Re: Quota Report Script
Hi David! I attached my script. I run it with cron as user cyrus every day at 5 a.m. Every user which is over the quota warning level will get a warning mail. And for every user which gets a mail, the script prints out username and quota to stdout, so cron will send a mail to the cyrus user. You have to route the mails to "cyrus" user to you and you are fine. Hope that helps or at least I hope that gives you some ideas. Best, Daniel David E. Meier schrieb: Hello List, before I start reinventing the wheel I wonder if someone has already a script that reports all user quotas. Thanks, Dave. Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html quota_watchdog.sh Description: application/shellscript Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Delivering to a certain folder
Hello, we are running a spamcheck on incoming mails. If a mail is detected as Spam and the wants us to do it, we are storing the mail to his Trash-folder instead of the INBOX. Thus a spam-mail to [EMAIL PROTECTED] would be stored to /var/spool/mail/t/te/test.com/info/Trash instead of /var/spool/mail/t/te/test.com/info How can I do this with Cyrus? I guess we cannot specify a certain directory for delivery, but can we set the folder somehow (deliver to mailbox of [EMAIL PROTECTED] to folder "Trash")? Regards Marten Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Using non-default folder structures
Hello,
in our current maildir setup, we splitted the maildirs according to the first
two letters, which gives more performance to the filesystem since less entries
are in one directory.
Example: Mails to [EMAIL PROTECTED] would be stored into
/var/spool/mail/t/te/test.com/info
How can I do this with Cyrus? Do I have to create a partition for each
combination of the first two letters?
Like
/var/spool/mail/a/aa
/var/spool/mail/a/ab
/var/spool/mail/a/ac
/var/spool/mail/a/ad
/var/spool/mail/a/ae
...
?
Also, we are treating subdomains differently, so a mail to [EMAIL PROTECTED]
would be stored to
/var/spool/mail/t/te/test.com/mail/info
while a mail to [EMAIL PROTECTED] would be stored to
/var/spool/mail/t/te/test.com/_/info
("_" is our "empty" subdomain)
Can I keep this structure with Cyrus (of course I cannot keep the
Maildir-directory and its content itself, I will use imapsync instead).
Regards
Marten
Cyrus Home Page: http://asg.web.cmu.edu/cyrus
Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu
List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: Quota Report Script
I got a notice, that the attachment has been blocked. But I got my own mail from the list including the attachment... So I just make the offer that I will sent this script to everyone interested. Just contact me. Sorry and thanks, Daniel Daniel Eckl schrieb: Hi David! I attached my script. I run it with cron as user cyrus every day at 5 a.m. Every user which is over the quota warning level will get a warning mail. And for every user which gets a mail, the script prints out username and quota to stdout, so cron will send a mail to the cyrus user. You have to route the mails to "cyrus" user to you and you are fine. Hope that helps or at least I hope that gives you some ideas. Best, Daniel David E. Meier schrieb: Hello List, before I start reinventing the wheel I wonder if someone has already a script that reports all user quotas. Thanks, Dave. Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: Delivering to a certain folder
Hi Marten, Thus a spam-mail to [EMAIL PROTECTED] would be stored to /var/spool/mail/t/te/test.com/info/Trash instead of /var/spool/mail/t/te/test.com/info How can I do this with Cyrus? I guess we cannot specify a certain directory for delivery, but can we set the folder somehow (deliver to mailbox of [EMAIL PROTECTED] to folder "Trash")? You can make the spam filter send the mail to [EMAIL PROTECTED] (if you use a different separator, change + to the appropriate value; however plus is the default). Take care of the case, folder names are case sensitive. Maybe you'll still have to grant post (p) rights for that mailbox to the user you use for delivery (I'm not sure about that, maybe it's already authenticated as admin). You cannot set another default delivery folder in Cyrus, though (correct me if I'm wrong). You could only achieve that using aliases ([EMAIL PROTECTED] to [EMAIL PROTECTED]) or use sieve to deliver all mails to a different folder. Baltasar _ former 03 gmbh _ infanteriestraße 19 haus 6 eg _ 80797 muenchen _ http://www.former03.de Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Virtual emails at login
Hello, I known several ISPs that are generating virtual emails when I'm logging in into my email account. Example: web.de (a German freemail service) allows freemail users to login through pop3 only once in 5 minutes (while you can login as often as you want through the webmail interface). If I'm logging in more often, I get a message that appears as a usual email, informing me that I can only login once in 5 minutes and that I have exceeded this limit. No matter if I'm deleting it or if I don't: If I'm logging in after 5 minutes it has disappeared. Other example: I want to inform my users of new spam mails with an email listing all the subjects of the spam detected mails. I don't want to generate this email once a day, because if the user doesn't login everey day, he gets several of these emails at once. I want to generate it just in time once the user logins in. I wonder how this could be done with Cyrus? Does a suitable solution already exist? Regards Marten Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: Virtual emails at login [auf Viren überprü ft]
Marten Lehmann schrieb: web.de (a German freemail service) allows freemail users to login through pop3 only once in 5 minutes (while you can login as often as you want through the webmail interface). If I'm logging in more often, I get a message that appears as a usual email, informing me that I can only login once in 5 minutes and that I have exceeded this limit. No matter if I'm deleting it or if I don't: If I'm logging in after 5 minutes it has disappeared. IIRC I got a pop-up message for that, when I used mozilla mail with pop3 and web.de, not an eMail. Maybe you want to display too much information, otherwise you could have a look at setinfo in cyradm. Hans Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
INTERNALDATE one hour in future for sent message
INTERNALDATE (hence received date?) one hour in future for sent
message. I realize that a received date on a message in sent folder
doesn't really have meaning but, if a user moves from sent to inbox (or
trash), then clients (including outlook and outlook express) sort by
received date which is consistently one hour in the future which bothers
our QA department.
Version: Cyrus IMAP4 v2.2.12 [ESMTP Postfix (2.2.1) "Brand X"]
I've searched cyrus wiki plus web but haven't found an answer. From
what I can tell, setting of the received date for sent message is in the
sphere of influence of the IMAP server.
Steps to recreate: user sends mail via our telephone user-interface to
themself (resulting in one message each in sent and inbox folder).
telnet to solaris box and select/fetch info. Sent at 11:27 but
INTERNALDATE for sent message is 12:27 (one hour in future). Values for
message in inbox both 11:27.
// Is there some timezone setting/issue that we're missing. This seems
most likely.
Note that INTERNALDATE for sent message ends with "-400" while date in
envelope info ends with "0400 (EDT)". Not sure if doesn't matter, if
there's a cyrus internal timezone setting we need to set/change or
whether, if machine changed from EDT to EST, INTERNALDATE would be
correct for sent mail i.e. would work 6 months per year. <- Update: I
did try that and it works correctly so there is a timezone issue somewhere.
// We're not sure if it's us or if something else isn't involved ...
Though isn't Javamail still responsible for the APPEND to the mail
folder? If so, it could still be to blame.
// Data. Message in question sent at 11:27:45
bash-2.03# telnet localhost 143
Trying 127.0.0.1...
Connected to localhost.
Escape character is '^]'.
* OK computername.com Cyrus IMAP4 v2.2.12 server ready
// login as user
1 login 555 555
1 OK User logged in
// select sent folder
2 select inbox.sent-mail
* FLAGS (\Answered \Flagged \Draft \Deleted \Seen)
* OK [PERMANENTFLAGS (\Answered \Flagged \Draft \Deleted \Seen \*)]
* 1 EXISTS
* 0 RECENT
* OK [UIDVALIDITY 1134760645]
* OK [UIDNEXT 155]
2 OK [READ-WRITE] Completed
// fetch info on message sent at roughly 11:27
3 fetch 1:1 (ENVELOPE INTERNALDATE RFC822.size)
* 1 FETCH (INTERNALDATE "22-Jun-2006 12:27:45 -0400" RFC822.SIZE 31441
ENVELOPE ("Thu, 22 Jun 2006 11:27:45 -0400 (EDT)" "Voicemail"
(("Jay Bee" NIL "3391111" "computername.com")) (("Jay Bee"
NIL "555" "computername.com")) (("Jay Bee" NIL "555"
"computername.com")) (("Jay Bee" NIL "555" "
computername.com")) NIL NIL NIL
"<[EMAIL PROTECTED]-dt>"))
3 OK Completed (0.000 sec)
// select inbox
4 select inbox
* FLAGS (\Answered \Flagged \Draft \Deleted \Seen)
* OK [PERMANENTFLAGS (\Answered \Flagged \Draft \Deleted \Seen \*)]
* 1 EXISTS
* 0 RECENT
* OK [UNSEEN 1]
* OK [UIDVALIDITY 1134760644]
* OK [UIDNEXT 492]
4 OK [READ-WRITE] Completed
// fetch info on received message sent at roughly 11:27
5 fetch 1:1 (ENVELOPE INTERNALDATE RFC822.size)
* 1 FETCH (INTERNALDATE "22-Jun-2006 11:27:45 -0400" RFC822.SIZE 31825
ENVELOPE ("Thu, 22 Jun 2006 11:27:45 -0400 (EDT)" "Voicemail"
(("Jay Bee" NIL "3391111" "computername.com")) (("Jay Bee"
NIL "555" "computername.com")) (("Jay Bee" NIL "555"
"computername.com")) (("Jay Bee" NIL "555" "
computername.com")) NIL NIL NIL
"<[EMAIL PROTECTED]-dt>"))
5 OK Completed (0.000 sec)
// That's it ...
6 logout
* BYE LOGOUT received
6 OK Completed
// - - -
// contents of cyrus.conf
bash-2.03# cat ./usr/local/imapldap/util/cyrus.conf
START {
# do not delete these entries!
mboxlist cmd="ctl_mboxlist -r"
deliver cmd="ctl_deliver -r"
# this is only necessary if using idled for IMAP IDLE
#idledcmd="idled"
}
# UNIX sockets start with a slash and are put into /var/imap/socket
SERVICES {
# add or remove based on preferences
imap cmd="imapd" listen="imap" prefork=0
# imaps cmd="imapd -s" listen="imaps" prefork=0
# pop3 cmd="pop3d" listen="pop3" prefork=0
# pop3s cmd="pop3d -s" listen="pop3s" prefork=0
# sieve cmd="timsieved" listen="sieve" prefork=0
# at least one LMTP is required for delivery
lmtpunix cmd="lmtpd" listen="/var/spool/postfix/public/lmtp"
prefork=1
}
EVENTS {
# this is required
checkpointcmd="ctl_mboxlist -c" period=30
# this is only necessary if using duplicate delivery suppression
delprune cmd="ctl_deliver -E 3" period=1440
# Uncomment the next entry, if you want to automatically remove
# old messages of EVERY user.
# This example calls ipurge every 60 minutes and ipurge will delete
# ALL messages older then 30 days.
# enter 'man 8 ipurge' for more details
# cleanup cmd="ipurge -d 30" period=60
}
// - - -
// contents of imapd.conf
bash-2.03# cat ./usr/local/imapldap/util/imapd.conf
admins: cyrus
allowanonymo
Re: Cyrus+SASL+PAM+pam_mysql Migration problem
>>> sender: "Alexander Dalloz" date: "Tue, Jun 27, 2006 at 08:32:52PM +0200" >>> << Am Di, den 27.06.2006 schrieb Alexandru E. Ungur um 18:25: First of all thank you very much for your help, I really appreciate it. > Do you use virtdomain support with Cyrus-IMAPd? If not, then appending > the realm isn't necessary. Else you too have to run saslauthd with > parameter "-r". Your database and SQL statements do not indicate > [EMAIL PROTECTED] usage. Yes, we use virtual domains. However, user and domain are two separate fields in the table and I don't really understand how pam_mysql is supposed to work with them like that... Furthermore, I checked the logs on the old server: [EMAIL PROTECTED] root]# grep sasl /var/log/messages*|wc 2314 27798 320250 [EMAIL PROTECTED] root]# grep sasl /var/log/messages*|grep AUTHFAIL|wc 2304 27709 319358 So from 2314 entries related to saslauthd, 2304 are reporting an error. The rest of 10 are reporting the start/stop of saslauthd... So I don't get it. The old server uses saslauthd for authentication but all saslauthd does is fail? Or it only logs the failed events? The old pam.d/imap is: [EMAIL PROTECTED] root]# cat /etc/pam.d/imap authoptional/lib/security/pam_mysql.so user=cyrus passwd=XXX host=127.0.0.1 db=email table=popusers usercolumn=alias domaincolumn=domain passwdcolumn=password crypt=0 use_relay_ip=1 password required /lib/security/pam_mysql.so user=cyrus passwd=XXX host=127.0.0.1 db=email table=popusers usercolumn=alias domaincolumn=domain passwdcolumn=password crypt=0 use_relay_ip=1 But on the latest documentation for pam_mysql, there is no reference to domaincolumn. I guess, what I fail to understand is how saslauthd passes the appropriate info to pam_mysql and how pam_mysql processes it so that it can authenticate against the table based on the USER, DOMAIN and PASSWORD *different* columns. I saw that if I run saslauthd with -r it tries to authentidate with [EMAIL PROTECTED] against the alias (usercolumn) but that won't work with these being separate columns... Also I cleaned up imapd.conf and the error log is much cleaner now indeed. Here's the cleaned up imapd.conf: # cat /etc/imapd.conf configdirectory: /cyrus/imap partition-default: /cyrus/spool defaultacl: lrswipcd admins: [EMAIL PROTECTED] [EMAIL PROTECTED] cyrus allowanonymouslogin: no timeout: 400 plaintextloginpause: 0 quotawarn: 90 autocreatequota: 5 singleinstancestore: yes drachost: localhost dracinterval: 600 #sasl_pwcheck_method: pam sasl_pwcheck_method: saslauthd loginrealms: all allowplaintext: yes sasl_mech_list: PLAIN sieveusehomedir: false sievedir: /usr/local/sieve sieve_maxscriptsize: 32 sieve_maxscripts: 5 partition-0: /cyrus/spool/0 partition-1: /cyrus/spool/1 And the errors when trying to use cyradm: # cyradm -u cyrus localhost IMAP Password: Login failed: authentication failure at /usr/lib/perl5/site_perl/5.8.5/i386-linux-thread-multi/Cyrus/IMAP/Admin.pm line 118 cyradm: cannot authenticate to server with as cyrus [EMAIL PROTECTED] ~]# tail -n40 /var/log/debug Jun 28 03:35:44 mailtx1 master[13434]: about to exec /usr/lib/cyrus-imapd/imapd Jun 28 03:35:44 mailtx1 imap[13434]: executed Jun 28 03:35:44 mailtx1 imap[13434]: sql_select option missing Jun 28 03:35:44 mailtx1 imap[13434]: auxpropfunc error no mechanism available Jun 28 03:35:44 mailtx1 imap[13434]: _sasl_plugin_load failed on sasl_auxprop_plug_init for plugin: sql Jun 28 03:35:44 mailtx1 imap[13434]: accepted connection Jun 28 03:35:44 mailtx1 perl: No worthy mechs found Jun 28 03:35:50 mailtx1 saslauthd[13439]: pam_mysql - option verbose is set to "yes" Jun 28 03:35:50 mailtx1 saslauthd[13439]: pam_mysql - pam_mysql_close_db() called. Jun 28 03:35:50 mailtx1 saslauthd[13439]: pam_mysql - pam_sm_authenticate() called. Jun 28 03:35:50 mailtx1 saslauthd[13439]: pam_mysql - pam_mysql_open_db() called. Jun 28 03:35:50 mailtx1 saslauthd[13439]: pam_mysql - pam_mysql_open_db() returning 0. Jun 28 03:35:50 mailtx1 saslauthd[13439]: pam_mysql - pam_mysql_check_passwd() called. Jun 28 03:35:50 mailtx1 saslauthd[13439]: pam_mysql - pam_mysql_format_string() called Jun 28 03:35:50 mailtx1 saslauthd[13439]: pam_mysql - pam_mysql_quick_escape() called. Jun 28 03:35:50 mailtx1 saslauthd[13439]: pam_mysql - SELECT password FROM popusers WHERE alias = 'cyrus' Jun 28 03:35:51 mailtx1 saslauthd[13439]: pam_mysql - pam_mysql_check_passwd() returning 6. Jun 28 03:35:51 mailtx1 saslauthd[13439]: pam_mysql - pam_mysql_sql_log() called. Jun 28 03:35:51 mailtx1 saslauthd[13439]: pam_mysql - pam_mysql_sql_log() returning 0. Jun 28 03:35:51 mailtx1 saslauthd[13439]: pam_mysql
(no subject)
Hi,We have 3 backends with Cyrus 2.2.13, 1 MTA with Postfix and Cyrus Frontend 2.2.13, and 1 Cyrus Master Mupdate with 2.2.13.The frontend database is not always synchronizing when mupdate database changes.e.g.: on the backend we create a new cyrus mailbox with a "Sent" folder. In that case the frontend will only be informed of the existance of the "Sent" folder.On the backend:/usr/sbin/ctl_mboxlist -dexample.com!user.test default [EMAIL PROTECTED] lrswipcdaexample.com!user.test.Sent default [EMAIL PROTECTED] lrswipcdaOn the mupdate master:/usr/sbin/ctl_mboxlist -dexample.com!user.test 1 server3!default [EMAIL PROTECTED] lrswipcdaexample.com!user.test.Sent 1 server3!default [EMAIL PROTECTED] lrswipcdaOn the frontend:/usr/sbin/ctl_mboxlist -dexample.com!user.test.Sent 1 server3!default [EMAIL PROTECTED] lrswipcdaIn this example the frontend database never fully synchronizes with the mupdate master until the frontend is restarted. This occurs on 50% of the trials. There are no error messages. Thank you in advance for your advice!---Snezhana Bekova Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
metapartition information request
Hi, Having just upgraded FC4 -> FC5 (and thus Cyrus 2.2 -> 2.3), I'm starting to play with the new features in 2.3. I would like to use different metapartitions for different metadata. In particular, I'd like the squat indexes to be on their own volume--which won't need to be backed up--and all the small cyrus files on (yet) another volume. Is this possible? If not, can this be a feature request? :) Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: Cyrus+SASL+PAM+pam_mysql Migration problem
sender: "Alexander Dalloz" date: "Tue, Jun 27, 2006 at 08:32:52PM +0200" <<> Am Di, den 27.06.2006 schrieb Alexandru E. Ungur um 18:25: > First of all thank you very much for your help, I really appreciate it. > >> Do you use virtdomain support with Cyrus-IMAPd? If not, then appending >> the realm isn't necessary. Else you too have to run saslauthd with >> parameter "-r". Your database and SQL statements do not indicate >> [EMAIL PROTECTED] usage. > Yes, we use virtual domains. However, user and domain are two separate > fields in the table and I don't really understand how pam_mysql is > supposed to work with them like that... > Furthermore, I checked the logs on the old server: > > [EMAIL PROTECTED] root]# grep sasl /var/log/messages*|wc >2314 27798 320250 > [EMAIL PROTECTED] root]# grep sasl /var/log/messages*|grep AUTHFAIL|wc >2304 27709 319358 > > So from 2314 entries related to saslauthd, 2304 are reporting an > error. The rest of 10 are reporting the start/stop of saslauthd... > So I don't get it. The old server uses saslauthd for authentication > but all saslauthd does is fail? Or it only logs the failed events? > > The old pam.d/imap is: > > [EMAIL PROTECTED] root]# cat /etc/pam.d/imap > authoptional/lib/security/pam_mysql.so user=cyrus > passwd=XXX host=127.0.0.1 db=email table=popusers > usercolumn=alias domaincolumn=domain passwdcolumn=password crypt=0 > use_relay_ip=1 > password required /lib/security/pam_mysql.so user=cyrus > passwd=XXX host=127.0.0.1 db=email table=popusers > usercolumn=alias domaincolumn=domain passwdcolumn=password crypt=0 > use_relay_ip=1 > > > But on the latest documentation for pam_mysql, there is no reference to > domaincolumn. I guess, what I fail to understand is how saslauthd > passes the appropriate info to pam_mysql and how pam_mysql processes it > so that it can authenticate against the table based on the USER, DOMAIN > and PASSWORD *different* columns. I saw that if I run saslauthd with -r > it tries to authentidate with [EMAIL PROTECTED] against the alias (usercolumn) > but that won't work with these being separate columns... > > > Also I cleaned up imapd.conf and the error log is much cleaner now > indeed. Here's the cleaned up imapd.conf: > > # cat /etc/imapd.conf > configdirectory: /cyrus/imap > partition-default: /cyrus/spool > defaultacl: lrswipcd > admins: [EMAIL PROTECTED] [EMAIL PROTECTED] cyrus > allowanonymouslogin: no > timeout: 400 > plaintextloginpause: 0 > quotawarn: 90 > autocreatequota: 5 > singleinstancestore: yes > > drachost: localhost > dracinterval: 600 > > #sasl_pwcheck_method: pam > sasl_pwcheck_method: saslauthd > loginrealms: all > allowplaintext: yes > sasl_mech_list: PLAIN > > sieveusehomedir: false > sievedir: /usr/local/sieve > sieve_maxscriptsize: 32 > sieve_maxscripts: 5 > > partition-0: /cyrus/spool/0 > partition-1: /cyrus/spool/1 > > > And the errors when trying to use cyradm: > > # cyradm -u cyrus localhost > IMAP Password: > Login failed: authentication failure at > /usr/lib/perl5/site_perl/5.8.5/i386-linux-thread-multi/Cyrus/IMAP/Admin.pm > line 118 > cyradm: cannot authenticate to server with as cyrus Make that 'cyradm -user cyrus -auth login localhost' Simon > > [EMAIL PROTECTED] ~]# tail -n40 /var/log/debug > Jun 28 03:35:44 mailtx1 master[13434]: about to exec > /usr/lib/cyrus-imapd/imapd > Jun 28 03:35:44 mailtx1 imap[13434]: executed > Jun 28 03:35:44 mailtx1 imap[13434]: sql_select option missing > Jun 28 03:35:44 mailtx1 imap[13434]: auxpropfunc error no mechanism > available > Jun 28 03:35:44 mailtx1 imap[13434]: _sasl_plugin_load failed on > sasl_auxprop_plug_init for plugin: sql > Jun 28 03:35:44 mailtx1 imap[13434]: accepted connection > Jun 28 03:35:44 mailtx1 perl: No worthy mechs found > Jun 28 03:35:50 mailtx1 saslauthd[13439]: pam_mysql - option verbose is > set to "yes" > Jun 28 03:35:50 mailtx1 saslauthd[13439]: pam_mysql - pam_mysql_close_db() > called. > Jun 28 03:35:50 mailtx1 saslauthd[13439]: pam_mysql - > pam_sm_authenticate() called. > Jun 28 03:35:50 mailtx1 saslauthd[13439]: pam_mysql - pam_mysql_open_db() > called. > Jun 28 03:35:50 mailtx1 saslauthd[13439]: pam_mysql - pam_mysql_open_db() > returning 0. > Jun 28 03:35:50 mailtx1 saslauthd[13439]: pam_mysql - > pam_mysql_check_passwd() called. > Jun 28 03:35:50 mailtx1 saslauthd[13439]: pam_mysql - > pam_mysql_format_string() called > Jun 28 03:35:50 mailtx1 saslauthd[13439]: pam_mysql - > pam_mysql_quick_escape() called. > Jun 28 03:35:50 mailtx1 saslauthd[13439]: pam_mysql - SELECT password FROM > popusers WHERE alias = 'cyrus' > Jun 28 03:35:51 mailtx1 saslauthd[13439]: pam_mysql
Re: Quota Report Script
At Wed, 28 Jun 2006 08:32:51 +0200 (CEST), David E. Meier wrote: > > before I start reinventing the wheel I wonder if someone has already a > script that reports all user quotas. The attached is perhaps not exactly what you need but it should give you the necessary hints to write something that will. -- Greg A. Woods H:+1 416 218-0098 W:+1 416 489-5852 x122 VE3TCP RoboHack <[EMAIL PROTECTED]> Planix, Inc. <[EMAIL PROTECTED]> Secrets of the Weird <[EMAIL PROTECTED]> mkcyrusoqlist Description: Binary data Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: Using non-default folder structures
> Hello,
>
> in our current maildir setup, we splitted the maildirs according to the
> first
> two letters, which gives more performance to the filesystem since less
> entries
> are in one directory.
>
> Example: Mails to [EMAIL PROTECTED] would be stored into
>
> /var/spool/mail/t/te/test.com/info
>
> How can I do this with Cyrus? Do I have to create a partition for each
> combination of the first two letters?
>
> Like
>
> /var/spool/mail/a/aa
> /var/spool/mail/a/ab
> /var/spool/mail/a/ac
> /var/spool/mail/a/ad
> /var/spool/mail/a/ae
Check the two options in imapd.conf:
hashimapspool: 0
If enabled, the partitions will also be hashed, in addition to
the hashing done on configuration directories. This is recom-
mended if one partition has a very bushy mailbox tree.
fulldirhash: 0
If enabled, uses an improved directory hashing scheme which
hashes the entire username instead of using just the first let-
ter. This changes hash algorithm used for quota and user direc-
tories and if hashimapspool is enabled, the entire mail spool.
Simon
> ...
>
> ?
>
> Also, we are treating subdomains differently, so a mail to
> [EMAIL PROTECTED]
> would be stored to
>
> /var/spool/mail/t/te/test.com/mail/info
>
> while a mail to [EMAIL PROTECTED] would be stored to
>
> /var/spool/mail/t/te/test.com/_/info
>
> ("_" is our "empty" subdomain)
>
> Can I keep this structure with Cyrus (of course I cannot keep the
> Maildir-directory and its content itself, I will use imapsync instead).
>
> Regards
> Marten
>
>
>
> Cyrus Home Page: http://asg.web.cmu.edu/cyrus
> Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu
> List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
>
Cyrus Home Page: http://asg.web.cmu.edu/cyrus
Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu
List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: Re: Cyrus+SASL+PAM+pam_mysql Migration problem
>>> sender: "Simon Matter" date: "Wed, Jun 28, 2006 at 07:13:40PM +0200" << Make that 'cyradm -user cyrus -auth login localhost' Thank you! :) I did that, here's what happened: FIRST, I used the old pam_mysql 0.4.5 that was on the old server, though it might make a difference. It didn't. = [EMAIL PROTECTED] etc]# cyradm -user cyrus -auth login localhost IMAP Password: Login failed: generic failure at /usr/lib/perl5/site_perl/5.8.5/i386-linux-thread-multi/Cyrus/IMAP/Admin.pm line 118 cyradm: cannot authenticate to server with login as cyrus [EMAIL PROTECTED] etc]# tail /var/log/debug Jun 28 05:30:56 mailtx1 master[14836]: about to exec /usr/lib/cyrus-imapd/imapd Jun 28 05:30:56 mailtx1 imap[14836]: executed Jun 28 05:30:56 mailtx1 imap[14836]: sql_select option missing Jun 28 05:30:56 mailtx1 imap[14836]: auxpropfunc error no mechanism available Jun 28 05:30:56 mailtx1 imap[14836]: _sasl_plugin_load failed on sasl_auxprop_plug_init for plugin: sql Jun 28 05:30:56 mailtx1 imap[14836]: accepted connection Jun 28 05:31:01 mailtx1 imap[14836]: could not find auxprop plugin, was searching for 'mysqlauxprop' Jun 28 05:31:01 mailtx1 imap[14836]: could not find auxprop plugin, was searching for 'mysqlauxprop' Jun 28 05:31:01 mailtx1 imap[14836]: size read failed Jun 28 05:31:01 mailtx1 imap[14836]: badlogin: localhost [127.0.0.1] plaintext cyrus SASL(-1): generic failure: checkpass failed THEN, I copied again the latest pam_mysql, which I used in all previous tries as well [EMAIL PROTECTED] etc]# cp /usr/src/pam_mysql-0.7RC1/.libs/pam_mysql.so /lib/security/ [EMAIL PROTECTED] etc]# cyradm -user cyrus -auth login localhost IMAP Password: Login failed: authentication failure at /usr/lib/perl5/site_perl/5.8.5/i386-linux-thread-multi/Cyrus/IMAP/Admin.pm line 118 cyradm: cannot authenticate to server with login as cyrus [EMAIL PROTECTED] etc]# tail /var/log/debug Jun 28 05:33:16 mailtx1 master[14847]: about to exec /usr/lib/cyrus-imapd/imapd Jun 28 05:33:16 mailtx1 imap[14847]: executed Jun 28 05:33:16 mailtx1 imap[14847]: sql_select option missing Jun 28 05:33:16 mailtx1 imap[14847]: auxpropfunc error no mechanism available Jun 28 05:33:16 mailtx1 imap[14847]: _sasl_plugin_load failed on sasl_auxprop_plug_init for plugin: sql Jun 28 05:33:16 mailtx1 imap[14847]: accepted connection Jun 28 05:33:24 mailtx1 imap[14847]: could not find auxprop plugin, was searching for 'mysqlauxprop' Jun 28 05:33:24 mailtx1 imap[14847]: could not find auxprop plugin, was searching for 'mysqlauxprop' Jun 28 05:33:24 mailtx1 saslauthd[14852]: pam_mysql - option verbose is set to "1" Jun 28 05:33:24 mailtx1 saslauthd[14852]: pam_mysql - pam_mysql_close_db() called. Jun 28 05:33:24 mailtx1 saslauthd[14852]: pam_mysql - pam_sm_authenticate() called. Jun 28 05:33:24 mailtx1 saslauthd[14852]: pam_mysql - pam_mysql_open_db() called. Jun 28 05:33:24 mailtx1 saslauthd[14852]: pam_mysql - pam_mysql_open_db() returning 0. Jun 28 05:33:24 mailtx1 saslauthd[14852]: pam_mysql - pam_mysql_check_passwd() called. Jun 28 05:33:24 mailtx1 saslauthd[14852]: pam_mysql - pam_mysql_format_string() called Jun 28 05:33:24 mailtx1 saslauthd[14852]: pam_mysql - pam_mysql_quick_escape() called. Jun 28 05:33:24 mailtx1 saslauthd[14852]: pam_mysql - SELECT password FROM popusers WHERE alias = 'cyrus' Jun 28 05:33:24 mailtx1 saslauthd[14852]: pam_mysql - pam_mysql_check_passwd() returning 6. Jun 28 05:33:24 mailtx1 saslauthd[14852]: pam_mysql - pam_mysql_sql_log() called. Jun 28 05:33:24 mailtx1 saslauthd[14852]: pam_mysql - pam_mysql_sql_log() returning 0. Jun 28 05:33:24 mailtx1 saslauthd[14852]: pam_mysql - pam_mysql_converse() called. Jun 28 05:33:24 mailtx1 saslauthd[14852]: pam_mysql - pam_mysql_open_db() called. Jun 28 05:33:24 mailtx1 saslauthd[14852]: pam_mysql - pam_mysql_check_passwd() called. Jun 28 05:33:24 mailtx1 saslauthd[14852]: pam_mysql - pam_mysql_format_string() called Jun 28 05:33:24 mailtx1 saslauthd[14852]: pam_mysql - pam_mysql_quick_escape() called. Jun 28 05:33:24 mailtx1 saslauthd[14852]: pam_mysql - SELECT password FROM popusers WHERE alias = 'cyrus' Jun 28 05:33:24 mailtx1 saslauthd[14852]: pam_mysql - pam_mysql_check_passwd() returning 0. Jun 28 05:33:24 mailtx1 saslauthd[14852]: pam_mysql - pam_mysql_sql_log() called. Jun 28 05:33:24 mailtx1 saslauthd[14852]: pam_mysql - pam_mysql_sql_log() returning 0. Jun 28 05:33:24 mailtx1 saslauthd[14852]: pam_mysql - pam_sm_authenticate() returning 0. Jun 28 05:33:24 mailtx1 saslauthd[14852]: DEBUG: auth_pam: pam_acct_mgmt failed: User account has expired Jun 28 05:33:24 mailtx1 saslauthd[14852]: pam_mysql - pam_mysql_release_ctx() called. Jun 28 05:33:24 mailtx1 saslauthd[14852]: pam_mysql - pam_mysql_destroy_ctx() called. Jun 28 05:33:24 mailtx1 saslauthd[14852]: pam_mysql - pam_mysql_close_db() called. Jun 28 05:33:24 mailtx1 saslauthd
Re: Re: Cyrus+SASL+PAM+pam_mysql Migration problem
sender: "Simon Matter" date: "Wed, Jun 28, 2006 at 07:13:40PM +0200" <<> Make that 'cyradm -user cyrus -auth login localhost' > > Thank you! :) > I did that, here's what happened: > > FIRST, I used the old pam_mysql 0.4.5 that was on the old server, > though it might make a difference. It didn't. > = > [EMAIL PROTECTED] etc]# cyradm -user cyrus -auth login localhost > IMAP Password: > Login failed: generic failure at > /usr/lib/perl5/site_perl/5.8.5/i386-linux-thread-multi/Cyrus/IMAP/Admin.pm > line 118 > cyradm: cannot authenticate to server with login as cyrus > > [EMAIL PROTECTED] etc]# tail /var/log/debug > Jun 28 05:30:56 mailtx1 master[14836]: about to exec > /usr/lib/cyrus-imapd/imapd > Jun 28 05:30:56 mailtx1 imap[14836]: executed > Jun 28 05:30:56 mailtx1 imap[14836]: sql_select option missing > Jun 28 05:30:56 mailtx1 imap[14836]: auxpropfunc error no mechanism > available > Jun 28 05:30:56 mailtx1 imap[14836]: _sasl_plugin_load failed on > sasl_auxprop_plug_init for plugin: sql Sorry, I can not help you at all with the mysql stuff because I have never used it with cyrus. However, you want to use pam_mysql but your cyrus-imapd tries to use the mysql auxprop plugin as you can see above. So you still have a bad imapd.conf file. Comment out all the auxprop line in imapd.conf, they are not used when using saslauthd -> PAM -> pam_mysql. Simon Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: Cyrus+SASL+PAM+pam_mysql Migration problem
>>> sender: "Simon Matter" date: "Wed, Jun 28, 2006 at 07:59:12PM +0200" << Sorry, I can not help you at all with the mysql stuff because I have never > used it with cyrus. However, you want to use pam_mysql but your > cyrus-imapd tries to use the mysql auxprop plugin as you can see above. So > you still have a bad imapd.conf file. Comment out all the auxprop line in > imapd.conf, they are not used when using saslauthd -> PAM -> pam_mysql. Oh, yes, indeed. I started it all over again, started from the old config. Anyway, I cleaned it up once again, restarted cyrus, and run the command again. Here is the imapd.conf: configdirectory: /cyrus/imap partition-default: /cyrus/spool defaultacl: lrswipcd admins: [EMAIL PROTECTED] [EMAIL PROTECTED] allowanonymouslogin: no timeout: 400 plaintextloginpause: 0 quotawarn: 90 autocreatequota: 5 singleinstancestore: yes drachost: localhost dracinterval: 600 sasl_pwcheck_method: saslauthd loginrealms: all allowplaintext: yes sasl_mech_list: PLAIN sieveusehomedir: false sievedir: /usr/local/sieve sieve_maxscriptsize: 32 sieve_maxscripts: 5 partition-0: /cyrus/spool/0 partition-1: /cyrus/spool/1 ... And here the command and its results: [EMAIL PROTECTED] etc]# cyradm -user cyrus -auth login localhost IMAP Password: Login failed: authentication failure at /usr/lib/perl5/site_perl/5.8.5/i386-linux-thread-multi/Cyrus/IMAP/Admin.pm line 118 cyradm: cannot authenticate to server with login as cyrus excerpt from logfile: Jun 28 06:10:21 mailtx1 master[15176]: about to exec /usr/lib/cyrus-imapd/imapd Jun 28 06:10:21 mailtx1 imap[15176]: executed Jun 28 06:10:21 mailtx1 imap[15176]: sql_select option missing Jun 28 06:10:21 mailtx1 imap[15176]: auxpropfunc error no mechanism available Jun 28 06:10:21 mailtx1 imap[15176]: _sasl_plugin_load failed on sasl_auxprop_plug_init for plugin: sql Jun 28 06:10:21 mailtx1 imap[15176]: accepted connection Jun 28 06:10:25 mailtx1 imap[15176]: badlogin: localhost [127.0.0.1] plaintext cyrus SASL(-13): authentication failure: checkpass failed So, I completely removed all auxprop lines and sasl_* lines, and still no luck. Looks like is still looking for auxprofunc... ? Thank you once again for your help, Alex Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
sieve isnt filtering mail
Hi,
i have a problem with one server to filter the mail with sieve to the
right directories. I setup confixx, cyrus-imap, procmail and spamd on a
debian system. i use cyrus 2.2.13. The Mails are scanned by spamd very
well and after that cyrdeliver put the mails in the right folder. This
works fine. I have to use procmail cause spamd fetches the preferences (
spam level ) out of a mysql database from confixx. But sieve will not
work, thats my great problem. Her i post some logs and confs:
postfix
main.cf:
mailbox_command = procmail -a "$EXTENSION"
master.cf:
cyrus unix - n n - - pipe
flags=R user=cyrus argv=/usr/sbin/cyrdeliver -r ${sender} -m
${extension} ${user}
procmail unix - n n - - pipe
flags=R user=cyrus argv=/usr/bin/procmail -t -m USER=${user}
EXTENSION=${extension} /etc/procmailrc
procmailrc:
DROPPRIVS=yes
LOGFILE=/var/log/procmail.log
VERBOSE=ON
SHELL=/bin/sh
DELIVERMAIL="/usr/sbin/cyrdeliver"
#IMAP="/usr/sbin/cyrdeliver -a $USER -m INBOX $USER"
IMAP="$DELIVERMAIL -a $LOGNAME -m user.$LOGNAME"
:0fw
* < 256000
| /usr/bin/spamc -f
:0 H
* ! ^From[ ]
* ^rom[ ]
{
LOG="*** Dropped F off From_ header! Fixing up. "
:0 fhw
| sed -e 's/^rom /From /'
}
:0fw
| formail -f -I "From "
:0w
| $IMAP
imapd.conf:
configdirectory: /var/lib/cyrus
partition-default: /var/spool/cyrus/mail
admins: root cyrus
sasl_pwcheck_method: saslauthd
sasl_auto_transition: no
sasl_mech_list: plain login
srvtab: /var/imap/srvtab
allowanonymouslogin: no
allowplaintext: yes
lmtpsocket: /var/run/cyrus/socket/lmtp
idlesocket: /var/run/cyrus/socket/idle
notifysocket: /var/run/cyrus/socket/notify
sieveusehomedir: false
sievedir: /var/spool/sieve
here is a log on a server where sieve works:
Jun 28 16:49:57 srv1 cyrus/lmtpunix[21970]: duplicate_check:
<[EMAIL PROTECTED]> example.com!user.foo 0
Jun 28 16:49:57 srv1 cyrus/lmtpunix[21970]: mystore: starting txn 2147503790
Jun 28 16:49:57 srv1 cyrus/lmtpunix[21970]: mystore: committing txn
2147503790
Jun 28 16:49:57 srv1 cyrus/lmtpunix[21970]: duplicate_mark:
<[EMAIL PROTECTED]> example.com!user.foo 1151506197 2037
Jun 28 16:49:57 srv1 cyrus/lmtpunix[21970]: mystore: starting txn 2147503791
Jun 28 16:49:57 srv1 cyrus/lmtpunix[21970]: mystore: committing txn
2147503791
Jun 28 16:49:57 srv1 cyrus/lmtpunix[21970]: duplicate_mark:
<[EMAIL PROTECTED]> [EMAIL PROTECTED] 1151506197 0
here is a log on the server where sieve doesnt work ! You will see the missing
sieve in the last line
Jun 28 17:24:55 srv4 cyrus/lmtpunix[30283]: duplicate_check:
<[EMAIL PROTECTED]>user.web3p1 0
Jun 28 17:24:55 srv4 cyrus/lmtpunix[30283]: duplicate_check:
<[EMAIL PROTECTED]>user.web3p1 0
Jun 28 17:24:55 srv4 cyrus/lmtpunix[30283]: mystore: starting txn 2147484169
Jun 28 17:24:55 srv4 cyrus/lmtpunix[30283]: mystore: committing txn
2147484169
Jun 28 17:24:55 srv4 cyrus/lmtpunix[30283]: duplicate_mark:
<[EMAIL PROTECTED]>user.web3p1 1151508295 0
sieveshell is working:
srv4:~# sivtest -a web3p1 localhost
S: "IMPLEMENTATION" "Cyrus timsieved v2.2.13-Debian-2.2.13-2bpo1"
S: "SASL" "LOGIN PLAIN"
S: "SIEVE" "fileinto reject envelope vacation imapflags notify subaddress relational
comparator-i;ascii-numeric regex"
S: OK
C: AUTHENTICATE "LOGIN"
S: {12}
S: VXNlcm5hbWU6
Please enter your password:
{8+}
C: d2ViM3Ax
S: {12}
S: UGFzc3dvcmQ6
{8+}
C: MjQwMjQ5
S: OK
Authenticated.
Security strength factor: 0
web3p1 is the confixx user who gets still his mails, thats not the problem but
without filtering.
sivtest -u web3p1 localhost doesnt work.
i tested to make a script with sieveshell:
srv4:~# sieveshell --auth=web3p1 localhost
connecting to localhost
Please enter your password:
..
the sieve script was saved on /var/spool/sieve/w/web3p1 with all files and i
think with cyrus rights.
Thats is bit different to the mails, they were stored on :
/var/spool/cyrus/mail/users/web3p1
I created the the sieve filter with squirrelmail avelsieve, too. They were
stored on the same place.
But the mail filter isnt working. Whats my problem. I have tried a lot, but now
i am without latin .
With my constellation i had to use:
mailbox_command = procmail -a "$EXTENSION"
but with this i had to make 751 on on /var/run/cyrus/socket /owner cyrus//group mail but
everytime a started cyrus-imap again the rights are changed to 750 and then
"cyrus/lmtpunix -> lmtp denied"
if i chaange main.cf (postfix) to:
mailbox_command = procmail
-> there is no lmtp problem. Ithink its the problem with the user web3p1 but i
have to do this cause of procmail spamd and the confixx spamd local.cf for every
user.
But for now :) sieve is my big problem. What to do ?
Greetings Holm
Cyrus Home Page: http://asg.web.cmu.edu/cyrus
Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu
List Archives/Info: http://asg.web.cmu.edu/cyru
Re: Cyrus+SASL+PAM+pam_mysql Migration problem
sender: "Simon Matter" date: "Wed, Jun 28, 2006 at 07:59:12PM +0200" <<> Sorry, I can not help you at all with the mysql stuff because I have >> never >> used it with cyrus. However, you want to use pam_mysql but your >> cyrus-imapd tries to use the mysql auxprop plugin as you can see above. >> So >> you still have a bad imapd.conf file. Comment out all the auxprop line >> in >> imapd.conf, they are not used when using saslauthd -> PAM -> pam_mysql. > Oh, yes, indeed. I started it all over again, started from the old > config. Anyway, I cleaned it up once again, restarted cyrus, and run > the command again. > > Here is the imapd.conf: > configdirectory: /cyrus/imap > partition-default: /cyrus/spool > defaultacl: lrswipcd > admins: [EMAIL PROTECTED] [EMAIL PROTECTED] > allowanonymouslogin: no > timeout: 400 > plaintextloginpause: 0 > quotawarn: 90 > autocreatequota: 5 > singleinstancestore: yes > drachost: localhost > dracinterval: 600 > sasl_pwcheck_method: saslauthd > loginrealms: all > allowplaintext: yes > sasl_mech_list: PLAIN > sieveusehomedir: false > sievedir: /usr/local/sieve > sieve_maxscriptsize: 32 > sieve_maxscripts: 5 > partition-0: /cyrus/spool/0 > partition-1: /cyrus/spool/1 > ... > > And here the command and its results: > [EMAIL PROTECTED] etc]# cyradm -user cyrus -auth login localhost > IMAP Password: > Login failed: authentication failure at > /usr/lib/perl5/site_perl/5.8.5/i386-linux-thread-multi/Cyrus/IMAP/Admin.pm > line 118 > cyradm: cannot authenticate to server with login as cyrus > > excerpt from logfile: > Jun 28 06:10:21 mailtx1 master[15176]: about to exec > /usr/lib/cyrus-imapd/imapd > Jun 28 06:10:21 mailtx1 imap[15176]: executed > Jun 28 06:10:21 mailtx1 imap[15176]: sql_select option missing > Jun 28 06:10:21 mailtx1 imap[15176]: auxpropfunc error no mechanism > available > Jun 28 06:10:21 mailtx1 imap[15176]: _sasl_plugin_load failed on > sasl_auxprop_plug_init for plugin: sql > Jun 28 06:10:21 mailtx1 imap[15176]: accepted connection > Jun 28 06:10:25 mailtx1 imap[15176]: badlogin: localhost [127.0.0.1] > plaintext cyrus SASL(-13): authentication failure: checkpass failed > > So, I completely removed all auxprop lines and sasl_* lines, and still > no luck. Looks like is still looking for auxprofunc... ? Hm, I may have been wrong... While it's okay to remove the auxprop lines from the config, it has likely not been the cause for the logs. Your config really uses pam_mysql, which then fails (I think to get rid of the sql plugin errors in the log, you have to remove the plugins from your system). I can not help you with the mysql stuff because I have never used it. Simon Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: Re: Cyrus+SASL+PAM+pam_mysql Migration problem
>>> sender: "Simon Matter" date: "Wed, Jun 28, 2006 at 08:38:02PM +0200" << Hm, I may have been wrong... While it's okay to remove the auxprop lines > from the config, it has likely not been the cause for the logs. Your > config really uses pam_mysql, which then fails (I think to get rid of the > sql plugin errors in the log, you have to remove the plugins from your > system). I can not help you with the mysql stuff because I have never used > it. Yep, that's what it was. By removing the cyrus-sasl-sql package all the auxprop errors are gone. It really is just a problem of pam_mysql now, so I'll try my luck on those mailling lists. Thank you all very much for your help, Alex Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: Cyrus+SASL+PAM+pam_mysql Migration problem
On 2006-06-27 at 19:25 +0300, Alexandru E. Ungur wrote: > I'm having a bit of a hard time doing a migration of cyrus from this: > anyway, on the old server it is a cyrus+saslauthd+pam+pam_mysql+mysql > On the new server I got saslauthd working pretty much ok (I think). Using PAM, you lose those authentication mechanisms which require a cleartext password (DIGEST-MD5, etc). Looking on the pam-mysql website, I see that they cover this and document how to get Cyrus-SASL to work with MySQL and bypass the PAM layer; their method includes support for domains. http://pam-mysql.sourceforge.net/Documentation/FAQ.php?seemore=y> http://pam-mysql.sourceforge.net/Documentation/FAQ.php?seemore=y " Q. I set up saslauthd (of Cyrus-SASL) to use PAM-MySQL for authentication and noticed some authentication mechanisms such as CRAM-MD5 don't work. Why? A. CRAM-MD5 are DIGEST-MD5 are Challenge-Response authentication mechanisms (indeed CRAM is short for Challange-Response Authentication Mechanism), plain-text passwords have to be supplied to the instance that handles authentication communication with the user (that is, the SASL client library), rather than the authenticator (the server). Therefore, it is not possible to use PAM with these mechanisms and then you need to configure Cyrus-SASL to have "SQL" auxprop plugin with MySQL support and specify "auxprop" for the preferred password checking method. For instance, if you want to use it in conjunction with Postfix, the SASL configuration file "smtpd.conf", which is put in the Cyrus-SASL's plugin directory (or the location included in the SASL_PATH environment variable), would look like the following: pwcheck_method: auxprop mech_list: plain login cram-md5 digest-md5 sql_engine: mysql sql_database: sys sql_user: someuser sql_passwd: fubar sql_select: SELECT password FROM users WHERE name='%u' and domain='%r'; Note that passwords should be stored in plain-text in this case. " To get the domain stuff working with pam_mysql, I suspect that you need to be looking at the 'where' option, putting the appropriate SQL in there; the 'where' option is mentioned at: http://pam-mysql.sourceforge.net/Documentation/package-readme.php?seemore=y> http://pam-mysql.sourceforge.net/Documentation/package-readme.php?seemore=y although no escapes are mentioned and OTTOMH I don't recall what can be done in imapd.conf for this. Sorry. -- "Everything has three factors: politics, money, and the right way to do it. In that order." -- Gary Donahue Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Subfolders of INBOX with altnamepsace
We're in the process of migrating from an IMAP server that uses a namespace equivalent to the Cyrus altnamespace but in addition supports storing subfolders under INBOX. Considering the number of users we currently support, we're considering modifying Cyrus to support such a setup. Such a change would likely result in an extra config option permitting subfolders of INBOX when using altnamespace, and once an installation uses that option and subfolders of INBOX are created, switching back to the standard namespace would either not be possible or would at least be somewhat disruptive. I'm not aware of any existing patches that accomplish this sort of behavior. If we were to make these changes, would they be of use to other sites, and would such a design change be considered for acceptance upstream? Paul Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: INTERNALDATE one hour in future for sent message
On 2006-06-28 at 10:21 -0400, Jim Brett wrote: > INTERNALDATE (hence received date?) one hour in future for sent > message. Unix systems should be run in GMT/UTC (almost the same thing; GMT is _not_ "British time"). You then use $TZ in the environment, or some OS-dependent way of setting 'localtime' (eg, a symlink /etc/localtime, or some other method) to let programs show the time in the local zone. That's normally handled by libc. > I've searched cyrus wiki plus web but haven't found an answer. From > what I can tell, setting of the received date for sent message is in the > sphere of influence of the IMAP server. It's really just asking the operating system for "the current time", so the OS is not using GMT. > correct for sent mail i.e. would work 6 months per year. <- Update: I > did try that and it works correctly so there is a timezone issue somewhere. Don't run the OS with the kernel's clock in local time, or you'll have all sorts of ongoing problems, biting you in subtle ways. You don't mention the OS you're using (or I missed it) so I can't say what the actual method of setting the system "localtime" is whilst leaving the kernel in GMT. -- "Everything has three factors: politics, money, and the right way to do it. In that order." -- Gary Donahue Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: INTERNALDATE one hour in future for sent message
Thanks, your response is greatly appreciated. Here's OS info: # uname -a SunOS machine.company.com 5.8 Generic_117350-13 sun4u sparc SUNW,Sun-Fire-V240 Phil wrote: On 2006-06-28 at 10:21 -0400, Jim wrote: INTERNALDATE (hence received date?) one hour in future for sent message. Unix systems should be run in GMT/UTC (almost the same thing; GMT is _not_ "British time"). You then use $TZ in the environment, or some OS-dependent way of setting 'localtime' (eg, a symlink /etc/localtime, or some other method) to let programs show the time in the local zone. That's normally handled by libc. 've searched cyrus wiki plus web but haven't found an answer. From what I can tell, setting of the received date for sent message is in the sphere of influence of the IMAP server. It's really just asking the operating system for "the current time", so the OS is not using GMT. orrect for sent mail i.e. would work 6 months per year. <- Update: I did try that and it works correctly so there is a timezone issue somewhere. Don't run the OS with the kernel's clock in local time, or you'll have all sorts of ongoing problems, biting you in subtle ways. You don't mention the OS you're using (or I missed it) so I can't say what the actual method of setting the system "localtime" is whilst leaving the kernel in GMT. Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
timsieved SIGSEGV
Hi, I've noticed error with timsieved when invoking with -C param. in cyrus.conf: sievecmd="timsieved " listen="127.0.0.1:2000" prefork=0 and logs: process 17215 exited, signaled to death by 11 service sieve pid 17215 in READY state: terminated abnormally about to exec /opt/mail1/imapd-2.3.6/service/timsieved process 17216 exited, signaled to death by 11 service sieve pid 17216 in READY state: terminated abnormally about to exec /opt/mail1/imapd-2.3.6/service/timsieved process 17217 exited, signaled to death by 11 service sieve pid 17217 in READY state: terminated abnormally about to exec /opt/mail1/imapd-2.3.6/service/timsieved process 17218 exited, signaled to death by 11 service sieve pid 17218 in READY state: terminated abnormally about to exec /opt/mail1/imapd-2.3.6/service/timsieved version is 2.3.6 . I need to seperate auth from imap which is done via digest-md5 and murder from sieve which should auth with saslauthd and login/plain method. Thanks for help AK Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: INTERNALDATE one hour in future for sent message
On 2006-06-28 at 16:43 -0400, Jim Brett wrote: > Thanks, your response is greatly appreciated. Here's OS info: > > # uname -a > SunOS machine.company.com 5.8 Generic_117350-13 sun4u sparc > SUNW,Sun-Fire-V240 Edit /etc/TIMEZONE, zone information available in /usr/share/lib/zoneinfo/ $ man -s 4 timezone You may also want to look at /etc/defaults/cron, if you want to make cronjobs stick to GMT or somesuch. You'll probably need a reboot somewhere in there, and to make sure that you adjust the system clock to compensate for adjusting the zone information. A lot of time issues just go away if you keep system clocks automatically synchronised. ntpd helps here, which on Solaris 9 (don't know about 8, sorry) is in: SUNWntpr SUNWntpu (NTP = Network Time Protocol) That's the terse version, but should provide enough pointers for going on with. I'm only assuming that you're not already using NTP, but I suspect that it would've been difficult to keep a system clock outside GMT whilst using ntpd. Social benefit to using GMT with mail-servers, even outside the UK (full disclosure: I'm expat British, so perhaps biased) is that when it comes to reporting abuse and providing logs to correlate events, it's *really* useful to have a common timezone standard which everyone needs to be able to map to their local time easily, without needing to learn acronyms. Even better is when you can say, "Log timestamps are in GMT with time synchronised via NTP to high stratum, so we believe them to be accurate." -- "Everything has three factors: politics, money, and the right way to do it. In that order." -- Gary Donahue Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
