LANsys index
The server also enables clients to send mail using XTND XMIT, which is processed via sendmail(8).
See the Administrator's Guide file for more information on standalone mode.
A bulletin database can be used to track the bulletins instead of the users' home directory. This feature is enabled by including the --enable-bulldb=bull-directory flag when running ./configure.
Remember neither Expire nor Login Delay is enforced by qpopper; Sysadmins have to implement them by some other means. However, you can enforce EXPIRE 0 (no retention at all) by using the --enable-auto-delete flag with ./configure. This causes messages to be automatically deleted after they are downloaded.
0 is the default. TLS/SSL is not supported.
1 enables the STLS command. This permits a client to attempt TLS/SSL negotiation after connecting.
2 Causes Qpopper to attempt TLS negotiation when a client first connects. This is for alternate-port support.
0 is the default, which permits plain-text passwords only for those users who are not in the APOP database.
1 disables plain-text passwords for all users, even those who are not in the APOP database.
2 permits plain-text passwords for all users, even those who are in the APOP database (this allows clients to fall back on plain-text authentication if they do not support APOP).
3 allows plain-text passwords only for connections on the loop-back (127.*.*.*) address.
4 permits plain-text passwords only if TLS/SSL has been negotiated for the session (requires an executable compiled with OpenSSL or SSL Plus).
When the server is waiting for a command to arrive from the client, it times out after the specified number of seconds and terminates the session. This avoids having popper processes hang forever waiting for command input from clients which have terminated abnormally or are hung.
A small value is ok for small to medium networks where the network delay is within a few seconds. In this case 15-30 seconds is not unreasonable. Networks with large delays in sending packets (e.g., SLIP links) may require a larger value. In this case 300 seconds (5 minutes) is not unreasonable.
Note that RFC 1939 requires a minimum of 600 second (10 minutes).
Processing Options are described below.
This sets option opt to be value. Multiple options can be specified at one instance and are comma separated.
The following are the options supported:
Configuration files use different option names and a different syntax than the command-line (because command-line options are limited to one character).
The general syntax of the config file (in ABNF) is:
A comment line starts with #. The rest of the line is ignored. You can also use # to end any line. Everything else on the line is a comment.
Note that reset can only be used with boolean options. The = and the value are omitted when reset is used. When set is used with a boolean option, you can omit the = and value if you wish (it defaults to true), or you can use any of the four values true, false, 1, or 0.
Some options are "restricted", meaning that they can't be used in a .qpopper-options file in a user's home directory and/or in a <user>.qpopper-options file in the spool directory.
The following are the command line options you can use:
Only valid if compiled with --enable-bulldb.
Only valid if compiled with --enable-debug.
Only valid if compiled with --enable-drac
Only valid if compiled with --enable-kerberos5 or -DKERBEROS
Only valid if compiled with --enable-kerberos5 or -DKERBEROS
Sense reversed from command-line switch. Using -R is the same as 'SET REVERSE-LOOKUP = FALSE'.
Only valid if compiled with OpenSSL or SSL Plus.
Only valid if compiled with --enable-debug.
The bulletin feature gives system administrators a way to send important announcements to all POP users without having to do mass mailings.
The bulletin directory contains one file per bulletin. Each file contains a single mail message with a header and body in normal mailbox format. The first line of each such bulletin must be a "From " line. The easiest way for sysadmins to create such bulletins is to mail themselves a copy of the bulletin using the account to which they want replies to be sent, then use their mail program to save the message to a file in the bulletin directory in mailbox format. The bulletin directory must be world readable.
The name of each bulletin file begins with the bulletin number, and may optionally continue with any other characters. E.g., the file name of bulletin number 23 might be "23.pophost_down_sunday".
Popper creates a file named .popbull in the home directory of each user. This file contains a single line recording the highest numbered bulletin received by the user.
Each time a POP client connects to the server, any new bulletins which the user has not received previously are automatically appended to the user's mail.
When a bulletin is copied, the "To" header line is replaced by "To: username@thishost", and any "Status:" header lines are deleted. Otherwise, the bulletin is copied as is.
When a new user checks for mail the first time, popper creates the .popbull file in the user's home directory and seeds it with the current maximum bulletin number. Thus new users do not get old bulletins.
Bulletins can be enabled by default, and the bulletin directory specified, by including the --enable-bulletins=bull-directory flag when running ./configure.
To use a database instead of .popbull files in users' home directories for tracking the highest bulletin seen by a user, include the --enable-bulldb=bull-directory flag when running ./configure. You must also create two empty files in the bulletin directory, called bulldb.pag and bulldb.dir. When a bulletin database is used, qpopper checks for and uses any .popbull files in the user's home directory, to provide continuity.
To specify the maximum number of bulletins sent to new users, include the --with-new-bulls flag when running ./configure. For example, --with-new-bulls=10 says that new users get at most ten bulletins.
The Qpopper server is a single program (called popper) that is launched by inetd when it gets a service request on the POP TCP port. (The official port number specified in RFC 1939 for POP version 3 is port 110. However, some POP3 clients attempt to contact the server at port 109, the POP version 2 port. Unless you are running both POP2 and POP3 servers, you can simply define both ports for use by the POP3 server. This is explained in the installation instructions later on.)
The qpopper program initializes and verifies that the peer IP address is registered in the local domain (unless the -R command-line option is used), logging a warning message when a connection is made with a client whose IP address does not have a canonical name. For systems using BSD 4.3 bind, it also checks to see if a canonical name lookup for the client returns the same peer IP address, logging a warning message if it does not.
The server enters the authorization state, during which the client must correctly identify itself by providing a valid Unix userid and password on the server's host machine (or successfully authenticate using APOP or AUTH). No other exchanges are allowed during this state (other than a request to quit.) If authentication fails, a warning message is logged and the session ends.
Once the user is identified, qpopper changes its user and group ids to match that of the user and enters the transaction state. The server makes a temporary copy of the user's maildrop which is used for all subsequent transactions (unless running in server mode ). These include the bulk of POP commands to retrieve mail, delete mail, undelete mail, and so forth.
When the client quits, the server enters the final update state, during which the network connection is terminated and the user's maildrop is updated with the (possibly) modified temporary maildrop.
The POP server uses syslog to keep a record of its activities. On systems with BSD 4.3 syslogging, the server logs (by default) to the "local0" facility at priority "notice" for all messages except debugging which is logged at priority "debug". The default log file is /usr/spool/mqueue/POPlog. These can be changed, if desired. On systems with 4.2 syslogging all messages are logged to the local log file, usually /usr/spool/mqueue/syslog.
Qpopper logs debugging information when the -d parameter is specified after its invocation in the inetd.conf file. Care should be exercised in using this option since it generates considerable output in the syslog file. Alternatively, the "-t <file-name>" option places debugging information into file "<file-name>" using fprintf instead of syslog.
For SunOS version 3.5, the popper program is launched by inetd from /etc/servers. This file does not allow you to specify command line arguments. Therefore, if you want to enable debugging, you can specify a shell script in /etc/servers to be launched instead of popper and in this script call popper with the desired arguments.
You can confirm that the POP server is running on Unix by telneting to port 110 (or 109 if you set it up that way). For example:
%telnet pop.qualcomm.com 110 Trying... Connected to pop.qualcomm.com. Escape character is '^]'. +OK QPOP (version 3.0) at pop.qualcomm.com starting. quit +OK Pop server at pop.qualcomm.com signing off. Connection closed by foreign host.
The server implements several extended commands.
XTND XMIT: Sends a mail message using /usr/lib/sendmail.
XTND XLIST header [num]: Extracts and returns the specified header line for the specified message number. If the "num" parameter is missing, returns the header line for all the messages which are not currently marked for deletion.
XMANGLE: Can be used as a modifier to the TOP, RETR, LIST commands. The result is to condense MIME messages into a single part. For example:
Qpopper also supports the "-no-mime" user name hack. As a way to enable MIME-mangling with clients that do not support XMANGLE, add "-no-mime" to the user name. For example, if the userid is "mary", enter it in the client as "mary-no-mime".
/var/mail mail files /etc/inetd.conf pop program invocation /etc/syslog.conf logging specifications /var/spool/bulls bulletins ~/.popbull largest bulletin number seen by user