Openwall GNU/*/Linux - a small security-enhanced Linux distro for servers
[<prev] [next>] [<thread-prev] [day] [month] [year] [list]
Date: Wed, 18 Jan 2006 02:00:33 +0300
From: Solar Designer <solar@...nwall.com>
To: popa3d-users@...ts.openwall.com
Subject: Re: pop-before-smtp on Linux...

John,

On Mon, Jan 16, 2006 at 12:05:38PM -0500, John Von Essen wrote:
> For years, I have been using the pop-before-smtp patch for popa3d on
> FreeBSD.
> 
> I have a linux server (Redhat Enterprise 4.0) now that I wish to do this on.
> I have been unable to compile either 0.6.4 or 1.0 with the pop-before-smtp
> patch. Here are the errors I get:
> 
> gcc -Wall -O2 -fomit-frame-pointer -DPOPB4SMTP -DVALIDTIME=600 -c pop_db.c
> pop_db.c: In function `write_db_entry':
> pop_db.c:60: warning: implicit declaration of function `dbopen'
[...]

You might want to use whoson (and the corresponding patch to popa3d)
instead of this POP-before-SMTP patch.  whoson is known to work well
and it has no dependency on Berkeley DB.

On Linux, you need to configure whoson to use a TCP socket (not a Unix
domain socket), but bind it to "localhost" for security.  The
/etc/whoson.conf entries would be:

client	tcp port=9876
	address=127.0.0.1

server	tcp
	port=9876
	listenq=5
	keepalive=150
	allow=127.0.0.1/32

server	global ttl=660			# 11 minutes
	chroot=/var/empty		# chdir and chroot here
	group=whoson			# change group id and
	user=whoson			# user id after bind()ing
	cachesize=100000		# max. number of entries to keep

-- 
Alexander Peslyak <solar at openwall.com>
GPG key ID: B35D3598  fp: 6429 0D7E F130 C13E C929  6447 73C3 A290 B35D 3598
http://www.openwall.com - bringing security into open computing environments

Was I helpful?  Please give your feedback here: http://rate.affero.net/solar

Powered by blists - more mailing lists

Your e-mail address:

Powered by Openwall GNU/*/Linux - Powered by OpenVZ