Sendmail - IMAP-UW - Cyrus-SASL2 - SMTPAUTH problems

Greg Groth ggroth99 at hotmail.com
Tue Feb 14 08:14:15 PST 2006 


>From: "Ted Mittelstaedt" <tedm at toybox.placo.com>
>To: "Joe Auty" <joe at netmusician.org>, "Kirk Davis" <Kirk.Davis at epsb.ca>
>CC: "Greg Groth" <ggroth99 at hotmail.com>, <freebsd-questions at freebsd.org>
>Subject: RE: Sendmail - IMAP-UW - Cyrus-SASL2 - SMTPAUTH problems
>Date: Tue, 14 Feb 2006 00:34:28 -0800
>
>
>I'm sure glad that this message didn't pass through my work mailserver
>so that it's didn't see it, since my work e-mail inbox has 16383 messages
>in it  (the limit that Outlook can display in IMAP mode) and is 412
>megabytes
>in size, and performance is perfectly fine both with Outlook and
>Horde/IMP.
>
>I wouldn't want my mailserver reading it and thinking that it's OK to
>slack off.
>
>   And yes I know I need to delete
>some messages, speak to the hand if your going to make that crack.
>
>This is imap-uw/sendmail.
>
>Perhaps you might consider that since you haven't run imap-uw in
>a while that your no longer qualified to make claims about it?  Or
>perhaps
>you never had it setup properly?  Or perhaps your hardware was slow?
>
>Nothing is wrong with Postfix / Courier-IMAP but nothing is wrong either
>with sendmail / uw-imap.
>
>Ted
>
> >-----Original Message-----
> >From: owner-freebsd-questions at freebsd.org
> >[mailto:owner-freebsd-questions at freebsd.org]On Behalf Of Joe Auty
> >Sent: Monday, February 13, 2006 1:53 PM
> >To: Kirk Davis
> >Cc: Greg Groth; freebsd-questions at freebsd.org
> >Subject: Re: Sendmail - IMAP-UW - Cyrus-SASL2 - SMTPAUTH problems
> >
> >
> >Hey Greg,
> >
> >Sorry if this completely throws a monkey wrench into your plans, but
> >I feel inspired to interject since I once had a nearly identical
> >setup as you...
> >
> >I switched to Postfix and Courier-IMAP since I found that performance
> >of large mailboxes in IMAP-UW was pretty poor, especially over web-
> >based email where messages are not cached. I switched to Postfix
> >because it is so much more simple and straight forward than Sendmail.
> >You should have no problems switching to Postfix, since it is
> >basically Sendmail with a nicer wrapper/configuration.
> >
> >Just food for thought.

I appreciate both of your comments, as I have stated I am new to BSD.  Part 
of my problem is the huge amount of software available, and no good way to 
determine what will work better for my situation.  Perhaps if I explain my 
situation, it would help some.  We've been running Sendmail and a 
POP-Before-SMTP script for the last 6 years on a Redhat box.  I think it 
started out on 5.2, and was up to 7.3 when it crashed 3 weeks ago.  I had 
been planning to upgrade the server, and had a new box ready to go, but I 
had stalled on the OS.  I didn't want to go down the Redhat route because of 
strictly personal issues that are more opinions than fact, and a friend 
suggest FreeBSD.

The server crash pretty much forced my hand, and my goal was to replicate 
what we had in place ASAP.  Because of my (limited) knowledge of Sendmail, I 
went that route as I know nothing of the alternatives.  I went with IMAP-UW 
because not because of anything I had read, but because I was attempting to 
get the POP-Before-SMTP port to work (which it didn't - long story), and 
IMAP-UW seemed a good alternative as it is a POP and IMAP server and was 
easily configured in POP-Before-SMTP.

Since I could not find a POP-Before-SMTP solution that I could get to 
operate (I had problems with POP-Before-SMTP, and DRAC before throwing in 
the towel), I decided to switch to SMTP-AUTH.  So here's my situation, we 
have about 25 users on the server.  I need POP and IMAP that will operate 
with and without SSL, and SMTP that can handle SMTP-AUTH with and without 
SSL.  Out of the 25 users, I have 3 that are email packrats, and have 
between 2-4 gigs of email apiece.  They are currently using POP on Outlook 
Express, but will be switching over to IMAP on Thunderbird in the near 
future (I also have 5 users that I'm not sure what client they are using, 
we're hosting their domain - long story).  Our office peronnel will be 
migrating to IMAP, using SSL when out of the office, and plain text when in. 
  The five users in which we are hosting their email will remain on POP, and 
although SSL would be nice, I want the ability to offer plain text in case I 
run into client issues.  Similar circumstances for SMTP, I can relay by 
domain for users on our network, and would like to use SMTP-AUTH for off-ste 
users.  SSL preferred, but offer plain text in case of client issues.  Last 
issue would be something that will play nice with SquirrelMail.

Although I'm very familiar with administering Sendmail (starting, stopping, 
backing up, running makemaps), configuring is another story.  While SMTP is 
pretty much running as stable as it ever has, I still have issues from time 
to time.  For instance I am sending this from Hotmail as this list is 
currently bouncing email from my server because of some error I have not 
investigated yet.  At this moment I am pretty much open to anything, but I 
don't have a good way of evaluating different options other than trial and 
error (and I'm kind of short on time).  I know that a lot of times it comes 
down to peronal taste (my reason for dumping Redhat), but sometimes there 
are specific issues that will make a certain solution better than others.  
Based off of my stated needs and my current issues (Sendmail configuration), 
is there a better solution, or is what I have now pretty much the same as 
other alternatives for my specfic needs?

Thank you both for your attention to this matter.

Greg Groth


>From: "Ted Mittelstaedt" <tedm at toybox.placo.com>
>To: "Joe Auty" <joe at netmusician.org>, "Kirk Davis" <Kirk.Davis at epsb.ca>
>CC: "Greg Groth" <ggroth99 at hotmail.com>, <freebsd-questions at freebsd.org>
>Subject: RE: Sendmail - IMAP-UW - Cyrus-SASL2 - SMTPAUTH problems
>Date: Tue, 14 Feb 2006 00:34:28 -0800
>
>
>I'm sure glad that this message didn't pass through my work mailserver
>so that it's didn't see it, since my work e-mail inbox has 16383 messages
>in it  (the limit that Outlook can display in IMAP mode) and is 412
>megabytes
>in size, and performance is perfectly fine both with Outlook and
>Horde/IMP.
>
>I wouldn't want my mailserver reading it and thinking that it's OK to
>slack off.
>
>   And yes I know I need to delete
>some messages, speak to the hand if your going to make that crack.
>
>This is imap-uw/sendmail.
>
>Perhaps you might consider that since you haven't run imap-uw in
>a while that your no longer qualified to make claims about it?  Or
>perhaps
>you never had it setup properly?  Or perhaps your hardware was slow?
>
>Nothing is wrong with Postfix / Courier-IMAP but nothing is wrong either
>with sendmail / uw-imap.
>
>Ted
>
> >-----Original Message-----
> >From: owner-freebsd-questions at freebsd.org
> >[mailto:owner-freebsd-questions at freebsd.org]On Behalf Of Joe Auty
> >Sent: Monday, February 13, 2006 1:53 PM
> >To: Kirk Davis
> >Cc: Greg Groth; freebsd-questions at freebsd.org
> >Subject: Re: Sendmail - IMAP-UW - Cyrus-SASL2 - SMTPAUTH problems
> >
> >
> >Hey Greg,
> >
> >Sorry if this completely throws a monkey wrench into your plans, but
> >I feel inspired to interject since I once had a nearly identical
> >setup as you...
> >
> >I switched to Postfix and Courier-IMAP since I found that performance
> >of large mailboxes in IMAP-UW was pretty poor, especially over web-
> >based email where messages are not cached. I switched to Postfix
> >because it is so much more simple and straight forward than Sendmail.
> >You should have no problems switching to Postfix, since it is
> >basically Sendmail with a nicer wrapper/configuration.
> >
> >Just food for thought.
> >
> >
> >On Feb 13, 2006, at 4:25 PM, Kirk Davis wrote:
> >
> >> Hi Greg,
> >>
> >>> I'm trying to set up a FreeBSD 6.0 box as a mail server, and while
> >>> everything seems to be working OK for the most part, I have
> >>> run into two
> >>> issues that I cannot resolve (I'm new to BSD, please bear
> >>> with me). Install
> >>> went as follows:  Installed via FTP last night along with
> >>> "src - Sources for
> >>> everything",
> >>>
> >>> IMAP-UW was compiled via ports with WITH_SSL_AND_PLAINTEXT
> >>> enabled (same for
> >>> cclient), OpenSSL, Cyrus-SASL2 & Cyrus-SASL2-saslauthd were
> >>> compiled via
> >>> ports with no flags.
> >>>
> >>> Sendmail was installed with the base install and recompiled
> >>> (after SASL2 was
> >>> up and running) with the following options added to make.conf:
> >>>
> >>> # SASL (cyrus-sasl v2) sendmail build flags...
> >>> SENDMAIL_CFLAGS=-I/usr/local/include -DSASL=2
> >>> SENDMAIL_LDFLAGS=-L/usr/local/lib
> >>> SENDMAIL_LDADD=-lsasl2
> >>> # Adding to enable alternate port (smtps) for sendmail...
> >>> SENDMAIL_CFLAGS+= -D_FFR_SMTP_SSL
> >>>
> >>> I followed the instructions I found at
> >>> http://www.bsdconspiracy.net/howto/sendmail.html, and had no
> >>> problems with
> >>> the install except for Sendmail.  After recompiling sendmail,
> >>> I added the
> >>> following lines to the mail.server.mc file:
> >>>
> >>> define(`confAUTH_MECHANISMS',`PLAIN LOGIN')dnl
> >>> TRUST_AUTH_MECH(`PLAIN LOGIN')dnl
> >>> define(`CERT_DIR', `/etc/mail/certs')dnl
> >>> define(`confCACERT_PATH', `CERT_DIR')dnl
> >>> define(`confCACERT', `CERT_DIR/mycert.pem')dnl
> >>> define(`confSERVER_CERT', `CERT_DIR/mycert.pem')dnl
> >>> define(`confSERVER_KEY', `CERT_DIR/mykey.pem')dnl
> >>> define(`confCLIENT_CERT', `CERT_DIR/mycert.pem')dnl
> >>> define(`confCLIENT_KEY', `CERT_DIR/mykey.pem')dnl
> >>> DAEMON_OPTIONS(`Port=smtp, Name=MTA')dnl
> >>
> >> This is your problem.  The above line sets up the Sendmail daemon to
> >> listen on port 25 but the standard mc file distributed with FreeBSD
> >> also
> >> sets up a DAEMON port (it's at the end of the MC file).
> >>
> >> Here is what my DAEMON_OPTIONS lines look like.  These should be the
> >> only DAEMON_OPTIONS lines in the mc file.
> >> dnl Enable for both IPv4 and IPv6 (optional)
> >> DAEMON_OPTIONS(`Name=IPv4, Family=inet')
> >> DAEMON_OPTIONS(`Name=IPv6, Family=inet6, Modifiers=O')
> >> DAEMON_OPTIONS(`Port=smtps, Name=TLSMTA, M=s')dnl
> >>
> >>
> >>> DAEMON_OPTIONS(`Port=smtps, Name=TLSMTA, M=s')dnl
> >>>
> >>> After running (in /etc/mail) "make clean", "make cf", "make
> >>> install", "make
> >>> restart", SMTP no longer works, and I find the following in
> >>> maillog and
> >>> messages
> >>>
> >>> Feb 12 20:25:55 mail sm-mta[1213]: daemon IPv4: problem
> >>> creating SMTP socket
> >>> Feb 12 20:26:00 mail sm-mta[1213]: NOQUEUE: SYSERR(root):
> >>> opendaemonsocket:
> >>> daemon IPv4: cannot bind: Address already in use
> >>>
> >>> When I try and stop sendmail, I get a message that the pid
> >>> for Sendmail
> >>> cannot be found.  I end up killing the missing Sendmail daemon using
> >>> KSysGuard
> >>>
> >>> If I remove this line - "DAEMON_OPTIONS(`Port=smtp,
> >>> Name=MTA')dnl" from the
> >>> mail.server.mc file, make cf, make install, make restart,
> >>> sendmail starts
> >>> normally.  When trying to access from another machine on my
> >>> network, I can
> >>> only connect on port 25 without a secure connection (I'm
> >>> using Thunderbird
> >>> for this), although SMTP-AUTH is working correctly.
> >>
> >> Have you tried to setup your mail client to connect to port 465?  This
> >> is the smtps (SMTP SSL) port.
> >>
> >>
> >>> Any ideas on what I might need to do to get SSL / SMTP-AUTH
> >>> working on SMTP?
> >>>   I took a look at the instructions in the handbook, but they
> >>> were written
> >>> for SASL1.  Running netstat shows smtps listening on 465, but
> >>> when I try to
> >>> telnet to that port, the server drops the connection.
> >>
> >> Hmm... It should connect but you will not see anything since it is
> >> expecting an SSL connection.
> >>
> >>> My second problem is rather simple, after I create an IMAP
> >>> folder, I am
> >>> unable to delete it using a remote client.  Thunderbird
> >>> responds with "The
> >>> mail server responded: RENAME failed: Can't create mailbox node
> >>> /home/User/Trash/: File exists.  Nothing shows up in any of
> >>> the server logs
> >>> though.
> >>
> >> I have not seen this problem although I have it setup for an office of
> >> Outlook users.  I would check the permissions on the folders in the
> >> user
> >> home directory.  This is where the IMAP user forlders are by
> >> default.  I
> >> usually setup the clients to use the base imap if Mail and then
> >> create a
> >> Mail directory in the user home directory.  That way the mail folders
> >> don't get messed up with the user stuff.
> >>
> >>>
> >>> Hopefully this is the right list for these questions, if not,
> >>> could someone
> >>> please direct me to the correct one?  Any advice anyone can
> >>> give me on
> >>> either of these problems would be greatly appreciated.
> >>>
> >>
> >> ---- Kirk
> >> Kirk Davis
> >> Senior Network Analyst, ITS
> >> Edmonton Public Schools
> >> 1-780-429-8308
> >> _______________________________________________
> >> freebsd-questions at freebsd.org mailing list
> >> http://lists.freebsd.org/mailman/listinfo/freebsd-questions
> >> To unsubscribe, send any mail to "freebsd-questions-
> >> unsubscribe at freebsd.org"
> >
> >_______________________________________________
> >freebsd-questions at freebsd.org mailing list
> >http://lists.freebsd.org/mailman/listinfo/freebsd-questions
> >To unsubscribe, send any mail to
> >"freebsd-questions-unsubscribe at freebsd.org"
> >
> >--
> >No virus found in this incoming message.
> >Checked by AVG Free Edition.
> >Version: 7.1.375 / Virus Database: 267.15.6/258 - Release Date:
> >2/13/2006
> >
>

_________________________________________________________________
Express yourself instantly with MSN Messenger! Download today - it's FREE! 
http://messenger.msn.click-url.com/go/onm00200471ave/direct/01/

More information about the freebsd-questions mailing list