postfix/manager
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity

added some install files

Browse Source
This commit is contained in:
Darko Luketic
2022-05-22 14:56:45 +02:00
parent 0796745030
commit 7fd8f4a884
46 changed files with 781 additions and 18 deletions
Download Patch File Download Diff File Expand all files Collapse all files

3
install/files/dovecot/conf.d/10-auth.conf Normal file
View File

@ -0,0 +1,3 @@
auth_mechanisms = plain login
!include auth-system.conf.ext
!include auth-sql.conf.ext

32
install/files/dovecot/conf.d/10-director.conf Normal file
View File

@ -0,0 +1,32 @@
# To enable director service, uncomment the modes and assign a port.
service director {
unix_listener login/director {
#mode = 0666
}
fifo_listener login/proxy-notify {
#mode = 0666
}
unix_listener director-userdb {
#mode = 0600
}
inet_listener {
#port =
}
}
# Enable director for the wanted login services by telling them to
# connect to director socket instead of the default login socket:
service imap-login {
#executable = imap-login director
}
service pop3-login {
#executable = pop3-login director
}
service submission-login {
#executable = submission-login director
}
# Enable director for LMTP proxying:
protocol lmtp {
#auth_socket_path = director-userdb
}

13
install/files/dovecot/conf.d/10-mail.conf Normal file
View File

@ -0,0 +1,13 @@
mail_location = maildir:/srv/vmail/%d/%n
namespace inbox {
inbox = yes
}
mail_uid = 2000
mail_gid = 2000
mail_privileged_group = vmail
first_valid_uid = 2000
last_valid_uid = 2000
mail_plugins = old_stats
protocol !indexer-worker {
}
maildir_copy_with_hardlinks = yes

65
install/files/dovecot/conf.d/10-master.conf Normal file
View File

@ -0,0 +1,65 @@
service imap-login {
inet_listener imap {
port = 143
}
inet_listener imaps {
port = 993
ssl = yes
}
service_count = 0
}
service pop3-login {
inet_listener pop3 {
port = 110
}
inet_listener pop3s {
port = 995
ssl = yes
}
}
service lmtp {
unix_listener /var/spool/postfix/private/dovecot-lmtp {
group = postfix
mode = 0666
user = postfix
}
}
service imap {
}
service pop3 {
}
service auth {
unix_listener auth-userdb {
mode = 0666
user = vmail
group = vmail
}
# Postfix smtp-auth
unix_listener /var/spool/postfix/private/auth {
mode = 0660
user = postfix
group = postfix
}
}
service auth-worker {
}
service dict {
unix_listener dict {
}
}
service old-stats {
inet_listener {
address = 127.0.0.1
port = 24242
}
}

7
install/files/dovecot/conf.d/10-ssl.conf Normal file
View File

@ -0,0 +1,7 @@
ssl = yes
ssl_cert = </etc/letsencrypt/live/{{.Hostname}}/fullchain.pem
ssl_key = </etc/letsencrypt/live/{{.Hostname}}/privkey.pem
ssl_require_crl = no
ssl_dh=</etc/dovecot/dh.pem

10
install/files/dovecot/conf.d/15-lda.conf Normal file
View File

@ -0,0 +1,10 @@
postmaster_address = {{.Postmaster}}
hostname = {{.Hostname}}
quota_full_tempfail = yes
recipient_delimiter = +
lda_mailbox_autocreate = yes
lda_mailbox_autosubscribe = yes
protocol lda {
mail_plugins = $mail_plugins sieve quota
}

40
install/files/dovecot/conf.d/15-mailboxes.conf Normal file
View File

@ -0,0 +1,40 @@
# NOTE: Assumes "namespace inbox" has been defined in 10-mail.conf.
namespace inbox {
# These mailboxes are widely used and could perhaps be created automatically:
mailbox Drafts {
special_use = \Drafts
}
mailbox Junk {
special_use = \Junk
}
mailbox Trash {
special_use = \Trash
}
# For \Sent mailboxes there are two widely used names. We'll mark both of
# them as \Sent. User typically deletes one of them if duplicates are created.
mailbox Sent {
special_use = \Sent
}
mailbox "Sent Messages" {
special_use = \Sent
}
# If you have a virtual "All messages" mailbox:
#mailbox virtual/All {
# special_use = \All
# comment = All my messages
#}
# If you have a virtual "Flagged" mailbox:
#mailbox virtual/Flagged {
# special_use = \Flagged
# comment = All my flagged messages
#}
# If you have a virtual "Important" mailbox:
#mailbox virtual/Important {
# special_use = \Important
# comment = All my important messages
#}
}

3
install/files/dovecot/conf.d/20-imap.conf Normal file
View File

@ -0,0 +1,3 @@
protocol imap {
mail_plugins = $mail_plugins quota imap_quota
}

4
install/files/dovecot/conf.d/20-lmtp.conf Normal file
View File

@ -0,0 +1,4 @@
protocol lmtp {
postmaster_address = info@icod.de
mail_plugins = quota sieve
}

57
install/files/dovecot/conf.d/20-managesieve.conf Normal file
View File

@ -0,0 +1,57 @@
protocols = $protocols sieve
# Service definitions
service managesieve-login {
inet_listener sieve {
address = 127.0.0.1
port = 4190
}
service_count = 1
}
service managesieve {
}
# Service configuration
protocol sieve {
# Maximum ManageSieve command line length in bytes. ManageSieve usually does
# not involve overly long command lines, so this setting will not normally
# need adjustment
#managesieve_max_line_length = 65536
# Maximum number of ManageSieve connections allowed for a user from each IP
# address.
# NOTE: The username is compared case-sensitively.
#mail_max_userip_connections = 10
# Space separated list of plugins to load (none known to be useful so far).
# Do NOT try to load IMAP plugins here.
#mail_plugins =
# MANAGESIEVE logout format string:
# %i - total number of bytes read from client
# %o - total number of bytes sent to client
#managesieve_logout_format = bytes=%i/%o
# To fool ManageSieve clients that are focused on CMU's timesieved you can
# specify the IMPLEMENTATION capability that Dovecot reports to clients.
# For example: 'Cyrus timsieved v2.2.13'
#managesieve_implementation_string = Dovecot Pigeonhole
# Explicitly specify the SIEVE and NOTIFY capability reported by the server
# before login. If left unassigned these will be reported dynamically
# according to what the Sieve interpreter supports by default (after login
# this may differ depending on the user).
#managesieve_sieve_capability =
#managesieve_notify_capability =
# The maximum number of compile errors that are returned to the client upon
# script upload or script verification.
#managesieve_max_compile_errors = 5
# Refer to 90-sieve.conf for script quota configuration and configuration of
# Sieve execution limits.
}

3
install/files/dovecot/conf.d/20-pop3.conf Normal file
View File

@ -0,0 +1,3 @@
protocol pop3 {
mail_plugins = $mail_plugins quota
}

3
install/files/dovecot/conf.d/20-submission.conf Normal file
View File

@ -0,0 +1,3 @@
protocol submission {
}

5
install/files/dovecot/conf.d/90-acl.conf Normal file
View File

@ -0,0 +1,5 @@
plugin {
}
plugin {
}

2
install/files/dovecot/conf.d/90-plugin.conf Normal file
View File

@ -0,0 +1,2 @@
plugin {
}

11
install/files/dovecot/conf.d/90-quota.conf Normal file
View File

@ -0,0 +1,11 @@
plugin {
}
plugin {
}
plugin {
}
plugin {
}

2
install/files/dovecot/conf.d/90-sieve-extprograms.conf Normal file
View File

@ -0,0 +1,2 @@
plugin {
}

3
install/files/dovecot/conf.d/90-sieve.conf Normal file
View File

@ -0,0 +1,3 @@
plugin {
sieve = file:~/sieve;active=~/.dovecot.sieve
}

9
install/files/dovecot/conf.d/auth-checkpassword.conf.ext Normal file
View File

@ -0,0 +1,9 @@
passdb {
driver = checkpassword
args = /usr/bin/checkpassword
}
# passdb lookup should return also userdb info
userdb {
driver = prefetch
}

6
install/files/dovecot/conf.d/auth-deny.conf.ext Normal file
View File

@ -0,0 +1,6 @@
passdb {
driver = passwd-file
deny = yes
args = /etc/dovecot/deny-users
}

10
install/files/dovecot/conf.d/auth-dict.conf.ext Normal file
View File

@ -0,0 +1,10 @@
passdb {
driver = dict
args = /etc/dovecot/dovecot-dict-auth.conf.ext
}
userdb {
driver = dict
args = /etc/dovecot/dovecot-dict-auth.conf.ext
}

11
install/files/dovecot/conf.d/auth-ldap.conf.ext Normal file
View File

@ -0,0 +1,11 @@
passdb {
driver = ldap
# Path for LDAP configuration file, see example-config/dovecot-ldap.conf.ext
args = /etc/dovecot/dovecot-ldap.conf.ext
}
userdb {
driver = ldap
args = /etc/dovecot/dovecot-ldap.conf.ext
}

7
install/files/dovecot/conf.d/auth-master.conf.ext Normal file
View File

@ -0,0 +1,7 @@
passdb {
driver = passwd-file
master = yes
args = /etc/dovecot/master-users
pass = yes
}

15
install/files/dovecot/conf.d/auth-passwdfile.conf.ext Normal file
View File

@ -0,0 +1,15 @@
passdb {
driver = passwd-file
args = scheme=CRYPT username_format=%u /etc/dovecot/users
}
userdb {
driver = passwd-file
args = username_format=%u /etc/dovecot/users
# Default fields that can be overridden by passwd-file
#default_fields = quota_rule=*:storage=1G
# Override fields from passwd-file
#override_fields = home=/home/virtual/%u
}

14
install/files/dovecot/conf.d/auth-sql.conf.ext Normal file
View File

@ -0,0 +1,14 @@
passdb {
driver = sql
args = /etc/dovecot/dovecot-sql.conf.ext
}
userdb {
driver = prefetch
}
userdb {
driver = sql
args = /etc/dovecot/dovecot-sql.conf.ext
}

8
install/files/dovecot/conf.d/auth-system.conf.ext Normal file
View File

@ -0,0 +1,8 @@
passdb {
driver = pam
args = "*"
}
userdb {
driver = passwd
}

23
install/files/dovecot/dovecot-dict-auth.conf.ext Normal file
View File

@ -0,0 +1,23 @@
default_pass_scheme = MD5
iterate_prefix = userdb/
key passdb {
key = passdb/%u
format = json
}
key userdb {
key = userdb/%u
format = json
}
key quota {
key = userdb/%u/quota
default_value = 100M
}
passdb_objects = passdb
userdb_objects = userdb
userdb_fields {
quota_rule = *:storage=%{dict:quota}
mail = maildir:%{dict:userdb.home}/Maildir
}

12
install/files/dovecot/dovecot-dict-sql.conf.ext Normal file
View File

@ -0,0 +1,12 @@
map {
pattern = priv/quota/storage
table = quota
username_field = username
value_field = bytes
}
map {
pattern = priv/quota/messages
table = quota
username_field = username
value_field = messages
}

16
install/files/dovecot/dovecot-sql.conf.ext Normal file
View File

@ -0,0 +1,16 @@
driver = mysql
connect = host=localhost user={{.User}} password={{.Password}} dbname={{.DBName}}
default_pass_scheme = CRYPT
password_query = SELECT username as user, password as password, \
homedir AS userdb_home, maildir AS userdb_mail, \
concat('*:bytes=', quota) as userdb_quota_rule, uid AS userdb_uid, gid AS userdb_gid \
FROM mailbox \
WHERE username = '%Lu' AND active = '1' \
AND ( access_restriction = 'ALL' OR LOCATE( '%Us', access_restriction ) > 0 )
user_query = SELECT homedir AS home, maildir AS mail, \
concat('*:bytes=', quota) as quota_rule, uid, gid \
FROM mailbox WHERE username = '%u'

5
install/files/dovecot/dovecot.conf Normal file
View File

@ -0,0 +1,5 @@
dict {
#quota = mysql:/etc/dovecot/dovecot-dict-sql.conf.ext
}
!include conf.d/*.conf
!include_try local.conf

101
install/files/postfix/main.cf Normal file
View File

@ -0,0 +1,101 @@
compatibility_level = 2
queue_directory = /var/spool/postfix
command_directory = /usr/sbin
daemon_directory = /usr/libexec/postfix
data_directory = /var/lib/postfix
mail_owner = postfix
myhostname = {{.Hostname}}
mydomain = {{.Hostname}}
myorigin = $myhostname
inet_interfaces = all
unknown_local_recipient_reject_code = 550
mynetworks_style = host
alias_maps = hash:/etc/aliases
smtpd_banner = $myhostname ESMTP $mail_name
debug_peer_level = 2
debugger_command = PATH=/bin:/usr/bin:/usr/local/bin:/usr/X11R6/bin ddd $daemon_directory/$process_name $process_id & sleep 5
sendmail_path = /usr/sbin/sendmail
newaliases_path = /usr/bin/newaliases
mailq_path = /usr/bin/mailq
setgid_group = postdrop
html_directory = no
manpage_directory = /usr/share/man
readme_directory = no
inet_protocols = ipv4,ipv6
meta_directory = /etc/postfix
shlib_directory = /usr/lib64/postfix/${mail_version}
#home_mailbox = .maildir/
smtp_tls_session_cache_database = btree:/var/lib/postfix/smtp_scache
smtp_tls_security_level = may
tls_random_source = dev:/dev/urandom
smtp_tls_loglevel = 1
smtpd_tls_loglevel = 1
smtpd_tls_cert_file = /etc/letsencrypt/live/{{.Hostname}}/fullchain.pem
smtpd_tls_received_header = yes
smtpd_tls_security_level = may
smtpd_tls_key_file = /etc/letsencrypt/live/{{.Hostname}}/privkey.pem
append_dot_mydomain = no
biff = no
delay_warning_time = 4h
smtpd_use_tls = yes
smtpd_tls_session_cache_database = btree:/var/lib/postfix/smtpd_scache
smtp_tls_session_cache_database = btree:/var/lib/postfix/smtp_scache
smtpd_tls_loglevel = 1
smtpd_tls_auth_only = yes
mailbox_size_limit = 0
recipient_delimiter = +
notify_classes = resource, software
error_notice_recipient = info@icod.de
virtual_alias_maps = mysql:/etc/postfix/mysql/virtual_alias_maps.cf
virtual_gid_maps = static:2000
virtual_mailbox_base = /srv/vmail
virtual_mailbox_domains = mysql:/etc/postfix/mysql/virtual_domains_maps.cf
virtual_mailbox_maps = mysql:/etc/postfix/mysql/virtual_mailbox_maps.cf
virtual_minimum_uid = 2000
virtual_uid_maps = static:2000
virtual_transport = lmtp:unix:private/dovecot-lmtp
smtpd_sasl_auth_enable = yes
smtpd_sasl_type = dovecot
smtpd_sasl_path = private/auth
broken_sasl_auth_clients = yes
message_size_limit = 40000000
home_mailbox = Maildir/
smtpd_sasl_authenticated_header = yes
smtpd_sasl_security_options = noanonymous
smtpd_sasl_local_domain = $myhostname
smtp_use_tls = yes
smtpd_tls_received_header = yes
smtpd_tls_mandatory_protocols = !SSLv2,!SSLv3,!TLSv1
smtp_tls_mandatory_protocols = !SSLv2,!SSLv3,!TLSv1
smtpd_tls_protocols = !SSLv2,!SSLv3,!TLSv1
smtp_tls_protocols = !SSLv2,!SSLv3,!TLSv1
smtpd_tls_mandatory_ciphers = medium
tls_random_source = dev:/dev/urandom
smtpd_recipient_restrictions =
reject_unknown_sender_domain,
reject_unknown_recipient_domain,
reject_non_fqdn_sender,
reject_unauth_pipelining,
permit_mynetworks,
permit_sasl_authenticated,
reject_unauth_destination,
reject_rbl_client cbl.abuseat.org,
reject_rbl_client bl.spamcop.net,
smtpd_helo_required = yes
smtpd_sender_restrictions =
reject_unknown_sender_domain,
check_sender_access pcre:/etc/postfix/access
smtpd_data_restrictions =
reject_unauth_pipelining
smtpd_client_restrictions = permit_sasl_authenticated
smtpd_milters = inet:localhost:8891 inet:localhost:11332
non_smtpd_milters = inet:localhost:8891
milter_default_action = accept
smtpd_tls_exclude_ciphers = aNULL, eNULL, EXPORT, DES, RC4, MD5, PSK, aECDH, EDH-DSS-DES-CBC3-SHA, EDH-RSA-DES-CBC3-SHA, KRB5-DES, CBC3-SHA
smtpd_tls_dh512_param_file = /etc/postfix/dhparams.pem
smtpd_tls_dh1024_param_file = /etc/postfix/dhparams.pem

35
install/files/postfix/master.cf Normal file
View File

@ -0,0 +1,35 @@
smtp inet n - n - - smtpd
submission inet n - n - - smtpd
-o smtpd_tls_security_level=encrypt
smtps inet n - n - - smtpd
-o smtpd_tls_wrappermode=yes
-o smtpd_sasl_auth_enable=yes
-o smtpd_sasl_type=dovecot
-o smtpd_sasl_path=private/auth
-o smtpd_client_restrictions=permit_sasl_authenticated,reject
-o milter_macro_daemon_name=ORIGINATING
pickup unix n - n 60 1 pickup
cleanup unix n - n - 0 cleanup
qmgr unix n - n 300 1 qmgr
tlsmgr unix - - n 1000? 1 tlsmgr
rewrite unix - - n - - trivial-rewrite
bounce unix - - n - 0 bounce
defer unix - - n - 0 bounce
trace unix - - n - 0 bounce
verify unix - - n - 1 verify
flush unix n - n 1000? 0 flush
proxymap unix - - n - - proxymap
proxywrite unix - - n - 1 proxymap
smtp unix - - n - - smtp
relay unix - - n - - smtp
-o syslog_name=postfix/$service_name
showq unix n - n - - showq
error unix - - n - - error
retry unix - - n - - error
discard unix - - n - - discard
local unix - n n - - local
virtual unix - n n - - virtual
lmtp unix - - n - - lmtp
anvil unix - - n - 1 anvil
scache unix - - n - 1 scache
postlog unix-dgram n - n - 1 postlogd

5
install/files/postfix/mysql/virtual_alias_maps.cf Normal file
View File

@ -0,0 +1,5 @@
user = {{.User}}
password = {{.Password}}
hosts = 127.0.0.1
dbname = {{.DBName}}
query = SELECT goto FROM alias WHERE address = '%s' AND active = '1'

5
install/files/postfix/mysql/virtual_domains_maps.cf Normal file
View File

@ -0,0 +1,5 @@
user = {{.User}}
password = {{.Password}}
hosts = 127.0.0.1
dbname = {{.DBName}}
query = SELECT domain FROM domain WHERE domain = '%s' AND backupmx = '0' AND active = '1'

7
install/files/postfix/mysql/virtual_mailbox_maps.cf Normal file
View File

@ -0,0 +1,7 @@
user = {{.User}}
password = {{.Password}}
hosts = 127.0.0.1
dbname = {{.DBName}}
table = mailbox
select_field = maildir
where_field = username