SMTP after POP3/IMAP

Mon, 07 May 2001 14:13:01 -0700

I have run into a problem setting up a script to allow SMTP access to my
server after a POP3/IMAP connection.  The problem is I use stunnel to
provide secure (relatively) POP3S and IMAPS connections.  This
effectively breaks the logging mechanisms of Cyrus mail system by only
recording the local ip (127.0.0.1) when a user connects.  As a result
the POPwatch script only adds 127.0.0.1 to the SMTP relay access list.

I've tried to link the Stunnel and Cyrus logging information, but they
do not have any commonalties in the logs that can link a username to an
IP address.  Anyone have any other ideas?

Log Info.  
--------------------
(Disclaimer:  IPs and Username have been changed to protect the
innocent.)

/var/log/daemon.log
May  7 13:40:17 oppenheimer stunnel[18757]: Using 'imaps' as tcpwrapper
service name
May  7 13:40:17 oppenheimer stunnel[18757]: imaps connected from
192.168.75.12:62211
May  7 13:44:30 oppenheimer stunnel[18763]: Using 'imaps' as tcpwrapper
service name
May  7 13:44:30 oppenheimer stunnel[18763]: imaps connected from
192.168.75.12:62385

/var/log/mail.log
May  7 13:40:21 oppenheimer imapd[18758]: login: localhost[127.0.0.1]
testuser plaintext
May  7 13:40:22 oppenheimer imapd[18758]: open: user testuser opened
INBOX.Open_Root
May  7 13:44:31 oppenheimer imapd[18764]: login: localhost[127.0.0.1]
testuser plaintext
May  7 13:44:31 oppenheimer imapd[18764]: open: user shadow testuser
INBOX.Open_Root
May  7 13:45:43 oppenheimer imapd[18764]: open: user shadow testuser
INBOX.PLUG

Program Info.
--------------------
Linux                   Debian 2.2r3
SMTP                    Exim
POP3/IMAP               Cyrus mail system
SSL                     Stunnel
SMTP after POP3/IMAP    POPwatch
(http://cc.ysu.edu/~doug/exim-pop.tar.Z)

-- 
Chris Lewis
Tesla Systems
shadow@digitalnirvana.com
----------------------------------------
You want what?? When??  And how cold is it in Hell today?
----------------------------------------

The following code is a PERL script capable of decoding a CSS (Content
Scrambling System) encrypted DVD in real time.  This is illegal to
possess in the US according to the Digital Millennium Copyright Act, a
set of laws passed by anonymous vote in congress in 1998.  The Motion
Picture Association of America (MPAA) is opposed to the distribution of
this software because it allows the owners of CSS encrypted DVDs to
exercise their long-standing fair use rights with new digital
technologies.  For more information, please visit:
http://www.opendvd.org/

#!/usr/bin/perl -w
# 526-byte qrpff, Keith Winstein and Marc Horowitz
<sipb-iap-dvd@mit.edu>
# MPEG 2 PS VOB file on stdin -> descrambled output on stdout
# arguments: title key bytes in least to most-significant order
$_='while(read+STDIN,$_,2048){$a=29;$c=142;if((@a=unx"C*",$_)[20]&48){$h=5;
$_=unxb24,join"",@b=map{xB8,unxb8,chr($_^$a[--$h+84])}@ARGV;s/...$/1$&/;$d=
unxV,xb25,$_;$b=73;$e=256|(ord$b[4])<<9|ord$b[3];$d=$d>>8^($f=($t=255)&($d
>>12^$d>>4^$d^$d/8))<<17,$e=$e>>8^($t&($g=($q=$e>>14&7^$e)^$q*8^$q<<6))<<9
,$_=(map{$_%16or$t^=$c^=($m=(11,10,116,100,11,122,20,100)[$_/16%8])&110;$t
^=(72,@z=(64,72,$a^=12*($_%16-2?0:$m&17)),$b^=$_%64?12:0,@z)[$_%8]}(16..271))
[$_]^(($h>>=8)+=$f+(~$g&$t))for@a[128..$#a]}print+x"C*",@a}';s/x/pack+/g;eval