## Install Needed Packages
Code:
yum install sendmail sendmail-cf cyrus-sasl-plain cyrus-sasl-md5
## Edit /etc/sasl2/Sendmail.conf
Code:
pwcheck_method:saslauthd
## Edit /etc/pam.d/smtp
Code:
#%PAM-1.0
auth include system-auth
account include system-auth
## Edit /etc/sysconfig/saslauthd
Code:
MECH=pam
# these two settings are the defaults
SOCKETDIR=/var/run/saslauthd
FLAGS=
## Start saslauthd
Code:
chkconfig saslauthd on
service saslauthd start
## Add/Edit These Lines To sendmail.mc
Code:
TRUST_AUTH_MECH(`EXTERNAL DIGEST-MD5 CRAM-MD5 LOGIN PLAIN PAM')dnl
define(`confAUTH_MECHANISMS', `EXTERNAL GSSAPI DIGEST-MD5 CRAM-MD5 LOGIN PLAIN PAM')dnl
define(`CERT_DIR', `/etc/mail/certs')
define(`confCACERT_PATH', `CERT_DIR')
define(`confCACERT', `CERT_DIR/ca-bundle.crt')
define(`confCRL', `CERT_DIR/ca-bundle.crt')
define(`confSERVER_CERT', `CERT_DIR/sendmail.pem')
define(`confSERVER_KEY', `CERT_DIR/sendmail.pem')
define(`confCLIENT_CERT', `CERT_DIR/sendmail.pem')
define(`confCLIENT_KEY', `CERT_DIR/sendmail.pem')
define(`confAUTH_OPTIONS', `A p y')dnl
DAEMON_OPTIONS(`Port=smtp,Addr=0.0.0.0, Name=MTA')dnl
DAEMON_OPTIONS(`Port=smtps,Addr=0.0.0.0, Name=MTA-SSL M=E')dnl
## Create The Certs
Code:
cd /etc/mail
mkdir certs
cd certs
openssl req -new -x509 -keyout cakey.pem -out cacert.pem -days 365
openssl req -nodes -new -x509 -keyout sendmail.pem -out sendmail.pem -days 365
cp /etc/ssl/certs/ca-bundle.crt /etc/mail/certs
chmod -R 600 /etc/mail/certs/*
## Add trusted user to /etc/mail/trusted-users
## Make New sendmail.cf and restart
Code:
m4 /etc/mail/sendmail.mc > /etc/mail/sendmail.cf
service sendmail restart
Profit!