Topic: Need to open some ports

[John Bennett]

I have e-smith 4.1.2 installed and have enabled webmail.  Now I want to enable poppassd for password changing via webmail.  I had this working on 4.01, but can't get it to work under 4.1.2.  I am using the same instructions I have from 4.01.  Once I get everything setup, I can telnet to port 106 from the console and get the proper responses.  But, once I try straight telnetting to port 106 from my workstation or try changing my password from within imp, I am getting errors.  I figure that port 106 is not allowed.  Would someone please tell me how to enable other ports?

Thanks,

JB

[John Bennett]

More info on this.  I couldn't find poppassd on 4.1.2, so I had to copy it to /usr/sbin.  If I telnet to my box and run /usr/sbin/poppassd all works good.  I added an entry to services for poppassd  106/tcp and added an entry to xinetd.conf with the following:

service poppassd
{
    socket_type         = stream
    protocol            = tcp
    port                = 106
    wait                = no
    user                = root
    server              = /usr/sbin/poppassd
}

If I telnet to x.x.x.x 106 from my console, I get this error:

[root@e-smith1 /etc]# telnet 10.10.10.x 106
Trying 10.10.10.x...
Connected to 10.10.10.x.
Escape character is '^]'.
Connection closed by foreign host.


This is where I am now stuck.

Thanks,

JB

[Kirrily Robert]

Is there any reason you can't just go to http://my.server.xxx/e-smith-password/ to change the password?

K.

[John Bennett]

Yes, what if my users don't have any local access to my network.  Or, if I am hosting mail using e-smith.  Those users can't get to e-smith-password, because they don't have local access to my network.  This would be the only way for them to change their password.

JB

[Adrian Lasso/Gustavo Gon]

We used a poppassd version of Pawel Krawczyk.
We followed its installation instructions but it doesn't work until we modify xinetd.conf file with your suggestion, then it works.

Here we include the installation instructions extracted from Readme file of Pawel Krawczyk.

>>>>
 
INSTALLATION:
 
1. Edit Makefile if necessary and type 'make'.

2. Install in /usr/sbin, owned by root and executable only by root.
 
3. Add to /etc/inetd.conf:
 
        poppassd stream tcp nowait root /usr/sbin/tcpd poppassd

4. Add do /etc/services:
 
        poppassd   106/tcp

5. Configure tcpd to refuse connection to poppassd from all hosts
but localhost. I have tcpd compiled with -DOPTIONS and my /etc/hosts.deny
entry looks like:

        poppassd: nobody@localhost: allow
        poppassd: ALL: deny

You may need to change 'nobody' to the user your httpd is running as.
It's also worth considering to block all incoming TCP packets to port
106 on your router.

6. Add to /etc/syslog.conf:
 
        local4.err   /var/log/poppassd
 
7. Install PopPass on you WWW server.

<<<<

If you want we can send you a copy of entire version with it documentation file.

Good luck.

Adrian / Gustavo