And that's the idea, it's supposed to be "it just works" and not complicated
to configure. The old gag is that it's "so easy to install, even an MCSE
could do it"
I've had really good experiences using postfix as a screen-and-forward-only 'from the outside to the inside' incoming email handler for citadel running in a DMZ area on on the router itself. Not only does that handle bursty incoming traffic and ease most of the obvious spam filtering load, but y
The traditional need for a distributed database is what drove the design that
allows a single email domain to contain addressees spread across any number
of Citadel server nodes. But as you correctly point out, that kind of thinking
is rapidly becoming obsolete (except in the Microsoft world where
You're welcome. What many see as a weakness in Citadel: the storing of email in it's own single-process-managed db filesystem, is actually quite a security strength in the way I need email to work. Now that processors come with so many cores and solid state disks remove the storage bottleneck,
harry comes up with the *best* fixes. They're never big, but they always
fix issues that no one else was ever able to find.
Thanks harry !
thanks - committed.
>One idea - sendcommand IGAB should probably do the ldap polling too
>if used with an ldap enabled setup.. Spidering the ldap for all
>accounts (and creating them if not there) then would probably also be
>a good thing to do.
I am envisioning a slightly evolved scope for that in th
Thu Jul 24 2014 11:13:05 EDTfrom harryc @ Uncensored Subject: re: 8.25
Thu Jul 24 2014 03:47:28 EDTfrom dothebart @ Uncensored Subject: re: 8.25
"ok - now that you say it, this makes a lot more sense.
however, if you are to set this string, isn't that rather going to happen during setup?"
Y
P.S. re: ldaps To be useful in an email server context, the ssl has to be able to support not only the usual business of making sure the ldap server uses a certificate signed by a CA approved by the citadel server, but the citadel server be able to offer a certificate to authenticate itself to t
Thu Jul 24 2014 03:47:28 EDT from dothebart @ Uncensored Subject: re: 8.25
"ok - now that you say it, this makes a lot more sense.
however, if you are to set this string, isn't that rather going to happen during setup?"
You've spotted a little quirk in citadel that I struggle with as well.
ok - now that you say it, this makes a lot more sense.
however, if you are to set this string, isn't that rather going to happen during setup?
so at the place where you choose LDAP/AD you would need another mask, defaulted with the two strings?
And, what about editing it? should webcit expose thi
Wed Jul 23 2014 10:59:48 EDT from dothebart @ Uncensored Subject: re: 8.25
Tue Jul 22 2014 15:09:07 EDT from harryc @ Uncensored Subject: re: 8.25
Tue Jul 22 2014 15:03:06 EDT from dothebart @ Uncensored Subject: re: 8.25
please attach the patch to the mail.
Chuckle.. So that's wh
so, its like this:
http://code.citadel.org/?p=citadel.git;a=commit;h=40aa7150b98da08472e18fdec844e626415e9e64
Tue Jul 22 2014 15:09:07 EDT from harryc @ Uncensored Subject: re: 8.25
Tue Jul 22 2014 15:03:06 EDT from dothebart @ Uncensored Subject: re: 8.25
please attach the patch to the mail.
Chuckle. So that's what the 'attachment' button is for??? :-)
Hope it worked
Harry
ok, nic
Tue Jul 22 2014 15:03:06 EDT from dothebart @ Uncensored Subject: re: 8.25
please attach the patch to the mail.
Chuckle.. So that's what the 'attachment' button is for??? :-)
Hope it worked
Harry
citpatch-contexth
Description: Binary data
citpatch-controlc
Description: Bina
please attach the patch to the mail.
Tue Jul 22 2014 14:32:54 EDT from dothebart @ Uncensored
8.25? Now?
Here are a few of my local patches to 8.24 (the vcard bit I submitted earlier, it's here just for completeness) :
Feel free to use or not. The smtp send fix on empty 'F' field you've noted above.
--- citadel-8.24/cont
Thanks for working this out. If only all troubles were presented in such a clear form :]
The development branch has a special function to check for whether a message field is empty or not - so this fix is only important for releases up to 8.2x; for that reason I'll go for a !=NULL check in that s
The changes I offered do not rely on any special citadel schemas. It just uses inetOrgPerson. However there are some fields most find useful that aren't included in the inetorgperson schema that are included in vcards. If those fields are there then citadel will interpret them into the vcard.
I think the thing I am most concerned with is losing private communication from citadel to citadel, for the sake of sending mail only between two servers, with the same LDAP users on both servers.
If I could set up two servers which share the same data store so that they have a common mailbox a
I think the thing I am most concerned with is losing private communication from citadel to citadel, for the sake of sending mail only between two servers, with the same LDAP users on both servers.
If I could set up two servers which share the same data store so that they have a common mailbox a
Tue Mar 18 2014 12:00:32 EDT from IGnatius T Foobar @ Uncensored Subject: Re: Crazy idea
It's an interesting idea, but how would it be superior to simply implementing a clusterable set of Citadel servers running in an active/standby configuration? Right now there are people running Citadel s
Tue Mar 18 2014 12:00:32 EDT from IGnatius T Foobar @ Uncensored Subject: Re: Crazy idea
It's an interesting idea, but how would it be superior to simply implementing a clusterable set of Citadel servers running in an active/standby configuration? Right now there are people running Citadel s
It's an interesting idea, but how would it be superior to simply implementing
a clusterable set of Citadel servers running in an active/standby configuration?
Right now there are people running Citadel sites in active/standby by sticking
the entire thing on top of DRDB, but if we moved *everyt
Why not create your own certificate authority, have that issue certificates to the citadel servers you prefer, then turn off all non-secure smtp addresses, and delete references to the other certificate authorities. Then citadel should only accept to transfer email from the authorized domains.
Your interpretation is correct. Thanks for the note in the log. Notice this addresses the problems of 'ldap to vcard'. Set up ldap, export the citadel addresses as vcards. Done.
Sounds like we'll be making this transition over the course of a couple of
releases so we can feel out everyone's needs. I like hearing about what you're
doing with the Citadel system; it's very interesting.
Thank you for including me here.
Probably our use case goes against the grain of the normal trend in email clients. We have a large international presence in many countries, and are not interested in communications with anyone outside our organization (through citadel). We have run our own mail s
(And of course I've added a credit for you in the documentation page on the
web site)
Ok, the patch has been committed, but I haven't tested it yet because I don't
currently have an LDAP server running in my test system.
Ok, so if I'm reading this correctly, this is a fully built version of the
code that is supposed to take all of the user information learned out of LDAP
and uses it to populate the vCard?
Thanks for writing it. This was one of those "someday" things.
The code above is a replacement for this in ldap.c
/* * Learn LDAP attributes and stuff them into the vCard. * Returns nonzero if we changed anything. */int Ctdl_LDAP_to_vCard(char *ldap_dn, struct vCard *v){ int changed_something = 0; if (!ldap_dn) return(0); if (!v) retur
This is a developer forum. Please take your question to the support forum
and try to be a little clearer.
Tue Nov 19 2013 18:08:40 EST from s3cr3to @ Uncensored Subject: how to test customized pages?
Then I wonder How to test the new updated pages before to make it public to me and my users.
in general creating some Selenium tests is a good idea if you want to retest it later ;-)
Tue Nov 19 2013 18:53:35 EST from s3cr3to @ Uncensored Subject: how to test customized pages?
Tue Nov 19 2013 06:16:39 PM EST from the_mgt @ Uncensored
I once wondered exactly the same, there was some odd rule on how to test pages with names not currently present in webcit. In any case,
Correction to the script, you can remove the set -x at the start... sorry about that. :)
Mon Oct 28 2013 16:36:48 EDT from bennabiy @ Uncensored Subject: Updated Easy Install Script
Here is an updated Easy Install script which I modified for the sake of compiling the git branches against an in
You can submit the patch right here. Thanks!
thanks for the precise report - committed to master. will definitely be part of a next stable release.
Hi,
first thanks for your participation.
you have to edit webcit/gettext.c like in this commit:
http://code.citadel.org/?p=citadel.git;a=commit;h=8637e272fdb07a5b7f6d95dce8e27fce2daa6c76
and then recompile & install webcit.
you then will be able to choose your new translated language.
This would be the place.
well, two points...
make it...
if (!is_qp && !strncasecmp(buf, "Content-Transfer-Encoding", 25))
and...
if (strncasecmp(&buf[26],"Quoted-Printable", 16)) {is probably not all accurate.
you should first
char *pch = strchr (&buf[26], ':') (or was it '=' here?)
and then skip as many blanks as found
Yes, I do see the problem. Now we have to find an elegant way to address
it. The concept of "name your admin" doesn't seem to fit well with LDAP.
Perhaps we should go with the group thing. Perhaps if the authentication
mode is AD then we should skip that entirely and simply use group membership
The problem is not one of groupmembership, although I find the idea of mapping AD groups to certain citadel user levels attractive.
The scenario goes like this:
On a fresh AD install, you have the Administrator user which has the logonname "Adminstrator" (under Account tab). The other fields unde
I think that this particular workflow is confusing but I'm not yet aware of
a good way to change it.
In an Active Directory environment perhaps we could search to determine whether
the user is a member of the "Administrators" or "Domain Admins" groups, and
make any such user a Citadel admin as
isn' t the behaviour wrong in first place? So wouldn't changing it be better than documenting it?
At least it is totally against any intuition. And yes, changing it to the logon name would be the better way to solving it. Ig, what do you think?
ok, added that to libcitadel & webcit.
please revalidate whether its working for you now.
Mon Jul 23 2012 15:36:20 EDTfrom the_mgt @ Uncensored Subject: Re: Administrator login when using Active Directory
Mon Jul 23 2012 11:11:52 CESTfrom dothebart @ Uncensored Subject: Re: Administrator login when using Active Directory
hm, if Lindsay is right, this is probably not a good idea
please try whether this text works.
AC_MSG_CHECKING([whether your system likes memcpy + HKEY]) AC_TRY_COMPILE([#define _GNU_SOURCE#include #include #include #include #include #include #include #include #include #include "lib/libcitadel.h"],[ char foo[22]; memcpy(foo, HKEY("foo")); ],
Mon Jul 23 2012 11:11:52 CEST from dothebart @ Uncensored Subject: Re: Administrator login when using Active Directory
The next bit took me a while to figure out and I find it a bit puzzling. I was specifying my login name ("lindsay") as the admin, which wasn't working - I had to speci
hm, either that test doesn't work...
or this one:
#define _GNU_SOURCE#include "sysdep.h"#include #include #include #include
is pulling some other stuff in...
as mentioned before, there realy has to be some other header with a define, which then in term gets pulled in before.
can you please test the attached patch to configure?
you need to apply it with
~/src/citadel/libcitadel$ patch -p2 < /tmp/check_memcpy.diff
and coppy the attached other file to ~/src/citadel/libcitadel/m4/localm4
then re-run bootstrap, and configure.
on my system I get:
checking "whether memcpy
Sun Jul 22 2012 21:43:39 EDT from Lindsay Mathieson @ Uncensored Subject: Re: Administrator login when using Active Directory
Fri Jul 20 2012 03:29:47 AM EDT from dothebart @ Uncensored Subject: Re: Administrator login when using Active Directory
you have to re-run setup, and specify on
Fri Jul 20 2012 03:29:47 AM EDT from dothebart @ Uncensored Subject: Re: Administrator login when using Active Directory
you have to re-run setup, and specify one of your AD users. On next login he will gain aide rights.
Thanks dothebart, that got me most of the way there.
The next bit
Hm,
this doesn't align with the errormessage you've posted.
there should be some header with #define memcpy (a,b,c) so please grep over all files not just string.h;
maybe that header gets pulled in first, and causes the error message.
Sat Jul 21 2012 13:52:42 EDT from Lightspeed @ Uncensored Su
This is all I could find.
[/usr/include]$ grep memcpy string.h void *memcpy(void *, const void *, size_t);
[12:50PM] 38 [~]$ man memcpy MEMCPY(3) BSD Library Functions Manual MEMCPY(3)NAME memcpy -- copy memory areaLIBRARY Standard C Library (libc, -lc)S
can you find out from your headers what the actual definition of memcpy is? there needs to be a define in some place.
the code in question is this one:
memcpy(bptr, HKEY("\\n"));where
#define HKEY(a) a, (sizeof(a) - 1)
expands to two parameters.
you're using a compiler that doesn't support macros in macros (or a libc where memcpy is a macro...). Afair we had this problem several times so far. You need to use a more recent compiler.
maybe dissolving the queue runners into their own threads would also be an option. This will probably also reduce the current penalty of 2 minutes for mailinglist posts.
btw; the fulltext indexer currently can also block the queue thread; maybe sieve as well.
I begin suspecting curl has some issu
Tue Jun 05 2012 08:45:07 EDT from IGnatius T Foobar @ Uncensored Subject: Major bad things are happening.
A large meeting involving lots of people has been ruined today, with lots of really bad results, thanks to Citadel. Upon reviewing the current situation on my server I have found that em
It is setup, and that message does seem kind of inappropriate.
ok, from the average admin this looks as if his system was hacked.
I guess this is setup?
IG you realy should give sessions from the system socket a uniq username. /
--- forwarded message --- /
> Sat Apr 21 2012 23:42:10 EDT from Citadel Subject: Citadel Configuration
>Manager Message
Mon Apr 02 2012 19:17:40 EDT from IGnatius T Foobar @ Uncensored Subject: Re: systemd: socket activation
Looks like a nice idea. Will we server software developers have to account for this if distribution vendors adopt it?
The software developers can implement socket activation if they like
Looks like a nice idea. Will we server software developers have to account
for this if distribution vendors adopt it?
Ok, it's time to test Sieve again.
(updated in git and in Easy Install, so far...)
In the next iteration of Easy Install, I intend to build libev, c-ares,
libsieve,
and maybe even libdb as static libraries. Since they're not shared, there
is no point in going through the rigamarole of handling them as dynamic.
uhm. thats awfull, since it will make easy install a hard job.
does it work with
CFLAGS=-I/usr/include/ev
LDFLAGS=-L/usr/lib/ev
?
Ok, I'm still planning to work on this, but I got sidetracked when I went
to test it -- discovering that when the Sieve editor was templatized, huge
chunks of functionality were simply omitted. I have to put it all back before
I can see why a character is being stripped.
I'm testing my filters on both servers (easy install 7.86 and debs v7.83)
Until now only the first char if is a space is eaten in the first line, I can't remember if I see something more, because I can't write my sieve filters like I do at first, now I use many lines and spaces to read more easil
My previous post has the sample, here is anyway:
Here is a sample of my sieve filter Citadel 7.83.
The first line has a space, select the line to see it:
### ###<--the first char in this line is a space require "fileinto"; require "reject"; #!1 spam_subject if header :contains "Subject" [ "
Ok, the behavior of the Sieve parser itself is beyond our control because
it's a third-party library; perhaps an inquiry with the developer of libSieve
might be in order.
I'm more concerned with the characters being "eaten". Can you show me the
original line of script and what it looked like
>>sieve2_validate() returned 12: Sieve Error: script was not retrieved
This error results from an "empty" script being fed into the Sieve parser.
I have committed a change that will check for this condition and stop
processing
instead of throwing a spurious error.
The bit about eating
Hi
Mon Feb 27 2012 07:24:37 ESTfrom IGnatius T Foobar @ Uncensored Subject: Re: Please don't drop sieve
Ok, well in any case you don't have to worry about losing mail. The way our implementation works is that Sieve runs *after* a message arrives in the user's inbox. The absolute worst case scena
Ok, well in any case you don't have to worry about losing mail. The way our
implementation works is that Sieve runs *after* a message arrives in the user's
inbox. The absolute worst case scenario is that a message is left in the
inbox.
Other software does this as well. Thunderbird for examp
I wonder if we should simply drop support for Sieve and parse the rulesets
as they are.
Sad, I take my words back, my sieve filters works but the sieve errors came back
sieve2_execute() returned 11: Sieve Error: header could not be parsedsieve2_validate() returned 12: Sieve Error: script was not retrieved
Oh well, maybe is the server that is "choked" (with no activity maybe is bored
Fri Jan 20 2012 09:44:52 EST from IGnatius T Foobar @ Uncensored Subject: Re: Net::Citadel in Debian/Ubuntu
Cool. What's the official upstream web site for Net::Citadel ? I want to make sure we have it listed correctly on wwwcitadel.org
It's on CPAN, so: http://search.cpan.org/dist/Net-C
Cool. What's the official upstream web site for Net::Citadel ? I want to
make sure we have it listed correctly on www.citadel.org
>That's part of why I don' t do much with Ubuntu...  Â
I've been doing a lot with Ubuntu lately.
Most of it involves trolling any story on the web that mentions Ubuntu and
leaving a comment about how Ubuntu has jumped the shark now that they're forcing
Unity on everyone.
Thu Dec 22 2011 03:52:24 PM EST from dothebart @ Uncensored Subject: Re: Net::Citadel in Debian
Thu Dec 22 2011 15:04:07 EST from jame @ Rocasa Mail System Subject: Re: Net::Citadel in Debian
I'm not sure if new packages are automatically picked up by Ubuntu but I'll follow up about that
Thu Dec 22 2011 15:04:07 EST from jame @ Rocasa Mail System Subject: Re: Net::Citadel in Debian
I'm not sure if new packages are automatically picked up by Ubuntu but I'll follow up about that later.
yes, they do, but on irregular basis...
which is the reason why they have some pretty awkwa
Sun Dec 11 2011 12:30:28 PM EST from jame Subject: Net::Citadel in Debian
FYI,
The v0.02 Net::Citadel Perl module has been accepted into Debian unstable as the package libnet-citadel-perl.
And has now migrated to Debian Testing, so there shouldn't be any issue with it being available
What if you read the userlist? That's guaranteed to go to multiple screenfuls.
> The Free Software Foundation address in this file seems to be
>outdated or
Ok, that's fixed. I see that they now want you to publish their web address
instead of their street address, and that's fine.
I've switched to the new suggested declaration, except the words "free
software
Thu Nov 24 2011 11:40:31 ESTfrom Stefan @ Uncensored Subject: Warnings
Hi,
while building the 8.02 RPMS in OBS I got the following warnings:
Webcit:
W: incorrect-fsf-address /usr/share/citadel-webcit/static/wclib.js The Free Software Foundation address in this file seems to be outdated or mis
>I'm looking into systemd stuff right now. I'm not sure if citadel is
>"systemd ready" (I haven't tested it yet), but this document
>(http://0pointer.de/public/systemd-man/daemon.html) describes
>systemd's requirements on a daemon. May be it's of interest for
>someone.
Irrespect
Mon Oct 17 2011 06:05:01 AM EDT from jame Subject: Net::Citadel
As I mentioned I was going to do, I have started work on packaging Net::Citadel for Debian.
Packaging for Net::Citadel is being done as the package libnet-citadel-perl under the auspices of the Debian Perl Team. The sta
Sun Nov 13 2011 10:52:31 ESTfrom jame @ Rocasa Mail System Subject: Re:
What does the "-D" option show for that?
Strange. I can not reproduce the problem. Forget it.
Fri Nov 11 2011 10:54:53 AM EST from Stefan @ Uncensored
unable to change into directory [/var/run/citadel/my/dir/]: No such file or directory
The /var/run/citadel prefix seams wrong.
RegardsStefan
What does the "-D" option show for that?
All,
As I mentioned I was going to do, I have started work on packaging Net::Citadel for Debian.
Now, how to proceed with getting into Debian? I could see about getting it into the support by the Debian Perl team (which I've been planning to join in any case). OTOH, it is Citadel spe
The documentation for the following option is missing in webcit/READMEtxt:
-h home_dir-d-D path-T val
The default http_port is 2000 and not 80 as mentioned.
Ooops. Gotta remove those command line options.
citserver and webcit both use syslog() now.
Each program is also set up so that if run in the foreground, it will log
to stderr as well.
Aha! In fact, we did XML_StopParser() specifically to handle that
vulnerability.
(The guy who sent out the alert was a real asshole about it too.)
So we just need to change the XML_MAJOR_VERSION we're looking for from >0
to >1 and that will take care of it, as your patch demonstrates. Than
The attached patch fixes that error. (see also: https://bugzilla.redhat.com/show_bug.cgi?id=700390)
Thank you for the quick support.
diff -urb citadel-7.87.orig//modules/xmpp/serv_xmpp.c citadel-7.87/modules/xmpp/serv_xmpp.c
--- citadel-7.87.orig//modules/xmpp/serv_xmpp.c 2011-08-24 16:36:16.000
You can comment out that line. Really. See
http://www.cygwin.com/ml/gdb-patches/2007-01/msg00258.html
for more information.
Fr Aug 26 2011 08:34:41 EDT von Stefan @ Uncensored Betreff: undefined reference to `XML_StopParser'
Hi,
the build of Citadel 7.87 failed on RHEL4 with the following error:
gcc utils/ctdlmigrate.o utillib/citadel_dirs.o \ -lz -pie -o ctdlmigrate -lresolv -lssl -lcrypto -lcitadel -lpthread
Fr Aug 26 2011 08:34:41 EDT von Stefan @ Uncensored Betreff: undefined reference to `XML_StopParser'
I would guess that the expat library in RHEL4 is too old (it's probably expat-1.95). Can someone confirm that?
The build works with RHEL5 which uses the same expat version. So that's not cau
Fr Aug 19 2011 11:51:29 EDT von IGnatius T Foobar @ Uncensored Betreff: Re: [SCM] citadel.org branch, libevent, updated. 2d65a22caf6157e3a4759e5e17cb2bbd1d5934a9
lib/stringbuf.c: In function 'StrECMAEscAppend': lib/stringbuf.c:2216: error: 'IsUtf8Sequence' undeclared (first use in this fu
lib/stringbuf.c: In function 'StrECMAEscAppend':
lib/stringbuf.c:2216: error: 'IsUtf8Sequence' undeclared (first use in this
function)
lib/stringbuf.c:2216: error: (Each undeclared identifier is reported only
once
lib/stringbuf.c:2216: error: for each function it appears in.)
make: ***
and then some chinese spam drops in to show its not yet done.
Do Aug 18 2011 14:27:56 EDT von dothebart @ Uncensored Betreff: Re: [SCM] citadel.org branch, stable-78x, updated. v7.86-39-ge395ebd
Ha! once you do it right, firefox json dumper plugin shows my inbox listing on my citadel nicely
701 - 800 of 1884 matches
Mail list logo