qmail Digest 1 Mar 2001 11:00:00 -0000 Issue 1290 Topics (messages 58042 through 58126): Re: QMail log: is human DATE/TIME available 58042 by: japc.co.sapo.pt Re: qmail-send progress with large queue/todo 58043 by: Peter van Dijk 58045 by: Manvendra Bhangui 58064 by: David Dyer-Bennet 58065 by: Charles Cazabon Re: nfs mounting /var/qmail/alias 58044 by: Peter van Dijk Re: [Qmail-scanner-general]amavis or qmail-scanner ? 58046 by: Bruno Wolff III 58049 by: Michael Peppard 58051 by: marcth 58106 by: Brett Randall Re: How to create two mailboxes for one user 58047 by: Sean Swehla Re: Relay-ctrl and qmail 58048 by: Charles Cazabon 58054 by: Bruce Guenter 58058 by: Enrique Vadillo 58087 by: inter7.mail.delanet.com How can I test the capability of my qmail server? 58050 by: root help for smtp-server on MAPS DULed IP 58052 by: Christoph Hertel 58053 by: Charles Cazabon Re: tcpserver for pop3 and telnet 58055 by: Dave Sill 58056 by: Charles Cazabon 58059 by: Tim Hunter tls.patch causing qmail-remote to crash 58057 by: John McCoy, Jr amavis or qmail-scanner ? 58060 by: Jйrйmy Cluzel 58063 by: Olivier M. 58067 by: schoon.amgt.com 58079 by: Jason Haar Re: About qmail & sendmail. 58061 by: David Dyer-Bennet Re: Return address for autoresponder 58062 by: David Dyer-Bennet Announcing cr.yp.to-update list 58066 by: Dave Sill qmail-0.0.0.0.patch not found 58068 by: Claudio Nieder 58107 by: Scott Gifford Re: mailserver buffering 58069 by: Andy Bradford 58113 by: Markus Stumpf Relay-ctrl and qmail: problem more fundamental, I think 58070 by: Bill Isaacs 58071 by: Charles Cazabon 58072 by: Bill Isaacs 58074 by: Charles Cazabon 58084 by: Bill Isaacs 58088 by: Chris Johnson 58090 by: Charles Cazabon 58109 by: Bill Isaacs Re: Can Qmail send out 2 million mails in 12 hour window? 58073 by: inter7.mail.delanet.com 58111 by: Markus Stumpf pop3 acct name 58075 by: Dean Browett 58091 by: Chris Johnson Duplicate mails on mailing list. 58076 by: Andy Bradford What does this mean. 58077 by: inter7.mail.delanet.com 58078 by: Charles Cazabon 58081 by: denis Attachment Limit 58080 by: Cristopher Daniluk 58082 by: Charles Cazabon unsubcribe 58083 by: inter7.mail.delanet.com List Mirroring 58085 by: David Coley Time::HiRes for Qmail-Scanner on RH7 ? 58086 by: inter7.mail.delanet.com 58089 by: Olivier M. Re: checkpassword (pop3d) problem 58092 by: inter7.mail.delanet.com qmail+system accounts+virt. dom. POPs 58093 by: inter7.mail.delanet.com Using Virtual Consoles with multilog 58094 by: Roger Waterhouse 58095 by: Peter van Dijk 58096 by: Charles Cazabon Re: warning: trouble opening remote/4/r 58097 by: inter7.mail.delanet.com Re: Cannot receive mail from some sites 58098 by: inter7.mail.delanet.com Useful Unix Networking/Programming site 58099 by: Bruce Dang Partition swap broke qmail 58100 by: Stewart Vardaman 58101 by: schoon.amgt.com 58102 by: Sean Reifschneider 58103 by: Chris Johnson Lost the Battle 58104 by: dennis 58120 by: Stefaan A Eeckels 58121 by: Jason Radford procmail problems (RH6.2) 58105 by: Joe Janitor qmail vulnerability 58108 by: D. J. Bernstein 58118 by: Andy Bradford qmail 2.0 exploit 58110 by: Peter Cavender 58112 by: Ian Lance Taylor 58117 by: Vince Vielhaber Scalable Mail Solution 58114 by: Tim Hassan 58115 by: Brett Randall 58116 by: Hubbard, David 58124 by: Adam Jacob SSL Support 58119 by: Green Onyx logging alternatives to qmail-pop3d and checkpassword 58122 by: Jцrgen Persson <NOVICE> no mailbox here by tht name... 58123 by: Ken Corey 58125 by: Olivier M. Qmail - to slow? 58126 by: Thomas Kцnig Administrivia: To unsubscribe from the digest, e-mail: [EMAIL PROTECTED] To subscribe to the digest, e-mail: [EMAIL PROTECTED] To bug my human owner, e-mail: [EMAIL PROTECTED] To post to the list, e-mail: [EMAIL PROTECTED] ----------------------------------------------------------------------
Pipe the logs files through tai64nlocal (man tai64nlocal), for instance cat current | /usr/local/bin/tai64nlocal . On Wed, Feb 28, 2001 at 01:06:26PM +0300, Alexander Cherepanov wrote: > I couldn't found anywhere how can I get human-readable date and time stamps > in qmail logs. Can anybody do that? > > Thanks for you help, > Alexander > -- Jose AP Celestino <[EMAIL PROTECTED]> -------------------------------
On Wed, Feb 28, 2001 at 01:50:36AM -0700, Sean Reifschneider wrote: > On Tue, Feb 27, 2001 at 02:13:47PM -0600, Bruce Guenter wrote: > >I've been thinking about this issue, and was wondering if it would be > >possible to fix this in some simple way. Would it be possible to modify > > If one has big-todo, is there any point in spending so much time > working the todo? Switching the priority so that todo isn't processed > until the loop runs without starting any qmail-remotes (meaning > we're either at concurrency, or we have no more messages to deal with). With or without big-todo, you risk ending up with a f*cking big todo queue after that. Switching off todo-handling for a while, automatically, sounds like a *very* bad idea to me. Greetz, Peter.
This problem of todo had created a havoc with my site and qmail was unable to cope up with the volume of incoming mails which my site was getting. In fact I had starting cursing the design of the todo processing. But with a slight change to qmail-queue I have managed to get the queue (both remote and local to zeror). I have done the following Created 5 instances of qmail (by changing conf-qmail and compiling) 1 (/var/qmail, /var/qmail2, /var/qmail3, /var/qmail4, /var/qmail5) 2 linked the control, alias and users directory of /var/qmail2, /var/qmail3, /var/qmail4, /var/qmail5 to /var/qmail/control, /var/qmail/alias, /var/qmail/users. By doing this I have to change configuration only in /var/qmail 3. Created directory /usr/qmail/bin, /usr/qmail2/bin, /usr/qmail3/bin, etc 4. Moved the original qmail-queue from /var/qmail/bin to /usr/qmail/bin and similarly for all the other qmail installations 5. Wrote the following qmail-queue program in /var/qmail/bin, /var/qmail2/bin /var/qmail3/bin, /var/qmail4/bin, /var/qmail5/bin and started 5 instances of qmail-deliver (qmail-send). qmail-smtp now can be run from any one of the 5 instances listing of qmail-queue.c wrapper #include <sys/param.h> main(int argc, char **argv) { int tmval; char path[MAXPATHLEN]; char *qmail_queue[] = { "/usr/qmail", "/usr/qmail2", "/usr/qmail3", "/usr/qmail4", "/usr/qmail5"}; tmval = time(0) % 5; sprintf(path, "%s/bin/qmail-queue", qmail_queue[tmval]); /*- printf("%s\n", path); -*/ execv(path, argv); } The above program depending on the time distributes the queue across the five queues. Thus even with each qmail instance giving me a low concurrency, I am achieving high concurrency by running 5 instances of qmail ----- Original Message ----- From: Peter van Dijk <[EMAIL PROTECTED]> To: <[EMAIL PROTECTED]> Sent: Wednesday, February 28, 2001 6:04 PM Subject: Re: qmail-send progress with large queue/todo > On Wed, Feb 28, 2001 at 01:50:36AM -0700, Sean Reifschneider wrote: > > On Tue, Feb 27, 2001 at 02:13:47PM -0600, Bruce Guenter wrote: > > >I've been thinking about this issue, and was wondering if it would be > > >possible to fix this in some simple way. Would it be possible to modify > > > > If one has big-todo, is there any point in spending so much time > > working the todo? Switching the priority so that todo isn't processed > > until the loop runs without starting any qmail-remotes (meaning > > we're either at concurrency, or we have no more messages to deal with). > > With or without big-todo, you risk ending up with a f*cking big todo > queue after that. Switching off todo-handling for a while, > automatically, sounds like a *very* bad idea to me. > > Greetz, Peter. _________________________________________________________ Do You Yahoo!? Get your free @yahoo.com address at http://mail.yahoo.com
Peter van Dijk <[EMAIL PROTECTED]> writes: > On Wed, Feb 28, 2001 at 01:50:36AM -0700, Sean Reifschneider wrote: > > On Tue, Feb 27, 2001 at 02:13:47PM -0600, Bruce Guenter wrote: > > >I've been thinking about this issue, and was wondering if it would be > > >possible to fix this in some simple way. Would it be possible to modify > > > > If one has big-todo, is there any point in spending so much time > > working the todo? Switching the priority so that todo isn't processed > > until the loop runs without starting any qmail-remotes (meaning > > we're either at concurrency, or we have no more messages to deal with). > > With or without big-todo, you risk ending up with a f*cking big todo > queue after that. Switching off todo-handling for a while, > automatically, sounds like a *very* bad idea to me. Why is a fscking big todo queue any worse than a fscking big queue? The current system of favoring todo processing over sending out mail seems to rather bite. -- David Dyer-Bennet / Welcome to the future! / [EMAIL PROTECTED] SF: http://www.dd-b.net/dd-b/ Minicon: http://www.mnstf.org/minicon/ Photos: http://dd-b.lighthunters.net/
David Dyer-Bennet <[EMAIL PROTECTED]> wrote: > Peter van Dijk <[EMAIL PROTECTED]> writes: > > > With or without big-todo, you risk ending up with a f*cking big todo > > queue after that. Switching off todo-handling for a while, > > automatically, sounds like a *very* bad idea to me. > > Why is a fscking big todo queue any worse than a fscking big queue? > The current system of favoring todo processing over sending out mail > seems to rather bite. Indeed, the current handling of todo tends to turn a busy qmail queue into a LIFO setup -- would not favouring the current contents of the queue over todo (turning it into a FIFO) make more sense? Charles -- ----------------------------------------------------------------------- Charles Cazabon <[EMAIL PROTECTED]> GPL'ed software available at: http://www.qcc.sk.ca/~charlesc/software/ Any opinions expressed are just that -- my opinions. -----------------------------------------------------------------------
On Tue, Feb 27, 2001 at 08:02:15PM -0800, Phil Oester wrote: > Any issues with NFS mounting the alias directory so a common version can be > shared by all mail servers? Make sure you use users/assign. No other problems are to be expected. Greetz, Peter.
On Wed, Feb 28, 2001 at 11:23:20AM +0100, Jérémy Cluzel <[EMAIL PROTECTED]> wrote: > and wath about scanners ? which is the best one ? and why ? > are they really needed for such antivirus ? > I've heard that some AV (live avp) have their own scanner (which tends to > replace amavis or qmail scanner). I my opinion, doing the virus scanning on the mail server is a waste of resources. It doesn't fully protect the people/systems that need protection and it wastes resources protecting people/systems that don't need protection. For people/systems that need antivirus protection, get something on their desktop that can guard (as well as antvivirus stuff can) against files entering the system by email, web downloads, portable media and file sharing. Have something in place to automatically do updates (availability of updates should be checked daily) from a local mirror. (You don't want to get stuff directly from the antivirus people as they screw up once in a while and the updates should be tested for your environment before being used.)
I absolutely disagree. You guys remember those Outlook bugs a few months ago? We didn't have one get in here, although I was returning dozens of rejected mails to other companies that got hit. Given how hard it is to arrange timely upgrading of desktop antivirus software over an enterprise on every computer, I'm not terribly surprised that the other companies got hit. I am not saying that desktop virus detectors are not important, they are very important *too. The operative word is too. Use both, but check the statistics on how many viruses are getting sent by email first - just to check my reasoning out. A good mail checker that gets updated multi-daily will keep bugs out extremely effectively. With windoze you take your chances with viruses, if you just use a desktop scanner - face it the operating system is riddled with holes that have to be filled almost hourly :) (My favorite is Sophos with-in qmail, I LIKE IT, but this letter isn't meant to be a plug.) Cheers -Mike -----Original Message----- From: Bruno Wolff III [mailto:[EMAIL PROTECTED]] Sent: Wednesday, February 28, 2001 8:59 AM To: Jérémy Cluzel Cc: Qmail cr.yp.to Subject: Re: [Qmail-scanner-general]amavis or qmail-scanner ? On Wed, Feb 28, 2001 at 11:23:20AM +0100, Jérémy Cluzel <[EMAIL PROTECTED]> wrote: > and wath about scanners ? which is the best one ? and why ? > are they really needed for such antivirus ? > I've heard that some AV (live avp) have their own scanner (which tends to > replace amavis or qmail scanner). I my opinion, doing the virus scanning on the mail server is a waste of resources. It doesn't fully protect the people/systems that need protection and it wastes resources protecting people/systems that don't need protection. For people/systems that need antivirus protection, get something on their desktop that can guard (as well as antvivirus stuff can) against files entering the system by email, web downloads, portable media and file sharing. Have something in place to automatically do updates (availability of updates should be checked daily) from a local mirror. (You don't want to get stuff directly from the antivirus people as they screw up once in a while and the updates should be tested for your environment before being used.)
Well, I agree wholeheartedly, it's a must to have the desktop covered, but if you don't try to catch the virii coming in, you'll never have any idea about what comes in by mail, as most users will soon not tell you about it anymore. I use amavis on the internet connected systems, and inflex on the inside where I still run sendmail due to the way we distribute the mail to different servers. Both use mcafee, and I get a warning the moment something suspicious is sent by email. If there's a wave of virii coming in, which has happened, I know what's going on, I can block that site even, if I want to. On the other hand, if something happens on a machine that isn't protected, and something bad gets sent, it'll quite likely get caught before it goes out onto the 'net. Currently there is no liability on that, but what if there is ? A mailicious user is all it takes. How many companies will be happy about being the source of a new virus ? It doesn't cost me anything extra, we're not that large, it's all automated and well within the machines' capabilities. If you can do it, it'll save you lots of worries and work. especially if your users barely know how to work their machines, let alone handle a virus warning message :-) I get at least 2 or more warnings a day on stuff that gets caught, I think that's been worth the trouble of setting things up. Marc
I have a lot of trigger-happy users who seem to enjoy double clicking attachments. Most of the time, a few hours after a major virus is discovered, we have an update made, but in the meanwhile we could have had hundreds of e-mails come in with the virus. Our environment runs Windows, and we find that by stripping any attachments that could be double-clicked on and contain a virus (ie vbs, scr, exe soon when I can convince management). I use qmail-scanner for this. It also helps us to monitor e-mail usage and see who are the people wasting all our bandwidth sending MPGs, AVIs, MP3s, etc, and take the necessary disciplinary action. Since neither amavis nor qmail-scanner are REALLY virii scanners (they just spawn scanners), I prefer qmail-scanner since it offers the ability to block attachment types as well. Of course, we also run Norton Antivirus across all our desktops. With the corporate edition, its really easy to install. Open up your MMC, go Tools...Client Install, select the 100 workstations in the building, hit Go, and it installs the virii scanning software across all of our workstations, and they all pull the latest updates off our central NAV server whenever new ones arrive. Of course I've moved OT now... Brett. -- "I'm not dumb. I just have a command of throughly useless information." - Calvin, of Calvin and Hobbes
Do you need that user to be able to check both mailboxes independently? If not, I think you can just put a .qmail-john_doe in qmail/alias/ to forward that mail to johndoe's mailbox. Andrew Wafula wrote: > > Hi, > > I want to be able to implement a system where a user has one login but with > that one login is able to access two different mailboxes (I use Maildir > format). The mailboxes are separate but belong to that one user eg login is > johndoe but picks mail from johndoe and john_doe. > > Andrew -- ____ __________________ _________________________________ \ \ / \______ \ \|\________________________________\ \ Y /| __/ | \ | Sean Swehla | \ / | | / | \| Senior Systems Design Engineer | \___/ |____| \____|__ /| VPN Solutions, LLC | = S O L U T I O N S =\/ +--------------------------------+
Bill Isaacs <[EMAIL PROTECTED]> wrote: > > No luck yet. I tried Bruce's suggestion with the same outcome as before: > --------------------------------------------------------------- > tcpserver -v -R -x /etc/smtp.cdb 0 pop-3 /var/qmail/bin/qmail-popup > hoss.willysworkshop.com \ > /bin/checkpassword /usr/sbin/relay-ctrl-allow /var/qmail/bin/qmail-pop3d > Maildir > 2>&1 | \ > /var/qmail/bin/splogger pop3d & > --------------------------------------------------------------- There's a problem there. You're firing up qmail-pop3d, but using the cdb file which is intended for qmail-smtpd. Perhaps your tcpserver invocation for qmail-smtpd is also incorrect? However, that wouldn't explain the next problem... > And Charles, here are the diagnostics you requested (I hope) [...] > > `TCPREMOTEIP=1.2.3.4 tcprulescheck /etc/tcpcontrol/smtp.cdb` > > [root@hoss workshop]# TCPREMOTEIP=63.207.13.190 tcprulescheck > /etc/tcpcontrol/smtp.cdb > rule : > allow connection This is after you had POP'ed your mail from that IP address? If so, the cdb file is not being built properly, or relay-ctrl-allow is not doing its job (unlikely, as it works everywhere else). This has to be a configuration error somwhere. > Anyway, there's the dope. I did find an error in tcpcontrol, to whit: > I had not specified the full path to the smtp.cdb file. Unfortunately > fixing this did not solve the problem. A summary: relay-ctrl-allow sits in the qmail-pop3d chain between checkpassword and qmail-pop3d. It records the IP addresses of machines where a user has successfully authenticated with POP3. relay-ctrl then uses this information to build an smtp.cdb file, which tcpserver uses for the qmail-smtpd service. The variable RELAYCLIENT is set to an empty value for those clients who authenticated with POP3, thus allowing them to relay SMTP traffic through the server. Charles -- ----------------------------------------------------------------------- Charles Cazabon <[EMAIL PROTECTED]> GPL'ed software available at: http://www.qcc.sk.ca/~charlesc/software/ Any opinions expressed are just that -- my opinions. -----------------------------------------------------------------------
On Wed, Feb 28, 2001 at 06:46:49AM -0000, Bill Isaacs wrote: > Hi Bruce and Charles, > > No luck yet. I tried Bruce's suggestion with the same outcome as before: > --------------------------------------------------------------- > tcpserver -v -R -x /etc/smtp.cdb 0 pop-3 /var/qmail/bin/qmail-popup I'm sorry, that was a red herring. You don't need a control file on the POP server. Hmmm... Do you have both /etc/smtp.{rules,cdb} and /etc/tcpcontrol? Which one is being updated? > >Okay, lets see some information on the file itself. How about > > `ls -ld / /etc /etc/tcpcontrol /etc/tcpcontrol/*` > -------------------------------------------------------------- > -rw-r--r-- 1 root root 2072 Feb 27 21:27 /etc/tcpcontrol/smtp.cdb > -rw-r--r-- 1 root qmail 7 Feb 26 12:48 /etc/tcpcontrol/smtp.rules > >Then, use tcprulescheck on the cdb file to see if that IP address is > >in there: > > `TCPREMOTEIP=1.2.3.4 tcprulescheck /etc/tcpcontrol/smtp.cdb` Even more useful would be "cdbdump </etc/tcpcontrol/smtp.cdb", but you'll need the CDB programs for that. What is your run script for qmail-smtpd? -- Bruce Guenter <[EMAIL PROTECTED]> http://em.ca/~bruceg/
It's strange that you use /etc/smtp.cdb to control pop access (!) and that you show us a different CDB file /etc/tcpcontrol/smtp.cdb in your system, are you sure you are using the right CDB file in your qmail-smtpd run script? it might help showing us that script too. Enrique- |o| ---- Bill Isaacs escribió ---- |o| --------------------------------------------------------------- |o| tcpserver -v -R -x /etc/smtp.cdb 0 pop-3 /var/qmail/bin/qmail-popup |o| hoss.willysworkshop.com \ |o| /bin/checkpassword /usr/sbin/relay-ctrl-allow /var/qmail/bin/qmail-pop3d |o| Maildir |o| 2>&1 | \ |o| /var/qmail/bin/splogger pop3d & |o| --------------------------------------------------------------- |o| |o| And Charles, here are the diagnostics you requested (I hope) |o| |o| >Okay, lets see some information on the file itself. How about |o| > `ls -ld / /etc /etc/tcpcontrol /etc/tcpcontrol/*` |o| -------------------------------------------------------------- |o| [root@hoss relay-ctrl]# ls -ld / /etc /etc/tcpcontrol /etc/tcpcontrol/* |o| drwxr-xr-x 19 root root 1024 Feb 26 12:35 / |o| drwxr-xr-x 24 root root 3072 Feb 27 22:34 /etc |o| drwxr-xr-x 2 root root 1024 Feb 27 21:27 /etc/tcpcontrol |o| -rw-r--r-- 1 root qmail 2072 Feb 26 12:48 |o| /etc/tcpcontrol/pop-3.cdb |o| -rw-r--r-- 1 root qmail 2072 Feb 26 13:12 |o| /etc/tcpcontrol/pop-3.cdb |o| .rpmnew |o| -rw-r--r-- 1 root qmail 7 Feb 26 12:48 |o| /etc/tcpcontrol/pop-3.rul |o| es |o| -rw-r--r-- 1 root qmail 7 Feb 26 13:12 |o| /etc/tcpcontrol/pop-3.rul |o| es.rpmnew |o| -rw-r--r-- 1 root qmail 2074 Feb 26 12:48 |o| /etc/tcpcontrol/qmqp.cdb |o| -rw-r--r-- 1 root qmail 2074 Feb 26 13:12 |o| /etc/tcpcontrol/qmqp.cdb. |o| rpmnew |o| -rw-r--r-- 1 root qmail 6 Feb 26 12:48 |o| /etc/tcpcontrol/qmqp.rule |o| s |o| -rw-r--r-- 1 root qmail 6 Feb 26 13:12 |o| /etc/tcpcontrol/qmqp.rule |o| s.rpmnew |o| -rw-r--r-- 1 root qmail 2072 Feb 26 12:48 |o| /etc/tcpcontrol/qmtp.cdb |o| -rw-r--r-- 1 root qmail 2072 Feb 26 13:12 |o| /etc/tcpcontrol/qmtp.cdb. |o| rpmnew |o| -rw-r--r-- 1 root qmail 7 Feb 26 12:48 |o| /etc/tcpcontrol/qmtp.rule |o| s |o| -rw-r--r-- 1 root qmail 7 Feb 26 13:12 |o| /etc/tcpcontrol/qmtp.rule |o| s.rpmnew |o| -rw-r--r-- 1 root root 2072 Feb 27 21:27 |o| /etc/tcpcontrol/smtp.cdb |o| -rw-r--r-- 1 root qmail 2072 Feb 26 13:12 |o| /etc/tcpcontrol/smtp.cdb. |o| rpmnew |o| -rw-r--r-- 1 root qmail 7 Feb 26 12:48 |o| /etc/tcpcontrol/smtp.rule |o| s |o| -rw-r--r-- 1 root qmail 7 Feb 26 13:12 |o| /etc/tcpcontrol/smtp.rule |o| s.rpmnew |o| [root@hoss relay-ctrl]# |o| |o| >Then, use tcprulescheck on the cdb file to see if that IP address is |o| >in there: |o| > `TCPREMOTEIP=1.2.3.4 tcprulescheck /etc/tcpcontrol/smtp.cdb` |o| |o| [root@hoss workshop]# TCPREMOTEIP=63.207.13.190 tcprulescheck |o| /etc/tcpcontrol/smtp.cdb |o| rule : |o| allow connection |o| [root@hoss workshop]# |o| -------------------------------------------------------------- |o| |o| Anyway, there's the dope. I did find an error in tcpcontrol, to whit: |o| I had not specified the full path to the smtp.cdb file. Unfortunately |o| fixing this did not solve the problem. |o| |o| Thanks, |o| |o| Bill |o| |o| _________________________________________________________________ |o| Get your FREE download of MSN Explorer at http://explorer.msn.com
Bill Isaacs <[EMAIL PROTECTED]> wrote: > After installing this package, I found that I could not login to check my > email (ERR: authorization failed). I had to uncomment the pop-3 and smtp > lines in inetd.conf to be able to connect to the server at all (these had > been commented out during by the installation routine). relay-ctrl relies on tcpserver. You can't run it out of inetd. Change your pop3 configuration to use tcpserver as documented. > I am trying to use this package so that I can relay from my home workstation > in California with a dynamic IP address. > > Any advice? Send your mail through your ISP's smarthost -- that's what they're for. relay-ctrl is not needed for most situations, and this appears to be one of them. Charles -- ----------------------------------------------------------------------- Charles Cazabon <[EMAIL PROTECTED]> GPL'ed software available at: http://www.qcc.sk.ca/~charlesc/software/ Any opinions expressed are just that -- my opinions. -----------------------------------------------------------------------
hello,everyone I have build the qmail-ldap server.And it works well. But how can I test the capability of my qmail server,both send and receive? How can I know how many letters/second it sends and receive? root [EMAIL PROTECTED]
Hi, I have a little computer here and dial up to a lot of different ISPs. The given IPs are on the MAPS DUL and my smtp-server (at the moment exim, maybe soon qmail) can't get rid of some of my mail (I don't use a smarthost). One solution would involve a script which changes the smarthost setting in the smtp-server-config everytime I dial up (the smarthost will be the smtp-server of the chosen ISP). This has a few drawbacks: convenience (ISPs are changed quite often) and no guarantee of success (with all the smtp-after-pop and other mysterious ISP-smtp-server settings). The other solution would involve qmail (yeah, finally): From a friend I heard about 'smtp routes' being the solution (apologies to that friend, if I misunderstood, it wasn't the only topic). But as far as I understood the docs, it's something about an alternative to the DNS and using qmail without it. Have I misunderstood the smtproutes features, can you forward me to some docs I haven't found? Are there any other solutions to my problem? Thank you very much, Christoph
Christoph Hertel <[EMAIL PROTECTED]> wrote: > > I have a little computer here and dial up to a lot of different ISPs. > The given IPs are on the MAPS DUL and my smtp-server (at the moment > exim, maybe soon qmail) can't get rid of some of my mail (I don't use a > smarthost). If you're on dial-up, perhaps qmail (and other "real" MTAs) are not the best solution. You may want to consider a relay-only MTA like nullmailer. > One solution would involve a script which changes the smarthost setting > in the smtp-server-config everytime I dial up (the smarthost will be the > smtp-server of the chosen ISP). This has a few drawbacks: convenience > (ISPs are changed quite often) and no guarantee of success (with all the > smtp-after-pop and other mysterious ISP-smtp-server settings). ISP smart relays do not require SMTP-after-POP authentication from addresses they control (their dialup pools, etc). If they did, 80% of their customers would be unable to send mail properly, and they'd fix it right quick. The right solution here is always use your ISP's smarthost. That's what it's for, and it will keep your mail from being marked as spam, refused, or outright dropped on the floor by those servers which consult the DUL. > The other solution would involve qmail (yeah, finally): From a friend I > heard about 'smtp routes' being the solution (apologies to that friend, > if I misunderstood, it wasn't the only topic). But as far as I > understood the docs, it's something about an alternative to the DNS and > using qmail without it. If you decide to use qmail, then have a script which executes when you connect to an ISP which does the following: -`echo ":1.2.3.4" >/var/qmail/control/smtproutes -start qmail and another which automatically stops qmail when you disconnect from the ISP. Replace 1.2.3.4 with the IP address of the ISP's smarthost. This will cause all your remote deliveries to be relayed through the ISP's smarthost. Charles -- ----------------------------------------------------------------------- Charles Cazabon <[EMAIL PROTECTED]> GPL'ed software available at: http://www.qcc.sk.ca/~charlesc/software/ Any opinions expressed are just that -- my opinions. -----------------------------------------------------------------------
Peter Cavender <[EMAIL PROTECTED]> wrote: >The LWQ description of setting up pop3 for qmail only >says to put the tcpserver command in the qmail startup file. > >Shouldn't this "service" be supervised by svscan? Ideally, yes. >Why do the other qmail processes get this, but pop3 does not? Because the POP3 section of LWQ doesn't assume that everyone reading it installed qmail using the LWQ directions--and I've been too lazy to add a blurb with LWQ-specific POP3 installation instructions. >Also, I am moving towards eliminating inetd, and have set up in.telnetd to >be run by tcpserver in a line in rc.local (RH Linux 6.2 here). In the >inetd.conf file, it runs in.telnetd via /usr/sbin/tcpd. In the man page >is says that tcps does some logging and other stuff, but I see no signs of >it. When I try to use tcpserver->tcpd->in.telnetd, it doesn't >work. Remove tcpd and all is fine. Should I be happy discarding tcpd? Yep. It doesn't do anything tcpserver can't do. >Also, since my inetd.conf file is now *empty*, can I disable it >altogether, or or will I lose essential internal services? Sure, nuke it. -Dave
Dave Sill <[EMAIL PROTECTED]> wrote: > Peter Cavender <[EMAIL PROTECTED]> wrote: > > >Also, since my inetd.conf file is now *empty*, can I disable it > >altogether, or or will I lose essential internal services? > > Sure, nuke it. Go one step further and uninstall inetd completely. I've done it on every machine I have access to, and haven't regretted it at all. Charles -- ----------------------------------------------------------------------- Charles Cazabon <[EMAIL PROTECTED]> GPL'ed software available at: http://www.qcc.sk.ca/~charlesc/software/ Any opinions expressed are just that -- my opinions. -----------------------------------------------------------------------
FYI I have a LWQ type pop3 install and have passed on the info to quite a few people, so I know it works. If anyone is looking for that kind of solution, just let me know and I will pass my information on again. Dave if you need any info on my install (doubtful) let me know as I would love the opportunity to pass knowledge back to LWQ. -- Tim ----- Original Message ----- From: "Dave Sill" <[EMAIL PROTECTED]> To: <[EMAIL PROTECTED]> Sent: Wednesday, February 28, 2001 8:40 AM Subject: Re: tcpserver for pop3 and telnet > Peter Cavender <[EMAIL PROTECTED]> wrote: > > >The LWQ description of setting up pop3 for qmail only > >says to put the tcpserver command in the qmail startup file. > > > >Shouldn't this "service" be supervised by svscan? > > Ideally, yes. > > >Why do the other qmail processes get this, but pop3 does not? > > Because the POP3 section of LWQ doesn't assume that everyone reading > it installed qmail using the LWQ directions--and I've been too lazy to > add a blurb with LWQ-specific POP3 installation instructions. > > >Also, I am moving towards eliminating inetd, and have set up in.telnetd to > >be run by tcpserver in a line in rc.local (RH Linux 6.2 here). In the > >inetd.conf file, it runs in.telnetd via /usr/sbin/tcpd. In the man page > >is says that tcps does some logging and other stuff, but I see no signs of > >it. When I try to use tcpserver->tcpd->in.telnetd, it doesn't > >work. Remove tcpd and all is fine. Should I be happy discarding tcpd? > > Yep. It doesn't do anything tcpserver can't do. > > >Also, since my inetd.conf file is now *empty*, can I disable it > >altogether, or or will I lose essential internal services? > > Sure, nuke it. > > -Dave >
Mostly this occurs when delivery to yahoo is attempted, I have seen only one other site crash it. I have tried both Messenger 4.76 and Outlook Express they both are able to use the secure SMTP connection. Many other severs are able to connect just fine. Any body got any ideas? I have not tried to set up advanced relaying or anything, just want basic encrypted communication for now. I am even willing to only patch qmail-smtpd.c + Makefile, but I have no idea how to do this. Please help!!! Solaris 7 (Sparq) Qmail 1.03 gcc 2.95.2 GNU patch (Solaris one fails a lot) tls.patch 20010106 ******************************** John McCoy [EMAIL PROTECTED] Systems Administrator Central Systems Mills College 510-430-3321 ********************************
Hi, I was using Red Hat 6.2, and qmail as Mta. My goal is to take virus aware from my mail server, so, what's the best choice ? 1) as virus-scanner ? amavis or qmail-scanner ? both seem to work fine... 2) as antivirus ? H+BEDV AntiVir, AVP, Sophos Sweep,or McAfee ViruScan ? I used avp for a while (and I find it very efficient), but doesn't know the other ones... thanks in advance... Regards Jeremy Cluzel ------------------------------------------------------ Votre email partout et gratuit ! http://www.alinto.com
On Wed, Feb 28, 2001 at 03:58:51PM -0000, Jérémy Cluzel wrote: > My goal is to take virus aware from my mail server, so, what's the > best choice ? there are no "best choice" : there are just different solutions :) All that I can tell you is that qmail-scanner + f-sav is a very good working solution. But I never tried anything elso, so YMMV :) Olivier -- _________________________________________________________________ Olivier Mueller - [EMAIL PROTECTED] - PGPkeyID: 0E84D2EA - Switzerland qmail projects: http://omail.omnis.ch - http://webmail.omnis.ch
Jeremy, I tried installing qmai-scanner and had some difficulty with the setuid root issues. qmail-scanner was wanting a new kernel built, which I can't easily do as it's a remote server. I switched to amavis and think that's a better solution. It's easy to install and essentially works by 'slipping' into the process of qmail operation. Plus, you don't need to patch qmail for the queue as well. I don't understand all the internals of qmail, I've been using it for about a month so I can't arque which way is one is better. Also, keep in mind that amavis/qmail-scanner are NOT virus scanners, but are essentially 'wrappers' to run a regular virus scanner like NAI, Sophos, etc. I use AMaVis with Sophos and have been happy with the performance. HTH .mark >---------- >From: Jérémy Cluzel[SMTP:[EMAIL PROTECTED]] >Sent: Wednesday, February 28, 2001 7:58 AM >To: qmail >Subject: amavis or qmail-scanner ? > >Hi, > >I was using Red Hat 6.2, and qmail as Mta. >My goal is to take virus aware from my mail server, so, what's the >best choice ? > >1) as virus-scanner ? amavis or qmail-scanner ? both seem to work >fine... > >2) as antivirus ? H+BEDV AntiVir, AVP, Sophos Sweep,or McAfee >ViruScan ? I used avp for a while (and I find it very efficient), but >doesn't know the other ones... > >thanks in advance... > >Regards > >Jeremy Cluzel > >------------------------------------------------------ >Votre email partout et gratuit ! http://www.alinto.com >
On Wed, Feb 28, 2001 at 09:34:57AM -0800, [EMAIL PROTECTED] wrote: > Jeremy, > > I tried installing qmai-scanner and had some difficulty with the setuid > root issues. qmail-scanner was wanting a new kernel built, which I can't Err - I can emphatically state that neither Qmail-Scanner or AmaVis require "new kernels" to work. Your problem was with perl - not with the OS.... > way is one is better. Also, keep in mind that amavis/qmail-scanner are > NOT virus scanners, but are essentially 'wrappers' to run a regular > virus scanner like NAI, Sophos, etc. Absolutely correct :-) -- Cheers Jason Haar Unix/Special Projects, Trimble NZ Phone: +64 3 9635 377 Fax: +64 3 9635 417
"Someone" <[EMAIL PROTECTED]> writes: > Hi all, > > I want infomations about qmail compares with sendmail. > Can you help me? > Where www talk about them? > Such as efficiency, speedy, security, why?, ...etc. Well, start by reading http://cr.yp.to/qmail.html, particularly the FAQ, and http://cr.yp.to/mail.html . You may be getting low response to your post because it looks rather like a "troll" -- somebody dropping in and attempting to get a flamewar going. -- David Dyer-Bennet / Welcome to the future! / [EMAIL PROTECTED] SF: http://www.dd-b.net/dd-b/ Minicon: http://www.mnstf.org/minicon/ Photos: http://dd-b.lighthunters.net/
Mikko Hänninen <[EMAIL PROTECTED]> writes: > Karl Vogel <[EMAIL PROTECTED]> wrote on Sun, 25 Feb 2001: > > If I'm reading the RFCs correctly, the right order is "Reply-to:", then > > "From:", then "Sender:". > > How about using the envelope sender (ie. return-path)? > > I missed the original message, so maybe this isn't really applicable, > but in general you should take mailing lists into account. On most > mailing lists, including this one, the right return address is not > found in any of those headers. > > Of course, one should try to avoid sending auto-replies to list emails > at all, but chances are you'll never be able to detect with 100% > accuracy all list emails, so should count on it happening sometime. Perhaps; but if so, having the auto-responder *NOT* respond to the list address is still a win! -- David Dyer-Bennet / Welcome to the future! / [EMAIL PROTECTED] SF: http://www.dd-b.net/dd-b/ Minicon: http://www.mnstf.org/minicon/ Photos: http://dd-b.lighthunters.net/
I've set up a mirror of cr.yp.to using ftpcopy, and a list to which any updates will be sent. I'll mirror twice daily for now. Any changes to the files distributed via cr.yp.to, including the addition of new files, the updating of existing files, or the removal of existing files, will be detected and reported by ftpcopy. This covers all files distributed via cr.yp.to* including HTML web pages and source code distributions of all of djbware. If nothing changes, no message will be sent to the list. To subscribe, send a message to: <[EMAIL PROTECTED]> -Dave * actually, I skip *.cdb and the "mirror" subdirectory.
Hi, www.qmail.org mentions Scott Gifford's patch making qmail recognize 0.0.0.0 as local IP address. But the link to the patch http://www.tir.com/~sgifford/qmail/qmail-0.0.0.0.patch is invalid: Not Found The requested URL /~sgifford/qmail/qmail-0.0.0.0.patch was not found on this server. Does anybody know, where the actual place for this file is? claudio -- Claudio Nieder, Kanalweg 1, CH-8610 Uster, Tel +41 79 357 6743 yahoo messenger: claudionieder aim: claudionieder icq:42315212 mailto:[EMAIL PROTECTED] http://www.claudio.ch
Claudio Nieder <[EMAIL PROTECTED]> writes: > www.qmail.org mentions Scott Gifford's patch making qmail recognize > 0.0.0.0 as local IP address. But the link to the patch > > http://www.tir.com/~sgifford/qmail/qmail-0.0.0.0.patch > > is invalid: > > Not Found > > The requested URL /~sgifford/qmail/qmail-0.0.0.0.patch was not found on this server. > > > Does anybody know, where the actual place for this file is? Yeah, I'm having trouble with my Web site this week. Here's a copy. Things should be back up after this weekend, I hope. -----ScottG.--- qmail-1.03/ipme.c Mon Jun 15 06:53:16 1998 +++ qmail-1.03-sg/ipme.c Mon Jan 29 02:27:38 2001 @@ -46,6 +46,11 @@ ipme.len = 0; ix.pref = 0; + /* 0.0.0.0 is a special address which always refers to + * "this host, this network", according to RFC 1122, Sec. 3.2.1.3a. + */ + byte_copy(&ix.ip,4,"\0\0\0\0"); + if (!ipalloc_append(&ipme,&ix)) { return 0; } if ((s = socket(AF_INET,SOCK_STREAM,0)) == -1) return -1; len = 256;
Thus said "Chrisanthy Carlane" on Tue, 27 Feb 2001 13:13:52 +0700: > What I want to ask is: HOW to create that buffering thing ? Do I have to add > every user for every domain(which will be a lot of user)? With a standard qmail install it's as simple as: Add their domain to /var/qmail/control/rcpthosts They must produce an appropriate MX record in their DNS information which points to your mail server. I don't know what addition complexities vpopmail might add, but I suspect this should still work. Andy -- [-----------[system uptime]--------------------------------------------] 11:17pm up 12 days, 23:19, 6 users, load average: 1.01, 1.11, 1.21
On Tue, Feb 27, 2001 at 12:08:12AM -0700, Andy Bradford wrote: > Not necessary. They will be queued up in qmail's mail queue until they > can be delivered to their mail server (or until the message has been in your > queue too long and the message bounces). Simple really. We've had simmilar problems with "dialup customer" wanting their email delivered via SMTP. What we did (and also use for some backup MX customers, that turn off their mailservers during weekends *argl*) is to use a maildirsmtp setup. I find it pretty annoying having some 1000 email for them in the "active" qmail queue and the customers complain "that some emails take a long time to arrive although the mailserver is back up again" (this is due to the quadratic backoff). What we do: 1) create a /var/qmail/channels/serialmail directory. 2) in this directory create another directory "dom.ain" 3) in this directory create a maildir (e.g. called "Maildir") and a .qmail-default file containing ./Maildir/ 4) add to users/assign a line like: +dom.ain-:qmaild:101:101:/var/qmail/channels/serialmail/dom.ain:-:: (101:101 is the uid:gid for qmaild:nofiles - this is because of section 10) below ;-) 5) run qmail-newu 6) add lines to control/virtualdomains dom.ain:dom.ain .dom.ain:dom.ain 7) kill -HUP pidof(qmail-send) Now mails for [EMAIL PROTECTED] will end up in the maildir /var/qmail/channels/serialmail/dom.ain/Maildir/ If the customer has more than one domain (e.g. .net, .com. org) you can use in virtualdomains example.com:dom.ain .example.com:dom.ain example.net:dom.ain .example.net:dom.ain And they will end up in the same directory. 8) In /var/qmail/channels/serialmail/dom.ain create a file "RELAYHOST" and put in it the name of the mail exchanger for that dom.ain (e.g. mail.dom.ain) 9) All you need now is a script that periodically scans (we use 3 minutes) all the /var/qmail/channels/serialmail/dom.ain directories, checks if there are eMails in Maildir/new. If so, flock the RELAYHOST file (to avoid concurrent deliveries) and start maildirsmtp to try to deliver the email to `cat RELAYHOST` We do this in a two way style, so we have one scanner and one deliverer thats been forked off from scanner. The maildir command would look like maildirsmtp /var/qmail/channels/serialmail/dom.ain/Maildir \ dom.ain- `cat .../dom.ain/RELAYHOST` mail.mydom.ain (don't forget the trailing "-" on dom.ain- above) 10) we also use tcpserver to set the ETRN="dom.ain" Variable for the ip the mail.dom.ain runs on and we use a wrapper to qmail-smtpd that checks for the existance of the ETRN Variable and if it exists it forks off deliverer for dom.ain (kinda AutoTURN like ETRN). We use this setup for about two years now and it works like a charm. There is only one problem: if the customer changes the mail exchanger without telling you *sigh* The scripts for scanner and deliverer are in perl, the qmail-smtpd wrapper is in sh. If I find some time, I'll write some docs and cleanup the code and put it up for public retrival. *sigh* but I cannot promise any date as I have nearly zero spare time right now :/ \Maex -- SpaceNet AG | Joseph-Dollinger-Bogen 14 | Fon: +49 (89) 32356-0 Research & Development | D-80807 Muenchen | Fax: +49 (89) 32356-299 Stress is when you wake up screaming and you realize you haven't fallen asleep yet.
OK, I've done some newbie-snooping and found that relay-ctrl-age wasn't updating the database. I removed the path in the smtpcdb rules file, and that fixed that. I then did a tcprulescheck and got: ---------------------------------------------------------------- [root@hoss /etc]# TCPREMOTEIP=64.161.212.206 tcprulescheck /etc/tcpcontrol/smtp. cdb rule 64.161.212.206: set environment variable RELAYCLIENT= allow connection [root@hoss /etc]# ---------------------------------------------------------------- In addition, I noted the the smtp.cdb file was being updated every minute according to ls -l . So now methinks I should be able to relay, no? no. Same message, "5.5.3 sorry, blah blah blah". OK, so then I stopped the relay-ctrl-age in the cron, and manually compiled the smtp.cdb file from a text file according to documentation (after allowing the spool file to expire, so that there was nothing in the database referring to my dynamic IP). I got the exact same result with tcprulescheck as above. I try relaying again, but no luck. So the question is, doesn't this sound like a more fundamental issue than relay-ctrl? Is there something perhaps with qmail that would disallow relaying regardless of what the CDB database says? thanks, Bill >From: Charles Cazabon <[EMAIL PROTECTED]> >To: [EMAIL PROTECTED] >Subject: Re: Relay-ctrl and qmail >Date: Tue, 27 Feb 2001 15:19:59 -0600 > >Bill Isaacs <[EMAIL PROTECTED]> wrote: > > Now that we're all in agreement on what relay-ctrl is, let me get > > more specific about what is not happening for me with this package ;) >[...] > > I now check the cron log to make sure that relay-ctrl-age has run > > since the timestamp on the above file: > > ------------------------------- > > root (02/27-12:47:00-5529) CMD (/usr/sbin/relay-ctrl-age) > > ------------------------------- > > > > So far so good. >[...] > > So obviously, the database isn't being updated. > >Okay, lets see some information on the file itself. How about > `ls -ld / /etc /etc/tcpcontrol /etc/tcpcontrol/*` > >Then, use tcprulescheck on the cdb file to see if that IP address is >in there: > `TCPREMOTEIP=1.2.3.4 tcprulescheck /etc/tcpcontrol/smtp.cdb` > >Replace 1.2.3.4 with the IP address of the machine you POP-checked your >mail from immediately before doing the above steps. > >Charles >-- >----------------------------------------------------------------------- >Charles Cazabon <[EMAIL PROTECTED]> >GPL'ed software available at: http://www.qcc.sk.ca/~charlesc/software/ >Any opinions expressed are just that -- my opinions. >----------------------------------------------------------------------- _________________________________________________________________ Get your FREE download of MSN Explorer at http://explorer.msn.com
Bill Isaacs <[EMAIL PROTECTED]> wrote: > > that fixed that. I then did a tcprulescheck and got: > ---------------------------------------------------------------- > [root@hoss /etc]# TCPREMOTEIP=64.161.212.206 tcprulescheck > /etc/tcpcontrol/smtp. > cdb > rule 64.161.212.206: > set environment variable RELAYCLIENT= > allow connection > [root@hoss /etc]# > ---------------------------------------------------------------- > In addition, I noted the the smtp.cdb file was being updated every minute > according to ls -l . > > So now methinks I should be able to relay, no? no. Same message, "5.5.3 > sorry, blah blah blah". The .cdb file is fine, but you're not being allowed to relay. Therefore, the problem is in your qmail-smtpd start script. Please post that. If you're using svscan, post the contents of .../service/smtpd/run . Charles -- ----------------------------------------------------------------------- Charles Cazabon <[EMAIL PROTECTED]> GPL'ed software available at: http://www.qcc.sk.ca/~charlesc/software/ Any opinions expressed are just that -- my opinions. -----------------------------------------------------------------------
I have a feeling I'll get laughed at, but here goes. I'm not using svscan. This is what I have in (*gulp*) inetd.conf: smtp stream tcp nowait qmaild /var/qmail/bin/tcp-env tcp-env /var/qmail/bin/qmail-smtpd >From: Charles Cazabon <[EMAIL PROTECTED]> >To: [EMAIL PROTECTED] >Subject: Re: Relay-ctrl and qmail: problem more fundamental, I think >Date: Wed, 28 Feb 2001 12:47:10 -0600 > >Bill Isaacs <[EMAIL PROTECTED]> wrote: > > > > that fixed that. I then did a tcprulescheck and got: > > ---------------------------------------------------------------- > > [root@hoss /etc]# TCPREMOTEIP=64.161.212.206 tcprulescheck > > /etc/tcpcontrol/smtp. > > cdb > > rule 64.161.212.206: > > set environment variable RELAYCLIENT= > > allow connection > > [root@hoss /etc]# > > ---------------------------------------------------------------- > > In addition, I noted the the smtp.cdb file was being updated every >minute > > according to ls -l . > > > > So now methinks I should be able to relay, no? no. Same message, >"5.5.3 > > sorry, blah blah blah". > >The .cdb file is fine, but you're not being allowed to relay. Therefore, >the problem is in your qmail-smtpd start script. Please post that. >If you're using svscan, post the contents of .../service/smtpd/run . > >Charles >-- >----------------------------------------------------------------------- >Charles Cazabon <[EMAIL PROTECTED]> >GPL'ed software available at: http://www.qcc.sk.ca/~charlesc/software/ >Any opinions expressed are just that -- my opinions. >----------------------------------------------------------------------- _________________________________________________________________ Get your FREE download of MSN Explorer at http://explorer.msn.com
Bill Isaacs <[EMAIL PROTECTED]> wrote: > > I have a feeling I'll get laughed at, but here goes. No, laughing is reserved for people who send mail like "qmail isn't working for me. Why?" to the mailing list. > I'm not using svscan. This is what I have in (*gulp*) inetd.conf: > > smtp stream tcp nowait qmaild /var/qmail/bin/tcp-env tcp-env > /var/qmail/bin/qmail-smtpd Okay. You need to change this; take it out of inetd.conf and kill -HUP inetd. Start qmail-smtpd with tcpserver -- if you want, you can supervise and svscan it as well. The tcpserver invocation must include the option and value "-x /etc/tcpcontrol/smtp.cdb". So the problem was that the .cdb file was never being consulted, and therefore the RELAYCLIENT environment variable was not being set (conditionally or not). Charles -- ----------------------------------------------------------------------- Charles Cazabon <[EMAIL PROTECTED]> GPL'ed software available at: http://www.qcc.sk.ca/~charlesc/software/ Any opinions expressed are just that -- my opinions. -----------------------------------------------------------------------
Lost, lost, lost! OK, I'm a newbie with most of this stuff, but I'm having a problem invoking smtp with tcpserver. Trying this: -------------------------------------------------------- tcpserver -v -R -x /etc/tcpcontrol/smtp.cdb 0 pop-3 /var/qmail/bin/qmail-popup hoss.willysworkshop.com \ /bin/checkpassword /usr/sbin/relay-ctrl-allow /var/qmail/bin/qmail-pop3d Maildir 2>&1 | \ /var/qmail/bin/qmail-smtpd \ /var/qmail/bin/splogger pop3d & -------------------------------------------------------- results in this: -------------------------------------------------------- [root@hoss smtpd]# 220 hoss.willysworkshop.com ESMTP 502 unimplemented (#5.5.1) -------------------------------------------------------- and this on my POP client: -------------------------------------------------------- Could not connect to "hoss.willysworkshop.com" Cause: connection refused(10061) -------------------------------------------------------- What am I doing wrong with the tcpserver invocation? >From: Charles Cazabon <[EMAIL PROTECTED]> >To: [EMAIL PROTECTED] >Subject: Re: Fwd: Re: Relay-ctrl and qmail: problem more fundamental, I >think >Date: Wed, 28 Feb 2001 13:11:57 -0600 > >Bill Isaacs <[EMAIL PROTECTED]> wrote: > > > > I have a feeling I'll get laughed at, but here goes. > >No, laughing is reserved for people who send mail like "qmail isn't working >for me. Why?" to the mailing list. > > > I'm not using svscan. This is what I have in (*gulp*) inetd.conf: > > > > smtp stream tcp nowait qmaild /var/qmail/bin/tcp-env tcp-env > > /var/qmail/bin/qmail-smtpd > >Okay. You need to change this; take it out of inetd.conf and kill -HUP >inetd. Start qmail-smtpd with tcpserver -- if you want, you can >supervise and svscan it as well. The tcpserver invocation must include the >option and value "-x /etc/tcpcontrol/smtp.cdb". > >So the problem was that the .cdb file was never being consulted, and >therefore >the RELAYCLIENT environment variable was not being set (conditionally or >not). > >Charles >-- >----------------------------------------------------------------------- >Charles Cazabon <[EMAIL PROTECTED]> >GPL'ed software available at: http://www.qcc.sk.ca/~charlesc/software/ >Any opinions expressed are just that -- my opinions. >----------------------------------------------------------------------- _________________________________________________________________ Get your FREE download of MSN Explorer at http://explorer.msn.com
On Wed, Feb 28, 2001 at 08:35:02PM -0000, Bill Isaacs wrote: > > Lost, lost, lost! > > OK, I'm a newbie with most of this stuff, but I'm having a problem invoking > smtp with tcpserver. Trying this: > -------------------------------------------------------- > tcpserver -v -R -x /etc/tcpcontrol/smtp.cdb 0 pop-3 > /var/qmail/bin/qmail-popup hoss.willysworkshop.com \ > /bin/checkpassword /usr/sbin/relay-ctrl-allow /var/qmail/bin/qmail-pop3d > Maildir > 2>&1 | \ > /var/qmail/bin/qmail-smtpd \ > /var/qmail/bin/splogger pop3d & Yikes! You're piping the output of qmail-pop3d into qmail-smtpd. qmail-pop3d and qmail-smtpd have nothing to do with each other, and qmail-smtpd will be justifiably confused. Remove that bit, and give it another shot. Chris
Bill Isaacs <[EMAIL PROTECTED]> wrote: > > Lost, lost, lost! > > OK, I'm a newbie with most of this stuff, but I'm having a problem invoking > smtp with tcpserver. Trying this: > -------------------------------------------------------- > tcpserver -v -R -x /etc/tcpcontrol/smtp.cdb 0 pop-3 > /var/qmail/bin/qmail-popup hoss.willysworkshop.com \ > /bin/checkpassword /usr/sbin/relay-ctrl-allow /var/qmail/bin/qmail-pop3d > Maildir > 2>&1 | \ > /var/qmail/bin/qmail-smtpd \ > /var/qmail/bin/splogger pop3d & Okay, a couple of problems here. One, you're trying to bind to the pop3 port (the argument pop-3). That should be either "smtp" or "25". Two, you're not invoking the right program. Try something more like: tcpserver g GID -u UID -DRvX \ -x /etc/tcpcontrol/smtp.cdb 0 smtp \ qmail-smtpd Change GID and UID to the GID and UID values that the server should run as. The last argument is the program which tcpserver runs for each connection. -v turns on some status messages, -R turns off ident lookups on the remote host, -D turns on TCP_NODELAY, -X says accept connections even if the cdb file doesn't exist. Charles -- ----------------------------------------------------------------------- Charles Cazabon <[EMAIL PROTECTED]> GPL'ed software available at: http://www.qcc.sk.ca/~charlesc/software/ Any opinions expressed are just that -- my opinions. -----------------------------------------------------------------------
At the risk of sounding really stupid, do I need to invoke BOTH the corrected script (minus the qmail-smtpd part) AND the old one (pop-3, etc.)? In other words, will I have two tcpserver scripts, one invoking the pop-3 and the other the qmail smtpd? As I said, I am a complete newbie with email and no great shakes with much of this stuff to begin with. I hope you folks aren't getting to tired of answering these dumb questions. Thanks, Bill >From: Charles Cazabon <[EMAIL PROTECTED]> >To: [EMAIL PROTECTED] >Subject: Re: Relay-ctrl and qmail: problem more fundamental, I think >Date: Wed, 28 Feb 2001 15:15:08 -0600 > >Bill Isaacs <[EMAIL PROTECTED]> wrote: > > > > Lost, lost, lost! > > > > OK, I'm a newbie with most of this stuff, but I'm having a problem >invoking > > smtp with tcpserver. Trying this: > > -------------------------------------------------------- > > tcpserver -v -R -x /etc/tcpcontrol/smtp.cdb 0 pop-3 > > /var/qmail/bin/qmail-popup hoss.willysworkshop.com \ > > /bin/checkpassword /usr/sbin/relay-ctrl-allow /var/qmail/bin/qmail-pop3d > > Maildir > > 2>&1 | \ > > /var/qmail/bin/qmail-smtpd \ > > /var/qmail/bin/splogger pop3d & > >Okay, a couple of problems here. One, you're trying to bind to the pop3 >port (the argument pop-3). That should be either "smtp" or "25". >Two, you're not invoking the right program. > >Try something more like: > >tcpserver g GID -u UID -DRvX \ > -x /etc/tcpcontrol/smtp.cdb 0 smtp \ > qmail-smtpd > >Change GID and UID to the GID and UID values that the server should run >as. The last argument is the program which tcpserver runs for each >connection. -v turns on some status messages, -R turns off ident lookups >on the remote host, -D turns on TCP_NODELAY, -X says accept connections >even if the cdb file doesn't exist. > >Charles >-- >----------------------------------------------------------------------- >Charles Cazabon <[EMAIL PROTECTED]> >GPL'ed software available at: http://www.qcc.sk.ca/~charlesc/software/ >Any opinions expressed are just that -- my opinions. >----------------------------------------------------------------------- _________________________________________________________________ Get your FREE download of MSN Explorer at http://explorer.msn.com
On Mon, Feb 26, 2001 at 04:28:43PM -0800, Brandon Yu wrote: > I have been given the task to send out 2 million emails in a 12 hour time > window. All the emails will be sent remotely, to a list of users of which is > 90% accurate (I figure 10% of the emails will bounceback because of bad > email addresses) I have all the bandwidth I need (servers are located in > co-location) and will be sorting the email list by domain name. > > My initial idea is to have 2 dedicated qmail servers, ( Redhat Linux 6.2, > Pentium 600, 500Megs RAM, IDE drives) configured with a concurrency limit of > 400. Other than that, the qmail install will be out of the box. > > Can I reasonably meet this rate ? Do you have any suggestions? A higher concurrency *may* be beneficial. It's not gonna hurt, anyway. I'm assuming you are using ezmlm or something similar for this. Anything else would be suicide. Greetz, Peter.
On Tue, Feb 27, 2001 at 08:11:10PM +0100, Peter van Dijk wrote: > As long as you are injecting messages, qmail won't perform at full > speed. Play with that rate, maybe no limiting *is* the best option. Maybe an idea would also be to "disable" the trigger mechanism in qmail-queue/qmail-send (changing permission on trigger would be sufficient) and change qmail-send's sleep timeout to some 60 seconds. This can be easily done by changing qmail-send: #define SLEEP_TODO 1500 /* check todo/ every 25 minutes in any case */ This would cause qmail to "bulk", i.e. scan todo and organize, send out the mails, and then start again. With that one could measure (system and bulk job dependant) how many emails qmail can send out in a certain interval. Then one could synch the SLEEP_TODO and the number of injects per SLEEP_TODO. \Maex P.S. as some ppl wondered ... no, i didn't get lost ;-) only had no time to read the list which bestowed me 1200 unread messages :/ but I'm nearly though ;-) -- SpaceNet AG | Joseph-Dollinger-Bogen 14 | Fon: +49 (89) 32356-0 Research & Development | D-80807 Muenchen | Fax: +49 (89) 32356-299 Stress is when you wake up screaming and you realize you haven't fallen asleep yet.
Hi, There appears to be a problem with the length of the pop3 user acct name under qmail. I have an idea that the max allowable characters in the xxx part of [EMAIL PROTECTED] should be 64 characters (I've looked at rfc's 821 and 1939 and did not find a definitive answer). I had a situation where a user had used 35 characters in the pop3 acct name causing the mail to bounce. Can someone please confirm the actual limit for the pop3 acct name under qmail and also where I might find the defacto reference for the information provided. TIA Regards Dean Browett
On Wed, Feb 28, 2001 at 07:22:13PM -0000, Dean Browett wrote: > There appears to be a problem with the length of the pop3 user acct name > under qmail. I don't think there is. > I have an idea that the max allowable characters in the xxx part of > [EMAIL PROTECTED] should be 64 characters (I've looked at rfc's 821 and 1939 > and did not find a definitive answer). I had a situation where a user had > used 35 characters in the pop3 acct name causing the mail to bounce. Let's see the evidence. And anyway, how could a POP user name possibly affect mail delivery? POP is used to collect mail that's already been delivered, and whatever limitations a POP daemon may or may not impose on the length of a user name is unknown to the agents invloved in delivering mail to a user's mailbox. > Can someone please confirm the actual limit for the pop3 acct name under > qmail and also where I might find the defacto reference for the information > provided. Without even looking at the code, I can say with reasonable confidence that qmail-popup and checkpassword don't impose any limitations on the length of a user name, and even if they did these limitations couldn't cause anyone's mail to bounce. Chris
It seems that someone's mail server re-injecting messages to this mailing list. I just got another copy of a message that I sent yesterday. Has anyone else noticed this? The headers are included and what I have seen is that the Message-id has changed maybe to the mail server that is re-injecting the message and obviously the Return-path and all the Received lines. This is the original: -------------------------------- Received: (qmail 6694 invoked from network); 27 Feb 2001 06:22:51 -0000 Received: from localhost (127.0.0.1) by localhost with SMTP; 27 Feb 2001 06:22:51 -0000 Received: from localhost by localhost with IMAP (fetchmail-5.2.0) for andyb@localhost (single-drop); Mon, 26 Feb 2001 23:22:51 -0700 (MST) Received: (qmail 28594 invoked by uid 0); 27 Feb 2001 06:22:25 -0000 Received: from [EMAIL PROTECTED] by mail.calderasystems.com with scan4virus-0.50 (uvscan: v4.0.70/v4077. . Clean. Processed in 0.609433 secs); 26/02/2001 23:22:25 Received: from id.wustl.edu (128.252.140.87) by mail.calderasystems.com with SMTP; 27 Feb 2001 06:22:24 -0000 Received: (qmail 32017 invoked by alias); 27 Feb 2001 06:22:23 -0000 Precedence: bulk List-unsubscribe: <mailto:[EMAIL PROTECTED]> List-subscribe: <mailto:[EMAIL PROTECTED]> List-post: <mailto:[EMAIL PROTECTED]> Received: (qmail 32014 invoked from network); 27 Feb 2001 06:22:23 -0000 Mailing-list: contact [EMAIL PROTECTED]; run by ezmlm Precedence: bulk Message-id: <[EMAIL PROTECTED]> X-image-url: http://www.xmission.com/~bradipo/pictures/mugshot1sm.jpg X-url: http://www.xmission.com/~bradipo/ In-reply-to: Message from "Chrisanthy Carlane" <[EMAIL PROTECTED]> of "Tue, 27 Feb 2001 13:13:52 +0700." <000c01c0a084$7531d060$8924a5ca@everyone> Mime-version: 1.0 Content-type: text/plain; charset=us-ascii Return-path: <[EMAIL PROTECTED]> Delivered-to: andyb@localhost Delivered-to: [EMAIL PROTECTED] Delivered-to: mailing list [EMAIL PROTECTED] Delivered-to: mailing list [EMAIL PROTECTED] X-mailer: exmh version 2.2 06/23/2000 with nmh-1.0.4 To: "Chrisanthy Carlane" <[EMAIL PROTECTED]> Cc: [EMAIL PROTECTED] Subject: Re: mailserver buffering Date: Mon, 26 Feb 2001 23:17:22 -0700 From: Andy Bradford <[EMAIL PROTECTED]> -------------------------------- This is the duplicate: -------------------------------- Received: (qmail 15724 invoked from network); 28 Feb 2001 17:53:13 -0000 Received: from localhost (127.0.0.1) by localhost with SMTP; 28 Feb 2001 17:53:13 -0000 Received: from localhost by localhost with IMAP (fetchmail-5.2.0) for andyb@localhost (single-drop); Wed, 28 Feb 2001 10:53:13 -0700 (MST) Received: (qmail 22216 invoked by uid 0); 28 Feb 2001 17:53:00 -0000 Received: from [EMAIL PROTECTED] by mail.calderasystems.com with scan4virus-0.50 (uvscan: v4.0.70/v4077. . Clean. Processed in 3.906777 secs); 28/02/2001 10:52:56 Received: from id.wustl.edu (128.252.140.87) by mail.calderasystems.com with SMTP; 28 Feb 2001 17:52:56 -0000 Received: (qmail 5699 invoked by alias); 28 Feb 2001 17:52:54 -0000 Precedence: bulk List-unsubscribe: <mailto:[EMAIL PROTECTED]> List-subscribe: <mailto:[EMAIL PROTECTED]> List-post: <mailto:[EMAIL PROTECTED]> Received: (qmail 5696 invoked from network); 28 Feb 2001 17:52:53 -0000 Mailing-list: contact [EMAIL PROTECTED]; run by ezmlm Precedence: bulk Message-id: <[EMAIL PROTECTED]> X-image-url: http://www.xmission.com/~bradipo/pictures/mugshot1sm.jpg X-url: http://www.xmission.com/~bradipo/ In-reply-to: Message from "Chrisanthy Carlane" <[EMAIL PROTECTED]> of "Tue, 27 Feb 2001 13:13:52 +0700." <000c01c0a084$7531d060$8924a5ca@everyone> Mime-version: 1.0 Content-type: text/plain; charset=us-ascii Return-path: <[EMAIL PROTECTED]> Delivered-to: andyb@localhost Delivered-to: [EMAIL PROTECTED] Delivered-to: mailing list [EMAIL PROTECTED] Delivered-to: mailing list [EMAIL PROTECTED] To: "Chrisanthy Carlane" <[EMAIL PROTECTED]> Cc: [EMAIL PROTECTED] Subject: Re: mailserver buffering Date: Mon, 26 Feb 2001 23:17:22 -0700 From: Andy Bradford <[EMAIL PROTECTED]> -------------------------------- Andy
Hi, I have been getting this message in my logfile: qmail: [numbers] alert: unable to append to bounce message HELP! sleeping... qmail seems to be doing this every 10 seconds or so. Any advice or pointers to the right direction for information will be apreachiated
[EMAIL PROTECTED] <[EMAIL PROTECTED]> wrote: > > qmail: [numbers] alert: unable to append to bounce message HELP! > sleeping... Your queue disk is probably full or out of inodes. Charles -- ----------------------------------------------------------------------- Charles Cazabon <[EMAIL PROTECTED]> GPL'ed software available at: http://www.qcc.sk.ca/~charlesc/software/ Any opinions expressed are just that -- my opinions. -----------------------------------------------------------------------
The problem turned to be a full disk. Thanks to all who answered my question, and gave me good advice Charles Cazabon wrote: > [EMAIL PROTECTED] <[EMAIL PROTECTED]> wrote: > > > > qmail: [numbers] alert: unable to append to bounce message HELP! > > sleeping... > > Your queue disk is probably full or out of inodes. > > Charles > -- > ----------------------------------------------------------------------- > Charles Cazabon <[EMAIL PROTECTED]> > GPL'ed software available at: http://www.qcc.sk.ca/~charlesc/software/ > Any opinions expressed are just that -- my opinions. > -----------------------------------------------------------------------
Is there a way to specify or override the attachment limit? We have a message getting rejected with an attachment too large message, it is a 13mb attachment. I was previously unaware there was a limit :) Thanks1 Regards, Cristopher Daniluk President & CEO email: [EMAIL PROTECTED] direct: 330/530-2373 Digital Services Network, Inc Unleashing Your Potential voice: 800/845-4822 web: http://www.dsnet.net/ <<Cristopher Daniluk.vcf>>BEGIN:VCARD VERSION:2.1 N:Daniluk;Cristopher FN:Cristopher Daniluk EMAIL;PREF;INTERNET:[EMAIL PROTECTED] REV:20001219T050844Z END:VCARD
Cristopher Daniluk <[EMAIL PROTECTED]> wrote: > Is there a way to specify or override the attachment limit? We have a > message getting rejected with an attachment too large message, it is a > 13mb attachment. I was previously unaware there was a limit :) Thanks1 qmail does not enforce a message length limit by default; the sysadmin has to put one in. That length limit is in /var/qmail/control/databytes , and can be overridden on a per-connection basis by setting the DATABYTES environment variable. Another solution, of course, is to not send 13MB files through email. Use FTP, HTTP, NNTP, or some other method. Charles -- ----------------------------------------------------------------------- Charles Cazabon <[EMAIL PROTECTED]> GPL'ed software available at: http://www.qcc.sk.ca/~charlesc/software/ Any opinions expressed are just that -- my opinions. -----------------------------------------------------------------------
unsubcribe
Does anyone have any good resources for how to setup a list mirror? How to get one mirrored on a public archiving site would be helpful too. David Coley
Hi all... Has anyone installed "Time::HiRes" for Qmail-Scanner (http://qmail-scanner.sourceforge.net/) on Redhat7.0 ? I'm finding that if I try and install the modual as an rpm it wants an older version of perl. If manually install "Time::HiRes" the ./configure can't find the modual Any suggestions ? Regards Dennis
On Tue, Feb 27, 2001 at 02:04:18PM +1100, [EMAIL PROTECTED] wrote: > Hi all... > > Has anyone installed "Time::HiRes" for Qmail-Scanner yes. install the cpan module, and then run cpan, and type "install Time::HiRes". Other questions ? :) Regards, Olivier -- _________________________________________________________________ Olivier Mueller - [EMAIL PROTECTED] - PGPkeyID: 0E84D2EA - Switzerland qmail projects: http://omail.omnis.ch - http://webmail.omnis.ch
Abu Arqam <[EMAIL PROTECTED]> wrote: > > I using qmail-1.03 and I compiled checkpassword-0.90 and vpopmail-4.9.8-1. [...] > But I get some error "ERR this user has no $HOME/Maildir". What's wrong? The user has no $HOME/Maildir/. Seriously -- the error message tells you exactly what's wrong. However, it does make the following assumptions: -you know what a Maildir is -since you've chosen to use qmail-pop3d, which only supports Maildirs, it assumes you've properly created Maildirs for your users So, did you create a Maildir for the user? Is it located in their home directory, and named "Maildir"? Does the user own their home directory and the Maildir? Charles -- ----------------------------------------------------------------------- Charles Cazabon <[EMAIL PROTECTED]> GPL'ed software available at: http://www.qcc.sk.ca/~charlesc/software/ Any opinions expressed are just that -- my opinions. -----------------------------------------------------------------------
Let me just get straight to what I'm trying to do and see if somebody can help me figure out how to do it. I'm setuping up a server to do virtual domain and email hosting for customers. I'm assuming that 90% of the customers using my system will want to do just POP3 email for their domains, however, I want to make it possible for the other 10% to use a shell account to access their email. Rather than make this a necessarily either or situation, I want to make it so that if they have POP3 email accounts, their mail will be default be delivered to those, but everything else will go into their standard system account. Because I want to make this system compatible with Pine, elm, etc, I would prefer to use the old mailbox format for the system accounts, but use Maildir, or MAilbox, for the POP3 accounts. So here's what I need. I want to find a way to using a simple POP3 daemon, that can handle both Mailbox and Maildir formats, and will look to a customers system (/var/mail) box if their username in the POP3 protocol is just a username, or in their virtual POP3 box if their username is '[EMAIL PROTECTED]'. I realize this is probably a horribly complicated system, but I think it would help my service appeal to both the power (shell & POP3 -- like me) user, and more standard (POP3-only) users. Any ideas on how to set this up would be greatly appreciated. Ben
Hello I would like multilog to output to one of the virtual consoles under linux as well as the usual log file. I have looked through the archives, man pages, etc and the best I can come up with is to append the console device to the end of the command that invokes multilog ie: /usr/local/bin/multilog t /var/log/qmail /dev/tty9 where /dev/tty9 is virtual console 9. Does anyone know if this will work? Cheers Roger
On Wed, Feb 28, 2001 at 02:33:52PM -0700, Roger Waterhouse wrote: > Hello > > I would like multilog to output to one of the virtual consoles under linux > as well as the usual log file. I have looked through the archives, man > pages, etc and the best I can come up with is to append the console device > to the end of the command that invokes multilog ie: > > /usr/local/bin/multilog t /var/log/qmail /dev/tty9 > > where /dev/tty9 is virtual console 9. Does anyone know if this will work? Try it and you'll know. Greetz, Peter.
Roger Waterhouse <[EMAIL PROTECTED]> wrote: > > ... the best I can come up with is to append the console device > to the end of the command that invokes multilog ie: > > /usr/local/bin/multilog t /var/log/qmail /dev/tty9 > > where /dev/tty9 is virtual console 9. Does anyone know if this will work? Have you tried it? If not, why not? Charles -- ----------------------------------------------------------------------- Charles Cazabon <[EMAIL PROTECTED]> GPL'ed software available at: http://www.qcc.sk.ca/~charlesc/software/ Any opinions expressed are just that -- my opinions. -----------------------------------------------------------------------
On Mon, Feb 26, 2001 at 05:11:56PM +0800, flint wrote: > Dear Alex Pennace > > >In that case, send SIGTERM to the qmail-send process. > > I have tried to do so. But can you tell me where I can find PID of qmail-send >process? Use ps.
Hi everybody!!! There is a further development on the case with the strange (at least for me) behaviour of some smtp servers ( for example usa.net servers) not being able to send mail to my poor qmail1.03 server. I made an account on usa.net send my self a letter and finnaly it bounced back. It is amazing but they use qmail too!!!!!!!!!!! Here is the bounced message::: usa.net bounced message start!!!!--------------------------- --------------- Hi. This is the qmail-send program at nwcst322.netaddress.usa.net. I'm afraid I wasn't able to deliver your message to the following addresses. This is a permanent error; I've given up. Sorry it didn't work out. [EMAIL PROTECTED]: Connected to 193.200.17.182 but connection died. Possible duplicate! I'm not going to try again; this message has been in the queue too long. --- Below this line is a copy of the message. Return-Path: [EMAIL PROTECTED] Received: (qmail 9584 invoked by uid 60001); 23 Feb 2001 10:00:33 -0000 Message-ID: [EMAIL PROTECTED] Received: from 204.68.23.67 by nwcst322 for [207.241.163.22] via web-mailer(34FM.0700.15B.01) on Fri Feb 23 10:00:33 GMT 2001 Date: 23 Feb 2001 03:00:33 MST From: Sasun Pundev [EMAIL PROTECTED] To: "Alexander Georgiev" [EMAIL PROTECTED] Subject: Re: [eeee] X-Mailer: USANET web-mailer (34FM.0700.15B.01) Mime-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: quoted-printable "Alexander Georgiev" [EMAIL PROTECTED] wrote: --------------------------------------------- = Attachment:=A0 = MIME Type:=A0multipart/alternative = --------------------------------------------- = eurorisksystems ____________________________________________________________ ________ Get free email and a permanent address at http://www.netaddress.com/?N=3D= 1 usa.net bounced message end!!!!----------------------------- ------------- Where is the long expected guru that is to solve this matter??? ----- Оригинално писмо ------ От: Saso Dundev [EMAIL PROTECTED] Относно: Re: Re: Cannot receive mail from some sites До : [EMAIL PROTECTED] Изпратено на: 25.02.2001 13:13:27 ---------- Hi, Thank you very much Charles! I did post a log from the failed session made with recordio. One can see that the remote site seize transmition after issuing: "DATA?" and my site responds with:"354 go ahead?". My site does not receive anything else and qmail-smtp timeouts. For example see session with pid 2826. I am posting the session log as attachment as well, because my web based client eats the "" signs. If the problems is in the remote site violeting the "rn", what can I do. Is there a fix???? session log start:---------------- Feb 22 23:49:53 gw smtpd: 982878593.400905 tcpserver: pid 2826 from 194.221.211.145 Feb 22 23:50:19 gw smtpd: 982878619.435991 tcpserver: ok 2826 eurorisksystems.com:193.200.17.182:25 vwmail4.hypovereinsbank.de:194.221.211.145::59228 Feb 22 23:50:19 gw smtpd: 982878619.454757 2826 220 ms.eurorisksystems.com ESMTP? Feb 22 23:50:22 gw smtpd: 982878622.354098 2826 EHLO vwmail.HypoVereinsbank.DE? Feb 22 23:50:22 gw smtpd: 982878622.358529 2826 250- ms.eurorisksystems.com? Feb 22 23:50:22 gw smtpd: 982878622.361590 2826 250- PIPELINING? Feb 22 23:50:22 gw smtpd: 982878622.364295 2826 250 8BITMIME? Feb 22 23:50:23 gw smtpd: 982878623.783361 2826 MAIL From:[EMAIL PROTECTED]? Feb 22 23:50:23 gw smtpd: 982878623.787308 2826 250 ok? Feb 22 23:50:25 gw smtpd: 982878625.563224 2826 RCPT To:[EMAIL PROTECTED]? Feb 22 23:50:25 gw smtpd: 982878625.568568 2826 250 ok? Feb 22 23:50:27 gw smtpd: 982878627.139794 2826 DATA? Feb 22 23:50:27 gw smtpd: 982878627.153254 2826 354 go ahead? Feb 22 23:54:10 gw smtpd: 982878850.895510 2818 451 timeout (#4.4.2)? Feb 22 23:54:10 gw smtpd: 982878850.898664 2818 [EOF] Feb 22 23:54:10 gw smtpd: 982878850.909532 tcpserver: end 2818 status 256 Feb 22 23:54:10 gw smtpd: 982878850.914715 tcpserver: status: 2/40 Feb 22 23:57:12 gw smtpd: 982879032.075360 tcpserver: status: 3/40 Feb 22 23:57:12 gw smtpd: 982879032.080109 tcpserver: pid 2831 from 193.158.192.31 Feb 22 23:57:14 gw smtpd: 982879034.501498 tcpserver: ok 2831 eurorisksystems.com:193.200.17.182:25 vwmail- b.hypovereinsbank.de:193.158.192.31::55482 Feb 22 23:57:14 gw smtpd: 982879034.519838 2831 220 ms.eurorisksystems.com ESMTP? Feb 22 23:57:15 gw smtpd: 982879035.885164 2831 EHLO vwmail-b.HypoVereinsbank.de? Feb 22 23:57:15 gw smtpd: 982879035.888215 2831 250- ms.eurorisksystems.com? Feb 22 23:57:15 gw smtpd: 982879035.890929 2831 250- PIPELINING? Feb 22 23:57:15 gw smtpd: 982879035.893633 2831 250 8BITMIME? Feb 22 23:57:27 gw smtpd: 982879047.679537 2831 MAIL From:? Feb 22 23:57:27 gw smtpd: 982879047.683208 2831 250 ok? Feb 22 23:57:28 gw smtpd: 982879048.914208 2831 RCPT To:[EMAIL PROTECTED]? Feb 22 23:57:28 gw smtpd: 982879048.917883 2831 250 ok? Feb 22 23:57:30 gw smtpd: 982879050.464026 2831 DATA? Feb 22 23:57:30 gw smtpd: 982879050.475434 2831 354 go ahead? Feb 23 00:01:02 gw smtpd: 982879262.959661 tcpserver: status: 4/40 Feb 23 00:01:02 gw smtpd: 982879262.964829 tcpserver: pid 2845 from 194.221.211.145 Feb 23 00:01:28 gw smtpd: 982879288.995972 tcpserver: ok 2845 eurorisksystems.com:193.200.17.182:25 vwmail4.hypovereinsbank.de:194.221.211.145::59740 Feb 23 00:01:29 gw smtpd: 982879289.015136 2845 220 ms.eurorisksystems.com ESMTP? Feb 23 00:01:30 gw smtpd: 982879290.037731 2845 EHLO vwmail.HypoVereinsbank.DE? Feb 23 00:01:30 gw smtpd: 982879290.040721 2845 250- ms.eurorisksystems.com? Feb 23 00:01:30 gw smtpd: 982879290.043457 2845 250- PIPELINING? Feb 23 00:01:30 gw smtpd: 982879290.046194 2845 250 8BITMIME? Feb 23 00:01:31 gw smtpd: 982879291.457610 2845 MAIL From:[EMAIL PROTECTED]? Feb 23 00:01:31 gw smtpd: 982879291.461524 2845 250 ok? Feb 23 00:01:33 gw smtpd: 982879293.127466 2845 RCPT To:[EMAIL PROTECTED]? Feb 23 00:01:33 gw smtpd: 982879293.131349 2845 250 ok? Feb 23 00:01:34 gw smtpd: 982879294.897281 2845 DATA? Feb 23 00:01:34 gw smtpd: 982879294.909681 2845 354 go ahead? Feb 23 00:02:25 gw smtpd: 982879345.847132 2823 451 timeout (#4.4.2)? Feb 23 00:02:25 gw smtpd: 982879345.859363 2823 [EOF] Feb 23 00:02:25 gw smtpd: 982879345.862978 tcpserver: end 2823 status 256 Feb 23 00:02:25 gw smtpd: 982879345.865111 tcpserver: status: 3/40 Feb 23 00:08:26 gw smtpd: 982879706.896561 tcpserver: status: 4/40 Feb 23 00:08:26 gw smtpd: 982879706.900966 tcpserver: pid 2848 from 194.221.211.145 Feb 23 00:08:53 gw smtpd: 982879733.705930 tcpserver: ok 2848 eurorisksystems.com:193.200.17.182:25 vwmail4.hypovereinsbank.de:194.221.211.145::60191 Feb 23 00:08:53 gw smtpd: 982879733.725160 2848 220 ms.eurorisksystems.com ESMTP? Feb 23 00:08:57 gw smtpd: 982879737.562845 2848 EHLO vwmail.HypoVereinsbank.DE? Feb 23 00:08:57 gw smtpd: 982879737.566764 2848 250- ms.eurorisksystems.com? Feb 23 00:08:57 gw smtpd: 982879737.569507 2848 250- PIPELINING? Feb 23 00:08:57 gw smtpd: 982879737.572209 2848 250 8BITMIME? Feb 23 00:08:59 gw smtpd: 982879739.230800 2848 MAIL From:[EMAIL PROTECTED]? Feb 23 00:08:59 gw smtpd: 982879739.233885 2848 250 ok? Feb 23 00:09:00 gw smtpd: 982879740.906551 2848 RCPT To:[EMAIL PROTECTED]? Feb 23 00:09:00 gw smtpd: 982879740.910252 2848 250 ok? Feb 23 00:09:02 gw smtpd: 982879742.787501 2848 DATA? Feb 23 00:09:02 gw smtpd: 982879742.799031 2848 354 go ahead? Feb 23 00:10:27 gw smtpd: 982879827.147181 2826 451 timeout (#4.4.2)? Feb 23 00:10:27 gw smtpd: 982879827.156967 2826 [EOF] Feb 23 00:10:27 gw smtpd: 982879827.162034 tcpserver: end 2826 status 256 session log end:---------------- ----- Original letter------ От: Charles Cazabon [EMAIL PROTECTED] Относно: Re: Cannot receive mail from some sites До : [EMAIL PROTECTED] Изпратено на: 23.02.2001 18:40:46 ---------- Saso Dundev [EMAIL PROTECTED] wrote: I can receive mail from almost all sites in the net ( for example yahoo.com), but there are few that cannot send mail to me ( for example the usa.net servers). They establish a connection but seize data transmition and qmail timeouts. This could be an issue with SMTP line endings -- the particular remote sites which are having problems sending to you may be violating the spec by not sending rn, particularly at the end of the DATA phase. Use recordio with qmail-smtpd to record an example of the faulty session. If the resulting log doesn't mean anything to you, post it here. See djb's site and www.qmail.org for info on how to set up and use recordio. Charles -- ----------------------------------------------------------- ------------ Charles Cazabon [EMAIL PROTECTED] GPL'ed software available at: http://www.qcc.sk.ca/~charlesc/software/ Any opinions expressed are just that -- my opinions. ----------------------------------------------------------- ------------ ---------- http://my.gbg.bg - Направи си свой собствен Гювеч - новини, спорт, музика, времето, кино... http://kartichki.abv.bg/ - Изпрати картичка за Баба Марта :)
Hey, here is a cool/useful site for some of us network monkeys... http://bsdnerds.com it's got some pretty good Unix networking & programming stuff that most of us need from time to time..great site for useful reference. _________________________________________________________ Do You Yahoo!? Get your free @yahoo.com address at http://mail.yahoo.com
Qmail was installed on a /var partition that turned out to be too small, so I added a new 36 gig disk, made the old /var something else, and copied everything with cp -R. Brought the system back up with the new 36 gig /var partition, and qmail is only partially running. It does listen on port 25 and receive mail, but it doesn't seem to move messages past "preprocessed" or deliver them. Qstat looks like below, the 12 messages being my tests after the new /var partition. messages in queue: 1207 messages in queue but not yet preprocessed: 12 Other things that were on /var are all fine, and ps shows: root 699 0.0 0.0 1308 348 ? S 14:39 0:00 supervise qmail-smtpd root 701 0.0 0.0 1308 348 ? S 14:39 0:00 supervise qmail-send qmaild 703 0.0 0.0 1332 368 ? S 14:39 0:00 tcpserver -v -x/etc/tcp.smtp.cdb -u100 -g503 0 25 qmail-smtpd qmails 1222 0.0 0.0 1352 340 ? S 14:39 0:00 qmail-send root 1227 0.0 0.0 1324 364 ? S 14:39 0:00 qmail-lspawn |dot-forward .forward?./Maildir/ qmailr 1228 0.0 0.0 0 0 ? Z 14:39 0:00 [qmail-rspawn <defunct>] qmailq 1229 0.0 0.0 0 0 ? Z 14:39 0:00 [qmail-clean <defunct>] root 3492 0.0 0.0 1588 604 pts/0 S 16:46 0:00 grep qmail I'm very new to Linux and qmail, and don't know what <defunct> means. Below is my /var/log/messages file of qmail starting upon bootup. Feb 28 14:23:32 pmfp qmail: Starting mail-transport-agent: Feb 28 14:23:32 pmfp qmail: svc: warning: unable to control /var/qmail/supervise/qmail-popup: supervise not running Feb 28 14:23:32 pmfp qmail: svc: warning: unable to control /var/qmail/supervise/qmail-send: supervise not running Feb 28 14:23:32 pmfp qmail: qmail Feb 28 14:23:32 pmfp qmail: svc: warning: unable to control /var/qmail/supervise/qmail-smtpd: supervise not running Feb 28 14:23:32 pmfp qmail: svc: warning: unable to control /var/qmail/supervise/qmail-popup/log: supervise not running Feb 28 14:23:32 pmfp qmail: logging. Feb 28 14:23:32 pmfp qmail: svc: warning: unable to control /var/qmail/supervise/qmail-send/log: supervise not running Feb 28 14:23:32 pmfp qmail: svc: warning: unable to control /var/qmail/supervise/qmail-smtpd/log: supervise not running Feb 28 14:23:32 pmfp rc: Starting qmail: succeeded Is there an easy fix, or should I restore /var from a tape backup? Stewart Vardaman mailto:[EMAIL PROTECTED]
Off the top of my head I think you have a rights problem. You should have copied the /var/qmail directory with cp -Rp - the -p keeps current permissions, etc...... .mark >---------- >From: Stewart Vardaman[SMTP:[EMAIL PROTECTED]] >Sent: Wednesday, February 28, 2001 3:04 PM >To: [EMAIL PROTECTED] >Subject: Partition swap broke qmail > >Qmail was installed on a /var partition that turned out to be too small, so >I added a new 36 gig disk, made the old /var something else, and copied >everything with cp -R. Brought the system back up with the new 36 gig /var >partition, and qmail is only partially running. It does listen on port 25 >and receive mail, but it doesn't seem to move messages past "preprocessed" >or deliver them. Qstat looks like below, the 12 messages being my tests >after the new /var partition. > >messages in queue: 1207 >messages in queue but not yet preprocessed: 12 > >Other things that were on /var are all fine, and ps shows: > >root 699 0.0 0.0 1308 348 ? S 14:39 0:00 supervise >qmail-smtpd >root 701 0.0 0.0 1308 348 ? S 14:39 0:00 supervise >qmail-send >qmaild 703 0.0 0.0 1332 368 ? S 14:39 0:00 tcpserver -v >-x/etc/tcp.smtp.cdb -u100 -g503 0 25 qmail-smtpd >qmails 1222 0.0 0.0 1352 340 ? S 14:39 0:00 qmail-send >root 1227 0.0 0.0 1324 364 ? S 14:39 0:00 qmail-lspawn >|dot-forward .forward?./Maildir/ >qmailr 1228 0.0 0.0 0 0 ? Z 14:39 0:00 >[qmail-rspawn <defunct>] >qmailq 1229 0.0 0.0 0 0 ? Z 14:39 0:00 [qmail-clean ><defunct>] >root 3492 0.0 0.0 1588 604 pts/0 S 16:46 0:00 grep qmail > >I'm very new to Linux and qmail, and don't know what <defunct> >means. Below is my /var/log/messages file of qmail starting upon bootup. > >Feb 28 14:23:32 pmfp qmail: Starting mail-transport-agent: >Feb 28 14:23:32 pmfp qmail: svc: warning: unable to control >/var/qmail/supervise/qmail-popup: supervise not running >Feb 28 14:23:32 pmfp qmail: svc: warning: unable to control >/var/qmail/supervise/qmail-send: supervise not running >Feb 28 14:23:32 pmfp qmail: qmail >Feb 28 14:23:32 pmfp qmail: svc: warning: unable to control >/var/qmail/supervise/qmail-smtpd: supervise not running >Feb 28 14:23:32 pmfp qmail: svc: warning: unable to control >/var/qmail/supervise/qmail-popup/log: supervise not running >Feb 28 14:23:32 pmfp qmail: logging. >Feb 28 14:23:32 pmfp qmail: svc: warning: unable to control >/var/qmail/supervise/qmail-send/log: supervise not running >Feb 28 14:23:32 pmfp qmail: svc: warning: unable to control >/var/qmail/supervise/qmail-smtpd/log: supervise not running >Feb 28 14:23:32 pmfp rc: Starting qmail: succeeded > >Is there an easy fix, or should I restore /var from a tape backup? > >Stewart Vardaman >mailto:[EMAIL PROTECTED] > > >
On Wed, Feb 28, 2001 at 04:04:57PM -0700, Stewart Vardaman wrote: >Qmail was installed on a /var partition that turned out to be too small, so >I added a new 36 gig disk, made the old /var something else, and copied >everything with cp -R. Brought the system back up with the new 36 gig /var >partition, and qmail is only partially running. It does listen on port 25 Sounds like you didn't run "queue-fix" after you moved the box. Check the qmail web site for it and use it. Make sure that it's set up with the same conf-split as you built QMail with. Sean -- "Engineering Tablets? Does that mean if I swallow one, I'll be an engineer?" -- Evelyn Mitchell Sean Reifschneider, Inimitably Superfluous <[EMAIL PROTECTED]> tummy.com - Linux Consulting since 1995. Qmail, KRUD, Firewalls, Python
On Wed, Feb 28, 2001 at 04:04:57PM -0700, Stewart Vardaman wrote: > Qmail was installed on a /var partition that turned out to be too small, so > I added a new 36 gig disk, made the old /var something else, and copied > everything with cp -R. Brought the system back up with the new 36 gig /var > partition, and qmail is only partially running. It does listen on port 25 > and receive mail, but it doesn't seem to move messages past "preprocessed" > or deliver them. Qstat looks like below, the 12 messages being my tests > after the new /var partition. You can't move the queue around like that. You should fix your queue with the queue-fix script, which you can find somewhere on www.qmail.org. You'll probably also have to fix the permissions on your trigger. See http://www.lifewithqmail.org/lwq.html#trigger Chris
Hi all... For the past 3 weeks I have been fighting the battle to move our dieing email server from a proprietary solution to qmail. I had devoted 3 months of research and development (with a lot of help from this list) to making sure that the qmail server has all the features required by our organization. My nightmare began when management announced a new business development manager. My qmail project, only 1 week away from implementation, was canned, we are now moving to Lotus Notes. I'd like to thank everyone for there help over the 3 months, without you guys, I don't think I could have even taken the project this far. Regards Dennis
On 28-Feb-2001 dennis wrote: > My qmail project, only 1 week away from implementation, was canned, we are > now moving to Lotus Notes. Condolences. A company I used to work with also replaced the qmail I installed (and which had worked flawlessly for 18 months) with Notes (they wanted shared calendars :-). Two months later, they had to be rescued by their ISP because they were being used as a SPAM relay. Stefaan -- How's it supposed to get the respect of management if you've got just one guy working on the project? It's much more impressive to have a battery of programmers slaving away. -- Jeffrey Hobbs (comp.lang.tcl)
I must say being someone who's installed NOTES (R5) that it's all up to who installed/configured it and their level of understanding of the product. Trouble with groupware products like Notes and Exchange is companies figure they dont need moderate/highly priced people who actually understand what they are doing (it's GUI, so it's easy, right?) This is the downfall of today's reality in alot of companies, they trade experienced employees for 'turn key' and 'easily maintainable' products which seemly dont need an experienced staff to administer. Or at least that's the crap managers are being sold on. I must say if I hear another Lotus rep extoll the virtues of "knowledgeware" one more time I'll shoot them! :) Sorry, my rant for the month. -Jason On Thu, 01 Mar 2001 09:41:56 +0100 (MET) Stefaan A Eeckels <[EMAIL PROTECTED]> wrote: > > On 28-Feb-2001 dennis wrote: > > My qmail project, only 1 week away from implementation, was canned, we are > > now moving to Lotus Notes. > > Condolences. A company I used to work with also replaced the qmail > I installed (and which had worked flawlessly for 18 months) with > Notes (they wanted shared calendars :-). Two months later, they > had to be rescued by their ISP because they were being used as > a SPAM relay. > > Stefaan > -- > How's it supposed to get the respect of management if you've got just > one guy working on the project? It's much more impressive to have a > battery of programmers slaving away. -- Jeffrey Hobbs (comp.lang.tcl) >
I'm having trouble with qmail and procmail. I've read the FAQ and the list archives, but am still unsure what to do. I'm using a Linux RedHat 6.2 system. installed qmail. outgoing mail works. incoming mail (from outside) bounces (unknown user) local mail won't be delivered, i.e.... when I try (from the machine in question): $ mail joe Subject: testing testing . Cc: $ I end up with /var/spool/mail/joe (a symlink to /home/joe/Mailbox) being renamed as BOGUS.joe.1jLB and a new FILE called /var/spool/mail/joe containing the "testing" message. I read in INSTALL.mbox the following: A few mail programs are unable to handle symbolic links, so you will have to configure them to look at ~user/Mailbox directly: * procmail: Change SYSTEM_MBOX in config.h and recompile; or, with recent versions, define MAILSPOOLHOME in src/authenticate.c. but I don't know where to find config.h or authenticate.c... do I have to download the procmail source and recompile after these edits? (There has to be an easier way!) I tried adding ~joe/.qmail-test1 containing: |preline procmail -m /home/awilber/.procmailrc and ~joe/.procmail containing PATH=/bin:/usr/bin:/usr/bin:$PATH ORGMAIL=$HOME/Mailbox MAILDIR=$HOME/mail DEFAULT=$HOME/Mailbox #completely optional LOGFILE=$MAILDIR/procmail.log this didn't work. I'm lost. Thanks, Joe __________________________________________________ Do You Yahoo!? Get email at your own domain with Yahoo! Mail. http://personal.mail.yahoo.com/
The following web pages say that there is a vulnerability in qmail: http://www.securityfocus.com/bid/2237 http://www.securityfocus.com/archive/1/6969 http://www.securityfocus.com/archive/1/6970 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-1999-0144 http://www.insecure.org/sploits/qmail.DOS.rcpt.html http://xforce.iss.net/static/208.php http://archives.neohapsis.com/archives/postfix/2000-01/1170.html If you have seen any of these web pages, or any similar web pages at other locations, please send me email with the following information: (1) what exactly you read---give me the exact quote; (2) where you saw that quote; (3) what you understood the quote to mean---your interpretation; (4) your reaction to that information; and (5) whether you are willing to testify to this in court. Please send your replies to [EMAIL PROTECTED] Thanks. ---Dan
Thus said "D. J. Bernstein" on 01 Mar 2001 02:27:37 GMT: > http://www.securityfocus.com/bid/2237 ``Currently the SecurityFocus staff are not aware of any vendor supplied patches for this issue.'' Why haven't they updated this? On a properly configured qmail system this is a non-issue. Why is that not the *fix* that they seek? > http://www.securityfocus.com/archive/1/6969 Isn't this a repeat of the first? The *exploit* code even looks similar (if not the same). > http://www.securityfocus.com/archive/1/6970 Again the same issue which is easily solved by configuring qmail properly. > http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-1999-0144 More of the same. Maybe they should define what they consider the OS... Out of curiosity, is this why softlimit was added to the daemontools package? > http://www.insecure.org/sploits/qmail.DOS.rcpt.html Again the same problem... > http://xforce.iss.net/static/208.php At least they got the version right here, but still the same problem which is easily taken care of with proper configuration. > http://archives.neohapsis.com/archives/postfix/2000-01/1170.html At least this one is not as dull as the rest. :-) > If you have seen any of these web pages, or any similar web pages at > other locations, please send me email with the following information: I haven't seen any additional pages, but the first three listed I had seen before. When I first saw the reports I decided to test my current systems against what was proposed. Each test failed to reproduce the attack described. I was actually surprised because I wasn't certain how the systems had been setup (I didn't do the initial configuration of the systems). Of course it didn't have any effect (other than closing the connection with a temporary error) on the system. I suppose an attacker could attempt to exhaust the memory by taking up all the connections available, however, even this is avoidable by doing the math. For example, tcpserver by default will only accept 40 connections. If each qmail-smtpd is started with softlimit -m 2000000 that comes out to 80M of RAM that will ever be allocated. On a server with 128M this won't even touch swap (unless there are other services running on the server in which case the admin *will* have figured that into the total). Andy -- [-----------[system uptime]--------------------------------------------] 11:43pm up 14 days, 23:45, 7 users, load average: 1.22, 1.16, 1.17
What is this qmail version 2.0 that securityfocus.com claims there is an explot for? Am I missing something, or are they? Being that I have better things to do than to try to screw up my mail server, has anyone tried this claimed explot? What really happens? --Pete
Peter Cavender <[EMAIL PROTECTED]> writes: > What is this qmail version 2.0 that securityfocus.com claims there is an > explot for? Am I missing something, or are they? > > Being that I have better things to do than to try to screw up my mail > server, has anyone tried this claimed explot? What really happens? It depends upon how you run qmail-smtpd. There are several variables. If you run qmail-smtpd directly from inetd.conf, as suggested in the INSTALL file distributed with qmail-1.03, then there is a pretty good chance that the instance of qmail-smtpd being attacked will grow to eat of all of memory. What happens then depends upon your OS. On GNU/Linux, a random process will be killed; there is a pretty good chance that the random process will be the large qmail-smtpd. Alternatively, a careful attacker who really understands your system can create several fairly large qmail-smtpd processes and significantly increase the chance that the random process which is killed will be something other than qmail-smtpd. In this scenario this attack can indeed be a denial of service. If you run qmail-smtpd as suggested in Life With Qmail, then you are not vulnerable to this attack, because qmail-smtpd is run under the softlimit program to limit the amount of memory it will allocate. (This does not affect the size of the mail messages it can accept, as qmail-smtpd does not store mail messages in memory.) Ian
On Wed, 28 Feb 2001, Peter Cavender wrote: > What is this qmail version 2.0 that securityfocus.com claims there is an > explot for? Am I missing something, or are they? > > Being that I have better things to do than to try to screw up my mail > server, has anyone tried this claimed explot? What really happens? We all do. Last I checked (less than one minute ago) there is no qmail-2.0. It appears to be someone acting like an asshole and trying to create something that doesn't exist. qmail is secure and I've been comfortable trusting Dan's software. Whatever it is I know Dan's on top of it (based on something he sent earlier) and he'll get all the help he needs from all of us. Vince. -- ========================================================================== Vince Vielhaber -- KA8CSH email: [EMAIL PROTECTED] http://www.pop4.net 128K ISDN from $22.00/mo - 56K Dialup from $16.00/mo at Pop4 Networking Online Campground Directory http://www.camping-usa.com Online Giftshop Superstore http://www.cloudninegifts.com ==========================================================================
Hi, I have used Qmail for over 3 years now and I love it. Now I have came across one project, building a Mail server to handle around 5-6 million users with a 10 meg mailbox each (I use vpopmail www.inter7.com for the pop server and virtual domain part). Now multiplying 10MB x 5000000 users = 50million megs, which is about 50,000 gigs. Is their such a thing as a 50 terrabyte hard drive? Well, my users are all in one domain, so I cannot split the domains across several HDD's. Secondly, what if 2 1/2 million users simultaneously hit the server, would the server handle it? with a quad p-III Xeon 1ghz and 4 GB or ram and a OC connection. Well, how does hotmail or yahoo do it? I am sure they load blanace across multiple servers, but how? I know all about load balancing with dns, etc. across multiple web servers for example, but with mail, a specific user has to login to the same box that hosts his mailbox everytime, and mail arriving from outside world to this user has to arrive to the same box also. If anyone out there has gone through something like this, I would appreciate it a lot if you hint me with a clue :) P.S. Please cc me your reply, as I am not subscribed to the list. Best Regards, Tim
On Thu, 01 Mar 2001, [EMAIL PROTECTED] wrote: > Is their such a thing as a 50 terrabyte hard drive? No. (Unless you work in the USDF) > Well, my users are all in one domain, so I cannot split the domains > across several HDD's. RAID??? > Secondly, what if 2 1/2 million users > simultaneously hit the server, would the server handle it? What with? A baseball bat? Unlikely. Logging in? Perhaps. Calculate how many MBs each instance of your web server take up, multiply it by 2.5million, and tell me that your server can handle both that amount of RAM and that number of processes. Uh huh. > Well, how does hotmail or yahoo do it? I am sure they load blanace > across multiple servers, but how? If you're looking at a *nix solution, look into Coda filesystems, Intermezzo, GFS, etc. Then look at a network-based clustering solution, such as the Linux Virtual Server. > I know all about load balancing with dns, etc. across multiple web > servers for example, but with mail, a specific user has to login to > the same box that hosts his mailbox everytime, and mail arriving from > outside world to this user has to arrive to the same box also. You're thinking inside the box. > If anyone out there has gone through something like this, I would > appreciate it a lot if you hint me with a clue :) P.S. Please cc me > your reply, as I am not subscribed to the list. Best Regards, You might want to subscribe. Just a hint. > Tim Brett. -- "Endless Loop: n., see Loop, Endless." "Loop, Endless: n., see Endless Loop." - Random Shack Data Processing Dictionary
I'm sure there are a few storage vendors who can scale that high, EMC, Clariion, Compaq(DEC)?, etc. You would never attach that amount of bandwidth to one server anyway though, the I/O would be horrible, even with something like a Sun E10000 which has a few PCI busses on each of it's 16 separate 4 processor system boards. I work on a just such a machine with just 5 terabytes of EMC storage with 5 gigs of cache memory and multiple load-balanced fibre channel controllers to each cabinet under Veritas Volume Manager and it would never handle the kind of load you describe. If you don't already know what you would need to handle a load like that then you probably ought to call in a consultant who's experienced in that type of thing. Dave -----Original Message----- From: Tim Hassan [mailto:[EMAIL PROTECTED]] Sent: Thursday, March 01, 2001 1:43 AM To: [EMAIL PROTECTED] Subject: Scalable Mail Solution Hi, I have used Qmail for over 3 years now and I love it. Now I have came across one project, building a Mail server to handle around 5-6 million users with a 10 meg mailbox each (I use vpopmail www.inter7.com for the pop server and virtual domain part). Now multiplying 10MB x 5000000 users = 50million megs, which is about 50,000 gigs. Is their such a thing as a 50 terrabyte hard drive? Well, my users are all in one domain, so I cannot split the domains across several HDD's. Secondly, what if 2 1/2 million users simultaneously hit the server, would the server handle it? with a quad p-III Xeon 1ghz and 4 GB or ram and a OC connection. Well, how does hotmail or yahoo do it? I am sure they load blanace across multiple servers, but how? I know all about load balancing with dns, etc. across multiple web servers for example, but with mail, a specific user has to login to the same box that hosts his mailbox everytime, and mail arriving from outside world to this user has to arrive to the same box also. If anyone out there has gone through something like this, I would appreciate it a lot if you hint me with a clue :) P.S. Please cc me your reply, as I am not subscribed to the list. Best Regards, Tim
On Thu, Mar 01, 2001 at 04:56:43PM +1100, Brett Randall wrote: > > Well, my users are all in one domain, so I cannot split the domains > > across several HDD's. > > RAID??? RAID + Fibre Channel. > > Secondly, what if 2 1/2 million users > > simultaneously hit the server, would the server handle it? > > What with? A baseball bat? Unlikely. Logging in? Perhaps. Calculate > how many MBs each instance of your web server take up, multiply it > by 2.5million, and tell me that your server can handle both that > amount of RAM and that number of processes. Uh huh. Yeah.. no way that you can get that kind of traffic to one server. Not going to happen. > > Well, how does hotmail or yahoo do it? I am sure they load blanace > > across multiple servers, but how? > > If you're looking at a *nix solution, look into Coda filesystems, > Intermezzo, GFS, etc. Then look at a network-based clustering > solution, such as the Linux Virtual Server. There are several common solutions for this sort of problem (although I have never seen it on this scale, really).. 1. Use something like Qmail-LDAP, which has a "mailHost" feature. This lets you have users distributed across multiple servers, and the qmail boxes are smart enough to forward the message to the proper server via QMTP. POP3 can get forwarded to the appropriate host as well. 2. Use something like a series of Network Appliance NAS devices to store users mail; then you can have each server access the entire data store regardless of where the connection is (via NFS). 3. Use something like GFS, which is a shared filesystem used on Fibre Channel Arrays. This has great potential, as the bandwidth of FC and the overhead of SCIS is much lower than an NFS based solution. However, there are other limitations here; GFS hasn't really ever been tested on a scale like that, to my knowledge. Not to mention the number of machines and arrays you would need to have. #1 is the simplest method, but it also has the most administrative overhead and the least amount of redundancy. Loose server32, and all the users on server32 loose thier mail. #2 works really well if you design the networks properly; but at the volume your talking about, you'll probably really wind up with a hybrid of #1 and #2... a small cluster of machines attached to a Netapp for small groups of users. #3 is the holy grail; of course, I've never seen anybody actually deploy it, since GFS is such a new thing. :) > > I know all about load balancing with dns, etc. across multiple web > > servers for example, but with mail, a specific user has to login to > > the same box that hosts his mailbox everytime, and mail arriving from > > outside world to this user has to arrive to the same box also. > > You're thinking inside the box. Yeah, he is. Stop thinking about each machine as the source; start thinking of the entire infrastructure as one machine. Check out http://www.infrastructures.org for more information on how to get your head around building things like this. > > If anyone out there has gone through something like this, I would > > appreciate it a lot if you hint me with a clue :) P.S. Please cc me > > your reply, as I am not subscribed to the list. Best Regards, > > You might want to subscribe. Just a hint. Definetly subscribe. Check out Qmail-LDAP, too. You won't be sorry. Adam -- [EMAIL PROTECTED] - (http://sysadminsith.org) Evil Lord of the Sysadmin Sith Darth Rmdashrf
Are there any plans to release a version of qmail-popup/qmail-pop3d that supports ssl? I was unable to get stunnel to function properly, and even if I had been able to I didn't like the fact that it seems to wrap to an inetd like security in which it was reading hosts.allow. It seems like there should be a way to build it in during compile for pop and smtp, I don't like having to do a workaround for this large of security upgrade. Has anyone heard anything on this topic? Or does anyone have any suggestions? Thanks, Green Onyx
Can someone help me to find logging alternatives to qmail-pop3d and checkpassword? Jörgen
Hi All, Newbie alert: if you're busy, don't read. I'm hoping you can point out where I went wrong here... I started with a Suse6.3 machine. I removed the sendmail.rpm. I followed the life-with-qmail directions to install a Mailbox+df version of qmail, almost to the letter, with two exceptions: 1) The two times it said to start 'qmail' with '/usr/local/sbin/qmail' I started it with '/usr/bin/qmail'. 2) I have a list of domains that resolve to my local machine that I wanted to receive mail for, so I put them in both locals and rcpthosts. So, then I tried to send local email: mail kcorey testing . The errors I get in the log are: The 'kcorey' mailbox doesn't exist, so qmail tries to bounce this to 'postmaster'. The 'postmaster' mailbox doesn't exist, so it bounces to 'root'. The 'root' mailbox doesn't exist, so it gives up as a triple-bounce undeliverable. Both the 'kcorey' and 'root' accounts exist in /etc/passwd, and I made the symlinks back to /var/spool/mail. (Postmaster doesn't exist, so I'd expect an error of some kind there.) Why does qmail think those two mailboxes do not exist? (Note: I get this error with /var/spool/mail chmodded to 1777, and with or without the symlinks being there for the mail files in /var/spool/mail. The FAQ doesn't seem to answer this specifically, and when I looked through the archives, all I saw were replies about upper case or dotted usernames. Ideas anyone? -- Ken Corey, CTO Atomic Interactive, Ltd.
On Thu, Mar 01, 2001 at 10:20:21AM +0000, Ken Corey wrote: > Ideas anyone ? have you _really_ followed all the steps of the LWQ ? if yes, root would have a mailbox in /var/qmail/alias/Mailbox. Does this directory exists ? Please show us the qmail users from /etc/passwd. Good luck :) Olivier PS: if you followed the INSTALL file of the qmail-1.03 tar.gz, it would work... :) -- _________________________________________________________________ Olivier Mueller - [EMAIL PROTECTED] - PGPkeyID: 0E84D2EA - Switzerland qmail projects: http://omail.omnis.ch - http://webmail.omnis.ch
Hi, I have been setup a linux-box PII/450, 256MB RAM, 4 GB IDE HDD, 100mbit bandwitch with RehHat 6.2, qmail 1.03 + ezmlm-idx with MySQL + vpopmail. qmail (standard tgz file with only the qmail-date-localtime patch) is compiled with: conf-split = 300 conf-spawn = 255 /var/qmail/bin: concurrencylocal = 30 concurrencyremote = 100 Now I has tried to send a Newsletter to 180.000 subscribers. The system needs 5 1/2 hours for delivery( 9 mails per second), but I mean it's to long?! The average bandwich during the delivery is 70k-100k it's to slightly for an 100mbit Connection. If I look for qmail processes, ther are only 3-5 qmail-remote processes. netstat -an show me 100-200 socket connections to smpt servers on port 25. vmstat shows an average idle time between 65%-78%. memory use is ca. 200 MB, swap is untouched. What can I do, for higher performance? Have I errors in my configuration? -- thomas koenig