LinuxQuestions.org
Visit Jeremy's Blog.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Server
User Name
Password
Linux - Server This forum is for the discussion of Linux Software used in a server related context.

Notices



Reply
 
Search this Thread
Old 05-29-2008, 01:38 PM   #1
eliufoo
Member
 
Registered: Oct 2007
Posts: 71

Rep: Reputation: 15
HowTo compile Postfix with mysql, TLS and SSL support


Hi,

For the past 4 days I've been working/compiling/configuring my postfix to support virtual hosts and security for my local clients.

My current postfix installation supports MySQL, but not TLS or SSL. Whenever I try to recompile and add support for them using

Quote:
make makefiles \
CCARGS="-DHAS_MYSQL -I/usr/include/mysql \
-DUSE_SASL_AUTH -I/usr/include/sasl \
-DUSE_SSL -I/usr/include/openssl/ \
-DUSE_CYRUS_SASL \
-DUSE_TLS \
-Wa,--noexecstack \
-I/usr/include" \
AUXLIBS="-L/usr/lib/mysql/ -lmysqlclient \
-lz -lm -L/usr/lib/sasl2/ -lsasl2 \
-L/usr/lib \
-L/usr/lib/openssl/engines/ -lssl \
-lcrypto"
I either loose MySQL support or don't get TLS/SSL support. My current settings are.

Postconf -m

Quote:
btree
cidr
environ
hash
mysql
nis
proxy
regexp
static
unix
Below is my current postfix main.cf configuration

Quote:
############## Postfix###############
config_directory=/etc/postfix
smtpd_banner = $myhostname
biff = no
append_dot_mydomain = no
relayhost =
mynetworks = 1.2.3.0/24, 127.0.0.0/8
inet_interfaces = 1.2.3.4
mailbox_size_limit = 0
recipient_delimiter = +
alias_database = hash:/etc/postfix/aliases
alias_maps = $alias_database
myhostname = host.example.com
mydomain = example.com
myorigin = $myhostname
mydestination = $myhostname, localhost.$mydomain, $transport_maps
mail_spool_directory = /var/spool/mail
debug_peer_level = 2
debugger_command =
PATH=/bin:/usr/bin:/usr/local/bin:/usr/X11R6/bin
xxgdb $daemon_directory/$process_name $process_id & sleep 5
disable_vrfy_command = no
readme_directory = /usr/share/doc/postfix-2.2.10/README_FILES
sample_directory = /usr/share/doc/postfix-2.2.10/samples
sendmail_path = /usr/sbin/sendmail
html_directory = /var/www/html/postfix_docs
setgid_group = postdrop
command_directory = /usr/sbin
manpage_directory = /usr/share/man
daemon_directory = /usr/libexec/postfix
newaliases_path = /usr/bin/newaliases
mailq_path = /usr/bin/mailq
queue_directory = /var/spool/postfix
mail_owner = postfix
unknown_local_recipient_reject_code = 450
####################postfix section ends here###############


#######################Virtual Domains Users and mailboxes###############
virtual_mailbox_domains = mysql:/etc/postfix/mysql_virtual_domains_maps.cf
virtual_mailbox_base = /var/vmail
virtual_mailbox_maps = mysql:/etc/postfix/mysql_virtual_mailbox_maps.cf
virtual_alias_maps = mysql:/etc/postfix/mysql_virtual_alias_maps.cf
virtual_minimum_uid = 150
virtual_uid_maps = static:150
virtual_gid_maps = static:12
##############################Virtual section of main.cf ends##############

#################### SASL/TLS Authentication###########################

######SASL PART#########
smtpd_sasl_auth_enable = yes
smtpd_sasl_security_options = noanonymous
broken_sasl_auth_clients = yes
smtpd_sasl_local_domain =
smtpd_recipient_restriction = permit_sasl_authenticated, permit_mynetworks, reject_unauth_destination
#####TLS PART###########
smptpd_tls_cert_file = /etc/ssl/rnd/mailserver/smtpd.crt
smtpd_tls_key_file = /etc/ssl/rnd/mailserver/smtpd.key
smtpd_tls_CAfile = /etc/ssl/rnd/mailserver/cacert.pem
smtp_tls_auth_only = no
smtp_use_tls = yes
smtpd_use_tls = yes
smtpd_tls_received_header = no
smtp_tls_note_starttls_offer = yes
smtpd_tls_loglevel = 1
tls_random_source = dev:/dev/urandom
smtpd_tls_session_cache_timeout = 3600s
smtpd_tls_recieved_header = yes
###########################SASL/TLS Authentication ends here#############

#data_directory = /var/lib/postfix
#soft_bounce = yes
#debug_peer_list = 127.0.0.1
Please assist on how to compile postfix with MySQL, Dovecot, TLS/SSL.
 
Old 05-29-2008, 02:06 PM   #2
TB0ne
Guru
 
Registered: Jul 2003
Location: Birmingham, Alabama
Distribution: SuSE, RedHat, Slack,CentOS
Posts: 15,103

Rep: Reputation: 2719Reputation: 2719Reputation: 2719Reputation: 2719Reputation: 2719Reputation: 2719Reputation: 2719Reputation: 2719Reputation: 2719Reputation: 2719Reputation: 2719
From a quick Google search:

http://johnny.chadda.se/2007/04/15/m...rey-and-dspam/
http://swik.net/Dovecot/del.icio.us%...nd+DSPAM/b046m
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
FTP Client with SSL/TLS support Osten Linux - Software 11 05-30-2012 12:44 AM
No TLS/SSL Support found. Gaim connecting to Gtalk WOP1337 Linux - Software 8 06-23-2007 09:49 PM
Postfix SMTP AUTH (and TLS) HOWTO tommytomato Linux - General 2 05-24-2006 11:00 AM
apache SSL/TLS overlord73 Linux - Security 3 05-12-2005 06:53 AM
SSL vs. TLS X11 Linux - Security 8 12-17-2002 04:39 PM


All times are GMT -5. The time now is 12:32 PM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
identi.ca: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration