Jens & Josh,
Thanks a ton for all your help. I pieced together everything and was
able to make tls & chkuser happy by doing the following:
running qmail-smtp as the vpopmail user
changing ownership of /var/qmail/control/servercert.pem to
qmaild.vpopmail (440)
compiled chkuser2 patch without the uid/gid switching
My logging issues were due to not having generated the cdb files in
/etc/tcprules.d (tcp.qmail-smtp.cdb); once I created these files the
logging started working right away. Looks like everything else was
simple a permissions problem. This was a lot harder to figure out
without logging. Once I got logging working correctly the problem made
itself obvious.
Thanks again for all your help.
Matt
Jens Ott - intergenia AG wrote:
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Matt Kane schrieb:
Quoting Joshua Megerman <[EMAIL PROTECTED]>:
I don't have it enabled, and I have no problems running qmail-smtpd as
vpopmail:vchkpw using tcpserver flags (-u vpopmail -g vchkpw). Which TLS
patch set are you using?
I am using the Gentoo ebuild and I have read all the negative
information reguarding the state of the ebuild but as I am new to Gentoo
and qmail I thought it would be a good route for me. As such, I'm not
to sure how to answer the TLS patch question.
I do believe I've ran my issue down to a permissions problem. When I
run qmail-smtpd as the vpopmail user & group chkuser works but TLS does
not. The opposite happens when it is ran as the qmail user. I have
edited /etc/group and added qmaild to the vpopmail group and vpopmail to
the qmaild group (qmail-smtpd was set to run as ${QMAILDUID} by default)
but that did not fix the problem.
The issue I'm experiencing is compounded by the fact that I'm running
qmail-smtpd with chkuser on port 2525 so as not to affect users on the
standard port. I have been thus far unable to make logging of the
second service work so I can't tell what file(s) are being permission
restricted.
If you're running default-setup in gentoo:
mkdir /service/$YOURSERVICENAME/log
and create a file
/service/$YOURSERVICENAME/log/run
with the following contents
- -------- SNIP ------------
#!/bin/sh
# Gentoo Startup script for qmail's SMTP daemon (logging)
# $Header:
# /home/cvsroot/gentoo-x86/net-mail/qmail/files/run-qmailsmtpdlog,v 1.1
# 2003/11/30 11:32:06 robbat2 Exp $
SERVICE=smtp
source /var/qmail/bin/qmail-config-system && \
exec /usr/bin/setuidgid qmaill /usr/bin/multilog \
${LOG_OPTS} ${LOG_DEST}2
- ----------- SNAP --------------
make it executable (chmod +x) and you'll have your log in
/var/log/qmail/qmail-smtpd2/current
If anyone has any suggestions as to what file permissions I could check
out, I'm all ears. Thanks again for all your help Josh.
Maybe try "chmod g+s /var/vpopmail/bin/vchkpw"
Matt
----------------------------------------------------------------
This message was sent using IMP, the Internet Messaging Program.
- --
Jens Ott
Leiter Operations
intergenia Webhosting AG
Daimlerstr. 9-11
50354 Hürth
Tel. : +49 2233 612 503
Fax : +49 2233 612 513
Mail : [EMAIL PROTECTED]
GPG-Fingerprint: D190 09C6 FCDF D0B4 3A44 FB6E 440E C024 7E27 ACCF
http://www.intergenia.de
Vorstand:
Andreas Niehaus - Frank Gross - Jochen Berger - Oliver Drifthaus
Dr. Stephan Göbel - Thomas Strohe
Aufsichtsratsvorsitz: Claudius Schmalschläger
Gerichtsstand: HRB Köln 58428 - Umsatzsteuer-ID: DE216740823
Bankverbindung: Sparkasse Waldkirchen
BLZ: 740 512 30 - Kto. Nr.: 919 85 65
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.4 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
iD8DBQFGUxkPRA7AJH4nrM8RAnJHAKCVmjqViYbsf9yiYsfpP9N7TUBSdwCgiEO3
kIL90NDLRTLWU+vJA/oR+Q8=
=gpXB
-----END PGP SIGNATURE-----
