Bouabid Amine | 2 Jun 09:35 2004

Problem with users mailbox

Hello,
I'm installing qmail-ldap with ldap-control and auth smtp patchs
I configured qmail as the document www.lifewithqmail.org/ldap,
qmail can connect to ldap server and authenticate users but he does'nt find the mailbos for the user
 
Can some one help me to resolv this problem
 
When il sen d a mail to user, qmail responde with:
 
Sorry, no mailbox here by that name. (#5.1.1)
 
Cordially
Amine Bouabid
Thomas Werschlein | 2 Jun 09:58 2004
Picon

Re: running qmail-ldap without ldap?

On Mon, 31 May 2004, Gilles wrote:

> how about using stock qmail, without ldap patches ?

Of course, this would be possible, but for one qmail-ldap is
definitely the nicest packaged qmail-patch-collection around (big
compliment to the authors!) and on the other hand we plan to use the
LDAP-features in the future.

Therefore my question is really an operational one: how could I turn
off the LDAP server so qmail-ldap still feels ok?

Thanks for your answer anyway!
Thomas

>
> Le Vendredi 28 Mai 2004 14:25, Thomas Werschlein a écrit :
> > Hello
> >
> > I know, it sounds sort of strange, but is it possible to run a
> > qmail-ldap installation without a running LDAP-server?
> >
> > Right now, we have a perfectly working qmail-ldap installation, but
> > since it is a dedicated mailman list-server, it has no entries in the
> > LDAP-directory. Everything is a localdelivery via a virtualdomain
> > mapped to the mailman user.
> >
> > Now I wonder if we could, for operational reasons, turn the
> > LDAP-server off (every service you don't depend on is a good service).
> >
> > If I turn off the LDAP server right now, incoming mails stay in the
> > queue and I get the following, perfectly reasonable log entry:
> >
> > "deferral: Unable_to_contact_LDAP_server._(#4.4.3)"
> >
> > How could I prevent qmail-lspawn to try to connect the LDAP-server
> > alltogether?
> >
> > QLDAP_TIMEOUT only handles the failover to a second LDAP-server and
> > LDAPSOFTOK only affects qmail-smtpd, right?
> >
> > Any hints are very welcome!
> >
> > Thanks
> > Thomas
>
>

Ted Zlatanov | 2 Jun 16:44 2004
X-Face
Picon

Re: qmail-ldap possible bug with qmail-getpw

On 26 May 2004, jeker <at> n-r-g.com wrote:

> To log issues with ldap and local lookups just set the LOGLEVEL to
> something like 20.  I can gruarantee you that qmail-getpw only gets
> run if ~control/ldaplocaldelivery is non 0 and the user is NOT in
> LDAP.
> 
> hopefully you find out what causes the troubles.

ldaplocaldelivery set to 0 has eliminated all /home lookups.  I've
raised the LOGLEVEL and will watch for LDAP failures, but otherwise I
think things are OK.  Thanks for the help.

Ted

Ted Zlatanov | 2 Jun 16:48 2004
X-Face
Picon

Re: running qmail-ldap without ldap?

On 2 Jun 2004, werschlein <at> interlace.ch wrote:

> Therefore my question is really an operational one: how could I turn
> off the LDAP server so qmail-ldap still feels ok?

Maybe you could have a fake LDAP server that responds to all queries
with "not found"?

I think that asking for qmail-ldap without LDAP is like buying a cell
phone just so you can use the built-in applications.  It could be
done, but it's the wrong approach.

Ted

Ted Zlatanov | 2 Jun 16:50 2004
X-Face
Picon

Re: Problem with users mailbox

On 2 Jun 2004, bouabid <at> wissal.dz wrote:

> I'm installing qmail-ldap with ldap-control and auth smtp patchs
> I configured qmail as the document www.lifewithqmail.org/ldap, 
> qmail can connect to ldap server and authenticate users but he does'nt find
> 	the mailbos for the user
> 
> Can some one help me to resolv this problem
> 
> When il sen d a mail to user, qmail responde with:
> 
> Sorry, no mailbox here by that name. (#5.1.1)

You should try qmail-ldaplookup -u USER and see what it says.

Ted

Bad Apple | 2 Jun 17:14 2004
Picon

Per-user based Antivirus scanning

Hi Group,

May be this is off-topic post but still .
I have a qmail-ldap + qmail-scanner setup working fine

I wish to setup a Antivirus MailGateway on a seperate
box . This could be achived by qmail + qmail-scanner &
forwarding / using qmqp to send mails to my Mailstore
.

But is it possible by any means that I can do
antivirus scanning on the MailGateway only for
selected users .

That is for say 1000 users I scan the mails for Virus
& for the rest of the user the mails are not scanned
at all .

Thanx in Advance 
Regards
BadApple

________________________________________________________________________
Yahoo! India Matrimony: Find your partner online. http://yahoo.shaadi.com/india-matrimony/

Sameh Attia | 2 Jun 17:35 2004
Picon

badmailfrom-unknown + PTR RR

I found that qmail accepts mail from ppl with emails listed in 
badmailfrom-unknown. I debugged until I found that the code in qmail-smtpd.c
...
if (case_diffs(remotehost,"unknown")) return 0;
...
is responsible for accepting them as long as the sender has a PTR RR 
regardless if it is listed in badmailfrom-unknown or not.

I think this is not good. We are a big ISP and our netblocks or most of 
it are PTRed and I want ot stop these spammers.
I commented the line but no gain as it blocked mails from the true PTRed 
IPs like hotmail.

Regards

--

-- 
Sameh Attia
Senior System Engineer
T.E. Data
--
dc -e '603178305900664311156641389051003470569569613466992253686426210705237258P'

Claudio Jeker | 2 Jun 21:36 2004

Re: badmailfrom-unknown + PTR RR

On Wed, Jun 02, 2004 at 06:35:25PM +0300, Sameh Attia wrote:
> I found that qmail accepts mail from ppl with emails listed in 
> badmailfrom-unknown. I debugged until I found that the code in qmail-smtpd.c
> ...
> if (case_diffs(remotehost,"unknown")) return 0;
> ...
> is responsible for accepting them as long as the sender has a PTR RR 
> regardless if it is listed in badmailfrom-unknown or not.
> 
> I think this is not good. We are a big ISP and our netblocks or most of 
> it are PTRed and I want ot stop these spammers.
> I commented the line but no gain as it blocked mails from the true PTRed 
> IPs like hotmail.
> 

I'm sorry but that is how badmailfrom-unknown works.
The list is only tested for mails comming from servers without PTR RR. It
is not possible to compare the PTR RR with the MX / A RR of the maildomain
because that will break to many stupid server setups and cause unneeded
support calls.
badmailfrom-unknown comes from the time when most IPS did not have dummy
PTR RR for their dial up range. Now they changed adding stupid PTR RR for
each and every IP... 

--

-- 
:wq Claudio

Claudio Jeker | 2 Jun 21:42 2004

Re: Per-user based Antivirus scanning

On Wed, Jun 02, 2004 at 04:14:42PM +0100, Bad Apple wrote:
> Hi Group,
> 
> May be this is off-topic post but still .
> I have a qmail-ldap + qmail-scanner setup working fine
> 
> I wish to setup a Antivirus MailGateway on a seperate
> box . This could be achived by qmail + qmail-scanner &
> forwarding / using qmqp to send mails to my Mailstore
> .
> 
> But is it possible by any means that I can do
> antivirus scanning on the MailGateway only for
> selected users .
> 
> That is for say 1000 users I scan the mails for Virus
> & for the rest of the user the mails are not scanned
> at all .
> 

Do it the other way around. Setup a cluster where your 1000 customers who
pay for antivirus are on one box and the rest on the other(s).
Don't list the antivirus box in you MX entries and use the QMAILQUEUE
environment to direct all cluster-forwarded mails through the scanner.
(echo /var/qmail/bin/qmail-scanner.pl > /var/qmail/boot/qmail-qmqpd/env/QMAILQUEUE)
Now you can define via the mailHost attribute if a user is scanned or not.

--

-- 
:wq Claudio

Rodrigo Gesswein | 3 Jun 16:48 2004
Picon

qmail-ldap stats

Hi!

  I'm looking for some qmail-ldap statistics, because I need to do a
little research about qmail-ldap performance and scalability.

   Please, can everybody share his or her experience with qmail-ldap
with me ? If it's possible, include the number of users, concurrency,
number of cluster members, special features (antivirus, antispam), etc.

   Please, e-mail me privately.

   Thank you in advance...

Rodrigo!


Gmane