Professional Documents
Culture Documents
09 - Linux ITNSA - Mail Server
09 - Linux ITNSA - Mail Server
smtpd_sasl_type=dovecot
smtpd_sasl_path=private/auth
mailbox_transport=lmtp:unix:private/dovecot-lmtp
● # tail -f /var/log/mail.log
● # journalctl -f
Configure Dovecot
● # vim /etc/dovecot/conf.d/10-ssl.conf
ssl = yes
ssl_cert = </backup/certs/itnsa.id.crt
ssl_key = </backup/certs/itnsa.id.key
ssl_dh = </backup/certs/dh.pem
ssl_min_protocol = TLSv1.2
● # vim /etc/dovecot/conf.d/10-auth.conf
disable_plaintext_auth = yes
auth_username_format = %n
Configure Dovecot LMTP
● # vim /etc/dovecot/conf.d/10-master.conf
service lmtp {
unix_listener /var/spool/postfix/private/dovecot-lmtp {
mode = 0600
user = postfix
group = postfix
}
##################
# Postfix smtp-auth
unix_listener /var/spool/postfix/private/auth {
mode = 0660
user = postfix
group = postfix
}
Configure Dovecot Auth
● # vim /etc/dovecot/conf.d/auth-system.conf.ext
passdb {
driver = pam
# [session=yes] [setcred=yes] [failure_show_msg=yes] [max_requests=<n>]
# [cache_key=<key>] [<service name>]
args = dovecot
}
userdb {
# <doc/wiki/AuthDatabase.Passwd.txt>
driver = passwd
# [blocking=no]
#args =
mail_location = maildir:~/Maildir
Restart Dovecot & Verify
● # systemctl restart dovecot
● # tail -f /var/log/mail.log
● # journalctl -f
Configure Mail Group
● # vim /etc/aliases
notification : ops@itnsa.id, dev@itnsa.id
● # postalias /etc/aliases
● # newaliases
● # systemctl restart postfix
Test Using MUA Evolution From Office
Webmail Roundcube
1. Install database server using mariadb
○ # apt install mariadb-server
2. Make sure database server running
○ # systemctl status mysql
○ # mysql -u root -p
3. Install roundcube
○ # apt install roundcube
4. Configure https
○ # a2enmod ssl
○ # vim /etc/apache2/conf-enable/roundcube.conf
<VirtualHost *:443>
ServerName webmail.itnsa.id
DocumentRoot /var/lib/roundcube/public_html
ErrorLog ${APACHE_LOG_DIR}/roundcube_error.log
CustomLog ${APACHE_LOG_DIR}/roundcube_access.log combined
SSLEngine on
SSLCertificateFile /backup/certs/itnsa.id.crt
SSLCertificateKeyFile /backup/certs/itnsa.id.key
RewriteEngine on
RewriteCond %{HTTPS} !=on
RewriteRule ^/?(.*) https://%{SERVER_NAME}/$1 [R=301,L]
</VirtualHost>
Webmail Roundcube
○ # systemctl restart apache2
5. Configure roundcube
○ # vim /var/lib/roundcube/config/config.inc.php
$config['default_host'] = 'mail.itnsa.id';
$config['smtp_server'] = 'tls://mail.itnsa.id';
$config['smtp_port'] = '25';
$config['smtp_user'] = '';
$config['smtp_pass'] = '';
$config['product_name'] = 'Roundcube Webmail ITNSA';