/var/qmail/bin/qmail-popup \
`cat /var/qmail/control/me` \
/var/qmail/bin/qmail-poplogin \
/var/qmail/bin/qmail-pop3d
That means if no ~/.poppasswd exists for a particular user, qmail-poplogin denies any access. ~/.poppasswd files have a format similar to that of passwd that consists of three colon-separated fields per line: mailbox name, encrypted passwd, and mail directory. Mailbox names consist of the login name and are optionally followed by a dash and a second name component. Example:
borchert:S903JHAaJYtlY:./mailbox/inbox/ borchert-bugtraq:S903JHAaJYtlY:./mailbox/bugtraq/ borchert-politech:S903JHAaJYtlY:./mailbox/politech/This creates three POP users named ``borchert', ``borchert-bugtraq', and ``borchert-politech' together with their invidual passwords and their associated mail directory.
In case of a successful authorization, qmail-poplogin passes the third field of the matching entry in ~/.poppasswd to its command parameter (usually qmail-pop3d).
0 in case of success
1 in case of hard errors
111 in case of temporary problems
Additionally, an auth.info log entry is passed to syslog.
An alerting email message to root is generated on tries to login to accounts with a user id less than 100, or on passing the password of the system's passwd table.
~/.poppasswd pop access configuration file