Mailserver-Best-Practice: Unterschied zwischen den Versionen
Zur Navigation springen
Zur Suche springen
Thomas (Diskussion | Beiträge) |
Thomas (Diskussion | Beiträge) |
||
Zeile 29: | Zeile 29: | ||
==main.cf== | ==main.cf== | ||
<pre> | <pre> | ||
− | smtpd_tls_cert_file = /etc/letsencrypt/live/ | + | smtpd_tls_cert_file = /etc/letsencrypt/live/yyy.tuxmen.de/fullchain.pem |
− | smtpd_tls_key_file = /etc/letsencrypt/live/ | + | smtpd_tls_key_file = /etc/letsencrypt/live/yyy.tuxmen.de/privkey.pem |
smtpd_tls_security_level = may | smtpd_tls_security_level = may | ||
smtpd_tls_received_header = yes | smtpd_tls_received_header = yes |
Version vom 7. Februar 2018, 11:10 Uhr
Prepare Maildirs
- mkdir -p /etc/skel/Maildir/new
- mkdir -p /etc/skel/Maildir/cur
- mkdir -p /etc/skel/Maildir/tmp
Install Postfix
- apt-get install postfix
Install Procmail
- apt-get install procmail
Postfix Service Handling
- systemctl start postfix.service
- systemctl restart postfix.service
- systemctl stop postfix.service
- systemctl status postfix.service
Config of Postfix
- /etc/postfix/master.cf
- /etc/postfix/main.cf
SSL Verschlüsselung
Install letsencrypt
- sudo apt install letsencrypt
- letsencrypt certonly --standalone -d yyyy.tuxmen.de
master.cf changed
smtps inet n - y - - smtpd -o smtpd_tls_wrappermode=yes -o smtpd_sasl_auth_enable=yes -o smtpd_relay_restrictions=permit_sasl_authenticated,reject
main.cf
smtpd_tls_cert_file = /etc/letsencrypt/live/yyy.tuxmen.de/fullchain.pem smtpd_tls_key_file = /etc/letsencrypt/live/yyy.tuxmen.de/privkey.pem smtpd_tls_security_level = may smtpd_tls_received_header = yes smtpd_recipient_restrictions = permit_sasl_authenticated,permit_mynetworks,reject_unauth_destination
Install and config sasl
- apt-get install sasl2-bin