Cramsession Linux Newsletter

home

Oct 17 2002

                    LINUX NEWS
            http://www.Cramsession.com
          October 17, 2002 -- Issue #103

TABLE OF CONTENTS

1) Sean’s Notes

2) Linux News

Linux.com To Match Microsoft Donations
Red Hat Linux 8.0 Tops Desktop Class
India Moving to Linux
A Look At Gentoo

3) Linux Resources

How Many Disks Are Too Many for a Linux System?
Active Directory Tool... For Linux
Log Files for Analysis
Conserve Energy... With Linux
Basic Makefiles

4) App o’ the Week

~~~~~~~~~~~~~~~~~~~~~~ ADVERTISEMENT ~~~~~~~~~~~~~~~~~~~~~~~

Deploy, configure, and support Linux! Linux Administration Resource Kit, a $119.97 value, yours for $9.99. Featuring 3 best-selling industry guides, plus 5 CDs. Plus a free gift! The 5 CDs include various Linux distributions, applications and tools for managing networks and systems.

Click for details: http://ad.brainbuzz.com/?RC06&AIW01

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

For information on how to advertise in this newsletter please contact mailto:adsales@CramSession.com or visit http://cramsession.com/marketing/default.asp

1) Sean’s Notes

The past couple of weeks I’ve been going over mail. First it was the flow of mail over the Internet, from your mail client (MUA), to your Mail Transfer Agent (MTA), to the recipient’s mailbox, and then into his MUA. Last week looked at the configuration of the PostFix MTA, which leaves one thing, namely getting the mail from your spool onto your desktop.

Two protocols are helpful for doing this, the Post Office Protocol Version 3 (POP3), and the Interactive Mail Access Protocol Version 4 (IMAP4).

POP is the simpler of the two; though it can do a lot more, it’s often used to grab your whole mail spool and delete it from the server. ISPs love it–they store your mail until you pick it up and get it off their hands.

My favourite POP implementation comes courtesy of Qualcomm, and is called “qpopper”. You can grab the sources from:

ftp://ftp.qualcomm.com/eudora/servers/unix/popper/qpopper4.0.4.tar.gz

To install it, uncompress the tarball:

tar -xzf qpopper4.0.4.tar.gz

Change into the directory:

cd qpopper4.0.4

If you run “./configure –help”, you’ll see all the options that you can set in this versatile daemon. I’ve always used:

./configure –enable-specialauth –enable-servermode

--with-openssl \ --enable-spool-dir=/var/spool/mail
--enable-uw-kludge  --enable-poppassd

Yikes, eh? Since the POP daemon was one that I always kept up with upgrades, I made an RPM out of it so it would always build the same. Assuming you’re using Red Hat, you can do the same, too. Jump on over to:

http://boards.cramsession.com/boards/vbm.asp?me1927

  • Save the content to /usr/src/redhat/SPECS/qpopper.spec
  • Move qpopper4.0.4.tar.gz to /usr/src/redhat/SOURCES
  • Run “rpm -ba /usr/src/redhat/SPECS/qpopper.spec” as root
  • Install the rpm from /usr/src/redhat/RPMS/i386

Probably the source of another article or two, but building software as an RPM lets you ensure that you have it under package management, and that you always build the software the same (try remembering which options you used a year later!). If 4.0.5 comes out, copy the tarball to SOURCES, bump the version number within qpopper.spec, rerun rpm -ba qpopper.spec, and rpm -U the resulting RPM. Wondering what version of popper you’re running? rpm -q qpopper

If you didn’t go the rpm route, you can run:

make

make install

after you’ve run ./configure to do much the same thing, but without the package management.

Though there are dozens of options you can pass to the daemon, you can get by without them. To activate qpopper, we have to tell inetd about it. If you haven’t caught any of my articles on inetd, its job is to listen for connections to the POP port (TCP 110), and then spawn off a qpopper process to handle it. Saves a lot of memory if there are few connections!

Users of the older inetd will want to add the following line to inetd.conf:

pop3 stream tcp nowait root /usr/sbin/tcpd popper

If you’re using the newer xinetd, create /etc/xinetd.d/popper with the following:

service pop3 { flags = REUSE socket_type = stream wait = no user = root server = /usr/sbin/popper log_on_failure += USERID disable = no }

Either way, it tells inetd to listen on the pop3 port, and to run /usr/sbin/popper when it sees it, that is, once you restart inetd! They’ll both respect wrappers, which we’ll use to prevent everyone on the Internet from connecting to the POP daemon:

/etc/hosts.deny: popper: ALL

/etc/hosts.allow: popper: localhost, 192.168.1.

(I’m making the assumption here that your internal network is 192.168.1.0/24, change the line as appropriate if I was wrong.)

If you want to learn more about controlling access with hosts.allow and hosts.deny, “man 5 hosts_access” is for you. xinetd users get additional control with the man page for “xinetd.conf”.

So, we’ve built and installed a POP daemon. Inetd is set up to listen for POP requests, and has been restarted. Access control? Check. I guess we’re ready to try it out!

telnet localhost pop3

Trying 127.0.0.1… Connected to localhost. Escape character is ‘^]’. +OK Qpopper (version 4.0.4) at poochie starting. QUIT +OK Pop server at poochie signing off. Connection closed by foreign host.

(that was me typing QUIT, by the way).

Those interested in protocols might note that SMTP uses numeric codes for status, while POP uses either “+OK” or “-ERR”. So much for standards, eh?

If you got a “connection refused”, then it’s likely that something went wrong with the inetd setup. If it connects and kicks you out before giving a banner, then your ACLs are to blame.

At this point you’re ready to point your mail client to your brand new POP server. Have fun!

Though I’ll cover the second protocol, IMAP, in an upcoming newsletter, it is pretty much the same as what we did today. Some distributions even include the University of Washington version, which is the one I use myself. Install, enable in inetd, connect (port 143 this time).

Even if you’re not running your own domain at home, a POP server is handy if you want to read root’s email on another machine. Thus, you can get your logs on your desktop, without having to use a text-based email client.

Long live the Penguin,

Sean mailto:swalberg@cramsession.com

2) Linux News

Linux.com To Match Microsoft Donations

Microsoft has offered schools some free licences to their product, content that in a few years they’ll have paying customers. Linux.com has exactly the same offer, but with no strings! Take all the Linux you want! A very funny, but accurate, article.

http://newsforge.com/article.pl?sid/10/10/1511200

Red Hat Linux 8.0 Tops Desktop Class

eWeek took the new Red Hat 8 for a spin, and from the perspective of the desktop, was impressed. No screenshots, but still a good article.

http://www.eweek.com/article2/0,3959,633876,00.asp

India Moving to Linux

“INDIA’S GOVERNMENT Department of Information Technology has announced a sweeping initiative to move the entire country to Linux as its “platform of choice” in place of higher cost ‘proprietary’ software, reports the India Times subsidiary Economic Times.”

http://www.theinquirer.net/?articleW67

A Look At Gentoo

Gentoo Linux’s angle is that everything is compiled from source. I never realized some of the implications of this until I read this article. It definitely puts Gentoo on my “gotta try” list!

http://linux.oreillynet.com/pub/a/linux/2002/10/10/intro_gentoo.htm l

3) Linux Resources

How Many Disks Are Too Many for a Linux System?

Linux makes a great file server, but in many cases, the underlying computer imposes some restrictions on how much space you can cram into a single machine. Here’s an interesting look at disk capacities.

http://www.linuxjournal.com/article.php?sidb38

Active Directory Tool… For Linux

“adtool is a unix command line utility for Active Directory administration. Features include user and group creation, deletion, modification, password setting, and directory query and search capabilities.”

http://dexy.mine.nu/adtool/

Log Files for Analysis

Logs aren’t only for debugging, they’re a valuable forensic tool. This article from SecurityFocus goes over some ways to monitor your logs, and keep one step ahead of the Blackhats.

http://online.securityfocus.com/infocus/1633

Conserve Energy… With Linux

“AcquiSuite is a computerized device (manufactured by Obvius – Portland, OR) which is used for building automation and energy management. The device can lower the cost of operating a building by collecting and reporting information in a reliable, timely, and inexpensive manner.” And, it runs Linux!

http://www.linuxdevices.com/articles/AT9272306746.html

Basic Makefiles

Programmers use Makefiles to save recompiling code that’s already compiled, and to automate the process. It’s also a handy system administration tool. This article goes over what basic elements go in a Makefile.

http://www.linuxgazette.com/issue83/heriyanto.html

4) App o’ the Week

I’m always on the lookout for dynamic DNS providers, especially if they’re free. Here’s one I just found that fits the bill. Also great if you’ve been following along with the email discussions; with one of these dynamic names you can have a nicer domain name, and not have to fork out the cash for a .com.

http://www.staticcling.org/

(C) 2002 BrainBuzz.com, Inc. All Rights Reserved.

      This message is from CramSession

You are currently subscribed to the following list Hottest Linux News and Resources as: sean@ertw.com

To un-subscribe from this newsletter by e-mail, send a blank email message to: mailto:leave-linuxnews-3825955Y@list.cramsession.com

To subscribe to this newsletter and many others visit our site at: http://newsletters.cramsession.com/signup/default.asp

github.com/swalberg
twitter.com/seanwalberg