« Postfix : Configuration avec authentification SMTP » : différence entre les versions

De www.yakakliker.org
VisuelWikicode
(Page créée avec « === Installation === <syntaxhighlight lang="bash"> sudo apt-get install postfix sudo apt-get install postfix mailutils libsasl2-2 ca-certificates libsasl2-modules sudo dpkg-reconfigure postfix </syntaxhighlight> === Configuration du fichiers /etc/postfix/main.cf === <syntaxhighlight lang="bash"> # See /usr/share/postfix/main.cf.dist for a commented, more complete version # Debian specific: Specifying a file name will cause the first # line of that file to b... »)
 
Aucun résumé des modifications
(17 versions intermédiaires par le même utilisateur non affichées)
Ligne 1 : Ligne 1 :
‎<html>
<script src='https://storage.ko-fi.com/cdn/scripts/overlay-widget.js'></script>
<script>
  kofiWidgetOverlay.draw('yakakliker', {
    'type': 'floating-chat',
    'floating-chat.donateButton.text': 'Café',
    'floating-chat.donateButton.background-color': '#00b9fe',
    'floating-chat.donateButton.text-color': '#fff'
  });
</script>
‎</html>
=== Installation ===
=== Installation ===
<syntaxhighlight lang="bash">
<syntaxhighlight lang="bash">
sudo apt-get install postfix
sudo apt-get install postfix mailutils libsasl2-2 ca-certificates libsasl2-modules
sudo apt-get install postfix mailutils libsasl2-2 ca-certificates libsasl2-modules


Ligne 8 : Ligne 17 :
</syntaxhighlight>
</syntaxhighlight>


=== Configuration du fichiers /etc/postfix/main.cf ===
=== Configuration du fichier /etc/postfix/main.cf ===
<syntaxhighlight lang="bash">
<syntaxhighlight lang="bash">
# See /usr/share/postfix/main.cf.dist for a commented, more complete version
# See /usr/share/postfix/main.cf.dist for a commented, more complete version
Ligne 21 : Ligne 30 :
biff = no
biff = no


# appending .domain is the MUA job.
# appending .domain is the MUA's job.
append_dot_mydomain = no
append_dot_mydomain = no


Ligne 28 : Ligne 37 :


readme_directory = no
readme_directory = no
# See http://www.postfix.org/COMPATIBILITY_README.html -- default to 2 on
 
# See http://www.postfix.org/COMPATIBILITY_README.html -- default to 3.6 on
# fresh installs.
# fresh installs.
compatibility_level = 2
compatibility_level = 3.6
 
 


# TLS parameters
# TLS parameters
smtpd_tls_cert_file=/etc/ssl/certs/ssl-cert-snakeoil.pem
smtpd_tls_cert_file=/etc/ssl/certs/ssl-cert-snakeoil.pem
smtpd_tls_key_file=/etc/ssl/private/ssl-cert-snakeoil.key
smtpd_tls_key_file=/etc/ssl/private/ssl-cert-snakeoil.key
smtp_tls_wrappermode = yes
smtp_tls_security_level = encrypt
#smtpd_tls_security_level=may
#smtpd_tls_security_level=may


smtp_tls_CApath=/etc/ssl/certs
smtp_tls_CApath=/etc/ssl/certs
#smtp_tls_security_level=may
smtp_tls_session_cache_database = btree:${data_directory}/smtp_scache
smtp_tls_session_cache_database = btree:${data_directory}/smtp_scache
smtp_tls_wrappermode = yes
smtp_tls_security_level = encrypt
smtpd_relay_restrictions = permit_mynetworks permit_sasl_authenticated defer_unauth_destination
smtpd_relay_restrictions = permit_mynetworks permit_sasl_authenticated defer_unauth_destination
myhostname = yakakliker.org
myhostname = www.yakakliker.org
alias_maps = hash:/etc/aliases
alias_maps = hash:/etc/aliases
alias_database = hash:/etc/aliases
alias_database = hash:/etc/aliases
mydestination = monitor.yakakliker.org, smokeping, localhost.localdomain, , localhost
mydestination = ubuntu, localhost.localdomain, localhost
#relayhost =  
#relayhost =  
mynetworks = 127.0.0.0/8 [::ffff:127.0.0.0]/104 [::1]/128
mynetworks = 127.0.0.0/8 [::ffff:127.0.0.0]/104 [::1]/128
mailbox_size_limit = 0
mailbox_size_limit = 0
recipient_delimiter = +
recipient_delimiter = +
inet_interfaces = loopback-only
inet_interfaces = all
inet_protocols = all
inet_protocols = all


relayhost = smtp-fr.securemail.pro:465
relayhost = smtp-fr.securemail.pro:465


smtp_sasl_auth_enable = yes
smtp_sasl_auth_enable = yes
Ligne 64 : Ligne 79 :
smtp_sasl_mechanism_filter = login
smtp_sasl_mechanism_filter = login


#myorigin = /etc/mailname
sender_canonical_maps = hash:/etc/postfix/sender_canonical
recipient_canonical_maps = hash:/etc/postfix/recipient_canonical


</syntaxhighlight>
</syntaxhighlight>
Ligne 70 : Ligne 86 :
=== Configuration du fichier /etc/postfix/sasl_passwd ===
=== Configuration du fichier /etc/postfix/sasl_passwd ===
<syntaxhighlight lang="bash">
<syntaxhighlight lang="bash">
smtp-fr.securemail.pro:465 webmaster@yakakliker.org:Motdepasse
smtp-fr.securemail.pro:465 envoyeur@yakakliker.org:Motdepasse
</syntaxhighlight><syntaxhighlight lang="bash">
</syntaxhighlight>
 
==== Création de la base de données sasl_passwd.db ====
<syntaxhighlight lang="bash">
sudo chmod 400 /etc/postfix/sasl_passwd
sudo chmod 400 /etc/postfix/sasl_passwd


Ligne 83 : Ligne 102 :
cd /etc/ssl/certs
cd /etc/ssl/certs


sudo openssl req -newkey rsa:2048 -new -nodes -x509 -days 3650 -keyout key-for-smtp-gmail.pem -out cert-for-smtp-gmail.pem -subj "/C=FR/ST=FRANCE/L=TOURS/O=YAKAKLIKER/OU=MONITORING/CN=MONITOR/emailAddress=webmaster@yakakliker.org"
sudo openssl req -newkey rsa:2048 -new -nodes -x509 -days 3650 -keyout key-for-smtp-gmail.pem -out cert-for-smtp-gmail.pem -subj "/C=FR/ST=FRANCE/L=TOURS/O=YAKAKLIKER/OU=Web/CN=WWW/emailAddress=webmaster@yakakliker.org"


sudo cat /etc/ssl/certs/cert-for-smtp-gmail.pem | sudo tee -a /etc/postfix/cacert.pem
sudo cat /etc/ssl/certs/cert-for-smtp-gmail.pem | sudo tee -a /etc/postfix/cacert.pem


</syntaxhighlight>
=== Edition du fichier /etc/aliases ===
<syntaxhighlight lang="bash">
# See man 5 aliases for format
postmaster:    root
root: wwww@yakakliker.org
user: wwww@yakakliker.org
</syntaxhighlight>
==== Création de la base de données aliases.db ====
<syntaxhighlight lang="bash">
sudo newaliases
</syntaxhighlight>
=== Changement du nom d'émetteur mail ===
Vérifier la présence de cette ligne dans le fichier /etc/postfix/main.cf<syntaxhighlight lang="bash">
sender_canonical_maps = hash:/etc/postfix/sender_canonical
</syntaxhighlight>
==== Edition du fichier /etc/postfix/sender_canonical ====
<syntaxhighlight lang="bash">
root@wiki                      www@yakakliker.org
root@wiki.yakakliker.org        www@yakakliker.org
user@wiki                      www@yakakliker.org
user@wiki.yakakliker.org        www@yakakliker.org
</syntaxhighlight>
==== Création de la base de données sender_canonical.db ====
<syntaxhighlight lang="bash">
sudo postmap /etc/postfix/sender_canonical
</syntaxhighlight>
=== Changement de l'adresse du destinataire ===
Vérifier la présence de cette ligne dans le fichier /etc/postfix/main.cf<syntaxhighlight lang="bash">
recipient_canonical_maps = hash:/etc/postfix/recipient_canonical
</syntaxhighlight>
==== Edition du fichier /etc/postfix/recipient_canonical ====
<syntaxhighlight lang="bash">
root@wiki.yakakliker.org www@yakakliker.org
root@wiki                www@yakakliker.org
user@wiki.yakakliker.org www@yakakliker.org
user@wiki                www@yakakliker.org
</syntaxhighlight>
==== Création de la base de données recipient_canonical.db ====
<syntaxhighlight lang="bash">
sudo postmap /etc/postfix/recipient_canonical
</syntaxhighlight>
=== Redémarrage de Postfix pour appliquer les configurations ===
<syntaxhighlight lang="bash">
sudo systemctl restart postfix
sudo systemctl restart postfix


Ligne 95 : Ligne 168 :
sudo echo "Test d'envoi de mail" | mail -s "Test" adresse@mail
sudo echo "Test d'envoi de mail" | mail -s "Test" adresse@mail
</syntaxhighlight>
</syntaxhighlight>
=== Lien ===
https://www.unix-experience.fr/postfix/rewrite_sender_dest/
[[Catégorie:Postfix]]
[[Catégorie:SMTP]]
[[Catégorie:Linux]]
‎<html>
<a href="https://www.compteurdevisite.com" title="compteur web gratuit sans pub"><img src="https://counter6.optistats.ovh/private/compteurdevisite.php?c=b4epghealnwlf7wuq7gn3ygll9aywrfx" border="0" title="compteur web gratuit sans pub" alt="compteur web gratuit sans pub"></a>
‎</html>

Version du 17 février 2025 à 13:35

Installation

sudo apt-get install postfix mailutils libsasl2-2 ca-certificates libsasl2-modules

sudo dpkg-reconfigure postfix

Configuration du fichier /etc/postfix/main.cf

# See /usr/share/postfix/main.cf.dist for a commented, more complete version


# Debian specific:  Specifying a file name will cause the first
# line of that file to be used as the name.  The Debian default
# is /etc/mailname.
#myorigin = /etc/mailname

smtpd_banner = $myhostname ESMTP $mail_name (Ubuntu)
biff = no

# appending .domain is the MUA's job.
append_dot_mydomain = no

# Uncomment the next line to generate "delayed mail" warnings
#delay_warning_time = 4h

readme_directory = no

# See http://www.postfix.org/COMPATIBILITY_README.html -- default to 3.6 on
# fresh installs.
compatibility_level = 3.6



# TLS parameters
smtpd_tls_cert_file=/etc/ssl/certs/ssl-cert-snakeoil.pem
smtpd_tls_key_file=/etc/ssl/private/ssl-cert-snakeoil.key
#smtpd_tls_security_level=may

smtp_tls_CApath=/etc/ssl/certs
#smtp_tls_security_level=may
smtp_tls_session_cache_database = btree:${data_directory}/smtp_scache

smtp_tls_wrappermode = yes
smtp_tls_security_level = encrypt


smtpd_relay_restrictions = permit_mynetworks permit_sasl_authenticated defer_unauth_destination
myhostname = www.yakakliker.org
alias_maps = hash:/etc/aliases
alias_database = hash:/etc/aliases
mydestination = ubuntu, localhost.localdomain, localhost
#relayhost = 
mynetworks = 127.0.0.0/8 [::ffff:127.0.0.0]/104 [::1]/128
mailbox_size_limit = 0
recipient_delimiter = +
inet_interfaces = all
inet_protocols = all

relayhost = smtp-fr.securemail.pro:465

smtp_sasl_auth_enable = yes
smtp_sasl_password_maps = hash:/etc/postfix/sasl_passwd
smtp_sasl_security_options =
smtp_tls_CAfile = /etc/postfix/cacert.pem
smtp_use_tls = yes

smtp_sasl_mechanism_filter = login

sender_canonical_maps = hash:/etc/postfix/sender_canonical
recipient_canonical_maps = hash:/etc/postfix/recipient_canonical

Configuration du fichier /etc/postfix/sasl_passwd

smtp-fr.securemail.pro:465 envoyeur@yakakliker.org:Motdepasse

Création de la base de données sasl_passwd.db

sudo chmod 400 /etc/postfix/sasl_passwd

sudo postmap /etc/postfix/sasl_passwd

Création des certificats

cd ~

cd /etc/ssl/certs

sudo openssl req -newkey rsa:2048 -new -nodes -x509 -days 3650 -keyout key-for-smtp-gmail.pem -out cert-for-smtp-gmail.pem -subj "/C=FR/ST=FRANCE/L=TOURS/O=YAKAKLIKER/OU=Web/CN=WWW/emailAddress=webmaster@yakakliker.org"

sudo cat /etc/ssl/certs/cert-for-smtp-gmail.pem | sudo tee -a /etc/postfix/cacert.pem

Edition du fichier /etc/aliases

# See man 5 aliases for format
postmaster:    root
root:	wwww@yakakliker.org
user:	wwww@yakakliker.org

Création de la base de données aliases.db

sudo newaliases

Changement du nom d'émetteur mail

Vérifier la présence de cette ligne dans le fichier /etc/postfix/main.cf

sender_canonical_maps = hash:/etc/postfix/sender_canonical

Edition du fichier /etc/postfix/sender_canonical

root@wiki                       www@yakakliker.org
root@wiki.yakakliker.org        www@yakakliker.org
user@wiki                       www@yakakliker.org
user@wiki.yakakliker.org        www@yakakliker.org

Création de la base de données sender_canonical.db

sudo postmap /etc/postfix/sender_canonical

Changement de l'adresse du destinataire

Vérifier la présence de cette ligne dans le fichier /etc/postfix/main.cf

recipient_canonical_maps = hash:/etc/postfix/recipient_canonical

Edition du fichier /etc/postfix/recipient_canonical

root@wiki.yakakliker.org www@yakakliker.org
root@wiki                www@yakakliker.org
user@wiki.yakakliker.org www@yakakliker.org
user@wiki                www@yakakliker.org

Création de la base de données recipient_canonical.db

sudo postmap /etc/postfix/recipient_canonical

Redémarrage de Postfix pour appliquer les configurations

sudo systemctl restart postfix

Test d'envoi de mail

sudo echo "Test d'envoi de mail" | mail -s "Test" adresse@mail

Lien

https://www.unix-experience.fr/postfix/rewrite_sender_dest/

compteur web gratuit sans pub

Récupérée de « http://www.yakakliker.org/index.php?title=Postfix_:_Configuration_avec_authentification_SMTP&oldid=1140 »