The qpopper list archive ending on 5 Nov 2003
Topics covered in this issue include:
1. Re: SSL help, Qpopper and Sendmail
Daniel Senie <dts at senie dot com>
Tue, 23 Sep 2003 21:02:06 -0400
2. I/O error flushing output to client....
"Steve Peace" <speace at ci.webster.ny dot us>
Wed, 24 Sep 2003 11:11:12 -0400
3. about some options...
elrond at despammed dot com
Mon, 29 Sep 2003 12:23:48 -0500 (EST)
4. Qpopper + MySQL
Christopher Chaduka <cchaduka at mweb.co dot zw>
Mon, 29 Sep 2003 22:38:30 +0200
5. Re: Qpopper + MySQL
Ken Anderson <ka at pacific dot net>
Tue, 30 Sep 2003 08:13:07 -0700
6. Mail disappears
"William Petherbridge" <william at ipnoc.co dot za>
Wed, 1 Oct 2003 09:51:12 +0200
7. Re: Qpopper digest 2 Oct 2003
Ezio Paglia <ezio at comune.grosseto dot it>
Thu, 02 Oct 2003 12:33:35 +0200
8. Re: .lock files and quotas
"Chris Szilagyi" <chris at apex-internet dot com>
Thu, 2 Oct 2003 20:30:14 -0000
9. Outlook and Qpopper Timeout
John Mendenhall <john at surfutopia dot net>
Thu, 2 Oct 2003 14:14:37 -0700
10. Re: .lock files and quotas
"Alan W. Rateliff, II" <lists at rateliff dot net>
Thu, 2 Oct 2003 17:16:32 -0400
11. Re: Outlook and Qpopper Timeout
John Mendenhall <john at surfutopia dot net>
Thu, 2 Oct 2003 15:59:01 -0700
12. Re: Outlook and Qpopper Timeout
Ken Anderson <ka at pacific dot net>
Thu, 02 Oct 2003 16:23:25 -0700
13. Re: Outlook and Qpopper Timeout
John Mendenhall <john at surfutopia dot net>
Thu, 2 Oct 2003 16:35:56 -0700
14. Re: Outlook and Qpopper Timeout
Chuck Yerkes <chuck+qpopper at yerkes dot com>
Thu, 2 Oct 2003 20:25:16 -0400
15. Netscape attachments and qpopper
Kelly Ormsby <kelly at watri.org dot au>
Fri, 03 Oct 2003 08:47:54 +0800
16. More info: Netscape attachments and qpopper
Kelly Ormsby <kelly at watri.org dot au>
Fri, 03 Oct 2003 08:52:44 +0800
17. Re: Outlook and Qpopper Timeout
"Alan W. Rateliff, II" <lists at rateliff dot net>
Thu, 2 Oct 2003 23:38:04 -0400
18. Re: SSL help, Qpopper and Sendmail
Steve Palm <stevep at sga dot org>
Fri, 3 Oct 2003 15:18:58 -0500
19. Re: SSL help, Qpopper and Sendmail
Steve Palm <stevep at sga dot org>
Fri, 3 Oct 2003 15:28:41 -0500
20. Fw: Chained certs
"Alan W. Rateliff, II" <lists at rateliff dot net>
Mon, 6 Oct 2003 07:29:46 -0400
21. Re: Fw: Chained certs
"Alan W. Rateliff, II" <lists at rateliff dot net>
Mon, 6 Oct 2003 13:48:35 -0400
22. qpopper service terminating
Igor Shinin <ishinin at grey dot ru>
Tue, 07 Oct 2003 15:44:07 +0400
23. Re: qpopper service terminating
Mike Tancsa <mike at sentex dot net>
Tue, 07 Oct 2003 13:40:28 -0400
24. Qpopper & OpenSSL
Darryl Dirickson <darryl.dirickson at marc.gatech dot edu>
Thu, 09 Oct 2003 10:28:41 -0400
25. qppoper issue
"Emerson Maat" <efmaat at rtn-web-services dot com>
Fri, 10 Oct 2003 18:15:33 +0800
26. Fresh qpopper install on Mac OS X Panther
Rosyna <rosyna at unsanity dot com>
Sat, 18 Oct 2003 11:35:40 -0700
27. Re: Fresh qpopper install on Mac OS X Panther
Elliott Liggett <kilowatt at cinci.rr dot com>
Sat, 18 Oct 2003 16:05:40 -0400
28. Re: Fresh qpopper install on Mac OS X Panther
Rosyna <rosyna at unsanity dot com>
Sat, 18 Oct 2003 17:08:16 -0700
29. Re: Fresh qpopper install on Mac OS X Panther
Rosyna <rosyna at unsanity dot com>
Sat, 18 Oct 2003 18:43:49 -0700
30. Re: Fresh qpopper install on Mac OS X Panther
Greg Earle <earle at isolar.DynDNS dot ORG>
Sat, 18 Oct 2003 19:02:10 -0700
31. Re: Fresh qpopper install on Mac OS X Panther
Rosyna <rosyna at unsanity dot com>
Sat, 18 Oct 2003 19:17:28 -0700
32. Re: Fresh qpopper install on Mac OS X Panther
Rosyna <rosyna at unsanity dot com>
Sat, 18 Oct 2003 19:32:44 -0700
33. Re: Fresh qpopper install on Mac OS X Panther
Rosyna <rosyna at unsanity dot com>
Thu, 23 Oct 2003 11:50:16 -0700
34. Odd "No new messages" problem
Kato Wulf <lists at havenshade dot com>
Mon, 27 Oct 2003 14:59:09 -0800
35. Bulletin question
"Alex Moen" <alexm at ndtel dot com>
Tue, 28 Oct 2003 11:04:11 -0600
36. Strange message on new server
"Kevin Steinhaus" <kevins at hutchtel dot net>
Tue, 28 Oct 2003 16:16:01 -0600
37. Too many Server processes
Ezio Paglia <ezio at comune.grosseto dot it>
Wed, 29 Oct 2003 13:42:28 +0100
38. Re: Too many Server processes
Kenneth Porter <shiva at sewingwitch dot com>
Wed, 29 Oct 2003 12:11:29 -0800
39. Re: Too many Server processes
Ezio Paglia <ezio at comune.grosseto dot it>
Thu, 30 Oct 2003 13:04:26 +0100
40. FW: Bulletin question
"Alex Moen" <alexm at ndtel dot com>
Thu, 30 Oct 2003 10:07:50 -0600
41. Re: Bulletin question
"Alan W. Rateliff, II" <lists at rateliff dot net>
Thu, 30 Oct 2003 18:39:38 -0500
42. Re: Bulletin question
Alan Brown <alanb at digistar dot com>
Fri, 31 Oct 2003 03:49:05 -0500 (EST)
43. RE: Bulletin question
"Alex Moen" <alexm at ndtel dot com>
Fri, 31 Oct 2003 08:01:46 -0600
44. RE: Bulletin question
"Alex Moen" <alexm at ndtel dot com>
Fri, 31 Oct 2003 08:47:03 -0600
45. Qpopper4.0.5 in Solaris 8 with LDAP enabled through PAM
"kclo2000" <kclo2000 at netvigator dot com>
Wed, 5 Nov 2003 11:52:51 +0800
46. Re: Qpopper4.0.5 in Solaris 8 with LDAP enabled through PAM
The Little Prince <thelittleprince at asteroid-b612 dot org>
Tue, 4 Nov 2003 21:46:41 -0800 (PST)
47. Re: Qpopper4.0.5 in Solaris 8 with LDAP enabled through PAM
"kclo2000" <kclo2000 at netvigator dot com>
Wed, 5 Nov 2003 14:55:47 +0800
48. qpopper option.
"comeng eng" <tcomengw at hotmail dot com>
Wed, 05 Nov 2003 08:58:31 +0000
49. Can qpopper change email password?
Stephanie Chung <stepchung at yahoo dot com>
Wed, 5 Nov 2003 16:31:19 -0800 (PST)
50. Re: Can qpopper change email password?
Alan Brown <alanb at digistar dot com>
Wed, 5 Nov 2003 20:11:28 -0500 (EST)
Date: Tue, 23 Sep 2003 21:02:06 -0400
From: Daniel Senie <dts at senie dot com>
Subject: Re: SSL help, Qpopper and Sendmail
At 05:32 PM 9/23/2003, Kenneth Porter wrote:
>--On Monday, September 22, 2003 11:06 PM -0400 "Alan W. Rateliff, II"
><lists at rateliff dot net> wrote:
>
> > The problem I'm having is that no client wants to trust the certificate as
> > installed in QPopper and Sendmail. Well, Outlook Express does, but not
> > before barfing on the POP3 server. Eudora, Pegasus, and Netscape Messenger
> > all pop up warning dialogues saying the root is not trusted.
>
>If you don't get a reply here, try on the openssl list, where there's likely
>to be much more expertise with handling certs. But we'd be interested in
>hearing any resolution you find.
Eudora ships with root certificates only for Verisign and Thawte. Since
those are the same company, that's a real concern. Hopefully future
versions will have a fuller set of root certs.
Outlook Expres uses the same certificate store as Internet Exporer, and has
a much more complete set of root certificates.
From: "Steve Peace" <speace at ci.webster.ny dot us>
Subject: I/O error flushing output to client....
Date: Wed, 24 Sep 2003 11:11:12 -0400
I'm receiving an I/O error flushing output to client jdoe at 172.16.1.1
[172.16.1.1]: Operation not permitted (1). This user is using Outlook
Express 6.0. When he tries to pop his mailbox, it times out. He is the
only person experiencing this problem. Any insight would be greatly
appreciated.
Steve Peace
Date: Mon, 29 Sep 2003 12:23:48 -0500 (EST)
From: elrond at despammed dot com
Subject: about some options...
hello everybody:
before installing qpopper in my pc, I read the guide.pdf that comes with the software but all the same I have some doubt ;)
I use slackware 8.1 and my 'machine' would have to act as a stand-alone mail server for the client of a couple of workstation linux + win.
I thought to configure qpopper enabling server mode turning off the option for my account on the server, reserving me the opportunity to telnet to the mail server from the two ws.
The same think I'd like to do with the 'fast-update' option but I don't know how...
Then I hope my distribution let me use quietly the option --enable-specialauth with ./configure command
(I didn't find in guide.pdf an equivalent option for the configuration file, and so for
--enable-apop
--enable-popuid
--enable-bulldb
--enable-debugging)
My most important doubt concern the part of security and autentication:
may I use apop + tls/ssl encription or, using apop, tls/ssl is superfluous?
(apop comes with qpopper or I already must have it installed?)
At last :), I'd like to know more about the 'bulldb-max-retries ' option
Thanks
-------
Date: Mon, 29 Sep 2003 22:38:30 +0200
From: Christopher Chaduka <cchaduka at mweb.co dot zw>
Subject: Qpopper + MySQL
Hi there,
I have installed MySQL, Exim and Qpopper. However, if I telnet on port 110,
I get a connection refused. If I check the log file on the server, I see this:
Sep 29 21:53:50 lynx-new popper[25540]: Expected "set" or "reset", found
"MysqlAuthHost" at line 2 of config file /etc/mysql-popper.conf
[pop_config.c:1414]
If I put "set MysqlAuthHost", qpopper complains that MysqlAuthHost is not a
valid set word.
What am I missing here? Is there supposed to be an /etc/popper.conf file
somewhere? If so, how does it call /etc/mysql-popper.conf?
--
Kiri
Date: Tue, 30 Sep 2003 08:13:07 -0700
From: Ken Anderson <ka at pacific dot net>
Subject: Re: Qpopper + MySQL
You can set this as an option to ./configure like so:
--enable-mysql
--with-mysqlconfig=/etc/mysql-popper.conf
--with-mysqllibpath=/usr/contrib/lib/mysql
--with-mysqlincludepath=/usr/contrib/include/mysql
--enable-debugging
Ken A.
Christopher Chaduka wrote:
> Hi there,
>
> I have installed MySQL, Exim and Qpopper. However, if I telnet on port
> 110, I get a connection refused. If I check the log file on the server,
> I see this:
>
> Sep 29 21:53:50 lynx-new popper[25540]: Expected "set" or "reset", found
> "MysqlAuthHost" at line 2 of config file /etc/mysql-popper.conf
> [pop_config.c:1414]
>
> If I put "set MysqlAuthHost", qpopper complains that MysqlAuthHost is
> not a valid set word.
>
> What am I missing here? Is there supposed to be an /etc/popper.conf file
> somewhere? If so, how does it call /etc/mysql-popper.conf?
>
> --
>
> Kiri
>
>
From: "William Petherbridge" <william at ipnoc.co dot za>
Subject: Mail disappears
Date: Wed, 1 Oct 2003 09:51:12 +0200
Hi everyone,
I joined the list in hoping that someone will be able to help me.
Does anyone know what happens to a email box when you delete the .lock
file.
It's very weird that when I delete the .lock file all the email in the
mailbox disappears but then 20 to 25 minutes later all the email returns
into the mailbox.
What I want to know is where does it put these emails and can I speed up
the
time it takes to put the mail back in the mailbox?. It's not in the .pop
file either.
I'm running RedHat 9, with sendmail and qpopper ver 404.
Thanks
Will.
Date: Thu, 02 Oct 2003 12:33:35 +0200
From: Ezio Paglia <ezio at comune.grosseto dot it>
Subject: Re: Qpopper digest 2 Oct 2003
At 00.00 02/10/03 -0700, you wrote:
>From: "William Petherbridge" <william at ipnoc.co dot za>
>Subject: Mail disappears
>Date: Wed, 1 Oct 2003 09:51:12 +0200
I think that you may delete the locked file (or mv it to the right name if
the user has not read yet), but remembering to kill the popper process of
that user.
Ezio
--------------------------------------------------------------------------
Ezio PAGLIA
Tel. 0564-488706
Fax 0564-21139
Servizi Informatici
Comune di GROSSETO
Italia
---
Date: Thu, 2 Oct 2003 20:30:14 -0000
Subject: Re: .lock files and quotas
From: "Chris Szilagyi" <chris at apex-internet dot com>
"Errol U. Neal Jr." <errol.neal at enhtech dot com> said:
> At 10:52 AM 9/23/2003, Chris Szilagyi wrote:
> >Hello,
> >
> >I've got an issue with Qpopper 3.1.2, on Red Hat 7.1 (with sendmail and
> >procmail). Basically, I have a problem whereby I'd like to tell Qpopper
> >where to place the <user>.lock files. It seems the default is /var/mail/
and
> >I'm having issues with user quotas, and would like to have it put the .lock
> >files in a location like /var/lock/mail or something other than in the
spool
> >dir. I've read older posts that says this can be done but I haven't seen
> >anything in the Qpopper 3.1.2 documentation on this. Can somebody please
> >tell me how this can be done?? Thanks for all feedback...
> >
> >--
> >Chris
>
>
> You need to rebuild the rpm or the source. Check the configure options. I
>
I started to dig through the source since there doesn't appear to be a
configure option to specify location of .lock files. In common/maillock.c,
one of the revisions says:
* 07/17/00 [rcg]
* - Allow lock to proceed even if user is over quota.
But the whole problem we are having is that Qpopper does NOT proceed if the
user is over quota, and gives a quota error while trying to write the .lock
file, in the log.
Can anybody clue me in on the revision above, and what it is supposed to do?
Is there supposed to be a feature of Qpopper that will allow it to continue
if it cannot write the .lock file??
Thanks for all feedback. If I do happen to solve this issue I'll be sure to
post what was done, as I would think this would be useful to those running
Qpopper in a production environment like ours, where quotas are needed.
Thanks,
--
Chris
Date: Thu, 2 Oct 2003 14:14:37 -0700
From: John Mendenhall <john at surfutopia dot net>
Subject: Outlook and Qpopper Timeout
I apologize if this is a known issue. This is the first time
I have come across it and am baffled. If this is off topic,
please let me know and I'll continue my search elsewhere.
I have a client with a Linux 2.2.14 server, was running std
ipop3d, now running latest version of Qpopper. I admin the
server.
He has two Windows boxes at home running the latest versions
of Outlook (supposedly, still trying to get more information
on this). On one machine, which does not get much e-mail,
there is no problem checking e-mail. The other machine has
an acct on the server which gathers lots of e-mail.
When he checks his e-mail, there are times he gets a Timeout
on the server. Currently, it is set to default of 120 secs.
Tried to run at 10 mins, same problem.
Most of the time his e-mail works. However, it seems some
type of message gets in his mail file, and Outlook stops
downloading the e-mail. It eventually times out, and the
mail gets all put back in the mail file. He tries again.
Same thing. I have to go edit the file to remove the msg.
It is usually one of those recent spams enticing users to
apply a "Microsoft" patch, which is included in the msg.
We tried increasing the timeout on the Outlook side. That
did not help.
It does not appear to be a timeout issue. It appears to
be an Outlook problem. However, is there some problem with
the way POP mail is presented to Outlook clients that could
cause this?
Has anyone with Outlook experience seen this before? Any
pointers from anyone as to what I can have my client do?
He is remote and I do not really know what he is seeing,
other than him saying it just stops downloading at message
22 of 256. Then it quits.
Please point me in the direction I should go to help him.
I truly appreciate any time you spend on helping me out.
Thank you.
JohnM
--
John Mendenhall
john at surfutopia dot net
surf utopia
internet services
From: "Alan W. Rateliff, II" <lists at rateliff dot net>
Subject: Re: .lock files and quotas
Date: Thu, 2 Oct 2003 17:16:32 -0400
----- Original Message -----
From: "Chris Szilagyi" <chris at apex-internet dot com>
To: "Subscribers of Qpopper" <qpopper at lists.pensive dot org>
Sent: Tuesday, September 23, 2003 10:52 AM
Subject: .lock files and quotas
> Hello,
>
> I've got an issue with Qpopper 3.1.2, on Red Hat 7.1 (with sendmail and
> procmail). Basically, I have a problem whereby I'd like to tell Qpopper
> where to place the <user>.lock files. It seems the default is /var/mail/
and
> I'm having issues with user quotas, and would like to have it put the
.lock
> files in a location like /var/lock/mail or something other than in the
spool
> dir. I've read older posts that says this can be done but I haven't seen
> anything in the Qpopper 3.1.2 documentation on this. Can somebody please
> tell me how this can be done?? Thanks for all feedback...
I'm not sure about 3.x, since we upgraded to 4.0 LONG AGO. However, in 4.0,
we stash temporary files in /tmp/.spool (which we protected from deletion
during startup.) I instituted quotas on /var, with a hard limit expiration
time of 60 seconds, which should be the absolute longest time it should take
for a respool of the mail with our quota settings.
When a user POP's his/her email, the mailfile is spooled out to /tmp/.spool,
which resets the /var quota. When the session terminates, it spools back to
/var/mail. Worked smooth as glass for the last eight months.
I run Solaris on a multitude of servers with QPopper. This year I finally
decoded the whole quota thingie. It seems that a hard limit in Solaris
isn't anything more than a suggestion. The default expiration time is one
week, and during this time users were easily building up 100MB+ mailfiles,
even under quota. The hard limit didn't stop anything until the expiration,
which was quite irritating to discover.
The usual understanding of quotas is the soft-limit can be exceeded until
expiration, but the hard-limit is just that: a HARD limit. Nope, not for
Solaris UFS... unless I'm a complete nitwit and have misunderstood quotas
all this time. :)
--
Alan W. Rateliff, II : RATELIFF.NET
Independent Technology Consultant : alan2 at rateliff dot net
(Office) 850/350-0260 : (Mobile) 850/559-0100
-------------------------------------------------------------
[System Administration][IT Consulting][Computer Sales/Repair]
Date: Thu, 2 Oct 2003 15:59:01 -0700
From: John Mendenhall <john at surfutopia dot net>
Subject: Re: Outlook and Qpopper Timeout
On Thu, 02 Oct 2003, John Mendenhall wrote:
> When he checks his e-mail, there are times he gets a Timeout
> on the server. Currently, it is set to default of 120 secs.
> Tried to run at 10 mins, same problem.
>
> Most of the time his e-mail works. However, it seems some
> type of message gets in his mail file, and Outlook stops
> downloading the e-mail. It eventually times out, and the
> mail gets all put back in the mail file. He tries again.
> Same thing. I have to go edit the file to remove the msg.
> It is usually one of those recent spams enticing users to
> apply a "Microsoft" patch, which is included in the msg.
I apologize for responding to my own message, but I have
obtained some additional information.
According to my client, as he downloads e-mail from Qpopper,
when he hits this particular "Microsoft" patch virus, his
McAfee pops up and handles the virus. Then, it goes away,
and comes back. Then, Outlook does not continue retrieving
the e-mail messages. It just hangs there and the qpopper
server times out. I don't quite understand this, but this
is what I am getting from my client.
He used to connect to a POP server using InterMail, and he
says he never had this problem.
So, does anyone know about any problems with Outlook, QPopper,
and Mcafee virus scanner? Please let me know. Thanks.
JohnM
--
John Mendenhall
john at surfutopia dot net
surf utopia
internet services
Date: Thu, 02 Oct 2003 16:23:25 -0700
From: Ken Anderson <ka at pacific dot net>
Subject: Re: Outlook and Qpopper Timeout
John Mendenhall wrote:
> On Thu, 02 Oct 2003, John Mendenhall wrote:
>
>
>>When he checks his e-mail, there are times he gets a Timeout
>>on the server. Currently, it is set to default of 120 secs.
>>Tried to run at 10 mins, same problem.
>>
>>Most of the time his e-mail works. However, it seems some
>>type of message gets in his mail file, and Outlook stops
>>downloading the e-mail. It eventually times out, and the
>>mail gets all put back in the mail file. He tries again.
>>Same thing. I have to go edit the file to remove the msg.
>>It is usually one of those recent spams enticing users to
>>apply a "Microsoft" patch, which is included in the msg.
>
>
> I apologize for responding to my own message, but I have
> obtained some additional information.
>
> According to my client, as he downloads e-mail from Qpopper,
> when he hits this particular "Microsoft" patch virus, his
> McAfee pops up and handles the virus. Then, it goes away,
> and comes back. Then, Outlook does not continue retrieving
> the e-mail messages. It just hangs there and the qpopper
> server times out. I don't quite understand this, but this
> is what I am getting from my client.
Have him tell McAfee to stop scanning incoming mail, or quarantine
without asking about it, or some other action that doesn't require the
user's input. If it doens't get quarantined immediately, it's not a
biggie, since if he opens the attachment later, McAfee will catch it at
that point, and that's a better time to deal with it, since it's causing
pop timeouts.
Ken A.
> He used to connect to a POP server using InterMail, and he
> says he never had this problem.
>
> So, does anyone know about any problems with Outlook, QPopper,
> and Mcafee virus scanner? Please let me know. Thanks.
>
> JohnM
>
Date: Thu, 2 Oct 2003 16:35:56 -0700
From: John Mendenhall <john at surfutopia dot net>
Subject: Re: Outlook and Qpopper Timeout
On Thu, 02 Oct 2003, Ken Anderson wrote:
> John Mendenhall wrote:
>
> >On Thu, 02 Oct 2003, John Mendenhall wrote:
> >
> >According to my client, as he downloads e-mail from Qpopper,
> >when he hits this particular "Microsoft" patch virus, his
> >McAfee pops up and handles the virus. Then, it goes away,
> >and comes back. Then, Outlook does not continue retrieving
> >the e-mail messages. It just hangs there and the qpopper
> >server times out. I don't quite understand this, but this
> >is what I am getting from my client.
>
> Have him tell McAfee to stop scanning incoming mail, or quarantine
> without asking about it, or some other action that doesn't require the
> user's input. If it doens't get quarantined immediately, it's not a
> biggie, since if he opens the attachment later, McAfee will catch it at
> that point, and that's a better time to deal with it, since it's causing
> pop timeouts.
>
> Ken A.
Thanks for the input. I got on the McAfee forums, and apparently,
this is the way to do this. Also, there is a bug in McAfee when
hitting a Generic.exploit bug. It hangs the e-mail client no matter
what. They are still waiting for the patch for this problem.
Thanks for the information.
JohnM
--
John Mendenhall
john at surfutopia dot net
surf utopia
internet services
Date: Thu, 2 Oct 2003 20:25:16 -0400
From: Chuck Yerkes <chuck+qpopper at yerkes dot com>
Subject: Re: Outlook and Qpopper Timeout
*cough* Eudora *cough* *cough*
Quoting John Mendenhall (john at surfutopia dot net):
> On Thu, 02 Oct 2003, Ken Anderson wrote:
> > John Mendenhall wrote:
> > >On Thu, 02 Oct 2003, John Mendenhall wrote:
...
>
> Thanks for the input. I got on the McAfee forums, and apparently,
> this is the way to do this. Also, there is a bug in McAfee when
> hitting a Generic.exploit bug. It hangs the e-mail client no matter
> what. They are still waiting for the patch for this problem.
>
> Thanks for the information.
Date: Fri, 03 Oct 2003 08:47:54 +0800
From: Kelly Ormsby <kelly at watri.org dot au>
Subject: Netscape attachments and qpopper
Hi,
I was using Washington's pop daemon until Monday when I moved across to
qpopper. I have installed qpopper 4.0.5 on Solaris 9 and for most users
it is working fine (apart from the initial download of repeated messages
which appears fine now).
I compiled qpopper with the following options:
./configure --enable-apop=/etc/pop.auth --enable-popuid=pop
--enable-poppassd --enable-status --disable-check-pw-max
--with-openssl=/usr/local/ssl --with-gdbm
I have added the following entries to inetd.conf
pop3 stream tcp nowait root /usr/local/sbin/popper qpopper
-s -t /var/log/pop.log -T 600
pop3s stream tcp nowait root /usr/local/sbin/popper popper -s
-f /usr/local/etc/qpopper-ssl.conf -t /var/log/pop.log -T 600
One of my clients using Netscape who is connecting using normal pop not
ssl-pop is having problems with attachments. He is limiting his
downloads to 100K which means when netscape gets and email larger than
that is puts a "truncated" message on the bottom and you have to click
the link to download the rest of the email. When he clicks on the link
he doesn't get the attachment and the email disappears.
The logs I am getting from his connections are repeats of the following
(in different orders):
1) Oct 1 13:51:59.304 2003 [10270] username at pop.domain.com
(xxx.xxx.xxx.xxx): -ERR Unknown command: "xsender".
2) Oct 1 14:00:48.370 2003 [10270] Stats: username 41 2343048 98
72487594 pop.domain.com xxx.xxx.xxx.xxx
3) Oct 1 21:42:23.135 2003 [17561] username at
ppp-98-48.27-151.libero.it (151.27.48.98): -ERR POP EOF or I/O Error
4) Oct 2 15:26:18.278 2003 [10167] username at pop.domain.com
(xxx.xxx.xxx.xxx): -ERR SIGHUP or SIGPIPE flagged
5) Oct 2 15:26:18.278 2003 [10167] I/O error flushing output to client
username at pop.domain.com [xxx.xxx.xxx.xxx]: Broken pipe (32)
6) Oct 2 15:26:18.279 2003 [10167] username at pop.domain.com
(xxx.xxx.xxx.xxx): -ERR POP hangup from pop.domain.com
1 - Seems to be a standard netscape error message that from what I can
tell is nothing to worry about
2 - A normal connection
3,4,5,6 - ?
Anyone seen this before?
I need help urgently. I am googling currently but not having much luck.
I will summarise to the list.
Kelly.
--
Kelly Ormsby BSc(Curtin)
Systems Administrator
WATRI\ATCRC
University of Western Australia
http://www.watri.org.au
Room G03, 39 Fairway
Nedlands
Phone : +61 8 9380 8110
Email : kelly at watri.org dot au
Date: Fri, 03 Oct 2003 08:52:44 +0800
From: Kelly Ormsby <kelly at watri.org dot au>
Subject: More info: Netscape attachments and qpopper
Should probably add that this user is on a modem in Italy and we are in
Perth, so timeouts could be an issue which is why I increased it to 6000.
K.
-------- Original Message --------
Subject: Netscape attachments and qpopper
Date: Fri, 03 Oct 2003 08:47:54 +0800
From: Kelly Ormsby <kelly at watri.org dot au>
To: Qpopper List <qpopper at lists.pensive dot org>
Hi,
I was using Washington's pop daemon until Monday when I moved across to
qpopper. I have installed qpopper 4.0.5 on Solaris 9 and for most users
it is working fine (apart from the initial download of repeated messages
which appears fine now).
I compiled qpopper with the following options:
./configure --enable-apop=/etc/pop.auth --enable-popuid=pop
--enable-poppassd --enable-status --disable-check-pw-max
--with-openssl=/usr/local/ssl --with-gdbm
I have added the following entries to inetd.conf
pop3 stream tcp nowait root /usr/local/sbin/popper qpopper
-s -t /var/log/pop.log -T 600
pop3s stream tcp nowait root /usr/local/sbin/popper popper -s
-f /usr/local/etc/qpopper-ssl.conf -t /var/log/pop.log -T 600
One of my clients using Netscape who is connecting using normal pop not
ssl-pop is having problems with attachments. He is limiting his
downloads to 100K which means when netscape gets and email larger than
that is puts a "truncated" message on the bottom and you have to click
the link to download the rest of the email. When he clicks on the link
he doesn't get the attachment and the email disappears.
The logs I am getting from his connections are repeats of the following
(in different orders):
1) Oct 1 13:51:59.304 2003 [10270] username at pop.domain.com
(xxx.xxx.xxx.xxx): -ERR Unknown command: "xsender".
2) Oct 1 14:00:48.370 2003 [10270] Stats: username 41 2343048 98
72487594 pop.domain.com xxx.xxx.xxx.xxx
3) Oct 1 21:42:23.135 2003 [17561] username at
ppp-98-48.27-151.libero.it (151.27.48.98): -ERR POP EOF or I/O Error
4) Oct 2 15:26:18.278 2003 [10167] username at pop.domain.com
(xxx.xxx.xxx.xxx): -ERR SIGHUP or SIGPIPE flagged
5) Oct 2 15:26:18.278 2003 [10167] I/O error flushing output to client
username at pop.domain.com [xxx.xxx.xxx.xxx]: Broken pipe (32)
6) Oct 2 15:26:18.279 2003 [10167] username at pop.domain.com
(xxx.xxx.xxx.xxx): -ERR POP hangup from pop.domain.com
1 - Seems to be a standard netscape error message that from what I can
tell is nothing to worry about
2 - A normal connection
3,4,5,6 - ?
Anyone seen this before?
I need help urgently. I am googling currently but not having much luck.
I will summarise to the list.
Kelly.
--
Kelly Ormsby BSc(Curtin)
Systems Administrator
WATRI\ATCRC
University of Western Australia
http://www.watri.org.au
Room G03, 39 Fairway
Nedlands
Phone : +61 8 9380 8110
Email : kelly at watri.org dot au
--
Kelly Ormsby BSc(Curtin)
Systems Administrator
WATRI\ATCRC
University of Western Australia
http://www.watri.org.au
Room G03, 39 Fairway
Nedlands
Phone : +61 8 9380 8110
Email : kelly at watri.org dot au
From: "Alan W. Rateliff, II" <lists at rateliff dot net>
Subject: Re: Outlook and Qpopper Timeout
Date: Thu, 2 Oct 2003 23:38:04 -0400
----- Original Message -----
From: "Chuck Yerkes" <chuck+qpopper at yerkes dot com>
To: "Subscribers of Qpopper" <qpopper at lists.pensive dot org>
Sent: Thursday, October 02, 2003 8:25 PM
Subject: Re: Outlook and Qpopper Timeout
> *cough* Eudora *cough* *cough*
*cough* YAM *cough* *cough* (Sorry, the Evil Trolls made me do it!)
--
Alan W. Rateliff, II : RATELIFF.NET
Independent Technology Consultant : alan2 at rateliff dot net
(Office) 850/350-0260 : (Mobile) 850/559-0100
-------------------------------------------------------------
[System Administration][IT Consulting][Computer Sales/Repair]
From: Steve Palm <stevep at sga dot org>
Subject: Re: SSL help, Qpopper and Sendmail
Date: Fri, 3 Oct 2003 15:18:58 -0500
On Sep 22, 2003, at 10:06 PM, Alan W. Rateliff, II wrote:
> Okay, I'm at my wit's end. I would appreciate anyone who has
> experience
> with non-VeriSign certificates with QPopper and/or Sendmail.
> Specifically,
> I am using Comodo InstantSSL.
I am having the same problem here, Alan.
We switched from a Thawte Certificate to an InstantSSL cert, and this
is when the problems started. Since everything worked fine with the
Thawte cert, it's not likely a Qpopper "misconfig" or anything.
I am using Mail from MacOS X and it replies:
-------------------------------------
Unable to verify SSL server xxxxxxxxxx
Mail was unable to verify the identity of this server, which has a
certificate issued to "xxxxxxxxx". The error was:
There is no root certificate for this server.
You might be connecting to a computer that is pretending to be
"xxxxxxxx", and putting your confidential information at risk. Would
you like to continue anyway?
-------------------------------------
I can show the certificate at this point, and it clearly shows a valid
certificate issued by Comodo Limited.
So, even though InstantSSL claims it is supported by "MacOS X", it
appears what they *really* mean is that it is supported by web browsers
in MacOS X.
I know that in my Apache config when this new cert was installed we
put in the additional entries for the root CA.... How is this done in
QPopper?
-----
Steve Palm --- stevep at sga dot org
Computer Systems Analyst/Programmer
Slavic Gospel Association -- Loves Park, IL
From: Steve Palm <stevep at sga dot org>
Subject: Re: SSL help, Qpopper and Sendmail
Date: Fri, 3 Oct 2003 15:28:41 -0500
I previously wrote:
> So, even though InstantSSL claims it is supported by "MacOS X", it
> appears what they *really* mean is that it is supported by web
> browsers in MacOS X.
Ahhh.... I finally got it to work, but I don't think this is the
"ideal" solution....
At least for MacOS X and it's Mail application, if I install the root
bundle from InstantSSL into the System keychain, it then will accept
the cert offered by QPopper.
I downloaded this file:
http://www.instantssl.com/ssl-certificate-support/cert_installation/
ComodoSecurityServicesCA2018.crt
Then, in MacOS X Finder, I just double-clicked on the file. It opened
the Keychain Access application and offered to install the certificate.
I had a choice of user or system, and I chose system so it would cover
any user of the machine.
Once that was done, the Mail application had no more problems.
-----
Steve Palm --- stevep at sga dot org
Computer Systems Analyst/Programmer
Slavic Gospel Association -- Loves Park, IL
From: "Alan W. Rateliff, II" <lists at rateliff dot net>
Subject: Fw: Chained certs
Date: Mon, 6 Oct 2003 07:29:46 -0400
Below is the end of an exchange between myself and the OpenSSL mailing list.
My guess appears to have been correct: QPopper is not sending the
intermediate certificate to get from Comodo to GTE, and does not appear to
have such an option.
Can this be patched?
--
Alan W. Rateliff, II : RATELIFF.NET
Independent Technology Consultant : alan2 at rateliff dot net
(Office) 850/350-0260 : (Mobile) 850/559-0100
-------------------------------------------------------------
[System Administration][IT Consulting][Computer Sales/Repair]
----- Original Message -----
From: "Ken Ballou" <ballou at crab.mv dot com>
To: "Alan W. Rateliff, II" <alan2 at rateliff dot net>
Cc: <dev-crypto at bouncycastle dot org>
Sent: Monday, October 06, 2003 12:48 AM
Subject: Re: Chained certificates
> ----- Original Message -----
> From: "Alan W. Rateliff, II" <alan2 at rateliff dot net>
> To: <ballou at crab.mv dot com>
> Sent: Sunday, October 05, 2003 10:08 PM
> Subject: Re: Chained certificates
>
>
> > ----- Original Message -----
> > From: "Ken Ballou" <ballou at crab.mv dot com>
> > To: <openssl-users at openssl dot org>
> > Sent: Tuesday, September 30, 2003 8:42 PM
> > Subject: Re: Chained certificates
> >
> >
> > > Ah, I see the question. I'd bet that sendmail and Apache are
> sending the
> > > intermediate CA certificate (and maybe the root CA certificate, or
> perhaps
> > > not). From the web site I mentioned in my first reply, I see
> there's
> > > actually a "Comodo Class 3 Security Services CA" certificate, It
> appears
> > > that would be the certificate for the CA that issued your
> certificate.
> > > Then, the GTE CyberTrust Root is the CA that issued the Comodo
> Class 3
> > > certificate.
> > >
> > > It might be worth running ssldump or a network sniffer (such as
> Ethereal)
> > > to capture the certificate chain that's presented in both cases.
> If the
> > > same client trusts your certificate when it is offered by Apache
> or by
> > > sendmail, but not when it is offered by QPopper (and if it is the
> same
> > > client), then I'd suspect that the intermediate certificate is the
> one
> > > giving you problems.
> > >
> > > Does "openssl s_client -showcerts -connect host:port" shed any
> light?
> > That
> > > might be an even better test than turning immediately to ssldump.
> >
> > I suspect the same, but not knowing the inner workings of SSL/TLS
> and thus
> > OpenSSL, I didn't want to jump to any conclusions.
> >
> > Here is the output of the command against my POP3 server on the
> secured
> > channel. I did not post to the list because of the length of
> output.
>
> I've deleted the actual certificate to trim the message. The subject
> and issuer lines are enough to figure out what's going on.
>
> > /usr/local/ssl/bin/openssl s_client -showcerts -connect
> > secure.rateliff.net:995
> > CONNECTED(00000003)
> > depth=0 /C=US/2.5.4.17=32315-7052/ST=Florida/L=Tallahassee/2.5.4.9=P
> O Box
> > 37052/O=Alan W Rateliff
> > II/OU=RATELIFF.NET/OU=InstantSSL/CN=secure.rateliff.net
> > verify error:num :unable to get local issuer certificate
> > verify return:1
> > depth=0
> /C=US/2.5.4.17=32315-7052/ST=Florida/L=Tallahassee/2.5.4.9=PO Box
> > 37052/O=Alan W Rateliff
> > II/OU=RATELIFF.NET/OU=InstantSSL/CN=secure.rateliff.net
> > verify error:num=27:certificate not trusted
> > verify return:1
> > depth=0
> /C=US/2.5.4.17=32315-7052/ST=Florida/L=Tallahassee/2.5.4.9=PO Box
> > 37052/O=Alan W Rateliff
> > II/OU=RATELIFF.NET/OU=InstantSSL/CN=secure.rateliff.net
> > verify error:num=21:unable to verify the first certificate
> > verify return:1
> > ---
> > Certificate chain
> > 0 s:/C=US/2.5.4.17=32315-7052/ST=Florida/L=Tallahassee/2.5.4.9=PO
> Box
> > 37052/O=Alan W Rateliff
> > II/OU=RATELIFF.NET/OU=InstantSSL/CN=secure.rateliff.net
> > i:/C=GB/O=Comodo Limited/OU=Comodo Trust Network/OU=Terms and
> Conditions
> > of use: http://www.comodo.net/repository/OU=(c)2002 Comodo
> Limited/CN=Comodo
> > Class 3 Security Services CA
> [certificate removed]
> > ---
> > Server certificate
> >
> subject=/C=US/2.5.4.17=32315-7052/ST=Florida/L=Tallahassee/2.5.4.9=PO
> Box
> > 37052/O=Alan W Rateliff
> > II/OU=RATELIFF.NET/OU=InstantSSL/CN=secure.rateliff.net
> > issuer=/C=GB/O=Comodo Limited/OU=Comodo Trust Network/OU=Terms and
> > Conditions of use: http://www.comodo.net/repository/OU=(c)2002
> Comodo
> > Limited/CN=Comodo Class 3 Security Services CA
> > ---
> > No client certificate CA names sent
> > ---
> > SSL handshake has read 1508 bytes and written 346 bytes
> > ---
>
> Yup, that's it. Your POP3 server sent the certificate issued by
> "Comodo Limited" to you ("O=Alan W Rateliff"), but there's no
> certificate getting you from the trusted root "GTE CyberTrust Root" to
> "Comodo Limited".
>
From: "Alan W. Rateliff, II" <lists at rateliff dot net>
Subject: Re: Fw: Chained certs
Date: Mon, 6 Oct 2003 13:48:35 -0400
----- Original Message -----
From: "Daniel Senie" <dts at senie dot com>
To: "Alan W. Rateliff, II" <lists at rateliff dot net>
Sent: Monday, October 06, 2003 9:20 AM
Subject: Re: Fw: Chained certs
> Normally it's the responsibility of the client to obtain the certs. After
> all, the client needs to verify them. It sounds like you're using a root
> cert that Eudora doesn't know about (which is most). The Eudora folks have
> been made aware of the need to get more certs in their distribution, and
> the GeoTrust folks, at least, have said they intend to get themselves set
> up with more mail clients.
Supposedly, ALL of the certs in my chain are supposed to be part of a number
of operating systems... so, who knows...
> This is really a Eudora problem, not a qpopper problem.
It winds up being a problem with all mail clients. I've tested with Outlook
Express, Outlook, Netscape, Eudora, and Pegasus. While it doesn't seem to
be TECHNICALLY a problem with QPopper, Sendmail and Apache BOTH present the
necessary certs for clients to properly process the chain.
> You can extract the root cert from the CA you're using, and make that
> available for import for your users.
I was hoping to avoid that. Had I known it would be this much of a problem,
I would have saved the $50 and just created self-signed certificates.
In any case, I think this is my breaking point for leaving QPopper in favor
of the WU ipop3d daemon. I've been very pleased with my QPopper
installations, but if ipop3d will handle chained certs better, then that's
where I need to go.
Thanks for the input.
--
Alan W. Rateliff, II : RATELIFF.NET
Independent Technology Consultant : alan2 at rateliff dot net
(Office) 850/350-0260 : (Mobile) 850/559-0100
-------------------------------------------------------------
[System Administration][IT Consulting][Computer Sales/Repair]
Date: Tue, 07 Oct 2003 15:44:07 +0400
From: Igor Shinin <ishinin at grey dot ru>
Subject: qpopper service terminating
Hi!
I face to the problem :
qpopper service suddenly start to fail with the following message:
>
> Oct 7 15:15:58 hstname inetd[109] pop3/tcp server failing (looping),
service terminated
>
Any ideas?
ish
Date: Tue, 07 Oct 2003 13:40:28 -0400
From: Mike Tancsa <mike at sentex dot net>
Subject: Re: qpopper service terminating
That sounds like inetd rate limitting the amount of connections per
second. On FreeBSD,
man inetd says,
ERROR MESSAGES
The inetd server logs error messages using syslog(3). Important error
messages and their explanations are:
service/protocol server failing (looping), service terminated.
The number of requests for the specified service in the past minute
exceeded the limit. The limit exists to prevent a broken program or a
malicious user from swamping the system. This message may occur for sev-
eral reasons:
1. There are many hosts requesting the service within a short
time period.
2. A broken client program is requesting the service too fre-
quently.
3. A malicious user is running a program to invoke the service in
a denial-of-service attack.
4. The invoked service program has an error that causes clients
to retry quickly.
Use the -R rate option, as described above, to change the rate limit.
Once the limit is reached, the service will be reenabled automatically in
10 minutes.
At 07:44 AM 07/10/2003, Igor Shinin wrote:
>Hi!
>
>I face to the problem :
>
>qpopper service suddenly start to fail with the following message:
>
> >
> > Oct 7 15:15:58 hstname inetd[109] pop3/tcp server failing (looping),
>service terminated
> >
>
>Any ideas?
>
>ish
Date: Thu, 09 Oct 2003 10:28:41 -0400
From: Darryl Dirickson <darryl.dirickson at marc.gatech dot edu>
Subject: Qpopper & OpenSSL
I have configured openSSL with qpopper 4.0 per the instructions (sun
solaris 9) and I get the message below when I try to run eudora 5.1 with
it. Any suggestions?
Eudora 5.1 = You have configured this protocol/personality to reject any
exchange key lengths below 0. , But the negotiated exchange key length is
-1. Hence this established secure channel is unacceptable. Connection will
be dropped. Cause (-6996)
I have found out that my qpopper config file is not working so I put a
trace file in it and it comes up with " config file nesting exceeds 100
will not process config file" It also says "the TLS-support option cannot
be used because a required compile-time option was not set"
Any help or a sample qpopper.config file that works is appreciated.
Thanks in advance.
_________________________________
Darryl Dirickson
Technical Manager
Information Systems and Services
Manufacturing Research Center
Georgia Institute of Technology
Atlanta, GA 30332-0560
404-894-9383 office
404-894-0957 FAX
darryl.dirickson at marc.gatech dot edu
From: "Emerson Maat" <efmaat at rtn-web-services dot com>
Subject: qppoper issue
Date: Fri, 10 Oct 2003 18:15:33 +0800
Hi To All,
I'm receiving this message when I login to my pop3 box.
Oct 10 18:06:11 linux popper[31722]: (v4.0.5) Unable to get canonical name
of client 1.2.3.4: Unknown host (1)
How can I make this like below?
Login user=me host=[1.2.3.4] nmsgs=0/0
Any suggestions/ideas is highly appreciated. Thanks.
Regards,
Emerson
Date: Sat, 18 Oct 2003 11:35:40 -0700
From: Rosyna <rosyna at unsanity dot com>
Subject: Fresh qpopper install on Mac OS X Panther
I've tried installing a fresh qpopper install on panther after
compiling it but when I try to test it with telnet localhost pop3 it
just says:
Trying ::1...
telnet: connect to address ::1: Connection refused
Trying 127.0.0.1...
Connected to localhost.
Escape character is '^]'.
Connection closed by foreign host.
and kicks me back to the shell. And eudora says TCP/IP Error. -3162;
The server is not responding. Does anyone have any idea what could be
wrong? The xinetd entry is set up as:
service pop3
{
disable = no
socket_type = stream
wait = no
protocol = tcp
user = root
server = /usr/libexec/popper
server_args = qpopper -s -c -C -F
port = 110
}
which I can only assume is correct.
--
Sincerely,
Rosyna Keller
Technical Support/Holy Knight/Always needs a hug
Unsanity: Unsane Tools for Insanely Great People
---
Please include any previous correspondence in replies, it helps me
remember what we were talking about. Thanks.
Date: Sat, 18 Oct 2003 16:05:40 -0400
Subject: Re: Fresh qpopper install on Mac OS X Panther
From: Elliott Liggett <kilowatt at cinci.rr dot com>
Open up the System Preferences, and click "Sharing". Next, click
"Firewall" and either disable the firewall, or add rules for pop3.
This might not be it, but then again, it might be!
Also, check qpopper's log file. The fact that it connects and then
disconnects says that xinetd has opened the port properly, and qpopper
is failing. You might want to try launching qpopper without xinted,
just to see what happens.
--Elliott
On Saturday, October 18, 2003, at 02:35 PM, Rosyna wrote:
> I've tried installing a fresh qpopper install on panther after
> compiling it but when I try to test it with telnet localhost pop3 it
> just says:
>
> Trying ::1...
> telnet: connect to address ::1: Connection refused
> Trying 127.0.0.1...
> Connected to localhost.
> Escape character is '^]'.
> Connection closed by foreign host.
>
> and kicks me back to the shell. And eudora says TCP/IP Error. -3162;
> The server is not responding. Does anyone have any idea what could be
> wrong? The xinetd entry is set up as:
>
> service pop3
> {
> disable = no
> socket_type = stream
> wait = no
> protocol = tcp
> user = root
> server = /usr/libexec/popper
> server_args = qpopper -s -c -C -F
> port = 110
> }
>
> which I can only assume is correct.
> --
>
>
> Sincerely,
> Rosyna Keller
> Technical Support/Holy Knight/Always needs a hug
>
> Unsanity: Unsane Tools for Insanely Great People
> ---
>
> Please include any previous correspondence in replies, it helps me
> remember what we were talking about. Thanks.
>
Date: Sat, 18 Oct 2003 17:08:16 -0700
From: Rosyna <rosyna at unsanity dot com>
Subject: Re: Fresh qpopper install on Mac OS X Panther
firewall isn't on. The only log entries I can find are in system.log:
Oct 18 16:59:33 localhost xinetd[340]: START: pop3 pid=1655 from=127.0.0.1
Oct 18 17:00:34 localhost xinetd[340]: START: pop3 pid=1658 from=127.0.0.1
Oct 18 17:01:30 localhost xinetd[340]: START: pop3 pid=1661 from=127.0.0.1
Oct 18 17:02:31 localhost xinetd[340]: START: pop3 pid=1664 from=127.0.0.1
Oct 18 17:03:35 localhost xinetd[340]: START: pop3 pid=1667 from=127.0.0.1
Oct 18 17:04:32 localhost xinetd[340]: START: pop3 pid=1670 from=127.0.0.1
When I launch qpopper without xinetd, I just get returned back to the
shell. No error, no nothing.
Ack, at 10/18/03, Elliott Liggett said:
>Open up the System Preferences, and click "Sharing". Next, click
>"Firewall" and either disable the firewall, or add rules for pop3.
>
>This might not be it, but then again, it might be!
>Also, check qpopper's log file. The fact that it connects and then
>disconnects says that xinetd has opened the port properly, and
>qpopper is failing. You might want to try launching qpopper without
>xinted, just to see what happens.
>
>--Elliott
>
--
Sincerely,
Rosyna Keller
Technical Support/Holy Knight/Always needs a hug
Unsanity: Unsane Tools for Insanely Great People
---
Please include any previous correspondence in replies, it helps me
remember what we were talking about. Thanks.
Date: Sat, 18 Oct 2003 18:43:49 -0700
From: Rosyna <rosyna at unsanity dot com>
Subject: Re: Fresh qpopper install on Mac OS X Panther
More info. Now I've got it running but it always stalls at the
password prompt. I enter any username (even the correct one) and any
pass and it says authorization failed
Ack, at 10/18/03, Elliott Liggett said:
>Open up the System Preferences, and click "Sharing". Next, click
>"Firewall" and either disable the firewall, or add rules for pop3.
>
>This might not be it, but then again, it might be!
>Also, check qpopper's log file. The fact that it connects and then
>disconnects says that xinetd has opened the port properly, and
>qpopper is failing. You might want to try launching qpopper without
>xinted, just to see what happens.
>
>--Elliott
--
Sincerely,
Rosyna Keller
Technical Support/Holy Knight/Always needs a hug
Unsanity: Unsane Tools for Insanely Great People
---
Please include any previous correspondence in replies, it helps me
remember what we were talking about. Thanks.
Subject: Re: Fresh qpopper install on Mac OS X Panther
Date: Sat, 18 Oct 2003 19:02:10 -0700
From: Greg Earle <earle at isolar.DynDNS dot ORG>
> More info. Now I've got it running but it always stalls at the
> password prompt. I enter any username (even the correct one) and any
> pass and it says authorization failed
ktrace(1) is Your Friend.
- Greg
Date: Sat, 18 Oct 2003 19:17:28 -0700
From: Rosyna <rosyna at unsanity dot com>
Subject: Re: Fresh qpopper install on Mac OS X Panther
The output means nothing to me ;)
22231 popper RET read 11/0xb
22231 popper CALL setitimer(0,0xbfffe620,0xbfffe630)
22231 popper RET setitimer 0
22231 popper CALL sigaction(0xe,0xbfffe5c0,0xbfffe630)
22231 popper RET sigaction 0
22231 popper CALL sendto(0x4,0xbfffd3a0,0x55,0,0,0)
22231 popper GIO fd 4 wrote 85 bytes
"<135>Oct 18 19:14:53 popper[22231]: Received (9): "user lame" [pop_get\
_command.c:105]"
22231 popper RET sendto 85/0x55
22231 popper CALL getlogin(0xa0008ce4,0xff)
22231 popper RET getlogin 0
22231 popper CALL sendto(0x4,0xbfffd380,0x54,0,0,0)
22231 popper GIO fd 4 wrote 84 bytes
"<135>Oct 18 19:14:53 popper[22231]: +OK Password required for lame. [p\
op_user.c:437]"
22231 popper RET sendto 84/0x54
22231 popper CALL write(0,0x9b000,0x21)
22231 popper GIO fd 0 wrote 33 bytes
"+OK Password required for lame.\r
"
22231 popper RET write 33/0x21
22231 popper CALL sendto(0x4,0xbfffd7f0,0x5a,0,0,0)
22231 popper GIO fd 4 wrote 90 bytes
"<135>Oct 18 19:14:53 popper[22231]: user returned 1; CurrentState now \
auth2 [popper.c:338]"
22231 popper RET sendto 90/0x5a
22231 popper CALL sendto(0x4,0xbfffd7f0,0x73,0,0,0)
22231 popper GIO fd 4 wrote 115 bytes
"<135>Oct 18 19:14:53 popper[22231]: Qpopper ready for input from lame \
at 192.168.1.13 [192.168.1.13] [popper.c:294]"
22231 popper RET sendto 115/0x73
22231 popper CALL sigaction(0xe,0xbfffe5c0,0xbfffe630)
22231 popper RET sigaction 0
22231 popper CALL setitimer(0,0xbfffe620,0xbfffe630)
22231 popper RET setitimer 0
22231 popper CALL sigprocmask(0x1,0,0x25834)
22231 popper RET sigprocmask 0
22231 popper CALL read(0,0xbfffea78,0x800)
22231 popper GIO fd 0 read 11 bytes
"pass lame\r
"
22231 popper RET read 11/0xb
22231 popper CALL setitimer(0,0xbfffe620,0xbfffe630)
22231 popper RET setitimer 0
22231 popper CALL sigaction(0xe,0xbfffe5c0,0xbfffe630)
22231 popper RET sigaction 0
22231 popper CALL sendto(0x4,0xbfffd3a0,0x55,0,0,0)
22231 popper GIO fd 4 wrote 85 bytes
"<135>Oct 18 19:14:56 popper[22231]: Received: "pass xxxxxxxxx" [pop_ge\
t_command.c:96]"
22231 popper RET sendto 85/0x55
22231 popper CALL sendto(0x4,0xbfffd790,0x53,0,0,0)
22231 popper GIO fd 4 wrote 83 bytes
"<135>Oct 18 19:14:56 popper[22231]: User lame not known by system [pop\
_pass.c:1293]"
22231 popper RET sendto 83/0x53
22231 popper CALL sendto(0x4,0xbfffd380,0x91,0,0,0)
22231 popper GIO fd 4 wrote 145 bytes
"<133>Oct 18 19:15:06 popper[22231]: lame at 192.168.1.13 (192.168.1.13\
): -ERR [AUTH] Password supplied for "lame" is incorrect. [pop_pass.c:\
1295]"
22231 popper RET sendto 145/0x91
22231 popper CALL write(0,0x9b000,0x38)
22231 popper GIO fd 0 wrote 56 bytes
"-ERR [AUTH] Password supplied for "lame" is incorrect.\r
"
22231 popper RET write 56/0x38
22231 popper CALL sendto(0x4,0xbfffd7f0,0x59,0,0,0)
22231 popper GIO fd 4 wrote 89 bytes
"<135>Oct 18 19:15:06 popper[22231]: pass returned 0; CurrentState now \
halt [popper.c:338]"
22231 popper RET sendto 89/0x59
22231 popper CALL sendto(0x4,0xbfffd380,0x68,0,0,0)
22231 popper GIO fd 4 wrote 104 bytes
"<135>Oct 18 19:15:06 popper[22231]: +OK Pop server at rosynas-computer\
.local signing off. [popper.c:360]"
22231 popper RET sendto 104/0x68
22231 popper CALL write(0,0x9b000,0x37)
22231 popper GIO fd 0 wrote 55 bytes
"+OK Pop server at rosynas-computer.local signing off.\r
"
22231 popper RET write 55/0x37
22231 popper CALL sendto(0x4,0xbfffd7f0,0x75,0,0,0)
22231 popper GIO fd 4 wrote 117 bytes
"<135>Oct 18 19:15:06 popper[22231]: (v4.0.5) Ending request from "lame\
" at (192.168.1.13) 192.168.1.13 [popper.c:378]"
22231 popper RET sendto 117/0x75
22231 popper CALL close(0x4)
22231 popper RET close 0
22231 popper CALL exit(0)
Ack, at 10/18/03, Greg Earle said:
> > More info. Now I've got it running but it always stalls at the
>> password prompt. I enter any username (even the correct one) and any
>> pass and it says authorization failed
>
>ktrace(1) is Your Friend.
>
> - Greg
--
Sincerely,
Rosyna Keller
Technical Support/Holy Knight/Always needs a hug
Unsanity: Unsane Tools for Insanely Great People
---
Please include any previous correspondence in replies, it helps me
remember what we were talking about. Thanks.
Date: Sat, 18 Oct 2003 19:32:44 -0700
From: Rosyna <rosyna at unsanity dot com>
Subject: Re: Fresh qpopper install on Mac OS X Panther
Actually makes me think. If qpopper is using crypt to encrypt
passwords... panther no longer uses crypt
Ack, at 10/18/03, Greg Earle said:
> > More info. Now I've got it running but it always stalls at the
>> password prompt. I enter any username (even the correct one) and any
>> pass and it says authorization failed
>
>ktrace(1) is Your Friend.
>
> - Greg
--
Sincerely,
Rosyna Keller
Technical Support/Holy Knight/Always needs a hug
Unsanity: Unsane Tools for Insanely Great People
---
Please include any previous correspondence in replies, it helps me
remember what we were talking about. Thanks.
Date: Thu, 23 Oct 2003 11:50:16 -0700
From: Rosyna <rosyna at unsanity dot com>
Subject: Re: Fresh qpopper install on Mac OS X Panther
I was finally able to get this to work. Had to pass --with-pam to the
configure script and change the header include from
<security/pam_appl.h> to <pam/pam_appl.h>
Ack, at 10/18/03, Rosyna said:
>I've tried installing a fresh qpopper install on panther after
>compiling it but when I try to test it with telnet localhost pop3 it
>just says:
>
>Trying ::1...
>telnet: connect to address ::1: Connection refused
>Trying 127.0.0.1...
>Connected to localhost.
>Escape character is '^]'.
>Connection closed by foreign host.
>
>and kicks me back to the shell. And eudora says TCP/IP Error. -3162;
>The server is not responding. Does anyone have any idea what could
>be wrong? The xinetd entry is set up as:
>
>service pop3
>{
> disable = no
> socket_type = stream
> wait = no
> protocol = tcp
> user = root
> server = /usr/libexec/popper
> server_args = qpopper -s -c -C -F
> port = 110
>}
>
>which I can only assume is correct.
>--
>
>
>Sincerely,
>Rosyna Keller
>Technical Support/Holy Knight/Always needs a hug
>
>Unsanity: Unsane Tools for Insanely Great People
>---
>
>Please include any previous correspondence in replies, it helps me
>remember what we were talking about. Thanks.
--
Sincerely,
Rosyna Keller
Technical Support/Holy Knight/Always needs a hug
Unsanity: Unsane Tools for Insanely Great People
---
Please include any previous correspondence in replies, it helps me
remember what we were talking about. Thanks.
Date: Mon, 27 Oct 2003 14:59:09 -0800
From: Kato Wulf <lists at havenshade dot com>
Subject: Odd "No new messages" problem
Hello
When I try to check an account on the server using qpopper it reports
"no new messages".
The server log shows nothing out of the ordinary:
Oct 27 15:56:41 [xinetd] START: pop-3 pid=12133 from=192.168.221.206
Oct 27 15:56:41 [popper] Stats: havenshade 0 0 0 0 192.168.221.206
192.168.221.206
There are several messages in the mailbox for this user, and I have
attempted sending new messages to insure that they are marked as new for
the mail client.
Oddly, when I log into the shell and use "mail -u username" to check the
messages, it reports the same: "no new messages".
However, if I log into the shell and use "mail -f /var/spool/username"
it shows the messages as expected.
Here is my setup information:
------------------
Using Gentoo 2.4.20-gentoo-r7 i686 AMD Athlon
Qmail 1.03-r10
I have the mailboxes located in a central location:
/home/postman/mailbox-username
I have /var/mail and /var/spool/mail set up to forward to
/home/postman/mailbox-username
------------------
Anyone seen anything like this?
Thanks in advance for your help and suggestions!
Kato
From: "Alex Moen" <alexm at ndtel dot com>
Subject: Bulletin question
Date: Tue, 28 Oct 2003 11:04:11 -0600
We have 3 groups of users, and send bulletins to all users (not using
groupbulls). We have some users who are adamantly opposed to receiving the
bulletins. Is there a simple way to tell popper not to send bulletins to
select people without switching to groupbulls and adding 3 more groups (ie,
group1, group1-nobulls, group2, group2-nobulls, etc.)?
I have tried adding a .popbull file into a user's directory, and putting a
99999999999 number into it to try to tell popper that the user doesn't need
the bulletins, but that doesn't seem to work... Any other ideas?
TIA
Alex
From: "Kevin Steinhaus" <kevins at hutchtel dot net>
Subject: Strange message on new server
Date: Tue, 28 Oct 2003 16:16:01 -0600
Hello all,
I just installed a new server (Alpha DS10 running Tru64 5.1b) with Qpopper
4.0.5 and am seeing this message in the logs....
Oct 28 11:35:36 ds1 popper[780532]: Unable to move
/var/spool/poptemp/.shop.pop to /var/spool/mail/shop: Cross-device link (18)
Oct 28 11:36:18 ds1 popper[780081]: Unable to move
/var/spool/poptemp/.djg.pop to /var/spool/mail/djg: Cross-device link (18)
Everything seems to be working but I'm a little uneasy about seeing such a
message so often (everytime a client pops their mail)
/var/spool/mail is a different drive than /var/spool/poptemp, but I believe
I've done that before....
Any thoughts?
Thanks in advance,
Kevin Steinhaus
Hutchinson Telephone Company
Date: Wed, 29 Oct 2003 13:42:28 +0100
From: Ezio Paglia <ezio at comune.grosseto dot it>
Subject: Too many Server processes
Dear list,
we often find lots of qpopper server processes running in our system . We
need to kill them.
I.e.
[xxxxxxxx]# ps -ef|grep popper
root 5398 13725 0 Oct23 ? 00:00:00 popper -s
root 25569 13725 0 Oct23 ? 00:00:00 popper -s
root 26854 13725 0 Oct23 ? 00:00:00 popper -s
root 12365 13725 0 Oct24 ? 00:00:00 popper -s
root 14681 13725 0 Oct24 ? 00:00:00 popper -s
root 15436 13725 0 Oct24 ? 00:00:00 popper -s
root 18232 13725 0 Oct24 ? 00:00:00 popper -s
root 20826 13725 0 Oct24 ? 00:00:00 popper -s
root 25310 13725 0 Oct27 ? 00:00:00 popper -s
root 30927 13725 0 Oct27 ? 00:00:00 popper -s
root 6335 13725 0 Oct27 ? 00:00:00 popper -s
root 10117 13725 0 Oct27 ? 00:00:00 popper -s
We need to 'killall popper'
Everything works, but do you know why it may happen?
Thank you
Ezio
--------------------------------------------------------------------------
Ezio PAGLIA
Tel. 0564-488706
Fax 0564-21139
Servizi Informatici
Comune di GROSSETO
Italia
---
Date: Wed, 29 Oct 2003 12:11:29 -0800
From: Kenneth Porter <shiva at sewingwitch dot com>
Subject: Re: Too many Server processes
--On Wednesday, October 29, 2003 1:42 PM +0100 Ezio Paglia
<ezio at comune.grosseto dot it> wrote:
> we often find lots of qpopper server processes running in our system
What version? What OS? What creates them? xinetd? What state are they in? Do
they have any files/sockets open?
Date: Thu, 30 Oct 2003 13:04:26 +0100
From: Ezio Paglia <ezio at comune.grosseto dot it>
Subject: Re: Too many Server processes
Dear Kenneth and list,
we are on Linux RH 7.3, xinetd of course.
The /etc/xinetd.d/popper contains
service pop3
{
socket_type = stream
wait = no
user = root
# server = /etc/popper
server = /usr/local/sbin/popper
server_args = -s
log_on_success += USERID
log_on_failure += USERID
#disable = yes
}
The version of qpopper is the last one.
I only verified that a pid was corresponding to a line of the maillog file
where it appeared the same number of popper process together with an error:
-ERR Too few arguments for the pass command
But I could not verify it for the other cases (maillog too large), perhaps
I had better given you a more significant statistics.
Ciao and thank you.
Yours Ezio.
>Date: Wed, 29 Oct 2003 12:11:29 -0800
>From: Kenneth Porter <shiva at sewingwitch dot com>
>Subject: Re: Too many Server processes
>
>--On Wednesday, October 29, 2003 1:42 PM +0100 Ezio Paglia
><ezio at comune.grosseto dot it> wrote:
>
> > we often find lots of qpopper server processes running in our system
>
>What version? What OS? What creates them? xinetd? What state are they in? Do
>they have any files/sockets open?
>
>------------------------------------------------------------
--------------------------------------------------------------------------
Ezio PAGLIA
Tel. 0564-488706
Fax 0564-21139
Servizi Informatici
Comune di GROSSETO
Italia
---
From: "Alex Moen" <alexm at ndtel dot com>
Subject: FW: Bulletin question
Date: Thu, 30 Oct 2003 10:07:50 -0600
Anybody have any ideas about this?
Thanks,
Alex
> We have 3 groups of users, and send bulletins to all users
> (not using groupbulls). We have some users who are adamantly
> opposed to receiving the bulletins. Is there a simple way to
> tell popper not to send bulletins to select people without
> switching to groupbulls and adding 3 more groups (ie, group1,
> group1-nobulls, group2, group2-nobulls, etc.)?
>
> I have tried adding a .popbull file into a user's directory,
> and putting a 99999999999 number into it to try to tell
> popper that the user doesn't need the bulletins, but that
> doesn't seem to work... Any other ideas?
From: "Alan W. Rateliff, II" <lists at rateliff dot net>
Subject: Re: Bulletin question
Date: Thu, 30 Oct 2003 18:39:38 -0500
----- Original Message -----
From: "Alex Moen" <alexm at ndtel dot com>
To: "Subscribers of Qpopper" <qpopper at lists.pensive dot org>
Sent: Thursday, October 30, 2003 11:07 AM
Subject: FW: Bulletin question
> Anybody have any ideas about this?
>
> Thanks,
> Alex
>
> > We have 3 groups of users, and send bulletins to all users
> > (not using groupbulls). We have some users who are adamantly
> > opposed to receiving the bulletins. Is there a simple way to
> > tell popper not to send bulletins to select people without
> > switching to groupbulls and adding 3 more groups (ie, group1,
> > group1-nobulls, group2, group2-nobulls, etc.)?
> >
> > I have tried adding a .popbull file into a user's directory,
> > and putting a 99999999999 number into it to try to tell
> > popper that the user doesn't need the bulletins, but that
> > doesn't seem to work... Any other ideas?
Is this an environment in which you can tell the users to lump it? What
about trying a smaller number in the .popbull file? In my setup, I have
been able to prevent bulletins from, or even cause bulletins to, appear in
users' mailboxes by manipulating the .popbull file just-so.
One gotcha on this tactic, however, was file ownership and permissions. All
of my .popbull files are owned by the user, GID of the user's default group,
and chmod 740.
--
Alan W. Rateliff, II : RATELIFF.NET
Independent Technology Consultant : alan2 at rateliff dot net
(Office) 850/350-0260 : (Mobile) 850/559-0100
-------------------------------------------------------------
[System Administration][IT Consulting][Computer Sales/Repair]
Date: Fri, 31 Oct 2003 03:49:05 -0500 (EST)
From: Alan Brown <alanb at digistar dot com>
Subject: Re: Bulletin question
On Thu, 30 Oct 2003, Alan W. Rateliff, II wrote:
> One gotcha on this tactic, however, was file ownership and permissions. All
> of my .popbull files are owned by the user, GID of the user's default group,
> and chmod 740.
They have to be set this way - qpopper is running as the user by the
time it hits the .popbull file. :-(
There are tweaks to ftp servers which will prevent users touching those
files. If they have shell access there's not much you can do to stop
them deleting it other than touch .00-DO-NO-DELETE-POPBULL
AB
From: "Alex Moen" <alexm at ndtel dot com>
Subject: RE: Bulletin question
Date: Fri, 31 Oct 2003 08:01:46 -0600
> Is this an environment in which you can tell the users to
> lump it?
Don't I wish!!! :) Unfortunately, it is an ISP situation where users
are
paying for the service, and have the opinion that they are the customer,
and
the customer is always right. :)
> What about trying a smaller number in the .popbull
> file? In my setup, I have been able to prevent bulletins
> from, or even cause bulletins to, appear in users' mailboxes
> by manipulating the .popbull file just-so.
>
> One gotcha on this tactic, however, was file ownership and
> permissions. All of my .popbull files are owned by the user,
> GID of the user's default group, and chmod 740.
OK, that sounds reasonable, I'll try a smaller number and double check
the
file permissions.
Thanks!!
Alex
From: "Alex Moen" <alexm at ndtel dot com>
Subject: RE: Bulletin question
Date: Fri, 31 Oct 2003 08:47:03 -0600
OK. I wasn't clear about this... We are using the bulletin database,
and
from readings that I had seen it seemed that popper continued to check
the
user's .popbull *each time* the user checked the mail. HOWEVER, upon
further reading, more attention paid to said reading, and going to the
actual source (GUIDE.pdf), popper only checks the popbull file the
*first*
time the user pops. So, I am barking up the wrong virutal tree here.
OK, to REphrase my question: Is there any way to tell popper -- when
using
the bulldb option -- to NOT give out a bulletin to a user. Can I
manipulate
the actual bulletin database in such a way (manually, that is) to get
this
outcome?
Sorry I didn't fully explain the situation. It would have made more
sense
to people if I had given accurate information. Putting the number in
the
.popbull file to a large number does indeed work on a box that is not
using
the bulldb (I have another box I tried this on - it works as
advertised).
Thanks!
Alex
> > Is this an environment in which you can tell the users to
> > lump it?
>
> Don't I wish!!! :) Unfortunately, it is an ISP situation
> where users are paying for the service, and have the opinion
> that they are the customer, and the customer is always right. :)
>
> > What about trying a smaller number in the .popbull
> > file? In my setup, I have been able to prevent bulletins
> > from, or even cause bulletins to, appear in users' mailboxes
> > by manipulating the .popbull file just-so.
> >
> > One gotcha on this tactic, however, was file ownership and
> > permissions. All of my .popbull files are owned by the user,
> > GID of the user's default group, and chmod 740.
>
> OK, that sounds reasonable, I'll try a smaller number and
> double check the file permissions.
>
> Thanks!!
>
> Alex
>
>
From: "kclo2000" <kclo2000 at netvigator dot com>
Subject: Qpopper4.0.5 in Solaris 8 with LDAP enabled through PAM
Date: Wed, 5 Nov 2003 11:52:51 +0800
Dear all,
We have enabled Solaris 8 to authenticate through LDAP by changing the order
of LDAP in the passwd and group of the nsswitch.conf and modify the PAM
configuration. All OS service including telnet,ftp is running properly. We
have also recomplie Qpopper with PAM enabled option. The POP3 process also
running properly only if there is only 1 LDAP server entry is set at the
/var/ldap/ldap_client_file. When we setup two LDAP servers entry in it like
NS_LDAP_FILE_VERSION= 2.0
NS_LDAP_SERVERS= 10.1.1.1,10.1.1.2
NS_LDAP_SEARCH_BASEDN= dc=xx,dc=com
NS_LDAP_AUTH= simple
NS_LDAP_CACHETTL= 3600
the POP3 service can't authenticate through the LDAP server and produces the
following error in the poplog file
Nov 5 11:50:43 server popper[27115]: [ID 293258 local3.error] libsldap:
Status: 2 Mesg: Unable to load configuration '/var/ldap/ldap_client_file'
('Invalid server (10.1.1.1,) in NS_LDAP_SERVERS').
When we use the same setting for, FTP,telnet are running properly and can
use the second LDAP server entry if the first one is unaccessible.
My question is that when we enable POP3 through PAM, Qpopper should only
read the information from Solaris 8 PAM configuration. Qpopper should not
read the LDAP information directly??
Any suggestion is welcome!
Date: Tue, 4 Nov 2003 21:46:41 -0800 (PST)
From: The Little Prince <thelittleprince at asteroid-b612 dot org>
Subject: Re: Qpopper4.0.5 in Solaris 8 with LDAP enabled through PAM
On Wed, 5 Nov 2003, kclo2000 wrote:
> Dear all,
>
> We have enabled Solaris 8 to authenticate through LDAP by changing the order
> of LDAP in the passwd and group of the nsswitch.conf and modify the PAM
> configuration. All OS service including telnet,ftp is running properly. We
> have also recomplie Qpopper with PAM enabled option. The POP3 process also
> running properly only if there is only 1 LDAP server entry is set at the
> /var/ldap/ldap_client_file. When we setup two LDAP servers entry in it like
>
> NS_LDAP_FILE_VERSION= 2.0
> NS_LDAP_SERVERS= 10.1.1.1,10.1.1.2
AFAIK, this is incorrect syntax
try:
NS_LDAP_SERVERS= 10.1.1.1
NS_LDAP_SERVERS= 10.1.1.2
> My question is that when we enable POP3 through PAM, Qpopper should only
> read the information from Solaris 8 PAM configuration. Qpopper should not
> read the LDAP information directly??
i don't think it is..probably the sldap library is through system pam, but
just relaying the error back to the calling process.
--Tony
.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-.
Anthony J. Biacco Network Administrator/Engineer
thelittleprince at asteroid-b612.org http://www.asteroid-b612 dot org
"You find magic from your god, and I find magic everywhere"
.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-.
From: "kclo2000" <kclo2000 at netvigator dot com>
Subject: Re: Qpopper4.0.5 in Solaris 8 with LDAP enabled through PAM
Date: Wed, 5 Nov 2003 14:55:47 +0800
Dear Tony,
Thanks for your response!
I have tried your suggestion with the following steps : -
1. /etc/init.d/ldap.client stop
2. Modify /var/ldap/ldap_client_file by adding one more ldap server entry
3. /etc/init.d/ldap.client start
If the first LDAP server entry is reachable, the /var/ldap/ldap_client_file
will be modified by only maintaining first entry of LDAP server. The second
entry of ldap server will be removed.
If the first LDAP server entry is not reachable, the file will be modified
by only containing the second LDAP server. The first entry of LDAP server
will be removed.
Is the above result correct?
THanks!
----- Original Message -----
From: "The Little Prince" <thelittleprince at asteroid-b612 dot org>
To: "kclo2000" <kclo2000 at netvigator dot com>
Cc: "Subscribers of Qpopper" <qpopper at lists.pensive dot org>
Sent: Wednesday, November 05, 2003 1:46 PM
Subject: Re: Qpopper4.0.5 in Solaris 8 with LDAP enabled through PAM
> On Wed, 5 Nov 2003, kclo2000 wrote:
>
> > Dear all,
> >
> > We have enabled Solaris 8 to authenticate through LDAP by changing the
order
> > of LDAP in the passwd and group of the nsswitch.conf and modify the PAM
> > configuration. All OS service including telnet,ftp is running properly.
We
> > have also recomplie Qpopper with PAM enabled option. The POP3 process
also
> > running properly only if there is only 1 LDAP server entry is set at the
> > /var/ldap/ldap_client_file. When we setup two LDAP servers entry in it
like
> >
> > NS_LDAP_FILE_VERSION= 2.0
> > NS_LDAP_SERVERS= 10.1.1.1,10.1.1.2
>
> AFAIK, this is incorrect syntax
> try:
> NS_LDAP_SERVERS= 10.1.1.1
> NS_LDAP_SERVERS= 10.1.1.2
>
> > My question is that when we enable POP3 through PAM, Qpopper should only
> > read the information from Solaris 8 PAM configuration. Qpopper should
not
> > read the LDAP information directly??
>
> i don't think it is..probably the sldap library is through system pam, but
> just relaying the error back to the calling process.
>
> --Tony
>
.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-.
> Anthony J. Biacco Network
Administrator/Engineer
> thelittleprince at asteroid-b612 dot org
http://www.asteroid-b612.org
>
> "You find magic from your god, and I find magic everywhere"
>
.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-.
>
>
From: "comeng eng" <tcomengw at hotmail dot com>
Subject: qpopper option.
Date: Wed, 05 Nov 2003 08:58:31 +0000
Hi !
I have two mail servers out of which one is backup, incase one server is
down, mails go to the backup server. Is there any option that when the
server which was down got up, automatically get message from the
backupserver and put into the respective email boxes which are made on it.
Thanks.
Tcom.
_________________________________________________________________
The new MSN 8: smart spam protection and 2 months FREE*
http://join.msn.com/?page=features/junkmail
Date: Wed, 5 Nov 2003 16:31:19 -0800 (PST)
From: Stephanie Chung <stepchung at yahoo dot com>
Subject: Can qpopper change email password?
Can user change email password within "qpopper"? If
so, how to do it? Thanks.
__________________________________
Do you Yahoo!?
Protect your identity with Yahoo! Mail AddressGuard
http://antispam.yahoo.com/whatsnewfree
Date: Wed, 5 Nov 2003 20:11:28 -0500 (EST)
From: Alan Brown <alanb at digistar dot com>
Subject: Re: Can qpopper change email password?
On Wed, 5 Nov 2003, Stephanie Chung wrote:
> Can user change email password within "qpopper"?
No. You need to implement poppassd or similar.
Last updated on 5 Nov 2003 by Pensive Mailing List Admin