HOWTO: qmail vpopmail courier-imap qmail-scanner etc (NEW)

[slim]

Anyone have feedback on qmail-scanner-1.23-r3 with perl-5.8.4-r1?

I foolishly emerged perl-5.8.4-r1 without reading the change log close enough, and I can confirm that's a really bad idea. It broke qmail-scanner since /usr/bin/suidperl has been removed. Now that I've downgraded back to 5.8.4, I'm sitting here reflecting on the error of my ways. I don't think I'll have a chance to test on that server for 2 weeks, so maybe someone could test the new combo and post the results.

[radulucian]

same situation and same problem here.

i am now downgrading perl and libperl too, since i cannot afford to test it further with my mail server practically down.

if anyone has a chance to solve it in a reasonable manner please post your conclusions and you fix here.

[radulucian]

also, i now see that

[catalinux]

[petterg]

[petterg]

A question for those of you who are using qmail-scanner 1.23:
How is it working?
I tried it, with the result that incomming mail carying a header "X-Spam-Status:No..." passed unchecked through the scanner. This also happened if it carryed virus!
Also, random mails came through unchecked!
Are you experiencing any of these problemes?

How did you set it up?
If you're running with clamav, are you running clamd as the clamav, qscand or vpopmail user?

[stripe]

well I made it to work, but I think it is bug as a cow...

I use:
perl-5.8.4-r1
qmail-1.03-r13
qmail-scanner-1.23-r3
spamassassin-2.64


so after doing emerge -u world and restarting the daemons I noticed that the mailserver stopped to send the emails with some "qq problem"

after half a day tracing the log files, I figured how to run out from that and here are my issues:

a) UID+GID qscand, under which is supposed qmail-scanner to run, is absolutely useless and misleading. qmailscanner runs still under qmaild, so you have to set back again the dir and file permissions recursively, typically by:

[radulucian]

thank you stripe.
tonight i will try the procedures you described on both my servers and check back here to confirm.

[stripe]

ok, try it.... If you´ll be successful, I´m gonna to write a bug report about qmail-scanner-1.23-r3.ebuild thus I really don´t have an idea why would be qmail-scanner run as qsand, when in fact is called by qmaild and therefore must be accessible for qmaild
_________________
Sick of computers? Well, Czech girls and beer solve it! Trust me

[radulucian]

regarding the permissions problem you might want to see neonsamurai answer here : https://forums.gentoo.org/viewtopic.php?t=221865&highlight=qmailscannerqueue

and if you have problems with spamassassin not working anymore you might want to consider this: https://forums.gentoo.org/viewtopic.php?t=217463&highlight=qmailscannerqueue

maybe sabrex could take these new changes into consideration and edit the howto to reflect the current situation.

[stripe]

[tecknojunky]

I have a server to rebuild. I think I'm finally going to give Debian a try.

This is the second time I do an update that creates major problems for the whole network (in this case, no email server).

You got to admit, Gentoo as a long way to go to make it into enterprises. I don't know which of the Perl or qmail-scanner maintainers is to blame, but someone did not do his job properly for allowing them to reach stable status together.

I had enough and I'm now seriously thinking to use a REAL distro, not one made by script kiddies.

PS. I may sound crude and harsh? You think I should apologize? In your dreams. I don't appreciate the pressures I get because I relied on the works made by amateurs and incompetents, so let me get some steam out.
_________________
(7 of 9) Installing star-trek/species-8.4.7.2::talax.

[radulucian]

techknojunky, i am a little embarassed by your message. you should be too as you came out of nowhere on this thread to criticize a distribution you are not able to understand even after more than 900 posts on these forums.

you should proceed to work for your new debian server and stop poluting forum threads with off-topic messages.
the reason i am using (and i will keep use) gentoo is exactly the fact that this forum helps me solve things EVERY SINGLE TIME i have a minor problem like this one. and i wish you good luck in getting the same prompt response with you next distribution.

and remember: we are very fortunate to be able to choose among this many excelent distributions, so you should be happy every time you are able to make such a choice.

best regards.
radu

[stripe]

offtopic: agreed, I used Slackware 8.1 in the past and it used to work well from installation without much changes. any other software compilaton which was not included on CD was breaknecking and without much possibility to upgrade the package. anyway package upgrade was much rather hell, then a peaceful operation. plus the init scripts, resp. rc. scripts are the piece of disgust..... if I striked to a problem, I was completely helpless. I don´ know what is Slack 10 about now, but you can visit it´s homesite to confirm it´s "support".

so that´she reason I moved from Slackware and I´m happy with Gentoo since that time. OK sometime it´s released a breaknecking ebuild, but therefore you have this forums you can turn around. That´s the point.

PS: thanks this forums and structure of Gentoo I think I have understood linux to the level I can friendly go with and therefore I can do proudly my job, eg. I´m able to satisfy what really the company I work wishes ....
_________________
Sick of computers? Well, Czech girls and beer solve it! Trust me

[tecknojunky]

[defined]

[petterg]

[nianderson]

If i had a large group of users relying on a mail server I was maintaining I would have an identical one that is used for uprage testing. regardless of what OS its running things sometimes break. So it sounds more like your mistake than the maintainers. Yeah i get frustrated when i make the same mistake ( i have before and im sure i will again) seriously go install xp sp2 something breaks you cus microsoft things break its inevitable the only thing you can do is to be a smart admin and run identical boxen when there are critical services envolved.


that said. im on a fresh install i hope all the answers are here

[nianderson]

I had to echo "hostname.domain.tld" > /var/qmail/control/me to be able to send mail

[nianderson]

I ran /usr/portage/distfiles/qmail-scanner-1.16/contrib/test_instal -doit after adding RECIP="me@mydomain.com" on line 94 and I got 3 of the 4 test messages
someone want to help me tune this up? and figure out whats up?
l

[nianderson]

[radulucian]

there is a typo there. if you use the setuidgid solution then you should change the qmail-scanner-queue-pl to qmail-scanner-queue.pl. the difference is the .pl instead of -pl at the end.
however, i am using the qmail-scanner-queue wrapper (in both tcp.smtp and the conf file) and it works ok.

[sucarino]

people!

after several headaches and a few tricks you correctly explain here I finally have a well robusted mail server

i'm just now a little afraid of next updates, i read your former posts....

but i still need your help... i have a minor problem here. Everytime a tried to smtp-auth from an external network, the mail client delay exactly 5 seconds to auth and then the message is accepted and sended. This is what i have in my mail.log files everytime i tried:


Sep 18 18:11:24 mail vpopmail[2479]: vchkpw-smtp: password fail fredo@hold***.com:***.**.61.171
Sep 18 18:11:29 mail vpopmail[2481]: vchkpw-smtp: (PLAIN) login success fredo@hold***.com:***.**.61.171
Sep 18 18:11:48 mail vpopmail[2479]: vchkpw-smtp: password fail fredo@hold***.com:***.**.61.171
Sep 18 18:11:53 mail vpopmail[2481]: vchkpw-smtp: (PLAIN) login success fredo@hold***.com:***.**.61.171

other thing, smtp-auth accept my e-mails using TLS or not. so is letting me authenticate even when the session is not encrypted.

Is that correct? Any ideas?

thanx

Frodo

[nianderson]

[stripe]

My apologies, there is type mistake, of course it is qmail-scanner-queue.pl.

The wrapper works too, but anyway setgiduid within cron job (at least for me) must be used, anyway the file qmail-scanner-queue-version.txt is made with mask 0600 and root:root permissions which causes qmail from the work.
_________________
Sick of computers? Well, Czech girls and beer solve it! Trust me