The Qpopper list archive ending on 30 Aug 1999
Topics covered in this issue include:
1. Re: POP3 Client Sending mail..
"Charlie" <chazman at bnserve dot com>
Tue, 24 Aug 1999 08:11:03 -0600
2. how do I use4 XTNDXMIT and XTND XLIST commands?
Madhavi -Deleted- <madhavi at unx.dec dot com>
Tue, 24 Aug 1999 11:03:07 -0400
3. Server Mode and Logging
"J Peterson [System Admin]" <jay at qtm dot net>
Tue, 24 Aug 1999 14:54:27 -0400
4. qpopper and tcp wrapper
Jack Yee <jyee at sd.aonix dot com>
Tue, 24 Aug 1999 16:17:21 -0700 (PDT)
5. PoP3 wont get mail or mail not being sent
"Charlie" <chazman at bnserve dot com>
Tue, 24 Aug 1999 21:01:38 -0600
6. Alias file
dandrews at mpiua dot com
Wed, 25 Aug 1999 08:48:03 -0400
7. Re: Alias file
Gerhard Pfeiffer <gp at chlodomer.bayreuth.baynet dot de>
Wed, 25 Aug 1999 14:54:38 +0200 (MET DST)
8. recompiling qpopper
kurt <klhansen at pcis dot net>
Wed, 25 Aug 1999 08:08:56 -0500
9. Re: qpopper and tcp wrapper
Tomasz Orzechowski <tmo at apk dot net>
Wed, 25 Aug 1999 09:09:33 -0400
10. Re: Passwords
Qpopper Support <qpopper at qualcomm dot com>
Wed, 25 Aug 1999 12:17:40 -0700
11. Re: Authentication Problems
Qpopper Support <qpopper at qualcomm dot com>
Wed, 25 Aug 1999 12:36:42 -0700
12. Re: apop and email clients
Qpopper Support <qpopper at qualcomm dot com>
Wed, 25 Aug 1999 12:38:27 -0700
13. Solaris mailing list
"Asley Lugo Avila" <asley at etecsa dot cu>
Thu, 26 Aug 1999 09:35:10 -0400
14. is this a bug?
Fergal Daly <fergal at esatclear dot ie>
Thu, 26 Aug 1999 15:17:35 +0100
15. Pop Locks
Patrick Briggs <pbriggs at televar dot com>
Thu, 26 Aug 1999 08:59:04 -0700 (PDT)
16. Re: Pop Locks
Alan Brown <alan at manawatu.gen dot nz>
Fri, 27 Aug 1999 04:15:07 +1200 (NZST)
17. Vhost hack binary
"Matt Mouser" <webmaster at net-connection dot net>
Thu, 26 Aug 1999 12:25:55 -0700
18. APOP & POP3??
Glenn Zenker <gzenker at cne-odin.gsfc.nasa dot gov>
Thu, 26 Aug 1999 16:08:49 -0400 (EDT)
19. popper refuses to work !!
Tomas Carlos Hernandez <tcarlosh at netscape dot net>
26 Aug 99 21:38:34 PDT
20. Re: popper refuses to work !!
"Flavio G. Maggi" <Flavio.Maggi at bitron dot it>
Fri, 27 Aug 1999 09:23:55 +0200
21. quotas
Wayne Heming <wheming at hemnet.com dot au>
Fri, 27 Aug 1999 18:11:49 +1000
22. RE: quotas
Steven Fletcher <stevenf at shellnet.co dot uk>
Fri, 27 Aug 1999 11:16:12 +0100
23. Qpopper Help
"H.White" <whiteh at wvlc.wvnet dot edu>
Sat, 28 Aug 1999 12:02:08 +0000
24. Re: quotas
"Michael D. Sofka" <sofkam at rpi dot edu>
Fri, 27 Aug 1999 13:38:15 -0400
25. Re: quotas
"James Nelson" <james at digit.bloomnet dot com>
Fri, 27 Aug 1999 19:51:49 -0500
26. Re: quotas
Alan Brown <alan at manawatu.gen dot nz>
Sat, 28 Aug 1999 15:02:50 +1200 (NZST)
27. RE: quotas
Alan Brown <alan at manawatu.gen dot nz>
Sat, 28 Aug 1999 15:05:13 +1200 (NZST)
28. MTA
Jithender Tiwari <jtiwari at infotech.stph dot net>
Sat, 28 Aug 1999 10:00:41
29. Patch/Update
Michael Gammond <cerulean at earthlink dot net>
Sat, 28 Aug 1999 10:40:15 -0700
30. Re: Patch/Update
Carrer Yuri <yurj at dns.alfa dot it>
Sat, 28 Aug 1999 19:54:59 +0200 (MET DST)
31. Various error messages
Alan Mizrahi <alanml at cantv dot net>
Sat, 28 Aug 1999 23:31:16 -0400
32. security hole in 2.53.
LinuxBoy <linuxboy at jps dot net>
Sat, 28 Aug 1999 21:25:04 -0700
33. security patch for 2.53
LinuxBoy <linuxboy at jps dot net>
Sat, 28 Aug 1999 23:26:00 -0700
34. Re: Various error messages
Carrer Yuri <yurj at dns.alfa dot it>
Sun, 29 Aug 1999 12:18:34 +0200 (MET DST)
35. Re: security hole in 2.53.
Carrer Yuri <yurj at dns.alfa dot it>
Sun, 29 Aug 1999 12:21:15 +0200 (MET DST)
36. Re: security hole in 2.53.
"Igor S. Livshits" <igorl at life.uiuc dot edu>
Sun, 29 Aug 1999 11:09:24 -0500
37. Re: security hole in 2.53.
Alan Brown <alan at manawatu.gen dot nz>
Mon, 30 Aug 1999 04:28:09 +1200 (NZST)
38. Re: security hole in 2.53.
Carrer Yuri <yurj at dns.alfa dot it>
Sun, 29 Aug 1999 18:59:12 +0200 (MET DST)
39. Re: security hole in 2.53.
Javi Lavandeira <javilm at inlander dot es>
Sun, 29 Aug 1999 20:05:50 +0200
40. Re: security hole in 2.53.
Carrer Yuri <yurj at dns.alfa dot it>
Sun, 29 Aug 1999 23:17:38 +0200 (MET DST)
41. popper hanging
Tom Zeltwanger <tomz at ename dot com>
Sun, 29 Aug 1999 21:06:54 -0400
42. Please help me!!!!!!!!!
NightHawk <nighthawk at szonline dot net>
Mon, 30 Aug 1999 09:46:26 +0800
43. Re: security hole in 2.53.
"James Nelson" <james at digit.bloomnet dot com>
Mon, 30 Aug 1999 00:05:23 -0500
44. Re: security hole in 2.53.
Juan Enrique =?iso-8859-1?Q?Gómez?= <juanen at tpesp dot es>
Mon, 30 Aug 1999 08:06:51 +0200
45. Re: popper hanging
Carrer Yuri <yurj at dns.alfa dot it>
Mon, 30 Aug 1999 09:36:07 +0200 (MET DST)
46. don´t understand -ERR POP EOF
hazze <hazze at vh.volvo dot se>
Mon, 30 Aug 1999 10:21:18 +0200
47. Re: popper hanging
Fergal Daly <fergal at esatclear dot ie>
Mon, 30 Aug 1999 09:56:34 +0100
48. Re: popper hanging
Alan Brown <alan at manawatu.gen dot nz>
Mon, 30 Aug 1999 21:07:27 +1200 (NZST)
49. Re: popper hanging
Carrer Yuri <yurj at dns.alfa dot it>
Mon, 30 Aug 1999 11:12:24 +0200 (MET DST)
50. Re: popper hanging
Carrer Yuri <yurj at dns.alfa dot it>
Mon, 30 Aug 1999 11:00:21 +0200 (MET DST)
From: "Charlie" <chazman at bnserve dot com>
Subject: Re: POP3 Client Sending mail..
Date: Tue, 24 Aug 1999 08:11:03 -0600
David I was having the same problem last week. If you are using or upgraded
to Red Hat 6 you might want to check your sendmail.cf file look for the line
entry that starts with MLOCAL make sure that your settings are correct,
example: When I would make a change in Linuxconf it would tell me I needed
to regenerate my sendmail.cf file. If I said OK it would over write that
entry in the sendmail.cf with the wrong delivery application I am using
procmail but Linuxconf was changing the entry to use 'Deliver" instead. Let
me know if this might be the problem I will send info on how to fix it
permanently.
Charlie
-----Original Message-----
From: dandrews at mpiua dot com <dandrews at mpiua dot com>
To: Subscribers of Qpopper <qpopper at lists.pensive dot org>
Date: Tuesday, August 24, 1999 7:41 AM
Subject: POP3 Client Sending mail..
>My POP client (Outlook Express) can recieve email fine, but when I try to
>send I get this error:
>
>The message could not be sent because one of the recipients was rejected by
>the server. The rejected e-mail address was 'dandrews at mpiua dot com'. Subject
>'testing', Account: '10.255.255.225', Server: '10.255.255.225', Protocol:
>SMTP, Server Response: '550 <deandrews at mpiua dot com>... Relaying denied',
Port:
>25, Secure(SSL): No, Server Error: 550, Error Number: 0x800CCC79
>
>anyone have any ideas why SMTP isn't accepting this? I can send mail fine
>using Sendmail sitting at the Linux box.
>
>Perhaps this is not a qpopper problem but an SMTP problem and I should
>inquire elsewhere?
>
>Any help appreciated.
>
>David Andrews
>dandrews at mpiua dot com
>
>
>
>David Andrews
>PC LAN Administrator
>Ext. 5656
>*
>
>
Date: Tue, 24 Aug 1999 11:03:07 -0400
From: Madhavi -Deleted- <madhavi at unx.dec dot com>
Subject: how do I use4 XTNDXMIT and XTND XLIST commands?
--------------DB3A66115A69C47A490935CF
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
Does anybody know how to use XTND XMIT and XTND XLIST commands?
I have never used it? Is this useful?
Thanks, Madhavi
--
\\\||///
( . . )
( o )
+--------------------------oo0---0oo-----------------------------------------+
| Madhavi -Deleted- \\\||/// mail : madhavi at unx.dec dot com|
| compaq computer corporation \ / Phone:(732)-577-6190 |
| 200 Route 9 North ( . . ) Fax :(732)-577-6003 |
| Manalapan,New Jersey 07726 ( O ) |
+----------------------------------------oo0---0oo---------------------------+
--------------DB3A66115A69C47A490935CF
Content-Type: text/html; charset=us-ascii
Content-Transfer-Encoding: 7bit
<HTML>
Does anybody know how to use XTND XMIT and XTND XLIST commands?
<BR>I have never used it? Is this useful?
<BR>
Thanks, Madhavi
<PRE>--
\\\||///
( . . )
( o )
+--------------------------oo0---0oo-----------------------------------------+
| Madhavi -Deleted- \\\||/// mail : madhavi at unx.dec dot com|
| compaq computer corporation \ / Phone:(732)-577-6190 |
| 200 Route 9 North ( . . ) Fax :(732)-577-6003 |
| Manalapan,New Jersey 07726 ( O )
; |
+----------------------------------------oo0---0oo---------------------------+</PRE>
</HTML>
--------------DB3A66115A69C47A490935CF--
From: "J Peterson [System Admin]" <jay at qtm dot net>
Subject: Server Mode and Logging
Date: Tue, 24 Aug 1999 14:54:27 -0400
We're getting hammered.. how do I get this running in server mode?
Also, the cucipop daemon would send info about who checked mail when from
what IP to the /var/log/maillog - the only logging I see in qpopper is
errors being sent to the /var/log/messages .. can I get it to show me where
someone is popping in from in the maillog or even a poplog?
thanks!
From: Jack Yee <jyee at sd.aonix dot com>
Subject: qpopper and tcp wrapper
Date: Tue, 24 Aug 1999 16:17:21 -0700 (PDT)
Hi,
Has anyone successfully compiled qpopper with the addition of TCP Wrapper?
I would like to see qpopper wrapped to control access.
Thanks
-Jack
From: "Charlie" <chazman at bnserve dot com>
Subject: PoP3 wont get mail or mail not being sent
Date: Tue, 24 Aug 1999 21:01:38 -0600
Ok here is my experience! I am not a pro I just started using LINUX last
week so please do not bombard me with questions regarding anything about
LINUX or sendmail or qpopper...I am only sharing this cause it
happened to me and I fixed it..(I Hope)
After trying to setup a pop3 server I kept getting wierd errors
sometimes it would work sometimes it wouldnt, I was getting the
following errors in /var/maillog
Aug 23 17:31:18 leacounty sendmail[8120]: RAA08118: SYSERR(root): Cannot
exec /usr/bin/deliver: Permission denied
Or
Aug 21 15:57:44 leacounty sendmail[2841]: OAA01409:
to=cdeckert at leacounty dot net, ctladdr=nobody (99/99), delay=01:43:51,
xdelay=00:00:00, mailer=local, stat=Operating system error
First thing you need to figure out is what local transport app you are
using to do this first check your sendmail.cf file and check the line
that starts with MLOCAL it should look something like the line below.
Mlocal, P=/usr/bin/procmail, F=lsDFMAw5:/|@qSPfhn9, S=10/30, R /40,
T=DNS/RFC822/X-Unix,
A=procmail -Y -a $h -d $u
It may have an entry that says /usr/bin/deliver if this is the case and
your mail is not being deilvered then you probaly should be using
procmail instead. So do a locate and find procmail or deliver if you
find one but not the other that is the one you should be using
(probaly).
The problem is that everytime I made a change to the mail settings in
Linuxconf the sendmail.cf file is being rewritten by Linuxcfonf and
putting the wrong local delivery app in the sendmail.cf file on the
MLOCAL line. So My next thought was, Linixconf has to be getting the
information from somewhere, well I got lucky on this part because the
first file I looked at was the very one Linuxconf was getting the
mis-information from. I did a locate for *sendmail* and came up with a
bunch of possibilities. I just happened to get it right the first time.
so here is the file you should look for mine is in the following
directory
usr/lib/linuxconf/mailconf
the file name is localmailer.deliver.cf or localmailer.procmail.cf you
should have 1 of each my Linuxconf was using the localmailer.deliver.cf
file to re-write the sendail.cf file so all I did was cut and paste the
localmailer.procmail.cf contents into the localmailer.deliver.cf file
(make sure you delete the contents first and replace it dont just add it
to the file). Save the file and re-boot the system or restart the
service ( I havent figured out the whole KILL thing yet.
Now when you make changes in the Linuxconf utility it will put the
correct information in the MLOCAL line.
This may not be the best or onlyway to fix this problem but it is the
only way I know how to do it. As usual I am not responible for any
damage to your file system blah blah blah. I just hope it helps.
Regards
Charlie Deckert
From: dandrews at mpiua dot com
Subject: Alias file
Date: Wed, 25 Aug 1999 08:48:03 -0400
Hello all,
Can someone tell me where alias email names are stored? Im using qpopper
2.53 and Sendmail.
Thanks in advance :o)
\\\___///
\\ _ _ //
( @ @ )
+-------oOOo-(_)-oOOo----+
David Andrews
PC LAN Administrator
dandrews at mpiua dot com
*
+------------------Oooo--+
oooO ( )
( ) )/
\( (_)
(_)
Date: Wed, 25 Aug 1999 14:54:38 +0200 (MET DST)
From: Gerhard Pfeiffer <gp at chlodomer.bayreuth.baynet dot de>
Subject: Re: Alias file
Hallo,
On Wed, 25 Aug 1999 dandrews at mpiua dot com wrote:
> Can someone tell me where alias email names are stored? Im using qpopper
> 2.53 and Sendmail.
The default is /etc/aliases.
If it's not there do a "cat /etc/sendmail.conf | grep alias" and you'll
see ;-)
Maybe your sendmail.cf is in an other directory, but there it is ;)
--
Ciao,
Gerhard
Date: Wed, 25 Aug 1999 08:08:56 -0500
From: kurt <klhansen at pcis dot net>
Subject: recompiling qpopper
I finally got qpopper to allow me to telnet to it and I can do 'user
bob', asks for pass and 'pass bob' but it takes a few seconds and then
disconnects. /val/log/messages shows bad password.
I found in the faq that I could be using shadow passwords and may need
to include -DAUTH line when I compile it with path to auth file. I am
not sure which file to modify(config.h, popper.h, conf.h...)
The same thing happens when I try netscape, too.
I am using RH6 and qpopper 3.0b18
Any help would be greatly appreciated.
Kurt
Date: Wed, 25 Aug 1999 09:09:33 -0400
From: Tomasz Orzechowski <tmo at apk dot net>
Subject: Re: qpopper and tcp wrapper
> Has anyone successfully compiled qpopper with the addition of TCP Wrapper?
> I would like to see qpopper wrapped to control access.
Just use the following line in inetd.conf:
pop3 stream tcp nowait root /usr/sbin/tcpd popper
[the 2 last entries may need adjustments based on the location of
your binaries] - good luck.
--
Tomasz Orzechowski tmo at apk dot net
APK.net systems administration team TO630
Date: Wed, 25 Aug 1999 12:17:40 -0700
From: Qpopper Support <qpopper at qualcomm dot com>
Subject: Re: Passwords
At 4:28 PM +0100 8/5/99, James Smith wrote:
>I can't get qpopper to authenticate anybody
>
>the server responds, but no matter what user/pass combination i use, they
>all
>get refused
>
>this is what i get as an error
>
>There was a problem logging onto your mail server. Your Password was
>rejected. Account: 'test', Server: '192.168.193.111', Protocol: POP3, Server
>Response: '-ERR Password supplied for "test" is incorrect.', Port: 110,
>Secure(SSL): No, Server Error: 0x800CCC90, Error Number: 0x800CCC92
>
>i haven't used the apop option
>
>any ideas ?
>
>
>James S
My guess is that you are using shadow passwords. You need to run
./configure --enable-specialauth. Check the INSTALL file for
information about shadow passwords.
Try:
make realclean
./configure --enable-specialauth
make
Date: Wed, 25 Aug 1999 12:36:42 -0700
From: Qpopper Support <qpopper at qualcomm dot com>
Subject: Re: Authentication Problems
At 8:37 AM +0800 8/9/99, Byron Jones wrote:
>why isn't this in the faq?
It is now.
Date: Wed, 25 Aug 1999 12:38:27 -0700
From: Qpopper Support <qpopper at qualcomm dot com>
Subject: Re: apop and email clients
At 6:02 PM +0200 8/19/99, Angel L. Mateo wrote:
>Hello,
>
> I have just configured my pop server with qpopper and apop
>support. I have checked the configuration with fetchmail and it
>works, but I can't read mail from a mail client like Netscape
>Messenger, because I have an error message that says thas has ocurred
>problem while sending the user command to the pop server.
>
> Does anybody know wich mail clients support apop
>authentication?
>
>Thanks
Eudora supports it. Check <http://www.eudora.com> for more information.
From: "Asley Lugo Avila" <asley at etecsa dot cu>
Subject: Solaris mailing list
Date: Thu, 26 Aug 1999 09:35:10 -0400
Can any body point me to a Solaris mailing list ?
Sorry for use this list for ask.
Asley
Date: Thu, 26 Aug 1999 15:17:35 +0100
From: Fergal Daly <fergal at esatclear dot ie>
Subject: is this a bug?
I'm using quotas here and I had a user who was using nearly all of his
quota, when he logged in the popper tried to deliver a bulletin but
couldn't because of the quota, the seesion goes something like this:
+OK QPOP (version 3.0b18) at grumpy.esatclear.ie starting.
user fergal
+OK Password required for fergal.
pass xxxxx
-ERR Overquota copying messages to Mailspool. Temp drop unchanged
+OK fergal has 8 messages (900000 octets).
this confuses Outlook Express because the first result is an -ERR and it
immediately disconnects.
I had a look at the RFC and it seems Outlook is correct as I can't find
anything about multiple result lines. Shouldn't non-fatal errors just be
logged rather than sent to the client?
Fergal
Date: Thu, 26 Aug 1999 08:59:04 -0700 (PDT)
From: Patrick Briggs <pbriggs at televar dot com>
Subject: Pop Locks
We are an ISP with approximately 20,000 E-MAIL boxes running on a HP 9000
K410 server. We've been using QPOPPER pretty well, except we get calls on
a regular basis from customers who are having pop lock problems. In
looking at their mailbox, they'll typically have several megabytes in
there due to a file attachment. For whatever reason, some folks can
download a huge mailbox of 10 megabytes without a problem, however, many
people just get errors after waiting a long time to download their mail in
Netscape or Eudora, and then endless pop locks. Our only solution has
been to go inside their mailbox and delete out the offending large E-MAIL
and remove the /var/mail/.<username>.pop files so they can get their mail.
Is there a parameter I need to change to eleviate this problem such as the
-T flag in /etc/inetd.conf? Is there anything else I should be doing
different that might afford better results to customers who are
downloading their mail over potentially slow dialup connections so they
don't have their mail transfer abort midstream and then be locked for
some time down the road?
Thanks..
P.S. Running QPOPPER3.0 doesn't yield any better results on pop locks,
but it does run well in all other respects so far.
--
Patrick Briggs
System Administrator BOSSIG, Inc.
E-MAIL: pbriggs at televar dot com
Date: Fri, 27 Aug 1999 04:15:07 +1200 (NZST)
From: Alan Brown <alan at manawatu.gen dot nz>
Subject: Re: Pop Locks
On Thu, 26 Aug 1999, Patrick Briggs wrote:
> there due to a file attachment. For whatever reason, some folks can
> download a huge mailbox of 10 megabytes without a problem, however, many
> people just get errors after waiting a long time to download their mail in
> Netscape or Eudora, and then endless pop locks. Our only solution has
> been to go inside their mailbox and delete out the offending large E-MAIL
> and remove the /var/mail/.<username>.pop files so they can get their mail.
>
> Is there a parameter I need to change to eleviate this problem such as the
> -T flag in /etc/inetd.conf? Is there anything else I should be doing
> different that might afford better results to customers who are
> downloading their mail over potentially slow dialup connections so they
> don't have their mail transfer abort midstream and then be locked for
> some time down the road?
Get them to increase their message collect timeouts. Eudora (for
instance) defaults to 60 seconds per message, which just isn't long
enough for large attachments over a dialup.
The poplock errors usually happen because of older versions of Eudora
(2.x and earlier) aborting the connection without closing it down. Then
when the user tries again, his previous session is still active, so
stays poplocked until the server timeout.
This behaviour also often results in "exploding mailboxes" - the
temporary drop file being appended to the mailbox, doubling the size of
the mailbox with each iteration until quota is hit or the server runs
out of disk space.
AB
From: "Matt Mouser" <webmaster at net-connection dot net>
Subject: Vhost hack binary
Date: Thu, 26 Aug 1999 12:25:55 -0700
Hi,
I noticed a few posts earlier about the qpopper hacks that let you bind
common usernames to unix usernames. I was wondering, where I could find
these and if anyone already has a binary that I could drop in and just
replace my other Linux qmail that's running. I was also hopeing to find this
on the older 2.5 (stable!) qpopper release. Thank for any help. My mailbox
ate all my old messages so I can't find the patches that people posted.
Matt
Date: Thu, 26 Aug 1999 16:08:49 -0400 (EDT)
From: Glenn Zenker <gzenker at cne-odin.gsfc.nasa dot gov>
Subject: APOP & POP3??
Is it possible to have APOP and POP3 running at the same time??
For instance, if 500 users want to use APOP, and the other 500 users want
to use POP3(because they can use netscape & outlook), is that possible??
I know this question sounds stupid, but I don't think it is unrealistic.
Do I have to change the port that APOP or POP3 run on??
Thanks,
-Glenn
Glenn.E.Zenker.1 at gsfc.nasa dot gov
Date: 26 Aug 99 21:38:34 PDT
From: Tomas Carlos Hernandez <tcarlosh at netscape dot net>
Subject: popper refuses to work !!
Hi everybody!! =
After compiling and installed popper, nothing happens!! =
I modified the /etc/inet/inetd.conf and /etc/inet/services =
properly but popper does not run!! =
I use solaris 2.51 SPARC and sendmail.
=
When I run "popper -s -t log" or "popper -s -d -t log"
this message appears on the log file: =
=
Sat Aug 21 22:29:52 1999 [3349] Unable to obtain socket and address of cl=
ient,
err = 22 =
=
After killing -HUP popper-pid, the /var/adm/messages says something like:=
--pop3/tcp Unknow Service --
I already read almost all of the mailing list archives at
http://www.pensive.org/mailing_lists/Archives/qpopper/index.html
but I found no solution :( =
=
I hope you can help me... =
My advanced thanks =
Tom =
Unix sysadmin =
____________________________________________________________________
Get your own FREE, personal Netscape WebMail account today at http://webm=
ail.netscape.com.
Date: Fri, 27 Aug 1999 09:23:55 +0200
From: "Flavio G. Maggi" <Flavio.Maggi at bitron dot it>
Subject: Re: popper refuses to work !!
--------------520D205FDBB312D48545B6CC
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
Tomas Carlos Hernandez wrote:
> Hi everybody!!
> After compiling and installed popper, nothing happens!!
> I modified the /etc/inet/inetd.conf and /etc/inet/services
> properly but popper does not run!!
> I use solaris 2.51 SPARC and sendmail.
>
> When I run "popper -s -t log" or "popper -s -d -t log"
> this message appears on the log file:
>
> Sat Aug 21 22:29:52 1999 [3349] Unable to obtain socket and address of client,
>
> err = 22
>
>
> After killing -HUP popper-pid, the /var/adm/messages says something like:
> --pop3/tcp Unknow Service --
>
> I already read almost all of the mailing list archives at
> http://www.pensive.org/mailing_lists/Archives/qpopper/index.html
> but I found no solution :(
>
>
> I hope you can help me...
> My advanced thanks
> Tom
> Unix sysadmin
>
> ____________________________________________________________________
> Get your own FREE, personal Netscape WebMail account today at http://webmail.netscape.com.
I experienced a similar message with err=107.
to understand what is happening I open the source file of qpopper. In
pop_init.c i get the line with the error, so I determinethe error come
from getpeername call.
I report tha getpeername man page :
GETPEERNAME(2) Linux Programmer's Manual GETPEERNAME(2)
NAME
getpeername - get name of connected peer
SYNOPSIS
int getpeername(int s, struct sockaddr *name, int *namelen);
DESCRIPTION
Getpeername returns the name of the peer connected to socket s.
The namelen parameter should
be initialized to indicate the amount of space pointed to by
name. On return it contains the
actual size of the name returned (in bytes). The name is
truncated if the buffer provided is
too small.
RETURN VALUE
On success, zero is returned. On error, -1 is returned, and errno
is set appropriately.
ERRORS
EBADF The argument s is not a valid descriptor.
ENOTSOCK
The argument s is a file, not a socket.
ENOTCONN
The socket is not connected.
ENOBUFS Insufficient resources were available in the system to
perform the operation.
EFAULT The name parameter points to memory not in a valid part of
the process address space.
HISTORY
The getpeername function call appeared in BSD 4.2.
SEE ALSO
accept(2), bind(2), getsockname(2)
BSD Man Page 24 July 1993
===================== end of man page =========================
the number that appears in log file is one of those listed above; (
EBADF, ENOTSOCK, etc )
In my case error = 107 is equivalent to ENOTCONN ( the socket ( the
client ) is no longer connected ) I think this is due to timeout on my very busy system
To convert errors numbers look at /usr/include/asm/errno.h file
Or, in your system, to another errno.h file in /usr/include tree
I hope this can be helpfully to you too
Ciao
--
Flavio G. Maggi Bitron S.p.A.
Via Bizzozzero, 133 Tel.: (+39) 02.61556.408
I 20032 Cormano (MI) Fax : (+39) 02.6150705
Italy e-mail:Flavio.Maggi at bitron dot it
--------------520D205FDBB312D48545B6CC
Content-Type: text/html; charset=us-ascii
Content-Transfer-Encoding: 7bit
<!doctype html public "-//w3c//dtd html 4.0 transitional//en">
<html>
Tomas Carlos Hernandez wrote:
<blockquote TYPE=CITE>Hi everybody!!
<br> After compiling and installed popper, nothing happens!!
<br> I modified the /etc/inet/inetd.conf and /etc/inet/services
<br> properly but popper does not run!!
<br> I use solaris 2.51 SPARC and sendmail.
<p> When I run "popper -s -t log" or "popper -s -d -t log"
<br> this message appears on the log file:
<p>Sat Aug 21 22:29:52 1999 [3349] Unable to obtain socket and address
of client,
<p>err = 22
<br>
<p>After killing -HUP popper-pid, the /var/adm/messages says something
like:
<br> --pop3/tcp Unknow Service --
<p>I already read almost all of the mailing list archives at
<br><a href="http://www.pensive.org/mailing_lists/Archives/qpopper/index.html">http://www.pensive.org/mailing_lists/Archives/qpopper/index.html</a>
<br>but I found no solution :(
<br>
<p>I hope you can help me...
<br>My advanced thanks
<br>Tom
<br>Unix sysadmin
<p>____________________________________________________________________
<br>Get your own FREE, personal Netscape WebMail account today at <a href="http://webmail.netscape.com">http://webmail.netscape.com</a>.</blockquote>
<p><br>I experienced a similar message with err=107.
<br>to understand what is happening I open the source file of qpopper.
In
<br>pop_init.c i get the line with the error, so I determinethe error
come
<br>from getpeername call.
<p>I report tha getpeername man page :
<br>
<pre><font size=-1>GETPEERNAME(2) Linux Programmer's Manual GETPEERNAME(2)</font></pre>
<pre><font size=-1>NAME</font></pre>
<pre><font size=-1> getpeername - get name of connected peer</font></pre>
<pre><font size=-1>SYNOPSIS</font></pre>
<pre><font size=-1> int getpeername(int s, struct sockaddr *name, int *namelen);</font></pre>
<pre><font size=-1>DESCRIPTION</font></pre>
<pre><font size=-1> Getpeername returns the name of the peer connected to socket s.</font></pre>
<pre><font size=-1>The namelen parameter should</font></pre>
<pre><font size=-1> be initialized to indicate the amount of space pointed to by</font></pre>
<pre><font size=-1>name. On return it contains the</font></pre>
<pre><font size=-1> actual size of the name returned (in bytes). The name is</font></pre>
<pre><font size=-1>truncated if the buffer provided is</font></pre>
<pre><font size=-1> too small.</font></pre>
<pre><font size=-1>RETURN VALUE</font></pre>
<pre><font size=-1> On success, zero is returned. On error, -1 is returned, and errno</font></pre>
<pre><font size=-1>is set appropriately.</font></pre>
<pre><font size=-1>ERRORS</font></pre>
<pre><font size=-1> EBADF The argument s is not a valid descriptor.</font></pre>
<pre><font size=-1> ENOTSOCK</font></pre>
<pre><font size=-1> The argument s is a file, not a socket.</font></pre>
<pre><font size=-1> ENOTCONN</font></pre>
<pre><font size=-1> The socket is not connected.</font></pre>
<pre><font size=-1> ENOBUFS Insufficient resources were available in the system to</font></pre>
<pre><font size=-1>perform the operation.</font></pre>
<pre><font size=-1> EFAULT The name parameter points to memory not in a valid part of</font></pre>
<pre><font size=-1>the process address space.</font></pre>
<pre><font size=-1>HISTORY</font></pre>
<pre><font size=-1> The getpeername function call appeared in BSD 4.2.</font></pre>
<pre><font size=-1>SEE ALSO</font></pre>
<pre><font size=-1> accept(2), bind(2), getsockname(2)</font></pre>
<pre><font size=-1>BSD Man Page 24 July 1993</font></pre>
<pre><font size=-1>===================== end of man page =========================</font></pre>
<p><br>the number that appears in log file is one of those listed above;
(
<br>EBADF, ENOTSOCK, etc )
<p>In my case error = 107 is equivalent to ENOTCONN ( the socket
( the
<br>client ) is no longer connected ) I think this is due to timeout on
my very busy system
<p>To convert errors numbers look at /usr/include/asm/errno.h file
<p>Or, in your system, to another errno.h file in /usr/include tree
<br>
<p>I hope this can be helpfully to you too
<br>
<p>Ciao
<br>
<br>
<pre>--
Flavio G. Maggi Bitron S.p.A.
Via Bizzozzero, 133 Tel.: (+39) 02.61556.408
I 20032 Cormano (MI) Fax : (+39) 02.6150705
Italy e-mail:Flavio.Maggi at bitron dot it</pre>
</html>
--------------520D205FDBB312D48545B6CC--
Date: Fri, 27 Aug 1999 18:11:49 +1000
From: Wayne Heming <wheming at hemnet.com dot au>
Subject: quotas
I am using disk quotas and have problems with users reading there mail when
they reach about 50% of their quota.
As I see it the username file is copied to .username.pop
By copying the file it uses filesize x 2 while copying and after it is
fully copied the original file is deleted.
If the 2 x filesize of the username file is greater than the user's quota
then the user gets an error
Fri Aug 27 16:57:50 1999 [4548] username at domain.com dot au: -ERR Unable to copy
mail spool file, quota exceeded (69)
Is there any other way to force mail size other than quotas or is there a
way to make quotas work with popper?
tks
Wayne
From: Steven Fletcher <stevenf at shellnet.co dot uk>
Subject: RE: quotas
Date: Fri, 27 Aug 1999 11:16:12 +0100
If you've not got clients who use pine/elm etc on your mailserver for
reading their mail, (i.e, only over Qpopper), then compile Qpopper with the
servermode option...
./configure --enable-servermode
That'll not copy the mail contents to the .<user>.pop, but just creates a
.user.pop file with nothing in it whilst the pop3 session is going on.
Steven Fletcher
stevenf at shellnet.co dot uk
> -----Original Message-----
> From: Wayne Heming [mailto:wheming at hemnet.com dot au]
> Sent: 27 August 1999 09:12
> To: Subscribers of Qpopper
> Subject: quotas
>
>
> I am using disk quotas and have problems with users reading
> there mail when
> they reach about 50% of their quota.
>
> As I see it the username file is copied to .username.pop
>
> By copying the file it uses filesize x 2 while copying and
> after it is
> fully copied the original file is deleted.
>
> If the 2 x filesize of the username file is greater than the
> user's quota
> then the user gets an error
>
> Fri Aug 27 16:57:50 1999 [4548] username at domain.com dot au: -ERR
> Unable to copy
> mail spool file, quota exceeded (69)
>
> Is there any other way to force mail size other than quotas
> or is there a
> way to make quotas work with popper?
>
> tks
> Wayne
>
>
Date: Sat, 28 Aug 1999 12:02:08 +0000
From: "H.White" <whiteh at wvlc.wvnet dot edu>
Subject: Qpopper Help
I just installed qpopper-2_53-1_PAM_i386.rpm today, and for the
first time since my initial RedHat6.0 Mandrake installation, have been
able to telnet to localhost 110. The problem now is, when I try to use
a pop3 client to check users mail, I get the following error:
-ERR System error, can't open temporary file, do you own it?
I installed the RPM using all defaults (with gnorpm) I also
installed Linux using the default of /home for the users directorys.
Any help would be much appreciated..I know mail works, because I can
send and rx mail (thru pine), just not using a pop3 client.
Date: Fri, 27 Aug 1999 13:38:15 -0400
From: "Michael D. Sofka" <sofkam at rpi dot edu>
Subject: Re: quotas
There are a couple ways to fix this. First, if you can run sever
mode (all mail is read via POP3), this will prevent the file from
being copied to the lock file. Server mode will also improve
performance. But, you may still have a quota problem since
the transferred messages are placed in temporary files.
The second option is to put the lock files on a separate partition
with its own quota setting (or no quota setting). This will also
put the temp files on the new partition, and it can be used along
with server mode.
Even with a separate partition, however, the mailbox will be slightly
larger after a pop than before due to the addition of X-UIDL and
Status lines.
Mike
At 06:11 PM 8/27/99 +1000, Wayne Heming wrote:
>I am using disk quotas and have problems with users reading there mail when
>they reach about 50% of their quota.
>
>As I see it the username file is copied to .username.pop
>
>By copying the file it uses filesize x 2 while copying and after it is
>fully copied the original file is deleted.
>
>If the 2 x filesize of the username file is greater than the user's quota
>then the user gets an error
>
>Fri Aug 27 16:57:50 1999 [4548] username at domain.com dot au: -ERR Unable to copy
>mail spool file, quota exceeded (69)
>
>Is there any other way to force mail size other than quotas or is there a
>way to make quotas work with popper?
>
>tks
>Wayne
--
Michael D. Sofka sofkam at rpi dot edu
CIS/SSS Sr. Systems Programmer AFS/DFS, email, listproc, TeX, epistemology.
Rensselaer Polytechnic Institute, Troy, NY. http://www.rpi.edu/~sofkam/
From: "James Nelson" <james at digit.bloomnet dot com>
Subject: Re: quotas
Date: Fri, 27 Aug 1999 19:51:49 -0500
I would suggest getting fancy with your quotas. Make a hard limit
which is the hard maximum at any time and a soft quota which is the
maximum you really want users to have on the system. Make the hard
limit quota slightly more than twice the soft limit. This will allow
the mail file to grow up to the soft limit on the quota without
reporting anything then start doing notifications accordingly that the
user has exceeded their quota.
-----Original Message-----
From: Michael D. Sofka <sofkam at rpi dot edu>
To: Wayne Heming <wheming at hemnet.com dot au>; Subscribers of Qpopper
<qpopper at lists.pensive dot org>
Date: Friday, August 27, 1999 1:08 PM
Subject: Re: quotas
|There are a couple ways to fix this. First, if you can run sever
|mode (all mail is read via POP3), this will prevent the file from
|being copied to the lock file. Server mode will also improve
|performance. But, you may still have a quota problem since
|the transferred messages are placed in temporary files.
|
|The second option is to put the lock files on a separate partition
|with its own quota setting (or no quota setting). This will also
|put the temp files on the new partition, and it can be used along
|with server mode.
|
|Even with a separate partition, however, the mailbox will be slightly
|larger after a pop than before due to the addition of X-UIDL and
|Status lines.
|
|Mike
|
|At 06:11 PM 8/27/99 +1000, Wayne Heming wrote:
|>I am using disk quotas and have problems with users reading there
mail when
|>they reach about 50% of their quota.
|>
|>As I see it the username file is copied to .username.pop
|>
|>By copying the file it uses filesize x 2 while copying and after it
is
|>fully copied the original file is deleted.
|>
|>If the 2 x filesize of the username file is greater than the user's
quota
|>then the user gets an error
|>
|>Fri Aug 27 16:57:50 1999 [4548] username at domain.com dot au: -ERR Unable
to copy
|>mail spool file, quota exceeded (69)
|>
|>Is there any other way to force mail size other than quotas or is
there a
|>way to make quotas work with popper?
|>
|>tks
|>Wayne
|
|--
|Michael D. Sofka sofkam at rpi dot edu
|CIS/SSS Sr. Systems Programmer AFS/DFS, email, listproc, TeX,
epistemology.
|Rensselaer Polytechnic Institute, Troy, NY.
http://www.rpi.edu/~sofkam/
|
Date: Sat, 28 Aug 1999 15:02:50 +1200 (NZST)
From: Alan Brown <alan at manawatu.gen dot nz>
Subject: Re: quotas
On Fri, 27 Aug 1999, Wayne Heming wrote:
> Is there any other way to force mail size other than quotas or is there a
> way to make quotas work with popper?
Possibilities:
1: put the poptemp files on a different partition (recompile qpopper)
2: use server mode
3: Set hard quota = 2.1 * (soft quota)
AB
Date: Sat, 28 Aug 1999 15:05:13 +1200 (NZST)
From: Alan Brown <alan at manawatu.gen dot nz>
Subject: RE: quotas
On Fri, 27 Aug 1999, Steven Fletcher wrote:
> If you've not got clients who use pine/elm etc on your mailserver for
> reading their mail, (i.e, only over Qpopper), then compile Qpopper with the
> servermode option...
>
> ./configure --enable-servermode
You can use servermode if people use pine/elm.
The danger is if they use pine/elm and try to pop while a pine/elm
session is open.
Pine is quite robust about this (now) and will immediately switch to
read-only mode if it detects anything else accessing a mail folder it
has open.
AB
Date: Sat, 28 Aug 1999 10:00:41
From: Jithender Tiwari <jtiwari at infotech.stph dot net>
Subject: MTA
Dear All,
I am using RH6.0 as my OS and Qpopper as my mail server software.
Everything is working fine. I am able to send and receive mails without any
probs. But I wanna configure filter to automatically answer my mail when I
am on vacation or leave. I kept the entries in .forward file and created
elmrc,filter-rules and vacation.script file. But it doesnot seem to work.
Later I came to know that to make filter work, MTA(Mail Transfer Agent)
should read .forward file and let me mail to the program.
Can someone tell me what entries should I keep in .forward and
filter-rules so that I can make MTA read my .forward file and let me mail
to my program.
The following entries I have already tried to check whether MTA works.(
itseems it works with sendmail).
Entries in ".forward" file:
\userid, "|/bin/cat - > /my/home/directory/forward.test 2>&1"
where forward.test is a temp file in my home directory.
Can Someone help me .
Thanks in advance for your time and help.
Jithu
Date: Sat, 28 Aug 1999 10:40:15 -0700
From: Michael Gammond <cerulean at earthlink dot net>
Subject: Patch/Update
Hi all - Are there on-line docs that teach you how to safely patch/upgrade
then recompile qpopper.
I dug around the qualcomm site and I have read all the release notes and
there doesn't appear to be anything useful.
Thanks in advance- Michael.
Date: Sat, 28 Aug 1999 19:54:59 +0200 (MET DST)
From: Carrer Yuri <yurj at dns.alfa dot it>
Subject: Re: Patch/Update
On Sat, 28 Aug 1999, Michael Gammond wrote:
> Hi all - Are there on-line docs that teach you how to safely patch/upgrade
> then recompile qpopper.
tar -zxvf qpopper.tar.gz
cd qpopper
./configure; make
cp popper/popper /usr/sbin/in.pop3d
:-)
(at least make a backup of the old qpopper binary)
--- other topic
I'm running now 3.0beta18, cause 2.53 sometimes hangs on some Outlook
clients *heh, figure why* What are the common things to look at, when
a client hangs and the /var/spool/mail/.user.pop lock is still there?
(It happens with 2.53, also the pop process stay alive, even if the
client hung) Now I'm testing 3.0, hope it is rock =) I've also enabled
server mode, cause some user has several MB of mail.
From: Alan Mizrahi <alanml at cantv dot net>
Subject: Various error messages
Date: Sat, 28 Aug 1999 23:31:16 -0400
Hello, I've tested qpopper 2.53 locally by telnetting to myself on port 110,
and everything works OK, shadow passwords works, I read my mail, etc.
When a user tested it remotely I got this in my logs:
Aug 28 23:11:27 olympus in.qpopper[2786]: (v2.53) Unable to get canonical name
of client, err = 110
Aug 28 23:11:27 olympus in.qpopper[2786]: @[200.200.200.2]: -ERR Too few
arguments for the auth command.
Aug 28 23:11:28 olympus in.qpopper[2786]:
Unable to create .popbull file (13)
I don't understand any of this error messages, can anybody be kind and explain
me?
Regards,
Alan Mizrahi
Date: Sat, 28 Aug 1999 21:25:04 -0700
From: LinuxBoy <linuxboy at jps dot net>
Subject: security hole in 2.53.
I found, or rather a cracker found a security hole in qpopper- if you
login as root, and type the incorect password, it gives you a pasword
error, but if you login as root and give the correct password, it says
that users with a uid less than 10 cannot login. Somone brute forced
my employers system this way. Fortunantly our security administrator
knoticed the su and was able to change the root password before any
damage was done.
The point:
I modified the repop source to give a password error when you login as
root weather the password is correct or not.
Has this alrealdy been patched, or should I post a patch to this list?
--
Violence is a sword that has no handle -- you have to hold the blade.
Date: Sat, 28 Aug 1999 23:26:00 -0700
From: LinuxBoy <linuxboy at jps dot net>
Subject: security patch for 2.53
This is a multi-part message in MIME format.
--------------A09626D7A4EECFA3B191A17E
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
this is a patch that closes the hole I mentioned earlier, where if you
try to login as root with the correct password, it tells you. with
this patch, it mearly spits out the std. password error.
It's a simple patch, so I dont think it will brake anything, but I've
only tested it on a bsdi 4 and linux 2.0.37. Also this is the first
time I've made a patch, so use at your own risk.
--
Violence is a sword that has no handle -- you have to hold the blade.
--------------A09626D7A4EECFA3B191A17E
Content-Type: text/plain; charset=us-ascii;
name="patch"
Content-Transfer-Encoding: 7bit
Content-Disposition: inline;
filename="patch"
Common subdirectories: qpopper2.53/doc and qpopper2.53.mine/doc
diff qpopper2.53/pop_pass.c qpopper2.53.mine/pop_pass.c
591,592c591
< return (pop_msg(p,POP_FAILURE,
< "Access is blocked for UIDs below %d", BLOCK_UID));
---
> return (pop_msg(p,POP_FAILURE, pwerrmsg, p->user));
--------------A09626D7A4EECFA3B191A17E--
Date: Sun, 29 Aug 1999 12:18:34 +0200 (MET DST)
From: Carrer Yuri <yurj at dns.alfa dot it>
Subject: Re: Various error messages
On Sat, 28 Aug 1999, Alan Mizrahi wrote:
> Hello, I've tested qpopper 2.53 locally by telnetting to myself on port 110,
> and everything works OK, shadow passwords works, I read my mail, etc.
>
> When a user tested it remotely I got this in my logs:
>
> Aug 28 23:11:27 olympus in.qpopper[2786]: (v2.53) Unable to get canonical name
> of client, err = 110
You don't have a reverse name for the IP, in the DNS
> Aug 28 23:11:27 olympus in.qpopper[2786]: @[200.200.200.2]: -ERR Too few
> arguments for the auth command.
the user don't tell his username to qpopper =)
> Aug 28 23:11:28 olympus in.qpopper[2786]:
> Unable to create .popbull file (13)
man qpopper. This user has an home which is not writeble by him :-)
Date: Sun, 29 Aug 1999 12:21:15 +0200 (MET DST)
From: Carrer Yuri <yurj at dns.alfa dot it>
Subject: Re: security hole in 2.53.
On Sat, 28 Aug 1999, LinuxBoy wrote:
> I found, or rather a cracker found a security hole in qpopper- if you
> login as root, and type the incorect password, it gives you a pasword
> error, but if you login as root and give the correct password, it says
> that users with a uid less than 10 cannot login. Somone brute forced
> my employers system this way. Fortunantly our security administrator
> knoticed the su and was able to change the root password before any
> damage was done.
I don't understand the hole. Can you explain better? Is qpopper 3.0
affected by this?
Date: Sun, 29 Aug 1999 11:09:24 -0500
From: "Igor S. Livshits" <igorl at life.uiuc dot edu>
Subject: Re: security hole in 2.53.
At 12:21 PM +0200 on 8/29/99, Carrer Yuri wrote:
>On Sat, 28 Aug 1999, LinuxBoy wrote:
>
>> I found, or rather a cracker found a security hole in qpopper- if you
>> login as root, and type the incorect password, it gives you a pasword
>> error, but if you login as root and give the correct password, it says
>> that users with a uid less than 10 cannot login. Somone brute forced
>> my employers system this way. Fortunantly our security administrator
>> knoticed the su and was able to change the root password before any
>> damage was done.
>
> I don't understand the hole. Can you explain better? Is qpopper 3.0
>affected by this?
I think the point is that qpopper provides too much information about
a blocked password range -- when you hit a correct password, it tells
you that you have the correct password by changing the error message.
A better approach would be to have all UIDs in the blocked range
ALWAYS return the incorrect password error message.
Cheers, igor
Date: Mon, 30 Aug 1999 04:28:09 +1200 (NZST)
From: Alan Brown <alan at manawatu.gen dot nz>
Subject: Re: security hole in 2.53.
On Sun, 29 Aug 1999, Igor S. Livshits wrote:
> I think the point is that qpopper provides too much information about
> a blocked password range -- when you hit a correct password, it tells
> you that you have the correct password by changing the error message.
>
> A better approach would be to have all UIDs in the blocked range
> ALWAYS return the incorrect password error message.
Or at the risk of providing a little information, to always say "uid
below n not allowed to log in" instead of giving a passwd error (or at
least syslog it, so admins can see the attempts).
AB
Date: Sun, 29 Aug 1999 18:59:12 +0200 (MET DST)
From: Carrer Yuri <yurj at dns.alfa dot it>
Subject: Re: security hole in 2.53.
> >
> >> I found, or rather a cracker found a security hole in qpopper- if you
> >> login as root, and type the incorect password, it gives you a pasword
> >> error, but if you login as root and give the correct password, it says
> >> that users with a uid less than 10 cannot login. Somone brute forced
> >> my employers system this way. Fortunantly our security administrator
> >> knoticed the su and was able to change the root password before any
> >> damage was done.
> >
> > I don't understand the hole. Can you explain better? Is qpopper 3.0
> >affected by this?
>
> I think the point is that qpopper provides too much information about
> a blocked password range -- when you hit a correct password, it tells
> you that you have the correct password by changing the error message.
Excuse my great ignorance =) but what are "block password range"?
I still don't understand the problem. :P
Date: Sun, 29 Aug 1999 20:05:50 +0200
From: Javi Lavandeira <javilm at inlander dot es>
Subject: Re: security hole in 2.53.
At 18.59 29/8/99 +0200, you wrote:
> > I think the point is that qpopper provides too much information about
> > a blocked password range -- when you hit a correct password, it tells
> > you that you have the correct password by changing the error message.
>
> Excuse my great ignorance =) but what are "block password range"?
> I still don't understand the problem. :P
Imagine you're an attacker trying to guess root's password... You can brute=
force it, and you'll get the "bad password error" when the password is
incorrect. But you'll get the other message once you hit the actual
password, so now that you know it, you can telnet, ssh or whatever to the
compromised host.
Javi Lavandeira Montes
Director Técnico
Inlander Communications, S.L.
javilm at inlander.es - http://www.inlander dot es
Date: Sun, 29 Aug 1999 23:17:38 +0200 (MET DST)
From: Carrer Yuri <yurj at dns.alfa dot it>
Subject: Re: security hole in 2.53.
> At 18.59 29/8/99 +0200, you wrote:
>
> > > I think the point is that qpopper provides too much information about
> > > a blocked password range -- when you hit a correct password, it tells
> > > you that you have the correct password by changing the error message.
> >
> > Excuse my great ignorance =) but what are "block password range"?
> > I still don't understand the problem. :P
>
> Imagine you're an attacker trying to guess root's password... You can brute
> force it, and you'll get the "bad password error" when the password is
> incorrect. But you'll get the other message once you hit the actual
> password, so now that you know it, you can telnet, ssh or whatever to the
> compromised host.
so, you can do it directly with telnet or ssh, without using pop3 :-)
So it is not a security hole. :-)
Date: Sun, 29 Aug 1999 21:06:54 -0400
From: Tom Zeltwanger <tomz at ename dot com>
Subject: popper hanging
I am using EUDORA on a WIN95 PC to access Qpopper on a LINUX box. It has
worked fine for months. Suddenly it often hangs on checking the first
account and gives a message "-ERR POP EOF recieved" in the logs on the
server. I guess this has been discussed before but don't know how to find
the discussion in the archives.
Any ideas??
Thanks in advance,
Tom
*******************************************************
Tom Zeltwanger, tomz at ename dot com
Virtual Communication Services
Get your Net identity at http://www.eName.com
*******************************************************
Date: Mon, 30 Aug 1999 09:46:26 +0800
From: NightHawk <nighthawk at szonline dot net>
Subject: Please help me!!!!!!!!!
A. I am running qpopper3.0b18 in the servermode with solaris7 and
solaris 2.6, but it will delete the user's all message from his/her
mbox sometimes when he/she hangups accidentally! I don't know what's
wrong! and don't know whether
it is bugs of qpopper3.0b18!!!
B. In the servermode qpopper3.0b18 will move his/her mbox into
.user.pop sometime. I found a few times!
My steps of compile and install the qpopper3.0b18 as follows:
1.compile and install
./configure --enable-servermode
make
cp popper/popper /usr/sbin/
2. my inetd.conf is:
pop3 stream tcp nowait.200 root /usr/sbin/popper popper -R -T
120
Thanks for any help!
Best Regards!
From: "James Nelson" <james at digit.bloomnet dot com>
Subject: Re: security hole in 2.53.
Date: Mon, 30 Aug 1999 00:05:23 -0500
The fundamental difference between popper and telnet or ssh is that
most systems have support for account lockout with telnet and sshd.
When talking about popper, would account lockout be activated on all
platforms when people use a brute force attack?
-----Original Message-----
From: Carrer Yuri <yurj at dns.alfa dot it>
To: Javi Lavandeira <javilm at inlander dot es>
Cc: Subscribers of Qpopper <qpopper at lists.pensive dot org>
Date: Sunday, August 29, 1999 4:44 PM
Subject: Re: security hole in 2.53.
|> At 18.59 29/8/99 +0200, you wrote:
|>
|> > > I think the point is that qpopper provides too much information
about
|> > > a blocked password range -- when you hit a correct password, it
tells
|> > > you that you have the correct password by changing the error
message.
|> >
|> > Excuse my great ignorance =) but what are "block password
range"?
|> > I still don't understand the problem. :P
|>
|> Imagine you're an attacker trying to guess root's password... You
can brute
|> force it, and you'll get the "bad password error" when the password
is
|> incorrect. But you'll get the other message once you hit the actual
|> password, so now that you know it, you can telnet, ssh or whatever
to the
|> compromised host.
|
| so, you can do it directly with telnet or ssh, without using pop3
:-)
| So it is not a security hole. :-)
|
Date: Mon, 30 Aug 1999 08:06:51 +0200
From: Juan Enrique =?iso-8859-1?Q?Gómez?= <juanen at tpesp dot es>
Subject: Re: security hole in 2.53.
At 12.21 29/08/1999 +0200, Carrer Yuri wrote:
It's easy you make a proggy which telnets to pop3 port, and start to send
username root and random passwords till you ge the message that root can't
login, then you know you have the root password!
Best regards,
>On Sat, 28 Aug 1999, LinuxBoy wrote:
>
>> I found, or rather a cracker found a security hole in qpopper- if you
>> login as root, and type the incorect password, it gives you a pasword
>> error, but if you login as root and give the correct password, it says
>> that users with a uid less than 10 cannot login. Somone brute forced
>> my employers system this way. Fortunantly our security administrator
>> knoticed the su and was able to change the root password before any
>> damage was done.
>
> I don't understand the hole. Can you explain better? Is qpopper 3.0
>affected by this?
>
>
>
>
----------------------------------------------------------------------
Juan Enrique Gómez email: juanen at tpesp dot es
Jefe de Informática Ph. : +34 91 7321011
Tecnipublicaciones España, SL Fax. : +34 91 7321079
http://www.tpesp.es ICQ : 3668022
----------------------------------------------------------------------
Date: Mon, 30 Aug 1999 09:36:07 +0200 (MET DST)
From: Carrer Yuri <yurj at dns.alfa dot it>
Subject: Re: popper hanging
On Sun, 29 Aug 1999, Tom Zeltwanger wrote:
> I am using EUDORA on a WIN95 PC to access Qpopper on a LINUX box. It has
> worked fine for months. Suddenly it often hangs on checking the first
> account and gives a message "-ERR POP EOF recieved" in the logs on the
> server. I guess this has been discussed before but don't know how to find
> the discussion in the archives.
It happens me often, I think It is Outlook. Have you upgraded it recently
?:)
Date: Mon, 30 Aug 1999 10:21:18 +0200
From: hazze <hazze at vh.volvo dot se>
Subject: don´t understand -ERR POP EOF
Hi i got a problem with my mailserver!
a few days ago some users called me and told me that mailserver was
down. But it wasn't.
when i started to look i found this message in /var/log/messages
@[154.56.156.81]: -ERR POP EOF received
I also found with ps -aux that there was several new processes that i
didn't know from before (about 20 of them)
root 12328 0.0 0.4 1580 676 ? S 10:12 0:00 qpopper
-s
root 12329 0.0 0.4 1580 676 ? S 10:12 0:00 qpopper
-s
the server works for almost 50% of the user but not to all
does any one know of this errors?
regards
Hans Martinsson
Date: Mon, 30 Aug 1999 09:56:34 +0100
From: Fergal Daly <fergal at esatclear dot ie>
Subject: Re: popper hanging
At 21:06 29/08/99 -0400, Tom Zeltwanger wrote:
>I am using EUDORA on a WIN95 PC to access Qpopper on a LINUX box. It has
>worked fine for months. Suddenly it often hangs on checking the first
>account and gives a message "-ERR POP EOF recieved" in the logs on the
>server. I guess this has been discussed before but don't know how to find
>the discussion in the archives.
I've seen this with happen with Outlook Express, I don't know if it affects
Eudora too. One common cause I have found is non-ascii characters in email
eg. e acute or o umlaut if you remove these then Outlook decides it's OK
again,
Fergal
Date: Mon, 30 Aug 1999 21:07:27 +1200 (NZST)
From: Alan Brown <alan at manawatu.gen dot nz>
Subject: Re: popper hanging
On Mon, 30 Aug 1999, Carrer Yuri wrote:
> > I am using EUDORA on a WIN95 PC to access Qpopper on a LINUX box. It has
> > worked fine for months. Suddenly it often hangs on checking the first
> > account and gives a message "-ERR POP EOF recieved" in the logs on the
> > server. I guess this has been discussed before but don't know how to find
> > the discussion in the archives.
>
> It happens me often, I think It is Outlook. Have you upgraded it recently
How big is your mailbox?
Eudora defaults to 60 seconds for initial connection, which is
everything from the time "check mail" is hit until the results of the
STAT request are in - including dialin, pop login, etc.
AB
Date: Mon, 30 Aug 1999 11:12:24 +0200 (MET DST)
From: Carrer Yuri <yurj at dns.alfa dot it>
Subject: Re: popper hanging
> On Mon, 30 Aug 1999, Carrer Yuri wrote:
>
> > > I am using EUDORA on a WIN95 PC to access Qpopper on a LINUX box. It has
> > > worked fine for months. Suddenly it often hangs on checking the first
> > > account and gives a message "-ERR POP EOF recieved" in the logs on the
> > > server. I guess this has been discussed before but don't know how to find
> > > the discussion in the archives.
> >
> > It happens me often, I think It is Outlook. Have you upgraded it recently
>
> How big is your mailbox?
>
> Eudora defaults to 60 seconds for initial connection, which is
> everything from the time "check mail" is hit until the results of the
> STAT request are in - including dialin, pop login, etc.
Why you ask me how big is it? It is not a problem, It can be few
kb or 30 MB. :)
Date: Mon, 30 Aug 1999 11:00:21 +0200 (MET DST)
From: Carrer Yuri <yurj at dns.alfa dot it>
Subject: Re: popper hanging
On Mon, 30 Aug 1999, Fergal Daly wrote:
> At 21:06 29/08/99 -0400, Tom Zeltwanger wrote:
> >I am using EUDORA on a WIN95 PC to access Qpopper on a LINUX box. It has
> >worked fine for months. Suddenly it often hangs on checking the first
> >account and gives a message "-ERR POP EOF recieved" in the logs on the
> >server. I guess this has been discussed before but don't know how to find
> >the discussion in the archives.
>
> I've seen this with happen with Outlook Express, I don't know if it affects
> Eudora too. One common cause I have found is non-ascii characters in email
> eg. e acute or o umlaut if you remove these then Outlook decides it's OK
> again,
How the user can remove this ?:)