saslauthd – sasl authentication server<\/li>\n<\/ul>\nWe need dovecot as the retrieval mechanism, and it won’t be configured just yet.<\/p>\n
We need sendmail to …. send email.<\/p>\n
We need saslauthd so that we can AUTH our sendmail instance, which allows us to not mail-proxy the world.<\/p>\n
[root@mailboy ~]# yum install sendmail sendmail-cf cyrus-sasl cyrus-sasl-devel cyrus-sasl-gssapi cyrus-sasl-md5 cyrus-sasl-plain dovecot\r\nPackage cyrus-sasl-2.1.23-15.el6_6.2.x86_64 already installed and latest version\r\nResolving Dependencies\r\n--> Running transaction check\r\n---> Package sendmail.x86_64 0:8.14.4-9.el6_8.1 will be installed\r\n--> Processing Dependency: procmail for package: sendmail-8.14.4-9.el6_8.1.x86_64\r\n--> Processing Dependency: libhesiod.so.0()(64bit) for package: sendmail-8.14.4-9.el6_8.1.x86_64\r\n--> Running transaction check\r\n---> Package sendmail-cf.noarch 0:8.14.4-9.el6_8.1 will be installed\r\n--> Running transaction check\r\n---> Package hesiod.x86_64 0:3.1.0-19.el6 will be installed\r\n---> Package procmail.x86_64 0:3.22-25.1.el6_5.1 will be installed\r\n--> Running transaction check\r\n---> Package cyrus-sasl-devel.x86_64 0:2.1.23-15.el6_6.2 will be installed\r\n---> Package cyrus-sasl-gssapi.x86_64 0:2.1.23-15.el6_6.2 will be installed\r\n---> Package cyrus-sasl-md5.x86_64 0:2.1.23-15.el6_6.2 will be installed\r\n---> Package cyrus-sasl-plain.x86_64 0:2.1.23-15.el6_6.2 will be installed\r\n---> Package dovecot.x86_64 1:2.0.9-22.el6 will be installed\r\n--> Processing Dependency: portreserve for package: 1:dovecot-2.0.9-22.el6.x86_64\r\n--> Running transaction check\r\n---> Package portreserve.x86_64 0:0.0.4-11.el6 will be installed\r\n--> Finished Dependency Resolution\r\n\r\nInstalled: sendmail.x86_64 0:8.14.4-9.el6_8.1 cyrus-sasl-devel.x86_64 0:2.1.23-15.el6_6.2 cyrus-sasl-gssapi.x86_64 0:2.1.23-15.el6_6.2 cyrus-sasl-md5.x86_64 0:2.1.23-15.el6_6.2 cyrus-sasl-plain.x86_64 0:2.1.23-15.el6_6.2 dovecot.x86_64 1:2.0.9-22.el6\r\n\r\nDependency Installed:\r\n hesiod.x86_64 0:3.1.0-19.el6 procmail.x86_64 0:3.22-25.1.el6_5.1 portreserve.x86_64 0:0.0.4-11.el6\r\n\r\nComplete!<\/pre>\nAnd that takes care of 99% of everything we need! Just need to make sure we have our services:<\/p>\n
[root@mailboy ~]# service sendmail status\r\nsendmail is stopped\r\nsm-client is stopped\r\n[root@mailboy ~]# service dovecot status\r\ndovecot is stopped\r\n[root@mailboy ~]# service saslauthd status\r\nsaslauthd is stopped\r\n[root@mailboy ~]#<\/pre>\nBingo!<\/p>\n
Configuring Sendmail:<\/strong><\/p>\nThis…this is a pain in the ass. Get to \/etc\/mail, which is where sendmail claims its territory.<\/p>\n
So, the first thing we need to do is \/know\/ what we need to do. This can be pretty hard and daunting at the start, but i’ve seemed to break this down to a couple steps.<\/p>\n
Some configuration files are easy, plain-texty-types. Others are “learn M4, make, compile, pray”.<\/p>\n
local-host-names<\/span>: Easy plain-text list of all domains you are accepting mail from. There shouldn’t really be much aside from “Edit with favorite editor, then edit more and more”. A sample entry is as easy as derpydoodles.com<\/em><\/p>\nvirtusertable<\/span>: This is the “who gets what mail, and where mail can go to” configuration. Before digging into this, I created a linux\u00a0postyman<\/em> user to have all domains listed in the\u00a0local-host-names<\/em> dump their mail to. Seemed pretty easy. The configuration to place into this file ended up being:<\/p>\n# http:\/\/www.yolinux.com\/TUTORIALS\/Sendmail.html\r\n# File \/etc\/mail\/virtusertable (Optional) Allows the separation of emails by domain. i.e. greg@domain1.com and greg@domain2.com go to two different users greg1 and greg2.\r\n# webmaster@domain-1.com dave\r\n# webmaster@domain-2.com john\r\n# john@domain-2.com john\r\n# @domain-2.com error:nouser User unknown\r\n# @domain3.com mathew\r\n# The second column is the local user, a remote forwarding email address or a mailing list entry in \/etc\/aliases.\r\n########################################\r\n# NOTE: Check \/etc\/aliases to make sure that you dont use one there before putting it here\r\n########################################\r\n# Make all email to all domains below go to postmaster.\r\n\r\n@derpydoodles.com\u00a0postyman<\/pre>\nAfter this configuration is done, we have to “build the database!”. This is sort-of easy:<\/p>\n
makemap hash \/etc\/mail\/virtusertable < \/etc\/mail\/virtusertable<\/pre>\nsendmail.mc:<\/span> This is a son-of-a-doggie.<\/p>\nSo, the first thing is to get Authentication rolling up.\u00a0I’ve copy\/pasted the changes necessary to get “AUTH LOGIN” working for sendmail:<\/p>\n
Uncomment:<\/p>\n
dnl #\r\n dnl # The following allows relaying if the user authenticates, and disallows\r\n dnl # plaintext authentication (PLAIN\/LOGIN) on non-TLS links\r\n dnl #\r\n define(`confAUTH_OPTIONS', `A p')dnl\r\n define(`confAUTH_MECHANISMS', `LOGIN PLAIN')dnl\r\n TRUST_AUTH_MECH(`LOGIN PLAIN')dnl<\/pre>\nComment and Add:<\/p>\n
dnl # TRUST_AUTH_MECH(`EXTERNAL DIGEST-MD5 CRAM-MD5 LOGIN PLAIN')dnl\r\n dnl # define(`confAUTH_MECHANISMS', `EXTERNAL GSSAPI DIGEST-MD5 CRAM-MD5 LOGIN PLAIN')dnl\r\n define(`confAUTH_OPTIONS', `A')dnl\r\n define(`confAUTH_MECHANISMS', `LOGIN PLAIN')dnl\r\n TRUST_AUTH_MECH(`LOGIN PLAIN')dnl\r\n dnl #<\/pre>\nComment and Modify:<\/p>\n
dnl # The following causes sendmail to only listen on the IPv4 loopback address\r\n dnl # 127.0.0.1 and not on any other network devices. Remove the loopback\r\n dnl # address restriction to accept email from the internet or intranet.\r\n dnl #\r\n dnl #DAEMON_OPTIONS(`Port=smtp,Addr=127.0.0.1, Name=MTA')dnl\r\n DAEMON_OPTIONS(`Port=smtp,Name=MTA')dnl\r\n dnl #<\/pre>\nAnd finally, allow the extra port for funsies:<\/p>\n
DAEMON_OPTIONS(`Port=587, Name=MSA, M=E')dnl<\/pre>\nAnd then we need to “compile” this out…<\/p>\n
m4 \/etc\/mail\/sendmail.mc > \/etc\/mail\/sendmail.cf<\/pre>\nStart some services:<\/p>\n
[root@mailboy mail]# service saslauthd start\r\nStarting saslauthd: [ OK ]\r\n[root@mailboy mail]# service sendmail start\r\nStarting sendmail: [ OK ]\r\nStarting sm-client: [ OK ]\r\n[root@mailboy mail]#<\/pre>\nAnd testing:<\/p>\n
<\/p>\n","protected":false},"excerpt":{"rendered":"
So, I currently have the following on my VPS so that I can properly run my own mail server: sendmail: for SMTP mail dovecot: for POP3 mail When I set them up, I made it so that I could emulate what I originally had through phpwebhosting.com, which was basically “all mail gets forwarded to one […]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[2],"tags":[],"class_list":["post-122","post","type-post","status-publish","format-standard","hentry","category-random"],"_links":{"self":[{"href":"https:\/\/www.unliterate.net\/index.php\/wp-json\/wp\/v2\/posts\/122","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.unliterate.net\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.unliterate.net\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.unliterate.net\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.unliterate.net\/index.php\/wp-json\/wp\/v2\/comments?post=122"}],"version-history":[{"count":9,"href":"https:\/\/www.unliterate.net\/index.php\/wp-json\/wp\/v2\/posts\/122\/revisions"}],"predecessor-version":[{"id":131,"href":"https:\/\/www.unliterate.net\/index.php\/wp-json\/wp\/v2\/posts\/122\/revisions\/131"}],"wp:attachment":[{"href":"https:\/\/www.unliterate.net\/index.php\/wp-json\/wp\/v2\/media?parent=122"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.unliterate.net\/index.php\/wp-json\/wp\/v2\/categories?post=122"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.unliterate.net\/index.php\/wp-json\/wp\/v2\/tags?post=122"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}