« Postfix : Configuration avec authentification SMTP » : différence entre les versions
De www.yakakliker.org
(Page créée avec « === Installation === <syntaxhighlight lang="bash"> sudo apt-get install postfix sudo apt-get install postfix mailutils libsasl2-2 ca-certificates libsasl2-modules sudo dpkg-reconfigure postfix </syntaxhighlight> === Configuration du fichiers /etc/postfix/main.cf === <syntaxhighlight lang="bash"> # See /usr/share/postfix/main.cf.dist for a commented, more complete version # Debian specific: Specifying a file name will cause the first # line of that file to b... ») |
Aucun résumé des modifications |
||
| Ligne 21 : | Ligne 21 : | ||
biff = no | biff = no | ||
# appending .domain is the MUA job. | # appending .domain is the MUA's job. | ||
append_dot_mydomain = no | append_dot_mydomain = no | ||
| Ligne 28 : | Ligne 28 : | ||
readme_directory = no | readme_directory = no | ||
# See http://www.postfix.org/COMPATIBILITY_README.html -- default to | |||
# See http://www.postfix.org/COMPATIBILITY_README.html -- default to 3.6 on | |||
# fresh installs. | # fresh installs. | ||
compatibility_level = | compatibility_level = 3.6 | ||
# TLS parameters | # TLS parameters | ||
smtpd_tls_cert_file=/etc/ssl/certs/ssl-cert-snakeoil.pem | smtpd_tls_cert_file=/etc/ssl/certs/ssl-cert-snakeoil.pem | ||
smtpd_tls_key_file=/etc/ssl/private/ssl-cert-snakeoil.key | smtpd_tls_key_file=/etc/ssl/private/ssl-cert-snakeoil.key | ||
#smtpd_tls_security_level=may | #smtpd_tls_security_level=may | ||
smtp_tls_CApath=/etc/ssl/certs | smtp_tls_CApath=/etc/ssl/certs | ||
#smtp_tls_security_level=may | |||
smtp_tls_session_cache_database = btree:${data_directory}/smtp_scache | smtp_tls_session_cache_database = btree:${data_directory}/smtp_scache | ||
smtp_tls_wrappermode = yes | |||
smtp_tls_security_level = encrypt | |||
smtpd_relay_restrictions = permit_mynetworks permit_sasl_authenticated defer_unauth_destination | smtpd_relay_restrictions = permit_mynetworks permit_sasl_authenticated defer_unauth_destination | ||
myhostname = yakakliker.org | myhostname = yakakliker.org | ||
alias_maps = hash:/etc/aliases | alias_maps = hash:/etc/aliases | ||
alias_database = hash:/etc/aliases | alias_database = hash:/etc/aliases | ||
mydestination = | myorigin = /etc/mailname | ||
mydestination = ubuntu, localhost.localdomain, localhost | |||
#relayhost = | #relayhost = | ||
mynetworks = 127.0.0.0/8 [::ffff:127.0.0.0]/104 [::1]/128 | mynetworks = 127.0.0.0/8 [::ffff:127.0.0.0]/104 [::1]/128 | ||
mailbox_size_limit = 0 | mailbox_size_limit = 0 | ||
recipient_delimiter = + | recipient_delimiter = + | ||
inet_interfaces = | inet_interfaces = all | ||
inet_protocols = all | inet_protocols = all | ||
relayhost = smtp-fr.securemail.pro:465 | relayhost = smtp-fr.securemail.pro:465 | ||
smtp_sasl_auth_enable = yes | smtp_sasl_auth_enable = yes | ||
| Ligne 63 : | Ligne 70 : | ||
smtp_sasl_mechanism_filter = login | smtp_sasl_mechanism_filter = login | ||
</syntaxhighlight> | </syntaxhighlight> | ||
Version du 3 juin 2024 à 13:11
Installation
sudo apt-get install postfix
sudo apt-get install postfix mailutils libsasl2-2 ca-certificates libsasl2-modules
sudo dpkg-reconfigure postfix
Configuration du fichiers /etc/postfix/main.cf
# See /usr/share/postfix/main.cf.dist for a commented, more complete version
# Debian specific: Specifying a file name will cause the first
# line of that file to be used as the name. The Debian default
# is /etc/mailname.
#myorigin = /etc/mailname
smtpd_banner = $myhostname ESMTP $mail_name (Ubuntu)
biff = no
# appending .domain is the MUA's job.
append_dot_mydomain = no
# Uncomment the next line to generate "delayed mail" warnings
#delay_warning_time = 4h
readme_directory = no
# See http://www.postfix.org/COMPATIBILITY_README.html -- default to 3.6 on
# fresh installs.
compatibility_level = 3.6
# TLS parameters
smtpd_tls_cert_file=/etc/ssl/certs/ssl-cert-snakeoil.pem
smtpd_tls_key_file=/etc/ssl/private/ssl-cert-snakeoil.key
#smtpd_tls_security_level=may
smtp_tls_CApath=/etc/ssl/certs
#smtp_tls_security_level=may
smtp_tls_session_cache_database = btree:${data_directory}/smtp_scache
smtp_tls_wrappermode = yes
smtp_tls_security_level = encrypt
smtpd_relay_restrictions = permit_mynetworks permit_sasl_authenticated defer_unauth_destination
myhostname = yakakliker.org
alias_maps = hash:/etc/aliases
alias_database = hash:/etc/aliases
myorigin = /etc/mailname
mydestination = ubuntu, localhost.localdomain, localhost
#relayhost =
mynetworks = 127.0.0.0/8 [::ffff:127.0.0.0]/104 [::1]/128
mailbox_size_limit = 0
recipient_delimiter = +
inet_interfaces = all
inet_protocols = all
relayhost = smtp-fr.securemail.pro:465
smtp_sasl_auth_enable = yes
smtp_sasl_password_maps = hash:/etc/postfix/sasl_passwd
smtp_sasl_security_options =
smtp_tls_CAfile = /etc/postfix/cacert.pem
smtp_use_tls = yes
smtp_sasl_mechanism_filter = login
Configuration du fichier /etc/postfix/sasl_passwd
smtp-fr.securemail.pro:465 webmaster@yakakliker.org:Motdepasse
sudo chmod 400 /etc/postfix/sasl_passwd
sudo postmap /etc/postfix/sasl_passwd
Création des certificats
cd ~
cd /etc/ssl/certs
sudo openssl req -newkey rsa:2048 -new -nodes -x509 -days 3650 -keyout key-for-smtp-gmail.pem -out cert-for-smtp-gmail.pem -subj "/C=FR/ST=FRANCE/L=TOURS/O=YAKAKLIKER/OU=MONITORING/CN=MONITOR/emailAddress=webmaster@yakakliker.org"
sudo cat /etc/ssl/certs/cert-for-smtp-gmail.pem | sudo tee -a /etc/postfix/cacert.pem
sudo systemctl restart postfix
Test d'envoi de mail
sudo echo "Test d'envoi de mail" | mail -s "Test" adresse@mail
