Mercurial > shinyoukai > mailserver

changeset 0:e3de72cc63b9

Find changesets by keywords (author, files, the commit message), revision number or hash, or revset expression.
I have no interest in an ordinary menu
author Shin'ya Minazuki <shinyoukai@laidback.moe>
date Mon, 10 Nov 2025 21:14:26 +0900
parents
children 007252fb6449
files dovecot/dovecot.conf postfix/main.cf sasl2/smtpd.conf
diffstat 3 files changed, 173 insertions(+), 0 deletions(-) [+]
line wrap: on
line diff
--- /dev/null	Thu Jan 01 00:00:00 1970 +0000
+++ b/dovecot/dovecot.conf	Mon Nov 10 21:14:26 2025 +0900
@@ -0,0 +1,110 @@
+## Dovecot configuration file
+
+listen = *, ::
+
+mail_plugin_dir = /usr/lib/dovecot
+base_dir = /var/run/dovecot
+instance_name = dovecot
+
+protocols = imap lmtp pop3
+
+# TLS stuff
+ssl = yes
+ssl_cert = </etc/letsencrypt/live/example.net/fullchain.pem
+ssl_key = </etc/letsencrypt/live/example.net/privkey.pem
+
+# Authentication
+auth_mechanisms = plain login
+auth_username_chars = abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ01234567890.-_@
+auth_username_format = %n
+disable_plaintext_auth = no
+
+# Valid users
+first_valid_uid = 143
+last_valid_uid = 1003
+first_valid_gid = 6
+last_valid_gid = 1008
+
+lda_mailbox_autocreate = yes
+imap_capability = +SPECIAL-USE
+
+# Hostname
+hostname = example.net
+
+# PostgreSQL UserDB
+#userdb {
+#	driver = sql
+#	args = /etc/dovecot/pgsql.conf
+#}
+
+#passdb {
+#	driver = sql
+#	args = /etc/dovecot/pgsql.conf
+#}
+
+protocol lmtp {
+	mail_plugins = $mail_plugins sieve
+}
+
+service auth {
+        unix_listener auth-userdb {
+                mode = 0660
+                user = dovecot
+                group = mail
+        }
+}
+
+passdb {
+  driver = pam
+}
+
+userdb {
+  driver = passwd
+}
+
+service lmtp {
+        unix_listener lmtp {
+                mode = 0660
+                user = dovecot
+                group = mail
+        }
+}
+
+
+# Mailbox
+mail_location = maildir:~/Maildir
+mailbox_list_index = yes
+mail_uid = dovecot
+mail_gid = dovecot
+
+namespace inbox {
+	type = private
+	inbox = yes
+	mailbox Archive {
+		special_use = \Archive
+		auto = create
+	}
+	mailbox Drafts {
+		special_use = \Drafts
+		auto = create
+	}
+	mailbox Sent {
+		special_use = \Sent
+		auto = create
+	}
+	mailbox Junk {
+		special_use = \Junk
+		auto = create
+		autoexpunge = 30d
+	}
+	mailbox Trash {
+		special_use = \Trash
+		auto = create
+		autoexpunge = 7d
+	}
+}
+
+plugin {
+	sieve = yes
+	sieve_after = /etc/dovecot/sieve
+}
--- /dev/null	Thu Jan 01 00:00:00 1970 +0000
+++ b/postfix/main.cf	Mon Nov 10 21:14:26 2025 +0900
@@ -0,0 +1,61 @@
+# See /usr/share/postfix/main.cf.dist for a commented, more complete version
+
+
+# Debian specific:  Specifying a file name will cause the first
+# line of that file to be used as the name.  The Debian default
+# is /etc/mailname.
+#myorigin = /etc/mailname
+
+setgid_group = maildrop
+smtpd_banner = $myhostname ESMTP $mail_name (NetBSD)
+biff = no
+
+# appending .domain is the MUA's job.
+append_dot_mydomain = no
+
+# Uncomment the next line to generate "delayed mail" warnings
+#delay_warning_time = 4h
+
+readme_directory = no
+
+# See http://www.postfix.org/COMPATIBILITY_README.html -- default to 3.6 on
+# fresh installs.
+compatibility_level = 3.6
+
+
+
+# TLS parameters
+smtpd_tls_cert_file=/etc/letsencrypt/live/example.net/fullchain.pem
+smtpd_tls_key_file=/etc/letsencrypt/live/example.net/privkey.pem
+smtpd_tls_security_level=may
+
+smtp_tls_CApath=/etc/openssl/certs
+smtp_tls_security_level=may
+smtp_tls_session_cache_database = btree:${data_directory}/smtp_scache
+
+
+smtpd_sasl_auth_enable = yes
+
+smtpd_relay_restrictions = permit_mynetworks, permit_sasl_authenticated, defer_unauth_destination
+smtpd_recipient_restrictions = permit_sasl_authenticated, permit_mynetworks, defer_unauth_destination
+myhostname = mail.example.net
+mydomain = example.net
+myorigin = /etc/mailname
+alias_maps = hash:/etc/mail/aliases
+alias_database = hash:/etc/mail/aliases
+mydestination = $myhostname, $mydomain, mail.example.net, localhost
+relayhost = 
+mynetworks = 127.0.0.0/8 [::ffff:127.0.0.0]/104 [::1]/128
+home_mailbox = Maildir/
+recipient_delimiter = +
+inet_interfaces = all
+inet_protocols = all
+cyrus_sasl_config_path = /etc/sasl2
+smtpd_sasl_local_domain = $myhostname
+broken_sasl_auth_clients = yes
+smtpd_sasl_security_options = noanonymous
+
+smtpd_milters = inet:127.0.0.1:11332
+milter_default_action = accept
+
+smtpd_tls_exclude_ciphers = aNULL, eNULL, EXPORT, DES, RC4, MD5, PSK, aECDH, EDH-DSS-DES-CBC3-SHA, KRB5-DES, CBC3-SHA
--- /dev/null	Thu Jan 01 00:00:00 1970 +0000
+++ b/sasl2/smtpd.conf	Mon Nov 10 21:14:26 2025 +0900
@@ -0,0 +1,2 @@
+pwcheck_method: saslauthd
+mech_list: LOGIN PLAIN