search for: client_ip

.../var/dovecot-tests/: where user's inbox resides /var/dovecot-tests/home/: home dir (users will not be system users, this home is for sieve) /var/dovecot-tests/data/: mbox --- error msg --- --- --- --- auth(default): client in: AUTH 1 PLAIN service=IMAP lip=dovecot_machine_ip rip=client_ip auth(default): client out: CONT 1 auth(default): client in: CONT 1 AHRoYWlzY2diAHRyb2NhcjEyMw== auth(default): ldap(someuser,client_ip): bind search: base=dc=mydomain,dc=me filter=(&(object class=inetlocalmailrecipient)(uid=someuser)) auth(default): ldap(someuser,client_ip): result...

...problem is using dovecot's SASL with postfix. I also have plain/login working in imap and smtp. Both use pam_krb5 through pam to authenticate clients that don't have kerberos, and for now smtp. When trying to do smtp kerberos, I get the following: postfix/smtpd[6197]: warning: CLIENT_FQDN[CLIENT_IP]: request longer than 2048: AUTH GSSAPI ... dovecot: auth: Debug: client in: AUTH#0111#011GSSAPI#011service=smtp#011nologin#011lip=SERVER_IP#011rip=CLIENT_IP#011secured#011resp=<hidden> dovecot: auth: Debug: gssapi(?,CLIENT_IP): Obtaining credentials for smtp at MAILSERVER_FQDN dovecot: auth:...

...get funky: | | < Domain=[] NativeOS=[Windows 2002 Service Pack 2 2600] NativeLanMan=[Windows 2002 5.1] PrimaryDomain=[] | --- | > Domain=[CLIENT] NativeOS=[Windows 2002 Service Pack 2 2600] NativeLanMan=[Windows 2002 5.1] PrimaryDomain=[] | 2834c2834 | < sesssetupX:name=[]\[]@[CLIENT_IP] | --- | > sesssetupX:name=[CLIENT]\[Chris]@[CLIENT_IP] | 2916c2916 | < check_ntlm_password: Checking password for unmapped user [FUZZBALL]\[guest]@[CLIENT_IP] with the new password interface | --- | > check_ntlm_password: Checking password for unmapped user [CLIENT]\[chris]@...

...k: $!"; my $paddr = sockaddr_in($port, INADDR_ANY); bind(SERVER, $paddr) or die "bind: $!"; listen(SERVER, SOMAXCONN) or die "listen: $!"; print "SERVER started on port $port "; my $client_addr; while ($client_addr = accept(CLIENT, SERVER)) { my ($client_port, $client_ip) = sockaddr_in($client_addr); my $client_ipnum = inet_ntoa($client_ip); my $client_host = gethostbyaddr($client_ip, AF_INET); print "Connection from: $client_host","[$client_ipnum] "; while(<CLIENT>){ print "$_"; } close CLIENT; }

...b 11 08:47:49 auth: Debug: Read auth token secret from \ /var/run/dovecot/auth-token-secret.dat Feb 11 08:47:49 auth: Debug: auth client connected (pid=7861) Feb 11 08:47:49 auth: Debug: client in: AUTH 1 PLAIN \ service=pop3 session=dF2ST4ErtQDMa1sC \ lip=<server_IP> rip=<client_IP> \ lport=110 rport=54453 resp=<hidden> Feb 11 08:47:49 auth-worker(7864): Debug: Loading modules from directory: \ /usr/lib/dovecot/modules/auth Feb 11 08:47:49 auth-worker(7864): Debug: pam(sherril,<client_IP>): \ lookup service=dovecot Feb 11 08:47:49 auth-worker(7864): Debug...

...gs start to get funky: < Domain=[] NativeOS=[Windows 2002 Service Pack 2 2600] NativeLanMan=[Windows 2002 5.1] PrimaryDomain=[] --- > Domain=[CLIENT] NativeOS=[Windows 2002 Service Pack 2 2600] NativeLanMan=[Windows 2002 5.1] PrimaryDomain=[] 2834c2834 < sesssetupX:name=[]\[]@[CLIENT_IP] --- > sesssetupX:name=[CLIENT]\[Chris]@[CLIENT_IP] 2916c2916 < check_ntlm_password: Checking password for unmapped user [FUZZBALL]\[guest]@[CLIENT_IP] with the new password interface --- > check_ntlm_password: Checking password for unmapped user [CLIENT]\[chris]@[CLIENT_IP]...

...26 09:08:28 mailstore dovecot: imap(user at domain.net pid:28898 session:<iuMX3Lf8fACXLrFC>): Fatal: master: service(imap): child 28898 killed with signal 11 (core dumped) ... Mail-log ... Jun 26 09:08:28 mailstore dovecot: imap-login: ID sent: x-session-id=iuMX3Lf8fACXLrFC, x-originating-ip=CLIENT_IP, x-originating-port=52092, x-connected-ip=PROXY_IP, x-connected-port=143, x-proxy-ttl=4: user=<>, rip=CLIENT_IP, lip=PROXY_IP, secured, session=<iuMX3Lf8fACXLrFC> Jun 26 09:08:28 mailstore dovecot: imap-login: Login: user=<user at domain.net>, method=PLAIN, rip=CLIENT_IP, lip=PROX...

Hello, I have some strange logs entries in my dovecot_info.log (auth_debug=yes & auth_verbose=ye) : dovecot: Nov 27 00:28:09 Info: auth(default): vpopmail(CLIENT_EMAIL,CLIENT_IP): lookup user= domain=???????? dovecot: Nov 27 00:28:09 Info: auth(default): vpopmail(CLIENT_EMAIL,CLIENT_IP): lookup user=CLIENT_USER domain=CLIENT_DOMAIN dovecot: Nov 27 00:28:09 Info: auth(default): vpopmail(CLIENT_EMAIL,CLIENT_IP): lookup user=CLIENT_USER domain= CLIENT_DOMAIN (replace...

...f PASSDB_VPOPMAIL +#include "network.h" +#endif + /* max. size for auth_login_request_continue.data[] */ #define AUTH_LOGIN_MAX_REQUEST_DATA_SIZE 4096 @@ -50,6 +54,10 @@ enum auth_mech mech; enum auth_protocol protocol; + +#ifdef PASSDB_VPOPMAIL + struct ip_addr client_ip; +#endif }; /* Continue authentication request */ diff -Naur dovecot-0.99.10.5/src/auth/mech.c dovecot-0.99.10.5-patched/src/auth/mech.c --- dovecot-0.99.10.5/src/auth/mech.c Sun May 18 16:26:28 2003 +++ dovecot-0.99.10.5-patched/src/auth/mech.c Mon Jun 14 13:27:33 2004 @@ -98,7 +98,10 @...

Upon thinking, the variable names may not be descriptive enough as `host` is a bit ambiguous and `deleted_count` may refer to a different command than expunge in imap and may be valid to track at some point so I have changed `host` to `client_ip` and `deleted_count` in imap to `expunged_count`, below is the modified diff for version 1.2.11. diff -crB dovecot-1.2.11.orig/src/imap/client.c dovecot-1.2.11/src/imap/client.c *** dovecot-1.2.11.orig/src/imap/client.c 2010-01-24 16:14:17.000000000 -0700 --- dovecot-1.2.11/src/imap/client.c 2010...

...111.254 0.0.0.0 UG 1 0 0 eth0 >From filter: -A FORWARD -p udp -m udp --dport 53 -j ACCEPT -A FORWARD -p udp -m udp --sport 53 -j ACCEPT -A FORWARD -p tcp -m tcp --dport 53 -j ACCEPT -A FORWARD -p tcp -m tcp --sport 53 -j ACCEPT -A FORWARD -s $CLIENT_IP -j DROP -A icmp-flood -m limit --limit 1/sec -j RETURN -A icmp-flood -j DROP -A syn-flood -m limit --limit 50/sec --limit-burst 150 -j RETURN -A syn-flood -j DROP >From nat: -A PREROUTING -s $CLIENT_IP -p tcp -m tcp --dport 80 -j DNAT --to-destination 127.0.0.1:80...

...uot;/> <!-- if enabled, then users only from this country allowed to connect --> <option name="geoip_country" value="MD"/> </authentication> </mount> Here is sample of unique URL generator: $time = time(); $client_ip = $_SERVER['REMOTE_ADDR']; $md5 = md5($time.$client_ip.'hackme'); $url= "http://icecast:8000/live?hash=$md5&time=$time"; -- ________________ (\__/) (='.'=) (")_(") -------------- next part -------------- A non-text attachment w...

...:1521 iptables -A PREROUTING -t nat -p tcp -i eth0 --dport 1501 -j DNAT --to 10.0.0.2:1521 The following parameters are set: /proc/sys/net/ipv4/ip_forward is set to 1 In sysctl.conf: net.ipv4.ip_forward = 1 but I still cannot connect. Running tcpdump I get the following: IP (..host_ip..) > (..client_ip..): icmp 56: host pcitdes003.cern.chunreachable - admin prohibited Anyone got any idea? _______________________________________________ Xen-users mailing list Xen-users@lists.xensource.com http://lists.xensource.com/xen-users

...l always have fast web surfing. I can do it with bash scripts - one class per ip with 2 children. But I wonder if something like this would work: # class with rate 1Mbit (thats my DSL for web traffic) which will gain all web traffic (RULE=*:80,) and then make a child class for this with RULE=client_ip will a client get 1Mbit or will he get 256Kbit ???? I don''t know if you understand me.. I just wonder if when I make a class with RULE=something will this be shaped to it''s RATE or will kernel search for child classes to find out extra parameters matching a connection (like R...

.... [2012/08/28 17:38:22.509403, 3] printing/pcap.c:138(pcap_cache_reload) reloading printcap cache [2012/08/28 17:38:22.509499, 3] printing/pcap.c:189(pcap_cache_reload) reload status: ok I don't see anything that catches my eye in the other logs (log.nmbd, log.<client_name>, log.<client_IP>, log.winbindd). The log.<client_name> shows a very long list of transactions that stops suddently at the time of the 'unclean shutdown'. Do you have any idea what could cause this 'unclean shutdown'? What would be the best way to further diagnose this problem? I've lo...

...ading mirror speeds from cached hostfile Error: Cannot find a valid baseurl for repo: epel I've tried to open http://mirrors.fedoraproject.org/mirrorlist?repo=epel-6&arch=x86_64 but got # Bad Request 2960 # {'repo': u'epel-6', 'IP': IP('195.8.99.234'), 'client_ip': u'195.8.99.234', 'metalink': False, 'arch': u'x86_64'} Am I doing something wrong? Any clues? Best regards, Rafal.

....2 server to a Samba 3.4.7 PDC (e.g. Think NT4, not AD), which is also our OpenLDAP principal server. I'm failing because, although my "net rpc join" command seems to succeed, and the host entry is added to the directory, I keep getting messages such as this in /var/log/samba/log.CLIENT_IP on my PDC/LDAP host: _netr_ServerAuthenticate3: netlogon_creds_server_check failed. Rejecting auth request from client CLIENT machine account CLIENT$ [2015/06/11 16:46:18, 0] rpc_server/srv_netlog_nt.c:603(_netr_ServerAuthenticate3) _netr_ServerAuthenticate3: netlogon_creds_server_check f...

...1: Bind to port 22 on 0.0.0.0. Server listening on 0.0.0.0 port 22. Generating 768 bit RSA key. RSA key generation complete. debug1: Server will not fork when running in debugging mode. debug1: rexec start in 4 out 4 newsock 4 pipe -1 sock 7 debug1: inetd sockets after dupping: 3, 3 Connection from client_ip port 4253 debug1: Client protocol version 2.0; client software version OpenSSH_3.9p1 debug1: match: OpenSSH_3.9p1 pat OpenSSH_3.* debug1: Enabling compatibility mode for protocol 2.0 debug1: Local version string SSH-1.99-OpenSSH_4.0 debug1: list_hostkey_types: ssh-rsa,ssh-dss debug1: SSH2_MSG_KEXIN...

...&) options = 0x00007fd133cfb7b0: { engine = error: summary string parsing error full_lines = true user = error: summary string parsing error max_bytes = 5000000 leading_context = 0 trailing_context = 0 case_sensitive = true client_hostname = error: summary string parsing error client_ip = error: summary string parsing error skip_logging = false client_port = 0 shards_override = 0 sample = false count = false filename_pattern = error: summary string parsing error limit = 0 __isset = { engine = true full_lines = true user = true max_bytes = true l...

...e used by anyone to hijack the session. The only way around this is to verify that a given request is actually originating at the same client as the authentication. How do you do this? Create a table that will hold all your connections. Something like this, session_id bigint not null primary key, client_ip cidr, last_access timestamp, ...other stuff... good place to stick your session data :) After you authenticate a given user, store their IP address and their session id in the above table. Then when the session id doesn''t match the authenticated IP, well, you throw the user back to the au...