Gentoo Forums
Gentoo Forums
Gentoo Forums
Quick Search: in
HOWTO: qmail vpopmail courier-imap qmail-scanner etc (NEW)
View unanswered posts
View posts from last 24 hours

Goto page Previous  1, 2, 3 ... 19, 20, 21 ... 23, 24, 25  Next  
Reply to topic    Gentoo Forums Forum Index Documentation, Tips & Tricks
View previous topic :: View next topic  
Author Message
Skywacker
n00b
n00b


Joined: 23 Jan 2004
Posts: 72
Location: Missouri

PostPosted: Wed Jan 19, 2005 7:17 am    Post subject: Reply with quote

Help,
I can smtp-auth while on my LAN, meaning my pc at work can send mail to everyone in and outside of my virtual domains.

BUT, squirrelmail barfs if I try to email outside of my virtual domains.

Code:
Requested action not taken: mailbox name not allowed
Server replied: 553 sorry, that domain isn't in my list of allowed rcpthosts (#5.7.1)


squirrelmail sends to people on my virtual domains just fine.

For reference:
I have mailserver with 3 virtual domains. All 4 have their own IP address (aliases on 1 NIC).

Squirrelmail is running on the same machine. Squirrelmail is set to use SMTP.

my /etc/tcp.smtp has undergone MANY alterations. Yes I update tcprules everytime I change things. here it is:
Code:


:allow

127.0.0.1:allow,RELAYCLIENT="",RBLSMTPD="",QMAILQUEUE="/var/qmail/bin/qmail-queue"
128.252.77.206:allow,RELAYCLIENT="",RBLSMTPD="",QMAILQUEUE="/var/qmail/bin/qmail-queue"
128.252.77.215:allow,RELAYCLIENT="",RBLSMTPD="",QMAILQUEUE="/var/qmail/bin/qmail-queue"
128.252.77.164:allow,RELAYCLIENT="",RBLSMTPD="",QMAILQUEUE="/var/qmail/bin/qmail-queue"

# Qmail-Scanner enabled (virus only) for mail from local network, relay allowed
#128.252.77.:allow,RELAYCLIENT="",RBLSMTPD="",QMAILQUEUE="/var/qmail/bin/qmail-scanner-queue.pl"

# Qmail-Scanner enabled (virus and spam) for mail from external internet, relay denied
:allow,QMAILQUEUE="/var/qmail/bin/qmail-scanner-queue.pl"


Any suggestions?

Thanks for any help. I HAVE to get this solved tomorrow before half my department is traveling and need remote access to their mail.

-skywacker
Back to top
View user's profile Send private message
Gatak
Tux's lil' helper
Tux's lil' helper


Joined: 04 Jan 2004
Posts: 126

PostPosted: Wed Jan 19, 2005 7:23 am    Post subject: Reply with quote

You could use SMTP auth with squirrelmail too.
Back to top
View user's profile Send private message
petterg
Guru
Guru


Joined: 25 Mar 2004
Posts: 500
Location: Oslo, Norway

PostPosted: Wed Jan 19, 2005 8:05 am    Post subject: Reply with quote

Skywacker wrote:
Help,
I can smtp-auth while on my LAN, meaning my pc at work can send mail to everyone in and outside of my virtual domains.

BUT, squirrelmail barfs if I try to email outside of my virtual domains.


Looks like your server doesn't read the tcprules.
Also it looks like you've used some never packages than the guide.
So I believe the server is looking for tcprules in the /etc/tcprules.d folder, and you're talking about /etc/tcp.*. Guess you've been playing with the wrong files!
Back to top
View user's profile Send private message
petterg
Guru
Guru


Joined: 25 Mar 2004
Posts: 500
Location: Oslo, Norway

PostPosted: Wed Jan 19, 2005 8:14 am    Post subject: Reply with quote

cybris wrote:
I'm just using kmail to test the settings on the localhost at the moment eventually i will be using the mail sever externally. Still having problems tho and Kmail is setup up properly with the settings metioned above. i'm still getting authorization failed (#5.7.0).


Try Telnet localhost 25 and do
mail from: alocaluser@alocaldomain.tld
rcpt to: aNONElocaluser@NOTalocaldomain.tld
data
<body of message here>
<carriage return>
.

If you get error on this you may have same problem as Gatak (read my post a few minutes before this one)

cybris wrote:
I'm stuck I don't know what else to try unless i just redo the whole box but I really don't want to do that cause KDE took 3 days to compile :(

Thats why I never install any DE on my servers. KDE also needs to be recompiled quite often when doing emerge world. For home server I rathe pull a Pentium 2 out of some garbage container than use my home pc.
Back to top
View user's profile Send private message
Skywacker
n00b
n00b


Joined: 23 Jan 2004
Posts: 72
Location: Missouri

PostPosted: Wed Jan 19, 2005 5:16 pm    Post subject: Reply with quote

Gatak wrote:
You could use SMTP auth with squirrelmail too.


how?
Back to top
View user's profile Send private message
Gatak
Tux's lil' helper
Tux's lil' helper


Joined: 04 Jan 2004
Posts: 126

PostPosted: Wed Jan 19, 2005 5:25 pm    Post subject: Reply with quote

Skywacker wrote:
Gatak wrote:
You could use SMTP auth with squirrelmail too.

how?

Run the configure script and go to SMTP settings. There you can change the SMTP Authentication options. You have four options: none, login, cram-md5, or digest-md5.
Code:
SMTP Settings
-------------
4.   SMTP Server           : 127.0.0.1
5.   SMTP Port             : 25
6.   POP before SMTP       : false
7.   SMTP Authentication   : login
8.   Secure SMTP (TLS)     : false

A.  Update IMAP Settings   : 127.0.0.1:8143 (courier)
H.  Hide SMTP Settings

R   Return to Main Menu
C.  Turn color off
S   Save data
Q   Quit

Command >> 7

If you have already set the hostname and port number, I can try to
automatically detect the mechanisms your SMTP server supports.
Auto-detection is *optional* - you can safely say "n" here.

Try to detect auth mechanisms? [y/N]: n

What authentication mechanism do you want to use for SMTP connections?
none - Your SMTP server does not require authorization.
login - Plaintext. If you can do better, you probably should.
cram-md5 - Slightly better than plaintext.
digest-md5 - Privacy protection - better than cram-md5.

*** YOUR SMTP SERVER MUST SUPPORT THE MECHANISM YOU CHOOSE HERE ***
If you don't understand or are unsure, you probably want "none"

none, login, cram-md5, or digest-md5 [login]:
Back to top
View user's profile Send private message
Skywacker
n00b
n00b


Joined: 23 Jan 2004
Posts: 72
Location: Missouri

PostPosted: Wed Jan 19, 2005 5:29 pm    Post subject: Reply with quote

My god, I could kiss you. I did not even see that you could go into the SMTP settings. This has totally saved my day/job.
Back to top
View user's profile Send private message
Skywacker
n00b
n00b


Joined: 23 Jan 2004
Posts: 72
Location: Missouri

PostPosted: Wed Jan 19, 2005 9:08 pm    Post subject: Reply with quote

You ever get this to work? Outlook, OE work fine. Thunderbird pauses 5 seconds because it fails the first try, but then works. Eudora fails outright.

thunderbird auth's look like this:
Code:

Jan 19 14:18:56 mailserver vpopmail[26868]: vchkpw-smtp: password fail user@email.com:xxx.xxx.xxx.xxx
Jan 19 14:19:01 mailserver vpopmail[26870]: vchkpw-smtp: (PLAIN) login success user@email.com:xxx.xxx.xxx.xxx

it fails, but then works.

outlook just works:
Code:

Jan 19 12:47:57 mailserver vpopmail[24561]: vchkpw-smtp: (PLAIN) login success user@email.com:xxx.xxx.xxx.xxx


eudora fails:
Code:

Jan 19 14:25:02 mailserver vpopmail[27214]: vchkpw-smtp: password fail user@email.com:xxx.xxx.xxx.xxx



Crymson wrote:
HOO-RAH! I found the problem with smtp-auth. Sabrex was half-right. SMTP-AUTH *was* working, kinda. As it turns out, with the newest release of vpopmail (5.4.0) which he has us install in this HOWTO, plain, and login authentication is supported. CRAM-MD5 is *NOT*. The only reason I'm having a problem, and noone else seems to be, is because Eudora (my fav winbloz client) uses CRAM-MD5 for authentication. Many of the program for linux use LOGIN. After searching the inter7 website for hours on end, I found this:

inter7.com wrote:
IF USING SMTP AUTH PATCH TO QMAIL-SMTPD

* This release of vpopmail includes fixes for vchkpw that may break
certain SMTP AUTH implementations. If SMTP AUTH fails after
installing vpopmail 5.4.x, you may need to use the
qmail-smtpd-auth-0.4.2 patch included in the contrib directory.

* If you do switch to the 0.4.2 SMTP AUTH patch, you may need to update
your qmail-smtpd run file (the first parameter to qmail-smtpd should
now be the path to vchkpw and not the hostname).


Now, the said patch file is where the guy said it should be, but I have *NO* clue how to install it. In fact, I believe there's a newer version. 0.4.3 now- at least according to http://www.fehcom.de/qmail/smtpauth.html

So here's my question, since I've been brought up the craptastic world of windows. How the hell do I install this patch? It's talking about re-making qmail. Since I used the ebuild, is this even possible?

Maybe someone with lots of smarts can educate me on how to install this patch, which would allow CRAM-MD5 auth to work with the current ver of vpopmail.

TIA




Thanks for your help,
Skywacker
[/code]
Back to top
View user's profile Send private message
sucarino
n00b
n00b


Joined: 20 Aug 2004
Posts: 32
Location: San Jose, Costa Rica

PostPosted: Thu Jan 20, 2005 3:40 am    Post subject: Reply with quote

Skywacker wrote:
You ever get this to work? Outlook, OE work fine. Thunderbird pauses 5 seconds because it fails the first try, but then works. Eudora fails outright.

thunderbird auth's look like this:
Code:

Jan 19 14:18:56 mailserver vpopmail[26868]: vchkpw-smtp: password fail user@email.com:xxx.xxx.xxx.xxx
Jan 19 14:19:01 mailserver vpopmail[26870]: vchkpw-smtp: (PLAIN) login success user@email.com:xxx.xxx.xxx.xxx

it fails, but then works.

eudora fails:
Code:

Jan 19 14:25:02 mailserver vpopmail[27214]: vchkpw-smtp: password fail user@email.com:xxx.xxx.xxx.xxx




Sky, have a look at https://forums.gentoo.org/viewtopic.php?t=262841&. The solution works very well for me.
Back to top
View user's profile Send private message
Skywacker
n00b
n00b


Joined: 23 Jan 2004
Posts: 72
Location: Missouri

PostPosted: Thu Jan 20, 2005 3:51 pm    Post subject: Reply with quote

Thanks for the link. However I could not qmail ebuild to unpack nicely, so I found a different fix.

I turned off Cram-MD5 in Eudora by adding this line to the eudora.ini file:
Code:
SMTPAuthBanished="CRAM-MD5"


I only have one user who uses Eudora, so this works for me. The other thread may be a better fix for a large number of users running Eudora. Thunderbird has a few second delay because of the same problem. I'll see if I can get it fixed.

-Skywacker
Back to top
View user's profile Send private message
seriousmoose
n00b
n00b


Joined: 07 Nov 2002
Posts: 39

PostPosted: Thu Jan 20, 2005 5:23 pm    Post subject: Reply with quote

skywacker, try filing a bug report in bugs.gentoo.org seeing if they can't add another use variable to turn that define on and off.

Otherwise, it should be straightforward...

ebuild ...qmail.ebuild unpack
[edit the files/install the patch]
ebuild ...qmail.ebuild install

of course, once you do that, you will probably want to ... quickpkg it so you don't have to go through that again, if you ever run in to problems. You can also bzip the source up if you are really paranoid :)
Back to top
View user's profile Send private message
kswtch
n00b
n00b


Joined: 07 Aug 2003
Posts: 47
Location: Düsseldorf, Germany

PostPosted: Thu Jan 20, 2005 5:55 pm    Post subject: Reply with quote

Can anyone tell me how to use procmail with this qmail/vpopmail setup?
I want to use fetchmail to get some mails from other accounts and use procmail to deliver them in different folders. It's working fine for the .maildir/ in my users home folder, but not with the vpopmail one in /var/vpopmail/domains/<domain>/<user>/.maildir/

-kswtch
Back to top
View user's profile Send private message
superscotty19
n00b
n00b


Joined: 20 Jan 2005
Posts: 2

PostPosted: Thu Jan 20, 2005 9:01 pm    Post subject: Reply with quote

Hello everyone!

I am a (very) recent convert to Gentoo, and from what I've seen, I think we're going to have a *beautiful* relationship :-D

I have followed this tutorial, alongside the original, to a tee. I am now at the stage of testing the completed system but, as suggested in this tutorial, I am having problems a few steps back, stemming from right here:

Quote:
install qmail-scanner. for this to work, you may have to force the install of maildrop.

Code:
> emerge /usr/portage/net-mail/maildrop/maildrop-1.5.3-r1.ebuild
> emerge /usr/portage/net-mail/qmail-scanner/qmail-scanner-1.16-r2.ebuild

Please log into the "qmaild" account and run
/var/qmail/bin/qmail-scanner-queue.pl -g

If you see the error "Can't do setuid", or "Permission denied", then
refer to the FAQ.

(e.g. "setuidgid qmaild "/var/qmail/bin/qmail-scanner-queue.pl -g"
or "su qmaild -c "/var/qmail/bin/qmail-scanner-queue.pl -g")




The error I am getting when I run:
Code:
setuidgid qmaild "/var/qmail/bin/qmail-scanner-queue.pl -g

is:
Code:
perlscanner: generate new DB file from /var/spool/qmailscan/quarantine-attachments.txt
X-Qmail-Scanner-1.24st:() cannot open for write /var/spool/qmailscan/quarantine-attachments.db.tmp - Permission Denied


And when I run:
Code:
su qmaild -c "/var/qmail/bin/qmail-scanner-queue.pl -g

Abolutely nothing happens.

So I guess this is a good(?) thing because I was warned this might happened. Now, the tutorial refers to a FAQ for the solution, but I don't know what FAQ it's referring to, and even after scouring Google, I'm still getting nothing. I'm sure this is a simple problem, but don't know what to do (and I'm so close to being done!) Could someone please help me?

Thanks!
-Scott.
Back to top
View user's profile Send private message
superscotty19
n00b
n00b


Joined: 20 Jan 2005
Posts: 2

PostPosted: Thu Jan 20, 2005 10:19 pm    Post subject: Reply with quote

Looks like I've found the solution (and another great tutorial to boot!)

http://www.olausson.de/content/view/13/40/

-Scott.
Back to top
View user's profile Send private message
seriousmoose
n00b
n00b


Joined: 07 Nov 2002
Posts: 39

PostPosted: Thu Jan 20, 2005 11:41 pm    Post subject: Reply with quote

awesome...

You can get around the section in his article about the qmail-scanner by running:

setuidgid qscand qmail-scanner-queue -g
setuidgid qscand qmail-scanner-queue -z

This (combined with a few other things) will make it so you don't have to chown your dirs. Well, you probably should follow his example perfect :)
Back to top
View user's profile Send private message
Gatak
Tux's lil' helper
Tux's lil' helper


Joined: 04 Jan 2004
Posts: 126

PostPosted: Fri Jan 21, 2005 2:19 pm    Post subject: A pure Courier replacement for qmail+vpopmail Reply with quote

I was using the qmail setup that this thread is a guide to. I always thought it a little odd that so many programs are needed to make email work.

So, I removed qmail, qmail-scanner, vpopmail and courier-imap and installed mail-mta/courier instead. It contains a full SMTP and IMAP/POP server and has MySQL support built in. It handles virtual domains and aliases easy. Not to mention courier uses less resources than qmail =) Another benefit is that you can use SMTP AUTH with various crypto schemes like CRAM-MD5. Qmail+vpopmail was limited in this respect.

You can get help from #courier on irc.freenode.net. There is a Gentoo guide at http://www.brianandsara.net/gentoo/docs/courier-vmail-howto.php and another at http://perlstalker.amigo.net/courier/ (very good resource!).

Spamassassin integration is very easy too. There is a script called vuser that makes it easier to add users and aliases to your MySQL database. It is not difficult to do manually though.

Good Luck!

ps.
You need to remove/uninstall vpopmail from your system before installing courier.
ds.
Back to top
View user's profile Send private message
seriousmoose
n00b
n00b


Joined: 07 Nov 2002
Posts: 39

PostPosted: Sun Jan 23, 2005 4:56 pm    Post subject: Reply with quote

now that my system works, I think I'll leave it until it breaks (prob never because I won't be doing any sync/update for a while)... when it breaks, I'll try courier. good to know though :)
Back to top
View user's profile Send private message
cybris
n00b
n00b


Joined: 15 Jan 2005
Posts: 14

PostPosted: Mon Jan 24, 2005 1:04 am    Post subject: Reply with quote

Ok well I re-installed gentoo from the start fresh install nothing else on it. Followed the how to straight thru. I can send email locally just find but when I try to send it externally to yahoo. i get that stupid error that server isn't in my allowed list of rcpthosts.

now i setup my tcp.smtp rules just as the guide has it. it looks exactly the same. and no I don't even have a /etc/tcprules.d directory so I know I'm using the correct tcprules file.

How do I setup my tcp.smtp file so i can send mail to places like yahoo, msn, and other domains without making a long list in my rcpthosts file.
Back to top
View user's profile Send private message
Gatak
Tux's lil' helper
Tux's lil' helper


Joined: 04 Jan 2004
Posts: 126

PostPosted: Mon Jan 24, 2005 1:08 am    Post subject: Reply with quote

cybris, try SMTP AUTH (plain/login) with your clients.
Back to top
View user's profile Send private message
cybris
n00b
n00b


Joined: 15 Jan 2005
Posts: 14

PostPosted: Mon Jan 24, 2005 1:59 am    Post subject: Reply with quote

nm duh I fell stupid didn't have the checkbox selected for my sever requires authentication in outlook.
Back to top
View user's profile Send private message
shadowteller
n00b
n00b


Joined: 01 Oct 2004
Posts: 27
Location: Logan, UT

PostPosted: Mon Jan 24, 2005 1:36 pm    Post subject: Re: A pure Courier replacement for qmail+vpopmail Reply with quote

Gatak wrote:
I was using the qmail setup that this thread is a guide to. I always thought it a little odd that so many programs are needed to make email work.


I did as well....so I started playing with this install type.

I was following the "brianandsara" howto and I got locked up on this
5. Setup maildir's

Code:
for every user's directory you need to change to the directory and run:
$ maildirmake .maildir
$ you need to set ownership to the uid and gid of the courier user (normally "mail")


This fails to make sense...if I change the uid to say webmaster...thenwebmaster is no longer owner of his onw directory. I mean I can make hime a member of the group users and mail. But changing his uid?

Someone ought to wrtie a good current howto for this....maybe I will once I debug my own problems....
Back to top
View user's profile Send private message
boaworm
n00b
n00b


Joined: 25 Jan 2005
Posts: 21

PostPosted: Tue Jan 25, 2005 9:29 am    Post subject: emerge sync and etc-update takes _very_ long time Reply with quote

Excellent guide, it's a setup which is quite similar to what I'm running in a production environment. Although, I have a "serious" problem.

Evertime I do an emerge sync or an etc-update, gentoo runs "find" to locate files that are updated and so on. This process takes extremely long time on a loaded email system with millions of files (emails) in /var/vpopmail/domains, because the "find" process obviously wants to look through that directory.

Have you, or anyone else, come up with a solution to remove certain paths from the etc-update and emerge sync "procedures" ?
Back to top
View user's profile Send private message
cybris
n00b
n00b


Joined: 15 Jan 2005
Posts: 14

PostPosted: Tue Jan 25, 2005 3:09 pm    Post subject: Reply with quote

thanks to everyone so much espcially petterg for his advice. I finally have a working webserver/mailserver with mysql and php. This is my first time really using Gentoo although i've used linux for awhile now. Everything is runinning smooth now :)
Back to top
View user's profile Send private message
newtonian
Guru
Guru


Joined: 19 Jan 2005
Posts: 463
Location: Hokkaido Japan

PostPosted: Sat Jan 29, 2005 4:14 pm    Post subject: SSL certificate signed by public CA Reply with quote

Hi-

I bought a cheap certificate for my domain from public CA. I installed the certificate on apache and everything works fine.

Can I use the same cert with my qmail (SMTPS) vpopmail(pop3s) setup from this tutorial?
I'm currently using these files for apache:

/etc/apache2/conf/ssl/mydomain.tld.key
/etc/apache2/conf/ssl/mydomain.tld.crt
/etc/apache2/conf/ssl/sf_issuing.crt


Cheers,
Back to top
View user's profile Send private message
petterg
Guru
Guru


Joined: 25 Mar 2004
Posts: 500
Location: Oslo, Norway

PostPosted: Mon Jan 31, 2005 11:27 pm    Post subject: Reply with quote

newtonian: I would guess you could just copy the certificate files to where the other applications are looking for it.
Back to top
View user's profile Send private message
Display posts from previous:   
Reply to topic    Gentoo Forums Forum Index Documentation, Tips & Tricks All times are GMT
Goto page Previous  1, 2, 3 ... 19, 20, 21 ... 23, 24, 25  Next
Page 20 of 25

 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum