Port 587

Credits

Various bits of code, scripts, and procedures were put together with information from John Simpson's qmail.jms1.net website. It's an excellent resource on managing and setting up a Qmail server.

A TLS-encrypted SMTP service so your users can send mail through your server without passing clear-text passwords across the network.

Set up the service directory, download John Simpson's SMTP run script, and set it's permissions:

cd /var/service
mkdir -m 1755 smtp-tls
cd smtp-tls
wget http://qmail.jms1.net/scripts/service-qmail-smtpd-run 
mv service-qmail-smtpd-run run
chmod 700 run

Edit /var/service/smtp-tls/run and set the appropriate options:

IP=<IP ADDRESS TO LISTEN ON>
PORT=587
SSL=0
FORCE_TLS=1
DENY_TLS=0
AUTH=1
REQUIRE_AUTH=1
ALLOW_INSECURE_AUTH=0
AUTH_CDB="$VQ/control/auth.cdb"
CHECKPW="/home/vpopmail/bin/vchkpw"

Unless for some reason you want to be using validrcptto on your authenticated SMTP services, you should disable it in the run script:

#VALIDRCPTTO_CDB="$VQ/control/validrcptto.cdb"
#VALIDRCPTTO_LIMIT=10
#VALIDRCPTTO_LOG=2

Set up the "log" directory, download its "run" script, and set its permissions:

mkdir -m 755 log
cd log
wget http://qmail.jms1.net/scripts/run.log 
mv run.log run
chmod 700 run

Create /var/qmail/control/tlsserverciphers with the contents:

ECDH+AESGCM:DH+AESGCM:ECDH+AES256:DH+AES256:ECDH+AES128:DH+AES:ECDH+3DES:DH+3DES:RSA+AESGCM:RSA+AES:RSA+3DES:!aNULL:!MD5:!DSS

Create the symbolic link in /service to start the service:

ln -s /var/service/smtp-tls /service/

Recent Updates

nginx

8 months 3 weeks ago

1.27.2 update
lighttpd

9 months 4 days ago

Drupal 10/11 config
Drupal 11

9 months 5 days ago
PHP

9 months 6 days ago

PHP 8.3.11 and AlmaLinux
Pound SSL Proxy

9 months 6 days ago

New version of Pound

Recent Links

SquidGuard

SquidGuard is a URL redirector used to use blacklists with the proxysoftware Squid. There are two big advantages to squidguard: it is fast and it is free.
NCurses Disk Usage

A disk usage analyzer with an ncurses interface, aimed to be run on a remote server where you don't have an entire gaphical setup, but have to do with a simple SSH connection. ncdu aims to be fast, simple and easy to use, and should be able to run in any minimal POSIX-like environment with ncurses installed.
WPKG

WPKG is an automated software deployment, upgrade and removal program for Windows.

It can be used to push/pull software packages, such as Service Packs, hotfixes, or program installations from a central server (for example, Samba or Active Directory) to a number of workstations.

It can run as a service to install software in the background (silent install), without user interaction.

It can install MSI, InstallShield, PackagefortheWeb, Inno Setup, Nullsoft, other software installers or .exe packages, .bat and .cmd scripts and similar: no more repackaging to perform software installation.

WPKG is open source software.
opsi

opsi (Open PC Server Integration) the Open Source client management system
Vagrant

Vagrant is a tool for building complete development environments. With an easy-to-use workflow and focus on automation, Vagrant lowers development environment setup time, increases development/production parity, and makes the "works on my machine" excuse a relic of the past.

Main menu

You are here

Port 587

Credits

Recent Updates

Recent Links