qmail Digest 13 Apr 2000 10:00:00 -0000 Issue 970
Topics (messages 39927 through 40003):
Re: VERP RFC
39927 by: John White
39928 by: John White
39930 by: John White
39972 by: Russ Allbery
39979 by: markd.bushwire.net
Re: Machine Specs
39929 by: John White
Re: Patch Installation
39931 by: Irwan Hadi
Temporary failure in hacked qmail
39932 by: Fr�d�ric Schwien
Re: virtual domain
39933 by: Dave Sill
39934 by: fadli syarid
39936 by: Soffen, Matthew
39937 by: Len Budney
Qmail's sendmail does not obey $MAILUSER, $MAILHOST etc.
39935 by: Michael Rogers
39956 by: John R. Levine
Re: Anti-Spam Filter
39938 by: Duane Schaub
39959 by: David Dyer-Bennet
Full Logging
39939 by: Marthe Nes�en Gangfl�t
Setup inquiries.
39940 by: Steve Peace
39941 by: Steve Wolfe
Re: No MAILER-DAEMON Mails from virtual domains using vpopmail ?
39942 by: Irwan Hadi
Autoreply
39943 by: Scott Wilson
39944 by: Petr Novotny
typos Re: Autoreply
39945 by: Petr Novotny
Bounce handling: newbie
39946 by: Brad Johnson
Will queue mail for sex
39947 by: Fredrick Backman
39948 by: Vern Hart
39950 by: Russell Nelson
qmail-pop3d
39949 by: esl
39951 by: Russell Nelson
Qmail as a relay?
39952 by: Carlos Gustavo Werner
39970 by: esl
39973 by: Carlos Gustavo Werner
39978 by: Vince Vielhaber
39980 by: Carlos Gustavo Werner
39981 by: Vince Vielhaber
39985 by: Rogerio Brito
HTML mail and this list...
39953 by: John W. Lemons III
39954 by: Dave Sill
39955 by: Timothy L. Mayo
39957 by: Andy Bradford
39961 by: Bruno Wolff III
39967 by: Peter Green
39968 by: Peter Green
39969 by: John W. Lemons III
39974 by: Russ Allbery
39986 by: Rogerio Brito
Re: Maildir format info
39958 by: Walt Mankowski
39966 by: Duncan Watson
qmail and tripwire...
39960 by: John W. Lemons III
39976 by: Russ Allbery
HTML mail considered harmful
39962 by: Bruce
39963 by: Andy Bradford
39964 by: Russell Nelson
39965 by: Scott D. Yelich
39975 by: Martin Randall
39995 by: Petr Novotny
39996 by: Chris Green
39998 by: Scott D. Yelich
39999 by: Chris Green
Impact on qmail of no $TCPREMOTEINFO / IDENT ?
39971 by: Dave Kitabjian
39977 by: markd.bushwire.net
39982 by: Dave Kitabjian
39983 by: markd.bushwire.net
newbie help
39984 by: john smith
39994 by: S.P. Hoeke
Reports on qmail+LDAP
39987 by: Keith, Yeung Wai Kin
39989 by: Russell Nelson
39990 by: Keith, Yeung Wai Kin
39991 by: Russell Nelson
40001 by: Keith, Yeung Wai Kin
ucspi-tcp
39988 by: Ismal Hisham Darus
421 Internal Error
39992 by: S Ashok Kumar
mrtg (was: Reports on qmail+LDAP)
39993 by: Magnus Bodin
How to setup clustering and qmqpd?
39997 by: ywshum
mail bombardement :(
40000 by: Klaus Hviid
40002 by: Puck
pre-filtering mail before delivery
40003 by: Phil Howard
Administrivia:
To unsubscribe from the digest, e-mail:
[EMAIL PROTECTED]
To subscribe to the digest, e-mail:
[EMAIL PROTECTED]
To bug my human owner, e-mail:
[EMAIL PROTECTED]
To post to the list, e-mail:
[EMAIL PROTECTED]
----------------------------------------------------------------------
On Wed, Apr 12, 2000 at 01:26:07AM -0200, Manuel Lemos wrote: > Hello John, > > On 12-Apr-00 02:05:12, you wrote: > > >On Wed, Apr 12, 2000 at 12:50:41AM -0200, Manuel Lemos wrote: > >> Do you mean there is no way to determine wether the SMTP server supports > >> VERP? > > >Of course there is. You can tell an SMTP server can receive VERP > >encoded sender addresses by the fact that it's an SMTP server. > > I was not meaning receiving servers, but sending servers as I want to relay > messages to a local server using SMTP, not qmail-inject or some other > program. For reasons specific of my purposes I need to relay mail using > SMTP. Of course, if you're contacting an SMTP server to relay for you, then -IT- can receive VERP encoded sender addresses by the fact that it is an SMTP server. Are you requesting a method to avoid doing the verp expansion on your own? > Yes, but id does not contain any example of typical SMTP data interchange > to use VERP like most SMTP based RFC present. Your side would look like: HELO domain.com FROM: <[EMAIL PROTECTED]> TO: <[EMAIL PROTECTED]> DATA [message] . > Another thing, eGroups lists now send messages with headers like this: > > X-eGroups-Return: [EMAIL PROTECTED] > > I suppose this is enabled with VERP. Nope. "Variable Envelope Return Paths" That's not a return path. Thus, it's not a verp. It mimics the functionality by presumably using a parser to look for this header in all returns. > Anybody knows how they achieve this? Custom software. John
On Wed, Apr 12, 2000 at 12:07:09AM -0700, Russ Allbery wrote: > Manuel Lemos <[EMAIL PROTECTED]> writes: > > > Maybe I am missing here something that is simpler than I think but that > > still doesn't answer my basic question: what SMTP command sequence do I > > need to use to enable VERP on message relay delivery? > > None. By the time the message reaches the SMTP level, VERP has already > been done. VERP is not an SMTP feature. *cough* Actually, you can use the user-@domain-@[] format when talking to qmail-smtpd, and the VERP expansion will be handled. John
On Wed, Apr 12, 2000 at 03:10:14AM -0700, John White wrote: > FROM: <[EMAIL PROTECTED]> > TO: <[EMAIL PROTECTED]> Of course that's MAIL FROM: <> and RCPT TO: <> John
John White <[EMAIL PROTECTED]> writes: > On Wed, Apr 12, 2000 at 12:07:09AM -0700, Russ Allbery wrote: >> None. By the time the message reaches the SMTP level, VERP has already >> been done. VERP is not an SMTP feature. > *cough* > Actually, you can use the user-@domain-@[] format when talking to > qmail-smtpd, and the VERP expansion will be handled. Er.... Huh. I could have sworn that qmail rejected that, but apparently it doesn't. My apologies for the incorrect information. -- Russ Allbery ([EMAIL PROTECTED]) <http://www.eyrie.org/~eagle/>
On Wed, Apr 12, 2000 at 01:57:49PM -0700, Russ Allbery wrote: > John White <[EMAIL PROTECTED]> writes: > > On Wed, Apr 12, 2000 at 12:07:09AM -0700, Russ Allbery wrote: > > >> None. By the time the message reaches the SMTP level, VERP has already > >> been done. VERP is not an SMTP feature. > > > *cough* > > > Actually, you can use the user-@domain-@[] format when talking to > > qmail-smtpd, and the VERP expansion will be handled. > > Er.... > > Huh. I could have sworn that qmail rejected that, but apparently it > doesn't. My apologies for the incorrect information. In fact addresses(5) has a specific section called QMAIL EXTENSIONS which covers this very use so it's legit to do so, not just serendipitous. Regards.
On Wed, Apr 12, 2000 at 04:57:37AM +0000, Juan E Suris wrote: > > John White writes: > > > BTW, when you're ready to scale, check out cubix for their SBC based > > chassis. 8 machines in 7U! Add redundant power, a layer 4 switch, > > and a multi-host RAID 1+0 to act as the queue, and you're cooking. > > This sounds interesting to me. What would be a good example of a mutli-host > RAID 1+0 configuration? The Infortrend 3102U2G RAID controller with 9174 daughter card, at least 5 LVDSCSI drives (better with 7 or 9, of course), in a good RAID chassis. That provides up to 6 host connections. John
At 11:22 11/04/2000 -0500, Scott Wilson wrote: >I am new to Linux and Qmail and need information on how to apply the various >Qmail patches. I have searched the Mailing List Archives and qmail.org but >have not been able to find detailed information on how to apply the patches. >I am running Red Hat Linux 6.1 and Qmail 1.03 and would like to apply the >big-dns patch and others. Can someone please give me detailed instruction on >how do this or point me to a web page were I can find this information. just do patch < patch.file ------- AFLHI 058009990407128029/089802---(102598//991024)
Hi, I hacked qmail 1.03 patched with the qmail-mysql patch to make it read into my database specific format . That is , I changed mysql.c and some stuff in qmail-getpw.c . Now I get an error like : ##################### Apr 12 12:29:23 heracles qmail: 955535363.198417 starting delivery 11: msg 249228 to local [EMAIL PROTECTED] Apr 12 12:29:23 heracles qmail: 955535363.199066 status: local 6/10 remote 0/20 Apr 12 12:29:23 heracles qmail: 955535363.205239 delivery 6: deferral: Temporary_failure_in_qmail-lspawn./ Apr 12 12:29:23 heracles qmail: 955535363.206582 status: local 5/10 remote 0/20 ##################### I checked where the QLX_SYS comes from, it seems that it comes from qmail-lspawn.c: #############################. if (wait_pid(&gpwstat,gpwpid) != -1) { if (wait_crashed(gpwstat)) { /* Log */ fic=fopen("/home/tmp.txt","a"); fprintf(fic,"*** wait crashed gpwstat Erreur\n"); fflush(fic); fclose(fic); /* END */ _exit(QLX_SYS); ############################ I do not have any idea why this error occurs. It was working before I made a second change in mysql.c. And as far as I remember, I did not change anything else since ... Any idea please ??? I'm using Linux Redhat 5.1 . This is on a test server, ie nothing else running on it appart of mysql and apache ... THanks, Fred -- ====================================================================
fadli syarid <[EMAIL PROTECTED]> wrote: >I tried virtual domain >and did not work. > >i got error message like this > >Sorry, no mailbox here by that name. (#5.1.1) > >what sould i do..? Tell us exactly what you did to implement the virtual domain and test it, what you expected to happen, and what actually happened. -Dave
> > Tell us exactly what you did to implement the virtual domain and test > it, what you expected to happen, and what actually happened. > i make virtualdomains in /var/qmail/control and then add syarid.com:fadli. i add syarid.com to rcpthosts. and then i restart qmail i trying to send email to [EMAIL PROTECTED] and get error message like this Sorry, no mailbox here by that name. (#5.1.1) i expect i can use [EMAIL PROTECTED] for my email adress
But have you verified this ? Does: 1) a system user with the ID fadli exist ? 2) a /var/qmail/alias/.qmail-fadli exist ? Matt Soffen Web Intranet Developer http://www.iso-ne.com/ ============================================== Boss - "My boss says we need some eunuch programmers." Dilbert - "I think he means UNIX and I already know UNIX." Boss - "Well, if the company nurse comes by, tell her I said never mind." - Dilbert - ============================================== > -----Original Message----- > From: fadli syarid [SMTP:[EMAIL PROTECTED]] > Sent: Wednesday, April 12, 2000 2:06 AM > To: Dave Sill > Cc: [EMAIL PROTECTED] > Subject: Re: virtual domain > > > > > > > Tell us exactly what you did to implement the virtual domain and test > > it, what you expected to happen, and what actually happened. > > > i make virtualdomains in /var/qmail/control and then add syarid.com:fadli. > i add syarid.com to rcpthosts. > and then i restart qmail > > i trying to send email to [EMAIL PROTECTED] and get error message like this > Sorry, no mailbox here by that name. (#5.1.1) > > i expect i can use [EMAIL PROTECTED] for my email adress
fadli syarid <[EMAIL PROTECTED]> wrote: > > i make virtualdomains in /var/qmail/control and then add syarid.com:fadli. > i add syarid.com to rcpthosts. and then i restart qmail With that setup, messages to ``[EMAIL PROTECTED]'' will be delivered locally to ``[EMAIL PROTECTED]''. This is explained in the manpage for qmail-send(8). If ``fadli'' is your user name, then the delivery is controlled by the file .qmail-fadli if it exists, or by .qmail-default if it doesn't. If ``fadli'' is not a valid user name, then delivery is controlled by either ~alias/.qmail-fadli-default or ~alias/.qmail-fadli-fadli. This is all explained in the manpage dot-qmail(5). > i trying to send email to [EMAIL PROTECTED] and get error message like this > Sorry, no mailbox here by that name. (#5.1.1) You haven't created one of .qmail-fadli or .qmail-default, so there really is no such mailbox. Create one of those files. Presumably, you want both .qmail-fadli and .qmail-fadli-default so that you can use address extensions like [EMAIL PROTECTED] Note, though, that you can't use other addresses @syarid.com, unless you create .qmail-default. If you also want to use [EMAIL PROTECTED] as an address, then you should have used a different prepend in virtualdomains, such as ``fadli-syarid''. > i expect i can use [EMAIL PROTECTED] for my email adress You need one more thing to use that email address: you need an MX record. How does everyone know where to send mail for syarid.com? They don't, unless the DNS has an MX record stating that mail for syarid.com is handled by your machine. Your ISP can set up an MX record for you for a charge. Hope this helps, Len. -- The moment you run that, a local attacker can take over your machine. Isn't security fun? -- Dan Bernstein
First, if you are going to reply to this email, please reply to [EMAIL PROTECTED], not to the address in the message header. This is because my problem concerns setting the return address in the message header. :) I am running qmail-1.0.3 on Slackware Linux 7.0. I collect my mail from my university's POP server using fetchmail, and it is delivered via qmail-smtpd with no problems. I have a different user name on the university system. For incoming mail, fetchmail handles the translation with no problems. For outgoing mail, I want to use the MAILUSER and MAILHOST environment variables so that replies go to my univeristy email address. This works fine if I send messages via qmail-inject, but my MUA (pine) invokes sendmail. The sendmail-path in /usr/lib/pine/pine.conf is set to "/usr/lib/sendmail -oem -oi -t" as recommended in the qmail FAQ, and /usr/lib/sendmail is a symbolic link to /var/qmail/bin/sendmail. I don't have any other sendmail installed. It looks like qmail's sendmail does not obey the MAILUSER and MAILHOST variables in the same way as qmail-inject. Is there any way to change the user name which appears in my messages when using sendmail? Thanks in advance, Michael
>fetchmail handles the translation with no problems. For outgoing mail, I >want to use the MAILUSER and MAILHOST environment variables so that replies >go to my univeristy email address. This works fine if I send messages via >qmail-inject, but my MUA (pine) invokes sendmail. ... >It looks like qmail's sendmail does not obey the MAILUSER and MAILHOST >variables in the same way as qmail-inject. Is there any way to change the >user name which appears in my messages when using sendmail? The "sendmail" program is just a wrapper around qmail-inject, and does indeed look at those variables. But it only looks at them if there isn't already a From: line, and pine is a helpful program that puts a From: line in messages it writes. In your pinerc file, personal-name sets the name in parens, and user-domain is analogous to MAILHOST. I can't see any way to change the user name, it doesn't look at USER or LOGNAME. -- John R. Levine, IECC, POB 727, Trumansburg NY 14886 +1 607 387 6869 [EMAIL PROTECTED], Village Trustee and Sewer Commissioner, http://iecc.com/johnl, Member, Provisional board, Coalition Against Unsolicited Commercial E-mail
Hmmm... This is close, but it appears that qmail-smtpd controls how much of the message is sent to this routing.... IE... qmail-smtpd only sends the envelope and this patch cannot do anything else. I am not sure if modifying the qmail-smptd to send the entire message will help as this may break something else. I would not even know where to look in order to modify this behavior. Duane. -----Original Message----- From: Charles Cazabon [mailto:[EMAIL PROTECTED]] Sent: Tuesday, April 11, 2000 4:58 PM To: Duane Schaub Cc: Qmail Discussion List Subject: Re: Anti-Spam Filter Duane Schaub <[EMAIL PROTECTED]> wrote: > > Unfortunately, grepping won't work as the words are actually multi-word > phrases each and there must be a copy in EVERY users directory.... [...] > Any patching suggestions would be helpful as I am not comfortable coding > this myself. You might look at ftp://ftp.mira.net/unix/mail/qmail/wildmat-0.2.patch as a start -- it allows you to reject mail at the time of SMTP injection by matching the envelope sender against patterns. Of course, you'd have to change it to scan the body, issue the reject after the <CR><LF>.<CR><LF> instead of after the RCPT TO:, etc. Charles -- ----------------------------------------------------------------------- Charles Cazabon <[EMAIL PROTECTED]> GPL'ed software available at: http://www.qcc.sk.ca/~charlesc/software/ Any opinions expressed are just that -- my opinions. -----------------------------------------------------------------------
Travis Rail <[EMAIL PROTECTED]> writes on 11 April 2000 at 16:18:04 -0500 > Is there anyway that Qmail can filter incoming message for certain words. > Basically what I need is some kind of �Rejected Words List�. A message > comes in and is scanned and checked against a file containing a list of > words that the postmaster would like to reject. If the email message > contains one of these words it is marked rejected and turned back to the > sender. Does anyone know of an Add-On or anything like this I can use with > Qmail? You don't want to do this. As described, it would (for example) reject email between individuals discussing anti-spam techniques if they happened to quote a bit of a piece of spam that triggered your filter. -- Photos: http://dd-b.lighthunters.net/ Minicon: http://www.mnstf.org/minicon Bookworms: http://ouroboros.demesne.com/ SF: http://www.dd-b.net/dd-b David Dyer-Bennet / Welcome to the future! / [EMAIL PROTECTED]
Heya, I need as much logging as possble from everything, especially pop3. I need to see every time someone checks their email, I need to see which username, if password was ok, how many mails he tranfers to his local mail program and how many mails currently in the Maildir.. I've been looking for quite a while, and still hasn't found anything... I would assume it was qmail-popup that could print that kind of information..? I use checkpassword to check users. mail.* is in syslog.conf. I'm not nessesarily looking for the solution but maybe a pointer to where I can search for it? :-) One second thing.. is there any way to relay a mail for a specific user to another computer, where the destination is on an "unreal" ip (nat)? [EMAIL PROTECTED], where MX for something.com points to something.com. It's to enter the queue localy on something.com, and then send it to [EMAIL PROTECTED] If it was a certain domain I would just use smtprules, but is it possible to add usernames in smtprules? "[EMAIL PROTECTED]:192.168.1.1" Thanks :) -- -Marthe Ano-Tech Computers, www.atc.no "You humans are a disease, a cancer to this planet.. you are a plague.. and we.. are the cure."
<< I have succesfully setup qmail on a RedHat 6.0 server. I have had meetings with my boss and he wants everyone in my company to have emaill access, but not internet access. I have been thinking on how to do this, and I have a few ideas, but I am not quite sure of which way to do this. >> One viable (but not exactly elegant) approach is to simply block all incoming and outgoing traffic *not* from/to the mail server at the router. Then to help secure the mail server, block all traffic to/from its address except for necessary traffic (smtp, pop3, name lookups, etc.) Quick and dirty, but it works. ; ) steve
At 09:31 12/04/2000 +0200, Markus Fischer wrote: >Hello, > >I've now up&running qmail 1.03 and vpopmail (latest stable). But >when sending mail to [EMAIL PROTECTED], the sender >gets no notification that the email could not be delivered. It's >silently delivered to [EMAIL PROTECTED], but the >sender gets no error mail back. > >I tried to mv the ~vpopmail/valid-virtual.domain,.qmail-default >file out of the way, and then the sender gets back a >MAILER-DAEMON mail (delivery failed), but also with *valid* >mailboxes in ~vpopmail/valid-virtual.domain . change last word in the .qmail-default at /vpopmail/domains/your.domain/(.qmail-default) to bounce-no-mailbox more information, please consult : http://www.inter7.com/vpopmail/FAQ, number 3 ------- AFLHI 058009990407128029/089802---(102598//991024)
I am running Red Hat Linux 6.1 and qmail 1.03. I have two domains in locals. I'll call the domains DOMAIN1.COM and DOMAIN2.COM for the purpose of this e-mail. Mail at DOMAIN2.COM is actually relayed to me by another company and the relaying will soon stop. What I want to do is send an autoreply to anyone that sends mail to any user at DOMAIN2.COM informing them of an address change from @DOMAIN2 to @DOMAIN1. I was wondering if someone might have some suggestions on how to do this. TIA
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On 12 Apr 00, at 11:05, Scott Wilson wrote: > I am running Red Hat Linux 6.1 and qmail 1.03. I have two domains in > locals. I'll call the domains DOMAIN1.COM and DOMAIN2.COM for the > purpose of this e-mail. Mail at DOMAIN2.COM is actually relayed to me > by another company and the relaying will soon stop. What I want to do > is send an autoreply to anyone that sends mail to any user at > DOMAIN2.COM informing them of an address change from @DOMAIN2 to > @DOMAIN1. I was wondering if someone might have some suggestions on > how to do this. Make domain2.com virtual if it already isn't. Make a single .qmail-default file for it which does |autoreply |condredirect "realdomain2-$DEFAULT" true (assuming localhost is in locals; change localhost for other suitable value) Then have a .qmail-realdomain2-... files deliver to the proper mailboxes. (If domain2.com was local before the change, change the forward line above to |condredirect "$DEFAULT" true ) -----BEGIN PGP SIGNATURE----- Version: PGP 6.0.2 -- QDPGP 2.60 Comment: http://community.wow.net/grt/qdpgp.html iQA/AwUBOPSTPlMwP8g7qbw/EQJHtgCgr/Sn7ha2gtnmB3qAL88IUPhXBckAoPwO Q+pIA7QEJtoA6V08Fgn76422 =R4ED -----END PGP SIGNATURE----- -- Petr Novotny, ANTEK CS [EMAIL PROTECTED] http://www.antek.cz PGP key ID: 0x3BA9BC3F -- Don't you know there ain't no devil there's just God when he's drunk. [Tom Waits]
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On 12 Apr 00, at 18:16, Petr Novotny wrote: [snip] > (assuming localhost is in locals; change localhost for other suitable > value) Ignore that line - that's a leftover from the draft. > (If domain2.com was local before the change, change the forward Not forward - condredirect. Also a leftover. Sorry -----BEGIN PGP SIGNATURE----- Version: PGP 6.0.2 -- QDPGP 2.60 Comment: http://community.wow.net/grt/qdpgp.html iQA/AwUBOPST1FMwP8g7qbw/EQL3UQCg1EPHkhMy0b1aVkFr9t4yVjJBuiUAnRMw Nx7tdLLXeyBeTz7bWXukb+k4 =Ibx1 -----END PGP SIGNATURE----- -- Petr Novotny, ANTEK CS [EMAIL PROTECTED] http://www.antek.cz PGP key ID: 0x3BA9BC3F -- Don't you know there ain't no devil there's just God when he's drunk. [Tom Waits]
I know this is a newbie-esque q, but what's the best way of knowing what the intended email address was on a bounce? I know there are VERPs and QSBF involved, but I'm not sure where to go next. My basic understanding is that the best way is to have outgoing messages have a special Return-Path header so that you have the headers To: [EMAIL PROTECTED] From: [EMAIL PROTECTED] Return-Path: [EMAIL PROTECTED] Is that a VERP? Once that's been set up, then what? Are the MAILER-DAEMON "failure notice" messages useful? Here's specifics: I run a specially configured moderated mailing list, and don't really want to try to use ezmlm because the current setup functions (but needs to be improved). (For example, people can't subscribe to the list by sending a request to the list.) There's a server that handles the database of subscribers and incoming mail. (list.com) I'm using perl to handle incoming messages. (A basic NT SMTP server receives them and dumps them in a folder.) There's a FreeBSD server whose only purpose is to run qmail to send outgoing mail. (qmailer.backend.com). When a message needs to be sent off, list.com hands off the messages to qmailer.backend.com. No problem, everything cool. Then list.com gets all the [EMAIL PROTECTED] bounce messages (and all the other bounce messages, like AOL's bounce). I want to unsubscribe the bounces. (Is there any reason I shouldn't?) My guess is that ezmlm's bounce handler is the best method, but what exactly is it? I know it sends out a probe, but what's the mechanism for emulating that behavior? Is just grepping the MAILER-DAEMON messages for the QSBF a reasonable option? It seems like there should be a better way.
There was a discussion about qmail t-shirts a while back. Has anyone seen this site? They seel qmail t-shirts....speaking of the tcp/ip, how about "Will queue mail for sex?" :-) (ok, for food then?) http://www.nerdgear.com/search.php?@category=100 -- Fredrick Backman ~ fsmail.net sysadmin ~ MyNet Ltd "Hey! It compiles! Ship it!"
Today, Fredrick Backman wrote: > > There was a discussion about qmail t-shirts a while back. Has > anyone seen this site? They seel qmail t-shirts....speaking of the > tcp/ip, how about "Will queue mail for sex?" :-) (ok, for food > then?) > > http://www.nerdgear.com/search.php?@category=100 I was going to offer four tshirts for sale on the web but the site that I was going to use, www.webtshirt.com, fell off the net and hasn't resurfaced. Those prices at nerdgear are pretty good. Especially for embroidery. Even with shipping. Cheers, Vern -- \ \ / __| _ \ \ | Vern Hart \ \ / _| / . | [EMAIL PROTECTED] \_/ ___|_|_\_|\_|
Vern Hart writes: > > http://www.nerdgear.com/search.php?@category=100 > > Those prices at nerdgear are pretty good. Especially for > embroidery. Even with shipping. The extra-large is $18.18 with shipping. I'll let the list know if the shirts don't suck. -- -russ nelson <[EMAIL PROTECTED]> http://russnelson.com Crynwr sells support for free software | PGPok | "Ask not what your country 521 Pleasant Valley Rd. | +1 315 268 1925 voice | can force other people to Potsdam, NY 13676-3213 | +1 315 268 9201 FAX | do for you..." -Perry M.
I have searched the archive and found same issue I have but the cause of my problem is different. I installed qmail initially for list management and pop3 service using maildir on RedHat 6.2 Intel. Everything works and I did all the tests suggested in the install. However I got this error : -ERR this user has no $HOME/Maildir But Maildir exists for "esl". Infact I already have new mails under ~esl/Maildir/new. Here is my inetd.conf: qmail-popup stream tcp nowait root /var/qmail/bin/qmail-popup fullyqualifieddomainname /bin/checkpassword /var/qmail/bin/qmail-pop3d Maildir /etc/services: qmail-popup 110/tcp pop-3 qmail-popup 110/udp pop-3 $HOME for esl: drwx------ 23 esl esl 20480 Apr 12 11:48 . drwx------ 5 esl esl 4096 Apr 7 17:17 Maildir Thanks. ESL
esl writes: > I installed qmail initially for list management and pop3 service using > maildir on RedHat 6.2 Intel. Everything works and I did all the tests > suggested in the install. However I got this error : > > -ERR this user has no $HOME/Maildir Always best to run the test in the first paragraph of http://qmail.org/top.html#checkpassword. > Here is my inetd.conf: > > qmail-popup stream tcp nowait root > /var/qmail/bin/qmail-popup fullyqualifieddomainname > /bin/checkpassword /var/qmail/bin/qmail-pop3d Maildir Look at http://cr.yp.to/ucspi-tcp.html and consider running tcpserver instead. -- -russ nelson <[EMAIL PROTECTED]> http://russnelson.com Crynwr sells support for free software | PGPok | "Ask not what your country 521 Pleasant Valley Rd. | +1 315 268 1925 voice | can force other people to Potsdam, NY 13676-3213 | +1 315 268 9201 FAX | do for you..." -Perry M.
Title: Qmail as a relay?
Hi,
I'm having a lot of problems trying to install qmail on a HP-UX 11.0 system. The installation itself goes ok (with lots of warnings) and qmail alone works fine. When i try to configure it as a relay client, compiling tcpwrappers and/or tcpserver, lots of errors appear. Can somebody help me? Is there any easy way to configure a system to permit relay only to specific ip addresses?
TIA,
Gustavo.
Carlos Gustavo Werner wrote: > > > Hi, > > I'm having a lot of problems trying to install qmail on a HP-UX 11.0 > system. The installation itself goes ok (with lots of warnings) and > qmail alone works fine. When i try to configure it as a relay client, > compiling tcpwrappers and/or tcpserver, lots of errors appear. Can > somebody help me? Is there any easy way to configure a system to > permit relay only to specific ip addresses? It's here: http://cr.yp.to/qmail/faq/servers.html#authorized-relay > > > TIA, > Gustavo.
Title: RE: Qmail as a relay?
Yeah but I can't compile ucspi-tcp (tcpserver) under HP-UX 11.0!!!
And the same thing happens with tcpwrappers!!!Thanks a lot!
> -----Original Message-----
> From: esl [mailto:[EMAIL PROTECTED]]
> Sent: Wednesday, April 12, 2000 5:51 PM
> To: Carlos Gustavo Werner
> Cc: 'Qmail mailing list'
> Subject: Re: Qmail as a relay?
>
>
> Carlos Gustavo Werner wrote:
>
> >
> >
> > Hi,
> >
> > I'm having a lot of problems trying to install qmail on a HP-UX 11.0
> > system. The installation itself goes ok (with lots of warnings) and
> > qmail alone works fine. When i try to configure it as a
> relay client,
> > compiling tcpwrappers and/or tcpserver, lots of errors appear. Can
> > somebody help me? Is there any easy way to configure a system to
> > permit relay only to specific ip addresses?
>
> It's here: http://cr.yp.to/qmail/faq/servers.html#authorized-relay
>
> >
> >
> > TIA,
> > Gustavo.
>
On Wed, 12 Apr 2000, Carlos Gustavo Werner wrote: > > Yeah but I can't compile ucspi-tcp (tcpserver) under HP-UX 11.0!!! > And the same thing happens with tcpwrappers!!! I've built it on hpux (pronounced: H Pukes) ver 7, 8, 9 and 10 with gcc, the standard cc and the optional ANSI compiler. What happened in 11 that things stopped? Vince. -- ========================================================================== Vince Vielhaber -- KA8CSH email: [EMAIL PROTECTED] http://www.pop4.net 128K ISDN from $22.00/mo - 56K Dialup from $16.00/mo at Pop4 Networking Online Campground Directory http://www.camping-usa.com Online Giftshop Superstore http://www.cloudninegifts.com ==========================================================================
Title: RE: Qmail as a relay?
They turned ux into posix-like... any hints?
> -----Original Message-----
> From: Vince Vielhaber [mailto:[EMAIL PROTECTED]]
> Sent: Wednesday, April 12, 2000 6:06 PM
> To: Carlos Gustavo Werner
> Cc: 'Qmail mailing list'
> Subject: RE: Qmail as a relay?
>
>
> On Wed, 12 Apr 2000, Carlos Gustavo Werner wrote:
>
> >
> > Yeah but I can't compile ucspi-tcp (tcpserver) under HP-UX 11.0!!!
> > And the same thing happens with tcpwrappers!!!
>
> I've built it on hpux (pronounced: H Pukes) ver 7, 8, 9 and 10 with
> gcc, the standard cc and the optional ANSI compiler. What happened
> in 11 that things stopped?
>
> Vince.
> --
> ==============================================================
> ============
> Vince Vielhaber -- KA8CSH email: [EMAIL PROTECTED]
http://www.pop4.net
128K ISDN from $22.00/mo - 56K Dialup from $16.00/mo at Pop4 Networking
Online Campground Directory http://www.camping-usa.com
Online Giftshop Superstore http://www.cloudninegifts.com
==========================================================================
On Wed, 12 Apr 2000, Carlos Gustavo Werner wrote: > > They turned ux into posix-like... any hints? Not with that little bit of info. What compilers have you tried? What errors did you get? Was something missing that tcpserver needed? etc....... Vince. > > > -----Original Message----- > > From: Vince Vielhaber [mailto:[EMAIL PROTECTED]] > > Sent: Wednesday, April 12, 2000 6:06 PM > > To: Carlos Gustavo Werner > > Cc: 'Qmail mailing list' > > Subject: RE: Qmail as a relay? > > > > > > On Wed, 12 Apr 2000, Carlos Gustavo Werner wrote: > > > > > > > > Yeah but I can't compile ucspi-tcp (tcpserver) under HP-UX 11.0!!! > > > And the same thing happens with tcpwrappers!!! > > > > I've built it on hpux (pronounced: H Pukes) ver 7, 8, 9 and 10 with > > gcc, the standard cc and the optional ANSI compiler. What happened > > in 11 that things stopped? > > > > Vince. > > -- > > ============================================================== > > ============ > > Vince Vielhaber -- KA8CSH email: [EMAIL PROTECTED] > http://www.pop4.net > 128K ISDN from $22.00/mo - 56K Dialup from $16.00/mo at Pop4 Networking > Online Campground Directory http://www.camping-usa.com > Online Giftshop Superstore http://www.cloudninegifts.com > ========================================================================== > > > -- ========================================================================== Vince Vielhaber -- KA8CSH email: [EMAIL PROTECTED] http://www.pop4.net 128K ISDN from $22.00/mo - 56K Dialup from $16.00/mo at Pop4 Networking Online Campground Directory http://www.camping-usa.com Online Giftshop Superstore http://www.cloudninegifts.com ==========================================================================
On Apr 12 2000, Carlos Gustavo Werner wrote: > > Yeah but I can't compile ucspi-tcp (tcpserver) under HP-UX 11.0!!! > And the same thing happens with tcpwrappers!!! Well, if you could tell us a bit more about what happens with your system, maybe we could try to help. I don't get a hunch frequently, you know. :-) BTW, please turn off the HTML attachments in your e-mail reader. []s, Roger... -- =-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-= Rogerio Brito - [EMAIL PROTECTED] - http://www.ime.usp.br/~rbrito/ Nectar homepage: http://www.linux.ime.usp.br/~rbrito/opeth/ =-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=
Since I'm very new to this list, I have a question about the mail formats this list permits. Considering the potential security hazards that HTML mail creates, and the fact that a lot of mail program don't support HTML mail, is it acceptable/desirable for this group? Thanks, John
"John W. Lemons III" <[EMAIL PROTECTED]> wrote: >Considering the potential security hazards that HTML mail creates, >and the fact that a lot of mail program don't support HTML mail, >is it acceptable/desirable for this group? (Barely) acceptable, but not desirable. -Dave
Please do NOT use HTML on this list. :) Quite a few of us use pine or mutt to read our mail. On Wed, 12 Apr 2000, John W. Lemons III wrote: > Since I'm very new to this list, I have a question about the mail > formats this list permits. > > Considering the potential security hazards that HTML mail creates, > and the fact that a lot of mail program don't support HTML mail, > is it acceptable/desirable for this group? > > Thanks, > John > > > --------------------------------- Timothy L. Mayo mailto:[EMAIL PROTECTED] Senior Systems Administrator localconnect(sm) http://www.localconnect.net/ The National Business Network Inc. http://www.nb.net/ One Monroeville Center, Suite 850 Monroeville, PA 15146 (412) 810-8888 Phone (412) 810-8886 Fax
Thus said "Timothy L. Mayo" on Wed, 12 Apr 2000 13:53:39 EDT: > Please do NOT use HTML on this list. :) Quite a few of us use pine or > mutt to read our mail. Yes, I'll second that motion. Please no HTML. It always makes quoting very ugly. :-) Andy -- +====== Andy ====== TiK: garbaglio ======+ | Linux is about freedom of choice | +== http://www.xmission.com/~bradipo/ ===+
PGP signature
On Wed, Apr 12, 2000 at 01:53:39PM -0400, "Timothy L. Mayo" <[EMAIL PROTECTED]> wrote: > Please do NOT use HTML on this list. :) Quite a few of us use pine or > mutt to read our mail. But we're the lucky ones, the people who are probably going to get hosed are the ones reading their mail with Outlook or Netscape.
On Wed, Apr 12, 2000 at 01:53:39PM -0400, Timothy L. Mayo wrote: > Please do NOT use HTML on this list. :) Quite a few of us use pine or > mutt to read our mail. This is something I don't understand. I use mutt, and HTML mail appears totally sane in my reader. It's also treated exactly like text when it comes to quoting. :/ That said, I think it doesn't belong in e-mail sheerly on principle. /pg -- Peter Green Gospel Communications Network, SysAdmin [EMAIL PROTECTED]
On Wed, Apr 12, 2000 at 04:25:54PM -0400, Peter Green wrote: > On Wed, Apr 12, 2000 at 01:53:39PM -0400, Timothy L. Mayo wrote: > > Please do NOT use HTML on this list. :) Quite a few of us use pine or > > mutt to read our mail. > > This is something I don't understand. I use mutt, and HTML mail appears > totally sane in my reader. It's also treated exactly like text when it comes > to quoting. :/ I take this back. If an e-mail is *all* HTML, then mutt (by default) is SOL. /pg -- Peter Green Gospel Communications Network, SysAdmin [EMAIL PROTECTED]
Is it coming in as multi-part mime? with a text part and an html part? the problem comes in when : - they message isn't multi-part and is HTML only, and the reader doesn't do HTML - the reader chooses the HTML part of the multi-part message by default, thereby exposing the reader to security hazards (like outlook...) -----Original Message----- From: Peter Green [mailto:[EMAIL PROTECTED]] Sent: Wednesday, April 12, 2000 3:26 PM To: [EMAIL PROTECTED] Subject: Re: HTML mail and this list... On Wed, Apr 12, 2000 at 01:53:39PM -0400, Timothy L. Mayo wrote: > Please do NOT use HTML on this list. :) Quite a few of us use pine or > mutt to read our mail. This is something I don't understand. I use mutt, and HTML mail appears totally sane in my reader. It's also treated exactly like text when it comes to quoting. :/ That said, I think it doesn't belong in e-mail sheerly on principle. /pg -- Peter Green Gospel Communications Network, SysAdmin [EMAIL PROTECTED]
Peter Green <[EMAIL PROTECTED]> writes: > On Wed, Apr 12, 2000 at 04:25:54PM -0400, Peter Green wrote: >> This is something I don't understand. I use mutt, and HTML mail appears >> totally sane in my reader. It's also treated exactly like text when it >> comes to quoting. :/ > I take this back. If an e-mail is *all* HTML, then mutt (by default) is > SOL. Ever since Gnus added the ability to render HTML using w3-mode, these discussions tend to surprise me becaues I don't even notice the original was in HTML. :) -- Russ Allbery ([EMAIL PROTECTED]) <http://www.eyrie.org/~eagle/>
On Apr 12 2000, Peter Green wrote: > I take this back. If an e-mail is *all* HTML, then mutt (by default) > is SOL. That's not entirely true if you have a well configured system with mailcaps and such -- mine calls (unfortunately for lack of better choices -- or even knowing alternatives) lynx for displaying pure HTML messages. []s, Roger... -- =-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-= Rogerio Brito - [EMAIL PROTECTED] - http://www.ime.usp.br/~rbrito/ Nectar homepage: http://www.linux.ime.usp.br/~rbrito/opeth/ =-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=
On Tue, Apr 11, 2000 at 08:40:54AM -0700, Duncan Watson wrote: > On Tue, Apr 11, 2000 at 08:11:23AM -0600, Charles Cazabon wrote: > > Duncan Watson <[EMAIL PROTECTED]> wrote: > > > > > > I just started using maildirs with mutt and procmail. I am planning on > > > writing a utility to allow me to search all of my maildir folders for mail > > > matching certain regexps and then linking them into a result folder also a > > > maildir that I could then browse with mutt. > > > > You might find that `find` and `egrep` can do what you want with little > > extra glue. Maildir format is so simple you don't have to worry about it -- > > one message per file under /new and /cur, ignore everything under /tmp. > > Very close to my intent. Find, regexps and python as glue. I may use tkinter > as a front end for prettiness. Are you aware that mutt already has the ability to search for regexps? I believe you're restricted to searching a single folder at a time (maildir, mbox, or any other supported type) but aside from that it might be close enough to what you're trying to do. Walt Mankowski
On Wed, Apr 12, 2000 at 03:18:15PM -0400, Walt Mankowski wrote: > On Tue, Apr 11, 2000 at 08:40:54AM -0700, Duncan Watson wrote: >> >> Very close to my intent. Find, regexps and python as glue. I may use >> tkinter as a front end for prettiness. > > Are you aware that mutt already has the ability to search for regexps? > I believe you're restricted to searching a single folder at a time > (maildir, mbox, or any other supported type) but aside from that it > might be close enough to what you're trying to do. Actually that is part of it. I aggressively sort my mail into folders to keep a handle on it. This causes me some difficulty when I want to find something but can't remember who sent it. If I could remember the folder mutt would find it easily. So I thought "Hey what if I just found the messages I needed in the tree somewhere and linked them into one meta-folder called =search-results. Then I could view the results in mutt and do more specific searching on that folder" So my goal is simple just create an enternal script that searches the various folders I have and then link the result messages into a folder called search-results. I will then browse the folder with mutt. This has the added benefit of maintaining meta-information such as threading. Actually the task doesn't look to hard. I already have scripts to find messages which I use to identify likely folders to search. I just need to bit the bullet and link the results into a maildir. I hope this is more clear. /Duncan -- Duncan Watson nCube
I just added /var/qmail to my tripwire policy, and of course, lots of files change frequently. Any suggestions on a policy for this server? perhaps just include /var/qmail/bin and /var/qmail/control? Any others? John
John W Lemons <[EMAIL PROTECTED]> writes: > I just added /var/qmail to my tripwire policy, and of course, lots of > files change frequently. Any suggestions on a policy for this server? > perhaps just include /var/qmail/bin and /var/qmail/control? Any others? Here's what I use: /var/qmail R-2 /var/qmail/bin/qmail-queue R /var/qmail/control/badmailfrom L-i !/var/qmail/queue That checks all the man pages, which is probably unnecessary (although it is possible to do shell escapes from inside *roff, so...). -- Russ Allbery ([EMAIL PROTECTED]) <http://www.eyrie.org/~eagle/>
Off topic, except that qmail users actually care about spam... I find the general acceptance of HTML mail to be alarming. Assume for the moment that I am a spammer (but don't shoot me). If I want to generate from whole cloth a mailing list of real, live Internet users, the first thing I might do is send HTML mail to a randomly generated list of account names at some of the larger mail hosts. Each one will include at least one image which has, embedded in its name, the name of the user account that I sent the mail to. Then, as my web server starts to log hits, I get the data I want. Although the US PTO might consider this novel and unobvious, I doubt it is news to many people on this list, and I suspect that it is already happening. Am I right? Is there anything one can do about it, assuming one doesn't administer all systems one receives mail through? - Bruce
On Wed, 12 Apr 2000 12:47:47 PDT, "Bruce" wrote: > I find the general acceptance of HTML mail to be alarming. I abhor HTML email, but what can one do? It would be a good idea if all the *newbies* to the Internet could be somehow trained before getting *online* but alas, that would be a hope with too much room for failure... > Although the US PTO might consider this novel and unobvious, > I doubt it is news to many people on this list, and I suspect > that it is already happening. Am I right? Is there anything > one can do about it, assuming one doesn't administer all > systems one receives mail through? I personally won't read email if it's all HTML. But on the large scale, there probably isn't much that can be done about it. IMO, the best thing that one can do is educate his/her peers, users and those that use the systems that one administers. Andy
Bruce writes: > Although the US PTO might consider this novel and unobvious, > I doubt it is news to many people on this list, and I suspect > that it is already happening. Am I right? Yup. I've built such systems for customers. > Is there anything one can do about it, assuming one doesn't > administer all systems one receives mail through? Yes. Bounce html-only email. Strip the html fork from multipart/alternative email. -- -russ nelson <[EMAIL PROTECTED]> http://russnelson.com Crynwr sells support for free software | PGPok | "Ask not what your country 521 Pleasant Valley Rd. | +1 315 268 1925 voice | can force other people to Potsdam, NY 13676-3213 | +1 315 268 9201 FAX | do for you..." -Perry M.
-----BEGIN PGP SIGNED MESSAGE----- (1) I complained about a guy's 17 line signature that could be compressed down to 4 lines... he complained about my 9 line PGP signature. clue. (2) I have already seen html email that has jabbascript that "decodes" the content of the message. I assume this was done to try to get around some sort of string based filtering. Scott -----BEGIN PGP SIGNATURE----- Version: 2.6.2 iQCVAwUBOPTW91pGPE+AF6qBAQEcAAQAgHobjHXM3sa28jeNv0AudekWXtTOOdtZ RBOWd7INcZEsS77aWccC36c+MOQd3ZEASe7uRgWiZLtvklX7W+rIKG812RNrLQ8g Fheapggck/JRrwbF0U9WiftPLEfyd/ldVzK1XmsOp8jbhpyv0Um9ZJ7LOYKack+F kRZBpmb8Jag= =en3g -----END PGP SIGNATURE-----
Hello Scott On 12-Apr-00, you wrote: > -----BEGIN PGP SIGNED MESSAGE----- > > > (1) I complained about a guy's 17 line signature that could > be compressed down to 4 lines... he complained about my 9 > line PGP signature. clue. > > (2) I have already seen html email that has jabbascript that "decodes" > the content of the message. I assume this was done to try to get around > some sort of string based filtering. > > Scott So why don't you just put the pgp sig on your personal web site and a link ;-) Regards...Martin -- --------------- A meeting is an event at which the minutes are kept and the hours are lost. -- Gourd's Axiom
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On 12 Apr 00, at 15:52, Russell Nelson wrote: > Yes. Bounce html-only email. Strip the html fork from > multipart/alternative email. Does anyone have such a code and is willing to share it? -----BEGIN PGP SIGNATURE----- Version: PGP 6.0.2 -- QDPGP 2.60 Comment: http://community.wow.net/grt/qdpgp.html iQA/AwUBOPVqflMwP8g7qbw/EQLZAACgrGM6dEowX+tXXkAIa63VK4ZrQE8AoJZq IDXAJ/ExS4dGYcuJU6DgqD2t =2COI -----END PGP SIGNATURE----- -- Petr Novotny, ANTEK CS [EMAIL PROTECTED] http://www.antek.cz PGP key ID: 0x3BA9BC3F -- Don't you know there ain't no devil there's just God when he's drunk. [Tom Waits]
On Wed, Apr 12, 2000 at 02:05:11PM -0600, Scott D. Yelich wrote: > -----BEGIN PGP SIGNED MESSAGE----- > > > (1) I complained about a guy's 17 line signature that could > be compressed down to 4 lines... he complained about my 9 > line PGP signature. clue. > Well I have to admit I have some sympathy with him there, I'd much prefer that people *didn't* post PGP signed messages where it isn't necessary. It's just extra noise that has to be filtered out by some means or other. Why should I have to set up my MUA to handle something that isn't necessary for me - it's similar to HTML in many ways. -- Chris Green ([EMAIL PROTECTED]) Home: [EMAIL PROTECTED] Work: [EMAIL PROTECTED] WWW: http://www.isbd.co.uk/
-----BEGIN PGP SIGNED MESSAGE----- On Thu, 13 Apr 2000, Chris Green wrote: > On Wed, Apr 12, 2000 at 02:05:11PM -0600, Scott D. Yelich wrote: > Well I have to admit I have some sympathy with him there, I'd much > prefer that people *didn't* post PGP signed messages where it isn't > necessary. It's just extra noise that has to be filtered out by some > means or other. Why should I have to set up my MUA to handle > something that isn't necessary for me - it's similar to HTML in many > ways. How does HTML authenticate you? Tell me, do people pretend to be you on the net? Do people send mail claiming to be from you? Would you be worried if someone sent a death threat to someone else and signed it with your name? Perhaps *you* may not have a reason to do something, but that doesn't mean that others may not have a reason. If I have a chance/choice, anything that I send via the 'net will have some sort of authentication with it. Scott -----BEGIN PGP SIGNATURE----- Version: 2.6.2 iQCVAwUBOPWDSlpGPE+AF6qBAQHyGgQAsxRFtn5yNGEeCvE9L7T4K/w2MZfF5ZcH d3+xT2YrjvfuyYxcUtrUZMhM06xH/guJxsfPhovPJWag8GUql90+5n5g/4q8dLSx JvaS3cwOndc0RZftjadVb/Vn9WNxpIJV2+DmEW2xm2SQbcKBQKpMD52qri0Vyw3n u5c3j1+4Urk= =mNun -----END PGP SIGNATURE-----
On Thu, Apr 13, 2000 at 02:20:26AM -0600, Scott D. Yelich wrote: > -----BEGIN PGP SIGNED MESSAGE----- > > On Thu, 13 Apr 2000, Chris Green wrote: > > On Wed, Apr 12, 2000 at 02:05:11PM -0600, Scott D. Yelich wrote: > > Well I have to admit I have some sympathy with him there, I'd much > > prefer that people *didn't* post PGP signed messages where it isn't > > necessary. It's just extra noise that has to be filtered out by some > > means or other. Why should I have to set up my MUA to handle > > something that isn't necessary for me - it's similar to HTML in many > > ways. > > How does HTML authenticate you? > Does my message *really* sound like that was what I meant? I was saying that PGP is extra noise in much the same way that HTML is extra noise. > Tell me, do people pretend to be you on the net? Do people send mail > claiming to be from you? Would you be worried if someone sent a death > threat to someone else and signed it with your name? > If they did these things in messages to a mailing list I think it would both be obvious that it was rubbish and rather unimportant. Horses for courses, PGP has its place but not on mailing lists for example. -- Chris Green ([EMAIL PROTECTED]) Home: [EMAIL PROTECTED] Work: [EMAIL PROTECTED] WWW: http://www.isbd.co.uk/
I've researched $TCPREMOTEINFO and "ident lookups". And, for everyone else's benefit, I included the useful snippets below. --> My question is, what impact is there on qmail of not having $TCPREMOTEINFO available? We are switching to all Cisco Pix firewalls which, unlike our previous firewalls, all appear to have the IDENT port blocked. Fine, so I put the "-R" option in my qmail tcpservers, and we're happy again, with no more 26-second delays. The man pages say qmail-smtpd required $TCPREMOTEINFO, but it doesn't say how it uses it. Will it show up in the headers somewhere? Is that were the Received-By header gets the IP-name translation? We want to make an informed decision, and to do so we need to understand how it will impact qmail. Thanks in advance! Dave :) _____________________________ >From Bernstein: http://cr.yp.to/ucspi-tcp/environment.html $TCPREMOTEINFO is a connection-specific string supplied by the remote host via the 931/1413/IDENT/TAP protocol. If no information is available, $TCPREMOTEINFO is not set. Beware that $TCPREMOTEINFO can contain arbitrary characters. >From RFC 1413 "Identification Protocol": http://andrew2.andrew.cmu.edu/rfc/rfc1413.html Excerpts: "The Identification Protocol (a.k.a., "ident", a.k.a., "the Ident Protocol") provides a means to determine the identity of a user of a particular TCP connection. Given a TCP port number pair, it returns a character string which identifies the owner of that connection on the server's system. The Identification Protocol was formerly called the Authentication Server Protocol" "Security Considerations The information returned by this protocol is at most as trustworthy as the host providing it OR the organization operating the host. For example, a PC in an open lab has few if any controls on it to prevent a user from having this protocol return any identifier the user wants. Likewise, if the host has been compromised the information returned may be completely erroneous and misleading. The Identification Protocol is not intended as an authorization or access control protocol. At best, it provides some additional auditing information with respect to TCP connections. At worst, it can provide misleading, incorrect, or maliciously incorrect information. The use of the information returned by this protocol for other than auditing is strongly discouraged. Specifically, using Identification Protocol information to make access control decisions - either as the primary method (i.e., no other checks) or as an adjunct to other methods may result in a weakening of normal host security. An Identification server may reveal information about users, entities, objects or processes which might normally be considered private. An Identification server provides service which is a rough analog of the CallerID services provided by some phone companies and many of the same privacy considerations and arguments that apply to the CallerID service apply to Identification. If you wouldn't run a "finger" server due to privacy considerations you may not want to run this protocol. " Other: The Ident port is Port 113.
On Wed, Apr 12, 2000 at 04:56:44PM -0400, Dave Kitabjian wrote: > I've researched $TCPREMOTEINFO and "ident lookups". And, for everyone > else's benefit, I included the useful snippets below. > > --> My question is, what impact is there on qmail of not having > $TCPREMOTEINFO available? It doesn't get placed in the Received: line. > > We are switching to all Cisco Pix firewalls which, unlike our previous > firewalls, all appear to have the IDENT port blocked. Fine, so I put the > "-R" option in my qmail tcpservers, and we're happy again, with no more > 26-second delays. > > The man pages say qmail-smtpd required $TCPREMOTEINFO, but it doesn't Really? Where? I didn't see that and the code in qmail-smtpd.c suggests that it's optional. > say how it uses it. Right. There is a long-standing issue with ident. All it does is potentially provide information that may help the site admin of the sending site identify who sent the email. Whether it does or doesn't depends on the sending site. > were the Received-By header gets the IP-name translation? We want to > make an informed decision, and to do so we need to understand how it > will impact qmail. I'll stick my neck out and say that it's largely useless these days. It doesn't hurt to get it and log it, but it was typically much more useful when people logged into systems such as unix and sent mail from there. In an SMTP relay environment, such as an ISP or a corporate outbound system where most people send from a desktop, via a local server to you, it's mostly not of use (that's not to say that it couldn't be useful just that it's not typically implemented to be so). Regards.
Thanks for the reply. >> The man pages say qmail-smtpd required $TCPREMOTEINFO, but it doesn't >Really? Where? I didn't see that and the code in qmail-smtpd.c suggests >that it's optional. Hmm. Well, the qmail-smtpd man page says: "... qmail-smtpd must be supplied several environment variables; see tcp-environ(5)..." and the man for tcp-environ lists TCPREMOTEINFO: http://www.qmail.org/man/man5/tcp-environ.html > It doesn't hurt to get it and log it, And how would one do that? Does it show up when you run qmail-smtpd with tcpserver's -v option? > In an SMTP relay environment, such as an ISP or a corporate outbound system where most people send from a desktop, via a local server to you, it's mostly not of use (that's not to say that it couldn't be useful just that it's not typically implemented to be so). I see. Well, we're an ISP, and remember that while half our SMTP mail (outbound mail) comes from desktops like you said, the other half (ie, incoming mail) comes from other SMTP relays around the world. I'm open for more input. Can anyone else comment on how else a blank $TCPREMOTEINFO will affect our qmail logs, headers, etc? Dave
> And how would one do that? Does it show up when you run qmail-smtpd with > tcpserver's -v option? According to the man pages: ... tcpserver sets up several environment variables, as described in tcp-environ(5). > > In an SMTP relay environment, such as an ISP or a corporate outbound > system where most people send from a desktop, via a local server to you, > it's mostly not of use (that's not to say that it couldn't be useful > just that it's not typically implemented to be so). > > I see. Well, we're an ISP, and remember that while half our SMTP mail > (outbound mail) comes from desktops like you said, the other half (ie, > incoming mail) comes from other SMTP relays around the world. I meant via their local server. In other words a distant MTA sending to you. > I'm open for more input. Can anyone else comment on how else a blank > $TCPREMOTEINFO will affect our qmail logs, headers, etc? Why don't you try it - it's very easy to do. Regards.
hello, I have read the HOWTO and miniHOWTO and the usr/doc about configuring qmail and I am still at a loss. I am having a hard time following it.I have researched about other mta's and from what I have come up with is that qmail is supposed to be the easiest to configure. I would like to learn more about qmail. What I have is just one machine connected to an ISP using dynamic IP address. Can someone please lend a newbie a hand in accomplishing this (simple instructions/explanations would be nice to get it up and running). preferably in layman's terms please. I am very new to this. Thank you. ______________________________________________________ Get Your Private, Free Email at http://www.hotmail.com
On Wed, Apr 12, 2000 at 10:35:45PM +0000, john smith wrote: > hello, > > I have read the HOWTO and miniHOWTO and the usr/doc about configuring > qmail and I am still at a loss. I am having a hard time following it.I have > researched about other mta's and from what I have come up with is that qmail > is supposed to be the easiest to configure. I would like to learn more about > qmail. What I have is just one machine connected to an ISP using dynamic IP > address. Can someone please lend a newbie a hand in accomplishing this > (simple instructions/explanations would be nice to get it up and running). > preferably in layman's terms please. I am very new to this. I think it would be helpful if you told us which part of the config you can't get to work :-) If you have a POP account with your ISP, you need something like fetchmail to get your POP mail from your ISP and deliver it to your qmail SMTP service, wich in turn can deliver it locally (ie to your un*x user account) > Thank you. So far so good ? Greetz, Steffan
Recently, my manager give me a headache. He request me to give him reports on mail stats. Can anyone tell me if there is any tools to generate reports on 1 # of mail send & receive hourly, daily and monthly - Traffic analysis can I just count the # of log lines on each servers ? 2 mail size of each user folders (e.g. 0-1M=100 users, 1-2M=333 users) - Utilization & Capacity perhaps I will try query LDAP one by one and then go to pop(s) to find Maildir size 3 # mail sent internally (QMTP, not by smtp) .. no idea how to do ISP environment: 11 servers - 2 incoming, 2 smtp, 5 pop, 2 LDAP (openldap) The best would be out-of-box solution (probably no I guess), any free lunch ? Keith Yeung www.sunday.com
Keith, Yeung Wai Kin writes: > Can anyone tell me if there is any tools to generate reports on > 1 # of mail send & receive hourly, daily and monthly - Traffic analysis > can I just count the # of log lines on each servers ? http://www.crynwr.com/mrtg/ has something to measure the amount of mail sent. It's not as fascinating as you might think, though. > 2 mail size of each user folders (e.g. 0-1M=100 users, 1-2M=333 users) - > Utilization & Capacity > perhaps I will try query LDAP one by one and then go to pop(s) to > find Maildir size I think that's what you'll end up doing. > 3 # mail sent internally (QMTP, not by smtp) > .. no idea how to do Look at your mail logs. -- -russ nelson <[EMAIL PROTECTED]> http://russnelson.com Crynwr sells support for free software | PGPok | "Ask not what your country 521 Pleasant Valley Rd. | +1 315 268 1925 voice | can force other people to Potsdam, NY 13676-3213 | +1 315 268 9201 FAX | do for you..." -Perry M.
> > Can anyone tell me if there is any tools to generate reports on > > 1 # of mail send & receive hourly, daily and monthly - Traffic analysis > > can I just count the # of log lines on each servers ? > --http://www.crynwr.com/mrtg/ has something to measure the amount of --mail sent. It's not as fascinating as you might think, though. MRTG ? where can i get MIB for Qmail ? > > 2 mail size of each user folders (e.g. 0-1M=100 users, 1-2M=333 users) > - > > Utilization & Capacity > > perhaps I will try query LDAP one by one and then go to pop(s) to > > find Maildir size > --I think that's what you'll end up doing. Fit ! I know I will be a programmer very soon. > > 3 # mail sent internally (QMTP, not by smtp) > > .. no idea how to do > --Look at your mail logs. Good idea ! Thanks !
Keith, Yeung Wai Kin writes: > --http://www.crynwr.com/mrtg/ has something to measure the amount of > --mail sent. It's not as fascinating as you might think, though. > MRTG ? where can i get MIB for Qmail ? There isn't one. There are a pair of scripts which output numbers, to be specified in mrtg.cfg. Everything you need is at the URL. -- -russ nelson <[EMAIL PROTECTED]> http://russnelson.com Crynwr sells support for free software | PGPok | "Ask not what your country 521 Pleasant Valley Rd. | +1 315 268 1925 voice | can force other people to Potsdam, NY 13676-3213 | +1 315 268 9201 FAX | do for you..." -Perry M.
oops ! this is the first time I use mrtg. sorry for innocent Thanks Keith > -----Original Message----- > From: Russell Nelson [SMTP:[EMAIL PROTECTED]] > Sent: Thursday, April 13, 2000 12:33 PM > To: [EMAIL PROTECTED] > Subject: RE: Reports on qmail+LDAP > > Keith, Yeung Wai Kin writes: > > --http://www.crynwr.com/mrtg/ has something to measure the amount of > > --mail sent. It's not as fascinating as you might think, though. > > > MRTG ? where can i get MIB for Qmail ? > > There isn't one. There are a pair of scripts which output numbers, to > be specified in mrtg.cfg. Everything you need is at the URL. > > -- > -russ nelson <[EMAIL PROTECTED]> http://russnelson.com > Crynwr sells support for free software | PGPok | "Ask not what your > country > 521 Pleasant Valley Rd. | +1 315 268 1925 voice | can force other people > to > Potsdam, NY 13676-3213 | +1 315 268 9201 FAX | do for you..." -Perry > M.
Where is the best place to discuss for tcpserver ? from the mailing list i couldn't find any list for uscpi-tcp thanks Ismal Hisham Mohd Darus Asst. Manager, System Support John Hancock Life Insurance (Malaysia) Berhad
Hi, I am running qmail-1.03 MTA. Whenever a message is delivered to a Microsoft Exchange Internet Mail Server version 5.5.2448.0, it says "421 Internal error.". But when I telnet to port 25 and deliver the same message, the message is received. Has it got to do something with the way MS exchange server interprets CR or LF fields? Thanks in advance. - Ashok
On Thu, Apr 13, 2000 at 12:32:49AM -0400, Russell Nelson wrote: > Keith, Yeung Wai Kin writes: > > --http://www.crynwr.com/mrtg/ has something to measure the amount of > > --mail sent. It's not as fascinating as you might think, though. > > > MRTG ? where can i get MIB for Qmail ? > > There isn't one. There are a pair of scripts which output numbers, to > be specified in mrtg.cfg. Everything you need is at the URL. And I've written some instructions for it and added the concurrency ones: http://x42.com/qmail/mrtg/ /magnus -- "Security is not about addons. It is about trusting the base of the system, all the way down to 8 line functions in libc or the kernel." -- Theo de Raadt
Hi everyone, I'm using qmail with ldap patch. Hi there, I would like to implement clustering, ie a few qmail servers with the same domain name. Problem is, there is no documentation on how to set this up. I already know that the mailhost attribute in ldap must point to the other qmail servers. However, how do i set up qmqpd? Where do i run it from? thanks a lot! steve
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 We have been bombarded with mail from a single account all night. I need to know how i "blacklister" the user. He's been mailing 200 mail pr. sec. for a couple of hours :( I can't seem to find it anywhere in the FAQ :( just a simple .qmail-black-list or something like that?!?!? Mvh / Kind regards Klaus Hviid Webmaster Nicodemus Islandsgade 57 6700 Esbjerg Tlf.: +45 76 100 323 (76 100 333) -----BEGIN PGP SIGNATURE----- Version: PGPfreeware 6.5.3 for non-commercial use <http://www.pgp.com> iQA/AwUBOPV8tdht315Eu8HIEQJXXgCfb92f4MukwXx4bTiCdzA2wRE4THQAnRdT INWSUPnKbHiaKbmH8njr7HZw =bdxS -----END PGP SIGNATURE-----
Hi ! > We have been bombarded with mail from a single account all night. I > need to know how i "blacklister" the user. He's been mailing 200 mail > pr. sec. for a couple of hours :( > I can't seem to find it anywhere in the FAQ :( Damn this guy ! put [EMAIL PROTECTED] into /var/qmail/control/badmailfrom That's the backlist :-) You can put there whatever you want, e.g. @microsoft.com, to get rid of bill gates;) Thomas
I would like to pre-filter mail before delivery. Since I want to do this both for mail to be locally delivered as well as mail to be relayed, it would seem I need to do that at qmail-send or earlier. I could live with locally originated mail not being filtered, so qmail-smtpd is not out of the question. I just don't know which would be the best place. The nature of the filtering will not be to alter the content nor to alter the delivery address. This will be anti-spam filtering, and will either allow the mail to pass, or reject it. If rejected, I'd like to cause it to send mail back to the apparent appropriate return address. Doing this as one procress per message would be best, I believe. Can someone suggest the best place to do this? I can modify source code and add what I need, but I don't know enough of the implications of the flow of activity in qmail to know if one place is better than another for some reason. -- | Phil Howard - KA9WGN | My current boycotts: Amazon.Com, DVDs, Mattel, Sony | [EMAIL PROTECTED] +---------------------------------------------------- | Dallas - Texas - USA | My current websites: linuxhomepage.com, ham.org
