 |
|
 |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
Auth-relay
Summary:
- "What" - short description of the package
- "Why" - the reason this package was written
- "Who" - the authors of this package
- "Contents" - what you will find inside the archive
- "Dependencies" - what you need to run this software
- "INSTALL" - how to install auth-relay
- "Changelog" - what's changed between different versions of auth-relay
This package is a hack for making qmail only relay those clients who have authenticated with pop3 less than a given time ago. The most common example of this is www.yahoo.com.
Why?
We have searched the web for a hack like this because we needed it installed at www.mymail.ro, our public mail service. We couldn't find anything that worked out-of-the-box, so we decided to write our own hack. We made it public because we think there are more like us out there and hope that at least our solution will work out-of-the-box in most cases.
Who?
Qmail-hacks was put together by Mihnea Balta and Costin Grigoras. Auth-relay (as well as this documentation) was written by Mihnea Balta.
Contents
This package contains 5 things:
- pop3-authd: this is a daemon process which runs in the background, gets data from syslogd and keeps track of which IPs log on using pop3. It currently supports WU's ipop3d, vpopmail and the hacked version of qmail-pop* bundled with this package.
- auth-wrap: this is a wrapper for qmail-smtpd which uses the data from pop3-authd. You have to rename your old qmail-smtpd to qmail-smtpd.noauth and copy the auth-wrap executable as qmail-smtpd in the bin/ directory of your qmail installation
- ipop3d-hack: this is a hack for WU's ipop3d. When using sslwrap to provide pop3-ssl, the connections appear to come from 127.0.0.1. Thus, the clients authenticated through pop3s will not be relayed. This patch adds the command "SSL ip_address:password" to the pop3 daemon, which makes it log the connection as coming from the specified IP. The password should only be known by the sslwrap program and the pop3 daemon, as it is used for validating the command. I used imap-2000c as starting point.
- sslwrap-hack: this is sslwrap patched to send the SSL: command when connecting to port 110. Warning: do not use it with normal ipop3d.
- qmail-pop-hack: this directory contains hacked versions of qmail-popup and qmail-pop3d to use when running pop3 with qmail's daemons. See the INSTALL section for details about when to install these hacks.
Dependencies
In order to run the software included with this package you need the following:
- QMail: http://www.qmail.org
- PostgreSQL: http://www.postgresql.org
- One of:
- ipop3d - part of wu-imap: ftp://ftp.cac.washington.edu/imap/imap.tar.Z
- vmailmgr: http://em.ca/~bruceg/vmailmgr/
- vpopmail: http://www.inter7.com/vchkpw/
- Optionally: SSLwrap: http://www.rickk.com/sslwrap