Re: [toaster] queue compromised by spammer using smtp auth

2008-09-09 Thread Mark Walker
g aquirrelmail. How can I > prevent such occurence in > > the future and best way to have such exploits > controlled. I deleted all > > the mails from the queue using qmhandle. Plesse > respond. Panic state. > > > > > > > > > > > > > > > > __ Información de NOD32, revisión 3427 > (20080909) __ > > > > Este mensaje ha sido analizado con NOD32 antivirus > system > > http://www.nod32.com > > > >

Re: [toaster] complex passwords

2008-09-09 Thread Tom Collins
On Sep 9, 2008, at 9:04 AM, Bill Shupp wrote: On Sep 9, 2008, at 2:04 AM, Mark Walker wrote: Pls let me know how to enable complex passwords for my users using the toaster. Any way to integrate this with the Active directory environment so that users can have one password for email/network

Re: [toaster] recovering from dos/mailbomb ...

2008-09-09 Thread Tom Collins
On Sep 9, 2008, at 3:20 PM, Mike Schleif wrote: However, clamd continues to intermittently grab all cpu and peg the system. I prepended everything in simcontrol with "###" and redid cdb's. Still, something clamd/spamd ??? Do you have a customer trying to email a huge file? Check the clamav

Re: [toaster] clamav: 0.90.2 ==> 0.94 ???

2008-09-09 Thread Tren Blackburn
This would be a case where you should understand how supervise works. Check the manual pages and documentation. You should understand the tools you're using. Starting/stopping supervised programs and adding/removing them should be something you know to do. if you read the toaster instructions y

Re: [toaster] clamav: 0.90.2 ==> 0.94 ???

2008-09-09 Thread Shane Chrisp
On Tue, 2008-09-09 at 21:55 -0500, Mike Schleif wrote: svc -d /service/clamd svc -d /service/clamd and to restart replace the -d with -u > * Tren Blackburn <[EMAIL PROTECTED]> [2008:09:09:19:11:39-0700] scribed: > > The patch is required if you're running clamav via supervise. If no > > newer pa

Re: [toaster] clamav: 0.90.2 ==> 0.94 ???

2008-09-09 Thread Mike Schleif
* Tren Blackburn <[EMAIL PROTECTED]> [2008:09:09:19:11:39-0700] scribed: > The patch is required if you're running clamav via supervise. If no > newer patch is available then stop running it via supervise and > install the latest version as per the clamav website. Yes, we are running it under supe

Re: [toaster] clamav: 0.90.2 ==> 0.94 ???

2008-09-09 Thread Tren Blackburn
I don't run debian so I can't answer on that. I build clamav directly from the source that is published via the clamav project. Running someone elses binaries/builds is asking for trouble sometimes since you don't always get vanilla in the package. Just my two cents. As far as I know however as

Re: [toaster] clamav: 0.90.2 ==> 0.94 ???

2008-09-09 Thread Shane Chrisp
On Tue, 2008-09-09 at 21:48 -0500, Mike Schleif wrote: I havnt used the patch on any newer versions of clamav as its only for config options anyway. Simply download and compile the new version and check the upgrade notes for .93 about the changes to some of the config option, change them in your c

Re: [toaster] clamav: 0.90.2 ==> 0.94 ???

2008-09-09 Thread Mike Schleif
We are running Debian exclusively. Recently, I discovered deb http://volatile.debian.org/debian-volatile etch/volatile main This allows me to keep up with clamav on my personal servers. Is there some pathing issues with that clamav and toaster? What do you think? * Tren Blackburn <[EMAIL

Re: [toaster] clamav: 0.90.2 ==> 0.94 ???

2008-09-09 Thread Tren Blackburn
The patch is required if you're running clamav via supervise. If no newer patch is available then stop running it via supervise and install the latest version as per the clamav website. Regards, Tren - Original Message - From: Mike Schleif <[EMAIL PROTECTED]> To: shupp-toaster mailing

[toaster] clamav: 0.90.2 ==> 0.94 ???

2008-09-09 Thread Mike Schleif
Please, advise. What is required to upgrade my toasters (many !!!) from clamav 0.90.2, which is the latest in Bill's Linux Qmail Toaster v. 0.9.2, to clamav "WARNING: Local version: 0.90.2 Recommended version: 0.94" ??? According to here: we _require_

Re: [toaster] recovering from dos/mailbomb ...

2008-09-09 Thread Mike Schleif
Thank you. What about _patching_ clamav? http://shupp.org/patches/clamav-0.90.2.patch It's been quite awhile since that version. I am no patch expert; and I do not want to risk breaking my toasters by upgrading clamav without necessary patching. What am I missing? * Edvin Seferovic <[EMA

Re: [toaster] recovering from dos/mailbomb ...

2008-09-09 Thread John Harmon
Mike Schleif wrote: Last week, a toaster that has been running flawlessly for many years was overwhelmed by maybe a million messages to bogus users in a couple hours. Several days later, qmailctl queue still showed nearly a million queued messages, ostensibly bounces directed primarily at yahoo.

RE: [toaster] recovering from dos/mailbomb ...

2008-09-09 Thread Edvin Seferovic
>What am I missing? >What else to check? Update the clamav ! I had similar symptoms... to confirm you could strace the clamd process and look if it tries to read some clamav-db entries and hangs there... Regards, E:S

[toaster] recovering from dos/mailbomb ...

2008-09-09 Thread Mike Schleif
Last week, a toaster that has been running flawlessly for many years was overwhelmed by maybe a million messages to bogus users in a couple hours. Several days later, qmailctl queue still showed nearly a million queued messages, ostensibly bounces directed primarily at yahoo.com. Apparently, yahoo

RE: [toaster] complex passwords

2008-09-09 Thread Krzysztof Gorski
Many months ago I have tested Fedora Directory Server as LDAP backend for vpopmail. I used instructions from vpopmail.ldap file in source directory, special schema for vpopmail and some web pages from Internet. I integrated address book also. It worked quite fine. I also tested AD backend, but I

Re: [toaster] complex passwords

2008-09-09 Thread Kristofer
Bill Shupp wrote: On Sep 9, 2008, at 2:04 AM, Mark Walker wrote: Hi, Pls let me know how to enable complex passwords for my users using the toaster. Any way to integrate this with the Active directory environment so that users can have one password for email/network access. This is somethi

Re: [toaster] complex passwords

2008-09-09 Thread Bill Shupp
On Sep 9, 2008, at 2:04 AM, Mark Walker wrote: Hi, Pls let me know how to enable complex passwords for my users using the toaster. Any way to integrate this with the Active directory environment so that users can have one password for email/network access. This is something that could b

Re: [toaster] queue compromised by spammer using smtp auth

2008-09-09 Thread Jeff Koch
You cannot control user's who use weak passwords, let passwords get lost and stolen. Just have to clean up after them. Try using tools like isoglog and qmailmrtg7 so you can spot anomalies quicker. You can also try running squirrelmail under SSL. At 01:45 AM 9/9/2008, you wrote: Hi, Tod

Re: [toaster] queue compromised by spammer using smtp auth

2008-09-09 Thread Hugo Pastorino
the queue using qmhandle. Plesse respond. Panic state. __ Información de NOD32, revisión 3427 (20080909) __ Este mensaje ha sido analizado con NOD32 antivirus system http://www.nod32.com

[toaster] complex passwords

2008-09-09 Thread Mark Walker
Hi, Pls let me know how to enable complex passwords for my users using the toaster. Any way to integrate this with the Active directory environment so that users can have one password for email/network access. Thank you Mark