[Anonymous]

“Cannot find/read stored master key – blah blah blah”

Is this perhaps some sort of permissions error?

[Anonymous]

Aha! I think I’ve cracked it. For some reason, editing master.cf.defaultserver.swap with emacs rather than Text Edit had the required effect.. (Why? I cannot guess)

Thanks for your help

Fraser

[Anonymous]

Thanks for the replies folks…

As an update, VaporSec is still not working on my system. It was working just fine for months prior and up to April 20th. Something happened during that Airport update that totally hosed VaporSec (I still have no clue as to what it could have been.) I have removed the software, cleaned the Library and reinstalled VaporSec three times with no success.

MacTroll, I checked and yes, my user has sudoer privileges. (sudo vi /etc/hosts –> added a host entry –> saved the file) Thanks for the tip though.

[Anonymous]

MacTroll: i followed your suggestions, and while the method works when clients use the “Generic Postscript Printer” setting under “Printer Model,” there are no client-side options for printing quality, color, etc,; this makes the whole thing kind of pointless.

So the question remains, does anyone know how to share an USB printer in panther sever (as jaguar server could)?

[Anonymous]

Thanks for the suggestion, Dana, but when I test the port I’m still getting this:

[server:/Users/admin] clamav% telnet 127.0.0.1 10025
Trying 127.0.0.1…
telnet: connect to address 127.0.0.1: Connection refused
telnet: Unable to connect to remote host
[server:/Users/admin] clamav%

Did you restart the mail service in server admin, or just do ‘postfix reload’?

Thanks

Fraser

[Anonymous]

I’ve installed everything, got to the point of testing it when…

May 3 05:23:33 server postfix/smtp[24386]: fatal: unexpected command-line argument: 127.0.0.1:10025

appears in the log whenever I send a message in.

Any ideas gratefully received, as all incoming mail is being blocked…

many thanks

fraser

[Anonymous]

“The best part of the L2TP VPN solution is that you get an IP from the remote LAN range. (Leif)”

“This occurs with most any VPN solution.
Joel”

Well, maybe I should have said: “this VPN solution” 😉

I’ve seen some “mentioning” of getting an IP through DHCP from a VPN-server (SonicWall) but never saw a client for Mac that supported it (your Vapor Sec does?). Maybe Cisco PIX Mac client (using L2F/L2TP???) does this too???

ZyXEL ZyWALL doesn’t support it as far as I know. They say they will start supporting L2TP “soon” though…

My point was really that it’s much easier to setup/maintain especially if the network behind the VPN-server is big and you “don’t care” what network the client is connecting from. Much less routing to care about for VPN-clients.

Some of ZyXELs ZyWALLs (I’ve tested ZW 50 and 100 with newer/newest firmware) now let IPSec traffic through even if there is VPN-tunnels configured and active in them. They used to “steal” all IPSec traffic so I had to turn any VPN-tunnel off when testing letting (even L2TP) IPSec traffic through. So both connecting remote offices through “VPN-routing” and clients connecting to OSX Server 10.3.x now works.

Best regards

/Leif

[Anonymous]

try your short name. I had problems using the full name. For example i use John Smith for a long name and imap would only recongnize John.

try that

[Anonymous]

[quote:fcae4df44e=”MacTroll”]Second thing is that procmail has no concept of the secondary shortnames for users. So you can’t use those as mail aliases or else you’ll run into problems.
[/quote:fcae4df44e]

Sure you can, I did it this morning

I just copied what was in master.cf in cyrus rule in my procmailrc :

:0w
| /usr/bin/cyrus/bin/deliver -e -r -m $EXTENSION $USER

And my master.cf line for procmail is the following :

procmail unix – n n – – pipe
flags=R user=cyrus argv=/usr/bin/procmail -t -m USER=${user} EXTENSION=${extension} /etc/procmailrc

(of course, as usual for this file, this is on 2 lines)

The problem I have is that the return-path is not set properly by the -r option of deliver, even if I try to transfer the ${sender} variable, cyrus fails, if I take the -r option from my procmailrc, cyrus fails :-/

I’m still seeking but with these lines you can have cyrus deliver mails in the good mailboxes even if you use any of the short names as email adress.

If any of you has an idea for this return path problem…

[Anonymous]

OK, so I am going to answer my own question …

I found this HOWTO on “Generating X.509 Certificates” which is located at:

http://www.ipsec-howto.org/x507.html

Beware, for some reason it says 507 in the URL, not 509.

Anyway, in OSX 10.3 the path to the OpenSSL library is

/System/Library/OpenSSL

and the CA.pl script meantion in the above HOWTO is at

/System/Library/OpenSSL/misc/CA.pl

However, before you can generate the certificate, you must first generate a private key. I’ll post again with instructions for that later on.

rgds
benjk

[Anonymous]

thanks for your reply but that doesn’t make much sense.

starting up a tunnel and starting up the IPsec engine are different things. For example, what if I have multiple tunnels, want to shut down one of them but not the others? I need to be able to start and stop tunnels independently from the IPsec engine.

[Anonymous]

[quote:07ea0f924c=”MacTroll”]VaporSec tests for you password by doing a sudo command using your currently logged in user as the user name.

Applescript Studio is rather limited in authentication abilities so this is a bit of a hack to get around that.

If you’re user is an admin, but has no sudo ability, perhaps because you have been removed from the /etc/sudoers file, then you will not be able to get this to work.

Joel[/quote:07ea0f924c]

would it be possible to adjust the script to ask for a username and a password and su to that account before doing the commands?

Basically I normally run with a non-admin account and it would be nice to be able to startup a tunnel without having to use fast user switching to login and create the tunnel first.

[Anonymous]

It’s the Vaporize button. The Flush ’em button shuts down the tunnel and the Show ’em button shows the tunnel status.

It’s cute but I’d prefer something a little easier to figure out myself 😎

[Anonymous]

I set up a cram-md5 database file since I noticed using telnet that IMAP was advertising cram-md5 and my email client also has an option for it.

I changed the password in /etc/passwd to “!” from “*”. Figured WTH.

I put a plain text password in /etc/cram-md5.pwd.

It still won’t authenticate.

🙄 👿 😥

[Anonymous]

Sorry I lead you in the wrong direction.

I use Timbuktu also. What I’m interested is how safe it is. Can it be intercepted or hacked when I’m having a connection with my server.
Is it encrypted etc.
Should I use a secure connection when using it ex VPN?
That are the thing that worry me.

[Author]

Posts