headers
Benoit Schmid | 1 Jul 2009 09:08
Picon
Picon
Favicon

Re: cram-md5 for smtp

Hello Chris,

Chris Newman wrote:
> You need "mustsaslserver" on the relevant MTA source channel and need to
> turn on "sasl.default.ldap.has_plain_passwords" (you also have to have
> your LDAP server configured to store passwords in the clear).
> 

1. mustsasl is set:
tcp_submit submit smtp mx single_sys mustsaslserver maytlsserver
missingrecipientpolicy 4 sourcespamfilter1optin virus
tcp_submit-daemon

2. sasl.default.ldap.has_plain_passwords is set to the correct value
because cram-md5 works fine for imap

3. ldap server has cleared password otherwise crma-md5
woul not work for imap.

It is something else, but I miss my configuration problem.

> If you've configured "sasl.default.mech_list" setting, that will
> override and can prevent CRAM-MD5 from being enabled for SMTP.
> 

I have not touched this parameter.

Thanks in advance for your help.
--

-- 
_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/
(Continue reading)

Permalink | Reply | 1 comment |
headers
Benoit Schmid | 1 Jul 2009 14:17
Picon
Picon
Favicon

Re: cram-md5 for smtp

Hello Chris,

Benoit Schmid wrote:
> 2. sasl.default.ldap.has_plain_passwords is set to the correct value
> because cram-md5 works fine for imap
> 

It was the sasl.default.ldap.has_plain_passwords that was badly set.
The imap mmp does not use the parameters from configutil.
That is why imap was working fine.

I was sure I set it.
But, unfortunately, it was not the case.

Sorry for this trivial question.

--

-- 
_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/

      Benoit Schmid              Tel: (++41-22) 379-7209
      UNIGE Postmaster

      University of Geneva - Information Technology Division

_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/
Permalink | Reply | 0 comments |
headers
Chad M Stewart | 2 Jul 2009 01:14
Gravatar

Mapping table debug

I seem to recall that when MM_DEBUG=5 (or 99 in this case) is enabled,  
I would get a line by line output in the log files as a connection was  
run through the various mapping tables.  In this case I am looking to  
see line by line testing of the PORT_ACCESS mapping.  Instead of line  
by line, I'm seeing the following in the logs

...
17:14:11.99: Received connection from  <at> [unknown] [aaa.bbb.bbb.12]
17:14:11.99: Transport/application information for connection: TCP| 
aaa.bbb.bbb.111|25|aaa.bbb.bbb.12|39658 SMTP
17:14:11.99: Applying PORT_ACCESS mapping to "TCP|aaa.bbb.bbb.111|25| 
aaa.bbb.bbb.12|39658"
17:14:12.00: PORT_ACCESS result: EXTERNAL
17:14:12.00: Ruleset: EXTERNAL
17:14:12.00: Realm:
17:14:12.00: Sending    : "220-n
...

PORT_ACCESS

!
! TCP|server-address|server-port|client-address|client-port
!
  *|*|*|*|*  $C$|INTERNAL_IP;$3|$YINTERNAL$E
  *|*|*|*|*  $C$A:$[/var/opt/comms/messaging/lib/ 
check_metermaid.so,throttle,ext_10-60,$3] \
$N421$ Connection$ declined$ at$ this$ time$E
  *  $YEXTERNAL

INTERNAL_IP
(Continue reading)

Permalink | Reply | 3 comments |
headers
Peter Kaldis | 2 Jul 2009 01:17
Favicon

Automated replies with jpeg attachments?

Hi folks, I'm running

Sun Java(tm) System Messaging Server 6.2-7.05 (built Sep  5 2006)
libimta.so 6.2-7.05 (built 12:08:11, Sep  5 2006)
SunOS mailstore2 5.10 Generic_125101-10 i86pc i386 i86pc

and I'd like to be able to send out an automated vacation message/ 
bounce that includes a jpeg attachment (base64 encoded). Is there any  
way to do this, perhaps with sieve?

	-Pk

--

-- 
Peter Kaldis               UNIX Lizard         `   ,	
Pixar Animation Studios    Systems Group     <>|()/~~-  		
                                                '  '
Permalink | Reply | 3 comments |
headers
Ned Freed | 2 Jul 2009 03:25

Re: Automated replies with jpeg attachments?

> Hi folks, I'm running

> Sun Java(tm) System Messaging Server 6.2-7.05 (built Sep  5 2006)
> libimta.so 6.2-7.05 (built 12:08:11, Sep  5 2006)
> SunOS mailstore2 5.10 Generic_125101-10 i86pc i386 i86pc

> and I'd like to be able to send out an automated vacation message/
> bounce that includes a jpeg attachment (base64 encoded). Is there any
> way to do this, perhaps with sieve?

Sure, see RFC 5230 section 4.4. In brief, the vacation action has a :mime
parameter that can be used to specify an entire MIME entity as a vacation
response. This can include a JPEG or anything else you want.

Whether or not it's a good idea to do this is another matter, of course. I
certainly would recommend keeping the JPEG on the small side...

				Ned
Permalink | Reply | 2 comments |
headers
Ned Freed | 2 Jul 2009 03:49

Re: Mapping table debug

> I seem to recall that when MM_DEBUG=5 (or 99 in this case) is enabled,
> I would get a line by line output in the log files as a connection was
> run through the various mapping tables.

The problem is that MM_DEBUG doesn't take effect until the start of a
transaction. PORT_ACCESS is consulted when the connection is established,
long before that point.

> In this case I am looking to
> see line by line testing of the PORT_ACCESS mapping.  Instead of line
> by line, I'm seeing the following in the logs

> ...
> 17:14:11.99: Received connection from  <at> [unknown] [aaa.bbb.bbb.12]
> 17:14:11.99: Transport/application information for connection: TCP|
> aaa.bbb.bbb.111|25|aaa.bbb.bbb.12|39658 SMTP
> 17:14:11.99: Applying PORT_ACCESS mapping to "TCP|aaa.bbb.bbb.111|25|
> aaa.bbb.bbb.12|39658"
> 17:14:12.00: PORT_ACCESS result: EXTERNAL
> 17:14:12.00: Ruleset: EXTERNAL
> 17:14:12.00: Realm:
> 17:14:12.00: Sending    : "220-n
> ...

> PORT_ACCESS

> !
> ! TCP|server-address|server-port|client-address|client-port
> !
>   *|*|*|*|*  $C$|INTERNAL_IP;$3|$YINTERNAL$E
(Continue reading)

Permalink | Reply | 2 comments |
headers
Benoit Schmid | 2 Jul 2009 10:51
Picon
Picon
Favicon

Unindexed request from convergence

Hello,

We regularly have:
search is not indexed base='usergrouproot'
filter='(&(&(|(|(uid=*)(cn=*)))(|(objectClass=ICSCALENDARRESOURCE)(objectClass=INETORGPERSON)(objectClass=GROUPOFUNIQUENAMES)(objectClass=GROUPOFURLS)))(objectClass=*))'
scope='sub'

The request must be generated though convergence access.
We have run the dssetup from comms6u2 on the ldap server.

Would you know which selection in convergence generates this research?

What is the best workaround to avoid these unindexed searches?

Is there a bugid associated to this case?

Thanks in advance for your answer.
--

-- 
_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/

      Benoit Schmid              Tel: (++41-22) 379-7209
      UNIGE Postmaster

      University of Geneva - Information Technology Division

_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/
Permalink | Reply | 1 comment |
headers
Peter Kaldis | 2 Jul 2009 18:06
Favicon

Re: Automated replies with jpeg attachments?

Thanks Ned, do you know if this part of the Sieve spec is indeed  
supported in my version of the Messaging Server?

On Jul 1, 2009, at 6:25 PM, Ned Freed wrote:

>> Hi folks, I'm running
>
>> Sun Java(tm) System Messaging Server 6.2-7.05 (built Sep  5 2006)
>> libimta.so 6.2-7.05 (built 12:08:11, Sep  5 2006)
>> SunOS mailstore2 5.10 Generic_125101-10 i86pc i386 i86pc
>
>> and I'd like to be able to send out an automated vacation message/
>> bounce that includes a jpeg attachment (base64 encoded). Is there any
>> way to do this, perhaps with sieve?
>
> Sure, see RFC 5230 section 4.4. In brief, the vacation action has  
> a :mime
> parameter that can be used to specify an entire MIME entity as a  
> vacation
> response. This can include a JPEG or anything else you want.
>
> Whether or not it's a good idea to do this is another matter, of  
> course. I
> certainly would recommend keeping the JPEG on the small side...
>
> 				Ned
Permalink | Reply | 1 comment |
headers
Ned Freed | 2 Jul 2009 18:52

Re: Automated replies with jpeg attachments?

> Thanks Ned, do you know if this part of the Sieve spec is indeed
> supported in my version of the Messaging Server?

Yes, support for it should be there.

				Ned

> On Jul 1, 2009, at 6:25 PM, Ned Freed wrote:

> >> Hi folks, I'm running
> >
> >> Sun Java(tm) System Messaging Server 6.2-7.05 (built Sep  5 2006)
> >> libimta.so 6.2-7.05 (built 12:08:11, Sep  5 2006)
> >> SunOS mailstore2 5.10 Generic_125101-10 i86pc i386 i86pc
> >
> >> and I'd like to be able to send out an automated vacation message/
> >> bounce that includes a jpeg attachment (base64 encoded). Is there any
> >> way to do this, perhaps with sieve?
> >
> > Sure, see RFC 5230 section 4.4. In brief, the vacation action has
> > a :mime
> > parameter that can be used to specify an entire MIME entity as a
> > vacation
> > response. This can include a JPEG or anything else you want.
> >
> > Whether or not it's a good idea to do this is another matter, of
> > course. I
> > certainly would recommend keeping the JPEG on the small side...
> >
> > 				Ned
(Continue reading)

Permalink | Reply | 0 comments |
headers
Kristin Hubner | 3 Jul 2009 00:06
Picon

Re: Mapping table debug

Note I see two syntax errors in your entry that's trying to do a  
Metermaid
callout.

(1) You have $A: when you probably meant $:A (to cause the probe to  
match
only when it's the Dispatcher, not the SMTP server, doing the probing).

(2) You have an extraneous space after the ] character, prior to the  
line
continuation character \.  That will be causing problems,

Thus change:

  *|*|*|*|*  $C$A:$[/var/opt/comms/messaging/lib/ 
check_metermaid.so,throttle,ext_10-60,$3] \
$N421$ Connection$ declined$ at$ this$ time$E

to something more like:

   *|*|*|*|*  \
$C$:A$[/var/opt/comms/messaging/lib/ 
check_metermaid.so,throttle,ext_10-60,$3]$N421$ Connection$ declined$  
at$ this$ time$E

If that's still not working, then as Ned already suggested, imsimta  
test -mapping -debug
should be informative.

Regards,
(Continue reading)

Permalink | Reply | 1 comment |

Gmane