LinuxQuestions.org
Welcome to the most active Linux Forum on the web.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Server
User Name
Password
Linux - Server This forum is for the discussion of Linux Software used in a server related context.

Notices

Reply
 
Search this Thread
Old 07-19-2010, 03:28 PM   #1
mwjones
LQ Newbie
 
Registered: Mar 2010
Posts: 22

Rep: Reputation: 0
Question Postfix and Courier help


I am having trouble setting up Postfix and Courier in what should be a simple case. My end goal is to be able to have a user account (added via useradd -m -s /bin/bash) on the system send mail via SMTP and receive via IMAP.

Reading through the Postfix documentation feels like overkill. So much stuff is written in there that doesn't seem applicable to my case. Additionally almost all of the tutorials I find online are either for local delivery or using MySQL.

Can anyone give me some help or point me in the right direction, please?
 
Old 07-19-2010, 10:11 PM   #2
millergroup
Member
 
Registered: Oct 2009
Posts: 39

Rep: Reputation: 15
You will need to use Mysql. No way around if you want IMAP.

This will tell you how to do it: http://codepoets.co.uk/2009/postfixa...rs-on-postfix/

Don't know what flavor of Linux you are using, but this helped me to get through it. Qmail is a better MTA though.
 
Old 07-19-2010, 11:05 PM   #3
mwjones
LQ Newbie
 
Registered: Mar 2010
Posts: 22

Original Poster
Rep: Reputation: 0
Thanks for the link. I am using Debian on this server. I noticed that there is an option in authdaemon for authpam; this made me think that it should be able to use the shell accounts on the system.

Perhaps I am being overly paranoid, but doesn't it seem dangerous that this is taking user input and passing that data in a SQL query? Consider this line from the article you linked:

Code:
query = SELECT quota FROM mailbox WHERE username='%s'
What if the domain were linuxquestions.org and I sent an email to millergroup';DROP/**/DATABASE/**/postfix;--@linuxquestions.org? Seeing as how it gets dropped into that query, if the admin had done a GRANT ALL PRIVILEGES, the database would be gone, would it not?
 
Old 07-19-2010, 11:17 PM   #4
jcalzare
Member
 
Registered: Aug 2009
Location: Chicago
Distribution: CentOS
Posts: 114

Rep: Reputation: 34
Would your email server accept an email from that address? Probably not. Input scrubbing is important any time you are accepting user input, and the mailserver is going to do a lot of that for you. Also, the author says: (Note: I’ve never used quota support, so I can’t guarantee the above is correct), so there is a caveat there.
 
Old 07-20-2010, 12:01 AM   #5
mwjones
LQ Newbie
 
Registered: Mar 2010
Posts: 22

Original Poster
Rep: Reputation: 0
Perhaps I can build a VM to test that out. Anywho, this helped me get set up: https://help.ubuntu.com/community/Po...asicSetupHowto

As a related note, it helps to correctly type the email address when testing. An unnoticed typo tripped me up for a bit.
 
  


Reply

Tags
courier, postfix


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
Problems with Postfix/Courier Uzelth Linux - Server 2 01-29-2008 04:25 PM
Postfix + Maildir + Courier. wachaca Linux - Server 4 12-06-2006 03:39 PM
problem with postfix and courier mrlankey0486 Linux - Server 1 09-01-2006 06:05 PM
New to Linux/Courier/Postfix Schmickers Linux - Networking 0 07-21-2006 02:56 AM
MX Records, Postfix, Courier Phorem Linux - Enterprise 1 06-22-2006 06:17 PM


All times are GMT -5. The time now is 09:43 AM.

Main Menu
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
identi.ca: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration