Previous | Contents | Index |
The Post Office Protocol (POP) server and the Simple Mail Transfer Protocol (SMTP) server software work together to provide reliable mail management in a client/server environment.
The POP server acts as the mail repository. It accepts and stores mail messages for you, even when your client system is not connected, and forwards those messages to you at your request. POP is used mostly by PC clients to ensure that mail is received and retained even when the system is not connected to the network.
After the POP server is enabled on your system, you can modify the default characteristics by defining logical names.
This chapter reviews key POP concepts and provides guidelines for
modifying, managing, and troubleshooting the POP server on an OpenVMS
system.
15.1 Reviewing Key Concepts
The POP server is an implementation of the Post Office Protocol Version 3 server (the public domain IUPOP3 server) specified in RFC 1725.
The POP server is intended to be used as a mail repository for:
With POP, mail is delivered to a shared mail server, and a user periodically downloads pending mail. Once delivered, the messages are deleted from the server.
The POP server is assigned port 110 and all POP client connections are made to this port.
The following sections review the POP process and describe how DIGITAL
TCP/IP Services for OpenVMS software implements POP. If you are not
familiar with POP, refer to RFC 1725 or introductory POP documentation
for more information.
15.1.1 The POP Server Process
The POP server is invoked by the auxiliary server. A POP server process can handle up to 31 simultaneous client threads. This limit is imposed by the OpenVMS callable mail routines that the POP server uses to access users' mail files.
The POP server is installed with SYSPRV and BYPASS privileges and runs in the TCPIP$POP account, which receives the correct quotas from TCPIP$CONFIG.
The POP server uses security features provided in the protocol and in the OpenVMS operating system, as well as additional security measures. These methods provide a secure process that minimizes the possibility of inappropriate access to a user's mail file on the served system.
You can modify the POP server default characteristics and implement new
characteristics by defining the system logical names outlined in
Section 15.3.
15.1.2 How to Access Mail Messages from the POP Server
To access mail messages from the POP server, you configure a user name and password, or the POP shared secret-password string, into your client mail application.
Your client system opens the TCP connection and attempts to access the server by entering applicable POP commands such as USER (user name) and PASS (password), or APOP (shared secret password). In addition, POP supports the UID command, which some POP clients use, where the UID (user identification) that POP composes for each mail message is a concatenation of the user name and the date of arrival.
Once your client system opens the TCP connection, the POP server issues the following greeting:
+OK POP server ready TCPIP V5.0 [hostname and IP_Address] |
The POP server reads mail from your OpenVMS NEWMAIL folder. If you do
not instruct the POP server to delete the mail, the server either moves
the mail to your MAIL folder or keeps it in your NEWMAIL folder (if you
defined the logical name TCPIP$POP_LEAVE_IN_NEWMAIL). (See
Section 15.3).
15.1.3 How the POP Server Initiates and Manages a TCP Connection
The POP server starts the service by listening on TCP port 110. The client initiates a connection when it wants to make use of the POP service. The POP server either sends a greeting message confirming the connection (a message with the +OK prefix) or a message that the connection was not successful (a message with the -ERR prefix).
POP permits only two user name and password authorization attempts per TCP connection. After the second failure, POP closes the connection. Once connected, the client and server exchange commands and responses.
When the POP server detects a blocked TCP connection, it suspends
output to the connection for 2 seconds to allow it to unblock. Upon
retry, if the connection is still blocked, the POP server waits 4
seconds before trying again, and so on up to 32 seconds. If the
connection is still blocked after 32 seconds, the POP server shuts down
the connection and sends an error message to the log file.
15.1.4 How the POP Server Handles Non-ASCII Message Formats
POP contains minimal support for mail messages that contain non-ASCII
formats. Such messages are usually binary and are therefore not
transferred to the POP client. Instead, the POP server transfers the
message headers, along with a brief message instructing the user to log
in and extract the foreign message into a file. Non-ASCII messages are
moved into your MAIL folder; they are never deleted by the POP server.
15.1.5 How the POP Server Authorizes Users
Table 15-1 outlines the methods the POP server process uses to authorize user access.
Method | Description |
---|---|
Shared secret-password string |
Most secure POP server access method. Initiated by the client system
through the APOP command.
Allows a user to become authorized by the POP server without the need to send a password over the network. Eliminates a potential path for unauthorized users to obtain a password and break into the system. POP requires a shared secret string from any user who wants to read mail using the APOP authorization method. For information about creating the shared secret string, see the DIGITAL TCP/IP Services for OpenVMS User's Guide. |
User name and password |
Least secure POP server access method. Initiated by the client system
through the USER and PASS commands.
The POP server authorizes the client to access the desired mailbox based on receipt of a valid user name and password.
|
OpenVMS SYSUAF settings on user accounts |
Access to the POP server is not permitted if:
|
Ability to disable the USER and PASS commands | Allows the system manager to implement the use of the APOP authorization method for all POP clients, the more secure means of user authorization. When you disable the USER and PASS commands (by defining the logical name TCPIP$POP_DISUSERPASS), the POP server responds to the commands with a failure message. |
Mail message headers sent by the POP server must conform to the standard specified for SMTP in RFC 822. Because many of the messages received on an OpenVMS system are not in the SMTP format (for example, DECnet mail or mail from another message transport system), the POP server builds a new set of headers for each message based on the OpenVMS message headers.
The headers on mail messages forwarded by the POP server are as follows:
POP Message Header | Obtained From |
---|---|
Date: | Arrival date of message. Changed to UNIX format. |
From: | OpenVMS message From: field. Rebuilt to ensure RFC 822 compatibility. See Section 15.1.6.1. |
To: | OpenVMS message To: field. Not rebuilt. |
CC: | OpenVMS message CC: field. Not rebuilt. |
Subject: | OpenVMS message Subj: field. Not rebuilt. |
X-VMS-From: | OpenVMS message From: field. Not rebuilt. |
X-POP3-Server: | Server host name and POP version information. Sent only if logical name TCPIP$POP_SEND_ID_HEADERS is defined. |
X-POP3-ID: | Message UID. Sent only if logical name TCPIP$POP_SEND_ID_HEADERS is defined. |
The POP server sends these message headers to the POP client unless all of the following are true:
Note that the POP server checks the SMTP configuration database to
ensure that it has been configured with the qualifier
/OPTION=TOP_HEADERS so that headers print at the top of the message. If
the POP logical name TCPIP$POP_IGNORE_MAIL11_HEADERS is defined, the
SMTP option TOP_HEADERS must also be set. If not, the POP server issues
a warning in the log file and does not acknowledge the
TCPIP$POP_IGNORE_MAIL11_HEADERS definition.
15.1.6.1 How POP Rebuilds the OpenVMS Message From: Field
The most important message header is the From: header, because it can be used as a destination address if a reply is requested from the POP client. Therefore, the POP server rebuilds the OpenVMS message From: field in compliance with RFC 822 before sending the header to the POP client.
The different types of addresses that can appear in the OpenVMS message From: field are as follows:
Address Type | Address Format |
---|---|
SMTP | SMTP%" legal-address", where legal-address is an address that is compliant with RFC 822 and is commonly in the user@domain format |
DECnet | NODE::USERNAME |
User name | USERNAME |
DECnet address within quotation marks | NODE::"user@host" |
Cluster-forwarding SMTP address | NODE::SMTP%"user@domain" |
Note that a host name is local if any of the following are true:
Some POP client systems are confused by the presence of personal names when you attempt to reply to a mail message or when the name contains commas or other special characters. If you define the TCPIP$POP_PERSONAL_NAME logical name outlined in Section 15.3, make sure you test the configuration carefully with your POP client systems.
The following sections describe how POP rebuilds the message
From: field for each type of address.
15.1.6.1.1 SMTP Address
The POP server uses the SMTP address within the quotation marks to rebuild the From: field of an SMTP address. For example, message header From: SMTP%"james.jones@federation.gov" becomes:
From: james.jones@federation.gov
Note that SMTP hides nested double quotation marks by changing them to
cent sign characters (¢) before passing them to OpenVMS mail and
then changing them back after a reply. The POP server removes any cent
signs (¢) that designate double quotation marks. For example,
message header
From: SMTP%"¢ABCMTS::MRGATE::\¢ABCDEF::VIVALDI
\¢¢@xyz.org" becomes:
From: "ABCMTS::MRGATE::\"ABCDEF::VIVALDI\""@xyz.org
15.1.6.1.2 DECnet Address
The TCPIP$POP_DECNET_REWRITE logical name values define how the POP server rebuilds a DECnet address as shown in the following list:
If an SMTP substitute domain is defined, the POP server appends it to the user name followed by a commercial at sign (@). Otherwise, POP uses the local host name.
For example, with a substitute domain defined as acme.widgets.com, message header From: Smith becomes:
From: smith@acme.widgets.com.
15.1.6.1.4 DECnet Address That Contains Quotation Marks
The values assigned to the TCPIP$POP_QUOTED_DECNET_REWRITE logical name define how the POP server rebuilds a DECnet address that contains quotation marks:
With a cluster-forwarding SMTP address, the POP server uses the SMTP address within the quotation marks. For example, message header From: ABCDEF::SMTP%"james.jones@federation.gov" becomes:
From: james.jones@federation.gov
15.1.6.1.6 All Other Addresses
For all other address formats, the POP server changes the entire address to the SMTP format:
For example, if the substitute domain is xyz.org, message header From: ABCMTS::MRGATE::"ORDERS::SPECIAL" becomes:
From: "ABCMTS::MRGATE::\"ORDERS::SPECIAL\""@xyz.org
If the logical name TCPIP$POP_IGNORE_MAIL11_HEADERS is defined and the
address is an SMTP address, the rebuilt From: field is not
displayed to the user. In this case, the POP server sends the actual
headers from the body of the mail as the mail headers.
15.2 Starting and Stopping the POP Server
The POP server process starts automatically if you specified automatic startup during the configuration procedure (TCPIP$CONFIG.COM).
To start the POP server process manually, enter:
$ @SYS$MANAGER:TCPIP$POP_STARTUP |
To stop the POP server process, enter:
$ @SYS$MANAGER:TCPIP$POP_SHUTDOWN |
To modify the default POP server settings and configure additional characteristics, define TCPIP$POP logical names in the SYS$MANAGER:TCPIP$POP_SYSTARTUP.COM file. If you modify the POP startup file, restart the POP server to make the changes take effect.
You can modify the following POP server characteristics:
Table 15-2 outlines the POP logical names, default settings, and characteristic options.
Logical Name | Characteristic |
---|---|
TCPIP$POP_SECURITY value |
Defines a level of security for the POP server. Determines the timing
and text of error messages sent from the POP server to the POP client
when authorization errors occur (for example, when an invalid user name
or password is sent):
|
TCPIP$POP_TRACE | If defined, the POP server outputs all messages sent to and received from the POP client to a log file. |
TCPIP$POP_LOG_LEVEL value |
Defines the type of messages logged by the POP server:
|
TCPIP$POP_POSTMASTER value |
Defines a person or persons to receive a failure mail message from the
POP server startup procedure (TCPIP$POP_STARTUP.COM) when the POP
server exits with an error. For example, to have the failure mail
message sent to users Jones and Smith, define the logical name as
follows:
$ DEFINE/SYSTEM TCPIP$POP_POSTMASTER "JONES, SMITH" |
TCPIP$POP_MESSAGE_MAXIMUM n | Defines the maximum number of mail messages that a single client can download per connection, where n is a number from 0 to 65,535. If not defined, the POP server uses the default value of 0 (no maximum). |
TCPIP$POP_LINK_IDLE_TIMEOUT n |
Determines the length of time the server allows a link to a POP client
to remain idle, where
n is a number specified in OpenVMS delta time delimited by
quotation marks. A POP link remains active until released by the POP
client.
If not defined, the POP server does not set a link idle value (0 00:00:00.00). |
TCPIP$POP_PERSONAL_NAME | If defined, the POP server provides the POP clients with message header From: fields that include the sender's personal name, if one appeared in the sender's From: field. |
TCPIP$POP_LEAVE_IN_NEWMAIL | If defined, mail that has been read by the PC client but not deleted remains in the NEWMAIL folder. Allows users to access mail from different systems and determine when to move or delete the mail from the POP server. If not defined, mail that has been read but not deleted is moved to the MAIL folder. |
TCPIP$POP_IGNORE_MAIL11_HEADERS | If defined, the POP server ignores the OpenVMS message headers when mail is sent from SMTP, which contains an SMTP address in the From: field. For information about how POP forms message headers, see Section 15.1.6. |
TCPIP$POP_SEND_ID_HEADERS | If defined, the POP server sends X-POP3-Server and X-POP3-ID headers for each mail message. If not defined, the ID headers are not sent for any mail from an SMTP address. For information about how POP handles message headers, see Section 15.1.6. |
TCPIP$POP_DECNET_REWRITE value |
Determines how the POP server rebuilds a simple DECnet address (of the
form NODE::USER) in the OpenVMS message
From: field when it sends the mail to the POP client, where
value is one of the following:
For more information about how POP rebuilds the message headers, see Section 15.1.6.1.2. |
TCPIP$POP_QUOTED_DECNET_REWRITE
value |
Determines how the POP server rebuilds a DECnet address that contains
quotation marks (an address of the form NODE::"user@host") in the
OpenVMS mail
From: field when it sends the message to the POP client, where
value is one of the following:
For more information about how POP rebuilds the message headers, see Section 15.1.6.1.4. |
TCPIP$POP_SNDBUF n | Allows you to increase or decrease the size of the TCP flow control buffer. Sets the SO_SNDBUF socket option to a specific number, where n is the number 512 or greater. If not defined, the POP server uses the value specified in the SHOW PROTOCOL/PARAMETERS command. |
TCPIP$POP_DISUSERPASS | Disables the client USER and PASS commands and sends a failure message to the POP client on receipt of either of the commands. For more information about POP user authorization methods, see Section 15.1.5. |
TCPIP$POP_PURGE_RECLAIM | If defined, the POP server performs a PURGE/RECLAIM command action after it deletes messages. |
Previous | Next | Contents | Index |