Correction & update scripts

2023-05-15 23:16:25 +02:00
parent b8fbc07a97
commit 7f34b60582
24 changed files with 740 additions and 512 deletions
--- a/default_configuration/opensmtpd/smtpd.conf.example
+++ b/default_configuration/opensmtpd/smtpd.conf.example
@@ -0,0 +1,31 @@
+# See smtpd.conf(5) for more information.
+# To accept external mail, replace with: listen on all
+#
+# Les certificats
+
+pki "cert_mail" cert "/etc/ssl/__DOMAIN__.crt"
+pki "cert_mail" key "/etc/ssl/private/__DOMAIN__.key"
+
+table aliases file:/etc/mail/aliases
+table passwd file:/etc/mail/passwd
+table virtuals file:/etc/mail/virtuals
+
+filter "rspamd" proc-exec "filter-rspamd"
+filter "dkimsign" proc-exec "filter-dkimsign -d __DOMAIN__ -s dkim -k /etc/mail/dkim/__DOMAIN__-private.key" user _dkimsign group _dkimsign
+
+# Activation du check du reverse DNS
+#filter check_rdns phase connect match !rdns disconnect "550 no rDNS available"
+#filter check_fcrdns phase connect match !fcrdns disconnect "550 no FCrDNS available"
+
+listen on all tls pki "cert_mail" hostname "__DOMAIN__" filter  rspamd
+listen on all port submission tls-require pki "cert_mail" auth <passwd> filter dkimsign
+
+action "local_mail" mbox alias <aliases>
+action "domain_mail" maildir "/var/vmail/__DOMAIN__/%{dest.user:lowercase}" virtual <virtuals>
+action "outbound" relay
+
+
+match from any for domain "__DOMAIN__" action "domain_mail"
+match from local for local action "local_mail"
+
+match auth from any for any action "outbound"
--- a/default_configuration/opensmtpd/smtpd.conf.example~
+++ b/default_configuration/opensmtpd/smtpd.conf.example~
@@ -0,0 +1,37 @@
+# See smtpd.conf(5) for more information.
+
+
+# To accept external mail, replace with: listen on all
+#
+
+# les Certificats
+pki "cert_mail" cert "/etc/ssl/__DOMAIN__.crt"
+pki "cert_mail" key "/etc/ssl/private/__DOMAIN__.key"
+
+table aliases file:/etc/mail/aliases
+table passwd file:/etc/mail/passwd
+table virtuals file:/etc/mail/virtuals
+
+filter "rspamd" proc-exec "filter-rspamd"
+filter "dkimsign" proc-exec "filter-dkimsign -d $DOMAIN -s dkim -k /etc/mail/dkim/__DOMAIN__-private.key" user _dkimsign group _dkimsign
+
+# Activation du check du reverse DNS
+#filter check_rdns phase connect match !rdns disconnect "550 no rDNS available"
+#filter check_fcrdns phase connect match !fcrdns disconnect "550 no FCrDNS available"
+
+# To accept external mail, replace with: listen on all
+
+
+listen on all tls pki "cert_mail" hostname "__DOMAIN__" filter  rspamd
+listen on all port submission tls-require pki "cert_mail" auth <passwd> filter dkimsign
+
+action "local_mail" mbox alias <aliases>
+action "domain_mail" maildir "/var/vmail/__DOMAIN__/%{dest.user:lowercase}" virtual <virtuals>
+action "outbound" relay
+
+
+# Uncomment the following to accept external mail for domain "example.org"
+match from any for domain "__DOMAIN__" action "domain_mail"
+match from local for local action "local_mail"
+
+match auth from any for any action "outbound"
--- a/default_configuration/opensmtpd/smtpd.conf~
+++ b/default_configuration/opensmtpd/smtpd.conf~
@@ -0,0 +1,37 @@
+# See smtpd.conf(5) for more information.
+
+
+# To accept external mail, replace with: listen on all
+#
+
+# les Certificats
+pki "cert_mail" cert "/etc/ssl/$DOMAIN.crt"
+pki "cert_mail" key "/etc/ssl/private/$DOMAIN.key"
+
+table aliases file:/etc/mail/aliases
+table passwd file:/etc/mail/passwd
+table virtuals file:/etc/mail/virtuals
+
+filter "rspamd" proc-exec "filter-rspamd"
+filter "dkimsign" proc-exec "filter-dkimsign -d $DOMAIN -s dkim -k /etc/mail/dkim/$DOMAIN-private.key" user _dkimsign group _dkimsign
+
+# Activation du check du reverse DNS
+#filter check_rdns phase connect match !rdns disconnect "550 no rDNS available"
+#filter check_fcrdns phase connect match !fcrdns disconnect "550 no FCrDNS available"
+
+# To accept external mail, replace with: listen on all
+
+
+listen on all tls pki "cert_mail" hostname "$DOMAIN" filter  rspamd
+listen on all port submission tls-require pki "cert_mail" auth <passwd> filter dkimsign
+
+action "local_mail" mbox alias <aliases>
+action "domain_mail" maildir "/var/vmail/$DOMAIN/%{dest.user:lowercase}" virtual <virtuals>
+action "outbound" relay
+
+
+# Uncomment the following to accept external mail for domain "example.org"
+match from any for domain "$DOMAIN" action "domain_mail"
+match from local for local action "local_mail"
+
+match auth from any for any action "outbound"
--- a/default_configuration/opensmtpd/spamd.conf.example
+++ b/default_configuration/opensmtpd/spamd.conf.example
@@ -0,0 +1,19 @@
+all:\
+        :nixspam:
+
+# Nixspam recent sources list.
+# Mirrored from http://www.heise.de/ix/nixspam
+nixspam:\
+        :black:\
+        :msg="Your address %A is in the nixspam list\n\
+        See http://www.heise.de/ix/nixspam/dnsbl_en/ for details":\
+        :method=https:\
+        :file=www.openbsd.org/spamd/nixspam.gz
+
+# An example of a list containing addresses which should not talk to spamd.
+#
+#override:\
+#       :white:\
+#       :method=file:\
+#       :file=/var/db/override.txt:
+