View previous topic :: View next topic |
Author |
Message |
blubbi Guru
Joined: 27 Apr 2003 Posts: 564 Location: Halle (Saale), Germany
|
Posted: Tue Apr 27, 2004 8:53 am Post subject: |
|
|
SMTP-AUTH
Okay, here's a bit info on how it works.
http://www.fehcom.de/qmail/smtpauth.html
Relay-ctrl (SMTP-After-POP)
It is quite self explaining.
Any user must first check his incoming mail with POP3 or IMAP, if this is permitted, the user is for a period of time allowed to relay outgoing mail throug the server he made the pop3/imap connection to. This is accomplished by remembering the POP3 clients' IP. Every SMTP request for relaying outgoing mail is checked against the list containg the POP3 clients IP address. Is the IP address in that list the SMTP connection is granted, if the IP is not in the list, the SMTP client is not allowed to relay. The list of IP's is periodically cleaned of old adresses, so relaying is not longer permitted as necessary.
TCPRules (ucspi-tcp)
For infos on how TCPRules (ucspi-tcp) work have a closer look here http://cr.yp.to/ucspi-tcp.html _________________ -->Please add [solved] to the initial post's subject line if you feel your problem is resolved.
-->Help answer the unanswered
http://olausson.de |
|
Back to top |
|
|
Naspe Guru
Joined: 10 Dec 2003 Posts: 321 Location: Genova - Italy
|
Posted: Tue Apr 27, 2004 1:59 pm Post subject: |
|
|
Now it all working (i think) 1 more question...
I have installed everything as the guide says but don't know what to do know to configure the antispam (SpamAssasins, pryzor, razor, dcc...)
What i have to do now? _________________ God Is Real... Unless Declared As Integer...
Provoca Il Più Bravo... Morirai Come Uno Schiavo!!!
Hai Evocato Il Tuono!!! Ora Raccogli Tempesta!!! |
|
Back to top |
|
|
blubbi Guru
Joined: 27 Apr 2003 Posts: 564 Location: Halle (Saale), Germany
|
Posted: Tue Apr 27, 2004 3:14 pm Post subject: |
|
|
Take a closer look on my howto. For the link, see my signature.
btw. Is SMTP-AUTH working?
Which howto did you use? _________________ -->Please add [solved] to the initial post's subject line if you feel your problem is resolved.
-->Help answer the unanswered
http://olausson.de |
|
Back to top |
|
|
Naspe Guru
Joined: 10 Dec 2003 Posts: 321 Location: Genova - Italy
|
Posted: Wed Apr 28, 2004 9:00 am Post subject: |
|
|
Tnx a lot for your help. I'll try this evening to follow your guide.
Quote: | Is SMTP-AUTH working? |
did u mean this thing?
> nano -w /var/qmail/control/conf-smtpd
QMAIL_SMTP_POST="mail.mydomain.com /var/vpopmail/bin/vchkpw /bin/true"
> svc -t /var/qmail/supervise/qmail-smtpd
> chmod u+s /var/vpopmail/bin/vchkpw
I think it is all working... I'm able to send messages to everyone...
Quote: | Which howto did you use? |
I used this howto (the sabrex one ) _________________ God Is Real... Unless Declared As Integer...
Provoca Il Più Bravo... Morirai Come Uno Schiavo!!!
Hai Evocato Il Tuono!!! Ora Raccogli Tempesta!!! |
|
Back to top |
|
|
blubbi Guru
Joined: 27 Apr 2003 Posts: 564 Location: Halle (Saale), Germany
|
Posted: Wed Apr 28, 2004 3:14 pm Post subject: |
|
|
Naspe wrote: | Tnx a lot for your help. I'll try this evening to follow your guide.
Quote: | Is SMTP-AUTH working? |
did u mean this thing?
> nano -w /var/qmail/control/conf-smtpd
QMAIL_SMTP_POST="mail.mydomain.com /var/vpopmail/bin/vchkpw /bin/true"
> svc -t /var/qmail/supervise/qmail-smtpd
> chmod u+s /var/vpopmail/bin/vchkpw
I think it is all working... I'm able to send messages to everyone...
|
Are you sure you are not an open relay ?? _________________ -->Please add [solved] to the initial post's subject line if you feel your problem is resolved.
-->Help answer the unanswered
http://olausson.de |
|
Back to top |
|
|
Skywacker n00b
Joined: 23 Jan 2004 Posts: 72 Location: Missouri
|
Posted: Fri Apr 30, 2004 3:59 pm Post subject: |
|
|
Anyone else noticing F-prot missing viruses if they are zipped? I've checked and it is set by default to scan inside archives.
Also, anyone know how to make Spamassassin show how it gives a certain score per email? I've seen examples on the web where people can see an email got .2 points for one test, 1.4 for another, etc.
Thanks,
Skywacker |
|
Back to top |
|
|
Skywacker n00b
Joined: 23 Jan 2004 Posts: 72 Location: Missouri
|
Posted: Fri Apr 30, 2004 5:27 pm Post subject: |
|
|
Update-
1)qmail-scanner-queue.pl has an option to force_unzip. I changed this to 1 and will inform if this solved qmail-scanner/f-prot missing viruses when they were zipped.
2)In /usr/share/spamassassin/local.cf, these two lines are not working -
report_header 1
use_terse_report 1
I even tried report_header 0 to put the spam report details into the body, but it did not work.
3)Hopefully someone can tell help me with this #2, but for a quick fix I just did a -
spamc -r < mailmessage
and it gave me the details of which tests were triggered.
-Skywacker |
|
Back to top |
|
|
Naspe Guru
Joined: 10 Dec 2003 Posts: 321 Location: Genova - Italy
|
Posted: Mon May 03, 2004 12:28 pm Post subject: |
|
|
Sincerly i'm not sure if i am or not an open rely... May be i lost something... I followed this guide (the first post of this topic...) is it ok?
Btw now i have a big problem.
2 days ago my server shutted down for power failure...
When i started it again i found a big big problem: can no more log into my server to see the emails... No 1 can login neither with squirrelmail or outlook. I tryed to log in with qmailadmin and i can do it... Can't understand wy i can't login with squirrelmail/email-client...
Any suggestions? All services semms to be up and running...
svscan is up...
courier-imapd is up...
courier-pop3d is up...
mysqld is up...
Did i forget anything?
Tnx a lot for your support guyz _________________ God Is Real... Unless Declared As Integer...
Provoca Il Più Bravo... Morirai Come Uno Schiavo!!!
Hai Evocato Il Tuono!!! Ora Raccogli Tempesta!!! |
|
Back to top |
|
|
Skywacker n00b
Joined: 23 Jan 2004 Posts: 72 Location: Missouri
|
Posted: Mon May 03, 2004 2:38 pm Post subject: |
|
|
First off I recommend studying (not just reading) http://www.lifewithqmail.org/lwq.html
Check things first locally on the server, then from outside.
Network card up and running?
Can you ping to your local network?
Can you ping outside your network?
Did you look in /var/log/messages for boot problems?
Send a test message to your hotmail account (or any outside email account you can check that is independent of this mail server.) On the command line type: #mail joe@hotmail.com
Cntrl-D sends the message. Any errors?
Telnet localhost 110 (to check Pop3).
USER test@accountonyourserver.com
PASS yourpass
Any errors?
What does "svstat /service/* " show? It should return something like this-
/service/qmail-send: up (pid 5707) 3597801 seconds
/service/qmail-smtpd: up (pid 5701) 3597801 seconds
Remember also that Outlook and other email clients may be using Pop3 or IMAP where as Squirrelmail always uses IMAP.
Turn on Debugging information in /etc/courier-imap/pop3d or imapd: DEBUG_LOGIN=2
Then restart courier: /etc/init.d/courier-imapd restart
and .../courier-pop3d restart
Look in /var/log/messages. If this file's gotten too big for you, you need to setup logrotate. Search the forums...
Hope this can get you started. I didn't actually explain how to fix anything cuz we need more information.
-Skywacker |
|
Back to top |
|
|
Naspe Guru
Joined: 10 Dec 2003 Posts: 321 Location: Genova - Italy
|
Posted: Mon May 03, 2004 7:15 pm Post subject: |
|
|
Tnx a lot for your help. I made all checks u suggested:
The server is fully accesible from outside.
I can ping everything
Thera are no boot problems (it seems).
I can send email messages to everyone using my server.
If i send a message from an hotmail account to my server there are no errors.
With telnet i get -ERR Login Failed.
svstat is ok, everything up and running.
Tryed Outlook with both IMAP and POP3... Always auth err...
Turned on DEBUG 2... I can see the pass clearly... (may be it is the problem? In mysql the pass is encrypted...)
I think there is something wrong with the auth process . May be i forgot to start anything? Or may be a file is fucked up?
Tnx again for your help!!! _________________ God Is Real... Unless Declared As Integer...
Provoca Il Più Bravo... Morirai Come Uno Schiavo!!!
Hai Evocato Il Tuono!!! Ora Raccogli Tempesta!!! |
|
Back to top |
|
|
Skywacker n00b
Joined: 23 Jan 2004 Posts: 72 Location: Missouri
|
Posted: Mon May 03, 2004 8:26 pm Post subject: |
|
|
Are you using the full email address for the username?
username= user@fullemailaddress.com
password= yourpass |
|
Back to top |
|
|
Naspe Guru
Joined: 10 Dec 2003 Posts: 321 Location: Genova - Italy
|
Posted: Mon May 03, 2004 8:44 pm Post subject: |
|
|
Found the problem
I started authdaemond. Now everything works fine. That f@#%&*g daemon wasn't on default runlevel and i didn't see that it isn't working...
Now i have to check not to be an open relay server and how to crypt passwords... _________________ God Is Real... Unless Declared As Integer...
Provoca Il Più Bravo... Morirai Come Uno Schiavo!!!
Hai Evocato Il Tuono!!! Ora Raccogli Tempesta!!! |
|
Back to top |
|
|
Naspe Guru
Joined: 10 Dec 2003 Posts: 321 Location: Genova - Italy
|
Posted: Wed May 05, 2004 10:28 am Post subject: |
|
|
As i said i followed this guide to set up mi server.
Is the smtp-auth enabled? How can i test if i am an open rely or not? _________________ God Is Real... Unless Declared As Integer...
Provoca Il Più Bravo... Morirai Come Uno Schiavo!!!
Hai Evocato Il Tuono!!! Ora Raccogli Tempesta!!! |
|
Back to top |
|
|
Skywacker n00b
Joined: 23 Jan 2004 Posts: 72 Location: Missouri
|
Posted: Wed May 05, 2004 12:49 pm Post subject: |
|
|
google on how to test if you are an open relay. tons of free services that will check your site for you in a matter of seconds.
as far as encrypting passwords: yes they are encrypted in the mysql database. but with pop3/imap they are sent from the client in clear text. You need to use ssl for imap/pop3 to encrypt the password/message when sending. I don't have this setup so I can't comment.
There is a 3rd howto mentioned in the middle part of this thread. It's not sabrex and it's not blubbi's. It will get both smtp-auth and ssl working for you.
-Sky |
|
Back to top |
|
|
Pardok n00b
Joined: 30 Mar 2004 Posts: 29
|
Posted: Thu May 06, 2004 3:07 am Post subject: |
|
|
Blubbi,
Wanted to say that I tried your How-To again and now everything works perfectly!
Thank you for the wonderful document and info. |
|
Back to top |
|
|
MadOtis Apprentice
Joined: 14 Dec 2002 Posts: 163 Location: Georgia
|
Posted: Thu May 06, 2004 5:55 pm Post subject: |
|
|
I've a problem that I haven't seen answered here... I've followed the instructions in the original post. All seems well except one problem...
I can't seem to read any mail with anything other than Mutt! Mutt shows all new e-mail just fine. But, if I use Evolution or Sylpheed, I get no new e-mail messages displayed in my inbox (for POP3), or in my folders (using IMAP).
What do I need to post that would help diagnose the problem?
Thanks in advance! |
|
Back to top |
|
|
blubbi Guru
Joined: 27 Apr 2003 Posts: 564 Location: Halle (Saale), Germany
|
Posted: Fri May 07, 2004 12:59 am Post subject: |
|
|
MadOtis wrote: | I've a problem that I haven't seen answered here... I've followed the instructions in the original post. All seems well except one problem...
I can't seem to read any mail with anything other than Mutt! Mutt shows all new e-mail just fine. But, if I use Evolution or Sylpheed, I get no new e-mail messages displayed in my inbox (for POP3), or in my folders (using IMAP).
What do I need to post that would help diagnose the problem?
Thanks in advance! |
Mmmh, seems as if you don't have installed vpopmail? Are you using qmail without vpopmail?
I don't know how Evolution or Sylpheed works. Are they checking ~/.maildir or do they connect to the pop3 server ? _________________ -->Please add [solved] to the initial post's subject line if you feel your problem is resolved.
-->Help answer the unanswered
http://olausson.de |
|
Back to top |
|
|
MadOtis Apprentice
Joined: 14 Dec 2002 Posts: 163 Location: Georgia
|
Posted: Fri May 07, 2004 1:15 am Post subject: |
|
|
Yes, I've double checked... vpopmail is installed and running. Courier-imap is using vchkpw for both IMAP and POP3 as well, and they are authenticating the virtual users just fine.
I CAN configure Evolution to use local maildir, and in that mode, it shows the new mail. But, I'm setting this up primarily for remote retrieval of personal and some friend's email, so, I really need the IMAP or POP3 interfaces to work. |
|
Back to top |
|
|
blubbi Guru
Joined: 27 Apr 2003 Posts: 564 Location: Halle (Saale), Germany
|
Posted: Fri May 07, 2004 10:30 am Post subject: |
|
|
try to connect via telnet to pop3 or imap ... take a look in the logs and tell us what you see. Turn debugging on for imap ond pop3d. _________________ -->Please add [solved] to the initial post's subject line if you feel your problem is resolved.
-->Help answer the unanswered
http://olausson.de |
|
Back to top |
|
|
MadOtis Apprentice
Joined: 14 Dec 2002 Posts: 163 Location: Georgia
|
Posted: Fri May 07, 2004 11:17 am Post subject: |
|
|
I'm REALLY new to setting this stuff up... how do I turn on debugging for Courier? I know how for Postfix, but not Courier.
Again, thanks in advance. |
|
Back to top |
|
|
blubbi Guru
Joined: 27 Apr 2003 Posts: 564 Location: Halle (Saale), Germany
|
Posted: Fri May 07, 2004 4:31 pm Post subject: |
|
|
MadOtis wrote: | I'm REALLY new to setting this stuff up... how do I turn on debugging for Courier? I know how for Postfix, but not Courier.
Again, thanks in advance. |
in /etc/courier-imap/imapd and /etc/courier-imap/pop3d change the lines to this
Code: | ##NAME: DEBUG_LOGIN:0
#
# Dump additional login diagnostics to syslog
#
# DEBUG_LOGIN=0 - turn off login debugging
# DEBUG_LOGIN=1 - turn on login debugging
# DEBUG_LOGIN=2 - turn on login debugging + log passwords too
DEBUG_LOGIN=2 |
Thats it.
Now
Code: | tail -f /var/log/mail.log |
Now you can see what's going on _________________ -->Please add [solved] to the initial post's subject line if you feel your problem is resolved.
-->Help answer the unanswered
http://olausson.de |
|
Back to top |
|
|
sabrex n00b
Joined: 28 Nov 2003 Posts: 45
|
Posted: Mon May 10, 2004 7:08 am Post subject: |
|
|
I have posted a new HOWTO. It is basically the same, but eliminates the Maildir / .maildir problems associated with older vpopmail versions. The new HOWTO also uses the latest versions of all available components of this setup (masked or not), and thus it may potentially be less stable.
In practice, however, I have found it far more capable and robust than this older configuration.
The new HOWTO is located at https://forums.gentoo.org/viewtopic.php?t=171499 |
|
Back to top |
|
|
rjreb n00b
Joined: 19 Aug 2003 Posts: 40
|
Posted: Fri May 14, 2004 2:28 am Post subject: |
|
|
I may have missed this after my initial installation I got this
Quote: | Failure while attempting to remove_line() the locals file
Error. Failed to add domain to assign file
Error: Could not update file |
The solution is to:
touch /var/qmail/control/locals |
|
Back to top |
|
|
rjreb n00b
Joined: 19 Aug 2003 Posts: 40
|
Posted: Fri May 14, 2004 5:28 am Post subject: Re: SquirrelMail fails... |
|
|
slott_hansen wrote: | I've been reading all postings on this forum regarding Squirrelmail - I think and not one of them helped me solve my problem
I have setup everything according to the 10 steps in the begining of this forum and when ever I connect to my mail server using Squirrelmail I get the following error message (FEJL = Error - it's danish language):
Code: | FEJL:
ERROR : Connection dropped by imap-server. |
I tried to access the mail account using telnet to port 110 with the same user - and it works. I also tried establishing an imap connection from my outlook - but again it fails.
[/code] |
Try changing /etc/conf.d/imapd from
MAILDIR=Maildir
to
MAILDIR=.maildir |
|
Back to top |
|
|
arachn1d Guru
Joined: 15 Apr 2004 Posts: 369 Location: /var/www/wtf-dude.com lynx wtf-dude.com
|
Posted: Wed Jun 16, 2004 1:20 am Post subject: |
|
|
i get this error
Code: | /etc/init.d/svscan stsvscan: warning: unable to stat qmail-smtpd: file does not exist
|
_________________ WTF?? Dude... Visit wtf?? |
|
Back to top |
|
|
|