Zenon Panoussis | 31 Jul 21:29 2014
Picon

iphone woes


An iphone that was working flawlessly with courier imap, suddenly
can't connect any more. The user did nothing, so the problem likely
stems from some automatic update on the phone.

The maillog shows a correct authentication and login, immediately
followed by DISCONNECTED. Having enabled the imap log, I see this:

WRITE: 1 OK LOGIN Ok.
READ: NUMBER: 2
READ: ATOM: CAPABILITY
READ: EOL
WRITE: * CAPABILITY IMAP4rev1 UIDPLUS CHILDREN NAMESPACE THREAD=ORDEREDSUBJECT THREAD=REFERENCES
SORT QUOTA IDLE AUTH=PLAIN ACL ACL2=UNION
2 OK CAPABILITY completed
READ: NUMBER: 3
READ: ATOM: APPEND
READ: QUOTED_STRING: Sent Messages
WRITE: 3 NO Invalid mailbox name.

And there it stops. The server response is correct, the maildir is
"Sent" in the "INBOX." namespace, not "Sent Messages".

Has anyone else seen this? Any ideas how to deal with it?

Z

------------------------------------------------------------------------------
Infragistics Professional
Build stunning WinForms apps today!
(Continue reading)

Mitch (BitBlock | 29 Jul 07:09 2014
Picon

question about old version... 0.43.2 or 0.44.2

I have some older servers – we are in the process of upgrading, but I just had a wave of what I believe were spam which were being relayed by using our servers. The messages were presented as dsn (I see the module dsn) – is there a way to mitigate this kind of attack until I can finish the migration?

 

I reset the users password, which didn’t help – the only thing that seemed to mitigate the emails was actually modifying the users email address. When I did that, the email flow stopped.

 

The fact that I saw module=dsn and that the password reset had no effect lead me to believe they are using a loophole in the server or that I’ve somehow misconfigured it.

 

Any suggestions for limiting the impact of this attack while I finish my upgrades would be greatly appreciated.

 

Thank you,

 

Mitch

 

Jul 29 04:48:11 slim1 courierd: newmsg,id=00050D02.53D72785.00010128: dns; [192.168.1.10] ([113.167.164.185])

Jul 29 04:48:11 slim1 courierd: started,id=00050D02.53D72785.00010128,from=<blaine <at> SENDERDOM>,module=esmtp,host=gmail.com,addr=<getimmunocalnow <at> gmail.com>

Jul 29 04:48:11 slim1 courierd: started,id=00050D02.53D72785.00010128,from=<blaine <at> SENDERDOM>,module=esmtp,host=gmail.com,addr=<abuelo143 <at> gmail.com>

Jul 29 04:48:11 slim1 courierd: started,id=00050D02.53D72785.00010128,from=<blaine <at> SENDERDOM>,module=esmtp,host=route66isp.com,addr=<s_palmer_45 <at> route66isp.com>

Jul 29 04:48:11 slim1 courierd: started,id=00050D02.53D72785.00010128,from=<blaine <at> SENDERDOM>,module=esmtp,host=web.de,addr=<c.grom <at> web.de>

Jul 29 04:48:11 slim1 courierd: started,id=00050D02.53D72785.00010128,from=<blaine <at> SENDERDOM>,module=esmtp,host=mrmjc.wanadoo.co.uk,addr=<mick <at> mrmjc.wanadoo.co.uk>

Jul 29 04:48:11 slim1 courieresmtp: id=00050D02.53D72785.00010128,from=<blaine <at> SENDERDOM>,addr=<s_palmer_45 <at> route66isp.com>: No such domain.

Jul 29 04:48:11 slim1 courieresmtp: id=00050D02.53D72785.00010128,from=<blaine <at> SENDERDOM>,addr=<s_palmer_45 <at> route66isp.com>,status: failure

Jul 29 04:48:12 slim1 courieresmtp: id=00050D02.53D72785.00010128,from=<blaine <at> SENDERDOM>,addr=<getimmunocalnow <at> gmail.com>: 550-5.7.1 [SERVERIP      12] Our system has detected that this message is

Jul 29 04:48:12 slim1 courieresmtp: id=00050D02.53D72785.00010128,from=<blaine <at> SENDERDOM>,addr=<abuelo143 <at> gmail.com>: 550-5.7.1 [SERVERIP      12] Our system has detected that this message is

Jul 29 04:48:12 slim1 courieresmtp: id=00050D02.53D72785.00010128,from=<blaine <at> SENDERDOM>,addr=<getimmunocalnow <at> gmail.com>: 550-5.7.1 likely unsolicited mail. To reduce the amount of spam sent to Gmail,

Jul 29 04:48:12 slim1 courieresmtp: id=00050D02.53D72785.00010128,from=<blaine <at> SENDERDOM>,addr=<abuelo143 <at> gmail.com>: 550-5.7.1 likely unsolicited mail. To reduce the amount of spam sent to Gmail,

Jul 29 04:48:12 slim1 courieresmtp: id=00050D02.53D72785.00010128,from=<blaine <at> SENDERDOM>,addr=<getimmunocalnow <at> gmail.com>: 550-5.7.1 this message has been blocked. Please visit

Jul 29 04:48:12 slim1 courieresmtp: id=00050D02.53D72785.00010128,from=<blaine <at> SENDERDOM>,addr=<abuelo143 <at> gmail.com>: 550-5.7.1 this message has been blocked. Please visit

Jul 29 04:48:12 slim1 courieresmtp: id=00050D02.53D72785.00010128,from=<blaine <at> SENDERDOM>,addr=<getimmunocalnow <at> gmail.com>: 550-5.7.1 http://support.google.com/mail/bin/answer.py?hl=en&answer=188131 for

Jul 29 04:48:12 slim1 courieresmtp: id=00050D02.53D72785.00010128,from=<blaine <at> SENDERDOM>,addr=<abuelo143 <at> gmail.com>: 550-5.7.1 http://support.google.com/mail/bin/answer.py?hl=en&answer=188131 for

Jul 29 04:48:12 slim1 courieresmtp: id=00050D02.53D72785.00010128,from=<blaine <at> SENDERDOM>,addr=<getimmunocalnow <at> gmail.com>: 550 5.7.1 more information. rb5si8718177pbc.13 - gsmtp

Jul 29 04:48:12 slim1 courieresmtp: id=00050D02.53D72785.00010128,from=<blaine <at> SENDERDOM>,addr=<abuelo143 <at> gmail.com>: 550 5.7.1 more information. rb5si8718177pbc.13 - gsmtp

Jul 29 04:48:12 slim1 courieresmtp: id=00050D02.53D72785.00010128,from=<blaine <at> SENDERDOM>,addr=<getimmunocalnow <at> gmail.com>,status: failure

Jul 29 04:48:12 slim1 courieresmtp: id=00050D02.53D72785.00010128,from=<blaine <at> SENDERDOM>,addr=<abuelo143 <at> gmail.com>,status: failure

Jul 29 04:48:12 slim1 courieresmtp: id=00050D02.53D72785.00010128,from=<blaine <at> SENDERDOM>,addr=<c.grom <at> web.de>: 550 Requested action not taken: mailbox unavailable

Jul 29 04:48:12 slim1 courieresmtp: id=00050D02.53D72785.00010128,from=<blaine <at> SENDERDOM>,addr=<c.grom <at> web.de>,status: failure

Jul 29 04:48:17 slim1 courieresmtp: id=00050D02.53D72785.00010128,from=<blaine <at> SENDERDOM>,addr=<mick <at> mrmjc.wanadoo.co.uk>: 550 5.2.0 Mail rejete. Mail rejected. ouk_506 [506]

Jul 29 04:48:17 slim1 courieresmtp: id=00050D02.53D72785.00010128,from=<blaine <at> SENDERDOM>,addr=<mick <at> mrmjc.wanadoo.co.uk>,status: failure

Jul 29 04:48:17 slim1 courierd: completed,id=00050D02.53D72785.00010128

Jul 29 04:48:17 slim1 courierd: started,id=00050D02.53D72785.00010128,from=<>,module=dsn,host=,addr=<blaine <at> SENDERDOM>

Jul 29 04:48:17 slim1 courierd: completed,id=00050D02.53D72785.00010128

 

------------------------------------------------------------------------------
Infragistics Professional
Build stunning WinForms apps today!
Reboot your WinForms applications with our WinForms controls. 
Build a bridge from your legacy apps to the future.
http://pubads.g.doubleclick.net/gampad/clk?id=153845071&iu=/4140/ostg.clktrk
_______________________________________________
courier-users mailing list
courier-users <at> lists.sourceforge.net
Unsubscribe: https://lists.sourceforge.net/lists/listinfo/courier-users
Alessandro Vesely | 28 Jul 13:33 2014
Picon

Yet another ClamAV filter

Once using Sophos, avfilter now flanks the lot of anti-virus filters
based on ClamAV.

http://www.tana.it/sw/avfilter/

A C-written, forking filter, with a companion utility for freshclam's
OnUpdateExecute configuration entry, and a fair amount of optional
configurability.

You're welcome to check it out
Ale

--

-- 
Liberty, taking the word in its concrete sense, consists in the
ability to choose.  --Simone Weil

------------------------------------------------------------------------------
Infragistics Professional
Build stunning WinForms apps today!
Reboot your WinForms applications with our WinForms controls. 
Build a bridge from your legacy apps to the future.
http://pubads.g.doubleclick.net/gampad/clk?id=153845071&iu=/4140/ostg.clktrk
_______________________________________________
courier-users mailing list
courier-users <at> lists.sourceforge.net
Unsubscribe: https://lists.sourceforge.net/lists/listinfo/courier-users

Denis Kanchev | 21 Jul 08:52 2014
Picon

Interesting bug - failed to match after adding headers in maildrop

Hi all,

I've found a bug, where mail drop cant match the mail headers ( version 2.7.1 ) .
The mail headers are in this order
Received:
Received:
Message-ID:
Date:
From:
User-Agent:
To:
Subject:
Content-Type:
Content-Transfer-Encoding:


Then i run mail drop with -A option ( to add headers )
  maildrop -A "Return-Path: admin <at> something.com" -A "Delivered-To: admin <at> something.com"
And if i turn on the debug - then i see that the last headers are cut and subject is only partial ( or missing ) and the pattern can't match the subject . And there is the proof:

We have a subject like this "Subject: =?UTF-8?B?0YLQtdGB0YI=?=" ( decoded is тест ) and filter /^subject:.*тест.*/ , then we run maildrop with -V 4 ( for debug ) and here is the output

Matching /^subject:.*тест.*nst
/ against Subject: =?UTF-8?B?0YLQtdGB0

Then i cut added headers with 3 symbols ( they become something like this maildrop -A "Return-Path: admin <at> something.com" -A "Delivered-To: admin <at> someth.com" ) and we repeat the test
Matching /^subject:.*тест.*nst
/ against Subject: =?UTF-8?B?0YLQtdGB0YI=

Nice - the subject is 3 symbols longer :) , then lets cut more symbols from the headers in the options, then we remove 3 more symbols from the options and finally maildrop matched the pattern

Matching /^subject:.*тест.*nst
/ against Subject: тест

I found a solution for this ( and keeping added headers )
Just add
xfilter "cat"
and xfilter will read the message again ( and all headers )

Regards,
Denis Kanchev
------------------------------------------------------------------------------
Want fast and easy access to all the code in your enterprise? Index and
search up to 200,000 lines of code with a free copy of Black Duck
Code Sight - the same software that powers the world's largest code
search on Ohloh, the Black Duck Open Hub! Try it now.
http://p.sf.net/sfu/bds
_______________________________________________
courier-users mailing list
courier-users <at> lists.sourceforge.net
Unsubscribe: https://lists.sourceforge.net/lists/listinfo/courier-users
Harry Duncan | 16 Jul 11:46 2014
Picon

restricted access email system

Hi Guys,

Wondering if anyone has any thoughts / ideas on how to provide
restricted external access to email.

Have a customer who want to move their email server in house, internal
access only, and then provide restricted external access to a select
few to access by iphone etc. It would be imap access and/or webmail.

Two solutions come to mind, one is vpn, the other is proxy with access
control. Perhaps I am missing something cool that is already built
into courier or a better solution.

Just wondering if anyone has any thoughts?

Harry.

------------------------------------------------------------------------------
Want fast and easy access to all the code in your enterprise? Index and
search up to 200,000 lines of code with a free copy of Black Duck
Code Sight - the same software that powers the world's largest code
search on Ohloh, the Black Duck Open Hub! Try it now.
http://p.sf.net/sfu/bds
_______________________________________________
courier-users mailing list
courier-users <at> lists.sourceforge.net
Unsubscribe: https://lists.sourceforge.net/lists/listinfo/courier-users

Roger Schreiter | 5 Jul 02:40 2014
Picon

Bug in courier-authlib-0.66.1.20140701?

Hello,

I upgraded my courier installation from an 0.5 version
to the up to date version.

After upgrading I had problems logging in using authlib with module
authmysql, however it is imho no problem of the mysql module.

authlib connected to the mySQL-Server correctly, got the data
and then hung, consuming 100% of CPU time.

Imho there is a endless loop in checkpassword.c (in authlib).
Please check my diff file!

Regards,
Roger.

*** checkpassword.c_orig        2014-07-05 02:20:34.724457072 +0200
--- checkpassword.c     2014-07-05 02:21:17.770077223 +0200
***************
*** 29,37 ****
  static int safe_strcmp(const char *a, const char *nullable_b)
  {
        if (!nullable_b)
                return -1;
!       return safe_strcmp(a, nullable_b);
  }

  static int do_authcheckpassword(const char *password, const char
*encrypted_password)
  {
--- 29,37 ----
  static int safe_strcmp(const char *a, const char *nullable_b)
  {
        if (!nullable_b)
                return -1;
!       return strcmp(a, nullable_b);
  }

  static int do_authcheckpassword(const char *password, const char
*encrypted_password)
  {

------------------------------------------------------------------------------
Open source business process management suite built on Java and Eclipse
Turn processes into business applications with Bonita BPM Community Edition
Quickly connect people, data, and systems into organized workflows
Winner of BOSSIE, CODIE, OW2 and Gartner awards
http://p.sf.net/sfu/Bonitasoft
_______________________________________________
courier-users mailing list
courier-users <at> lists.sourceforge.net
Unsubscribe: https://lists.sourceforge.net/lists/listinfo/courier-users

Alexey Mishustin | 29 Jun 16:28 2014
Picon

Perlfilter debugging

Hello,

I'm trying to implement a simple perl-filter script:

diff -u /usr/share/courier/perlfilter-example.pl ./perlfilter-mailerdaemon.pl
--- /usr/share/courier/perlfilter-example.pl    2014-06-22
14:35:24.000000000 +0400
+++ ./perlfilter-mailerdaemon.pl        2014-06-29 18:16:47.000000000 +0400
 <at>  <at>  -17,6 +17,11  <at>  <at> 
 # The number of the filedescriptor that's connected to the socket is
 # passed to us on STDIN.

+my $debug_fh;
+open ($debug_fh, '>', '/tmp/perldebug');
+print $debug_fh "perlfilter script launched!\n";
+close $debug_fh;
+
 my $filedesc=shift  <at> ARGV;

 my $socket=new IO::File "+<&$filedesc";
 <at>  <at>  -77,7 +82,7  <at>  <at> 
                last if $line eq "";    # End of headers

                return "500 Invalid Date header."
-                       if $line =~
/^Date:......................................................................../i;
+                       if $line =~ /^To:.*mailer-daemon.*$/i;
        }

        return "";

But it doesn't work: doesn't reject messages sent to mailer-daemon,
doesn't print into the file /tmp/perldebug. Nothing about perlfilter
in logs (except 'Starting perlfilter').

There is the sole line with the full path to the script in
/etc/courier/filters/perlfilter.

There is the sole line 'esmtp' in /etc/courier/enablefiltering.

I issued `courierfilter start' and `filterctl start perlfilter'.

lsof shows sockets of perlfilter, ps aux shows processes.

How could I debug this?

--

-- 
Regards,
Alex

------------------------------------------------------------------------------
Open source business process management suite built on Java and Eclipse
Turn processes into business applications with Bonita BPM Community Edition
Quickly connect people, data, and systems into organized workflows
Winner of BOSSIE, CODIE, OW2 and Gartner awards
http://p.sf.net/sfu/Bonitasoft
_______________________________________________
courier-users mailing list
courier-users <at> lists.sourceforge.net
Unsubscribe: https://lists.sourceforge.net/lists/listinfo/courier-users

Vytautas Kasparavičius | 27 Jun 08:42 2014
Picon

webmail not using defaultdomain

Hello,
Courier version 0.73.1 on FC19
I have correct domain in /etc/courier/defaultdomain but when I login 
into webmail on the right upper corner I still see email address 
composed not with domain(user <at> plasta.lt) but with courier server 
hostname(user <at> mail.plasta.lt). What's wrong?
Thanks.

------------------------------------------------------------------------------
Open source business process management suite built on Java and Eclipse
Turn processes into business applications with Bonita BPM Community Edition
Quickly connect people, data, and systems into organized workflows
Winner of BOSSIE, CODIE, OW2 and Gartner awards
http://p.sf.net/sfu/Bonitasoft
_______________________________________________
courier-users mailing list
courier-users <at> lists.sourceforge.net
Unsubscribe: https://lists.sourceforge.net/lists/listinfo/courier-users

Joe Laffey | 14 Jun 07:11 2014

IMAP broken with Kindle Mail update

Hi,

I have a use with an Amazon Kindle that just automagically updated its 
email client software.

Now it is not working correctly with IMAP. It seems to be having trouble 
deleting mail, or saving sent mail.

Here is a log excerpt from the debug log:

WRITE: main2 OK LOGIN Ok.
READ: ATOM: main3
READ: ATOM: SELECT
READ: QUOTED_STRING: INBOX
READ: EOL
WRITE: * FLAGS ($FORWARDED \Draft \Answered \Flagged \Deleted \Seen \Recent)
* OK [PERMANENTFLAGS ($FORWARDED \* \Draft \Answered \Flagged \Deleted \Seen)] Limited
* 19 EXISTS
* 0 RECENT
* OK [UIDVALIDITY 1113417626] Ok
* OK [MYRIGHTS "acdilrsw"] ACL
main3 OK [READ-WRITE] Ok
READ: ATOM: main4
READ: ATOM: UID
READ: ATOM: COPY
READ: NUMBER: 27497
READ: QUOTED_STRING: Trash
WRITE: main4 NO Error in IMAP command received by server.
READ: ATOM: main5
READ: ATOM: UID
READ: ATOM: COPY
READ: NUMBER: 27496
READ: QUOTED_STRING: Trash
WRITE: main5 NO Error in IMAP command received by server.
READ: ATOM: main6
READ: ATOM: UID
READ: ATOM: COPY
READ: NUMBER: 27495
READ: QUOTED_STRING: Trash
WRITE: main6 NO Error in IMAP command received by server.
READ: ATOM: main7
READ: ATOM: UID
READ: ATOM: COPY
READ: NUMBER: 27494
READ: QUOTED_STRING: Trash
WRITE: main7 NO Error in IMAP command received by server.
READ: ATOM: main8
READ: ATOM: UID
READ: ATOM: COPY
READ: NUMBER: 27493
READ: QUOTED_STRING: Trash
WRITE: main8 NO Error in IMAP command received by server.
READ: ATOM: main9
READ: ATOM: UID
READ: ATOM: COPY
READ: NUMBER: 27492
READ: QUOTED_STRING: Trash
WRITE: main9 NO Error in IMAP command received by server.
READ: ATOM: main10
READ: ATOM: UID
READ: ATOM: COPY
READ: NUMBER: 27491
READ: QUOTED_STRING: Trash
WRITE: main10 NO Error in IMAP command received by server.
READ: ATOM: main11
READ: ATOM: UID
READ: ATOM: COPY
READ: NUMBER: 27490
READ: QUOTED_STRING: Trash
WRITE: main11 NO Error in IMAP command received by server.
READ: ATOM: main12
READ: ATOM: UID
READ: ATOM: COPY
READ: NUMBER: 27498
READ: QUOTED_STRING: Trash
WRITE: main12 NO Error in IMAP command received by server.
READ: ATOM: main13
READ: ATOM: UID
READ: ATOM: COPY
READ: NUMBER: 27499
READ: QUOTED_STRING: Trash
WRITE: * BYE [ALERT] Fatal error: TOO MANY CONSECUTIVE PROTOCOL VIOLATIONS:

Any thoughts? Any one else dealing with this brain dead Kindle update?

I did recreate the IMAP account (deleted it and re-enetered the info). 
That did not help. Other IMAP clients have no problems with the same 
account.

Thanks,

--
Joe Laffey
The Stable
Visual Effects
http://TheStable.tv/?e34597M/

------------------------------------------------------------------------------
HPCC Systems Open Source Big Data Platform from LexisNexis Risk Solutions
Find What Matters Most in Your Big Data with HPCC Systems
Open Source. Fast. Scalable. Simple. Ideal for Dirty Data.
Leverages Graph Analysis for Fast Processing & Easy Data Exploration
http://p.sf.net/sfu/hpccsystems
_______________________________________________
courier-users mailing list
courier-users <at> lists.sourceforge.net
Unsubscribe: https://lists.sourceforge.net/lists/listinfo/courier-users

Joe Laffey | 6 Jun 05:48 2014

Looging of TLS

Hi,

Is there any way to cause courier to log that a connection is using 
TLS/SSL for receiving and sending mail from other mail relays?

Is there a way to have it add a head saying that TLS/SSL was used? When I 
send mail using SMTP AUTH with TLS/SSL then I see a header to this effect, 
but if I just send an email from one TLS capable server to my courier 
server, or from my courier server to another TLS capable server I do not 
see any indication that the connection was encrypted.

This is mainly for debugging/testing purposes (for which I found a very 
useful website http://checktls.com/perl/TestReceiver.pl )

However, it would be nice to have this in the logs, and even nicer to have 
this is a header.

Thanks!

--
Joe Laffey
The Stable
Visual Effects
http://TheStable.tv/?e34475M/

------------------------------------------------------------------------------
Learn Graph Databases - Download FREE O'Reilly Book
"Graph Databases" is the definitive new guide to graph databases and their 
applications. Written by three acclaimed leaders in the field, 
this first edition is now available. Download your free book today!
http://p.sf.net/sfu/NeoTech
_______________________________________________
courier-users mailing list
courier-users <at> lists.sourceforge.net
Unsubscribe: https://lists.sourceforge.net/lists/listinfo/courier-users

Sam Varshavchik | 5 Jun 01:39 2014

Re: Using courier as a relay host

Joe Laffey writes:

> On Wed, 4 Jun 2014, Sam Varshavchik wrote:
>
>> Joe Laffey writes:
>>
>>> Any thoughts on why I would get a relaying denied from mail sent through a  
>>> host
>>> that is listed as a RELAYCLIENT ?
>>>
>>> I see:
>>>
>>>  courieresmtpd:
>>> error,relay=::ffff: 
>>> 71.91.xx.yy,from=<joe <at> xxxxx.tv>,to=<gregxxxxxx <at> verizon.net>:
>>> 513 Relaying denied.
>>>
>>>
>>> I know this worked right in my old setup. So I am trying to figure out what  
>>> has
>>> changed.
>>>
>>> Basically, I want that host 71.91.xx.yy to be able to relay any mail it wants
>>> out through the courier machine.
>>
>> The access file's syntax is whitespace-sensitive. Verify that there's  
>> exactly a single tab character between the IP address and "allow".
>>
>
>
> That was it!
>
> Might I suggest either making it more tolerant of whitespace (which I am  
> sure is on your list, but you likely have better things to worry about), or  
> alternately, putting a big note in the comments at the top of the file about  
> the whitespace requirement... I added one to mine.
>
> Thanks again!

Yeah, I should; as soon as I get off my current streak of laziness.

Originally, I didn't really intend for the access file to be manually  
edited; but rather have everyone use a more fleshed out tool that generates  
the access file, and maintains. In that context, whitespace is not an issue.

Like webadmin, for example.

------------------------------------------------------------------------------
Learn Graph Databases - Download FREE O'Reilly Book
"Graph Databases" is the definitive new guide to graph databases and their 
applications. Written by three acclaimed leaders in the field, 
this first edition is now available. Download your free book today!
http://p.sf.net/sfu/NeoTech
_______________________________________________
courier-users mailing list
courier-users <at> lists.sourceforge.net
Unsubscribe: https://lists.sourceforge.net/lists/listinfo/courier-users

Gmane