From e15f41c1c949e8c453ab52a701264b0e4de07e0a Mon Sep 17 00:00:00 2001 From: Philippe Pittoli Date: Sun, 24 Nov 2024 09:25:12 +0100 Subject: [PATCH] (beta.)netlib.re mail configuration --- configuration-files/baguette/mail/aliases | 99 ++++++++++++++++++++ configuration-files/baguette/mail/smtpd.conf | 43 +++++++++ configuration-files/baguette/mail/spamd.conf | 38 ++++++++ configuration-files/baguette/mail/virtuals | 6 ++ 4 files changed, 186 insertions(+) create mode 100644 configuration-files/baguette/mail/aliases create mode 100644 configuration-files/baguette/mail/smtpd.conf create mode 100644 configuration-files/baguette/mail/spamd.conf create mode 100644 configuration-files/baguette/mail/virtuals diff --git a/configuration-files/baguette/mail/aliases b/configuration-files/baguette/mail/aliases new file mode 100644 index 0000000..db8821d --- /dev/null +++ b/configuration-files/baguette/mail/aliases @@ -0,0 +1,99 @@ +# +# $OpenBSD: aliases,v 1.70 2022/06/28 18:46:01 claudio Exp $ +# +# Aliases in this file will NOT be expanded in the header from +# Mail, but WILL be visible over networks or from /usr/libexec/mail.local. +# +# >>>>>>>>>> The program "newaliases" must be run after +# >> NOTE >> this file is updated for any changes to +# >>>>>>>>>> show through to smtpd. +# + +# Basic system aliases -- these MUST be present +MAILER-DAEMON: postmaster +postmaster: root + +# General redirections for important pseudo accounts +daemon: root +ftp-bugs: root +operator: root +www: root + +# Redirections for pseudo accounts that should not receive mail +_bgpd: /dev/null +_bgplgd: /dev/null +_dhcp: /dev/null +_dpb: /dev/null +_dvmrpd: /dev/null +_eigrpd: /dev/null +_file: /dev/null +_fingerd: /dev/null +_ftp: /dev/null +_hostapd: /dev/null +_identd: /dev/null +_iked: /dev/null +_isakmpd: /dev/null +_iscsid: /dev/null +_ldapd: /dev/null +_ldpd: /dev/null +_mopd: /dev/null +_nsd: /dev/null +_ntp: /dev/null +_ospfd: /dev/null +_ospf6d: /dev/null +_pbuild: /dev/null +_pfetch: /dev/null +_pflogd: /dev/null +_ping: /dev/null +_pkgfetch: /dev/null +_pkguntar: /dev/null +_portmap: /dev/null +_ppp: /dev/null +_rad: /dev/null +_radiusd: /dev/null +_rbootd: /dev/null +_relayd: /dev/null +_ripd: /dev/null +_rstatd: /dev/null +_rusersd: /dev/null +_rwalld: /dev/null +_smtpd: /dev/null +_smtpq: /dev/null +_sndio: /dev/null +_snmpd: /dev/null +_spamd: /dev/null +_syslogd: /dev/null +_tcpdump: /dev/null +_traceroute: /dev/null +_tftpd: /dev/null +_unbound: /dev/null +_unwind: /dev/null +_vmd: /dev/null +_x11: /dev/null +_ypldap: /dev/null +bin: /dev/null +build: /dev/null +nobody: /dev/null +_tftp_proxy: /dev/null +_ftp_proxy: /dev/null +_sndiop: /dev/null +_syspatch: /dev/null +_slaacd: /dev/null +sshd: /dev/null + +# Well-known aliases -- these should be filled in! +# root: +# manager: +# dumper: + +# RFC 2142: NETWORK OPERATIONS MAILBOX NAMES +abuse: root +# noc: root +security: root + +# RFC 2142: SUPPORT MAILBOX NAMES FOR SPECIFIC INTERNET SERVICES +# hostmaster: root +# usenet: root +# news: usenet +# webmaster: root +# ftp: root diff --git a/configuration-files/baguette/mail/smtpd.conf b/configuration-files/baguette/mail/smtpd.conf new file mode 100644 index 0000000..19fb481 --- /dev/null +++ b/configuration-files/baguette/mail/smtpd.conf @@ -0,0 +1,43 @@ +# $OpenBSD: smtpd.conf,v 1.14 2019/11/26 20:14:38 gilles Exp $ + +# This is the smtpd server system-wide configuration file. +# See smtpd.conf(5) for more information. + +pki "mail" cert "/etc/ssl/netlib.re.fullchain.pem" +pki "mail" key "/etc/ssl/private/netlib.re.key" + +table aliases file:/etc/mail/aliases +table credentials passwd:/etc/mail/credentials +table virtuals file:/etc/mail/virtuals + +# Filter potential spam with rspamd +filter "rspamd" proc-exec "/usr/local/libexec/smtpd/filter-rspamd" + +# To accept external mail, replace with: listen on all +# +#listen on socket +listen on lo0 +# listen on "192.168.122.132" +#listen on "192.168.122.132" \ +# tls pki "mail" \ +# hostname "mail.netlib.re" filter "rspamd" +# +## Authorize people to send messages from our server +#listen on "192.168.122.132" port submission \ +# tls-require pki "mail" \ +# hostname "mail.netlib.re" \ +# auth filter "rspamd" + +action "local_mail" mbox alias +action "domain_mail" \ + maildir "/var/vmail/netlib.re/%{dest.user}" \ + virtual +action "outbound" relay + +#match from any for domain "netlib.re" action "domain_mail" +match from local for local action "local_mail" + +# Authorize alpha to send mails +#match from src "192.168.122.84" for any action "outbound" +match from local for any action "outbound" +match auth from any for any action "outbound" diff --git a/configuration-files/baguette/mail/spamd.conf b/configuration-files/baguette/mail/spamd.conf new file mode 100644 index 0000000..1334e04 --- /dev/null +++ b/configuration-files/baguette/mail/spamd.conf @@ -0,0 +1,38 @@ +# $OpenBSD: spamd.conf,v 1.9 2018/07/22 17:09:43 jmc Exp $ +# +# spamd(8) configuration file, read by spamd-setup(8). +# See also spamd.conf(5). +# +# Configures lists for spamd(8). +# +# Strings follow getcap(3) convention escapes, except you +# can have a bare colon (:) inside a quoted string and it +# will deal with it. See spamd-setup(8) for more details. +# +# "all" must be here, and defines the order in which lists are applied. +# Lists specified with the :white: capability apply to the previous +# list with a :black: capability. +# +# As of June 2016, a place to search for blacklists is +# http://en.wikipedia.org/wiki/Comparison_of_DNS_blacklists +# - most of these are DNS-based only and cannot be used with spamd(8), +# but some of the lists also provide access to text files via rsync. + +all:\ + :nixspam: + +# Nixspam recent sources list. +# Mirrored from http://www.heise.de/ix/nixspam +nixspam:\ + :black:\ + :msg="Your address %A is in the nixspam list\n\ + See http://www.heise.de/ix/nixspam/dnsbl_en/ for details":\ + :method=https:\ + :file=www.openbsd.org/spamd/nixspam.gz + +# An example of a list containing addresses which should not talk to spamd. +# +#override:\ +# :white:\ +# :method=file:\ +# :file=/var/db/override.txt: diff --git a/configuration-files/baguette/mail/virtuals b/configuration-files/baguette/mail/virtuals new file mode 100644 index 0000000..b8aca81 --- /dev/null +++ b/configuration-files/baguette/mail/virtuals @@ -0,0 +1,6 @@ +abuse@netlib.re: karchnu@netlib.re +hostmaster@netlib.re: karchnu@netlib.re +postmaster@netlib.re: karchnu@netlib.re +webmaster@netlib.re: karchnu@netlib.re + +karchnu@netlib.re: vmail