Wonderful, thanks James, that worked great for me. I had
to bump softlimit up to 3000000 before it would work. I'm
on linux, maybe mine takes more memory for some reason.
I'm a little unclear to how softlimit works though, I mean
I know what it does, but is that limit a total for all
processes? The reason I ask is because I bumped it up
enough to get things to work, but if I have multiple
people connect, which would start multiple copies of
stunnel, am I going to hit the limit again? Do I need to
set softlimit up high enough so that 20 copies of stunnel
can run?
Thanks again,
Dave
-----Original Message-----
From: James [mailto:[EMAIL PROTECTED]]
Sent: Saturday, January 27, 2001 8:52 PM
To: Hubbard, David
Cc: [EMAIL PROTECTED]
Subject: Re: vpopmail and stunnel issue?
I have found out how to do this, just now. I don't run stunnel in daemon
mode. I use tcpserver. Here is the line I use to start it.
exec /usr/local/bin/softlimit -m 1000000 \
/usr/local/bin/tcpserver -R -H -D -c 100 -v \
-u vpopmail -g vchkpw 0 pop3s /usr/local/sbin/stunnel -T -p
/usr/local/etc/stunnel.pem -l /var/qmail/bin/qmail-popup -- qmail-popup
mail.oregonfast.net /usr/local/vpopmail/bin/vchkpw
/var/qmail/bin/qmail-pop3d Maildir 2>&1
You will of course need to change the mail server name, and the paths to
vchkpw and your PEM file.
Works like a charm.
Hubbard, David writes:
> Hi all,
> I'm not sure which list this would be most appropriate for so
> I'm starting here.
>
> If you're on this list then I'm sure you're familiar with the vpopmail
> package, you know that it has the ability to allow temporary
> relaying after someone authenticates with pop3. I'm trying to do
> that with SSL encrypted POP3 provided by stunnel, everything
> already works great with default tcpserver served pop3 authenticating
> through vchkpw..
>
> Since things work fine with standard POP3 with connections
> served by tcpserver, I'm guessing that tcpserver must be setting
> up some environment variable with the remove host's IP address
> that vchkpw can extract out and put into the relaying file. Stunnel
> must not do this. I do have stunnel set with the -T option which
> supposedly makes the connection provided to qmail-popup look
> like it's coming from the actual host and not stunnel. This definitely
> works because my syslog does record who comes in via SSL-POP3
> correctly, vchkpw just doesn't set the relay file.
>
> Has anyone run into this problem or know where I should start
> looking to fix it?
>
> Thanks,
>
> Dave
>
