The qpopper list archive ending on 18 Dec 2002
Topics covered in this issue include:
1. Re: loadbalanced / high availability qpopper setup ?
Chuck Yerkes <chuck+qpopper at yerkes dot com>
Sun, 1 Dec 2002 18:33:31 -0800
2. Re: Adding QPop's bulleting feature to IMAP
Kenneth Porter <shiva at sewingwitch dot com>
Mon, 02 Dec 2002 01:14:20 -0800
3. I/O error ; Operation not permitted ; -ERR SIGHUP or SIGPIPE flagged
Oliver Egginger <Oliver.Egginger at dvz.fh-giessen dot de>
03 Dec 2002 09:20:26 +0100
4. Re: I/O error ; Operation not permitted ; -ERR SIGHUP or SIGPIPEflagged
Oliver Egginger <Oliver.Egginger at dvz.fh-giessen dot de>
03 Dec 2002 09:36:03 +0100
5. Stronger authentication?!
Gennaro Esposito <esposito at marscenter dot it>
Tue, 03 Dec 2002 10:22:31 +0100
6. Re: Stronger authentication?!
Chuck Yerkes <chuck+qpopper at yerkes dot com>
Tue, 3 Dec 2002 09:47:44 -0800
7. Hashed cache file dirs?
"NetNITCO System Administration" <maxadmin at netnitco dot net>
Wed, 4 Dec 2002 16:43:12 -0600
8. Strange things are afoot
listuser at neo.pittstate dot edu
Wed, 4 Dec 2002 23:16:32 -0600 (CST)
9. qpopper4.0.4 and logging
"Van Hoornick Stefaan 999900830"
5 Dec 2002 12:01:00 +0100
10. Re: Stronger authentication?!
Gennaro Esposito <esposito at marscenter dot it>
Thu, 05 Dec 2002 14:44:39 +0100
11. Re: loadbalanced / high availability qpopper setup ?
Martin Kellermann <Kellermann at sk-datentechnik dot com>
Thu, 05 Dec 2002 15:35:32 +0100
12. authentication problem/question
"sven" <sven at issociate dot net>
Thu, 5 Dec 2002 17:21:55 +0100 (Westeurop”ische Normalzeit)
13. Re: qpopper4.0.4 and logging
listuser at neo.pittstate dot edu
Thu, 5 Dec 2002 11:01:45 -0600 (CST)
14. Re: qpopper4.0.4 and logging
"Alan W. Rateliff, II" <lists at rateliff dot net>
Thu, 5 Dec 2002 12:22:45 -0500
15. RE: I/O error ; Operation not permitted ; -ERR SIGHUP or SIGPIPE flagged
"Matthew Thomas" <mthomas at biocontrolsys dot com>
Thu, 5 Dec 2002 10:48:58 -0800
16. RE: I/O error ; Operation not permitted ; -ERR SIGHUP or
Daniel Senie <dts at senie dot com>
Thu, 05 Dec 2002 14:12:20 -0500
17. Re: qpopper4.0.4 and logging
listuser at neo.pittstate dot edu
Thu, 5 Dec 2002 15:16:56 -0600 (CST)
18. five 9's insane
Chuck Yerkes <chuck+qpopper at yerkes dot com>
Thu, 5 Dec 2002 18:23:12 -0800
19. Re: authentication problem/question
Chuck Yerkes <chuck+qpopper at yerkes dot com>
Thu, 5 Dec 2002 18:32:15 -0800
20. Re: Hashed cache file dirs?
Chuck Yerkes <chuck+qpopper at yerkes dot com>
Thu, 5 Dec 2002 18:26:24 -0800
21. Re: qpopper4.0.4 and logging
Chuck Yerkes <chuck+qpopper at yerkes dot com>
Thu, 5 Dec 2002 18:28:22 -0800
22. Betreff: Re: authentication problem/question
"sven" <sven at issociate dot net>
Fri, 6 Dec 2002 10:02:46 +0100 (Westeurop”ische Normalzeit)
23. Re(2): qpopper4.0.4 and logging
"Van Hoornick Stefaan 999900830"
9 Dec 2002 09:48:00 +0100
24. Re(2): qpopper4.0.4 and logging
Mark Wendt <wendt at kingcrab.nrl.navy dot mil>
Mon, 09 Dec 2002 06:23:11 -0500
25. Re: Re(2): qpopper4.0.4 and logging
Chuck Yerkes <chuck+qpopper at yerkes dot com>
Mon, 9 Dec 2002 10:17:22 -0800
26. Directory for unpacking?
Steve Larsen <sblarsen at DIRECTVInternet dot com>
Mon, 09 Dec 2002 17:31:28 -0500
27. re outlook express problems
"Simon May" <simon at imsl dot es>
Tue, 10 Dec 2002 09:17:41 +0100
28. Re(2): Re(2): qpopper4.0.4 and logging
"Van Hoornick Stefaan 999900830"
10 Dec 2002 09:22:00 +0100
29. HELP!!! -ERR Unknown command: "\200f^A^C^A"
serg at city.gov.te dot ua
Tue, 10 Dec 2002 15:17:04 +0200
30. Logging Question
Marlo Montanaro <mmontanaro at centennialcorp dot com>
Tue, 10 Dec 2002 12:06:11 -0500
31. Netscape Mail 7.0 / Qpopper/APOP 4.0.4
Mark Baith <markb at essic.umd dot edu>
Tue, 10 Dec 2002 13:08:05 -0500 (EST)
32. Re: Directory for unpacking?
Chuck Yerkes <chuck+qpopper at yerkes dot com>
Tue, 10 Dec 2002 10:53:33 -0800
33. Re: Netscape Mail 7.0 / Qpopper/APOP 4.0.4
Chuck Yerkes <chuck+qpopper at yerkes dot com>
Tue, 10 Dec 2002 12:10:36 -0800
34. RE: Logging Question
Marlo Montanaro <mmontanaro at centennialcorp dot com>
Tue, 10 Dec 2002 16:42:08 -0500
35. Spool location
Andy Druda <adruda at wagner dot edu>
Wed, 11 Dec 2002 07:38:59 -0500
36. Architectural advice.
"Christopher Crowley" <ccrowley at tulane dot edu>
Thu, 12 Dec 2002 11:48:15 -0600
37. Re: Architectural advice.
The Little Prince <thelittleprince at asteroid-b612 dot org>
Thu, 12 Dec 2002 11:11:51 -0800 (PST)
38. Multiple pop requests on the same account
Jonathan Cowherd <jonathan.cowherd at genscape dot com>
Thu, 12 Dec 2002 14:56:31 -0500
39. RE: Multiple pop requests on the same account
Jonathan Cowherd <jonathan.cowherd at genscape dot com>
Thu, 12 Dec 2002 15:24:06 -0500
40. Re: Multiple pop requests on the same account
Chuck Yerkes <chuck+qpopper at yerkes dot com>
Thu, 12 Dec 2002 12:11:54 -0800
41. Re: Multiple pop requests on the same account
Clifton Royston <cliftonr at lava dot net>
Thu, 12 Dec 2002 11:22:53 -1000
42. RE: Multiple pop requests on the same account
Jonathan Cowherd <jonathan.cowherd at genscape dot com>
Thu, 12 Dec 2002 16:33:53 -0500
43. Re: Architectural advice.
"Christopher Crowley" <ccrowley at tulane dot edu>
Thu, 12 Dec 2002 16:20:27 -0600
44. Fw: Architectural advice.
"Christopher Crowley" <ccrowley at tulane dot edu>
Fri, 13 Dec 2002 16:47:53 -0600
45. pam.d auth
"sven" <sven at issociate dot net>
Tue, 17 Dec 2002 11:17:34 +0100 (Westeurop”ische Normalzeit)
46. Re: Fw: Architectural advice.
"Jeff A. Earickson" <jaearick at colby dot edu>
Tue, 17 Dec 2002 09:48:55 -0500 (EST)
47. auto responder
"Roger Williams" <roger at roger dot jp>
Tue, 17 Dec 2002 22:55:06 -0500
48. Re: auto responder
Chip Old <fold at bcpl dot net>
Wed, 18 Dec 2002 06:31:00 -0500 (EST)
49. Re: Multiple pop requests on the same account
listuser at neo.pittstate dot edu
Wed, 18 Dec 2002 08:33:31 -0600 (CST)
50. Are --fast-update and --enable-temp-drop-dir mutually exclusive?
"Christopher Crowley" <ccrowley at tulane dot edu>
Wed, 18 Dec 2002 13:11:12 -0600
Date: Sun, 1 Dec 2002 18:33:31 -0800
From: Chuck Yerkes <chuck+qpopper at yerkes dot com>
Subject: Re: loadbalanced / high availability qpopper setup ?
Quoting John Rudd (jrudd at kzin.ucsc dot edu):
> > From: Chuck Yerkes <chuck+qpopper at yerkes dot com>
> >
> > Quoting Clifton Royston (cliftonr at lava dot net):
> > > On Wed, Nov 27, 2002 at 11:50:14AM +0100, Jurgen Philippaerts wrote:
> > > > We are planning to upgrade our pop3 server (currently running on a dual
> > > > cpu Sun E450) to a more redundant solution.
> > > > with at least two qpoppers running, and using somekind of centralized
> > > > storage.
> > Why?
> >
> > What perceived problem do you think you'd solve?
>
> There are lots of reasons for it. Load distribution so that you can use
> smaller machines to serve your huge base of users. Easing your maintenance
> schedule by having multiple clones of the same end server, allowing you to
> take individual machines off-line so you can do maintenance without
> interrupting your production services, etc. And, really, even if you feel
> qpopper is reliable enough to be part of a '5 nines' type service, that
> doesn't mean the machine under qpopper is. (I'm not saying qpopper isn't
> that good -- the one time I thought qpopper was our problem, it wasn't ...
> it turned out to in fact be the machine under qpopper, which was having
> problems with its cache batteries).
Okay, load distribution is not failover. Failover means a machine
waiting for a (the?) main server to fail and take over for it.
Load distribution has its own bag of worms:
- You still need an HA back end (NetApp does this nicely).
- Concurrent access to the data.
- That means a SAN ($$$$$)
- or a shared file system (NFS, typically).
- *That* means dealing with locking
- It also means slower access (5 pop servers sharing a 1Gb/s
network will get you, typically, far less than 40MB/s).
I initially referrence to Nick Christensen's work. I still will.
I've done it. I'd do it again. It's not cheap.
5 9's (99.999% uptime) we can go through with the math. It's a
great marketing term that's usually meaningless. 17 minutes per
month of downtime. It can be done. For lots of money. It's
unwarranted (99% of the time customers spit out the term "5 9s").
> > > Getting the user login data to be shared also has several solutions,
> > > and though I'm not that familiar with Solaris, I know your options
> > > there should include LDAP and NIS+ (as well as simply slaving the
> > > password file from the master server.)
> > And Radius.
>
> And Kerberos for the authentication side ... for the account side, you can
> use just about anything (once your passwords aren't in the account system,
> you can even almost trust something as bad as NIS with the accounts
> themselves). For example, all of our passwords are in kerberos, and we
> serve non-kerberized mail clients through popper using PAM. The accounts
> themselves are in hesiod (which is sort of like NIS, only the underlying
> engine is DNS, giving you all of the flexibility and scalability of DNS).
Kerberos, done meaningfully, requires kerberized clients. Rare
with Internet use. Kerberos is best used within a "zone of trust"
where a single entity controls or "knows" the machines accessing
its services. I cannot expect that "jane smith" accessing her mail
from her friend's machine at home would use it. I like Kerberos, I
use it. I've also seen "kerberos" support where people pass their
password in the clear and the pop server tries to get a ticket using
the user/pass pair. Wrong way to hook in, IMHO. Defeats the security
and purpose of Kerberos.
I also like/use Hesiod (which can use DNS, I've also used it with
Sybase behind it). I've stuck very large alias files into Hesiod for
use by some 400 group mail servers in corporate use.
LDAP is a quite viable replacement and far more robust.
As I said, Radius is commonly used for authentication at ISPs.
Cyrus based IMAP servers can use internal user databases (as well
as external methods). NIS+ is dead and was pretty useless and poorly
done from the start.
Date: Mon, 02 Dec 2002 01:14:20 -0800
From: Kenneth Porter <shiva at sewingwitch dot com>
Subject: Re: Adding QPop's bulleting feature to IMAP
--On Thursday, November 28, 2002 10:51 AM -0500 "Alan W. Rateliff, II"
<lists at rateliff dot net> wrote:
> But by doing this I've lost functionality of the pop bulletins. I would
> like to integrate this feature into the IMAP daemon. Has anyone done
> similar, or could anyone give me some pointers on doing this?
Maybe use the IMAP shared folder feature. Pipe the bulletins into that
folder.
Subject: I/O error ; Operation not permitted ; -ERR SIGHUP or SIGPIPE flagged
From: Oliver Egginger <Oliver.Egginger at dvz.fh-giessen dot de>
Date: 03 Dec 2002 09:20:26 +0100
Hello,
in combination with one of my (user) clients I receive the following
error message:
Dec 3 07:59:28.726 2002 [24132] I/O error flushing output to client
username at xxx.xxx.xxx.de [212.201.15.3]: Operation not permitted (1)
Dec 3 07:59:28.726 2002
Dec 3 07:59:28.726 2002 [24132] username at xxx.xxx.xxx.de
(212.201.15.3): -ERR SIGHUP or SIGPIPE flagged
Can someone explain these error messages?
Is this a known problem or need I a debug output (tcpdump)?
In the moment I think that the problem is caused by the client, but I'am
not really sure.
- oliver
Subject: Re: I/O error ; Operation not permitted ; -ERR SIGHUP or SIGPIPEflagged
From: Oliver Egginger <Oliver.Egginger at dvz.fh-giessen dot de>
Date: 03 Dec 2002 09:36:03 +0100
Sorry, I forgot to mention,
we use Qpopper v4.0.4
- oliver
Tu, 2002-12-03 at 09.20:
> Hello,
>
> in combination with one of my (user) clients I receive the following
> error message:
>
> Dec 3 07:59:28.726 2002 [24132] I/O error flushing output to client
> username at xxx.xxx.xxx.de [212.201.15.3]: Operation not permitted (1)
> Dec 3 07:59:28.726 2002
> Dec 3 07:59:28.726 2002 [24132] username at xxx.xxx.xxx.de
> (212.201.15.3): -ERR SIGHUP or SIGPIPE flagged
>
> Can someone explain these error messages?
> Is this a known problem or need I a debug output (tcpdump)?
>
> In the moment I think that the problem is caused by the client, but I'am
> not really sure.
>
> - oliver
>
>
--
Oliver Egginger
FH Giessen-Friedberg
DV-Zentrum
Wiesenstrasse 14
35390 Giessen
Tel. +49 641 309-1283
Fax +49 641 309-1288
Mail: Oliver.Egginger at dvz.fh-giessen dot de
********************************************************
Die aktuellen Sprechzeiten finden Sie hier:
http://www.fh-giessen.de/WEB_NADM/dvz/personen.shtml
********************************************************
Date: Tue, 03 Dec 2002 10:22:31 +0100
From: Gennaro Esposito <esposito at marscenter dot it>
Subject: Stronger authentication?!
--=====================_1550137179==.ALT
Content-Type: text/plain; charset="us-ascii"; format=flowed
Greetings
Maybe some troubles to this list sunked this mail in the deep ocean of the
Net...no problem, I send it again
sorry for eventual duplication ;-)
Original mail follows:
I'm back again with another (stupid?) question
Sometimes I get the following message (in the syslog)
<username> at <fqdn> (<ipaddr>): -ERR [AUTH] You must use stronger
authentication such as AUTH or APOP to connect to this server
Well, but that <username> HAS an entry in the APOP database and, in fact,
he/she can download e-mail w/o problems.
Qpopper is 4.0.4 and was configured with:
--disable-update-abort
--enable-apop
--enable-bulletins
--enable-group-bulls
--enable-nonauth-file=<pathtononauthfile>
--enable-poppassd
--enable-popuid=<popadminuser>
--enable-server-mode
--disable-specialauth
and is running on a DEC Alpha w/ DECUnix 4.0f.
The client is Eudora 5.1/5.2 running on a Windoz NT 4.0 ws.
Have you, gurus, an answer to this?
"I'm sorry, but I'm nothing but an egg" (Valentine Michael Smith in
Stranger in a Strange Land by R.A.Heinlein)
TIA
----------
Gennaro Esposito
(System & Security Engineer)
MARS Center *****************************
Via E. Gianturco,31 * YES! I SUPPORT *
I-80146 - Napoli - ITALY * *
ph.: +39 081-6042 493 * _/_/ _ _/_/ *
fax...: +39 081-6042 100 * _/_/===x===_/_/ *
mailto:esposito at marscenter dot it * _/_/ _/_/ *
http://www.marscenter.it * *
ftp://ftp.marscenter.it *International Space Station*
*****************************
----------
Gennaro Esposito
(System & Security Engineer)
MARS Center *****************************
Via E. Gianturco,31 * YES! I SUPPORT *
I-80146 - Napoli - ITALY * *
ph.: +39 081-6042 493 * _/_/ _ _/_/ *
fax...: +39 081-6042 100 * _/_/===x===_/_/ *
mailto:esposito at marscenter dot it * _/_/ _/_/ *
http://www.marscenter.it * *
ftp://ftp.marscenter.it *International Space Station*
*****************************
--=====================_1550137179==.ALT
Content-Type: text/html; charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable
<html>
<body>
Greetings<br>
Maybe some troubles to this list sunked this mail in the deep ocean of
the Net...no problem, I send it again<br>
sorry for eventual duplication ;-)<br>
Original mail follows:<br><br>
I'm back again with another (stupid?) question<br>
Sometimes I get the following message (in the syslog)<br><br>
<username> at <fqdn> (<ipaddr>): -ERR [AUTH] You must
use stronger authentication such as AUTH or APOP to connect to this
server<br><br>
Well, but that <username> HAS an entry in the APOP database and, in
fact, he/she can download e-mail w/o problems.<br><br>
Qpopper is 4.0.4 and was configured with:<br>
--disable-update-abort<br>
--enable-apop<br>
--enable-bulletins<br>
--enable-group-bulls<br>
--enable-nonauth-file=<pathtononauthfile><br>
--enable-poppassd<br>
--enable-popuid=<popadminuser><br>
--enable-server-mode<br>
--disable-specialauth<br>
and is running on a DEC Alpha w/ DECUnix 4.0f.<br>
The client is Eudora 5.1/5.2 running on a Windoz NT 4.0 ws.<br><br>
Have you, gurus, an answer to this?<br>
"I'm sorry, but I'm nothing but an egg" (Valentine Michael
Smith in <i>Stranger in a Strange Land by </i>R.A.Heinlein)<br>
TIA<br>
<x-sigsep><p></x-sigsep>
<font face="Fixedsys" size=1>----------<br>
Gennaro Esposito<br>
(System & Security Engineer)<br>
MARS
Center &nbs
p;
*****************************<br>
Via E.
Gianturco,31 &nbs
p;
* YES! I
SUPPORT *<br>
I-80146 - Napoli -
ITALY
* &nb
sp; &
nbsp;
*<br>
ph.: +39 081-6042
493
* _/_/ _
_/_/ *<br>
fax...: +39 081-6042
100
*
_/_/===x===_/_/ *<br>
<a href="mailto:esposito@marscenter dot it%A0%A0%A0%A0" eudora="autourl">mai
lto:esposito at marscenter dot it
</a> * _/_/
_/_/ *<br>
<a href="http://www.marscenter.it=A0=A0=A0=A0/" eudora="autourl">http://=
www.marscenter.it
</a>
* &nb
sp; &
nbsp;
*<br>
<a href="ftp://ftp.marscenter.it=A0=A0=A0=A0=A0/" eudora="autourl">ftp:/
/ftp.marscenter.it
</a> *International Space Station*<br>
&nbs
p; &n
bsp;
*****************************</font> </body>
<br>
<font face="Fixedsys" size=1>----------<br>
Gennaro Esposito<br>
(System & Security Engineer)<br>
MARS
Center &nbs
p;
*****************************<br>
Via E.
Gianturco,31 &nbs
p;
* YES! I
SUPPORT *<br>
I-80146 - Napoli -
ITALY
* &nb
sp; &
nbsp;
*<br>
ph.: +39 081-6042
493
* _/_/ _
_/_/ *<br>
fax...: +39 081-6042
100
*
_/_/===x===_/_/ *<br>
<a href="mailto:esposito@marscenter dot it%A0%A0" eudora="autourl">mailto:es
posito at marscenter dot it
</a> *
_/_/
_/_/ *<br>
<a href="http://www.marscenter.it=A0=A0=A0=A0=A0=A0=A0/" eudora="autourl
">http://www.marscenter.it
</a>
* &nb
sp; &
nbsp;
*<br>
<a href="ftp://ftp.marscenter.it=A0=A0=A0=A0=A0=A0=A0=A0/" eudora="autou
rl">ftp://ftp.marscenter.it
</a> *International Space Station*<br>
&nbs
p; &n
bsp;
*****************************</font></html>
--=====================_1550137179==.ALT--
Date: Tue, 3 Dec 2002 09:47:44 -0800
From: Chuck Yerkes <chuck+qpopper at yerkes dot com>
Subject: Re: Stronger authentication?!
Then the user is not using APOP. Trace the connection;
turn up debugging, run ethereal, whatever.
My money is that the client is offering:
USER user@fqdn
rather than "APOP user@fqdn $MD5_blob_of_data"
Quoting Gennaro Esposito (esposito at marscenter dot it):
> Greetings
> Maybe some troubles to this list sunked this mail in the deep ocean of the
> Net...no problem, I send it again
> sorry for eventual duplication ;-)
> Original mail follows:
>
> I'm back again with another (stupid?) question
> Sometimes I get the following message (in the syslog)
>
> <username> at <fqdn> (<ipaddr>): -ERR [AUTH] You must use stronger
> authentication such as AUTH or APOP to connect to this server
>
> Well, but that <username> HAS an entry in the APOP database and, in fact,
> he/she can download e-mail w/o problems.
From: "NetNITCO System Administration" <maxadmin at netnitco dot net>
Subject: Hashed cache file dirs?
Date: Wed, 4 Dec 2002 16:43:12 -0600
Greetings,
I'm attempting to set up qpopper 4.0.4 on a rather large installation,
and ran into something kind of odd in the handling of .user.cache files when
using server mode and home-dir-mail. I'd like for the cache file to either
end up in the users's home directory (as /data/user/u/s/user/.user.cache) or
in a hashed spool directory (as /var/spool/mail/u/s/.user.cache) but cannot
get this to work. I'd like to avoid having several thousand cache files
stuck in the same directory - that would certainly add some overhead in
checking e-mail. I tried the options below (no runtime config file used) but
popper would then make the directory /data/user/u/s/user/u/s/ and then
error our saying it couldn't write to /var/spool/mail/u/s (which had not
been created!):
./configure --enable-home-dir-mail --enable-servermode --enable-fast-update
--disable-old-spool-loc --disable-reverse-lookups --enable-shy --enable-temp
-drop-dir=/var/spool/mail --enable-hash-spool=2 --enable-check-hashdir
Any help on what went wrong would be appreciated.
- Max
Date: Wed, 4 Dec 2002 23:16:32 -0600 (CST)
From: listuser at neo.pittstate dot edu
Subject: Strange things are afoot
I believe I'm having some trouble with Qpopper 4.0.4. Odd things have
been happening lately that I haven't been able to figure out. The box is
an dual x86 box running RH 7.3. Qpopper was configured with
--prefix=/usr/local/
--sysconfdir=/etc/qpopper
--with-pam=pop3
--with-popuid=pop
--with-log-facility=LOG_LOCAL1
--enable-shy
--enable-log-login
--enable-servermode
--enable-bulletins=/var/mail/bulls
--enable-spool-dir=/var/mail/spool
--enable-popuid=pop
--enable-temp-drop-dir=/var/mail/poptemp
--enable-fast-update
when I migrated to the new server back in August.
Over the past couple of weeks I received reports from one of the admins
that he was receiving duplicate mail. I'm in the middle of configuring
MIMEDefang w/ SpamAssassin in Sendmail as well and using procmail to
forward a copy of all mail to a 2nd box for AV stress testing so I thought
I might have goofed something up. I had also just changed the Sendmail
config to the 2 daemon setup that 8.12 uses (whereas I'd been using the
old single control process setup even with 8.12.6 for some time now).
After some digging around I confirmed that the admin only had a single
copy of the messages in his inbox. I pretty much figured the MUA
(LookOut(tm)) was to blame. We nulled his spool and he configured LookOut
to not leave mail on server and it went away. Of course it slowly but
surely happened to all 4 of his accounts on the mail server. I suspect
users are experiencing this too but haven't reported it.
Tonight I noticed a large number of files in my mail spool directory named
things like _1AD,25A39.oak. Well, here let me give you a sample:
-r-------- 1 hoov smmsp 0 Nov 26 10:34 _06C,iK649.oak
-r-------- 1 hoov smmsp 0 Nov 26 10:34 _06C.iK649.oak
-r-------- 1 hoov smmsp 0 Nov 26 10:34 _06C%iK649.oak
-r-------- 1 hoov smmsp 0 Nov 26 10:34 _06C+iK649.oak
-r-------- 1 parsonsg smmsp 0 Nov 26 10:37 _0-D,DN649.oak
-r-------- 1 parsonsg smmsp 0 Nov 26 10:37 _0-D.DN649.oak
-r-------- 1 parsonsg smmsp 0 Nov 26 10:37 _0-D%DN649.oak
-r-------- 1 parsonsg smmsp 0 Nov 26 10:37 _0-D+DN649.oak
-r-------- 1 cjbach smmsp 0 Nov 20 16:40 _0DE,f9A39.oak
-r-------- 1 cjbach smmsp 0 Nov 20 16:40 _0DE.f9A39.oak
-r-------- 1 cjbach smmsp 0 Nov 20 16:40 _0DE%f9A39.oak
-r-------- 1 cjbach smmsp 0 Nov 20 16:40 _0DE+f9A39.oak
-r-------- 1 lukert smmsp 0 Nov 20 16:38 _0hD,Y7A39.oak
-r-------- 1 lukert smmsp 0 Nov 20 16:38 _0hD.Y7A39.oak
-r-------- 1 lukert smmsp 0 Nov 20 16:38 _0hD%Y7A39.oak
-r-------- 1 lukert smmsp 0 Nov 20 16:38 _0hD+Y7A39.oak
-r-------- 1 annl smmsp 0 Nov 29 12:41 _0IH,kT759.oak
-r-------- 1 annl smmsp 0 Nov 29 12:41 _0IH.kT759.oak
-r-------- 1 annl smmsp 0 Nov 29 12:41 _0IH%kT759.oak
-r-------- 1 annl smmsp 0 Nov 29 12:41 _0IH+kT759.oak
Sorry if it wraps badly. These files only date back to Nov 20. None of
them have data in them. There are 2783 total. I thought it might be an
openssl problem but I see that I'm running an ok version (OpenSSL 0.9.6g).
Does anyone have any ideas what's up with this? I'm a bit stumped. I
can't decide if these problems are related or not. Does the client keep
track of where it's at in a spool or is that the POP daemons job? I can't
remember.
I'd like to better my qpopper setup sometime in the future. If anyone has
any sugestions, I'd love to hear them. The spools are on disks local to
the mail server but the home directories are NFS mounted. I thought about
putting poptemp on a tmpfs volume. I need more ram for that though.
Thanks
Justin
From: "Van Hoornick Stefaan 999900830"
Date: 5 Dec 2002 12:01:00 +0100
Subject: qpopper4.0.4 and logging
Hey,
I have the following problem with qpopper 4.0.4 and logging.
In fact qpopper is logging notting!!!
I used following option at configure
--enable-standalone
--enable-log-facility=LOG=5FLOCAL1
--enable-debugging
--enable-log-login
The syslog.conf file is like this
local1.none /var/adm/messages
local1.* /var/adm/qpopper.log (And i touched the file)
Why is it not logging =3F=3F
thx
Stefaan Van Hoornick
Network Consultant
Bureau IT.032 - Sectie 13/2
E-mail: Stefaan.VanHoornick at b-rail dot be
--------------------------------------------
You may be disappointed if you fail,
but you are doomed if you don't try.
-- Beverly Sills
--------------------------------------------
Date: Thu, 05 Dec 2002 14:44:39 +0100
From: Gennaro Esposito <esposito at marscenter dot it>
Subject: Re: Stronger authentication?!
--=====================_1738665018==.ALT
Content-Type: text/plain; charset="us-ascii"; format=flowed
Hi Chuck
1 - it's always the same username at the same client. I don't know why the
PID change. It's a qpopper architecture behavior?
2 - I've check'd with a sniffer and the MD5 stuff is correctly exchanged
between the client and the server
any hint ?
Analysing the sniffer trace I've seen the follwing strange thing: there is,
among the correct APOP exchange packets, a flow which use USER command!
Because this command, a response -ERR [AUTH] is back! Hmmm....could it be
an Eudora problem ? Could it be a Windows problem? I'm sure that....
Damnd! I FIND IT!!!
The user have the 3M Post-it utility installed on his computer and this
funny (and useful) piece of code has the capability to use the SMTP and POP
to exchange yellow-notes via e-mail, but IS NOT APOP compliant!
Well! Lesson learned ;-)
Thank you Chuck and all for your help in exercise my gray-matter!
BYE and MERRY XMAS!!!!
At 09.20 04/12/2002 -0800, you wrote:
>Quoting Gennaro Esposito (esposito at marscenter dot it):
> > Hi Chuck
> > I'm sorry but the user IS using APOP
> > here is an example (from mail server syslog)
>
>Process 31231:
> > Dec 3 14:50:43 <mailserver> qpopper[31231]: apop "<username>"
> > Dec 3 14:50:43 <mailserver> qpopper[31231]: Stats: <username> 1 2034 0
> 0 <client-fqdn> <client ip-add>
>
>Process 30947:
> > Dec 3 14:50:52 <mailserver> qpopper[30947]: <username>
> at <client-fqdn> (<client ip-add>): -ERR [AUTH] You must use stronger
> authentication such as AUTH or APOP to connect to this server
>
>I don't see APOP being used in the second.
>It's sort of a pain that you are removing the usernames, causee I, at
>least, can't tell if it's the same username/ip/fqdn in all these.
>
>"I'm pushing a pedal in my car, but it won't stop."
>Which pedal? Not mentioned. Try real logs if you're still stuck.
>
> > Hmmm....I don't see the $MD5_blob_of_data you referred but maybe this is
> > simply not wrote down in the syslog...
>
>No, it's not. Using a sniffer (tcpdump or - better - ethereal) will
>show you the actual interaction, not a log of the interaction.
>
> > I'll sniff the lan to see more in dept.
> > Thank for your suggestion, anyway
> > bye
> > At 09.47 03/12/2002 -0800, you wrote:
> > >Then the user is not using APOP. Trace the connection;
> > >turn up debugging, run ethereal, whatever.
> > >My money is that the client is offering:
> > >USER user@fqdn
> > >
> > >rather than "APOP user@fqdn $MD5_blob_of_data"
> >
> > ----------
> > Gennaro Esposito
> > (System & Security Engineer)
> > MARS Center *****************************
> > Via E. Gianturco,31 * YES! I SUPPORT *
> > I-80146 - Napoli - ITALY * *
> > ph.: +39 081-6042 493 * _/_/ _ _/_/ *
> > fax...: +39 081-6042 100 * _/_/===x===_/_/ *
> > mailto:esposito at marscenter dot it * _/_/ _/_/ *
> > http://www.marscenter.it * *
> > ftp://ftp.marscenter.it *International Space Station*
> > *****************************
----------
Gennaro Esposito
(System & Security Engineer)
MARS Center *****************************
Via E. Gianturco,31 * YES! I SUPPORT *
I-80146 - Napoli - ITALY * *
ph.: +39 081-6042 493 * _/_/ _ _/_/ *
fax...: +39 081-6042 100 * _/_/===x===_/_/ *
mailto:esposito at marscenter dot it * _/_/ _/_/ *
http://www.marscenter.it * *
ftp://ftp.marscenter.it *International Space Station*
*****************************
--=====================_1738665018==.ALT
Content-Type: text/html; charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable
<html>
<body>
Hi Chuck<br>
1 - it's always the same username at the same client. I don't know why
the PID change. It's a qpopper architecture behavior?<br>
2 - I've check'd with a sniffer and the MD5 stuff is correctly exchanged
between the client and the server<br>
any hint ?<br>
Analysing the sniffer trace I've seen the follwing strange thing: there
is, among the correct APOP exchange packets, a flow which use USER
command! Because this command, a response -ERR [AUTH] is back!
Hmmm....could it be an Eudora problem ? Could it be a Windows
problem? I'm sure that....<br>
Damnd! I FIND IT!!! <br>
The user have the 3M Post-it utility installed on his computer and this
funny (and useful) piece of code has the capability to use the SMTP and
POP to exchange yellow-notes via e-mail, but IS NOT APOP compliant!<br>
Well! Lesson learned ;-)<br><br>
Thank you Chuck and all for your help in exercise my gray-matter!<br>
BYE and MERRY XMAS!!!!<br><br>
At 09.20 04/12/2002 -0800, you wrote:<br>
<blockquote type=cite class=cite cite>Quoting Gennaro Esposito
(esposito at marscenter dot it):<br>
> Hi Chuck<br>
> I'm sorry but the user IS using APOP<br>
> here is an example (from mail server syslog)<br><br>
Process 31231:<br>
> Dec 3 14:50:43 <mailserver> qpopper[31231]: apop
"<username>"<br>
> Dec 3 14:50:43 <mailserver> qpopper[31231]: Stats:
<username> 1 2034 0 0 <client-fqdn> <client
ip-add><br><br>
Process 30947:<br>
> Dec 3 14:50:52 <mailserver> qpopper[30947]:
<username> at <client-fqdn> (<client ip-add>):
-ERR [AUTH] You must use stronger authentication such as AUTH or APOP to
connect to this server<br><br>
I don't see APOP being used in the second.<br>
It's sort of a pain that you are removing the usernames, causee I, at
<br>
least, can't tell if it's the same username/ip/fqdn in all
these.<br><br>
"I'm pushing a pedal in my car, but it won't stop."<br>
Which pedal? Not mentioned. Try real logs if you're still
stuck.<br><br>
> Hmmm....I don't see the $MD5_blob_of_data you referred but maybe
this is <br>
> simply not wrote down in the syslog...<br><br>
No, it's not. Using a sniffer (tcpdump or - better - ethereal)
will<br>
show you the actual interaction, not a log of the interaction.<br><br>
> I'll sniff the lan to see more in dept.<br>
> Thank for your suggestion, anyway<br>
> bye<br>
> At 09.47 03/12/2002 -0800, you wrote:<br>
> >Then the user is not using APOP. Trace the
connection;<br>
> >turn up debugging, run ethereal, whatever.<br>
> >My money is that the client is offering:<br>
> >USER user@fqdn<br>
> ><br>
> >rather than "APOP user@fqdn
$MD5_blob_of_data"<br>
> <br>
> ----------<br>
> Gennaro Esposito<br>
> (System & Security Engineer)<br>
> MARS
Center &nbs
p;
*****************************<br>
> Via E.
Gianturco,31 &nbs
p;
* YES! I
SUPPORT *<br>
> I-80146 - Napoli -
ITALY
* &nb
sp; &
nbsp;
*<br>
> ph.: +39 081-6042
493
* _/_/ _
_/_/ *<br>
> fax...: +39 081-6042
100
*
_/_/===x===_/_/ *<br>
>
<a href="mailto:esposito@marscenter dot it%A0%A0%A0" eudora="autourl">mailto
:esposito at marscenter dot it
</a> * _/_/
_/_/ *<br>
>
<a href="http://www.marscenter.it=A0=A0=A0=A0=A0=A0=A0=A0/" eudora="auto
url">http://www.marscenter.it
</a>
* &nb
sp; &
nbsp;
*<br>
>
<a href="ftp://ftp.marscenter.it=A0=A0=A0=A0=A0=A0=A0=A0=A0/" eudora="au
tourl">ftp://ftp.marscenter.it &nbs=
p;
</a> *International Space Station*<br>
>
&nbs
p;
***************************** </blockquote>
<x-sigsep><p></x-sigsep>
<font face="Fixedsys" size=1>----------<br>
Gennaro Esposito<br>
(System & Security Engineer)<br>
MARS
Center &nbs
p;
*****************************<br>
Via E.
Gianturco,31 &nbs
p;
* YES! I
SUPPORT *<br>
I-80146 - Napoli -
ITALY
* &nb
sp; &
nbsp;
*<br>
ph.: +39 081-6042
493
* _/_/ _
_/_/ *<br>
fax...: +39 081-6042
100
*
_/_/===x===_/_/ *<br>
<a href="mailto:esposito@marscenter dot it" eudora="autourl">mailto:esposito
@marscenter.it</a>
* _/_/
_/_/ *<br>
<a href="http://www.marscenter.it=A0=A0=A0=A0=A0/" eudora="autourl">http
://www.marscenter.it
</a>
* &nb
sp; &
nbsp;
*<br>
<a href="ftp://ftp.marscenter.it=A0=A0=A0=A0=A0=A0/" eudora="autourl">ft
p://ftp.marscenter.it
</a> *International Space Station*<br>
&nbs
p; &n
bsp;
*****************************</font> </body>
</html>
--=====================_1738665018==.ALT--
Date: Thu, 05 Dec 2002 15:35:32 +0100
From: Martin Kellermann <Kellermann at sk-datentechnik dot com>
Subject: Re: loadbalanced / high availability qpopper setup ?
At 18:33 01.12.2002 -0800, Chuck Yerkes <chuck+qpopper at yerkes dot com> wrote:
> ....
>5 9's (99.999% uptime) we can go through with the math. It's a
>great marketing term that's usually meaningless. 17 minutes per
>month of downtime. It can be done. For lots of money. It's
>unwarranted (99% of the time customers spit out the term "5 9s").
hmmm....
tell me, if i´m wrong, but:
365 days a year -> (*24=) 8760 hours -> (*60=) 525600 minutes ->
(*60=) 31536000 seconds.
99.999% uptime -> (*.99999) 31535684.64 seconds uptime
-> 315.36 seconds downtime (per year)
-> 26 seconds (rounded) per month
??? 26 seconds <-> 17 minutes ???
MK
Date: Thu, 5 Dec 2002 17:21:55 +0100 (Westeurop”ische Normalzeit)
From: "sven" <sven at issociate dot net>
Subject: authentication problem/question
Hello,
I have Qpopper 4.0.4 running and it seems to work fine so far.
But there is one single problem that I can't solve.
I'm using the /etc/mail/virtusertable.db to map email addresses
like user at domain dot com to user.domain.com. This alias is then
looked up in /etc/aliases.db, which maps it to the according
mailbox file, /var/spool/mail/user.domain.com (I use sendmail
for the smtp stuff).
Incoming mails are stored correctly by sendmail. After adding
the host /etc/mail/local-host-names and adding the virtual user
and its alias, incoming mails are accepted and stored in the
correct file.
Now I only need to figure out how to instruct Qpopper to
authenticate users against eg. a hashed BerkleyDB with entries
like user at domain dot com:cryptpass. It kinda worked with PAM,
but only if the user is present in /etc/passwd, something I want
to avoid. Plus, I couldn't authenticate with user at domain dot com but
only with user (what doesn't help much if I also want to add
eg. user at otherdomain dot com).
I'm open for anything; if someone has a different approach, let me
know. As long as I don't have to add users to the passwd, I'm
gonna try it.
Thanks for any links, hints and tricks.
Sven
From: listuser at neo.pittstate dot edu
Date: Thu, 5 Dec 2002 11:01:45 -0600 (CST)
Subject: Re: qpopper4.0.4 and logging
On 5 Dec 2002, Van Hoornick Stefaan 999900830 wrote:
> Hey,
>
> I have the following problem with qpopper 4.0.4 and logging.
>
> In fact qpopper is logging notting!!!
>
> I used following option at configure
> --enable-standalone
> --enable-log-facility=LOG_LOCAL1
> --enable-debugging
> --enable-log-login
>
> The syslog.conf file is like this
>
> local1.none /var/adm/messages
> local1.* /var/adm/qpopper.log (And i touched the file)
>
> Why is it not logging ??
You've probably already though of this but something you said makes me
think you haven't restarted syslogd yet. Syslog creates the files as it
parses it's config file if they aren't already there. You shouldn't have
had to create it if syslog had been restarted. That's my take on it. Did
you restart syslogd?
justin
From: "Alan W. Rateliff, II" <lists at rateliff dot net>
Subject: Re: qpopper4.0.4 and logging
Date: Thu, 5 Dec 2002 12:22:45 -0500
----- Original Message -----
From: <listuser at neo.pittstate dot edu>
To: "Van Hoornick Stefaan 999900830" <stefaan.vanhoornick at b-rail dot be>
Cc: "Subscribers of Qpopper" <qpopper at lists.pensive dot org>
Sent: Thursday, December 05, 2002 12:01 PM
Subject: Re: qpopper4.0.4 and logging
> On 5 Dec 2002, Van Hoornick Stefaan 999900830 wrote:
>
> > Hey,
> >
> > I have the following problem with qpopper 4.0.4 and logging.
> >
> > In fact qpopper is logging notting!!!
> >
> > I used following option at configure
> > --enable-standalone
> > --enable-log-facility=LOG_LOCAL1
> > --enable-debugging
> > --enable-log-login
> >
> > The syslog.conf file is like this
> >
> > local1.none /var/adm/messages
> > local1.* /var/adm/qpopper.log (And i touched the file)
> >
> > Why is it not logging ??
>
> You've probably already though of this but something you said makes me
> think you haven't restarted syslogd yet. Syslog creates the files as it
> parses it's config file if they aren't already there. You shouldn't have
> had to create it if syslog had been restarted. That's my take on it. Did
> you restart syslogd?
That's not always the case with syslogd. On my Solaris boxes, syslog
complains indignantly about files not existing.
Try changing the local1.* to local1.debug and see if that helps. I seem to
recall that in the past, using facility.* fails, but *.priority does not.
I've gotten into the habit of using facility.debug instead.
Also, make sure you have TABs between your left and right sides.
--
Alan W. Rateliff, II : RATELIFF.NET
Independent Technology Consultant : alan2 at rateliff dot net
(Office) 850/350-0260 : (Mobile) 850/559-0100
-------------------------------------------------------------
[System Administration][IT Consulting][Computer Sales/Repair]
From: "Matthew Thomas" <mthomas at biocontrolsys dot com>
Subject: RE: I/O error ; Operation not permitted ; -ERR SIGHUP or SIGPIPE flagged
Date: Thu, 5 Dec 2002 10:48:58 -0800
Greetings,
I wouldn't mind an explanation either as I'm getting these same error
messages for one of my clients (accessing network via dialup).
Thanks,
Matt
-----Original Message-----
From: Oliver Egginger [mailto:Oliver.Egginger at dvz.fh-giessen dot de]
Sent: Tuesday, December 03, 2002 12:20 AM
To: Subscribers of Qpopper
Subject: I/O error ; Operation not permitted ; -ERR SIGHUP or SIGPIPE
flagged
Hello,
in combination with one of my (user) clients I receive the following
error message:
Dec 3 07:59:28.726 2002 [24132] I/O error flushing output to client
username at xxx.xxx.xxx.de [212.201.15.3]: Operation not permitted (1)
Dec 3 07:59:28.726 2002
Dec 3 07:59:28.726 2002 [24132] username at xxx.xxx.xxx.de
(212.201.15.3): -ERR SIGHUP or SIGPIPE flagged
Can someone explain these error messages?
Is this a known problem or need I a debug output (tcpdump)?
In the moment I think that the problem is caused by the client, but I'am
not really sure.
- oliver
Date: Thu, 05 Dec 2002 14:12:20 -0500
From: Daniel Senie <dts at senie dot com>
Subject: RE: I/O error ; Operation not permitted ; -ERR SIGHUP or
At 01:48 PM 12/5/2002, Matthew Thomas wrote:
>Greetings,
>
>I wouldn't mind an explanation either as I'm getting these same error
>messages for one of my clients (accessing network via dialup).
First one means the client went away (mail client application gave up and
closed socket). Second probably is just more about the same event.
>Thanks,
>Matt
>
>-----Original Message-----
>From: Oliver Egginger [mailto:Oliver.Egginger at dvz.fh-giessen dot de]
>Sent: Tuesday, December 03, 2002 12:20 AM
>To: Subscribers of Qpopper
>Subject: I/O error ; Operation not permitted ; -ERR SIGHUP or SIGPIPE
>flagged
>
>
>Hello,
>
>in combination with one of my (user) clients I receive the following
>error message:
>
>Dec 3 07:59:28.726 2002 [24132] I/O error flushing output to client
>username at xxx.xxx.xxx.de [212.201.15.3]: Operation not permitted (1)
>Dec 3 07:59:28.726 2002
>Dec 3 07:59:28.726 2002 [24132] username at xxx.xxx.xxx.de
>(212.201.15.3): -ERR SIGHUP or SIGPIPE flagged
>
>Can someone explain these error messages?
>Is this a known problem or need I a debug output (tcpdump)?
>
>In the moment I think that the problem is caused by the client, but I'am
>not really sure.
>
>- oliver
From: listuser at neo.pittstate dot edu
Date: Thu, 5 Dec 2002 15:16:56 -0600 (CST)
Subject: Re: qpopper4.0.4 and logging
On Thu, 5 Dec 2002, Alan W. Rateliff, II wrote:
> ----- Original Message -----
> From: <listuser at neo.pittstate dot edu>
> To: "Van Hoornick Stefaan 999900830" <stefaan.vanhoornick at b-rail dot be>
> Cc: "Subscribers of Qpopper" <qpopper at lists.pensive dot org>
> Sent: Thursday, December 05, 2002 12:01 PM
> Subject: Re: qpopper4.0.4 and logging
>
>
> > On 5 Dec 2002, Van Hoornick Stefaan 999900830 wrote:
> >
> > > Hey,
> > >
> > > I have the following problem with qpopper 4.0.4 and logging.
> > >
> > > In fact qpopper is logging notting!!!
> > >
> > > I used following option at configure
> > > --enable-standalone
> > > --enable-log-facility=LOG_LOCAL1
> > > --enable-debugging
> > > --enable-log-login
> > >
> > > The syslog.conf file is like this
> > >
> > > local1.none /var/adm/messages
> > > local1.* /var/adm/qpopper.log (And i touched the file)
> > >
> > > Why is it not logging ??
> >
> > You've probably already though of this but something you said makes me
> > think you haven't restarted syslogd yet. Syslog creates the files as it
> > parses it's config file if they aren't already there. You shouldn't have
> > had to create it if syslog had been restarted. That's my take on it. Did
> > you restart syslogd?
>
> That's not always the case with syslogd. On my Solaris boxes, syslog
> complains indignantly about files not existing.
I probably should have clarified that a bit with a "GNU" sysklogd. I
forgot that part. :)
> Try changing the local1.* to local1.debug and see if that helps. I seem to
> recall that in the past, using facility.* fails, but *.priority does not.
> I've gotten into the habit of using facility.debug instead.
>
> Also, make sure you have TABs between your left and right sides.
local1.* /var/log/pop.log
Works for me. And to save me the headache and diskspace of having those
messages duplicated for the "messages" log, I add local1.none to its
definition. Good point on the tabs. Only allowed whitespace.
Justin
Date: Thu, 5 Dec 2002 18:23:12 -0800
From: Chuck Yerkes <chuck+qpopper at yerkes dot com>
Subject: five 9's insane
> tell me, if i´m wrong, but:
1 month * 0.001%
> -> 26 seconds (rounded) per month
I did something odd, you're right. I'm sorry.
----
pinky 42% dc
60 60 * 24 * 30 * p
2592000 seconds/30 day month.
0.00001 * p
25.92000
----
My point is still that five 9's is usually unnecessary and is
about always really expensive and unreasonable. It's a lovely
marketing phrase that should be taken like we take "windows
is secure, stable, solid and ready to run your enterprise."
Giggle a bit and set expectations that a 60 minute down time
every couple months is just fine along with regular maintenance
intervals.
Have a spare machine ready to hook up to your RAID unit. A
failure, identified after 5 minutes, means that you can spend
15 (tops) minutes plugging it into a cold spare.
Cost? Pretty low. Cost compared to acquiring, setting up,
and running an HA pair over a couple years? About 1% :)
Date: Thu, 5 Dec 2002 18:32:15 -0800
From: Chuck Yerkes <chuck+qpopper at yerkes dot com>
Subject: Re: authentication problem/question
And we can presume you are using AIX? Ultrix?
Qpopper uses getpwent() and unix passwords for authentication.
Changes to that should be done carefully and with lots of testing
(and patches available!)
Quoting sven (sven at issociate dot net):
> I have Qpopper 4.0.4 running and it seems to work fine so far.
> But there is one single problem that I can't solve.
>
> Now I only need to figure out how to instruct Qpopper to
> authenticate users against eg. a hashed BerkeleyDB with entries
> like user at domain dot com:cryptpass. It kinda worked with PAM,
> but only if the user is present in /etc/passwd, something I want
> to avoid. Plus, I couldn't authenticate with user at domain dot com but
> only with user (what doesn't help much if I also want to add
> eg. user at otherdomain dot com).
>
> I'm open for anything; if someone has a different approach, let me
> know. As long as I don't have to add users to the passwd, I'm
> gonna try it.
Date: Thu, 5 Dec 2002 18:26:24 -0800
From: Chuck Yerkes <chuck+qpopper at yerkes dot com>
Subject: Re: Hashed cache file dirs?
OS?
File System?
Definition of "large installation" (it's 6 figures to me).
(and I don't want a home dir/user for that).
How are you delivering into the the hashs spools?
And it sounds like it might be hardcoded writing into /var/spoo/mail/u/s.
Look in the source (or makefiles).
Quoting NetNITCO System Administration (maxadmin at netnitco dot net):
> Greetings,
>
> I'm attempting to set up qpopper 4.0.4 on a rather large installation,
> and ran into something kind of odd in the handling of .user.cache files when
> using server mode and home-dir-mail. I'd like for the cache file to either
> end up in the users's home directory (as /data/user/u/s/user/.user.cache) or
> in a hashed spool directory (as /var/spool/mail/u/s/.user.cache) but cannot
> get this to work. I'd like to avoid having several thousand cache files
> stuck in the same directory - that would certainly add some overhead in
> checking e-mail. I tried the options below (no runtime config file used) but
> popper would then make the directory /data/user/u/s/user/u/s/ and then
> error our saying it couldn't write to /var/spool/mail/u/s (which had not
> been created!):
>
> ./configure --enable-home-dir-mail --enable-servermode --enable-fast-update
> --disable-old-spool-loc --disable-reverse-lookups --enable-shy --enable-temp
> -drop-dir=/var/spool/mail --enable-hash-spool=2 --enable-check-hashdir
>
> Any help on what went wrong would be appreciated.
>
> - Max
>
>
>
>
Date: Thu, 5 Dec 2002 18:28:22 -0800
From: Chuck Yerkes <chuck+qpopper at yerkes dot com>
Subject: Re: qpopper4.0.4 and logging
Little steps and debugging basics. Break it into it's components
and test each.
Try debugging with "logger" to see if it's syslog or qpopper.
Try starting syslog with -d (and keep it in foreground).
Is it getting anything?
Quoting Van Hoornick Stefaan 999900830 (stefaan.vanhoornick at b-rail dot be):
> Hey,
>
> I have the following problem with qpopper 4.0.4 and logging.
>
> In fact qpopper is logging notting!!!
>
> I used following option at configure
> --enable-standalone
> --enable-log-facility=LOG_LOCAL1
> --enable-debugging
> --enable-log-login
>
> The syslog.conf file is like this
>
> local1.none /var/adm/messages
> local1.* /var/adm/qpopper.log (And i touched the file)
>
> Why is it not logging ??
>
> thx
>
> Stefaan Van Hoornick
> Network Consultant
>
> Bureau IT.032 - Sectie 13/2
> E-mail: Stefaan.VanHoornick at b-rail dot be
> --------------------------------------------
> You may be disappointed if you fail,
> but you are doomed if you don't try.
> -- Beverly Sills
> --------------------------------------------
>
>
Date: Fri, 6 Dec 2002 10:02:46 +0100 (Westeurop”ische Normalzeit)
From: "sven" <sven at issociate dot net>
Subject: Betreff: Re: authentication problem/question
--------------Boundary-00=_M4XOQL80000000000000
Content-Type: Multipart/Alternative;
boundary="------------Boundary-00=_M4XOLVC0000000000000"
--------------Boundary-00=_M4XOLVC0000000000000
Content-Type: Text/Plain;
charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable
Eh, sorry...=0D
=0D
Linux Redhat 7.2=0D
=0D
=0D
-------Original-Nachricht-------=0D
=0D
Von: qpopper at lists.pensive dot org=0D
Datum: Freitag, 06. Dezember 2002 03:33:09=0D
An: qpopper at lists.pensive dot org=0D
Betreff: Re: authentication problem/question=0D
=0D
And we can presume you are using AIX? Ultrix?=0D
=0D
Qpopper uses getpwent() and unix passwords for authentication.=0D
Changes to that should be done carefully and with lots of testing=0D
(and patches available!)=0D
=0D
Quoting sven (sven at issociate dot net):=0D
> I have Qpopper 4.0.4 running and it seems to work fine so far.=0D
> But there is one single problem that I can't solve.=0D
>=0D
> Now I only need to figure out how to instruct Qpopper to =0D
> authenticate users against eg. a hashed BerkeleyDB with entries=0D
> like user at domain dot com:cryptpass. It kinda worked with PAM,=0D
> but only if the user is present in /etc/passwd, something I want=0D
> to avoid. Plus, I couldn't authenticate with user at domain dot com but=0D
> only with user (what doesn't help much if I also want to add =0D
> eg. user at otherdomain dot com). =0D
>=0D
> I'm open for anything; if someone has a different approach, let me=0D
> know. As long as I don't have to add users to the passwd, I'm=0D
> gonna try it.=0D
=0D
=2E
--------------Boundary-00=_M4XOLVC0000000000000
Content-Type: Text/HTML;
charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable
<meta http-equiv="Content-Type" content="text/html; charset=iso-885
9-1"><html>
<head>
<meta name="GENERATOR" content="IncrediMail 1.0">=0D
<!--IncrdiXMLRemarkStart>
<IncrdiX-Info>
<X-FID>FLAVOR00-NONE-0000-0000-000000000000</X-FID>
<X-FVER></X-FVER>
<X-CNT>;</X-CNT>
</IncrdiX-Info>
<IncrdiXMLRemarkEnd-->
=0A</head>
<BODY background="" bgColor=#ffffff style="BACKGROUND-POSITION: 0px
0px; FONT-SIZE: 10pt; MARGIN: 1px; FONT-FAMILY: Arial" scroll=yes ORGY
POS="0" X-FVER="2.0">
<TABLE border=0 cellPadding=0 cellSpacing=0 id=INCREDIMAINTABLE w
idth="95%">
<TR>
<TD id=INCREDITEXTREGION width="100%" style="PADDING-RIGHT: 7px; PA
DDING-LEFT: 7px; FONT-SIZE: 10pt; FONT-FAMILY: Arial"
>
<DIV>Eh, sorry...</DIV>
<DIV> </DIV>
<DIV>Linux Redhat 7.2</DIV>
<DIV> </DIV>
<DIV> </DIV>
<DIV
id=IncrediOriginalMessage><I>-------Original-Nachricht-------</I>
</DIV>
<DIV> </DIV>
<DIV id=receivestrings>
<DIV dir=ltr style="FONT-SIZE: 11pt" <i><B>Von:</B></I> <A
href="mailto:qpopper at lists.pensive.org">qpopper@lists dot pensive dot org
</A></DIV>
<DIV dir=ltr style="FONT-SIZE: 11pt" <i><B>Datum:</B></I> Freit
ag, 06.
Dezember 2002 03:33:09</DIV>
<DIV dir=ltr style="FONT-SIZE: 11pt" <i><B>An:</B></I> <A
href="mailto:qpopper at lists.pensive.org">qpopper@lists dot pensive dot org
</A></DIV>
<DIV dir=ltr style="FONT-SIZE: 11pt" <i><B>Betreff:</B></I> Re:
authentication problem/question</DIV></DIV>
<DIV> </DIV>And we can presume you are using AIX?
Ultrix?<BR><BR>Qpopper uses getpwent() and unix passwords for
authentication.<BR>Changes to that should be done carefully and wit
h lots
of testing<BR>(and patches available!)<BR><BR>Quoting sven (<A
href="mailto:sven at issociate dot net">sven@issociate dot net</A>):<BR>>
I have
Qpopper 4.0.4 running and it seems to work fine so far.<BR>> But
there
is one single problem that I can't solve.<BR>><BR>> Now I onl
y need
to figure out how to instruct Qpopper to <BR>> authenticate user
s
against eg. a hashed BerkeleyDB with entries<BR>> like <A
href="mailto:user at domain dot com:cryptpass">user@domain dot com:cryptpass
</A>. It
kinda worked with PAM,<BR>> but only if the user is present in
/etc/passwd, something I want<BR>> to avoid. Plus, I couldn't
authenticate with <A href="mailto:user at domain dot com">user@domain dot co
m</A>
but<BR>> only with user (what doesn't help much if I also want t
o add
<BR>> eg. <A
href="mailto:user at otherdomain dot com">user@otherdomain dot com</A>).
<BR>><BR>> I'm open for anything; if someone has a different
approach, let me<BR>> know. As long as I don't have to add users
to the
passwd, I'm<BR>> gonna try it.<BR><BR>.</TD>
</TR>
<TR>
<TD id=INCREDIFOOTER width="100%">
=09<TABLE cellPadding=0 cellSpacing=0 width="100%">
=09<TR>
=09<TD width="100%"></TD>
=09<TD align=middle id=INCREDISOUND vAlign=bottom></TD>
=09<TD align=middle id=INCREDIANIM vAlign=bottom></TD>
=09</TR>
=09</TABLE>
</TD>
</TR>
</TABLE><SPAN
id=IncrediStamp><SPAN dir=ltr><FONT face="Arial, Helvetica, sans-se
rif"
size=2>________________________________________________________________
_____<BR><FONT
face="Comic Sans MS" size=2><A
href="http://www.incredimail.com/redir.asp?ad_id=307&lang=7"><I
MG alt=""
hspace=0 src="cid:17A07B73-CB94-48B0-A6D1-114A08263679" align=basel
ine
border=0></A> <I>IncrediMail</I> - <B>E-Mail hat sich schließli
ch
entfaltet</B> - </FONT><A
href="http://www.incredimail.com/redir.asp?ad_id=307&lang=7"><F
ONT
face="Times New Roman" size=3><B><U>Klicken Sie
hier</U></B></FONT></A></SPAN></SPAN></FONT>
</BODY>
</html>
--------------Boundary-00=_M4XOLVC0000000000000--
--------------Boundary-00=_M4XOQL80000000000000
Content-Type: image/gif
Content-Transfer-Encoding: base64
Content-ID: <17A07B73-CB94-48B0-A6D1-114A08263679>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--------------Boundary-00=_M4XOQL80000000000000--
From: "Van Hoornick Stefaan 999900830"
Date: 9 Dec 2002 09:48:00 +0100
Subject: Re(2): qpopper4.0.4 and logging
Hey,
I'm getting nothing!
Syslogd is started, the file /var/adm/qpopper.log is touched, qpopper is
started and still i'm getting no logging.
I've tried also using
local1.debug /var/adm/qpopper.log (with tabs)
...
Ideas=3F Anyone=3F
Thx
Chuck Yerkes (6/12/2002 3:28):
>Little steps and debugging basics. Break it into it's components
>and test each.
>
>Try debugging with "logger" to see if it's syslog or qpopper.
>Try starting syslog with -d (and keep it in foreground).
>Is it getting anything=3F
>
>
>Quoting Van Hoornick Stefaan 999900830 (stefaan.vanhoornick at b-rail dot be):
>> Hey,
>>
>> I have the following problem with qpopper 4.0.4 and logging.
>>
>> In fact qpopper is logging notting!!!
>>
>> I used following option at configure
>> --enable-standalone
>> --enable-log-facility=LOG=5FLOCAL1
>> --enable-debugging
>> --enable-log-login
>>
>> The syslog.conf file is like this
>>
>> local1.none /var/adm/messages
>> local1.* /var/adm/qpopper.log (And i touched the file)
>>
>> Why is it not logging =3F=3F
>>
>> thx
>>
>> Stefaan Van Hoornick
>> Network Consultant
>>
>> Bureau IT.032 - Sectie 13/2
>> E-mail: Stefaan.VanHoornick at b-rail dot be
>> --------------------------------------------
>> You may be disappointed if you fail,
>> but you are doomed if you don't try.
>> -- Beverly Sills
>> --------------------------------------------
>>
>>
Stefaan Van Hoornick
Network Consultant
Bureau IT.032 - Sectie 13/2
E-mail: Stefaan.VanHoornick at b-rail dot be
--------------------------------------------
You may be disappointed if you fail,
but you are doomed if you don't try.
-- Beverly Sills
--------------------------------------------
Date: Mon, 09 Dec 2002 06:23:11 -0500
From: Mark Wendt <wendt at kingcrab.nrl.navy dot mil>
Subject: Re(2): qpopper4.0.4 and logging
Have you restated syslogd?
Mark
At 09:48 AM 12/9/2002 +0100, you wrote:
>Hey,
>
>I'm getting nothing!
>
>Syslogd is started, the file /var/adm/qpopper.log is touched, qpopper is
>started and still i'm getting no logging.
>
>I've tried also using
>local1.debug /var/adm/qpopper.log (with tabs)
>
>...
>
>Ideas? Anyone?
>
>Thx
>
>Chuck Yerkes (6/12/2002 3:28):
> >Little steps and debugging basics. Break it into it's components
> >and test each.
> >
> >Try debugging with "logger" to see if it's syslog or qpopper.
> >Try starting syslog with -d (and keep it in foreground).
> >Is it getting anything?
> >
> >
> >Quoting Van Hoornick Stefaan 999900830 (stefaan.vanhoornick at b-rail dot be):
> >> Hey,
> >>
> >> I have the following problem with qpopper 4.0.4 and logging.
> >>
> >> In fact qpopper is logging notting!!!
> >>
> >> I used following option at configure
> >> --enable-standalone
> >> --enable-log-facility=LOG_LOCAL1
> >> --enable-debugging
> >> --enable-log-login
> >>
> >> The syslog.conf file is like this
> >>
> >> local1.none /var/adm/messages
> >> local1.* /var/adm/qpopper.log (And i touched the file)
> >>
> >> Why is it not logging ??
> >>
> >> thx
> >>
> >> Stefaan Van Hoornick
> >> Network Consultant
> >>
> >> Bureau IT.032 - Sectie 13/2
> >> E-mail: Stefaan.VanHoornick at b-rail dot be
> >> --------------------------------------------
> >> You may be disappointed if you fail,
> >> but you are doomed if you don't try.
> >> -- Beverly Sills
> >> --------------------------------------------
> >>
> >>
>
>Stefaan Van Hoornick
>Network Consultant
>
>Bureau IT.032 - Sectie 13/2
>E-mail: Stefaan.VanHoornick at b-rail dot be
>--------------------------------------------
>You may be disappointed if you fail,
>but you are doomed if you don't try.
> -- Beverly Sills
>--------------------------------------------
Date: Mon, 9 Dec 2002 10:17:22 -0800
From: Chuck Yerkes <chuck+qpopper at yerkes dot com>
Subject: Re: Re(2): qpopper4.0.4 and logging
And using the "logger" program gets you what?
If you still get nothing, then syslog (or syslog.conf)
isn't set up right.
If it works, then qpopper isn't logging and you should
turn up debugging and start tracing it (ktrace/truss/strace,
whatever your OS wants).
Quoting Van Hoornick Stefaan 999900830 (stefaan.vanhoornick at b-rail dot be):
> Hey,
>
> I'm getting nothing!
>
> Syslogd is started, the file /var/adm/qpopper.log is touched, qpopper is
> started and still i'm getting no logging.
>
> I've tried also using
> local1.debug /var/adm/qpopper.log (with tabs)
>
> ...
>
> Ideas? Anyone?
>
> Thx
>
> Chuck Yerkes (6/12/2002 3:28):
> >Little steps and debugging basics. Break it into it's components
> >and test each.
> >
> >Try debugging with "logger" to see if it's syslog or qpopper.
> >Try starting syslog with -d (and keep it in foreground).
> >Is it getting anything?
> >
> >
> >Quoting Van Hoornick Stefaan 999900830 (stefaan.vanhoornick at b-rail dot be):
> >> Hey,
> >>
> >> I have the following problem with qpopper 4.0.4 and logging.
> >>
> >> In fact qpopper is logging notting!!!
> >>
> >> I used following option at configure
> >> --enable-standalone
> >> --enable-log-facility=LOG_LOCAL1
> >> --enable-debugging
> >> --enable-log-login
> >>
> >> The syslog.conf file is like this
> >>
> >> local1.none /var/adm/messages
> >> local1.* /var/adm/qpopper.log (And i touched the file)
> >>
> >> Why is it not logging ??
> >>
> >> thx
> >>
> >> Stefaan Van Hoornick
> >> Network Consultant
> >>
> >> Bureau IT.032 - Sectie 13/2
> >> E-mail: Stefaan.VanHoornick at b-rail dot be
> >> --------------------------------------------
> >> You may be disappointed if you fail,
> >> but you are doomed if you don't try.
> >> -- Beverly Sills
> >> --------------------------------------------
> >>
> >>
>
> Stefaan Van Hoornick
> Network Consultant
>
> Bureau IT.032 - Sectie 13/2
> E-mail: Stefaan.VanHoornick at b-rail dot be
> --------------------------------------------
> You may be disappointed if you fail,
> but you are doomed if you don't try.
> -- Beverly Sills
> --------------------------------------------
>
>
Date: Mon, 09 Dec 2002 17:31:28 -0500
From: Steve Larsen <sblarsen at DIRECTVInternet dot com>
Subject: Directory for unpacking?
Hello, my name is Steve Larsen and I have downloaded
the version 4 of qpopper. In the PDF file regarding installation
the instructions say to check for a symbolic link between
/usr/mail and /usr/spool/mail .
I am going to try to run this on RH Linux 7.3 so for me
the setup looks like this: /var/mail ---> /var/spool/mail .
Should I unzip and unpack into /var/spool/mail or /var/mail ?
Steve Larsen
From: "Simon May" <simon at imsl dot es>
Subject: re outlook express problems
Date: Tue, 10 Dec 2002 09:17:41 +0100
Hi All,
recently we have been getting the following error
"Dec 9 16:53:20 server qpopper[4804]: (null) at
xx.xx.xxx.xx(xx.xx.xxx.xx): -ERR Unknown command: "-err"
Dec 9 16:53:51 balearics last message repeated 39456 times
This seems to be due to a outlook express problem and is often repeated
thousands of times per minute.
Has anyone else had similar errors ?
Kind Regards
Simon May
Network Administrator
Internet Marketing S.L.
Telephone 971 72 92 04
Fax 971 71 92 04
Email simon at imsl dot es
From: "Van Hoornick Stefaan 999900830"
Date: 10 Dec 2002 09:22:00 +0100
Subject: Re(2): Re(2): qpopper4.0.4 and logging
I recompiled the qpopper without options and now the logging is working whe
n I
start the qpopper in inetd.
Thx
Chuck Yerkes (9/12/2002 19:17):
>And using the "logger" program gets you what=3F
>If you still get nothing, then syslog (or syslog.conf)
>isn't set up right.
>
>If it works, then qpopper isn't logging and you should
>turn up debugging and start tracing it (ktrace/truss/strace,
>whatever your OS wants).
>
>Quoting Van Hoornick Stefaan 999900830 (stefaan.vanhoornick at b-rail dot be):
>> Hey,
>>
>> I'm getting nothing!
>>
>> Syslogd is started, the file /var/adm/qpopper.log is touched, qpopper is
>> started and still i'm getting no logging.
>>
>> I've tried also using
>> local1.debug /var/adm/qpopper.log (with tabs)
>>
>> ...
>>
>> Ideas=3F Anyone=3F
>>
>> Thx
>>
>> Chuck Yerkes (6/12/2002 3:28):
>> >Little steps and debugging basics. Break it into it's components
>> >and test each.
>> >
>> >Try debugging with "logger" to see if it's syslog or qpopper.
>> >Try starting syslog with -d (and keep it in foreground).
>> >Is it getting anything=3F
>> >
>> >
>> >Quoting Van Hoornick Stefaan 999900830 (stefaan.vanhoornick at b-rail dot be):
>> >> Hey,
>> >>
>> >> I have the following problem with qpopper 4.0.4 and logging.
>> >>
>> >> In fact qpopper is logging notting!!!
>> >>
>> >> I used following option at configure
>> >> --enable-standalone
>> >> --enable-log-facility=LOG=5FLOCAL1
>> >> --enable-debugging
>> >> --enable-log-login
>> >>
>> >> The syslog.conf file is like this
>> >>
>> >> local1.none /var/adm/messages
>> >> local1.* /var/adm/qpopper.log (And i touched the file)
>> >>
>> >> Why is it not logging =3F=3F
>> >>
>> >> thx
>> >>
>> >> Stefaan Van Hoornick
>> >> Network Consultant
>> >>
>> >> Bureau IT.032 - Sectie 13/2
>> >> E-mail: Stefaan.VanHoornick at b-rail dot be
>> >> --------------------------------------------
>> >> You may be disappointed if you fail,
>> >> but you are doomed if you don't try.
>> >> -- Beverly Sills
>> >> --------------------------------------------
>> >>
>> >>
>>
>> Stefaan Van Hoornick
>> Network Consultant
>>
>> Bureau IT.032 - Sectie 13/2
>> E-mail: Stefaan.VanHoornick at b-rail dot be
>> --------------------------------------------
>> You may be disappointed if you fail,
>> but you are doomed if you don't try.
>> -- Beverly Sills
>> --------------------------------------------
>>
>>
Stefaan Van Hoornick
Network Consultant
Bureau IT.032 - Sectie 13/2
E-mail: Stefaan.VanHoornick at b-rail dot be
--------------------------------------------
You may be disappointed if you fail,
but you are doomed if you don't try.
-- Beverly Sills
--------------------------------------------
Date: Tue, 10 Dec 2002 15:17:04 +0200
From: serg at city.gov.te dot ua
Subject: HELP!!! -ERR Unknown command: "\200f^A^C^A"
Hi, All!
When I try to receive mail from mail server using Mozilla I've got this error: mars popper[24833]: (null) at mars.l5.city.int (10.0.1.33): -ERR Unknown command: "\200f^A^C^A".
Can anyone say me why servey sand this error? :)
--
WBR, sector119
From: Marlo Montanaro <mmontanaro at centennialcorp dot com>
Subject: Logging Question
Date: Tue, 10 Dec 2002 12:06:11 -0500
Hi,
Running qpopper 3.x on one machine and 4.0.4 on another. Both are started
in inetd with the "qpopper -s" option- which, if I read things correctly is
supposed to write a log entry showing some statistics for each user's POP of
mail.
What log are these entries being stored in? I can't seem to find them in
/var/adm/messages or /var/log/syslog (running Solaris 8 in both cases).
Do I need to compile or configure QPopper differently? Or configure my
syslog utility differently?
Thanks in advance...
Marlo
From: Mark Baith <markb at essic.umd dot edu>
Subject: Netscape Mail 7.0 / Qpopper/APOP 4.0.4
Date: Tue, 10 Dec 2002 13:08:05 -0500 (EST)
Folks - Is there some kind of "hack" to the Netscape 7.0
"mailnews" pref or one of the other pref files to define
the server or authentication style/type as APOP? We're
receiving the "-ERR [AUTH] You must use stronger authentication"
msg currently.
Regards,
-M
--
Mark R. Baith
University of Maryland (UMD)
Earth System Science Interdisciplinary Center (ESSIC)
mbaith at essic.umd dot edu / (301)314.2629
Date: Tue, 10 Dec 2002 10:53:33 -0800
From: Chuck Yerkes <chuck+qpopper at yerkes dot com>
Subject: Re: Directory for unpacking?
No.
You should unpack into whatever area you build your software
in (I use $HOME/build/qpopper/ )
Quoting Steve Larsen (sblarsen at DIRECTVInternet dot com):
> Hello, my name is Steve Larsen and I have downloaded
> the version 4 of qpopper. In the PDF file regarding installation
> the instructions say to check for a symbolic link between
> /usr/mail and /usr/spool/mail .
>
> I am going to try to run this on RH Linux 7.3 so for me
> the setup looks like this: /var/mail ---> /var/spool/mail .
>
> Should I unzip and unpack into /var/spool/mail or /var/mail ?
>
> Steve Larsen
Date: Tue, 10 Dec 2002 12:10:36 -0800
From: Chuck Yerkes <chuck+qpopper at yerkes dot com>
Subject: Re: Netscape Mail 7.0 / Qpopper/APOP 4.0.4
Netscape doesn't support APOP.
Or didn't up to 4.x. I slid to Mozilla, which I still don't think
supports APOP. Straight auth over SSL. Does qpopper support
personal CERTS for auth?
Quoting Mark Baith (markb at essic.umd dot edu):
> Folks - Is there some kind of "hack" to the Netscape 7.0
> "mailnews" pref or one of the other pref files to define
> the server or authentication style/type as APOP? We're
> receiving the "-ERR [AUTH] You must use stronger authentication"
> msg currently.
>
> Regards,
> -M
> --
>
> Mark R. Baith
>
> University of Maryland (UMD)
> Earth System Science Interdisciplinary Center (ESSIC)
> mbaith at essic.umd dot edu / (301)314.2629
From: Marlo Montanaro <mmontanaro at centennialcorp dot com>
Subject: RE: Logging Question
Date: Tue, 10 Dec 2002 16:42:08 -0500
That did it- yup, local0 is the way to go. If you have a lot of users make
sure you have disk space for the log file and rotate them occasionally- they
can sure grow quickly.
Thanks for the tip...
Marlo
-----Original Message-----
From: Alan W. Rateliff, II [mailto:lists at rateliff dot net]
Sent: Tuesday, December 10, 2002 1:07 PM
To: Marlo Montanaro
Subject: Re: Logging Question
----- Original Message -----
From: "Marlo Montanaro" <mmontanaro at centennialcorp dot com>
To: "Subscribers of Qpopper" <qpopper at lists.pensive dot org>
Sent: Tuesday, December 10, 2002 12:06 PM
Subject: Logging Question
> Hi,
>
> Running qpopper 3.x on one machine and 4.0.4 on another. Both are started
> in inetd with the "qpopper -s" option- which, if I read things correctly
is
> supposed to write a log entry showing some statistics for each user's POP
of
> mail.
>
> What log are these entries being stored in? I can't seem to find them in
> /var/adm/messages or /var/log/syslog (running Solaris 8 in both cases).
>
> Do I need to compile or configure QPopper differently? Or configure my
> syslog utility differently?
Try running syslogd in debug mode (don't detatch from console) and see what
messages it's getting. ISTR that popper logs to LOCAL0, at least it does on
all of our Solaris machines. That being the case, you'll want to set up
LOCAL0 in your /etc/syslog.conf file.
--
Alan W. Rateliff, II : RATELIFF.NET
Independent Technology Consultant : alan2 at rateliff dot net
(Office) 850/350-0260 : (Mobile) 850/559-0100
-------------------------------------------------------------
[System Administration][IT Consulting][Computer Sales/Repair]
Date: Wed, 11 Dec 2002 07:38:59 -0500
From: Andy Druda <adruda at wagner dot edu>
Subject: Spool location
Will this work?
--home-dir-mail=`$HOME/.mailspool/$LOGNAME'
If so, are the quotes correct? needed?
Thanks,
Andy
From: "Christopher Crowley" <ccrowley at tulane dot edu>
Subject: Architectural advice.
Date: Thu, 12 Dec 2002 11:48:15 -0600
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
I have a server resource problem, and need to take immediate action.
I have very fast disk available to this e-mail server: a 3-plex FC
mirror served by a SAN.
But, the server is becoming CPU bound. I believe that I have made
all the optimizations that I can make in qpopper: server-mode,
temp-drop-dir (in memory based FS), disable-check-pw-max, and
disable-any-kerberos-principal.
I would like to move the qpopper processes from my monolithic email
server (mail, it is a Sun E3500 6Gb Ram, 6 processor) to an adjacent
server to offload processing. I would accomplish this by manipulating
network traffic with a Level 2 switch.
The problem of doing this is of course file access to the spool
directory. Everything that I have read is that Solaris 8 NFS (NFS 3)
doesn't properly safeguard against file corruption, and could result
in silently lost e-mail.
Is there a way that I can overcome this problem, and still off load
my processing to another server? I do not currently have a Veritas
Cluster ( or similar ) license. Although this may be the route I
proceed in the future, I need to buy some time to get me there.
Could you please offer suggestions / opinions regarding this
situation? The impacted group (of the server's performance problems)
are out webmail clients, who see diminished throughput ( correlated
to the server's load average being high ) when the server is busy.
This group uses IMAP, but is a high usage group.
I am looking to offload the POP3 traffic for two reasons. First, it
seems to be simpler to address that offloading IMAP. Second, large
mailbox users ( 50+ MB ) appear to spike CPU utilization on the mail
server.
Thank you in advance for your response.
Christopher Crowley
TIS Network Services
Tulane University
ccrowley at tulane dot edu
504.314.2535
PGP Key ID: 0x7CF18FDB
-----BEGIN PGP SIGNATURE-----
Version: PGPfreeware 6.5.8 for non-commercial use <http://www.pgp.com>
iQA/AwUBPfjL2c0q7cR88Y/bEQKpzACeM2jNF3Bqc36fFmZOAss1c+xOGNYAn34T
B4PHVVApQljRtGyX3FdZLnJS
=PbKb
-----END PGP SIGNATURE-----
Date: Thu, 12 Dec 2002 11:11:51 -0800 (PST)
From: The Little Prince <thelittleprince at asteroid-b612 dot org>
Subject: Re: Architectural advice.
On Thu, 12 Dec 2002, Christopher Crowley wrote:
> I have a server resource problem, and need to take immediate action.
> I have very fast disk available to this e-mail server: a 3-plex FC
> mirror served by a SAN.
first, let me say i have no idea what a plex mirror is.
but i'm gonna give my not-so-expert feedback on this anyway.
>
> I would like to move the qpopper processes from my monolithic email
> server (mail, it is a Sun E3500 6Gb Ram, 6 processor) to an adjacent
> server to offload processing. I would accomplish this by manipulating
> network traffic with a Level 2 switch.
>
wouldn't you need to manipulate it at the packet level to reroute pop
traffic, i.e. a level 3 switch?
> The problem of doing this is of course file access to the spool
> directory. Everything that I have read is that Solaris 8 NFS (NFS 3)
> doesn't properly safeguard against file corruption, and could result
> in silently lost e-mail.
>
being i dont know about the plex, i dont know if your current storage
access is local disk or already remote NFS?
> I am looking to offload the POP3 traffic for two reasons. First, it
> seems to be simpler to address that offloading IMAP. Second, large
> mailbox users ( 50+ MB ) appear to spike CPU utilization on the mail
> server.
>
so, you want to keep IMAP on the sun, and move POP3 to the stated adjacent
server?
can any particular user access their mailbox through imap or pop3? or are
they each limited to a specific protocol?
--Tony
.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-.
Anthony J. Biacco Network Administrator/Engineer
thelittleprince at asteroid-b612.org http://www.asteroid-b612 dot org
"This will prove a brave kingdom to me,
where I shall have my music for nothing"
.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-.
From: Jonathan Cowherd <jonathan.cowherd at genscape dot com>
Subject: Multiple pop requests on the same account
Date: Thu, 12 Dec 2002 14:56:31 -0500
We are attempting to do multiple pop requests on the same account but get a
locking error. Since we are managing which e-mails get pulled, is there an
easy way to turn off the mail account locking?
Jonathan Paul Cowherd
Linux and Java Administrator
Genscape, Inc.
Email: jonathan.cowherd at genscape dot com
Office: (502) 583-3730
Mobile: (502) 314-0444
From: Jonathan Cowherd <jonathan.cowherd at genscape dot com>
Subject: RE: Multiple pop requests on the same account
Date: Thu, 12 Dec 2002 15:24:06 -0500
We have serveral e-mail with things in them that we'd like to pop off at the
same time and process the different e-mails concurrently. When two
processes are popping at the same time, I get a busy/lock error message. I
assumed qpopper could do this since other pop servers don't have trouble
with it.
Jonathan Paul Cowherd
Linux and Java Administrator
Genscape, Inc.
Email: jonathan.cowherd at genscape dot com
Office: (502) 583-3730
Mobile: (502) 314-0444
-----Original Message-----
From: Drew Weaver [mailto:drew.weaver at thenap dot com]
Sent: Thursday, December 12, 2002 3:24 PM
To: 'Jonathan Cowherd'
Subject: RE: Multiple pop requests on the same account
What is the end goal here??
I cant understand why you would want to do this.
-Drew
-----Original Message-----
From: Jonathan Cowherd [mailto:jonathan.cowherd at genscape dot com]
Sent: Thursday, December 12, 2002 2:57 PM
To: Subscribers of Qpopper
Subject: Multiple pop requests on the same account
We are attempting to do multiple pop requests on the same account but get a
locking error. Since we are managing which e-mails get pulled, is there an
easy way to turn off the mail account locking?
Jonathan Paul Cowherd
Linux and Java Administrator
Genscape, Inc.
Email: jonathan.cowherd at genscape dot com
Office: (502) 583-3730
Mobile: (502) 314-0444
Date: Thu, 12 Dec 2002 12:11:54 -0800
From: Chuck Yerkes <chuck+qpopper at yerkes dot com>
Subject: Re: Multiple pop requests on the same account
Use IMAP which can allow multiple access to one account.
POP cannot.
Quoting Jonathan Cowherd (jonathan.cowherd at genscape dot com):
> We are attempting to do multiple pop requests on the same account but get a
> locking error. Since we are managing which e-mails get pulled, is there an
> easy way to turn off the mail account locking?
Date: Thu, 12 Dec 2002 11:22:53 -1000
From: Clifton Royston <cliftonr at lava dot net>
Subject: Re: Multiple pop requests on the same account
On Thu, Dec 12, 2002 at 03:24:06PM -0500, Jonathan Cowherd wrote:
> We have serveral e-mail with things in them that we'd like to pop off at the
> same time and process the different e-mails concurrently. When two
> processes are popping at the same time, I get a busy/lock error message. I
> assumed qpopper could do this since other pop servers don't have trouble
> with it.
Well, ipop3d at least won't give you a locking error, but manages this
by simply killing the previously logged in POP session every time a new
one connects.
Since in principle the two POP sessions could be issuing incompatible
updates to the spool, but neither is likely accept unexpected changes
happening out from under it, it's hard to know what the "right thing"
is.
If this is all in support of some kind of script-driven automatic
processing of certain specific accounts, it might be easier to .forward
them or procmail them to clone all incoming mail to two different
mailboxes and then process those mailboxes via independent POP
sessions.
-- Clifton
--
Clifton Royston -- LavaNet Systems Architect -- cliftonr at lava dot net
"If you ride fast enough, the Specialist can't catch you."
"What's the Specialist?" Samantha says.
"The Specialist wears a hat," says the babysitter. "The hat makes noises."
She doesn't say anything else.
Kelly Link, _The Specialist's Hat_
From: Jonathan Cowherd <jonathan.cowherd at genscape dot com>
Subject: RE: Multiple pop requests on the same account
Date: Thu, 12 Dec 2002 16:33:53 -0500
Good point and I wasn't sure why ipop3d wasn't giving me the same error. We
probably will look into setting up some type of mail copy, but I believe we
will attempt to an imap implementation first.
Thanks for the feedback.
Jonathan Paul Cowherd
Linux and Java Administrator
Genscape, Inc.
Email: jonathan.cowherd at genscape dot com
Office: (502) 583-3730
Mobile: (502) 314-0444
-----Original Message-----
From: Clifton Royston [mailto:cliftonr at lava dot net]
Sent: Thursday, December 12, 2002 4:23 PM
To: Jonathan Cowherd
Cc: Subscribers of Qpopper
Subject: Re: Multiple pop requests on the same account
On Thu, Dec 12, 2002 at 03:24:06PM -0500, Jonathan Cowherd wrote:
> We have serveral e-mail with things in them that we'd like to pop off
> at the same time and process the different e-mails concurrently. When
> two processes are popping at the same time, I get a busy/lock error
> message. I assumed qpopper could do this since other pop servers
> don't have trouble with it.
Well, ipop3d at least won't give you a locking error, but manages this by
simply killing the previously logged in POP session every time a new one
connects.
Since in principle the two POP sessions could be issuing incompatible
updates to the spool, but neither is likely accept unexpected changes
happening out from under it, it's hard to know what the "right thing" is.
If this is all in support of some kind of script-driven automatic processing
of certain specific accounts, it might be easier to .forward them or
procmail them to clone all incoming mail to two different mailboxes and then
process those mailboxes via independent POP sessions.
-- Clifton
--
Clifton Royston -- LavaNet Systems Architect -- cliftonr at lava dot net
"If you ride fast enough, the Specialist can't catch you."
"What's the Specialist?" Samantha says.
"The Specialist wears a hat," says the babysitter. "The hat makes noises."
She doesn't say anything else.
Kelly Link, _The Specialist's Hat_
From: "Christopher Crowley" <ccrowley at tulane dot edu>
Subject: Re: Architectural advice.
Date: Thu, 12 Dec 2002 16:20:27 -0600
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
> yeah, if it's only level 2, it won't know about port numbers.
> you'll have to make sure about this.
You are correct. Layer 3.
>
> in any case, if you have to use NFS and it's not reliable, then you
> may be forced to use Maildir style mailboxes instead of mbox.
> This then becomes dependent on if your MTA can write Maildir, IMAP
> server can read a Maildir inbox (assuming it reads the same Inbox
> as the one the qpopper server does), and how well my
> qpopper-maildir patch works (which i can't guarantee is
> production-quality. I haven't gotten that much feedback from it).
>
We have considered maildir as a possibility to allow us to use NFS.
We would use procmail for LDA and Cyrus for IMAP if we went to
maildir. UW-IMAP supports a maildir format, too. But Crispin himself
says Cyrus does a better job for maildir. Opinions / thoughts
regarding these choices?
I think I will have to set up a test installation of all of this so
that I can see for myself.
Christopher Crowley
TIS Network Services
Tulane University
ccrowley at tulane dot edu
504.314.2535
PGP Key ID: 0x7CF18FDB
-----BEGIN PGP SIGNATURE-----
Version: PGPfreeware 6.5.8 for non-commercial use <http://www.pgp.com>
iQA/AwUBPfkLqc0q7cR88Y/bEQK+ZwCffAC47XDzsbeT1dFli7WRKsfEmEoAn0uM
vsN1nWoqtVEXy3REVcaZIaeP
=2ArN
-----END PGP SIGNATURE-----
From: "Christopher Crowley" <ccrowley at tulane dot edu>
Subject: Fw: Architectural advice.
Date: Fri, 13 Dec 2002 16:47:53 -0600
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
> At 11:48 AM 12/12/2002 -0600, you wrote:
> >But, the server is becoming CPU bound. I believe that I have made
> >all the optimizations that I can make in qpopper: server-mode,
> >temp-drop-dir (in memory based FS), disable-check-pw-max, and
> >disable-any-kerberos-principal.
>
> One change you can make (requires a source code change) is to
> change the "getc()" function call in the mfgets function inside
> pop_dropcopy to a getc_unlocked() call. Under Solaris 8, getc()
> does a mutex lock on the file handle before fetching the
> character, and a mutex unlock afterwards. For a 50Mbyte mailbox,
> that's 100 million mutex ops. I noticed a substantial drop in
> kernel time by making this one change.
>
This change seems that it would make a vast improvement. Will this
optimization be included in future releases of Qpopper?
Christopher Crowley
TIS Network Services
Tulane University
ccrowley at tulane dot edu
504.314.2535
PGP Key ID: 0x7CF18FDB
-----BEGIN PGP SIGNATURE-----
Version: PGPfreeware 6.5.8 for non-commercial use <http://www.pgp.com>
iQA/AwUBPfpjmM0q7cR88Y/bEQLWNwCg6xWpBIVnzWDuUeosHq8fubWjHbwAninn
pQyt4Iq9Byq3g74MT4lGgCC2
=+51X
-----END PGP SIGNATURE-----
Date: Tue, 17 Dec 2002 11:17:34 +0100 (Westeurop”ische Normalzeit)
From: "sven" <sven at issociate dot net>
Subject: pam.d auth
I compiled qpopper 4.0.4 with the following options:
/configure --disable-check-pw-max --enable-log-login --enable-shy
--with-pam
I also changed the default mailbox path to /mail/users, but I can't remember
the switch
right now :-)
For pam.d auth, I created the following /etc/pam.d/pop3 file:
auth required /lib/security/pam_userdb.so db=/etc/mail/passwords
account required /lib/security/pam_userdb.so db=/etc/mail/passwords
The db was build with the following command:
db_load -T -t hash -f passwords.txt /etc/mail/passwords.db
The passwords.txt contained the username on line 1 and the password on line
2 etc.
Incoming mails are saved to /mail/users via procmail. That works fine so far
If I build the db with a user:pass combo that is a real user (also in
/etc/passwd),
then the authentication works. Otherwise, it doesn't. And now I'm wondering
what
the userdb.so module is good for if the users need to be in /etc/passwd.
All I'm trying to do it getting the mails saved in /mail/users/foo at bar dot com
(what
would work with sendmail/procmail). But how can I make qpopper (or pam.d)
accept users with the username foo at bar dot com and the pass foobar (without
creating real accounts for them).
Any suggestions? You'd make me really happy, cuz I'm working on this for
quite
a couple of days now. (btw, any other solution/approch for the virtual user
hosting
with qpopper is also welcome (exept the mysql.patch, because it doesn't seem
to work for me)
Thanks
Sven
Date: Tue, 17 Dec 2002 09:48:55 -0500 (EST)
From: "Jeff A. Earickson" <jaearick at colby dot edu>
Subject: Re: Fw: Architectural advice.
Hi,
Has anybody actually implemented this getc_unlocked() call
in their production version of qpopper on a Sun box? What about
the advice in the manpage for getc_unlocked() to use flockfile()
and funlockfile() around the getc_unlocked() calls to preserve
locking on the stream? I find no references to these calls in
the qpopper 4.0.4 source code...
--- Jeff Earickson
On Fri, 13 Dec 2002, Christopher Crowley wrote:
> Date: Fri, 13 Dec 2002 16:47:53 -0600
> From: Christopher Crowley <ccrowley at tulane dot edu>
> To: Subscribers of Qpopper <qpopper at lists.pensive dot org>
> Subject: Fw: Architectural advice.
>
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
>
> > At 11:48 AM 12/12/2002 -0600, you wrote:
> > >But, the server is becoming CPU bound. I believe that I have made
> > >all the optimizations that I can make in qpopper: server-mode,
> > >temp-drop-dir (in memory based FS), disable-check-pw-max, and
> > >disable-any-kerberos-principal.
> >
> > One change you can make (requires a source code change) is to
> > change the "getc()" function call in the mfgets function inside
> > pop_dropcopy to a getc_unlocked() call. Under Solaris 8, getc()
> > does a mutex lock on the file handle before fetching the
> > character, and a mutex unlock afterwards. For a 50Mbyte mailbox,
> > that's 100 million mutex ops. I noticed a substantial drop in
> > kernel time by making this one change.
> >
>
> This change seems that it would make a vast improvement. Will this
> optimization be included in future releases of Qpopper?
>
> Christopher Crowley
> TIS Network Services
> Tulane University
> ccrowley at tulane dot edu
> 504.314.2535
> PGP Key ID: 0x7CF18FDB
>
> -----BEGIN PGP SIGNATURE-----
> Version: PGPfreeware 6.5.8 for non-commercial use <http://www.pgp.com>
>
> iQA/AwUBPfpjmM0q7cR88Y/bEQLWNwCg6xWpBIVnzWDuUeosHq8fubWjHbwAninn
> pQyt4Iq9Byq3g74MT4lGgCC2
> =+51X
> -----END PGP SIGNATURE-----
>
From: "Roger Williams" <roger at roger dot jp>
Subject: auto responder
Date: Tue, 17 Dec 2002 22:55:06 -0500
Hello all,
Im running an older version of qpopper and am curious why the
autoresponder strips out the "To:" line when sending the autoresponder? And
is there anyway to replace it with the correct email address? I did put a
To: line in the autoresponder and it does show up, but this isnt going to
work for obvious reasons.
Thanks,
ROger
Date: Wed, 18 Dec 2002 06:31:00 -0500 (EST)
From: Chip Old <fold at bcpl dot net>
Subject: Re: auto responder
On Tue, 17 Dec 2002, Roger Williams wrote to Subscribers of Qpopper:
> Im running an older version of qpopper and am curious why the
> autoresponder strips out the "To:" line when sending the autoresponder? And
> is there anyway to replace it with the correct email address? I did put a
> To: line in the autoresponder and it does show up, but this isnt going to
> work for obvious reasons.
Qpopper does not have an "autoresponse" function, so it isn't clear what
you mean or how it is related to Qpopper. Assuming you are talking about
messages generated by the Unix "vacation" program, you're correct that
there is no "To:" header. As far as I know there is no way to change
that.
--
Chip Old (Francis E. Old) E-Mail: fold at bcpl dot net
Manager, BCPL Network Services Phone: 410-887-6180
Manager, BCPL.NET Internet Services FAX: 410-887-2091
320 York Road
Towson, MD 21204 USA
From: listuser at neo.pittstate dot edu
Date: Wed, 18 Dec 2002 08:33:31 -0600 (CST)
Subject: Re: Multiple pop requests on the same account
On Thu, 12 Dec 2002, Clifton Royston wrote:
> On Thu, Dec 12, 2002 at 03:24:06PM -0500, Jonathan Cowherd wrote:
> > We have serveral e-mail with things in them that we'd like to pop off at the
> > same time and process the different e-mails concurrently. When two
> > processes are popping at the same time, I get a busy/lock error message. I
> > assumed qpopper could do this since other pop servers don't have trouble
> > with it.
>
> If this is all in support of some kind of script-driven automatic
> processing of certain specific accounts, it might be easier to .forward
> them or procmail them to clone all incoming mail to two different
> mailboxes and then process those mailboxes via independent POP
> sessions.
Agreed. Either duplicate the mail in the LDA or let the LDA do the basic
sorting for you and sort it into spools for different accounts. I prefer
the latter but depending on exactly what you're doing, the first might be
better.
Justin
From: "Christopher Crowley" <ccrowley at tulane dot edu>
Subject: Are --fast-update and --enable-temp-drop-dir mutually exclusive?
Date: Wed, 18 Dec 2002 13:11:12 -0600
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
p. 23 of __Configuring QPopper__ says "When updating the spool at the
end of a session, this option instructs Qpopper4 to rename the temp
flie to the spool instead of copying it."
I have my temp-drop-dir set to a different filesystem than the spool
itself. Do I lose the benefits of fast-updates because of this?
Christopher Crowley
TIS Network Services
Tulane University
ccrowley at tulane dot edu
504.314.2535
PGP Key ID: 0x7CF18FDB
-----BEGIN PGP SIGNATURE-----
Version: PGPfreeware 6.5.8 for non-commercial use <http://www.pgp.com>
iQA/AwUBPgDITM0q7cR88Y/bEQJhuwCfZ+/ydhAvdO/ZkuJBmjeFBkjf7QQAoIPy
iyeq03J9/totGyw5//1TNx19
=CVio
-----END PGP SIGNATURE-----
Last updated on 18 Dec 2002 by Pensive Mailing List Admin