List about the Sun Java Enterprise System, Sun ONE, and iPlanet communication and directory software products

Leonhard Knauff | 1 Apr 2011 07:46

Picon

logging "badlogin imap" via ME/UWC ?

Hallo together,

Sun Java(tm) System Messaging Server 6.3-11.01 (built Feb 12 2010; 32bit)
libimta.so 6.3-11.01 (built 11:46:00, Feb 12 2010; 32bit)
SunOS mserv3 5.10 Generic_127111-02 sun4v sparc SUNW,SPARC-Enterprise-T2000
(Patch 120228-40, 120228-42 do the same)

logfile.imap.loglevel = Information

We use:
     POP native  (Thunderbird & Co.)
     IMAP native (Thunderbird & Co.)
     Messenger Express ME via IMAP
     Communication Express UWC via IMAP

Problem with "bad login" logging IMAP:
   if "Wrong password used" ...

  1. With IMAP native (Thunderbird & Co.):
      For a wrong password:  In the logfile "log/imap":
         imapd[2791]: Account Notice: badlogin: [99.99.99.99:50958] 
                       plaintext XXXXX authentication failure
      That is OK and fine.

  2. With IMAP via ME or UWC:
      For a wrong password:  In the logfile "log/imap":
         ---------->   No entry   ((((((

  3. Only in the "log/http" of ME I found 
         httpd[2800]: Account Notice: badlogin: [192.168.1.1:51436]

(Continue reading)

Marko Jauhiainen | 4 Apr 2011 11:11

Picon

Picon

Logging Message-Id with LMTP

Hi,

[Running Oracle Communications Messaging Exchange Server 7u4-19.01 64bit 
(built Sep  7 2010)
libimta.so 7u4-19.01 64bit (built 13:35:06, Sep  7 2010)]

Is there a way to log Message-Id in the back-end store that uses (only) 
LMTP to receive messages from the MTA? Currently a typical line in the 
log file (mail.log[_current]) looks like this:

04-Apr-2011 00:30:26.67 4da2.163c.17505 tcp_lmtpss                S 0 
firstname.lastname@... rfc822; username <at> lmtpcs-daemon 
mtahost.ourdomain.fi (mtahost.ourdomain.fi [123.167.88.45])    250 2.5.0 
Delivery to user OK   0

Judging by the documentation I've seen so far, I'd be inclined to say, 
'no'. But I frequently find that not all the relevant documentation is 
where one would think it is, nor is it always correct (not to mention 
the possibility of misunderstanding it :).

Marko

Dan Newman | 4 Apr 2011 16:26

Picon

Re: Logging Message-Id with LMTP

Have you set LOG_MESSAGE_ID=1 in the option.dat file?  See, e.g.,

http://wikis.sun.com/display/CommSuite/Managing+Logging

You will then need to recompile the configuration if using a compiled
configuration.  Then restart the Dispatcher so as to start new
LMTP processes.  (Note that currently busy LMTP server processes will
not exit until all their active, inbound sessions have finished.)

Dan

On 4 Apr 2011 , at 2:11 AM, Marko Jauhiainen wrote:

> Hi,
> 
> [Running Oracle Communications Messaging Exchange Server 7u4-19.01 64bit (built Sep  7 2010)
> libimta.so 7u4-19.01 64bit (built 13:35:06, Sep  7 2010)]
> 
> Is there a way to log Message-Id in the back-end store that uses (only) LMTP to receive messages from the
MTA? Currently a typical line in the log file (mail.log[_current]) looks like this:
> 
> 04-Apr-2011 00:30:26.67 4da2.163c.17505 tcp_lmtpss                S 0
firstname.lastname@... rfc822; username <at> lmtpcs-daemon
mtahost.ourdomain.fi (mtahost.ourdomain.fi [123.167.88.45])    250 2.5.0 Delivery to user OK   0
> 
> Judging by the documentation I've seen so far, I'd be inclined to say, 'no'. But I frequently find that not
all the relevant documentation is where one would think it is, nor is it always correct (not to mention the
possibility of misunderstanding it :).
> 
> Marko

(Continue reading)

Marko Jauhiainen | 4 Apr 2011 16:34

Picon

Picon

Re: Logging Message-Id with LMTP


On 4.4.2011 17:26, Dan Newman wrote:
> Have you set LOG_MESSAGE_ID=1 in the option.dat file?  See, e.g.,
>
> http://wikis.sun.com/display/CommSuite/Managing+Logging
>
> You will then need to recompile the configuration if using a compiled
> configuration.  Then restart the Dispatcher so as to start new
> LMTP processes.  (Note that currently busy LMTP server processes will
> not exit until all their active, inbound sessions have finished.)

I have had that option set since last spring. But when we switched from 
SMTP to LMTP delivery during the summer, Message-id was no longer logged 
in mail.log. The store host has been restarted n+1 times since the change.

I must be missing something obvious here...?

Marko

>
> Dan
>
>
> On 4 Apr 2011 , at 2:11 AM, Marko Jauhiainen wrote:
>
>> Hi,
>>
>> [Running Oracle Communications Messaging Exchange Server 7u4-19.01 64bit (built Sep  7 2010)
>> libimta.so 7u4-19.01 64bit (built 13:35:06, Sep  7 2010)]
>>

(Continue reading)

Kelly Caudill | 4 Apr 2011 16:44

Picon

Re: Logging Message-Id with LMTP

RFE 6258366: have the lmtp server log message ID in the mail.log.
closed as "not a defect".

Evaluation: The omission of the message id from the LMTP server log is expected 
behavior.  Moreover, it is important that it not be changed. The entire idea 
behind LMTP is to minimize the amount of work done on the backend store while 
delivering mail.  To this end, the LMTP server doesn't scan the content of the 
message for any purpose, which would be necessary to extract information like 
the message id.

Why do you want this information?  Why is it not sufficient to get it from a 
front-end MTA?

Kelly

On 4/4/2011 10:34 AM, Marko Jauhiainen wrote:
>
>
> On 4.4.2011 17:26, Dan Newman wrote:
>> Have you set LOG_MESSAGE_ID=1 in the option.dat file? See, e.g.,
>>
>> http://wikis.sun.com/display/CommSuite/Managing+Logging
>>
>> You will then need to recompile the configuration if using a compiled
>> configuration. Then restart the Dispatcher so as to start new
>> LMTP processes. (Note that currently busy LMTP server processes will
>> not exit until all their active, inbound sessions have finished.)
>
> I have had that option set since last spring. But when we switched from SMTP to
> LMTP delivery during the summer, Message-id was no longer logged in mail.log.

(Continue reading)

Dan Newman | 4 Apr 2011 17:39

Picon

Re: Logging Message-Id with LMTP

On 4 Apr 2011 , at 7:34 AM, Marko Jauhiainen wrote:

> 
> 
> On 4.4.2011 17:26, Dan Newman wrote:
>> Have you set LOG_MESSAGE_ID=1 in the option.dat file?  See, e.g.,
>> 
>> http://wikis.sun.com/display/CommSuite/Managing+Logging
>> 
>> You will then need to recompile the configuration if using a compiled
>> configuration.  Then restart the Dispatcher so as to start new
>> LMTP processes.  (Note that currently busy LMTP server processes will
>> not exit until all their active, inbound sessions have finished.)
> 
> I have had that option set since last spring. But when we switched from SMTP to LMTP delivery during the
summer, Message-id was no longer logged in mail.log. The store host has been restarted n+1 times since the change.
> 
> I must be missing something obvious here...?

Not necessarily.  To log the message id, it is necessary to parse the message's
header.  The point behind LMTP is to do all the message processing at the front
end MTAs and to then do minimal message processing on the backend stores (including,
most importantly, no store-and-forward queues on the backend stores).

As such, I'm not surprised that any logging which would require message
parsing is not occurring with LMTP delivery.  However, I figured that you
might give it a try if you hadn't already.

Dan

(Continue reading)

Ned Freed | 4 Apr 2011 17:57

Re: Logging Message-Id with LMTP

> Hi,

> [Running Oracle Communications Messaging Exchange Server 7u4-19.01 64bit
> (built Sep  7 2010)
> libimta.so 7u4-19.01 64bit (built 13:35:06, Sep  7 2010)]

> Is there a way to log Message-Id in the back-end store that uses (only)
> LMTP to receive messages from the MTA?

No. Messages are fed directly into the store; no parsing is done by the LMTP
server. So there's no easy means of extracting the message-id for logging
purposes.

> Currently a typical line in the
> log file (mail.log[_current]) looks like this:

> 04-Apr-2011 00:30:26.67 4da2.163c.17505 tcp_lmtpss                S 0
> firstname.lastname@... rfc822; username <at> lmtpcs-daemon
> mtahost.ourdomain.fi (mtahost.ourdomain.fi [123.167.88.45])    250 2.5.0
> Delivery to user OK   0

> Judging by the documentation I've seen so far, I'd be inclined to say,
> 'no'. But I frequently find that not all the relevant documentation is
> where one would think it is, nor is it always correct (not to mention
> the possibility of misunderstanding it :).

In this case the documentation is correct.

				Ned

(Continue reading)

Chris Newman | 5 Apr 2011 00:08

Picon

Re: logging "badlogin imap" via ME/UWC ?

--On April 1, 2011 7:46:37 +0200 Leonhard Knauff 
<leonhard.knauff@...> wrote:
> Sun Java(tm) System Messaging Server 6.3-11.01 (built Feb 12 2010; 32bit)
> libimta.so 6.3-11.01 (built 11:46:00, Feb 12 2010; 32bit)
> SunOS mserv3 5.10 Generic_127111-02 sun4v sparc
> SUNW,SPARC-Enterprise-T2000 (Patch 120228-40, 120228-42 do the same)
>
> logfile.imap.loglevel = Information
>
>
> We use:
>      POP native  (Thunderbird & Co.)
>      IMAP native (Thunderbird & Co.)
>      Messenger Express ME via IMAP
>      Communication Express UWC via IMAP
>
> Problem with "bad login" logging IMAP:
>    if "Wrong password used" ...
>
>   1. With IMAP native (Thunderbird & Co.):
>       For a wrong password:  In the logfile "log/imap":
>          imapd[2791]: Account Notice: badlogin: [99.99.99.99:50958]
>                        plaintext XXXXX authentication failure
>       That is OK and fine.
>
>   2. With IMAP via ME or UWC:
>       For a wrong password:  In the logfile "log/imap":
>          ---------->   No entry   ((((((
>
>   3. Only in the "log/http" of ME I found

(Continue reading)

Marko Jauhiainen | 5 Apr 2011 12:18

Picon

Picon

Re: Logging Message-Id with LMTP


On 4.4.2011 17:44, Kelly Caudill wrote:
> RFE 6258366: have the lmtp server log message ID in the mail.log.
> closed as "not a defect".
>
> Evaluation: The omission of the message id from the LMTP server log is
> expected behavior. Moreover, it is important that it not be changed. The
> entire idea behind LMTP is to minimize the amount of work done on the
> backend store while delivering mail. To this end, the LMTP server
> doesn't scan the content of the message for any purpose, which would be
> necessary to extract information like the message id.

This is precisely how I interpreted the documentation (thanks to Dan and 
Ned for their comments, too), so I'm relieved to hear this :)

> Why do you want this information? Why is it not sufficient to get it
> from a front-end MTA?

I guess it would only be relevant in quickly (e.g., "grep <message-id> 
mail.log") making sure that the message passed on by the MTA was indeed 
delivered safely to the user's mailbox in the store host. The emphasis 
is here on the word "quickly"; I also agree that it is sufficient to get 
it from a front-end MTA.

Thanks,
Marko

>
>
> On 4/4/2011 10:34 AM, Marko Jauhiainen wrote:

(Continue reading)

Leonhard Knauff | 5 Apr 2011 12:53

Picon

RE: logging "badlogin imap" via ME/UWC ?


Many thanks for the answer.

[.....]

> > Questions:
> >   - Does ME resp. UWC make a "preauthentication", and only if this is OK
> >     then IMAP is called?
>
> The mshttpd process lookups up the user to determine which imap mailstore
> to talk to for that user's mail. If the user is invalid, it doesn't talk to
> any imap mailstore.

OK, I forgot that there can be more as one mailstore and so the mshttpd
must read the LDAP entry.

> >   - Can be configured that also imapd logged the bad login if called
> >     via ME resp. UWC?
> >     (The good logins are logged in the imapd log file.)
>
> No. We don't want the access layer (mshttpd) to pass known-invalid
> operations to the back-end mailstore in a way that will create additional
> load on that server.

Correct.

> So even if you requested that as an RFE it would be
> rejected. However, an RFE to collect all authentication operation logs
> centrally in one place would be a valid feature request, although I can't
> predict whether or not it would have a high enough priority to get

(Continue reading)

Group

gmane.mail.ims.general.

Advertisement

Project Web Page

List about the Sun Java Enterprise System, Sun ONE, and iPlanet communication and directory software products

Search Archive

Page

1 | 2 | 3 | 4 | 5 | 6 | 7 | 8

Articles in period: 71

April 2011

Language

Change language

Options

Current view: Threads only / Showing only 20 lines / Not hiding cited text.
Change to All messages, whole messages, or hide cited text.

Post a message
NNTP Newsgroup
Classic Gmane web interface
XML

XML

RSS Feed
List Information

About Gmane

Recent entries

ping (30 May 2013)
List information (29 May 2013)
New home to the info-ims mailing list (29 May 2013)
problem in messaging server 7 patch 28 (18 May 2013)
spamfilterX_string_action sieve filter memberof LDAP lookup (16 May 2013)
Hosting the "Info-iMS" mailing list (2 May 2013)
AUTO : Non-disponible (1 May 2013)
MTA fix MIME structure? (9 Apr 2013)
Netapp data stores (18 Mar 2013)
reprocess channel - how to not inherit transactionlimit? (5 Mar 2013)
Sieve vacation message size limit (25 Feb 2013)
STARTTLS encryption ciphers and logging (15 Feb 2013)
Two copies of one message, adding headerline (14 Jan 2013)
metermaid state replication (26 Dec 2012)
Two Questions: vacation "mailAlternateAddress" and editing a user's ma (19 Dec 2012)
Should SPF HELO logging make a J record entry? (4 Dec 2012)
authrewrite - header other than Sender? (4 Dec 2012)
sieve to trigger channel rewrite (3 Dec 2012)
Rollback scenario for mailstore migration (27 Nov 2012)
AUTO : Non-disponible (27 Nov 2012)
Rollback scenario for mailstore migration (26 Nov 2012)

Archives

24	May 2013
10	April 2013
8	March 2013
10	February 2013
5	January 2013
32	December 2012
5	November 2012
4	October 2012
5	September 2012
7	August 2012
3	July 2012
9	June 2012
19	May 2012
37	April 2012
45	March 2012
31	February 2012
37	January 2012
28	December 2011
56	November 2011
9	October 2011
36	September 2011
28	August 2011
13	July 2011
47	June 2011
17	May 2011
71	April 2011
39	March 2011
46	February 2011
73	January 2011
27	December 2010
49	November 2010
59	October 2010
24	September 2010
84	August 2010
47	July 2010
31	June 2010
40	May 2010
70	April 2010
51	March 2010
76	February 2010
60	January 2010
54	December 2009
57	November 2009
112	October 2009
81	September 2009
87	August 2009
118	July 2009
81	June 2009
129	May 2009
82	April 2009
108	March 2009
112	February 2009
80	January 2009
69	December 2008
78	November 2008
79	October 2008
95	September 2008
124	August 2008
259	July 2008
144	June 2008
119	May 2008
125	April 2008
136	March 2008
118	February 2008
73	January 2008
77	December 2007
73	November 2007
103	October 2007
116	September 2007
100	August 2007
122	July 2007
156	June 2007
177	May 2007
250	April 2007
174	March 2007
163	February 2007
124	January 2007
164	December 2006
172	November 2006
142	October 2006
243	September 2006
329	August 2006
188	July 2006
285	June 2006

Design

Zawodny | Right Menu | Left Menu

Your Own Design

Paste the URL of your CSS below. Download CSS template