Installing and configuring vpopmail

Hi Roberto, thank you so much for the quide. I've managed to create a full-fledged email server that I can send and receive emails. 

However, I've been wondering if have you ever tried using LDAP instead of MySQL. I am trying to create a lab-test that uses LDAP and the options below but I keep getting the error "Segmentation fault (core dumped)"

./configure --enable-qmaildir=/var/qmail/ --enable-qmail-newu=/var/qmail/bin/qmail-newu --enable-qmail-inject=/var/qmail/bin/qmail-inject --enable-qmail-newmrh=/var/qmail/bin/qmail-newmrh --disable-roaming-users --enable-auth-module=ldap --enable-incdir=/usr/local/ldap/include --enable-libdir=/usr/local/ldap/lib --enable-logging=y --enable-clear-passwd --enable-auth-logging --disable-sql-logging --disable-passwd --enable-qmail-ext --disable-learn-passwords --disable-mysql-limits --enable-valias --disable-sql-aliasdomains --enable-domainquotas --enable-defaultdelivery
echo "localhost|389|cn=userx,dc=namex,dc=com|password|dc=namex,dc=com" > ~vpopmail/etc/vpopmail.ldap
sudo chown vpopmail:vchkpw ~vpopmail/etc/vpopmail.ldap
sudo chmod 640 ~vpopmail/etc/vpopmail.ldap

Hi Jeff, no I've never played with LDAP nor with vpopmail nor with qmail.

In this case strace is your friend :-) I'd also disable all additional modules that depends on LDAP (auth-logging valias sql-logging) and add them once you have it working.

Let us know if your LDAP config finally works!

I'm using vpopmail on Debian.  I would still like to see a users password when using vuserinfo but I would like to stop showing failed passwords in the file: /var/log/mail.log.  Is this possible without deleting the clear password column in mysql?

It depends on the logging variable at configuration time

--enable-logging=OPT  Log to syslog: n=nothing, e=errors only (default), y=all attempts, p=errors with passwords, v=verbose (all attempts, with passwords).

I agree with you that the failed passwords shouldn't be shown for security reasons, as we can find there mistypings that are very close to the real passwords. My goal is to log failed attempts so that I can feed fail2ban with them. Maybe we can simply use 

--enable-logging=e

if you find a way to log failed attempts with no pwd shown, please let me know

It doesn't seem to work for me.  Did you drop the clear password column in mysql?  I wonder if that is necessary?

No, it's not important. Both these tests

--enable-logging=e \
--enable-clear-passwd \

and

--enable-logging=e \
--disable-clear-passwd \

give the same result. I have this in my syslog when failing the pwd during smtpd conversation

Sep  7 18:06:26 qt vpopmail[9936]: vchkpw-submission: password fail test2@mydomain:127.0.0.1

Yes, I confirm that using

--enable-logging=e

will log the failure with no pwd

Sep  5 23:11:04 qt vpopmail[10212]: vchkpw-submission: password fail postmaster@mydomain.tld:127.0.0.1

I'll change the configuration option in this guide accordingly

... When I hit the ... mysql -h 192.168.1.108 -u root -p   ... Then the system asking for "Enter password:"  ... HowTo know the password ??

grdt.

It is the root password that you set when you installed your mysql server

Hi Roberto,

imho you have some typos with the filename for the quotawarn message.

The manual says that the quotawarn.msg file should be with a leading dot --> .quotawarn.msg

"quotawarn.msg:X-Comment: Rename/Copy this file to ~vpopmail/domains/.quotawarn.msg, and make appropriate changes"

Otherwise it was not working with my installation.

And maybe you could change the quotawarn limit from 90% to 80% in maildirquota.h 

QUOTA_WARN_PERCENT 80

with your patch because I think 90% is rather late for a warning.

Regards,

Herbert

Thank you. Corrected

while trying to install the following:

apt install build-essential autoconf automake libmariadb-dev default-libmysqlclient-dev

 default-libmysqlclient-dev in Ubuntu 22.04 complains about versioning.

After substituting default-libmysqlclient-dev for libmariadb-dev-compat compiling vpopmail goes without a problem.

Thanks for the advise. So Ubuntu is a bit different from Debian 11, where I tested the above recently

Hi Roberto

While reviewing vpopmail internals, I came across some bugs which annoyed me. I created a patch to fix those:

1 - vdelivermail.c checks spamassassin permissions, instead of maildrop permissions.

2- vopen_smtp_relay() return values corrected, so that open_smtp_relay() can detect and report database connection errors (vmysql.c, voracle.pc, vpgsql.c )

3- vdel_limits() core-dumps if a database connection is not available beforehand. (vmysql.c, voracle.pc )

The patch will cleanly apply on "vpopmail-5.4.33.tar.gz + vpopmail-5.4.33_gcc-10-compat.patch", since I don't use any other patches.

The fixes are pretty straighforward. Feel free to incorporate them into your "roberto_vpopmail-5.4.33.patch".

I'm using PostgreSQL for database and I noticed vpopmail's SQL escape is not good at all. PostgreSQL(and Oracle) follows ANSI SQL standard string literal. Even MySQL has ANSI_QUOTES mode.

https://dev.mysql.com/doc/refman/8.0/en/string-literals.html

Therefore, vpopmail can be vulnerable to SQL injection. I've requested CVE for this.

This is a quick and dirty patch to disable injections.

diff --git a/vpopmail.c b/vpopmail.c
index a2bdc0b..a7aa9ca 100644
--- a/vpopmail.c
+++ b/vpopmail.c
@@ -3984,8 +3984,6 @@ char *maildir_to_email (const char *maildir)
return email;
}

-/* escape these characters out of strings: ', \, " */
-#define ESCAPE_CHARS "'\"\\"

/* qnprintf - Custom version of snprintf for creating SQL queries with escaped
* strings.
@@ -4113,9 +4111,25 @@ int qnprintf (char *buffer, size_t size, const char *format, ...)

}
while (*s != '\0') {
- if (strchr (ESCAPE_CHARS, *s) != NULL) {
- if (++printed < (int)size) *b++ = '\\';
- }
+ /*
+ Standard SQL literal string requires '(single quote) escape. e.g. It's => It''s
+ Standard SQL identifier string requires "(double quote) escape. e.g. It"s => It""s
+ Original qnprintf() was using #define ESCAPE_CHARS "'\"" and escape meta by '\\' which is invalid and useless for standard SQL.
+ Since qnprintf() may be used for SQL identifers, both ' and " are escaped as literal/identifier for better mitigation.
+ MySQL may escape ' by \, so \ is escaped as well. This is the reason why database specific escape function must be used.
+ */
+ switch (*s) {
+ case '\'':
+ if (++printed < (int)size) *b++ = '\'';
+ break;
+ case '"':
+ if (++printed < (int)size) *b++ = '"';
+ break;
+ case '\\':
+ if (++printed < (int)size) *b++ = '\\';
+ break;
+ default:
+ }
if (++printed < (int)size) *b++ = *s;
s++;
}

This may result in broken string (e.g. pw_clear_passwd), but it much better than injections.

Enabling ANSI_QUOTES in mariadb-10.5 throws qmailadmin into a segfault both when entering quotes in any field and when not... Did you try to talk to vpopmail also with qmailadmin?

Edit: vpopmail is unusable. Some examples

# vuserinfo -D sagredo.eu        
vmysql: sql error[5]: Unknown column 'sagredo.eu' in 'where clause'

# telnet 0 89             
Trying 0.0.0.0... 
Connected to 0. 
Escape character is '^]'. 
+OK  
login myusername@mydomain mypwd
-ERR 8.206 Invalid Login

Hi,

Patrice who works in my company has added SQLite support to Vpopmail. I am looking for volunteers to test this version. :-) Patrice merged the patches from Roberto and the patches from the FreeBSD port.

The source code is available on GitHub :

https://github.com/brunonymous/vpopmail

You can see the changes made:

https://github.com/brunonymous/vpopmail/blob/main/ChangeLog

Feel free to comment or report bugs.

Bruno

Thanks a lot for sharing :-) The changelog seems to be very very interesting

I'll have a look in the following days and test it

PS you may want to add this modification I did a few days ago to vmysql.c, which solves a compilation break on debian 11 / gcc-10

+#ifndef MANY_DOMAINS 
+#ifdef SQL_ALIASDOMAINS 
int vcreate_pwd_query_proc() 
{ 
  char sql_file[256], command[256]; 
@@ -1913,8 +2005,7 @@ 
 
  fclose(sql); 
} 
+#endif 
+#endif

im missing file  smtp.tmp in directory ~vpopmail/etc/
i think vpopmail didnt installed corretly but i dont get any error :(

any ideas?

You can create it manually with a plain text editor

from tutorial

cd /usr/local/src/vpopmail-5.4.33/vusaged
./configure
make
cp -f vusaged /home/vpopmail/bin
cp -f etc/vusaged.conf /home/vpopmail/etc

command make didnt work 

make: *** No objects specified and no makefile found. Stop.

but in folder i have a makefile

-rw-r--r-- 1 root root 2053 lut 28 2011 Makefile.in

I think you are in the wrong directory

which directory should it be?

mine is /usr/local/src/vpopmail-5.4.33/vusaged

It works here... I'd suggest to to download again and recompile

Hi

i had a problem when execute

make install-strip

vauth.c: In function ‘vcreate_pwd_query_proc’:
vauth.c:1906:3: error: ‘MYSQLBIN’ undeclared (first use in this function); did you mean ‘MYSQL_BIND’?
1906 | MYSQLBIN, MYSQL_UPDATE_SERVER, MYSQL_UPDATE_PORT, MYSQL_UPDATE_DATABASE,
| ^~~~~~~~
| MYSQL_BIND
vauth.c:1906:3: note: each undeclared identifier is reported only once for each function it appears in
vauth.c: In function ‘vauth_getall’:
vauth.c:752:13: warning: ‘strncat’ specified bound 2048 equals destination size [-Wstringop-overflow=]
752 | strncat( SqlBufRead, " order by pw_name", SQL_BUF_SIZE);
| ^~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
make[2]: *** [Makefile:636: libvpopmail_a-vauth.o] Error 1
make[2]: Leaving directory '/usr/local/src/vpopmail-5.4.33'
make[1]: *** [Makefile:714: install-recursive] Error 1
make[1]: Leaving directory '/usr/local/src/vpopmail-5.4.33'
make: *** [Makefile:1037: install-strip] Błąd 2

what do i miss?

i installed

mysql-server 8.0
mysql-client 8.0
libmysqlclient-dev
libmysqlclient21

The new combined patch of today (Mar 17, 2022) should solve this compilation problem

I am having the same problem on Debian Buster.  Using this config:

./configure   \
        --enable-maildrop-prog=/usr/bin/maildrop \
        --enable-onchange-script \
        --enable-qmaildir=/var/qmail/ \
        --enable-qmail-newu=/var/qmail/bin/qmail-newu \
        --enable-qmail-inject=/var/qmail/bin/qmail-inject \
        --enable-qmail-newmrh=/var/qmail/bin/qmail-newmrh \
        --disable-roaming-users \
        --enable-auth-module=mysql \
        --enable-incdir=/usr/include/mysql \
        --enable-libdir=/usr/lib64 \
        --enable-logging=p \
        --enable-auth-logging \
        --enable-sql-logging \
        --disable-valias \
        --enable-qmail-ext \
        --enable-learn-passwords \
        --enable-mysql-limits \
        --enable-sql-aliasdomains \
        --enable-defaultdelivery

Hi, can you post the error you get? 

did you solve installing the packeges listed below?

finally I solved as well. My system is ubuntu server 18.04 I've executed:

apt-get install default-libmysqlclient-dev default-libmysqld-dev

thank you. The same for me in a debian server where libmysqlclient was missing. Now I added this to the current page

I have the same problem, and I tried to recompile vpopmail and re-patch but the error persists

Hi, can you post your configure command, please?

Do u mean command ./configure ?

I saw your configure results. How did you patch vpopmail? Did you get any errors when patching?

i used command patch -p1 < ../roberto_vpopmail-5.4.33.patch

and resort:

patching file Makefile.am
patching file configure.in
patching file doc/README.defaultdelivery
patching file doc/README.dovecot-pwd-query
patching file doc/README.sql-aliasdomains
patching file dovecot/pwd-query_disable-many-domains.sql
patching file vmysql.c
patching file vmysql.h
patching file vpgsql.c
patching file vpopmail.c
patching file vpopmail.h
patching file vsavealiasdomains.c

no errors

I can't reproduce your configure results that you posted before.

Can you post the configure command that you are using, please?

Solved

i repatched vpopmail i again execute make install-strip and now it return no errors

thanks you :)

Hi,

when i execute

make install-strip

i get a messenge:

make[2]: Exit the directory '/downloads/vpopmail-5.4.33/cdb'
make[2]: Entering the directory '/downloads/vpopmail-5.4.33'.
rm -f libvpopmail.a
ar cru libvpopmail.a libvpopmail_a-vpopmail.o libvpopmail_a-md5.o libvpopmail_a-bigdir.o libvpopmail_a-vauth.o libvpopmail_a-file_lock.o libvpopmail_a-vpalias.o libvpopmail_a-seek. o libvpopmail_a-vlimits.o libvpopmail_a-maildirquota.o libvpopmail_a-vutil.o libvpopmail_a-vlistlib.o libvpopmail_a-backfill.o libvpopmail_a-client.o libvpopmail_a-conf.o libvpopmail_a-ippp.o cdb/*.o
ar: `u' modifier ignored since `D' is the default (see `U')
ranlib libvpopmail.a
gcc -o vchkpw vchkpw.o md5.o hmac_md5.o libvpopmail.a -Xlinker -R -Xlinker /usr/lib/ -L/usr/lib/ -lmysqlclient -lz -lm -lcrypt
/usr/bin/ld: cannot find -lz
collect2: error: ld returned 1 exit status
Makefile:548: commands for object 'vchkpw' failed
make[2]: *** [vchkpw] Error 1
make[2]: Exit directory '/downloads/vpopmail-5.4.33'.
Makefile:714: commands for object 'all-recursive' failed
make[1]: *** [all-recursive] Error 1
make[1]: Leaving directory '/downloads/vpopmail-5.4.33'.
Makefile:424: commands for object 'all' failed
make: *** [all] Error 2

any ideas?

it seems that you are missing the zlib package...

I'm doinig a fresh installation, decided to compile with --enable-clear-passwd and am running into the following problem:

# /home/vpopmail/bin/vadduser user@mydomain.tld '%#RxtraMtbx#37%'
vmysql: sql error[2]: Data too long for column 'pw_clear_passwd' at row 1
Failed while attempting to add user to auth backend
Error: no authentication database connection

Using "%#" or "%+" or the like doesn't seem possible, but "%R" works.

OS: OpenSUSE 15.2
DB: MariaDB 10.4.17
Server-Character-Set: UTF-8 Unicode (utf8mb4)
Database "vpopmail" was created using collation "utf8mb4_general_ci", which is the default for standard MariaDB installation.

I'm ok with changing passwords for existing users (have to import a couple of existing domains) but am afraid there may be other issues with passwords and authentication.

Or is it just the clear password which is the problem and authentication with whatever client will be ok even when passwords like '%RxtraMT#66%' are used?

Hi, I tested that password and it was accepted here... 

which vpopmail version and patch?

PS tested both with mariadb-10.5.9 (query from command line) and mariadb-10.0.0.112

Hi and thx for the quick reply.

vpopmail is v5.4.33, as well is the patch.

Did download and patch as directed above:

wget https://notes.sagredo.eu/files/qmail/tar/vpopmail-5.4.33.tar.gz
wget https://notes.sagredo.eu/files/qmail/patches/vpopmail/roberto_vpopmail-5.4.33.patch
tar xzf vpopmail-5.4.33.tar.gz
cd vpopmail-5.4.33
chown -R root.root .
patch -p1 < ../roberto_vpopmail-5.4.33.patch

Language of the OS installaition is German.

status of MariaDB-server:

MariaDB [(none)]> status;
--------------
mysql Ver 15.1 Distrib 10.4.17-MariaDB, for Linux (x86_64) using EditLine wrapper

Connection id: 134
Current database: vpopmail
Current user: root@localhost
SSL: Not in use
Current pager: less
Using outfile: ''
Using delimiter: ;
Server: MariaDB
Server version: 10.4.17-MariaDB MariaDB package
Protocol version: 10
Connection: Localhost via UNIX socket
Server characterset: utf8mb4
Db characterset: utf8mb4
Client characterset: utf8
Conn. characterset: utf8
UNIX socket: /run/mysql/mysql.sock
Uptime: 1 day 20 hours 42 min 5 sec

Also recompile with --disable-clear-passwd doesn't make any difference. The error stays the same, even though the password is not stored in the database in clear text.

Unfortunately I've no idea at the moment, a I can't reproduce the issue...

Hi Roberto!

Recently I switched to the SQL driver and of course ran into the aliasdomains issue, so today I gave your patch a shot using a new alpine-3.13 build.

However, it runs into a snag:

gcc -o vchkpw vchkpw.o md5.o hmac_md5.o libvpopmail.a -Xlinker -R -Xlinker /usr/lib -L/usr/lib -lmysqlclient -lz -lm -lcrypt 
/usr/lib/gcc/x86_64-alpine-linux-musl/10.2.1/../../../../x86_64-alpine-linux-musl/bin/ld: libvpopmail.a(libvpopmail_a-vpopmail.o): in function `vdeldomain':
vpopmail.c:(.text+0x1117): undefined reference to `vdelete_sql_aliasdomain'
/usr/lib/gcc/x86_64-alpine-linux-musl/10.2.1/../../../../x86_64-alpine-linux-musl/bin/ld: libvpopmail.a(libvpopmail_a-vpopmail.o): in function `vaddaliasdomain': 
vpopmail.c:(.text+0x760c): undefined reference to `vcreate_sql_aliasdomain'
collect2: error: ld returned 1 exit status
make[2]: *** [Makefile:549: vchkpw] Error 1
make[2]: Leaving directory '/usr/src/vpopmail/vpopmail-5.4.33'

This is after running autoreconf.

I did also apply the GCC 10 patch, because without it the compilation broke on MYSQL definitions.

Suggestions?

Hi Wouter!

I thought I have corrected this compilation issue in the feb 15 patch... can you confirm that you downloaded this latest version marked as 2021.02.15? Just look at the first line of the patch file

which gcc version?

PS gcc-10 compat patch is already included into the latest sql-aliasdomains patch

... Do I need to have MySQL or MariaDB, installed before I run Your step "Installing and configuring vpopmail" ?

grdt.

One of the two. It does not make any difference

Hi,

I try compile vpopmail with pgsql support on alpine 12 and I get error:

make[2]: Entering directory '/usr/src/vpopmail-5.4.33'
gcc -I. -I/usr/include -I. -fPIC -c -o libvpopmail_a-vauth.o `test -f 'vauth.c' || echo './'`vauth.c
vauth.c: In function 'vauth_deldomain':
vauth.c:395:15: error: 'sqlBufUpdate' undeclared (first use in this function); did you mean 'SqlBufUpdate'?
qnprintf( sqlBufUpdate, SQL_BUF_SIZE,
^~~~~~~~~~~~
SqlBufUpdate
vauth.c:395:15: note: each undeclared identifier is reported only once for each function it appears in
vauth.c:398:19: warning: implicit declaration of function 'PGresultStatus'; did you mean 'PQresultStatus'? [-Wimplicit-function-declaration]
if( !pgres || PGresultStatus(pgres)!=PGRES_COMMAND_OK) {
^~~~~~~~~~~~~~
PQresultStatus
vauth.c: In function 'vauth_deluser':
vauth.c:448:15: error: 'sqlBufUpdate' undeclared (first use in this function); did you mean 'SqlBufUpdate'?
qnprintf( sqlBufUpdate, SQL_BUF_SIZE,
^~~~~~~~~~~~
SqlBufUpdate
vauth.c: In function 'vauth_getall':
vauth.c:525:7: warning: 'strncat' specified bound 2048 equals destination size [-Wstringop-overflow=]
strncat( SqlBufRead, " order by pw_name", SQL_BUF_SIZE);
^~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
make[2]: *** [Makefile:636: libvpopmail_a-vauth.o] Error 1
make[2]: Leaving directory '/usr/src/vpopmail-5.4.33'
make[1]: *** [Makefile:714: all-recursive] Error 1
make[1]: Leaving directory '/usr/src/vpopmail-5.4.33'
make: *** [Makefile:424: all] Error 2

Can somebody tell what I should do to fix this problem?

You have compilation breaks because vpopmail is not compatible with the new gcc-10.

Try this patch (you may want to apply only the changes to vpgsql.c): https://notes.sagredo.eu/files/qmail/patches/vpopmail/vpopmail-5.4.33_gcc-10-compat.patch

Let me know if it works

works well

Hi Robert

I have an extensive valias table, and I recently added sieve filtering. 

As mentioned above in the thread between you and Eric, dovecot-lda doesn't respect the vpopmail.valias entries in the database, and instead relies on .qmail-alias files. That meant that for mail to be delivered to my aliases, I either needed to create a .qmail-alias file for each one (which would be a mess), or keep using vdelivermail and skip sieve filtering.

As an alternative to Eric's solution of creating .qmail-alias files, you can --enable-valias and add an entry for the destination account to the valias table and keep the delivery agent set to vdelivermail. 

This is my .qmail-default file (I prefer to use bounce)

| /home/vpopmail/bin/vdelivermail '' bounce-no-mailbox

To add the valias to the database table, I use this: (replacing mailboxname and example.com as appropriate)

INSERT INTO `valias` (`id`, `alias`, `domain`, `valias_line`) 
VALUES (NULL, 'mailboxname', 'example.com', '|/var/qmail/bin/preline -f /usr/local/dovecot/libexec/dovecot/deliver -d $EXT@$USER');

Hopefully this helps someone else out there.

If I had more time, I'd look at  patching dovecot to use the valias table. Maybe one day.

Hi Michael, thanks for your contribution, it's very much appreciated.

I think I am missing something on how things work in your configuration. You are using vdelivermail in your .qmail-default so you are giving up on sieve filters and vdelivermail can work well with valiases even without your hack... what I am missing?

Hi Robert

I was trying to show is that you can use the valias table from vpopmail and still make sieve filtering work, without having to set up any .qmail-alias files.

The existing instructions and comments suggest you had to choose one or the other.

I don't understand how  you can have sieve working if you have vdelivermail in your .qmail-default

Ah, that's the magic: I have an entry in the valias table for my actual mailbox name, that tells it to use dovecot's deliver program.

So:

1. I have alias@example.com that resolves to michael@example.com
2. And an entry in the valias table for michael@example.com, that tells vdelivermail to call dovecot's deliver program (which will process the sieve rules).

Now, when an email for alias@example.com arrives, vdelivermail finds the alias michael@example.com and tells vdelivermail to deliver to that address. Vdelivermail then finds my alias for michael@example.com and calls dovecot's deliver to complete the delivery (which also processes the sieve rules).

Hopefully that's a bit clearer?

Michael

That's clear now, even though this can be a solution suitable just for servers with a small bunch of users and for administrators who know what they are doing, otherwise patching vpopmail and/or dovecot would be needed. Anyway it's good to know. Thank you 

Hi Mr Roberto,

i am facing an issue while running this command "make install-strip", below is the message:

/usr/lib64/gcc/x86_64-suse-linux/10/../../../../x86_64-suse-linux/bin/ld: libvpopmail.a(libvpopmail_a-vauth.o):(.bss+0x0): multiple definition of `MYSQL_READ_SERVER'; vconvert.o:(.bss+0x0): first defined here
/usr/lib64/gcc/x86_64-suse-linux/10/../../../../x86_64-suse-linux/bin/ld: libvpopmail.a(libvpopmail_a-vauth.o):(.bss+0x8): multiple definition of `MYSQL_READ_PORT'; vconvert.o:(.bss+0x8): first defined here
/usr/lib64/gcc/x86_64-suse-linux/10/../../../../x86_64-suse-linux/bin/ld: libvpopmail.a(libvpopmail_a-vauth.o):(.bss+0x10): multiple definition of `MYSQL_READ_SOCKET'; vconvert.o:(.bss+0x10): first defined here
/usr/lib64/gcc/x86_64-suse-linux/10/../../../../x86_64-suse-linux/bin/ld: libvpopmail.a(libvpopmail_a-vauth.o):(.bss+0x18): multiple definition of `MYSQL_READ_USER'; vconvert.o:(.bss+0x18): first defined here
/usr/lib64/gcc/x86_64-suse-linux/10/../../../../x86_64-suse-linux/bin/ld: libvpopmail.a(libvpopmail_a-vauth.o):(.bss+0x20): multiple definition of `MYSQL_READ_PASSWD'; vconvert.o:(.bss+0x20): first defined here
/usr/lib64/gcc/x86_64-suse-linux/10/../../../../x86_64-suse-linux/bin/ld: libvpopmail.a(libvpopmail_a-vauth.o):(.bss+0x28): multiple definition of `MYSQL_READ_DATABASE'; vconvert.o:(.bss+0x28): first defined here
/usr/lib64/gcc/x86_64-suse-linux/10/../../../../x86_64-suse-linux/bin/ld: libvpopmail.a(libvpopmail_a-vauth.o):(.bss+0x30): multiple definition of `MYSQL_UPDATE_SERVER'; vconvert.o:(.bss+0x30): first defined here
/usr/lib64/gcc/x86_64-suse-linux/10/../../../../x86_64-suse-linux/bin/ld: libvpopmail.a(libvpopmail_a-vauth.o):(.bss+0x38): multiple definition of `MYSQL_UPDATE_PORT'; vconvert.o:(.bss+0x38): first defined here
/usr/lib64/gcc/x86_64-suse-linux/10/../../../../x86_64-suse-linux/bin/ld: libvpopmail.a(libvpopmail_a-vauth.o):(.bss+0x40): multiple definition of `MYSQL_UPDATE_SOCKET'; vconvert.o:(.bss+0x40): first defined here
/usr/lib64/gcc/x86_64-suse-linux/10/../../../../x86_64-suse-linux/bin/ld: libvpopmail.a(libvpopmail_a-vauth.o):(.bss+0x48): multiple definition of `MYSQL_UPDATE_USER'; vconvert.o:(.bss+0x48): first defined here
/usr/lib64/gcc/x86_64-suse-linux/10/../../../../x86_64-suse-linux/bin/ld: libvpopmail.a(libvpopmail_a-vauth.o):(.bss+0x50): multiple definition of `MYSQL_UPDATE_PASSWD'; vconvert.o:(.bss+0x50): first defined here
/usr/lib64/gcc/x86_64-suse-linux/10/../../../../x86_64-suse-linux/bin/ld: libvpopmail.a(libvpopmail_a-vauth.o):(.bss+0x58): multiple definition of `MYSQL_UPDATE_VPORT'; vconvert.o:(.bss+0x58): first defined here
/usr/lib64/gcc/x86_64-suse-linux/10/../../../../x86_64-suse-linux/bin/ld: libvpopmail.a(libvpopmail_a-vauth.o):(.bss+0x60): multiple definition of `MYSQL_UPDATE_DATABASE'; vconvert.o:(.bss+0x60): first defined here
collect2: error: ld returned 1 exit status
make[2]: *** [Makefile:552: vconvert] Error 1
make[2]: Leaving directory '/usr/local/src/vpopmail-5.4.33'
make[1]: *** [Makefile:714: install-recursive] Error 1
make[1]: Leaving directory '/usr/local/src/vpopmail-5.4.33'
make: *** [Makefile:1037: install-strip] Error 2

what shoud I do next? any settings need to be done in vpopmail folder?

Thank you

Regards, Kenny

Today I released two patches, one for qmail and another for vpopmail, which solve these compilation breaks.

No idea... any suspicious message from configure & make commands?

Hi Mr Roberto,

my Linux is openSUSE Tumbleweed

mysql is MariaDB version 10.4.14

while running the configure command no issue, the summary as below:

vpopmail 5.4.33
Current settings

vpopmail directory = /home/vpopmail
domains directory = /home/vpopmail/domains
uid = 89
gid = 89
roaming users = OFF --disable-roaming-users (default)
password learning = ON --enable-learn-passwords
md5 passwords = ON --enable-md5-passwords (default)
file locking = ON --enable-file-locking (default)
vdelivermail fsync = OFF --disable-file-sync (default)
make seekable = ON --enable-make-seekable (default)
clear passwd = ON --enable-clear-passwd (default)
user dir hashing = ON --enable-users-big-dir (default)
address extensions = ON --enable-qmail-ext
ip alias = OFF --disable-ip-alias-domains (default)
onchange script = OFF --disable-onchange-script (default)
domain quotas = OFF --disable-domainquotas (default)
auth module = mysql --enable-auth-module=mysql
mysql replication = OFF --disable-mysql-replication (default)
sql logging = ON --enable-sql-logging
mysql limits = OFF --disable-mysql-limits (default)
SQL valias table = OFF --disable-valias (default)
auth inc = -I/usr/include/mysql
auth lib = -Xlinker -R -Xlinker /usr/lib64/mysql -L/usr/lib64/mysql -lmysqlclient -lz -lm
system passwords = OFF --disable-passwd (default)
pop syslog = show failed attempts with clear text password --enable-logging=p
auth logging = ON --enable-auth-logging (default)
all domains in one SQL table = --enable-many-domains (default)
spamassassin = OFF --disable-spamassassin (default)
maildrop = OFF --disable-maildrop (default)

but when i tried to run "make install-strip", the error message pop up :

gcc -o vdominfo vdominfo.o libvpopmail.a -Xlinker -R -Xlinker /usr/lib64/mysql -L/usr/lib64/mysql -lmysqlclient -lz -lm -lcrypt
gcc -o vconvert vconvert.o libvpopmail.a -Xlinker -R -Xlinker /usr/lib64/mysql -L/usr/lib64/mysql -lmysqlclient -lz -lm -lcrypt
/usr/lib64/gcc/x86_64-suse-linux/10/../../../../x86_64-suse-linux/bin/ld: libvpopmail.a(libvpopmail_a-vauth.o):(.bss+0x0): multiple definition of `MYSQL_READ_SERVER'; vconvert.o:(.bss+0x0): first defined here
/usr/lib64/gcc/x86_64-suse-linux/10/../../../../x86_64-suse-linux/bin/ld: libvpopmail.a(libvpopmail_a-vauth.o):(.bss+0x8): multiple definition of `MYSQL_READ_PORT'; vconvert.o:(.bss+0x8): first defined here
/usr/lib64/gcc/x86_64-suse-linux/10/../../../../x86_64-suse-linux/bin/ld: libvpopmail.a(libvpopmail_a-vauth.o):(.bss+0x10): multiple definition of `MYSQL_READ_SOCKET'; vconvert.o:(.bss+0x10): first defined here
/usr/lib64/gcc/x86_64-suse-linux/10/../../../../x86_64-suse-linux/bin/ld: libvpopmail.a(libvpopmail_a-vauth.o):(.bss+0x18): multiple definition of `MYSQL_READ_USER'; vconvert.o:(.bss+0x18): first defined here
/usr/lib64/gcc/x86_64-suse-linux/10/../../../../x86_64-suse-linux/bin/ld: libvpopmail.a(libvpopmail_a-vauth.o):(.bss+0x20): multiple definition of `MYSQL_READ_PASSWD'; vconvert.o:(.bss+0x20): first defined here
/usr/lib64/gcc/x86_64-suse-linux/10/../../../../x86_64-suse-linux/bin/ld: libvpopmail.a(libvpopmail_a-vauth.o):(.bss+0x28): multiple definition of `MYSQL_READ_DATABASE'; vconvert.o:(.bss+0x28): first defined here
/usr/lib64/gcc/x86_64-suse-linux/10/../../../../x86_64-suse-linux/bin/ld: libvpopmail.a(libvpopmail_a-vauth.o):(.bss+0x30): multiple definition of `MYSQL_UPDATE_SERVER'; vconvert.o:(.bss+0x30): first defined here
/usr/lib64/gcc/x86_64-suse-linux/10/../../../../x86_64-suse-linux/bin/ld: libvpopmail.a(libvpopmail_a-vauth.o):(.bss+0x38): multiple definition of `MYSQL_UPDATE_PORT'; vconvert.o:(.bss+0x38): first defined here
/usr/lib64/gcc/x86_64-suse-linux/10/../../../../x86_64-suse-linux/bin/ld: libvpopmail.a(libvpopmail_a-vauth.o):(.bss+0x40): multiple definition of `MYSQL_UPDATE_SOCKET'; vconvert.o:(.bss+0x40): first defined here
/usr/lib64/gcc/x86_64-suse-linux/10/../../../../x86_64-suse-linux/bin/ld: libvpopmail.a(libvpopmail_a-vauth.o):(.bss+0x48): multiple definition of `MYSQL_UPDATE_USER'; vconvert.o:(.bss+0x48): first defined here
/usr/lib64/gcc/x86_64-suse-linux/10/../../../../x86_64-suse-linux/bin/ld: libvpopmail.a(libvpopmail_a-vauth.o):(.bss+0x50): multiple definition of `MYSQL_UPDATE_PASSWD'; vconvert.o:(.bss+0x50): first defined here
/usr/lib64/gcc/x86_64-suse-linux/10/../../../../x86_64-suse-linux/bin/ld: libvpopmail.a(libvpopmail_a-vauth.o):(.bss+0x58): multiple definition of `MYSQL_UPDATE_VPORT'; vconvert.o:(.bss+0x58): first defined here
/usr/lib64/gcc/x86_64-suse-linux/10/../../../../x86_64-suse-linux/bin/ld: libvpopmail.a(libvpopmail_a-vauth.o):(.bss+0x60): multiple definition of `MYSQL_UPDATE_DATABASE'; vconvert.o:(.bss+0x60): first defined here
collect2: error: ld returned 1 exit status
make[2]: *** [Makefile:552: vconvert] Error 1
make[2]: Leaving directory '/usr/local/src/vpopmail-5.4.33'
make[1]: *** [Makefile:714: install-recursive] Error 1
make[1]: Leaving directory '/usr/local/src/vpopmail-5.4.33'
make: *** [Makefile:1037: install-strip] Error 2

do we need to define MYSQL data in vmysql.h?

thank you

I didn't test it against mariadb-10.4, but I would try to declare with #ifndef those variables in mysql.h

Hi Mr Roberto,

i deleted the vpopmail setup folder and extracted the zip file again, then this time i just run a "./configure" without any options and then "make install-strip", this time no error came out... then i tried to run again "./configure" with options then "make install-strip" .. no more error popup.

i continued your steps until netqmail setup which mean i done all the Patching steps. Now i hit another error, while i run "make setup check" in netqmail-1.06 folder, i got below error:

./load qmail-qmtpd rcpthosts.o control.o constmap.o \
received.o date822fmt.o now.o qmail.o cdb.a fd.a wait.a \
datetime.a open.a getln.a sig.a case.a env.a stralloc.a \
alloc.a substdio.a error.a str.a fs.a auto_qmail.o
/usr/lib64/gcc/x86_64-suse-linux/10/../../../../x86_64-suse-linux/bin/ld: received.o:/usr/local/src/netqmail-1.06/received.c:24: multiple definition of `relayclient'; qmail-qmtpd.o:/usr/local/src/netqmail-1.06/qmail-qmtpd.c:76: first defined here
/usr/lib64/gcc/x86_64-suse-linux/10/../../../../x86_64-suse-linux/bin/ld: received.o:/usr/local/src/netqmail-1.06/received.c:25: multiple definition of `relayclientlen'; qmail-qmtpd.o:/usr/local/src/netqmail-1.06/qmail-qmtpd.c:77: first defined here
collect2: error: ld returned 1 exit status
make: *** [Makefile:1591: qmail-qmtpd] Error 1

any idea?

Thank you

I suppose you are compiling with gcc 10. Look at this https://gcc.gnu.org/gcc-10/porting_to.html

It seems the same kind of error of vpopmail compilation.. did you try to download the sources, patching and compiling again?

Hi Mr Roberto,

yes, i have redownloaded again the netqmail-1.06 file from your source and also the original source, then patch again.. but no luck.. both also same issue... what i have done, i just patch the file which only with smtp-auth, qmail-tls and force-tls. then it's works.

After that, when i tried to start Qmail and i found that the Daemontool was not start. for OpenSuse Tumbleweed, no more /etc/inittab use in the system, so what i have done, i need to ln that svscanboot file to /etc/rc.d/ then add it as auto start then completed Qmail Setup.

Thanks for the help.

In the event of a systemd linux it is sufficient to start all services by rc.local, which should be created as a service in systemd

May need to fix suid permissions for vpopmail's vchkpw after compiling to avoid auth errors.

eg

chmod ug+s /home/vpopmail/bin/vchkpw

It wouldn't be better to run qmail-smtpd as vpopmail:vchkpw instead of letting everyone (not only qmail-smtpd) execute vchkpw with the owner's priviledges?

Hello Roberto,

I think I've found a small error in your guide: the latest available libev version is 4.27 and not 4.22: http://dist.schmorp.de/libev/libev-4.27.tar.gz

Ciao !

Hello,

For some reason, vpopmail valias (i.e., storing valiases inside the MySQL database) doesn't work with chkuser, even if we configure both to do so. With valiases stored inside the database, vchkuser will reject emails sent to aliases (no mailbox). At least with me, chkuser only recognized valiases using the dot-qmail format. So, make sure to compile vpopmail with --disable-valias and --enable-qmail-ext as instructed, and remember that you will need to configure dot-qmail files for your aliases in the /home/vpopmail/domain/DOMAINNAME directory.

I get this message during the configure phase of vusage and can't progress from there:

configure: error: No vauth_getpw in libvpopmail

So I am proceeding without implementing vusage (I also don't really acare about user quotas) so I hioe this will still work

I faced this issue myself a couple of days ago on a Debian 11. Unfortunately the Luca's fix below didn't help.

I realized that, for unknown reasons, the configure is not linking the libmysqlclient libraries. But patching the configure not to break at that point results in a successfull compilation when make is runned (it finds libmysqlclient). I have vusaged running apparently with no issues for now.

Have a look to this patch

Same here, OS: Ubuntu 18.04

look here (first item on google!) http://vchkpw.inter7.narkive.com/ftLwnnZq/vusaged-compile-error

Anyway everything will work even without vusaged

Which unfortunately doesn't provide a solution...

If anyone managed to workaround this issue plz share here

Try this:

LIBS=`head -1 /home/vpopmail/etc/lib_deps` ./configure --with-vpopmail=/home/vpopmail

it worked for me

Hi Roberto,

As far I know and dovecot-lda is concerned it is not the presence of the configuration flag --enable-valias that hinders dovecot LDA from delivering to aliases it is the absence of a .qmail-'alias' alias file

Eric

if the aliases are stored in the database, why the .qmail-alias is needed?

Hi Roberto,

I was only trying to point out that dovecot-lda is not affected by the --disable-valias/--enable-valias flags. On the other hand vdelivermail is affected and will use dot-qmail files in one case and the virtual alias database in the other case.
Dovecot-lda and --enable-valias can live quite happily together as long as you use dot-qmail files for you aliases.

Eric

I agree. I will clarify this in the lines above

Hi Roberto!

The libev 4.11 not exits, this changed to 4.22, at link http://dist.schmorp.de/libev/libev-4.22.tar.gz

First of all, Roberto - THANK YOU for taking the time to put this resource together! I've formerly used JMS' tutorials etc but that was years ago. Once qmail etc is set up and working, you almost never have to touch it again except for security updates or maintenance so it's easy to forget the inner workings!

I have everything going so far but haven't been able to get passed the testing stages; When I telnet to 587, the logs for qmail-submission gives me this:

warning: dropping connection, unable to read /home/vpopmail/etc/tcp.submission.cdb: access denied 

Can you please confirm what the perms are supposed to be? Right now they're owned by root at 644. Any pointers on this would be greatly appreciated!!

Hi Wlad,

yes the priviledges are correct. It's strange because every user should be able to read that file.. 

Anyway, who is the user who runs qmail-smtpd and qmail-submission? If you migrated from JMS configuration you may have to check/adjust the priviledges of the ~vpopmail/ dir.  In particular I suggest to check if the vpopmail:vchkpw userIDs are 89:89 (if I remember well JMS configuration uses non standard IDs for users..). 

Ok... I feel stupid. ~vpopmail main dir was owned by root:root grrrr. Works now. ALL those dang hours - that happens when it's late, going on no sleep :) Again Roberto, thank you for this great guide! Lots of Coffee incoming to you haha

ps -ef|grep qmail
root       606  1831  0 11:17 pts/0    00:00:00 grep --color=auto qmail
root      1865  1863  0 Jan08 pts/0    00:00:00 supervise qmail-smtpd
root      1871  1863  0 Jan08 pts/0    00:00:00 supervise qmail-send
root      1875  1863  0 Jan08 pts/0    00:00:00 supervise qmail-submission
qmaill    1877  1866  0 Jan08 pts/0    00:00:00 /usr/local/bin/multilog t s16000000 n200 /var/log/qmail/smtpd
qmaill    1879  1872  0 Jan08 pts/0    00:00:00 /usr/local/bin/multilog t s16000000 n200 /var/log/qmail/send
qmaill    1881  1874  0 Jan08 pts/0    00:00:00 /usr/local/bin/multilog t /var/log/qmail/vpopmaild
qmaill    1884  1876  0 Jan08 pts/0    00:00:00 /usr/local/bin/multilog t s16000000 n200 /var/log/qmail/submission
qmails   16495  1871  0 02:13 pts/0    00:00:00 qmail-send
vpopmail 16497  1865  0 02:13 pts/0    00:00:00 /usr/local/bin/tcpserver -v -H -R -l 0 -x /home/vpopmail/etc/tcp.smtp.cdb -c 20 -u 89 -g 89 0 25 /var/qmail/bi                                                                    n/qmail-smtpd
vpopmail 16499  1875  0 02:13 pts/0    00:00:00 /usr/local/bin/tcpserver -v -H -R -l 0 -x /home/vpopmail/etc/tcp.submission.cdb -c 20 -u 89 -g 89 0 587 /var/q                                                                    mail/bin/qmail-smtpd /home/vpopmail/bin/vchkpw /bin/true
root     16508 16495  0 02:13 pts/0    00:00:00 qmail-lspawn | /home/vpopmail/bin/vdelivermail '' bounce-no-mailbox
qmailr   16509 16495  0 02:13 pts/0    00:00:00 qmail-rspawn
qmailq   16510 16495  0 02:13 pts/0    00:00:00 qmail-clean
qmails   16511 16495  0 02:13 pts/0    00:00:00 qmail-todo
qmailq   16512 16495  0 02:13 pts/0    00:00:00 qmail-clean

Wow long/ugly past - but all ownerships seem fine from looking at this and I'm perplexed. As for JMS, that was years ago on a separate server. I founds this guide last night and like the fact that things can be updated with the most current - in regards to paches etc. Versions of other sources:

Vpopmail: 5.4.33,
libev: 4.22
netqmail: 1.06
libsrs2: 1.0.18
libdomainkeys: 0.69

And yes, id -g/-u vpopmail:vchkpw are both 89; I've turned every kind of permission based type of app off (apparmor for instance), every firewall etc etc with no change. I got no errors during compilation and did everything step by step and in order on this brand new server running ubuntu with multiple IPs. Speaking of IPs that was something I was going to ask about as well on how to specifically bind 587/25 to a specific IP but as long as MX records are set up properly there shouldn't be a need for that.

Roberto, sorry about the long post - just trying to figure this one out as everything seems to be running fine and like you said perms are right...

Hello,

Some clients change their passwords with non-ascii char like "?š??žýáíé", but these characters are broken in MySQL as clear passwords. Any idea what charset set to Mysql db or how to set vpopmail to use UTF-8? Everythink else is in UTF...

Anyway if i do /home/vpopmail/bin/vuserinfo user@domain.cc clear password is ok, but in MySQL

SELECT pw_clear_passwd FROM vpopmail WHERE  pw_name .... password is broken

Hi, which tool are you using to change the pwd? I can use UTF8 characters here when connecting via imap/roundcube pwd plugin, but if I try with qmailadmin I get an error...

PS: and I can retrieve the clear pwd with an SQL query

Solved :)

It was misconfigured MySQL. I have no idea what charset did connection use when it was not configured but when I set this to my.cnf it start working correctly

[client]

default-character-set=utf8

[mysqld]

collation-server = utf8_unicode_ci
init-connect= 'SET NAMES utf8'
character-set-server=utf8


[mysql]

default-character-set=utf8

Other problem is password from outlook... But I think there is no solution for clients using non UTF8 charset...

Hello!

While running ./configure on Gentoo systems (probably on other systems also) you have to add following options:

--enable-incdir=/usr/include/mysql \
--enable-libdir=/usr/lib64/mysql

Vpopmail works also with MariaDB 5.5.37 

BTW THX for great tutorial ;)

Best Regards

Winnetou

Hello Winnetou

This is the default location for mysql and mariadb, and I suppose that normally you don't even need to add those options, as the library will be automatically found. I  just added them for those (like me) who compile from source or don't use the package provided by their own distro

Hello!

I'm aware that those paths are default and ./configure should find them, but it didn't, that's why I decided to post a comment ;)

When I run ./configure without those 2 optins it failed. I was installing qmail and vpopmail on freshly installed Gentoo 

If I understand well, omitting those two options gets vpopmail not to find the libraries?

Anyway as soon as possible I will add a clarification on the purpose

I am installing vpopmail and vusaged on CentOS release 6.4 (Final)

but i encountered the error on vusaged.

[root@Dev vusaged]# /etc/rc.d/rc.vusaged start
Starting vusaged: failed

What is the problem? I am googling bu i couldn't found the solution.

please help me!!

can you do

strace /etc/rc.d/rc.vusaged start

and see what happens?

It works now. I uninstalled the libev source then installed libev using yum rpmforge repository.

# make uninstall
# yum -y install libev libev-devel

Sorry for the late reply. I totally forgot about this. I gave up last time and set up qmailtoaster on Centos 6 which was successful.

Now, I am experimenting qmail again using this setup. :)