Wesley Craig wrote:
> On 24 Nov 2008, at 01:51, ram wrote:
>> Is there a patch that fixes this value to 1
>
> Find one attached. Is this in bugzilla? I couldn't find it... If
> someone puts it there and marks it as a "blocker", it will be fixed in
> the next release.
>
> :wes
At that time I j
ram wrote:
> I have a default cyrus installation with cyrus-imapd-2.3 on centos 5
> People use sieve to set their vacation responses
>
> As per the configuration no response is sent for 1 day
> -
> cat /usr/sieve/i/it/default.script
>
> require "vacation";
> # Vacation
> vacation :day
Andrew McNamara wrote:
> Note that ext3 effectively does the same thing as ZFS on fsync() - because
> the journal layer is block based and does no know which block belongs
> to which file, the entire journal must be applied to the filesystem to
> achieve the expected fsync() symantics (at least, wi
Ethariel wrote:
> Hello,
>
> I've installed cyrus-imapd (2.2.13 on MDV 2007). Sieve scripts are
> working fine except 'vacation'.
> User 1 has a vacation script with days: 1
> User 2 sents an email to user1 it receives an answer (the correct
> vacation message).
> Then after User2 can send email t
Hello,
we're long time users of cyrus-imapd. Due to various migrations, our
SASL2 password database currently contains two kinds of entries:
# sasldblistusers2 -f sasldb2 | cut -f2 -d" " | sort | uniq -c
102 cmusaslsecretCRAM-MD5
102 cmusaslsecretDIGEST-MD5
102 cmusaslsecretPLAIN
gt; ideas on a solution??
http://www.chiark.greenend.org.uk/~sgtatham/bugs.html
.TM.
--
/ / /
/ / / Marco Colombo
___/ ___ / / Technical Manager
/ / / ESI s.r.l.
_/ _/ _/
ct.
Being an old-time user of Pine, it's always a pain to use Thunderbird or
Evolution, clients so feature-full but w/o decent imap behavior:
sometimes I have to switch back to Pine to be able to handle 50k+ new
messages per folder in a decent time (Pine takes negligible time to open
t
and any 2.4.20+ kernel includes it. You
should see no problem in handling directories with > 100k files (biggest
IMAP folder I've seen so far was about 50k messages).
.TM.
--
/ / /
/ / / Marco Colombo
___/ ___ / / T
some kind?
Anything in the logs? Do you get a successful authentication message or
a failure? Something like this:
Jun 5 22:59:30 localhost imap[24937]: login: host.example.com [x.x.x.x]
username CRAM-MD5+TLS User logged in
.TM.
--
/ / /
/ / /
In the end of all this, I'd say that using a distribution that supports
your hardware may be easier of course. B-)
.TM.
--
/ / /
/ / / Marco Colombo
___/ ___ / / Technical Manager
_RUN_PATH=/usr/local/bdb/lib
(same path as above, it that worked) before compliling cyrus.
I've seen you added --with-sasl=/usr/local/lib to your ./configure
flags. Have you build sasl as well? Why?
.TM.
--
/ / /
/ / /
bdb-incdir, no --with-sasl,
and so on), what happens? Does it find the right things in /usr/lib and
/usr/include?
.TM.
--
____/ ____/ /
/ / / Marco Colombo
___/ ___ / / Technical Manager
/ / /
On Wed, 2005-06-01 at 18:51 +0200, Ulf Rasch wrote:
>
> Marco Colombo wrote:
> [snip]
> > Interesting theories. But they seem to backfire on you, since, according
> > to Mr. Jeffrey T Eaton <[EMAIL PROTECTED]> this list _is_ closed:
> > "The list is no
On Wed, 2005-06-01 at 09:42 -0400, Etienne Goyer wrote:
> Marco Colombo wrote:
> > On Tue, 2005-05-31 at 11:46 -0700, Jules Agee wrote:
> >>Seconded.
> >>info-cyrus is the only list I'm subscribed to that allows posting by
> >>non-subscribers. Maybe it&#x
ut still posting with my usual one. This allows me to implement a local
redistribution list (just an alias, actually) to reach all people
interested (i.e. the cyrus admins). Should the admins change, all I have
to touch is the local list. I have about 30 lists set up
On Tue, 2005-05-31 at 09:59 -0400, Joseph Brennan wrote:
>
> --On Tuesday, May 31, 2005 11:47 AM +0200 Marco Colombo <[EMAIL PROTECTED]>
> wrote:
>
> > Server-side global content-based filtering is silly, unless of course
> > it's your (private) server.
d by a remote (weaker) one is negligible.
.TM.
--
/ / /
/ / / Marco Colombo
___/ ___ / / Technical Manager
/ / / ESI s.r.l.
_/ _/ _/ [EMAIL PROTECTED]
---
Cyrus Home Page: htt
think of any reason why those "occasional e-mail
jumps through the hoop" should ever change the Sender: header. But I'm
all for a List-Id: header if Sender: is not enough/good for most uses.
Just my 0.02c.
.TM.
--
/ / /
/ / / Marco Colombo
___/ ___ / / Techn
On Wed, 2005-05-11 at 14:38 +0200, Marco Colombo wrote:
[...]
> for user in users:
> mesgs = check_one(user)
> if mesgs:
> print "user %s has %d messages." % (user, len(check_one(user)))
^^
t;user3")
for user in users:
mesgs = check_one(user)
if mesgs:
print "user %s has %d messages." % (user, len(check_one(user)))
You can do the same in Perl of course. And moving messages around should
be possible too, for your "daily auto-archiving".
.TM.
a value). Most users won't notice, and runaway
(or malicious) cases have a predictable limitation.
.TM.
--
/ / /
/ / / Marco Colombo
___/ ___ / / Technical Manager
/ / / ESI s.r.l.
_/ _/ _/ [EMAIL P
Rob Siemborski wrote:
On Mon, 14 Mar 2005, Marco Colombo wrote:
Now, can you claim conformance to RFC 2831 if you're using /dev/urandom?
Does the fact that your cyrus server is heavily used fall under those
"particular circumstances"? Or is it normal operations, instead?
What
Rob Siemborski wrote:
On Fri, 11 Mar 2005, Marco Colombo wrote:
Ok technically speaking SSL/TLS is not part of SASL. But the two are
related. Maybe I'm biased by the fact that most of the connections I see
are SSL+plaintext. So I was referring to SSL keys actually.
Sure, or, say, kerberos
ld have to ask Ken).
.TM.
--
/ / /
/ / / Marco Colombo
___/ ___ / / Technical Manager
/ / / ESI s.r.l.
_/ _/ _/ [EMAIL PROTECTED]
---
Cyrus Home Page: http://asg.web.cmu.edu/c
il/linux/kernel/0208.2/0347.html
and the whole thread (both previous and following mails). Yes, the idea
of userspace /dev/urandom is not new. :-)
Years ago I've played with /dev/random stuff. The result was this
project: http://freshmeat.net/projects/random_tools/
AFAIK, no one uses it, and it's unm
ri, 04 Mar 2005, Marco Colombo wrote:
You do want to use /dev/random for your session keys. _They_ are
likely going to attack your session keys, not your master key. The whole
point is to guess as many bits as possible of the kernel PRNG state.
Which, in a Cyrus server, won't be helpful since th
are
generating a 8192-bit key out of /dev/urandom, the attacker needs only
to try 2^4096 possible combinations, not 2^8192. Usually the kernel pool
is large enough (and can be enlarged at run time in modern Linux kernels).
--
/ / /
/ / /
ppy users. Most
commercial softwares do not offer the same amount of options.
.TM.
--
/ / /
/ / / Marco Colombo
___/ ___ / / Technical Manager
/ / / ESI s.r.l.
_/ _/ _/
might help, tho.
.TM.
--
/ / /
/ / / Marco Colombo
___/ ___ / / Technical Manager
/ / / ESI s.r.l.
_/ _/ _/ [EMAIL PROTECTED]
---
Cyrus Home Page: http://asg.web.cmu.edu/cyrus
Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.ed
Kevin P. Fleming wrote:
Marco Colombo wrote:
What field is that, exaclty? v3 extension?
I'm not sure... it's in the OpenSSL headers files as
"NID_pkcs9_emailAddress".
Oh, I know nothing of OpenSSL API. It seems too me (but I'm not sure)
it's the emailAddress attrib
any data) is unique.
BTW, I've used EXTERNAL myself, but only for lmtp, and to identify
servers. And I used an internal CA. CN was server name, and I'm
pretty sure there's no other cert with that CN data.
.TM.
--
/ / /
authentication (you need
to set it up - the defaul "preauthentication" based on Unix permissions
of the local socket won't do of course) and authorization (the MTA needs
write access to all mailboxes).
.TM.
--
/ / /
/ / / Marc
multiple instances of any SMTP server (e.g. sendmail), all of them
delivering mail via LMTP to a single server running Cyrus. Cleaner, much
more efficent and scalable, IMHO.
.TM.
--
/ / /
/ / / Marco Colombo
oes all the local processing (aliases to name one thing),
and ends up with one or more local mailboxes to deliver the message to.
The message along with the list of mailboxes is handed to cyrus.
Assistance much appreciated. I would like to get this set-up to work :-).
Thanks
Mike
.TM.
--
_
o correctly format your message for 80 cols if you
append this single-line statement in the end?] (sorry couldn't resist) B-)
>
> ---
> Cyrus Home Page: http://asg.web.cmu.edu/cyrus
> Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu
> List Archives/Info: http://asg.web.cm
yrus
> Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu
> List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
>
.TM.
--
/ / /
/ / / Marco Colombo
___/ ___ / / Technical Manager
/ / / ESI s.r.l.
_/ _/ _/
On Fri, 28 Mar 2003, John Alton Tamplin wrote:
> Marco Colombo wrote:
>
> >2) the old cyradm binary, from a 2.0.16 installation, never crashes.
> >(that made me turn to the client side instead of the server side)
> >The old binaries were compiled vs. SASL v.1.5.26 (sh
nd fixes) has been tested on both a Red Hat
Linux 7.3 and 8.0. The SASL library has been compiled by me and upgraded
to 2.1.12 on both systems.
8) I haven't made any further investigation since I know very little of
SASL itself. I think that, if this isn't a known bug, I&#
is needed. If it does harm on other (non GCC)
recent compilers, I don't know.
.TM.
--
/ / /
/ / / Marco Colombo
___/ ___ / / Technical Manager
/ / / ESI s.r.l.
_/ _/ _/ [EMAIL PROTECTED]
different archs
in the past (1.6.x), when the mailbox file was just a text file.
But maybe I'm wrong.
TIA,
.TM.
--
/ / /
/ / / Marco Colombo
___/ ___ / / Technical Manager
/ / /
; lm INBOX
> localhost.localdomain> lm user.luca
> user.luca (\HasChildren)
> localhost.localdomain>
$ cyradm --authz marco --user cyrus localhost
Password:
devel.ESI> lm
INBOX (\HasChildren) INBOX.test2 (\HasNoChildren)
INBOX.test (\HasNoChildren)
devel.
rary files (or both).
Anyway, the problem could be:
- wrong Berkeley DB (vendor package) version;
- Berkeley DB installed in some non standard location (like /usr/BerkeleyDB);
- missing -devel packages (in Red Hat, for example), as you stated.
.TM.
--
_
On Fri, 14 Dec 2001, Eranga Udesh wrote:
> Hi All,
>
> With further investigation I managed to shortlist the file systems that I
> can (as I hope) in this environment. Now the problem is to coose the correct
> one. I will publish the list, so if anybody know their prons and crons,
> please advis
run isn't that loaded, I've never bothered to try noatime. And yes,
I've blindly followed instruction and set -S - so take all the above
as completely untested with cyrus)
.TM.
--
/ / /
/ / / Marco Colombo
___/ ___ / / Technical Manager
/ / / ESI s.r.l.
_/ _/ _/ [EMAIL PROTECTED]
affect service.
is it mounted with -o noatime ?
.TM.
--
/ / /
/ / / Marco Colombo
___/ ___ / / Technical Manager
/ / / ESI s.r.l.
_/ _/ _/ [EMAIL PROTECTED]
to PLAIN. If
this is your case, the only way to enable PLAIN is to have the client
use setup a SSL/TLS connection before authentication. Sendmail offers
PLAIN only *after* a successful STARTTLS.
.TM.
--
/ / /
/ / /
cyrus 11736 Aug 6 15:20 /etc/shadow
I've used both the pwcheck and the above solution successfully.
.TM.
--
/ / /
/ / / Marco Colombo
___/ ___ / / Technical Manager
On 9 Aug 2001, Julio Sanchez Fernandez wrote:
> Marco Colombo <[EMAIL PROTECTED]> writes:
>
> > because that's the right place to use SASL. Despite of PAM not being
> > a replacement for SASL, of course. I think that OpenLDAP requirement
> > for a modular,
On Thu, 9 Aug 2001, Devdas Bhagat wrote:
> On Thu, 09 Aug 2001, Marco Colombo spewed into the ether:
>
> > BTW, if really OpenLDAP 2 is build on SASL, you can't really get rid
> > of it. You'll have an IMAPD -> LDAP -> SASL (for authentication of
> > the
On Thu, 9 Aug 2001, Devdas Bhagat wrote:
> On Thu, 09 Aug 2001, Marco Colombo spewed into the ether:
>
> > This is a completely different issue. David Wright is proposing to
> > *remove* SASL from Cyrus IMAPd in favor of a PAM-only solution, and
> > I was answering to h
On Wed, 8 Aug 2001, Devdas Bhagat wrote:
> On Wed, 08 Aug 2001, Marco Colombo spewed into the ether:
>
> > And BTW, why don't you remove SASL from OpenLDAP, instead? You're just
> > asking CMU people to remove SASL from their Cyrus IMAPD so that
> > Open
rypted channel) or
X.509 client certs, ala HTTP. But in the end SASL lets me do that anyway,
and I guess that in the future, when IPSec/IPv6 are widely deployed,
we'll just ask the network layer to provide enough security, with no
need for another security layer on top of it.
Anyway, SASL i
12 (no time to debug now).
.TM.
--
/ / /
/ / / Marco Colombo
___/ ___ / / Technical Manager
/ / / ESI s.r.l.
_/ _/ _/ [EMAIL PROTECTED]
u can find a paragraph on that, but I admin
I've missed it myself at first, and I've made the same mistake.
.TM.
--
/ / /
/ / / Marco Colombo
___/ ___ / / Technical Manager
/ / / ESI s.r.l.
_/ _/ _/ [EMAIL PROTECTED]
box here). Feel free to use/modify the code.
This won't avoid mail loops (two hosts exchanging mail for each other
postmaster, both running Cyrus which rejects messages). But I'm starting
to think that's a sendmail bug, that lets the bare NLs, CRs, or NULs
thru without re
; > syslog(LOG_ERR, "no entry in /etc/passwd for %s",
> > CYRUS_USER); return -1;
> > }
> > uid = p->pw_uid;
> > +gid = p->pw_gid;
> > -return setuid(uid);
> &g
eadableSASLFile') this one did not work
(of course not, the m4 variable name is confDONT_BLAME_SENDMAIL)
> 4.
> LOCAL_CONFIG
> DontBlameSendmail=GroupReadableSASLFile
(close, just the missing O... the preferred way should be the define above)
>
> Olaf
> Marco Pirovano
> Universita' Bocconi
> Area Sistemi Informatici e Telematici
> Via Balilla, 18 20136 Milano - Italy
> E-mail: [EMAIL PROTECTED]
> Phone: +39 02 5836.3173 Fax: +39 02 5836.3160
>
(being < 1Km away)
B-)
.TM.
--
/ / /
/ / / Marco Colombo
___/ ___ / / Technical Manager
/ / / ESI s.r.l.
_/ _/ _/ [EMAIL PROTECTED]
practice.
See also:
http://asg.web.cmu.edu/cyrus/ag.html
(I can't find a way to reach this document from http://asg.web.cmu.edu/cyrus,
but there's a link in the doc directory of the source distribution).
.TM.
--
____/ / /
/ / / Ma
sDFMnqA@/:|SmXz, E=\r\n,
S=EnvFromL, R=EnvToL/HdrToL, T=DNS/RFC822/X-Unix,
A=FILE /var/imap/socket/lmtp
.TM.
--
/ / /
/ / / Marco Colombo
___/ ___ / / Technical Manager
60 matches
Mail list logo
