-- fresh netqmail 1.05, patched with qmail-toaster-0.7b3.patch and chkuser-0.7b2.mysql.patch (after upgrading vpopmail)
-- vpopmail 5.4.6 with mysql support (upgraded from 5.4.0)
-- qmail-scanner 1.2.3 (with spamassassin, no anti-virus)
I modified conf-mysql as to point to my libmysqlclient.a as necessary, and didn't run into any compilation errors. Mail service is functioning, but chkuser doesn't seem to be doing anything at all. My supervise script for SMTP looks like this:
QMAILDUID=`id -u qmaild`
NOFILESGID=`id -g qmaild`
MAXSMTPD=`cat /var/qmail/control/concurrencyincoming`
LOCAL=`head -1 /var/qmail/control/me`
if [ -z "$QMAILDUID" -o -z "$NOFILESGID" -o -z "$MAXSMTPD" -o -z "$LOCAL" ]; then
echo QMAILDUID, NOFILESGID, MAXSMTPD, or LOCAL is unset in
echo /var/qmail/supervise/qmail-smtpd/run
exit 1
fi
if [ ! -f /var/qmail/control/rcpthosts ]; then
echo "No /var/qmail/control/rcpthosts!"
echo "Refusing to start SMTP listener because it'll create an open relay"
exit 1
fi
exec /usr/local/bin/softlimit -m 12000000 \
/usr/local/bin/tcpserver -v -R -l "$LOCAL" -x /etc/tcp.smtp.cdb -c "$MAXSMTPD" \
-u "$QMAILDUID" -g "$NOFILESGID" 0 smtp \
/var/qmail/bin/qmail-smtpd \
/home/vpopmail/bin/vchkpw /bin/true 2>&1
As I mentioned, I'm using vpopmail with account information stored in MySQL, but for the default files that QmailAdmin creates (the .qmail-default files in each domain). All .qmail-default files read
| /home/vpopmail/bin/vdelivermail '' bounce-no-mailbox
as it should be, from what I understand from this list's archives.
The mfcheck patch, at least, is definitely working. If I telnet to port 25 on my machine, and enter
mail from: [EMAIL PROTECTED]
I get an immediate "553 sorry, your envelope sender domain must exist (#5.7.1)"
However, if I enter a valid mail from: and an _invalid_ rcpt, e.g.
mail from: [EMAIL PROTECTED] 250 ok rcpt to: [EMAIL PROTECTED] 250 ok
I get the 250 response, rather than the "550 sorry, no mailbox here by that name (#5.1.1 - chkusr)" I expect.
I've tried adding recordio to the SMTP script, but then I just get basically a transcript of the telnet session the same way I would see it on the command line. Nothing informative. POP3 logins, which should also be using vchkpw, work just fine.
At least nothing's broken, but my system's still accepting mail for non-existent addresses. I don't know where else to look to troubleshoot this problem! The only piece of this (still very confusing to me) puzzle that I haven't fully investigated is Qmail-Scanner's use of the QMAILQUEUE environment variable to set it to run qmail-scanner.pl, but that's because I had the impression it would only be invoked _after_ the mail had already passed the point of rejection by chkuser.
Can anyone offer any suggestions on how to troubleshoot this? Am I missing something obvious?
Cheers, spud.
------------------------------------------------------------------- a.h.s. boy spud(at)nothingness.org "as yes is to if,love is to yes" http://www.nothingness.org/ -------------------------------------------------------------------
