Postfix : Configuration avec authentification SMTP

De www.yakakliker.org
Révision datée du 2 juin 2024 à 15:55 par Administrateur (discussion | contributions) (Page créée avec « === Installation === <syntaxhighlight lang="bash"> sudo apt-get install postfix sudo apt-get install postfix mailutils libsasl2-2 ca-certificates libsasl2-modules sudo dpkg-reconfigure postfix </syntaxhighlight> === Configuration du fichiers /etc/postfix/main.cf === <syntaxhighlight lang="bash"> # See /usr/share/postfix/main.cf.dist for a commented, more complete version # Debian specific: Specifying a file name will cause the first # line of that file to b... »)
(diff) ← Version précédente | Voir la version actuelle (diff) | Version suivante → (diff)

Installation

sudo apt-get install postfix

sudo apt-get install postfix mailutils libsasl2-2 ca-certificates libsasl2-modules

sudo dpkg-reconfigure postfix

Configuration du fichiers /etc/postfix/main.cf

# See /usr/share/postfix/main.cf.dist for a commented, more complete version


# Debian specific:  Specifying a file name will cause the first
# line of that file to be used as the name.  The Debian default
# is /etc/mailname.
#myorigin = /etc/mailname

smtpd_banner = $myhostname ESMTP $mail_name (Ubuntu)
biff = no

# appending .domain is the MUA job.
append_dot_mydomain = no

# Uncomment the next line to generate "delayed mail" warnings
#delay_warning_time = 4h

readme_directory = no
# See http://www.postfix.org/COMPATIBILITY_README.html -- default to 2 on
# fresh installs.
compatibility_level = 2

# TLS parameters
smtpd_tls_cert_file=/etc/ssl/certs/ssl-cert-snakeoil.pem
smtpd_tls_key_file=/etc/ssl/private/ssl-cert-snakeoil.key
smtp_tls_wrappermode = yes
smtp_tls_security_level = encrypt
#smtpd_tls_security_level=may

smtp_tls_CApath=/etc/ssl/certs
smtp_tls_session_cache_database = btree:${data_directory}/smtp_scache
smtpd_relay_restrictions = permit_mynetworks permit_sasl_authenticated defer_unauth_destination
myhostname = yakakliker.org
alias_maps = hash:/etc/aliases
alias_database = hash:/etc/aliases
mydestination = monitor.yakakliker.org, smokeping, localhost.localdomain, , localhost
#relayhost = 
mynetworks = 127.0.0.0/8 [::ffff:127.0.0.0]/104 [::1]/128
mailbox_size_limit = 0
recipient_delimiter = +
inet_interfaces = loopback-only
inet_protocols = all

relayhost = smtp-fr.securemail.pro:465


smtp_sasl_auth_enable = yes
smtp_sasl_password_maps = hash:/etc/postfix/sasl_passwd
smtp_sasl_security_options =
smtp_tls_CAfile = /etc/postfix/cacert.pem
smtp_use_tls = yes

smtp_sasl_mechanism_filter = login

#myorigin = /etc/mailname

Configuration du fichier /etc/postfix/sasl_passwd

smtp-fr.securemail.pro:465 webmaster@yakakliker.org:Motdepasse

sudo chmod 400 /etc/postfix/sasl_passwd

sudo postmap /etc/postfix/sasl_passwd

Création des certificats

cd ~

cd /etc/ssl/certs

sudo openssl req -newkey rsa:2048 -new -nodes -x509 -days 3650 -keyout key-for-smtp-gmail.pem -out cert-for-smtp-gmail.pem -subj "/C=FR/ST=FRANCE/L=TOURS/O=YAKAKLIKER/OU=MONITORING/CN=MONITOR/emailAddress=webmaster@yakakliker.org"

sudo cat /etc/ssl/certs/cert-for-smtp-gmail.pem | sudo tee -a /etc/postfix/cacert.pem

sudo systemctl restart postfix

Test d'envoi de mail

sudo echo "Test d'envoi de mail" | mail -s "Test" adresse@mail
Récupérée de « http://www.yakakliker.org/index.php?title=Postfix_:_Configuration_avec_authentification_SMTP&oldid=286 »