extra, we're not that large, it's all
automated and well within the machines' capabilities.
If you can do it, it'll save you lots of worries and work. especially if
your users barely know how to work their machines, let alone handle a
virus warning message :-)

I get at least 2 or more warnings a day on stuff that gets caught, I
think that's been worth the trouble of setting things up.

Marc

---

---

I have a lot of trigger-happy users who seem to enjoy double
clicking attachments. Most of the time, a few hours after a major
virus is discovered, we have an update made, but in the meanwhile we
could have had hundreds of e-mails come in with the virus.

Our environment runs Windows, and we find that by stripping any
attachments that could be double-clicked on and contain a virus (ie
vbs, scr, exe soon when I can convince management). I use
qmail-scanner for this. It also helps us to monitor e-mail usage and
see who are the people wasting all our bandwidth sending MPGs, AVIs,
MP3s, etc, and take the necessary disciplinary action.

Since neither amavis nor qmail-scanner are REALLY virii scanners
(they just spawn scanners), I prefer qmail-scanner since it offers
the ability to block attachment types as well. Of course, we also
run Norton Antivirus across all our desktops. With the corporate
edition, its really easy to install. Open up your MMC, go
Tools...Client Install, select the 100 workstations in the building,
hit Go, and it installs the virii scanning software across all of
our workstations, and they all pull the latest updates off our
central NAV server whenever new ones arrive.

Of course I've moved OT now...

Brett.
-- 
"I'm not dumb. I just have a command of throughly useless
information."

- Calvin, of Calvin and Hobbes

---

---

Do you need that user to be able to check both mailboxes independently?
If not, I think you can just put a .qmail-john_doe in qmail/alias/ to
forward that mail to johndoe's mailbox.

Andrew Wafula wrote:
> 
> Hi,
> 
> I want to be able to implement a system where a user has one login but with
> that one login is able to access two different mailboxes (I use Maildir
> format). The mailboxes are separate but belong to that one user eg login is
> johndoe but picks mail from johndoe and john_doe.
> 
> Andrew

-- 
____   __________________  _________________________________
\   \ /  \______  \      \|\________________________________\
 \   Y   /|     __/   |   \ |          Sean  Swehla          |
  \     / |    | /    |    \| Senior Systems Design Engineer |
   \___/  |____| \____|__  /|      VPN Solutions, LLC        |
    = S O L U T I O N S =\/ +--------------------------------+

---

---

Bill Isaacs <[EMAIL PROTECTED]> wrote:
> 
> No luck yet.  I tried Bruce's suggestion with the same outcome as before:
> ---------------------------------------------------------------
> tcpserver -v -R -x /etc/smtp.cdb 0 pop-3 /var/qmail/bin/qmail-popup 
> hoss.willysworkshop.com \
> /bin/checkpassword /usr/sbin/relay-ctrl-allow /var/qmail/bin/qmail-pop3d 
> Maildir
> 2>&1 | \
> /var/qmail/bin/splogger pop3d &
> ---------------------------------------------------------------

There's a problem there.  You're firing up qmail-pop3d, but using the
cdb file which is intended for qmail-smtpd.  Perhaps your tcpserver
invocation for qmail-smtpd is also incorrect?  However, that wouldn't
explain the next problem...

> And Charles, here are the diagnostics you requested (I hope)
[...] 
> >     `TCPREMOTEIP=1.2.3.4 tcprulescheck /etc/tcpcontrol/smtp.cdb`
> 
> [root@hoss workshop]# TCPREMOTEIP=63.207.13.190 tcprulescheck 
> /etc/tcpcontrol/smtp.cdb
> rule :
> allow connection

This is after you had POP'ed your mail from that IP address?  If so, the
cdb file is not being built properly, or relay-ctrl-allow is not doing its
job (unlikely, as it works everywhere else).  This has to be a configuration
error somwhere.

> Anyway, there's the dope.  I did find an error in tcpcontrol, to whit:
> I had not specified the full path to the smtp.cdb file.  Unfortunately
> fixing this did not solve the problem.

A summary:  relay-ctrl-allow sits in the qmail-pop3d chain between checkpassword
and qmail-pop3d.  It records the IP addresses of machines where a user has
successfully authenticated with POP3.  relay-ctrl then uses this information
to build an smtp.cdb file, which tcpserver uses for the qmail-smtpd service.
The variable RELAYCLIENT is set to an empty value for those clients who
authenticated with POP3, thus allowing them to relay SMTP traffic through
the server.

Charles
-- 
-----------------------------------------------------------------------
Charles Cazabon                            <[EMAIL PROTECTED]>
GPL'ed software available at:  http://www.qcc.sk.ca/~charlesc/software/
Any opinions expressed are just that -- my opinions.
-----------------------------------------------------------------------

---

---

On Wed, Feb 28, 2001 at 06:46:49AM -0000, Bill Isaacs wrote:
> Hi Bruce and Charles,
> 
> No luck yet.  I tried Bruce's suggestion with the same outcome as before:
> ---------------------------------------------------------------
> tcpserver -v -R -x /etc/smtp.cdb 0 pop-3 /var/qmail/bin/qmail-popup 

I'm sorry, that was a red herring.  You don't need a control file on the
POP server.

Hmmm...  Do you have both /etc/smtp.{rules,cdb} and /etc/tcpcontrol?
Which one is being updated?

> >Okay, lets see some information on the file itself.  How about
> >     `ls -ld / /etc /etc/tcpcontrol /etc/tcpcontrol/*`
> --------------------------------------------------------------
> -rw-r--r--   1 root     root         2072 Feb 27 21:27 /etc/tcpcontrol/smtp.cdb
> -rw-r--r--   1 root     qmail           7 Feb 26 12:48 /etc/tcpcontrol/smtp.rules

> >Then, use tcprulescheck on the cdb file to see if that IP address is
> >in there:
> >     `TCPREMOTEIP=1.2.3.4 tcprulescheck /etc/tcpcontrol/smtp.cdb`

Even more useful would be "cdbdump </etc/tcpcontrol/smtp.cdb", but
you'll need the CDB programs for that.

What is your run script for qmail-smtpd?
-- 
Bruce Guenter <[EMAIL PROTECTED]>                       http://em.ca/~bruceg/

PGP signature

---

---

It's strange that you use /etc/smtp.cdb to control pop access (!) and
that you show us a different CDB file /etc/tcpcontrol/smtp.cdb in your
system, are you sure you are using the right CDB file in your qmail-smtpd
run script? it might help showing us that script too.

Enrique-

|o| ---- Bill Isaacs escribió ----
|o| ---------------------------------------------------------------
|o| tcpserver -v -R -x /etc/smtp.cdb 0 pop-3 /var/qmail/bin/qmail-popup 
|o| hoss.willysworkshop.com \
|o| /bin/checkpassword /usr/sbin/relay-ctrl-allow /var/qmail/bin/qmail-pop3d 
|o| Maildir
|o| 2>&1 | \
|o| /var/qmail/bin/splogger pop3d &
|o| ---------------------------------------------------------------
|o| 
|o| And Charles, here are the diagnostics you requested (I hope)
|o| 
|o| >Okay, lets see some information on the file itself.  How about
|o| >     `ls -ld / /etc /etc/tcpcontrol /etc/tcpcontrol/*`
|o| --------------------------------------------------------------
|o| [root@hoss relay-ctrl]# ls -ld / /etc /etc/tcpcontrol /etc/tcpcontrol/*
|o| drwxr-xr-x  19 root     root         1024 Feb 26 12:35 /
|o| drwxr-xr-x  24 root     root         3072 Feb 27 22:34 /etc
|o| drwxr-xr-x   2 root     root         1024 Feb 27 21:27 /etc/tcpcontrol
|o| -rw-r--r--   1 root     qmail        2072 Feb 26 12:48 
|o| /etc/tcpcontrol/pop-3.cdb
|o| -rw-r--r--   1 root     qmail        2072 Feb 26 13:12 
|o| /etc/tcpcontrol/pop-3.cdb
|o| .rpmnew
|o| -rw-r--r--   1 root     qmail           7 Feb 26 12:48 
|o| /etc/tcpcontrol/pop-3.rul
|o| es
|o| -rw-r--r--   1 root     qmail           7 Feb 26 13:12 
|o| /etc/tcpcontrol/pop-3.rul
|o| es.rpmnew
|o| -rw-r--r--   1 root     qmail        2074 Feb 26 12:48 
|o| /etc/tcpcontrol/qmqp.cdb
|o| -rw-r--r--   1 root     qmail        2074 Feb 26 13:12 
|o| /etc/tcpcontrol/qmqp.cdb.
|o| rpmnew
|o| -rw-r--r--   1 root     qmail           6 Feb 26 12:48 
|o| /etc/tcpcontrol/qmqp.rule
|o| s
|o| -rw-r--r--   1 root     qmail           6 Feb 26 13:12 
|o| /etc/tcpcontrol/qmqp.rule
|o| s.rpmnew
|o| -rw-r--r--   1 root     qmail        2072 Feb 26 12:48 
|o| /etc/tcpcontrol/qmtp.cdb
|o| -rw-r--r--   1 root     qmail        2072 Feb 26 13:12 
|o| /etc/tcpcontrol/qmtp.cdb.
|o| rpmnew
|o| -rw-r--r--   1 root     qmail           7 Feb 26 12:48 
|o| /etc/tcpcontrol/qmtp.rule
|o| s
|o| -rw-r--r--   1 root     qmail           7 Feb 26 13:12 
|o| /etc/tcpcontrol/qmtp.rule
|o| s.rpmnew
|o| -rw-r--r--   1 root     root         2072 Feb 27 21:27 
|o| /etc/tcpcontrol/smtp.cdb
|o| -rw-r--r--   1 root     qmail        2072 Feb 26 13:12 
|o| /etc/tcpcontrol/smtp.cdb.
|o| rpmnew
|o| -rw-r--r--   1 root     qmail           7 Feb 26 12:48 
|o| /etc/tcpcontrol/smtp.rule
|o| s
|o| -rw-r--r--   1 root     qmail           7 Feb 26 13:12 
|o| /etc/tcpcontrol/smtp.rule
|o| s.rpmnew
|o| [root@hoss relay-ctrl]#
|o| 
|o| >Then, use tcprulescheck on the cdb file to see if that IP address is
|o| >in there:
|o| >     `TCPREMOTEIP=1.2.3.4 tcprulescheck /etc/tcpcontrol/smtp.cdb`
|o| 
|o| [root@hoss workshop]# TCPREMOTEIP=63.207.13.190 tcprulescheck 
|o| /etc/tcpcontrol/smtp.cdb
|o| rule :
|o| allow connection
|o| [root@hoss workshop]#
|o| --------------------------------------------------------------
|o| 
|o| Anyway, there's the dope.  I did find an error in tcpcontrol, to whit:
|o| I had not specified the full path to the smtp.cdb file.  Unfortunately
|o| fixing this did not solve the problem.
|o| 
|o| Thanks,
|o| 
|o| Bill
|o| 
|o| _________________________________________________________________
|o| Get your FREE download of MSN Explorer at http://explorer.msn.com

---

---

Bill Isaacs <[EMAIL PROTECTED]> wrote:
> After installing this package, I found that I could not login to check my 
> email (ERR: authorization failed).  I had to uncomment the pop-3 and smtp 
> lines in inetd.conf to be able to connect to the server at all (these had 
> been commented out during by the installation routine).

relay-ctrl relies on tcpserver.  You can't run it out of inetd.  Change your
pop3 configuration to use tcpserver as documented.

> I am trying to use this package so that I can relay from my home workstation 
> in California with a dynamic IP address.
> 
> Any advice?

Send your mail through your ISP's smarthost -- that's what they're for.
relay-ctrl is not needed for most situations, and this appears to be one
of them.

Charles
-- 
-----------------------------------------------------------------------
Charles Cazabon                            <[EMAIL PROTECTED]>
GPL'ed software available at:  http://www.qcc.sk.ca/~charlesc/software/
Any opinions expressed are just that -- my opinions.
-----------------------------------------------------------------------

---

---

hello,everyone
  I have build the qmail-ldap server.And it works well.
But how can I test the capability of my qmail server,both
send and receive?
  How can I know how many letters/second it sends and receive?


          root
            [EMAIL PROTECTED]

---

---

Hi,

I have a little computer here and dial up to a lot of different ISPs.
The given IPs are on the MAPS DUL and my smtp-server (at the moment
exim, maybe soon qmail) can't get rid of some of my mail (I don't use a
smarthost).

One solution would involve a script which changes the smarthost setting
in the smtp-server-config everytime I dial up (the smarthost will be the
smtp-server of the chosen ISP). This has a few drawbacks: convenience
(ISPs are changed quite often) and no guarantee of success (with all the
smtp-after-pop and other mysterious ISP-smtp-server settings).

The other solution would involve qmail (yeah, finally): From a friend I
heard about 'smtp routes' being the solution (apologies to that friend,
if I misunderstood, it wasn't the only topic). But as far as I
understood the docs, it's something about an alternative to the DNS and
using qmail without it.

Have I misunderstood the smtproutes features, can you forward me to some
docs I haven't found? Are there any other solutions to my problem?


Thank you very much,

Christoph

---

---

Christoph Hertel <[EMAIL PROTECTED]> wrote:
> 
> I have a little computer here and dial up to a lot of different ISPs.
> The given IPs are on the MAPS DUL and my smtp-server (at the moment
> exim, maybe soon qmail) can't get rid of some of my mail (I don't use a
> smarthost).

If you're on dial-up, perhaps qmail (and other "real" MTAs) are not the
best solution.  You may want to consider a relay-only MTA like
nullmailer.

> One solution would involve a script which changes the smarthost setting
> in the smtp-server-config everytime I dial up (the smarthost will be the
> smtp-server of the chosen ISP). This has a few drawbacks: convenience
> (ISPs are changed quite often) and no guarantee of success (with all the
> smtp-after-pop and other mysterious ISP-smtp-server settings).

ISP smart relays do not require SMTP-after-POP authentication from addresses
they control (their dialup pools, etc).  If they did, 80% of their
customers would be unable to send mail properly, and they'd fix it right
quick.

The right solution here is always use your ISP's smarthost.  That's what it's
for, and it will keep your mail from being marked as spam, refused, or outright
dropped on the floor by those servers which consult the DUL.

> The other solution would involve qmail (yeah, finally): From a friend I
> heard about 'smtp routes' being the solution (apologies to that friend,
> if I misunderstood, it wasn't the only topic). But as far as I
> understood the docs, it's something about an alternative to the DNS and
> using qmail without it.

If you decide to use qmail, then have a script which executes when you connect
to an ISP which does the following:

    -`echo ":1.2.3.4" >/var/qmail/control/smtproutes
    -start qmail

and another which automatically stops qmail when you disconnect from the ISP.
Replace 1.2.3.4 with the IP address of the ISP's smarthost.  This will cause
all your remote deliveries to be relayed through the ISP's smarthost.

Charles
-- 
-----------------------------------------------------------------------
Charles Cazabon                            <[EMAIL PROTECTED]>
GPL'ed software available at:  http://www.qcc.sk.ca/~charlesc/software/
Any opinions expressed are just that -- my opinions.
-----------------------------------------------------------------------

---

---

Peter Cavender <[EMAIL PROTECTED]> wrote:

>The LWQ description of setting up pop3 for qmail only
>says to put the tcpserver command in the qmail startup file.
>
>Shouldn't this "service" be supervised by svscan?

Ideally, yes.

>Why do the other qmail processes get this, but pop3 does not?

Because the POP3 section of LWQ doesn't assume that everyone reading
it installed qmail using the LWQ directions--and I've been too lazy to
add a blurb with LWQ-specific POP3 installation instructions.

>Also, I am moving towards eliminating inetd, and have set up in.telnetd to
>be run by tcpserver in a line in rc.local (RH Linux 6.2 here).  In the
>inetd.conf file, it runs in.telnetd via /usr/sbin/tcpd.  In the man page
>is says that tcps does some logging and other stuff, but I see no signs of
>it.  When I try to use tcpserver->tcpd->in.telnetd, it doesn't
>work.  Remove tcpd and all is fine.  Should I be happy discarding tcpd?

Yep. It doesn't do anything tcpserver can't do.

>Also, since my inetd.conf file is now *empty*, can I disable it
>altogether, or or will I lose essential internal services?

Sure, nuke it.

-Dave

---

---

Dave Sill <[EMAIL PROTECTED]> wrote:
> Peter Cavender <[EMAIL PROTECTED]> wrote:
> 
> >Also, since my inetd.conf file is now *empty*, can I disable it
> >altogether, or or will I lose essential internal services?
> 
> Sure, nuke it.

Go one step further and uninstall inetd completely.  I've done it on
every machine I have access to, and haven't regretted it at all.

Charles
-- 
-----------------------------------------------------------------------
Charles Cazabon                            <[EMAIL PROTECTED]>
GPL'ed software available at:  http://www.qcc.sk.ca/~charlesc/software/
Any opinions expressed are just that -- my opinions.
-----------------------------------------------------------------------

---

---

FYI
I have a LWQ type pop3 install and have passed on the info to quite a few
people, so I know it works.  If anyone is looking for that kind of solution,
just let me know and I will pass my information on again.
Dave if you need any info on my install (doubtful) let me know as I would
love the opportunity to pass knowledge back to LWQ.

-- Tim
----- Original Message -----
From: "Dave Sill" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Wednesday, February 28, 2001 8:40 AM
Subject: Re: tcpserver for pop3 and telnet


> Peter Cavender <[EMAIL PROTECTED]> wrote:
>
> >The LWQ description of setting up pop3 for qmail only
> >says to put the tcpserver command in the qmail startup file.
> >
> >Shouldn't this "service" be supervised by svscan?
>
> Ideally, yes.
>
> >Why do the other qmail processes get this, but pop3 does not?
>
> Because the POP3 section of LWQ doesn't assume that everyone reading
> it installed qmail using the LWQ directions--and I've been too lazy to
> add a blurb with LWQ-specific POP3 installation instructions.
>
> >Also, I am moving towards eliminating inetd, and have set up in.telnetd
to
> >be run by tcpserver in a line in rc.local (RH Linux 6.2 here).  In the
> >inetd.conf file, it runs in.telnetd via /usr/sbin/tcpd.  In the man page
> >is says that tcps does some logging and other stuff, but I see no signs
of
> >it.  When I try to use tcpserver->tcpd->in.telnetd, it doesn't
> >work.  Remove tcpd and all is fine.  Should I be happy discarding tcpd?
>
> Yep. It doesn't do anything tcpserver can't do.
>
> >Also, since my inetd.conf file is now *empty*, can I disable it
> >altogether, or or will I lose essential internal services?
>
> Sure, nuke it.
>
> -Dave
>

---

---

Mostly this occurs when delivery to yahoo is attempted, I have seen only one
other site crash it.
I have tried both Messenger 4.76 and Outlook Express they both are able to
use the secure SMTP connection. Many other severs are able to connect just
fine. Any body got any ideas? I have not tried to set up advanced relaying
or anything, just want basic encrypted communication for now. I am even
willing to only patch qmail-smtpd.c + Makefile, but I have no idea how to do
this.

Please help!!!

Solaris 7 (Sparq)
Qmail 1.03
gcc 2.95.2
GNU patch (Solaris one fails a lot)
tls.patch 20010106


********************************
John McCoy [EMAIL PROTECTED]
Systems Administrator
Central Systems
Mills College
510-430-3321
********************************

---

---

Hi,

I was using Red Hat 6.2, and qmail as Mta.
My goal is to take virus aware from my mail server, so, what's the 
best choice ?

1) as virus-scanner ? amavis or qmail-scanner ? both seem to work 
fine...

2) as antivirus ? H+BEDV AntiVir, AVP, Sophos Sweep,or McAfee 
ViruScan ? I used avp for a while (and I find it very efficient), but 
doesn't know the other ones...

thanks in advance...

Regards

Jeremy Cluzel

------------------------------------------------------
Votre email partout et gratuit ! http://www.alinto.com

---

---

On Wed, Feb 28, 2001 at 03:58:51PM -0000, Jérémy Cluzel wrote:
> My goal is to take virus aware from my mail server, so, what's the 
> best choice ?

there are no "best choice"  : there are just different solutions :)

All that I can tell you is that qmail-scanner + f-sav is a very
good working solution. But I never tried anything elso, so
YMMV :)

Olivier

-- 
_________________________________________________________________
 Olivier Mueller - [EMAIL PROTECTED] - PGPkeyID: 0E84D2EA - Switzerland
qmail projects: http://omail.omnis.ch  -  http://webmail.omnis.ch

PGP signature

---

---

Jeremy,

        I tried installing qmai-scanner and had some difficulty with the setuid
root issues. qmail-scanner was wanting a new kernel built, which I can't
easily do as it's a remote server. I switched to amavis and think that's
a better solution. It's easy to install and essentially works by
'slipping' into the process of qmail operation. Plus, you don't need to
patch qmail for the queue as well. I don't understand all the internals
of qmail, I've been using it for about a month so I can't arque which
way is one is better. Also, keep in mind that amavis/qmail-scanner are
NOT virus scanners, but are essentially 'wrappers' to run a regular
virus scanner like NAI, Sophos, etc. I use AMaVis with Sophos and have
been happy with the performance.

HTH

.mark


>----------
>From:  Jérémy Cluzel[SMTP:[EMAIL PROTECTED]]
>Sent:  Wednesday, February 28, 2001 7:58 AM
>To:    qmail
>Subject:       amavis or qmail-scanner ?
>
>Hi,
>
>I was using Red Hat 6.2, and qmail as Mta.
>My goal is to take virus aware from my mail server, so, what's the 
>best choice ?
>
>1) as virus-scanner ? amavis or qmail-scanner ? both seem to work 
>fine...
>
>2) as antivirus ? H+BEDV AntiVir, AVP, Sophos Sweep,or McAfee 
>ViruScan ? I used avp for a while (and I find it very efficient), but 
>doesn't know the other ones...
>
>thanks in advance...
>
>Regards
>
>Jeremy Cluzel
>
>------------------------------------------------------
>Votre email partout et gratuit ! http://www.alinto.com
>

---

---

On Wed, Feb 28, 2001 at 09:34:57AM -0800, [EMAIL PROTECTED] wrote:
> Jeremy,
> 
>       I tried installing qmai-scanner and had some difficulty with the setuid
> root issues. qmail-scanner was wanting a new kernel built, which I can't

Err - I can emphatically state that neither Qmail-Scanner or AmaVis require
"new kernels" to work. Your problem was with perl - not with the OS....

> way is one is better. Also, keep in mind that amavis/qmail-scanner are
> NOT virus scanners, but are essentially 'wrappers' to run a regular
> virus scanner like NAI, Sophos, etc. 

Absolutely correct :-)

-- 
Cheers

Jason Haar

Unix/Special Projects, Trimble NZ
Phone: +64 3 9635 377 Fax: +64 3 9635 417

---

---

"Someone" <[EMAIL PROTECTED]> writes:

> Hi all,
> 
> I want infomations about qmail compares with sendmail.
> Can you help me?
> Where www talk about them?
> Such as efficiency, speedy, security, why?, ...etc.

Well, start by reading http://cr.yp.to/qmail.html, particularly the
FAQ, and http://cr.yp.to/mail.html .

You may be getting low response to your post because it looks rather
like a "troll" -- somebody dropping in and attempting to get a
flamewar going.
-- 
David Dyer-Bennet      /      Welcome to the future!      /      [EMAIL PROTECTED]
SF: http://www.dd-b.net/dd-b/          Minicon: http://www.mnstf.org/minicon/
Photos: http://dd-b.lighthunters.net/

---

---

Mikko Hänninen <[EMAIL PROTECTED]> writes:

> Karl Vogel <[EMAIL PROTECTED]> wrote on Sun, 25 Feb 2001:
> >    If I'm reading the RFCs correctly, the right order is "Reply-to:", then
> >    "From:", then "Sender:".
> 
> How about using the envelope sender (ie. return-path)?
> 
> I missed the original message, so maybe this isn't really applicable,
> but in general you should take mailing lists into account.  On most
> mailing lists, including this one, the right return address is not
> found in any of those headers.
> 
> Of course, one should try to avoid sending auto-replies to list emails
> at all, but chances are you'll never be able to detect with 100%
> accuracy all list emails, so should count on it happening sometime.

Perhaps; but if so, having the auto-responder *NOT* respond to the
list address is still a win!
-- 
David Dyer-Bennet      /      Welcome to the future!      /      [EMAIL PROTECTED]
SF: http://www.dd-b.net/dd-b/          Minicon: http://www.mnstf.org/minicon/
Photos: http://dd-b.lighthunters.net/

---

---

I've set up a mirror of cr.yp.to using ftpcopy, and a list to which
any updates will be sent. I'll mirror twice daily for now. Any changes
to the files distributed via cr.yp.to, including the addition of new
files, the updating of existing files, or the removal of existing
files, will be detected and reported by ftpcopy. This covers all files
distributed via cr.yp.to* including HTML web pages and source code
distributions of all of djbware. If nothing changes, no message will
be sent to the list.

To subscribe, send a message to:

  <[EMAIL PROTECTED]>

-Dave

* actually, I skip *.cdb and the "mirror" subdirectory.

---

---

Hi,

www.qmail.org mentions Scott Gifford's patch making qmail recognize
0.0.0.0 as local IP address. But the link to the patch

  http://www.tir.com/~sgifford/qmail/qmail-0.0.0.0.patch

is invalid:

Not Found

The requested URL /~sgifford/qmail/qmail-0.0.0.0.patch was not found on this server.


Does anybody know, where the actual place for this file is?

                                claudio
-- 
Claudio Nieder, Kanalweg 1, CH-8610 Uster, Tel +41 79 357 6743
yahoo messenger: claudionieder aim: claudionieder icq:42315212
mailto:[EMAIL PROTECTED]                http://www.claudio.ch

---

---

Claudio Nieder <[EMAIL PROTECTED]> writes:

> www.qmail.org mentions Scott Gifford's patch making qmail recognize
> 0.0.0.0 as local IP address. But the link to the patch
> 
>   http://www.tir.com/~sgifford/qmail/qmail-0.0.0.0.patch
> 
> is invalid:
> 
> Not Found
> 
> The requested URL /~sgifford/qmail/qmail-0.0.0.0.patch was not found on this server.
> 
> 
> Does anybody know, where the actual place for this file is?

Yeah, I'm having trouble with my Web site this week.  Here's a copy.
Things should be back up after this weekend, I hope.

-----ScottG.


--- qmail-1.03/ipme.c	Mon Jun 15 06:53:16 1998
+++ qmail-1.03-sg/ipme.c	Mon Jan 29 02:27:38 2001
@@ -46,6 +46,11 @@
   ipme.len = 0;
   ix.pref = 0;
  
+  /* 0.0.0.0 is a special address which always refers to 
+   * "this host, this network", according to RFC 1122, Sec. 3.2.1.3a.
+  */
+  byte_copy(&ix.ip,4,"\0\0\0\0");
+  if (!ipalloc_append(&ipme,&ix)) { return 0; }
   if ((s = socket(AF_INET,SOCK_STREAM,0)) == -1) return -1;
  
   len = 256;

---

---

Thus said "Chrisanthy Carlane" on Tue, 27 Feb 2001 13:13:52 +0700:

> What I want to ask is: HOW to create that buffering thing ? Do I have to add
> every user for every domain(which will be a lot of user)?

With a standard qmail install it's as simple as:

Add their domain to /var/qmail/control/rcpthosts

They must produce an appropriate MX record in their DNS information 
which points to your mail server.

I don't know what addition complexities vpopmail might add, but I 
suspect this should still work.

Andy
-- 
[-----------[system uptime]--------------------------------------------]
 11:17pm  up 12 days, 23:19,  6 users,  load average: 1.01, 1.11, 1.21

---

---

On Tue, Feb 27, 2001 at 12:08:12AM -0700, Andy Bradford wrote:
> Not necessary.  They will be queued up in qmail's mail queue until they 
> can be delivered to their mail server (or until the message has been in your 
> queue too long and the message bounces).  Simple really.

We've had simmilar problems with "dialup customer" wanting their email
delivered via SMTP.
What we did (and also use for some backup MX customers, that turn off
their mailservers during weekends *argl*) is to use a maildirsmtp
setup.
I find it pretty annoying having some 1000 email for them in the
"active" qmail queue and the customers complain "that some emails
take a long time to arrive although the mailserver is back up again"
(this is due to the quadratic backoff).

What we do:

1) create a  /var/qmail/channels/serialmail  directory.
2) in this directory create another directory "dom.ain"
3) in this directory create a maildir (e.g. called "Maildir") and
   a .qmail-default file containing
   ./Maildir/
4) add to users/assign a line like:
   +dom.ain-:qmaild:101:101:/var/qmail/channels/serialmail/dom.ain:-::
   (101:101 is the uid:gid for qmaild:nofiles - this is because of
   section 10) below ;-)
5) run qmail-newu
6) add lines to control/virtualdomains
   dom.ain:dom.ain
   .dom.ain:dom.ain
7) kill -HUP pidof(qmail-send)

Now mails for [EMAIL PROTECTED] will end up in the maildir
   /var/qmail/channels/serialmail/dom.ain/Maildir/
If the customer has more than one domain (e.g. .net, .com. org) you can
use in virtualdomains
   example.com:dom.ain
   .example.com:dom.ain
   example.net:dom.ain
   .example.net:dom.ain
And they will end up in the same directory.

8) In /var/qmail/channels/serialmail/dom.ain create a file "RELAYHOST"
   and put in it the name of the mail exchanger for that dom.ain
   (e.g. mail.dom.ain)
9) All you need now is a script that periodically scans (we use 3
   minutes) all the /var/qmail/channels/serialmail/dom.ain directories,
   checks if there are eMails in Maildir/new.
   If so, flock the RELAYHOST file (to avoid concurrent deliveries)
   and start  maildirsmtp  to try to deliver the email to `cat RELAYHOST`
   We do this in a two way style, so we have one scanner and one
   deliverer thats been forked off from scanner.
   The maildir command would look like
      maildirsmtp /var/qmail/channels/serialmail/dom.ain/Maildir \
        dom.ain-  `cat .../dom.ain/RELAYHOST`  mail.mydom.ain
   (don't forget the trailing "-" on  dom.ain- above)
10) we also use tcpserver to set the ETRN="dom.ain" Variable for the ip
   the mail.dom.ain runs on and we use a wrapper to qmail-smtpd that
   checks for the existance of the ETRN Variable and if it exists it
   forks off deliverer for dom.ain (kinda AutoTURN like ETRN).

We use this setup for about two years now and it works like a charm.
There is only one problem: if the customer changes the mail exchanger
without telling you *sigh*

The scripts for scanner and deliverer are in perl, the qmail-smtpd
wrapper is in sh.
If I find some time, I'll write some docs and cleanup the code and
put it up for public retrival. *sigh* but I cannot promise any date
as I have nearly zero spare time right now :/

        \Maex

-- 
SpaceNet AG            | Joseph-Dollinger-Bogen 14 | Fon: +49 (89) 32356-0
Research & Development |       D-80807 Muenchen    | Fax: +49 (89) 32356-299
Stress is when you wake up screaming and you realize you haven't fallen
asleep yet.

---

---

OK, I've done some newbie-snooping and found that relay-ctrl-age wasn't 
updating the database.  I removed the path in the smtpcdb rules file, and 
that fixed that.  I then did a tcprulescheck and got:
----------------------------------------------------------------
[root@hoss /etc]# TCPREMOTEIP=64.161.212.206 tcprulescheck 
/etc/tcpcontrol/smtp.
cdb
rule 64.161.212.206:
set environment variable RELAYCLIENT=
allow connection
[root@hoss /etc]#
----------------------------------------------------------------
In addition, I noted the the smtp.cdb file was being updated every minute 
according to ls -l .

So now methinks I should be able to relay, no?  no.  Same message, "5.5.3 
sorry, blah blah blah".  OK, so then I stopped the relay-ctrl-age in the 
cron, and manually compiled the smtp.cdb file from a text file according to 
documentation (after allowing the spool file to expire, so that there was 
nothing in the database referring to my dynamic IP).  I got the exact same 
result with tcprulescheck as above.  I try relaying again, but no luck.

So the question is, doesn't this sound like a more fundamental issue than 
relay-ctrl?  Is there something perhaps with qmail that would disallow 
relaying regardless of what the CDB database says?

thanks,

Bill

>From: Charles Cazabon <[EMAIL PROTECTED]>
>To: [EMAIL PROTECTED]
>Subject: Re: Relay-ctrl and qmail
>Date: Tue, 27 Feb 2001 15:19:59 -0600
>
>Bill Isaacs <[EMAIL PROTECTED]> wrote:
> > Now that we're all in agreement on what relay-ctrl is, let me get
> > more specific about what is not happening for me with this package ;)
>[...]
> > I now check the cron log to make sure that relay-ctrl-age has run
> > since the timestamp on the above file:
> > -------------------------------
> > root (02/27-12:47:00-5529) CMD (/usr/sbin/relay-ctrl-age)
> > -------------------------------
> >
> > So far so good.
>[...]
> > So obviously, the database isn't being updated.
>
>Okay, lets see some information on the file itself.  How about
>     `ls -ld / /etc /etc/tcpcontrol /etc/tcpcontrol/*`
>
>Then, use tcprulescheck on the cdb file to see if that IP address is
>in there:
>     `TCPREMOTEIP=1.2.3.4 tcprulescheck /etc/tcpcontrol/smtp.cdb`
>
>Replace 1.2.3.4 with the IP address of the machine you POP-checked your
>mail from immediately before doing the above steps.
>
>Charles
>--
>-----------------------------------------------------------------------
>Charles Cazabon                            <[EMAIL PROTECTED]>
>GPL'ed software available at:  http://www.qcc.sk.ca/~charlesc/software/
>Any opinions expressed are just that -- my opinions.
>-----------------------------------------------------------------------

_________________________________________________________________
Get your FREE download of MSN Explorer at http://explorer.msn.com

---

---

Bill Isaacs <[EMAIL PROTECTED]> wrote:
> 
> that fixed that.  I then did a tcprulescheck and got:
> ----------------------------------------------------------------
> [root@hoss /etc]# TCPREMOTEIP=64.161.212.206 tcprulescheck 
> /etc/tcpcontrol/smtp.
> cdb
> rule 64.161.212.206:
> set environment variable RELAYCLIENT=
> allow connection
> [root@hoss /etc]#
> ----------------------------------------------------------------
> In addition, I noted the the smtp.cdb file was being updated every minute 
> according to ls -l .
> 
> So now methinks I should be able to relay, no?  no.  Same message, "5.5.3 
> sorry, blah blah blah".

The .cdb file is fine, but you're not being allowed to relay.  Therefore,
the problem is in your qmail-smtpd start script.  Please post that.
If you're using svscan, post the contents of .../service/smtpd/run .

Charles
-- 
-----------------------------------------------------------------------
Charles Cazabon                            <[EMAIL PROTECTED]>
GPL'ed software available at:  http://www.qcc.sk.ca/~charlesc/software/
Any opinions expressed are just that -- my opinions.
-----------------------------------------------------------------------

---

---

I have a feeling I'll get laughed at, but here goes.
I'm not using svscan.  This is what I have in (*gulp*) inetd.conf:

smtp    stream tcp nowait qmaild /var/qmail/bin/tcp-env tcp-env   
/var/qmail/bin/qmail-smtpd

>From: Charles Cazabon <[EMAIL PROTECTED]>
>To: [EMAIL PROTECTED]
>Subject: Re: Relay-ctrl and qmail: problem more fundamental, I think
>Date: Wed, 28 Feb 2001 12:47:10 -0600
>
>Bill Isaacs <[EMAIL PROTECTED]> wrote:
> >
> > that fixed that.  I then did a tcprulescheck and got:
> > ----------------------------------------------------------------
> > [root@hoss /etc]# TCPREMOTEIP=64.161.212.206 tcprulescheck
> > /etc/tcpcontrol/smtp.
> > cdb
> > rule 64.161.212.206:
> > set environment variable RELAYCLIENT=
> > allow connection
> > [root@hoss /etc]#
> > ----------------------------------------------------------------
> > In addition, I noted the the smtp.cdb file was being updated every 
>minute
> > according to ls -l .
> >
> > So now methinks I should be able to relay, no?  no.  Same message, 
>"5.5.3
> > sorry, blah blah blah".
>
>The .cdb file is fine, but you're not being allowed to relay.  Therefore,
>the problem is in your qmail-smtpd start script.  Please post that.
>If you're using svscan, post the contents of .../service/smtpd/run .
>
>Charles
>--
>-----------------------------------------------------------------------
>Charles Cazabon                            <[EMAIL PROTECTED]>
>GPL'ed software available at:  http://www.qcc.sk.ca/~charlesc/software/
>Any opinions expressed are just that -- my opinions.
>-----------------------------------------------------------------------

_________________________________________________________________
Get your FREE download of MSN Explorer at http://explorer.msn.com

---

---

Bill Isaacs <[EMAIL PROTECTED]> wrote:
> 
> I have a feeling I'll get laughed at, but here goes.

No, laughing is reserved for people who send mail like "qmail isn't working
for me.  Why?" to the mailing list.

> I'm not using svscan.  This is what I have in (*gulp*) inetd.conf:
> 
> smtp    stream tcp nowait qmaild /var/qmail/bin/tcp-env tcp-env   
> /var/qmail/bin/qmail-smtpd

Okay.  You need to change this; take it out of inetd.conf and kill -HUP
inetd.  Start qmail-smtpd with tcpserver -- if you want, you can
supervise and svscan it as well.  The tcpserver invocation must include the
option and value "-x /etc/tcpcontrol/smtp.cdb".

So the problem was that the .cdb file was never being consulted, and therefore
the RELAYCLIENT environment variable was not being set (conditionally or not).

Charles
-- 
-----------------------------------------------------------------------
Charles Cazabon                            <[EMAIL PROTECTED]>
GPL'ed software available at:  http://www.qcc.sk.ca/~charlesc/software/
Any opinions expressed are just that -- my opinions.
-----------------------------------------------------------------------

---

---

Lost, lost, lost!

OK, I'm a newbie with most of this stuff, but I'm having a problem invoking 
smtp with tcpserver. Trying this:
--------------------------------------------------------
tcpserver -v -R -x /etc/tcpcontrol/smtp.cdb 0 pop-3 
/var/qmail/bin/qmail-popup hoss.willysworkshop.com \
/bin/checkpassword /usr/sbin/relay-ctrl-allow /var/qmail/bin/qmail-pop3d 
Maildir
2>&1 | \
/var/qmail/bin/qmail-smtpd \
/var/qmail/bin/splogger pop3d &
--------------------------------------------------------
results in this:
--------------------------------------------------------
[root@hoss smtpd]# 220 hoss.willysworkshop.com ESMTP
502 unimplemented (#5.5.1)
--------------------------------------------------------
and this on my POP client:
--------------------------------------------------------
Could not connect to "hoss.willysworkshop.com" Cause: connection 
refused(10061)
--------------------------------------------------------
What am I doing wrong with the tcpserver invocation?

>From: Charles Cazabon <[EMAIL PROTECTED]>
>To: [EMAIL PROTECTED]
>Subject: Re: Fwd: Re: Relay-ctrl and qmail: problem more fundamental, I 
>think
>Date: Wed, 28 Feb 2001 13:11:57 -0600
>
>Bill Isaacs <[EMAIL PROTECTED]> wrote:
> >
> > I have a feeling I'll get laughed at, but here goes.
>
>No, laughing is reserved for people who send mail like "qmail isn't working
>for me.  Why?" to the mailing list.
>
> > I'm not using svscan.  This is what I have in (*gulp*) inetd.conf:
> >
> > smtp    stream tcp nowait qmaild /var/qmail/bin/tcp-env tcp-env
> > /var/qmail/bin/qmail-smtpd
>
>Okay.  You need to change this; take it out of inetd.conf and kill -HUP
>inetd.  Start qmail-smtpd with tcpserver -- if you want, you can
>supervise and svscan it as well.  The tcpserver invocation must include the
>option and value "-x /etc/tcpcontrol/smtp.cdb".
>
>So the problem was that the .cdb file was never being consulted, and 
>therefore
>the RELAYCLIENT environment variable was not being set (conditionally or 
>not).
>
>Charles
>--
>-----------------------------------------------------------------------
>Charles Cazabon                            <[EMAIL PROTECTED]>
>GPL'ed software available at:  http://www.qcc.sk.ca/~charlesc/software/
>Any opinions expressed are just that -- my opinions.
>-----------------------------------------------------------------------

_________________________________________________________________
Get your FREE download of MSN Explorer at http://explorer.msn.com

---

---

On Wed, Feb 28, 2001 at 08:35:02PM -0000, Bill Isaacs wrote:
> 
> Lost, lost, lost!
> 
> OK, I'm a newbie with most of this stuff, but I'm having a problem invoking 
> smtp with tcpserver. Trying this:
> --------------------------------------------------------
> tcpserver -v -R -x /etc/tcpcontrol/smtp.cdb 0 pop-3 
> /var/qmail/bin/qmail-popup hoss.willysworkshop.com \
> /bin/checkpassword /usr/sbin/relay-ctrl-allow /var/qmail/bin/qmail-pop3d 
> Maildir
> 2>&1 | \
> /var/qmail/bin/qmail-smtpd \
> /var/qmail/bin/splogger pop3d &

Yikes! You're piping the output of qmail-pop3d into qmail-smtpd. qmail-pop3d
and qmail-smtpd have nothing to do with each other, and qmail-smtpd will be
justifiably confused.

Remove that bit, and give it another shot.

Chris

PGP signature

---

---

Bill Isaacs <[EMAIL PROTECTED]> wrote:
> 
> Lost, lost, lost!
> 
> OK, I'm a newbie with most of this stuff, but I'm having a problem invoking 
> smtp with tcpserver. Trying this:
> --------------------------------------------------------
> tcpserver -v -R -x /etc/tcpcontrol/smtp.cdb 0 pop-3 
> /var/qmail/bin/qmail-popup hoss.willysworkshop.com \
> /bin/checkpassword /usr/sbin/relay-ctrl-allow /var/qmail/bin/qmail-pop3d 
> Maildir
> 2>&1 | \
> /var/qmail/bin/qmail-smtpd \
> /var/qmail/bin/splogger pop3d &

Okay, a couple of problems here.  One, you're trying to bind to the pop3
port (the argument pop-3).  That should be either "smtp" or "25".
Two, you're not invoking the right program.

Try something more like:

tcpserver g GID -u UID -DRvX \
   -x /etc/tcpcontrol/smtp.cdb 0 smtp \
   qmail-smtpd

Change GID and UID to the GID and UID values that the server should run
as.  The last argument is the program which tcpserver runs for each
connection.  -v turns on some status messages, -R turns off ident lookups
on the remote host, -D turns on TCP_NODELAY, -X says accept connections
even if the cdb file doesn't exist.

Charles
-- 
-----------------------------------------------------------------------
Charles Cazabon                            <[EMAIL PROTECTED]>
GPL'ed software available at:  http://www.qcc.sk.ca/~charlesc/software/
Any opinions expressed are just that -- my opinions.
-----------------------------------------------------------------------

---

---

At the risk of sounding really stupid, do I need to invoke BOTH the 
corrected script (minus the qmail-smtpd part) AND the old one (pop-3, etc.)? 
  In other words, will I have two tcpserver scripts, one invoking the pop-3 
and the other the qmail smtpd?

As I said, I am a complete newbie with email and no great shakes with much 
of this stuff to begin with.  I hope you folks aren't getting to tired of 
answering these dumb questions.

Thanks,

Bill

>From: Charles Cazabon <[EMAIL PROTECTED]>
>To: [EMAIL PROTECTED]
>Subject: Re: Relay-ctrl and qmail: problem more fundamental, I think
>Date: Wed, 28 Feb 2001 15:15:08 -0600
>
>Bill Isaacs <[EMAIL PROTECTED]> wrote:
> >
> > Lost, lost, lost!
> >
> > OK, I'm a newbie with most of this stuff, but I'm having a problem 
>invoking
> > smtp with tcpserver. Trying this:
> > --------------------------------------------------------
> > tcpserver -v -R -x /etc/tcpcontrol/smtp.cdb 0 pop-3
> > /var/qmail/bin/qmail-popup hoss.willysworkshop.com \
> > /bin/checkpassword /usr/sbin/relay-ctrl-allow /var/qmail/bin/qmail-pop3d
> > Maildir
> > 2>&1 | \
> > /var/qmail/bin/qmail-smtpd \
> > /var/qmail/bin/splogger pop3d &
>
>Okay, a couple of problems here.  One, you're trying to bind to the pop3
>port (the argument pop-3).  That should be either "smtp" or "25".
>Two, you're not invoking the right program.
>
>Try something more like:
>
>tcpserver g GID -u UID -DRvX \
>    -x /etc/tcpcontrol/smtp.cdb 0 smtp \
>    qmail-smtpd
>
>Change GID and UID to the GID and UID values that the server should run
>as.  The last argument is the program which tcpserver runs for each
>connection.  -v turns on some status messages, -R turns off ident lookups
>on the remote host, -D turns on TCP_NODELAY, -X says accept connections
>even if the cdb file doesn't exist.
>
>Charles
>--
>-----------------------------------------------------------------------
>Charles Cazabon                            <[EMAIL PROTECTED]>
>GPL'ed software available at:  http://www.qcc.sk.ca/~charlesc/software/
>Any opinions expressed are just that -- my opinions.
>-----------------------------------------------------------------------

_________________________________________________________________
Get your FREE download of MSN Explorer at http://explorer.msn.com

---

---

On Mon, Feb 26, 2001 at 04:28:43PM -0800, Brandon Yu wrote:
> I have been given the task to send out 2 million emails in a 12 hour time
> window. All the emails will be sent remotely, to a list of users of which is
> 90% accurate (I figure 10% of the emails will bounceback because of bad
> email addresses) I have all the bandwidth I need (servers are located in
> co-location) and will be sorting the email list by domain name.
>  
> My initial idea is to have 2 dedicated qmail servers, ( Redhat Linux 6.2,
> Pentium 600, 500Megs RAM, IDE drives) configured with a concurrency limit of
> 400. Other than that, the qmail install will be out of the box.
>  
> Can I reasonably meet this rate ? Do you have any suggestions?

A higher concurrency *may* be beneficial. It's not gonna hurt, anyway.

I'm assuming you are using ezmlm or something similar for this.
Anything else would be suicide.

Greetz, Peter.

---

---

On Tue, Feb 27, 2001 at 08:11:10PM +0100, Peter van Dijk wrote:
> As long as you are injecting messages, qmail won't perform at full
> speed. Play with that rate, maybe no limiting *is* the best option.

Maybe an idea would also be to "disable" the trigger mechanism in
qmail-queue/qmail-send (changing permission on trigger would be sufficient)
and change qmail-send's sleep timeout to some 60 seconds.
This can be easily done by changing qmail-send:

#define SLEEP_TODO 1500 /* check todo/ every 25 minutes in any case */

This would cause qmail to "bulk", i.e. scan todo and organize, send out
the mails, and then start again.

With that one could measure (system and bulk job dependant) how many
emails qmail can send out in a certain interval.
Then one could synch the SLEEP_TODO and the number of injects per
SLEEP_TODO.

        \Maex

P.S. as some ppl wondered ... no, i didn't get lost ;-) only had no time
  to read the list which bestowed me 1200 unread messages :/ but I'm
  nearly though ;-)

-- 
SpaceNet AG            | Joseph-Dollinger-Bogen 14 | Fon: +49 (89) 32356-0
Research & Development |       D-80807 Muenchen    | Fax: +49 (89) 32356-299
Stress is when you wake up screaming and you realize you haven't fallen
asleep yet.

---

---

Hi,

There appears to be a problem with the length of the pop3 user acct name
under qmail. I have an idea that the max allowable characters in the xxx
part of [EMAIL PROTECTED] should be 64 characters (I've looked at rfc's 821
and 1939 and did not find a definitive answer). I had a situation where a
user had used 35 characters in the pop3 acct name causing the mail to
bounce.

Can someone please confirm the actual limit for the pop3 acct name under
qmail and also where I might find the defacto reference for the information
provided.

TIA

Regards

 Dean Browett

---

---

On Wed, Feb 28, 2001 at 07:22:13PM -0000, Dean Browett wrote:
> There appears to be a problem with the length of the pop3 user acct name
> under qmail.

I don't think there is.

> I have an idea that the max allowable characters in the xxx part of
> [EMAIL PROTECTED] should be 64 characters (I've looked at rfc's 821 and 1939
> and did not find a definitive answer). I had a situation where a user had
> used 35 characters in the pop3 acct name causing the mail to bounce.

Let's see the evidence. And anyway, how could a POP user name possibly affect
mail delivery? POP is used to collect mail that's already been delivered, and
whatever limitations a POP daemon may or may not impose on the length of a user
name is unknown to the agents invloved in delivering mail to a user's mailbox.

> Can someone please confirm the actual limit for the pop3 acct name under
> qmail and also where I might find the defacto reference for the information
> provided.

Without even looking at the code, I can say with reasonable confidence that
qmail-popup and checkpassword don't impose any limitations on the length of a
user name, and even if they did these limitations couldn't cause anyone's mail
to bounce.

Chris

PGP signature

---

---

It seems that someone's mail server re-injecting messages to this 
mailing list.  I just got another copy of a message that I sent 
yesterday.  Has anyone else noticed this?  The headers are included and 
what I have seen is that the Message-id has changed maybe to the mail 
server that is re-injecting the message and obviously the Return-path 
and all the Received lines.

This is the original:
--------------------------------
Received: (qmail 6694 invoked from network); 27 Feb 2001 06:22:51 -0000
Received: from localhost (127.0.0.1)
  by localhost with SMTP; 27 Feb 2001 06:22:51 -0000
Received: from localhost
        by localhost with IMAP (fetchmail-5.2.0)
        for andyb@localhost (single-drop); Mon, 26 Feb 2001 23:22:51 -0700 (MST)
Received: (qmail 28594 invoked by uid 0); 27 Feb 2001 06:22:25 -0000
Received: from [EMAIL PROTECTED] by 
mail.calderasystems.com with scan4virus-0.50 (uvscan: v4.0.70/v4077. . Clean. 
Processed in 0.609433 secs); 26/02/2001 23:22:25
Received: from id.wustl.edu (128.252.140.87)
  by mail.calderasystems.com with SMTP; 27 Feb 2001 06:22:24 -0000
Received: (qmail 32017 invoked by alias); 27 Feb 2001 06:22:23 -0000
Precedence: bulk
List-unsubscribe: <mailto:[EMAIL PROTECTED]>
List-subscribe: <mailto:[EMAIL PROTECTED]>
List-post: <mailto:[EMAIL PROTECTED]>
Received: (qmail 32014 invoked from network); 27 Feb 2001 06:22:23 -0000
Mailing-list: contact [EMAIL PROTECTED]; run by ezmlm
Precedence: bulk
Message-id: <[EMAIL PROTECTED]>
X-image-url: http://www.xmission.com/~bradipo/pictures/mugshot1sm.jpg
X-url: http://www.xmission.com/~bradipo/
In-reply-to: Message from "Chrisanthy Carlane" <[EMAIL PROTECTED]>
   of "Tue, 27 Feb 2001 13:13:52 +0700." <000c01c0a084$7531d060$8924a5ca@everyone> 
Mime-version: 1.0
Content-type: text/plain; charset=us-ascii
Return-path: <[EMAIL PROTECTED]>
Delivered-to: andyb@localhost
Delivered-to: [EMAIL PROTECTED]
Delivered-to: mailing list [EMAIL PROTECTED]
Delivered-to: mailing list [EMAIL PROTECTED]
X-mailer: exmh version 2.2 06/23/2000 with nmh-1.0.4
To: "Chrisanthy Carlane" <[EMAIL PROTECTED]>
Cc: [EMAIL PROTECTED]
Subject: Re: mailserver buffering
Date: Mon, 26 Feb 2001 23:17:22 -0700
From: Andy Bradford <[EMAIL PROTECTED]>
--------------------------------

This is the duplicate:
--------------------------------
Received: (qmail 15724 invoked from network); 28 Feb 2001 17:53:13 -0000
Received: from localhost (127.0.0.1)
  by localhost with SMTP; 28 Feb 2001 17:53:13 -0000
Received: from localhost
        by localhost with IMAP (fetchmail-5.2.0)
        for andyb@localhost (single-drop); Wed, 28 Feb 2001 10:53:13 -0700 (MST)
Received: (qmail 22216 invoked by uid 0); 28 Feb 2001 17:53:00 -0000
Received: from [EMAIL PROTECTED] by 
mail.calderasystems.com with scan4virus-0.50 (uvscan: v4.0.70/v4077. . Clean. 
Processed in 3.906777 secs); 28/02/2001 10:52:56
Received: from id.wustl.edu (128.252.140.87)
  by mail.calderasystems.com with SMTP; 28 Feb 2001 17:52:56 -0000
Received: (qmail 5699 invoked by alias); 28 Feb 2001 17:52:54 -0000
Precedence: bulk
List-unsubscribe: <mailto:[EMAIL PROTECTED]>
List-subscribe: <mailto:[EMAIL PROTECTED]>
List-post: <mailto:[EMAIL PROTECTED]>
Received: (qmail 5696 invoked from network); 28 Feb 2001 17:52:53 -0000
Mailing-list: contact [EMAIL PROTECTED]; run by ezmlm
Precedence: bulk
Message-id: <[EMAIL PROTECTED]>
X-image-url: http://www.xmission.com/~bradipo/pictures/mugshot1sm.jpg
X-url: http://www.xmission.com/~bradipo/
In-reply-to: Message from "Chrisanthy Carlane" <[EMAIL PROTECTED]>
   of "Tue, 27 Feb 2001 13:13:52 +0700." <000c01c0a084$7531d060$8924a5ca@everyone> 
Mime-version: 1.0
Content-type: text/plain; charset=us-ascii
Return-path: <[EMAIL PROTECTED]>
Delivered-to: andyb@localhost
Delivered-to: [EMAIL PROTECTED]
Delivered-to: mailing list [EMAIL PROTECTED]
Delivered-to: mailing list [EMAIL PROTECTED]
To: "Chrisanthy Carlane" <[EMAIL PROTECTED]>
Cc: [EMAIL PROTECTED]
Subject: Re: mailserver buffering
Date: Mon, 26 Feb 2001 23:17:22 -0700
From: Andy Bradford <[EMAIL PROTECTED]>
--------------------------------

Andy

---

---

Hi,

I have been getting this message in my logfile:

qmail: [numbers] alert: unable to append to bounce message HELP!
sleeping...

qmail seems to be doing this every 10 seconds or so.

Any advice or pointers to the right direction for information will be
apreachiated

---

---

[EMAIL PROTECTED] <[EMAIL PROTECTED]> wrote:
> 
> qmail: [numbers] alert: unable to append to bounce message HELP!
> sleeping...

Your queue disk is probably full or out of inodes.

Charles
-- 
-----------------------------------------------------------------------
Charles Cazabon                            <[EMAIL PROTECTED]>
GPL'ed software available at:  http://www.qcc.sk.ca/~charlesc/software/
Any opinions expressed are just that -- my opinions.
-----------------------------------------------------------------------

---

---

The problem turned to be a full disk.

Thanks to all who answered my question, and gave me good advice


Charles Cazabon wrote:

> [EMAIL PROTECTED] <[EMAIL PROTECTED]> wrote:
> >
> > qmail: [numbers] alert: unable to append to bounce message HELP!
> > sleeping...
>
> Your queue disk is probably full or out of inodes.
>
> Charles
> --
> -----------------------------------------------------------------------
> Charles Cazabon                            <[EMAIL PROTECTED]>
> GPL'ed software available at:  http://www.qcc.sk.ca/~charlesc/software/
> Any opinions expressed are just that -- my opinions.
> -----------------------------------------------------------------------

---

---

Is there a way to specify or override the attachment limit? We have a
message getting rejected with an attachment too large message, it is a
13mb attachment. I was previously unaware there was a limit :) Thanks1

Regards,


Cristopher Daniluk
President & CEO
email: [EMAIL PROTECTED]
direct: 330/530-2373

Digital Services Network, Inc
Unleashing Your Potential
voice: 800/845-4822 
web: http://www.dsnet.net/

 <<Cristopher Daniluk.vcf>> 

BEGIN:VCARD
VERSION:2.1
N:Daniluk;Cristopher
FN:Cristopher Daniluk
EMAIL;PREF;INTERNET:[EMAIL PROTECTED]
REV:20001219T050844Z
END:VCARD

---

---

Cristopher Daniluk <[EMAIL PROTECTED]> wrote:
> Is there a way to specify or override the attachment limit? We have a
> message getting rejected with an attachment too large message, it is a
> 13mb attachment. I was previously unaware there was a limit :) Thanks1

qmail does not enforce a message length limit by default; the sysadmin has to
put one in.  That length limit is in /var/qmail/control/databytes , and can be
overridden on a per-connection basis by setting the DATABYTES environment
variable.

Another solution, of course, is to not send 13MB files through email.  Use
FTP, HTTP, NNTP, or some other method.

Charles
-- 
-----------------------------------------------------------------------
Charles Cazabon                            <[EMAIL PROTECTED]>
GPL'ed software available at:  http://www.qcc.sk.ca/~charlesc/software/
Any opinions expressed are just that -- my opinions.
-----------------------------------------------------------------------

---

---

unsubcribe

---

---

Does anyone have any good resources for how to setup a list mirror?  How to
get one mirrored on a public archiving site would be helpful too.

David Coley

---

---

Hi all...

Has anyone installed "Time::HiRes" for Qmail-Scanner
(http://qmail-scanner.sourceforge.net/) on Redhat7.0 ? I'm finding that if I
try and install the modual as an rpm it wants an older version of perl. If
manually install "Time::HiRes" the ./configure can't find the modual

Any suggestions ?

Regards
Dennis

---

---

On Tue, Feb 27, 2001 at 02:04:18PM +1100, [EMAIL PROTECTED] wrote:
> Hi all...
> 
> Has anyone installed "Time::HiRes" for Qmail-Scanner

yes. install the cpan module, and then run cpan, and type "install Time::HiRes".
Other questions ? :)

Regards,
Olivier
-- 
_________________________________________________________________
 Olivier Mueller - [EMAIL PROTECTED] - PGPkeyID: 0E84D2EA - Switzerland
qmail projects: http://omail.omnis.ch  -  http://webmail.omnis.ch

PGP signature

---

---

Abu Arqam <[EMAIL PROTECTED]> wrote:
> 
> I using qmail-1.03 and I compiled checkpassword-0.90 and vpopmail-4.9.8-1.
[...] 
> But I get some error "ERR this user has no $HOME/Maildir".  What's wrong?

The user has no $HOME/Maildir/.  Seriously -- the error message tells you
exactly what's wrong.  However, it does make the following assumptions:

-you know what a Maildir is
-since you've chosen to use qmail-pop3d, which only supports Maildirs,
  it assumes you've properly created Maildirs for your users

So, did you create a Maildir for the user?  Is it located in their home
directory, and named "Maildir"?  Does the user own their home directory and
the Maildir?

Charles
-- 
-----------------------------------------------------------------------
Charles Cazabon                            <[EMAIL PROTECTED]>
GPL'ed software available at:  http://www.qcc.sk.ca/~charlesc/software/
Any opinions expressed are just that -- my opinions.
-----------------------------------------------------------------------

---

---

Let me just get straight to what I'm trying to do and see if somebody can
help me figure out how to do it.  I'm setuping up a server to do virtual
domain and email hosting for customers.  I'm assuming that 90% of the
customers using my system will want to do just POP3 email for their
domains, however, I want to make it possible for the other 10% to use a
shell account to access their email.  Rather than make this a necessarily
either or situation, I want to make it so that if they have POP3 email
accounts, their mail will be default be delivered to those, but everything
else will go into their standard system account.

Because I want to make this system compatible with Pine, elm, etc, I would
prefer to use the old mailbox format for the system accounts, but use
Maildir, or MAilbox, for the POP3 accounts.  So here's what I need.  I
want to find a way to using a simple POP3 daemon, that can handle both
Mailbox and Maildir formats, and will look to a customers system
(/var/mail) box if their username in the POP3 protocol is just a username,
or in their virtual POP3 box if their username is '[EMAIL PROTECTED]'.

I realize this is probably a horribly complicated system, but I think it
would help my service appeal to both the power (shell & POP3 --
like me) user, and more standard (POP3-only) users.

Any ideas on how to set this up would be greatly appreciated.

Ben

---

---

Hello

I would like multilog to output to one of the virtual consoles under linux
as well as the usual log file. I have looked through the archives, man
pages, etc and the best I can come up with is to append the console device
to the end of the command that invokes multilog ie:

/usr/local/bin/multilog t /var/log/qmail /dev/tty9

where /dev/tty9 is virtual console 9. Does anyone know if this will work?

Cheers
Roger

---

---

On Wed, Feb 28, 2001 at 02:33:52PM -0700, Roger Waterhouse wrote:
> Hello
> 
> I would like multilog to output to one of the virtual consoles under linux
> as well as the usual log file. I have looked through the archives, man
> pages, etc and the best I can come up with is to append the console device
> to the end of the command that invokes multilog ie:
> 
> /usr/local/bin/multilog t /var/log/qmail /dev/tty9
> 
> where /dev/tty9 is virtual console 9. Does anyone know if this will work?

Try it and you'll know.

Greetz, Peter.

---

---

Roger Waterhouse <[EMAIL PROTECTED]> wrote:
> 
> ... the best I can come up with is to append the console device
> to the end of the command that invokes multilog ie:
> 
> /usr/local/bin/multilog t /var/log/qmail /dev/tty9
> 
> where /dev/tty9 is virtual console 9. Does anyone know if this will work?

Have you tried it?  If not, why not?

Charles
-- 
-----------------------------------------------------------------------
Charles Cazabon                            <[EMAIL PROTECTED]>
GPL'ed software available at:  http://www.qcc.sk.ca/~charlesc/software/
Any opinions expressed are just that -- my opinions.
-----------------------------------------------------------------------

---

---

On Mon, Feb 26, 2001 at 05:11:56PM +0800, flint wrote:
> Dear Alex Pennace
> 
> >In that case, send SIGTERM to the qmail-send process.
> 
> I have tried to do so. But can you tell me where I can find PID of qmail-send 
>process?

Use ps.

---

---

Hi everybody!!!
There is a further development on the case with the strange
(at least for me) behaviour of some smtp servers ( for 
example usa.net servers) not being able to send mail to my 
poor qmail1.03 server.
I made an account on usa.net send my self a letter and 
finnaly it bounced back. It is amazing but they use qmail 
too!!!!!!!!!!!
Here is the bounced message:::

usa.net bounced message start!!!!---------------------------
---------------

Hi. This is the qmail-send program at 
nwcst322.netaddress.usa.net.
I'm afraid I wasn't able to deliver your message to the 
following addresses.
This is a permanent error; I've given up. Sorry it didn't 
work out.

[EMAIL PROTECTED]:
Connected to 193.200.17.182 but connection died. Possible 
duplicate!
I'm not going to try again; this message has been in the 
queue too long.

--- Below this line is a copy of the message.

Return-Path: [EMAIL PROTECTED]
Received: (qmail 9584 invoked by uid 60001); 23 Feb 2001 
10:00:33 -0000
Message-ID: 
[EMAIL PROTECTED]
Received: from 204.68.23.67 by nwcst322 for 
[207.241.163.22] via
web-mailer(34FM.0700.15B.01) on Fri Feb 23 10:00:33 GMT 2001
Date: 23 Feb 2001 03:00:33 MST
From: Sasun Pundev [EMAIL PROTECTED]
To: "Alexander Georgiev" [EMAIL PROTECTED]
Subject: Re: [eeee]
X-Mailer: USANET web-mailer (34FM.0700.15B.01)
Mime-Version: 1.0
Content-Type: text/plain; charset=US-ASCII
Content-Transfer-Encoding: quoted-printable

"Alexander Georgiev" [EMAIL PROTECTED] 
wrote:

 --------------------------------------------- =

 Attachment:=A0 =

 MIME Type:=A0multipart/alternative =

 --------------------------------------------- =

eurorisksystems


____________________________________________________________
________
Get free email and a permanent address at 
http://www.netaddress.com/?N=3D=
1
usa.net bounced message end!!!!-----------------------------
-------------


Where is the long expected guru that is to solve this 
matter???




----- Оригинално писмо ------
От: Saso Dundev [EMAIL PROTECTED] 
Относно: Re: Re: Cannot receive mail from some sites
До : [EMAIL PROTECTED]
Изпратено на: 25.02.2001 13:13:27
----------
Hi,
Thank you very much Charles!
I did post a log from the failed session made with 
recordio. One can see that the remote site seize 
transmition after issuing: "DATA?" and my site responds 
with:"354 go ahead?". My site does not receive anything 
else and qmail-smtp timeouts. For example see session with 
pid 2826. I am posting the session log as attachment as 
well, because my web based client eats the "" signs.
If the problems is in the remote site violeting the "rn",
what can I do. Is there a fix????


session log start:----------------
Feb 22 23:49:53 gw smtpd: 982878593.400905 tcpserver: pid 
2826 from 194.221.211.145
Feb 22 23:50:19 gw smtpd: 982878619.435991 tcpserver: ok 
2826 eurorisksystems.com:193.200.17.182:25 
vwmail4.hypovereinsbank.de:194.221.211.145::59228
Feb 22 23:50:19 gw smtpd: 982878619.454757 2826  220 
ms.eurorisksystems.com ESMTP? 
Feb 22 23:50:22 gw smtpd: 982878622.354098 2826  EHLO 
vwmail.HypoVereinsbank.DE? 
Feb 22 23:50:22 gw smtpd: 982878622.358529 2826  250-
ms.eurorisksystems.com? 
Feb 22 23:50:22 gw smtpd: 982878622.361590 2826  250-
PIPELINING? 
Feb 22 23:50:22 gw smtpd: 982878622.364295 2826  250 
8BITMIME? 
Feb 22 23:50:23 gw smtpd: 982878623.783361 2826  MAIL 
From:[EMAIL PROTECTED]? 
Feb 22 23:50:23 gw smtpd: 982878623.787308 2826  250 ok? 
Feb 22 23:50:25 gw smtpd: 982878625.563224 2826  RCPT 
To:[EMAIL PROTECTED]? 
Feb 22 23:50:25 gw smtpd: 982878625.568568 2826  250 ok? 
Feb 22 23:50:27 gw smtpd: 982878627.139794 2826  DATA? 
Feb 22 23:50:27 gw smtpd: 982878627.153254 2826  354 go 
ahead? 
Feb 22 23:54:10 gw smtpd: 982878850.895510 2818  451 
timeout (#4.4.2)? 
Feb 22 23:54:10 gw smtpd: 982878850.898664 2818  [EOF]
Feb 22 23:54:10 gw smtpd: 982878850.909532 tcpserver: end 
2818 status 256
Feb 22 23:54:10 gw smtpd: 982878850.914715 tcpserver: 
status: 2/40
Feb 22 23:57:12 gw smtpd: 982879032.075360 tcpserver: 
status: 3/40
Feb 22 23:57:12 gw smtpd: 982879032.080109 tcpserver: pid 
2831 from 193.158.192.31
Feb 22 23:57:14 gw smtpd: 982879034.501498 tcpserver: ok 
2831 eurorisksystems.com:193.200.17.182:25 vwmail-
b.hypovereinsbank.de:193.158.192.31::55482
Feb 22 23:57:14 gw smtpd: 982879034.519838 2831  220 
ms.eurorisksystems.com ESMTP? 
Feb 22 23:57:15 gw smtpd: 982879035.885164 2831  EHLO 
vwmail-b.HypoVereinsbank.de? 
Feb 22 23:57:15 gw smtpd: 982879035.888215 2831  250-
ms.eurorisksystems.com? 
Feb 22 23:57:15 gw smtpd: 982879035.890929 2831  250-
PIPELINING? 
Feb 22 23:57:15 gw smtpd: 982879035.893633 2831  250 
8BITMIME? 
Feb 22 23:57:27 gw smtpd: 982879047.679537 2831  MAIL 
From:? 
Feb 22 23:57:27 gw smtpd: 982879047.683208 2831  250 ok? 
Feb 22 23:57:28 gw smtpd: 982879048.914208 2831  RCPT 
To:[EMAIL PROTECTED]? 
Feb 22 23:57:28 gw smtpd: 982879048.917883 2831  250 ok? 
Feb 22 23:57:30 gw smtpd: 982879050.464026 2831  DATA? 
Feb 22 23:57:30 gw smtpd: 982879050.475434 2831  354 go 
ahead? 
Feb 23 00:01:02 gw smtpd: 982879262.959661 tcpserver: 
status: 4/40
Feb 23 00:01:02 gw smtpd: 982879262.964829 tcpserver: pid 
2845 from 194.221.211.145
Feb 23 00:01:28 gw smtpd: 982879288.995972 tcpserver: ok 
2845 eurorisksystems.com:193.200.17.182:25 
vwmail4.hypovereinsbank.de:194.221.211.145::59740
Feb 23 00:01:29 gw smtpd: 982879289.015136 2845  220 
ms.eurorisksystems.com ESMTP? 
Feb 23 00:01:30 gw smtpd: 982879290.037731 2845  EHLO 
vwmail.HypoVereinsbank.DE? 
Feb 23 00:01:30 gw smtpd: 982879290.040721 2845  250-
ms.eurorisksystems.com? 
Feb 23 00:01:30 gw smtpd: 982879290.043457 2845  250-
PIPELINING? 
Feb 23 00:01:30 gw smtpd: 982879290.046194 2845  250 
8BITMIME? 
Feb 23 00:01:31 gw smtpd: 982879291.457610 2845  MAIL 
From:[EMAIL PROTECTED]? 
Feb 23 00:01:31 gw smtpd: 982879291.461524 2845  250 ok? 
Feb 23 00:01:33 gw smtpd: 982879293.127466 2845  RCPT 
To:[EMAIL PROTECTED]? 
Feb 23 00:01:33 gw smtpd: 982879293.131349 2845  250 ok? 
Feb 23 00:01:34 gw smtpd: 982879294.897281 2845  DATA? 
Feb 23 00:01:34 gw smtpd: 982879294.909681 2845  354 go 
ahead? 
Feb 23 00:02:25 gw smtpd: 982879345.847132 2823  451 
timeout (#4.4.2)? 
Feb 23 00:02:25 gw smtpd: 982879345.859363 2823  [EOF]
Feb 23 00:02:25 gw smtpd: 982879345.862978 tcpserver: end 
2823 status 256
Feb 23 00:02:25 gw smtpd: 982879345.865111 tcpserver: 
status: 3/40
Feb 23 00:08:26 gw smtpd: 982879706.896561 tcpserver: 
status: 4/40
Feb 23 00:08:26 gw smtpd: 982879706.900966 tcpserver: pid 
2848 from 194.221.211.145
Feb 23 00:08:53 gw smtpd: 982879733.705930 tcpserver: ok 
2848 eurorisksystems.com:193.200.17.182:25 
vwmail4.hypovereinsbank.de:194.221.211.145::60191
Feb 23 00:08:53 gw smtpd: 982879733.725160 2848  220 
ms.eurorisksystems.com ESMTP? 
Feb 23 00:08:57 gw smtpd: 982879737.562845 2848  EHLO 
vwmail.HypoVereinsbank.DE? 
Feb 23 00:08:57 gw smtpd: 982879737.566764 2848  250-
ms.eurorisksystems.com? 
Feb 23 00:08:57 gw smtpd: 982879737.569507 2848  250-
PIPELINING? 
Feb 23 00:08:57 gw smtpd: 982879737.572209 2848  250 
8BITMIME? 
Feb 23 00:08:59 gw smtpd: 982879739.230800 2848  MAIL 
From:[EMAIL PROTECTED]? 
Feb 23 00:08:59 gw smtpd: 982879739.233885 2848  250 ok? 
Feb 23 00:09:00 gw smtpd: 982879740.906551 2848  RCPT 
To:[EMAIL PROTECTED]? 
Feb 23 00:09:00 gw smtpd: 982879740.910252 2848  250 ok? 
Feb 23 00:09:02 gw smtpd: 982879742.787501 2848  DATA? 
Feb 23 00:09:02 gw smtpd: 982879742.799031 2848  354 go 
ahead? 
Feb 23 00:10:27 gw smtpd: 982879827.147181 2826  451 
timeout (#4.4.2)? 
Feb 23 00:10:27 gw smtpd: 982879827.156967 2826  [EOF]
Feb 23 00:10:27 gw smtpd: 982879827.162034 tcpserver: end 
2826 status 256
session log end:----------------




----- Original letter------
От: Charles Cazabon [EMAIL PROTECTED] 
Относно: Re: Cannot receive mail from some sites
До : [EMAIL PROTECTED]
Изпратено на: 23.02.2001 18:40:46
----------
Saso Dundev [EMAIL PROTECTED] wrote:
 
 I can receive mail from almost all sites in the net ( 
for example yahoo.com),
 but there are few that cannot send mail to me ( for 
example the usa.net
 servers). They establish a connection but seize data 
transmition and qmail
 timeouts. 

This could be an issue with SMTP line endings -- the 
particular remote sites
which are having problems sending to you may be violating 
the spec by
not sending rn, particularly at the end of the DATA phase.

Use recordio with qmail-smtpd to record an example of the 
faulty session.
If the resulting log doesn't mean anything to you, post it 
here.
See djb's site and www.qmail.org for info on how to set up 
and use recordio.

Charles
-- 
-----------------------------------------------------------
------------
Charles Cazabon                            
[EMAIL PROTECTED]
GPL'ed software available at:  
http://www.qcc.sk.ca/~charlesc/software/
Any opinions expressed are just that -- my opinions.
-----------------------------------------------------------
------------

----------
                 



http://my.gbg.bg - Направи си свой собствен Гювеч - новини, спорт, музика, времето, 
кино...
http://kartichki.abv.bg/ - Изпрати картичка за Баба Марта :)

---

---

Hey, here is a cool/useful site for some of us network monkeys...
http://bsdnerds.com it's got some pretty good Unix networking & programming
stuff that most of us need from time to time..great site for useful
reference.


_________________________________________________________
Do You Yahoo!?
Get your free @yahoo.com address at http://mail.yahoo.com

---

---

Qmail was installed on a /var partition that turned out to be too small, so 
I added a new 36 gig disk, made the old /var something else, and copied 
everything with cp -R.  Brought the system back up with the new 36 gig /var 
partition, and qmail is only partially running.  It does listen on port 25 
and receive mail, but it doesn't seem to move messages past "preprocessed" 
or deliver them.  Qstat looks like below, the 12 messages being my tests 
after the new /var partition.

messages in queue: 1207
messages in queue but not yet preprocessed: 12

Other things that were on /var are all fine, and ps shows:

root       699  0.0  0.0  1308  348 ?        S    14:39   0:00 supervise 
qmail-smtpd
root       701  0.0  0.0  1308  348 ?        S    14:39   0:00 supervise 
qmail-send
qmaild     703  0.0  0.0  1332  368 ?        S    14:39   0:00 tcpserver -v 
-x/etc/tcp.smtp.cdb -u100 -g503 0 25 qmail-smtpd
qmails    1222  0.0  0.0  1352  340 ?        S    14:39   0:00 qmail-send
root      1227  0.0  0.0  1324  364 ?        S    14:39   0:00 qmail-lspawn 
|dot-forward .forward?./Maildir/
qmailr    1228  0.0  0.0     0    0 ?        Z    14:39   0:00 
[qmail-rspawn <defunct>]
qmailq    1229  0.0  0.0     0    0 ?        Z    14:39   0:00 [qmail-clean 
<defunct>]
root      3492  0.0  0.0  1588  604 pts/0    S    16:46   0:00 grep qmail

I'm very new to Linux and qmail, and don't know what <defunct> 
means.  Below is my /var/log/messages file of qmail starting upon bootup.

Feb 28 14:23:32 pmfp qmail: Starting mail-transport-agent:
Feb 28 14:23:32 pmfp qmail: svc: warning: unable to control 
/var/qmail/supervise/qmail-popup: supervise not running
Feb 28 14:23:32 pmfp qmail: svc: warning: unable to control 
/var/qmail/supervise/qmail-send: supervise not running
Feb 28 14:23:32 pmfp qmail:  qmail
Feb 28 14:23:32 pmfp qmail: svc: warning: unable to control 
/var/qmail/supervise/qmail-smtpd: supervise not running
Feb 28 14:23:32 pmfp qmail: svc: warning: unable to control 
/var/qmail/supervise/qmail-popup/log: supervise not running
Feb 28 14:23:32 pmfp qmail:  logging.
Feb 28 14:23:32 pmfp qmail: svc: warning: unable to control 
/var/qmail/supervise/qmail-send/log: supervise not running
Feb 28 14:23:32 pmfp qmail: svc: warning: unable to control 
/var/qmail/supervise/qmail-smtpd/log: supervise not running
Feb 28 14:23:32 pmfp rc: Starting qmail:  succeeded

Is there an easy fix, or should I restore /var from a tape backup?

Stewart Vardaman
mailto:[EMAIL PROTECTED]

---

---

Off the top of my head I think you have a rights problem. You should
have copied the /var/qmail directory with cp -Rp - the -p keeps current
permissions, etc...... 

.mark

>----------
>From:  Stewart Vardaman[SMTP:[EMAIL PROTECTED]]
>Sent:  Wednesday, February 28, 2001 3:04 PM
>To:    [EMAIL PROTECTED]
>Subject:       Partition swap broke qmail
>
>Qmail was installed on a /var partition that turned out to be too small, so 
>I added a new 36 gig disk, made the old /var something else, and copied 
>everything with cp -R.  Brought the system back up with the new 36 gig /var 
>partition, and qmail is only partially running.  It does listen on port 25 
>and receive mail, but it doesn't seem to move messages past "preprocessed" 
>or deliver them.  Qstat looks like below, the 12 messages being my tests 
>after the new /var partition.
>
>messages in queue: 1207
>messages in queue but not yet preprocessed: 12
>
>Other things that were on /var are all fine, and ps shows:
>
>root       699  0.0  0.0  1308  348 ?        S    14:39   0:00 supervise 
>qmail-smtpd
>root       701  0.0  0.0  1308  348 ?        S    14:39   0:00 supervise 
>qmail-send
>qmaild     703  0.0  0.0  1332  368 ?        S    14:39   0:00 tcpserver -v 
>-x/etc/tcp.smtp.cdb -u100 -g503 0 25 qmail-smtpd
>qmails    1222  0.0  0.0  1352  340 ?        S    14:39   0:00 qmail-send
>root      1227  0.0  0.0  1324  364 ?        S    14:39   0:00 qmail-lspawn 
>|dot-forward .forward?./Maildir/
>qmailr    1228  0.0  0.0     0    0 ?        Z    14:39   0:00 
>[qmail-rspawn <defunct>]
>qmailq    1229  0.0  0.0     0    0 ?        Z    14:39   0:00 [qmail-clean 
><defunct>]
>root      3492  0.0  0.0  1588  604 pts/0    S    16:46   0:00 grep qmail
>
>I'm very new to Linux and qmail, and don't know what <defunct> 
>means.  Below is my /var/log/messages file of qmail starting upon bootup.
>
>Feb 28 14:23:32 pmfp qmail: Starting mail-transport-agent:
>Feb 28 14:23:32 pmfp qmail: svc: warning: unable to control 
>/var/qmail/supervise/qmail-popup: supervise not running
>Feb 28 14:23:32 pmfp qmail: svc: warning: unable to control 
>/var/qmail/supervise/qmail-send: supervise not running
>Feb 28 14:23:32 pmfp qmail:  qmail
>Feb 28 14:23:32 pmfp qmail: svc: warning: unable to control 
>/var/qmail/supervise/qmail-smtpd: supervise not running
>Feb 28 14:23:32 pmfp qmail: svc: warning: unable to control 
>/var/qmail/supervise/qmail-popup/log: supervise not running
>Feb 28 14:23:32 pmfp qmail:  logging.
>Feb 28 14:23:32 pmfp qmail: svc: warning: unable to control 
>/var/qmail/supervise/qmail-send/log: supervise not running
>Feb 28 14:23:32 pmfp qmail: svc: warning: unable to control 
>/var/qmail/supervise/qmail-smtpd/log: supervise not running
>Feb 28 14:23:32 pmfp rc: Starting qmail:  succeeded
>
>Is there an easy fix, or should I restore /var from a tape backup?
>
>Stewart Vardaman
>mailto:[EMAIL PROTECTED]
>
>
>

---

---

On Wed, Feb 28, 2001 at 04:04:57PM -0700, Stewart Vardaman wrote:
>Qmail was installed on a /var partition that turned out to be too small, so 
>I added a new 36 gig disk, made the old /var something else, and copied 
>everything with cp -R.  Brought the system back up with the new 36 gig /var 
>partition, and qmail is only partially running.  It does listen on port 25 

Sounds like you didn't run "queue-fix" after you moved the box.  Check the
qmail web site for it and use it.  Make sure that it's set up with the same
conf-split as you built QMail with.

Sean
-- 
 "Engineering Tablets?  Does that mean if I swallow one, I'll be an engineer?"
                 -- Evelyn Mitchell
Sean Reifschneider, Inimitably Superfluous <[EMAIL PROTECTED]>
tummy.com - Linux Consulting since 1995. Qmail, KRUD, Firewalls, Python

---

---

On Wed, Feb 28, 2001 at 04:04:57PM -0700, Stewart Vardaman wrote:
> Qmail was installed on a /var partition that turned out to be too small, so 
> I added a new 36 gig disk, made the old /var something else, and copied 
> everything with cp -R.  Brought the system back up with the new 36 gig /var 
> partition, and qmail is only partially running.  It does listen on port 25 
> and receive mail, but it doesn't seem to move messages past "preprocessed" 
> or deliver them.  Qstat looks like below, the 12 messages being my tests 
> after the new /var partition.

You can't move the queue around like that. You should fix your queue with the
queue-fix script, which you can find somewhere on www.qmail.org. You'll
probably also have to fix the permissions on your trigger. See
http://www.lifewithqmail.org/lwq.html#trigger

Chris

PGP signature

---

---

Hi all...

For the past 3 weeks I have been fighting the battle to move our dieing
email server from a proprietary solution to qmail. I had devoted 3 months of
research and development (with a lot of help from this list) to making sure
that the qmail server has all the features required by our organization.

My nightmare began when management announced a new business development
manager.

My qmail project, only 1 week away from implementation, was canned, we are
now moving to Lotus Notes.

I'd like to thank everyone for there help over the 3 months, without you
guys, I don't think I could have even taken the project this far.

Regards
Dennis

---

---

On 28-Feb-2001 dennis wrote:
>  My qmail project, only 1 week away from implementation, was canned, we are
>  now moving to Lotus Notes.

Condolences. A company I used to work with also replaced the qmail
I installed (and which had worked flawlessly for 18 months) with
Notes (they wanted shared calendars :-). Two months later, they
had to be rescued by their ISP because they were being used as
a SPAM relay. 

Stefaan
-- 
How's it supposed to get the respect of management if you've got just
one guy working on the project?  It's much more impressive to have a
battery of programmers slaving away. -- Jeffrey Hobbs (comp.lang.tcl)

---

---

I must say being someone who's installed NOTES (R5) that it's all up
to who installed/configured it and their level of understanding of
the product.  Trouble with groupware products like Notes and Exchange
is companies figure they dont need moderate/highly priced people who
actually understand what they are doing (it's GUI, so it's easy, right?)

This is the downfall of today's reality in alot of companies, they
trade experienced employees for 'turn key' and 'easily maintainable'
products which seemly dont need an experienced staff to administer.  Or
at least that's the crap managers are being sold on.

I must say if I hear another Lotus rep extoll the virtues of 
"knowledgeware" one more time I'll shoot them! :)

Sorry, my rant for the month.

-Jason

On Thu, 01 Mar 2001 09:41:56 +0100 (MET)
Stefaan A Eeckels <[EMAIL PROTECTED]> wrote:

> 
> On 28-Feb-2001 dennis wrote:
> >  My qmail project, only 1 week away from implementation, was canned, we are
> >  now moving to Lotus Notes.
> 
> Condolences. A company I used to work with also replaced the qmail
> I installed (and which had worked flawlessly for 18 months) with
> Notes (they wanted shared calendars :-). Two months later, they
> had to be rescued by their ISP because they were being used as
> a SPAM relay. 
> 
> Stefaan
> -- 
> How's it supposed to get the respect of management if you've got just
> one guy working on the project?  It's much more impressive to have a
> battery of programmers slaving away. -- Jeffrey Hobbs (comp.lang.tcl)
> 

---

---

I'm having trouble with qmail and procmail. I've read
the FAQ and the list archives, but am still unsure
what 
to do. I'm using a Linux RedHat 6.2 system.

installed qmail.
outgoing mail works.
incoming mail (from outside) bounces (unknown user)
local mail won't be delivered, i.e....
when I try (from the machine in question):
$ mail joe
Subject: testing
testing
.
Cc:
$

I end up with /var/spool/mail/joe (a symlink to
/home/joe/Mailbox) being
renamed as BOGUS.joe.1jLB and a new FILE called
/var/spool/mail/joe
containing the "testing" message.

I read in INSTALL.mbox the following:
A few mail programs are unable to handle symbolic
links, so you will
have to configure them to look at ~user/Mailbox
directly:
   * procmail: Change SYSTEM_MBOX in config.h and
recompile; or, with
     recent versions, define MAILSPOOLHOME in
src/authenticate.c.

but I don't know where to find config.h or
authenticate.c... do I have to download the procmail
source and recompile after these edits? (There has to
be an easier way!)

I tried adding ~joe/.qmail-test1 containing:
|preline procmail -m /home/awilber/.procmailrc
and ~joe/.procmail containing
PATH=/bin:/usr/bin:/usr/bin:$PATH
ORGMAIL=$HOME/Mailbox
MAILDIR=$HOME/mail
DEFAULT=$HOME/Mailbox   #completely optional
LOGFILE=$MAILDIR/procmail.log

this didn't work.

I'm lost.

Thanks,
Joe

__________________________________________________
Do You Yahoo!?
Get email at your own domain with Yahoo! Mail. 
http://personal.mail.yahoo.com/

---

---

The following web pages say that there is a vulnerability in qmail:

   http://www.securityfocus.com/bid/2237
   http://www.securityfocus.com/archive/1/6969
   http://www.securityfocus.com/archive/1/6970
   http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-1999-0144
   http://www.insecure.org/sploits/qmail.DOS.rcpt.html
   http://xforce.iss.net/static/208.php
   http://archives.neohapsis.com/archives/postfix/2000-01/1170.html

If you have seen any of these web pages, or any similar web pages at
other locations, please send me email with the following information:

   (1) what exactly you read---give me the exact quote;
   (2) where you saw that quote;
   (3) what you understood the quote to mean---your interpretation;
   (4) your reaction to that information; and
   (5) whether you are willing to testify to this in court.

Please send your replies to [EMAIL PROTECTED] Thanks.

---Dan

---

---

Thus said "D. J. Bernstein" on 01 Mar 2001 02:27:37 GMT:

>    http://www.securityfocus.com/bid/2237

  ``Currently the SecurityFocus staff are not aware of any vendor
    supplied patches for this issue.''

Why haven't they updated this?  On a properly configured qmail system 
this is a non-issue.  Why is that not the *fix* that they seek?

>    http://www.securityfocus.com/archive/1/6969

Isn't this a repeat of the first?  The *exploit* code even looks 
similar (if not the same).

>    http://www.securityfocus.com/archive/1/6970

Again the same issue which is easily solved by configuring qmail 
properly.

>    http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-1999-0144

More of the same.  Maybe they should define what they consider the 
OS...  Out of curiosity, is this why softlimit was added to the 
daemontools package?

>    http://www.insecure.org/sploits/qmail.DOS.rcpt.html

Again the same problem...

>    http://xforce.iss.net/static/208.php

At least they got the version right here, but still the same problem 
which is easily taken care of with proper configuration.

>    http://archives.neohapsis.com/archives/postfix/2000-01/1170.html

At least this one is not as dull as the rest. :-)

> If you have seen any of these web pages, or any similar web pages at
> other locations, please send me email with the following information:

I haven't seen any additional pages, but the first three listed I had 
seen before.  When I first saw the reports I decided to test my current 
systems against what was proposed.  Each test failed to reproduce the 
attack described.  I was actually surprised because I wasn't certain 
how the systems had been setup (I didn't do the initial configuration 
of the systems).  Of course it didn't have any effect (other than 
closing the connection with a temporary error) on the system.  I 
suppose an attacker could attempt to exhaust the memory by taking up 
all the connections available, however, even this is avoidable by doing 
the math.  

For example, tcpserver by default will only accept 40 connections.  
If each qmail-smtpd is started with softlimit -m 2000000 that comes out 
to 80M of RAM that will ever be allocated.  On a server with 128M this 
won't even touch swap (unless there are other services running on the 
server in which case the admin *will* have figured that into the total).

Andy
-- 
[-----------[system uptime]--------------------------------------------]
 11:43pm  up 14 days, 23:45,  7 users,  load average: 1.22, 1.16, 1.17

---

---

What is this qmail version 2.0 that securityfocus.com claims there is an
explot for?  Am I missing something, or are they?

Being that I have better things to do than to try to screw up my mail
server, has anyone tried this claimed explot?  What really happens?

--Pete

---

---

Peter Cavender <[EMAIL PROTECTED]> writes:

> What is this qmail version 2.0 that securityfocus.com claims there is an
> explot for?  Am I missing something, or are they?
> 
> Being that I have better things to do than to try to screw up my mail
> server, has anyone tried this claimed explot?  What really happens?

It depends upon how you run qmail-smtpd.  There are several variables.

If you run qmail-smtpd directly from inetd.conf, as suggested in the
INSTALL file distributed with qmail-1.03, then there is a pretty good
chance that the instance of qmail-smtpd being attacked will grow to
eat of all of memory.  What happens then depends upon your OS.  On
GNU/Linux, a random process will be killed; there is a pretty good
chance that the random process will be the large qmail-smtpd.
Alternatively, a careful attacker who really understands your system
can create several fairly large qmail-smtpd processes and
significantly increase the chance that the random process which is
killed will be something other than qmail-smtpd.  In this scenario
this attack can indeed be a denial of service.

If you run qmail-smtpd as suggested in Life With Qmail, then you are
not vulnerable to this attack, because qmail-smtpd is run under the
softlimit program to limit the amount of memory it will allocate.
(This does not affect the size of the mail messages it can accept, as
qmail-smtpd does not store mail messages in memory.)

Ian

---

---

On Wed, 28 Feb 2001, Peter Cavender wrote:

> What is this qmail version 2.0 that securityfocus.com claims there is an
> explot for?  Am I missing something, or are they?
>
> Being that I have better things to do than to try to screw up my mail
> server, has anyone tried this claimed explot?  What really happens?

We all do.  Last I checked (less than one minute ago) there is no
qmail-2.0.  It appears to be someone acting like an asshole and trying
to create something that doesn't exist.  qmail is secure and I've been
comfortable trusting Dan's software.  Whatever it is I know Dan's on
top of it (based on something he sent earlier) and he'll get all the
help he needs from all of us.

Vince.
-- 
==========================================================================
Vince Vielhaber -- KA8CSH    email: [EMAIL PROTECTED]    http://www.pop4.net
 128K ISDN from $22.00/mo - 56K Dialup from $16.00/mo at Pop4 Networking
        Online Campground Directory    http://www.camping-usa.com
       Online Giftshop Superstore    http://www.cloudninegifts.com
==========================================================================

---

---

Hi,

I have used Qmail for over 3 years now and I love it. Now I have came across 
one project, building a Mail server to handle around 5-6 million users with 
a 10 meg mailbox each (I use vpopmail www.inter7.com for the pop server and 
virtual domain part). Now multiplying 10MB x 5000000 users = 50million megs, 
which is about 50,000 gigs. Is their such a thing as a 50 terrabyte hard 
drive? Well, my users are all in one domain, so I cannot split the domains 
across several HDD's. Secondly, what if 2 1/2 million users simultaneously 
hit the server, would the server handle it? with a quad p-III Xeon 1ghz and 
4 GB or ram and a OC connection.
Well, how does hotmail or yahoo do it? I am sure they load blanace across 
multiple servers, but how?
I know all about load balancing with dns, etc. across multiple web servers 
for example, but with mail, a specific user has to login to the same box 
that hosts his mailbox everytime, and mail arriving from outside world to 
this user has to arrive to the same box also.
If anyone out there has gone through something like this, I would appreciate 
it a lot if you hint me with a clue :) 

P.S. Please cc me your reply, as I am not subscribed to the list. 

Best Regards,
Tim 

---

---

On Thu, 01 Mar 2001, [EMAIL PROTECTED] wrote:

> Is their such a thing as a 50 terrabyte hard drive?

No. (Unless you work in the USDF)

> Well, my users are all in one domain, so I cannot split the domains
> across several HDD's.

RAID???

> Secondly, what if 2 1/2 million users
> simultaneously hit the server, would the server handle it?

What with? A baseball bat? Unlikely. Logging in? Perhaps. Calculate
how many MBs each instance of your web server take up, multiply it
by 2.5million, and tell me that your server can handle both that
amount of RAM and that number of processes. Uh huh.

> Well, how does hotmail or yahoo do it? I am sure they load blanace
> across multiple servers, but how?

If you're looking at a *nix solution, look into Coda filesystems,
Intermezzo, GFS, etc. Then look at a network-based clustering
solution, such as the Linux Virtual Server.

> I know all about load balancing with dns, etc. across multiple web
> servers for example, but with mail, a specific user has to login to
> the same box that hosts his mailbox everytime, and mail arriving from
> outside world to this user has to arrive to the same box also.

You're thinking inside the box.

> If anyone out there has gone through something like this, I would
> appreciate it a lot if you hint me with a clue :) P.S. Please cc me
> your reply, as I am not subscribed to the list. Best Regards,

You might want to subscribe. Just a hint.

> Tim

Brett.
-- 
"Endless Loop: n., see Loop, Endless." 
"Loop, Endless: n., see Endless Loop."

- Random Shack Data Processing Dictionary

---

---

I'm sure there are a few storage vendors who can scale that
high, EMC, Clariion, Compaq(DEC)?, etc.  You would never
attach that amount of bandwidth to one server anyway
though, the I/O would be horrible, even with something
like a Sun E10000 which has a few PCI busses on each
of it's 16 separate 4 processor system boards.  I work on a
just such a machine with just 5 terabytes of EMC storage
with 5 gigs of cache memory and multiple load-balanced
fibre channel controllers to each cabinet under Veritas
Volume Manager and it would never handle the kind of load
you describe.  If you don't already know what you would
need to handle a load like that then you probably ought
to call in a consultant who's experienced in that type of
thing. 

Dave

-----Original Message-----
From: Tim Hassan [mailto:[EMAIL PROTECTED]]
Sent: Thursday, March 01, 2001 1:43 AM
To: [EMAIL PROTECTED]
Subject: Scalable Mail Solution


Hi,

I have used Qmail for over 3 years now and I love it. Now I have came across

one project, building a Mail server to handle around 5-6 million users with 
a 10 meg mailbox each (I use vpopmail www.inter7.com for the pop server and 
virtual domain part). Now multiplying 10MB x 5000000 users = 50million megs,

which is about 50,000 gigs. Is their such a thing as a 50 terrabyte hard 
drive? Well, my users are all in one domain, so I cannot split the domains 
across several HDD's. Secondly, what if 2 1/2 million users simultaneously 
hit the server, would the server handle it? with a quad p-III Xeon 1ghz and 
4 GB or ram and a OC connection.
Well, how does hotmail or yahoo do it? I am sure they load blanace across 
multiple servers, but how?
I know all about load balancing with dns, etc. across multiple web servers 
for example, but with mail, a specific user has to login to the same box 
that hosts his mailbox everytime, and mail arriving from outside world to 
this user has to arrive to the same box also.
If anyone out there has gone through something like this, I would appreciate

it a lot if you hint me with a clue :) 

P.S. Please cc me your reply, as I am not subscribed to the list. 

Best Regards,
Tim 

---

---

On Thu, Mar 01, 2001 at 04:56:43PM +1100, Brett Randall wrote:
> > Well, my users are all in one domain, so I cannot split the domains
> > across several HDD's.
> 
> RAID???

RAID + Fibre Channel.

> > Secondly, what if 2 1/2 million users
> > simultaneously hit the server, would the server handle it?
> 
> What with? A baseball bat? Unlikely. Logging in? Perhaps. Calculate
> how many MBs each instance of your web server take up, multiply it
> by 2.5million, and tell me that your server can handle both that
> amount of RAM and that number of processes. Uh huh.

Yeah.. no way that you can get that kind of traffic to one server.  Not
going to happen.

> > Well, how does hotmail or yahoo do it? I am sure they load blanace
> > across multiple servers, but how?
> 
> If you're looking at a *nix solution, look into Coda filesystems,
> Intermezzo, GFS, etc. Then look at a network-based clustering
> solution, such as the Linux Virtual Server.

There are several common solutions for this sort of problem (although I have
never seen it on this scale, really)..

1. Use something like Qmail-LDAP, which has a "mailHost" feature.  This lets
   you have users distributed across multiple servers, and the qmail boxes
   are smart enough to forward the message to the proper server via QMTP.
   POP3 can get forwarded to the appropriate host as well.

2. Use something like a series of Network Appliance NAS devices to store
   users mail; then you can have each server access the entire data store
   regardless of where the connection is (via NFS).  

3. Use something like GFS, which is a shared filesystem used on Fibre Channel
   Arrays.  This has great potential, as the bandwidth of FC and the overhead
   of SCIS is much lower than an NFS based solution.  However, there are other
   limitations here; GFS hasn't really ever been tested on a scale like that, 
   to my knowledge.  Not to mention the number of machines and arrays you
   would need to have.

#1 is the simplest method, but it also has the most administrative overhead
and the least amount of redundancy.  Loose server32, and all the users on
server32 loose thier mail.  

#2 works really well if you design the networks properly; but at the volume
your talking about, you'll probably really wind up with a hybrid of #1 and 
#2... a small cluster of machines attached to a Netapp for small groups of
users.

#3 is the holy grail; of course, I've never seen anybody actually deploy
it, since GFS is such a new thing. :)

> > I know all about load balancing with dns, etc. across multiple web
> > servers for example, but with mail, a specific user has to login to
> > the same box that hosts his mailbox everytime, and mail arriving from
> > outside world to this user has to arrive to the same box also.
> 
> You're thinking inside the box.

Yeah, he is.  Stop thinking about each machine as the source; start
thinking of the entire infrastructure as one machine.  Check out
http://www.infrastructures.org for more information on how to get your
head around building things like this.

> > If anyone out there has gone through something like this, I would
> > appreciate it a lot if you hint me with a clue :) P.S. Please cc me
> > your reply, as I am not subscribed to the list. Best Regards,
> 
> You might want to subscribe. Just a hint.

Definetly subscribe.

Check out Qmail-LDAP, too.  You won't be sorry.

Adam

--
[EMAIL PROTECTED] - (http://sysadminsith.org)
Evil Lord of the Sysadmin Sith Darth Rmdashrf

---

---

Are there any plans to release a version of qmail-popup/qmail-pop3d that
supports ssl?  I was unable to get stunnel to function properly, and even if
I had been able to I didn't like the fact that it seems to wrap to an inetd
like security in which it was reading hosts.allow.  It seems like there
should be a way to build it in during compile for pop and smtp, I don't like
having to do a workaround for this large of security upgrade.  Has anyone
heard anything on this topic?  Or does anyone have any suggestions?

Thanks,

Green Onyx

---

---

Can someone help me to find logging alternatives to qmail-pop3d and
checkpassword?

Jörgen

---

---

Hi All,

Newbie alert: if you're busy, don't read.

I'm hoping you can point out where I went wrong here...

I started with a Suse6.3 machine.
I removed the sendmail.rpm.
I followed the life-with-qmail directions to install a Mailbox+df version of 
qmail, almost to the letter, with two exceptions:  
1) The two times it said to start 'qmail' with '/usr/local/sbin/qmail' I 
started it with '/usr/bin/qmail'.
2) I have a list of domains that resolve to my local machine that I wanted to 
receive mail for, so I put them in both locals and rcpthosts.

So, then I tried to send local email:
mail kcorey
testing
.

The errors I get in the log are:
The 'kcorey' mailbox doesn't exist, so qmail tries to bounce this to 
'postmaster'.
The 'postmaster' mailbox doesn't exist, so it bounces to 'root'.
The 'root' mailbox doesn't exist, so it gives up as a triple-bounce 
undeliverable.

Both the 'kcorey' and 'root' accounts exist in /etc/passwd, and I made the 
symlinks back to /var/spool/mail. (Postmaster doesn't exist, so I'd expect an 
error of some kind there.)

Why does qmail think those two mailboxes do not exist? (Note: I get this 
error with /var/spool/mail chmodded to 1777, and with or without the symlinks 
being there for the mail files in /var/spool/mail.

The FAQ doesn't seem to answer this specifically, and when I looked through 
the archives, all I saw were replies about upper case or dotted usernames.

Ideas anyone?

-- 
Ken Corey, CTO    Atomic Interactive, Ltd.

---

---

On Thu, Mar 01, 2001 at 10:20:21AM +0000, Ken Corey wrote:

> Ideas anyone ?

have you _really_ followed all the steps of the LWQ ? 
if yes, root would have a mailbox in /var/qmail/alias/Mailbox.
Does this directory exists ? 
  
Please show us the qmail users from /etc/passwd. 
Good luck :)

Olivier

PS: if you followed the INSTALL file of the qmail-1.03 tar.gz,
it would work... :)
-- 
_________________________________________________________________
 Olivier Mueller - [EMAIL PROTECTED] - PGPkeyID: 0E84D2EA - Switzerland
qmail projects: http://omail.omnis.ch  -  http://webmail.omnis.ch

PGP signature

---

---

Hi,

I have been setup a linux-box PII/450, 256MB RAM, 4 GB IDE HDD, 100mbit
bandwitch
with RehHat 6.2, qmail 1.03 + ezmlm-idx with MySQL + vpopmail.

qmail (standard tgz file with only the qmail-date-localtime patch) is
compiled with:  
conf-split = 300
conf-spawn = 255

/var/qmail/bin:
concurrencylocal  = 30
concurrencyremote = 100

Now I has tried to send a Newsletter to 180.000 subscribers. The system
needs 5 1/2 hours
for delivery( 9 mails per second), but I mean it's to long?!
The average bandwich during the delivery is 70k-100k it's to slightly for an
100mbit Connection.

If I look for qmail processes, ther are only 3-5 qmail-remote processes.
netstat -an show me 100-200 socket connections to smpt servers on port 25.
vmstat shows an average idle time between 65%-78%.
memory use is ca. 200 MB, swap is untouched.

What can I do, for higher performance?
Have I errors in my configuration?


--
thomas koenig

---