[tpop3d-discuss] tpop3d-1.5.1 and SSL configuration

ODHIAMBO Washington wash at wananchi.com
Thu, 21 Aug 2003 11:13:09 +0300 

* Chris Lightfoot <chris@ex-parrot.com> [20030820 18:07]: wrote:
> On Wed, Aug 20, 2003 at 05:59:44PM +0300, ODHIAMBO Washington wrote:
> > Hello all,
> > 
> > I am testing the latest release
> 
> excellent! that's what we like to see :)


But I am stuck at level 0 anyway ;)


> > listen-address: 62.8.64.4(pop.wananchi.com) 212.49.74.4(smtp.wananchi.com) 192.168.50.3(mail.wananchi.com)
> > 
> > I would like to add the same names, but now on SSL port, like
> > 
> > 62.8.64.4:995;tls=stls,wananchi.crt,wananchikey\
> > 212.49.74.4:995;tls=stls,wananchi.crt,wananchi.key\
> > 192.168.50.3:995;tls=stls,wananchicrt,wananchi.key
> 
> No, should be tls=immediate to negotiate encryption
> immediately on connection. You could add tls=stls and the
> certificate names to the normal listen-address
> specifications too, so that clients can negotiate
> encryption if they want it.


Okay, I am a bit lost, since brackets and even dots have special meanings in regexes.
I am not a programmer though, so bear with me.
I have tried

listen-address: 62.8.64.4:110/^([a-zA-Z]+\.wananchi\.com)/ \
                212.49.74.4:110/^([a-zA-Z]+\.wananchi\.com)/ \
                192.168.50.3:110/^([a-zA-Z]+\.wananchi\.com)/ \


Obviously this is wrong somewhere because I get an error. When I test:

./tpop3d -f ./tpop3d.conf -d -v

I get:

TCP Wrappers support enabled, using daemon name `tpop3d'
listener_new: bind(62.8.64.4:110): Can't assign requested address
listener_new: bind(212.49.74.4:110): Can't assign requested address
listener_new: bind(192.168.50.3:110): Can't assign requested address
tpop3d.conf: no listen addresses obtained; exiting

That complicates it if I were to add tls=stls also.


Any help with a complete syntax for listen-address: that also has tls
support???


> > Secondly, I would like to try the bulletin thingie, and so I have added:
> > 
> > onlogin-child-wait: true
> > auth-perl-enable: true
> > auth-perl-start: do '/usr/local/etc/tpop3d/bulletins.pl';
> > 
> > Would this suffice to achieve the desired result (config-wise)??
> 
> Almost. You need to add an
>   auth-perl-onlogin: name_of_function
> statement so that tpop3d actually runs the bulletins
> function at login time.


Hang on.. since I do not use auth-perl to authenticate users, does it
mean that I require only three directives to run the bulletins, viz:

onlogin-child-wait: true
auth-perl-enable: true
auth-perl-onlogin: do '/usr/local/etc/tpop3d/bulletins.pl';


We use auth-pam and auth-mysql for users. I only want to run the bulletins
stuff and that is wht auth-perl is coming into the mix.

Confusion reigns <LO>


 

        Best regards,
        Odhiambo Washington
        Wananchi Online Ltd.
    
PS::REQUEST

Whenever responding, please, put your response _under_ the original (previous)
posting/message(s), not above them. This is the basics of Netiquette.
    
Also, remove unneeded fragments of previous message(s), especially any
"commercial" adverts. It's really ugly, space-wasting and hard-answerable
to have all that junk nested a couple of times. Thank you.


___W_A_N_A_N_C_H_I__O_N_L_I_N_E__L_T_D___The People's Choice______
Wananchi Head Office    |*|     Tel: +254 2 313 985-9
1st Flr Loita, Loita St.|*|     Fax: +254 2 313 922
10286-GPO, NAIROBI, KE  |*|     e-mail: <wash at wananchi dot com>
------------------------------------------------------------------
++

A Microsoft Certified System Engineer is to information technology as a
McDonalds Certified Food Specialist is to the culinary arts.
        Michael Bacarella commenting on the limited value of certification.