RE: [vchkpw] Re: Ucspi-ssl?

Andrea Riela Wed, 14 Jan 2004 11:11:48 -0800

Peter Palmreuther wrote:
> If you don't find any error logs about vchkpw failed to write
> data to 'open-smtp' insert a 'strace' or similar behind
> ssl-listener and let it log all file open/read/write actions.
> You should see the error code, and maybe even a short note
> printed by vchkpw, why it failed to finish it's work.


Could you send me an example?
Something like 'strace openssl s_client -connect 127.0.0.1:995'?

> Maybe a permission problem? Is ssl-listener or vchkpw not
> started as 'root' or 'vpopmail' (or whatever your vpopmail
> user is named)???

My /home/vpopmail/etc:

observe# ls -la
total 10
drwxr-xr-x  2 root      wheel    512 Jan 14 17:40 .
drwxr-xr-x  8 root      wheel    512 Jan 12 01:10 ..
-rw-r--r--  1 root      wheel     25 Jan 12 12:13 inc_deps
-rw-r--r--  1 root      wheel     34 Jan 12 12:13 lib_deps
-rw-r--r--  1 vpopmail  vchkpw     0 Jan 14 17:40 open-smtp
-rw-r--r--  1 root      wheel      0 Jan 12 01:39 open-smtp.lock
-rw-r--r--  1 root      wheel    454 Jan 12 01:07 tcp.smtp
-rw-r--r--  1 vpopmail  vchkpw  2352 Jan 14 17:40 tcp.smtp.cdb
-rw-r--r--  1 vpopmail  vchkpw  1107 Jan 12 01:09 vlimits.default

After a connection via pop3-ssl, I've this /home/vpopmail/etc:

observe# ls -la
total 10
drwxr-xr-x  2 root      wheel    512 Jan 14 19:03 .
drwxr-xr-x  8 root      wheel    512 Jan 12 01:10 ..
-rw-r--r--  1 root      wheel     25 Jan 12 12:13 inc_deps
-rw-r--r--  1 root      wheel     34 Jan 12 12:13 lib_deps
-rw-r--r--  1 vpopmail  vchkpw     0 Jan 14 18:40 open-smtp
-rw-r--r--  1 root      wheel      0 Jan 14 19:03 open-smtp.lock
-rw-r--r--  1 root      wheel      0 Jan 14 19:03 open-smtp.tmp.4634
-rw-r--r--  1 root      wheel    454 Jan 12 01:07 tcp.smtp
-rw-r--r--  1 vpopmail  vchkpw  2352 Jan 14 18:40 tcp.smtp.cdb
-rw-r--r--  1 vpopmail  vchkpw  1107 Jan 12 01:09 vlimits.default

And the open-smtp is blank (and roaming doesn't work).

My pstree:
 | | |-+- 04259 root supervise qmail-pop3s 
 | | | \--- 01717 root /usr/local/bin/sslserver -v -R -H -l 0 0 995
/var/qmail/
 | | \-+- 32362 root supervise log 
 | |   \--- 20434 qmaill multilog t /var/log/qmail/pop3s

My runscript:

    I    run                                                          Row 1
Col 1    7:08  Ctrl-K H for help
#!/bin/sh

CAFILE="/usr/local/ssl/certs/pop3s.cert"
CERTFILE="/usr/local/ssl/certs/pop3s.cert"
KEYFILE="/usr/local/ssl/certs/pop3s.key"
DHFILE="/usr/local/ssl/certs/dh1024.pem"
export CAFILE CERTFILE KEYFILE DHFILE

exec /usr/local/bin/softlimit -m 3800000 \
/usr/local/bin/sslserver -v -R -H -l 0 0 995 /var/qmail/bin/qmail-popup \
nesys.it /home/vpopmail/bin/vchkpw /var/qmail/bin/qmail-pop3d Maildir 2>&1


Thanks for all
Regards
Andrea

RE: [vchkpw] Re: Ucspi-ssl?

Reply via email to