linux_server_manuals:dovecot_ldap_rspamd
Differences
This shows you the differences between two versions of the page.
Both sides previous revisionPrevious revisionNext revision | Previous revision | ||
linux_server_manuals:dovecot_ldap_rspamd [2018/01/15 17:50] – ronney | linux_server_manuals:dovecot_ldap_rspamd [2018/01/28 18:49] (current) – [Clamav integration] ronney | ||
---|---|---|---|
Line 211: | Line 211: | ||
#map with aliases | #map with aliases | ||
virtual_alias_maps = hash:/ | virtual_alias_maps = hash:/ | ||
+ | # If you have some docker containers or similar stuff, we need to add the | ||
+ | # 172.17.0.0/ | ||
+ | # If you don't use that subnet, you can leave that directive on it's default setting. | ||
+ | mynetworks = 127.0.0.0/8 [:: | ||
</ | </ | ||
Line 234: | Line 238: | ||
===== rspamd ===== | ===== rspamd ===== | ||
+ | |||
+ | The documentation about the functionality and configuration of rspamd is a bit sparse. | ||
+ | The one here is working, but no garantees, that it is perfect.... | ||
+ | |||
+ | ==== Configuration ==== | ||
Install rspamd and redis. | Install rspamd and redis. | ||
Line 245: | Line 254: | ||
aptitude install rspamd redis-server | aptitude install rspamd redis-server | ||
</ | </ | ||
- | |||
edit / | edit / | ||
Line 252: | Line 260: | ||
maxmemory-policy volatile-lru | maxmemory-policy volatile-lru | ||
</ | </ | ||
- | |||
Config files in / | Config files in / | ||
Line 267: | Line 274: | ||
Then enter that hash in the file / | Then enter that hash in the file / | ||
< | < | ||
+ | #password for read access | ||
password = " | password = " | ||
+ | #password for write access. you need to set both. I know, it's stupid ;-) | ||
+ | enable_password = " | ||
</ | </ | ||
Line 426: | Line 436: | ||
} | } | ||
</ | </ | ||
- | ---- | ||
- | let rspamd | + | ==== dkim and arc mail signing ==== |
+ | To let Rspamd dkim sign outgoing mails, following is needed: | ||
+ | |||
+ | < | ||
mkdir / | mkdir / | ||
rspamadm dkim_keygen -b 2048 -s 2018 -k 2018.key > 2018.txt | rspamadm dkim_keygen -b 2048 -s 2018 -k 2018.key > 2018.txt | ||
- | chown _rspamd: | + | chown _rspamd: |
chmod 440 / | chmod 440 / | ||
+ | </ | ||
- | look at 2018.txt to see how dns entry should look like. | + | Look at 2018.txt to see how your dns entry should look like. and then make that DNS-entry. |
edit file dkim_signing.conf | edit file dkim_signing.conf | ||
+ | < | ||
path = "/ | path = "/ | ||
selector = " | selector = " | ||
+ | # I need that, since in my case, usernames are without the domain. | ||
+ | # Otherwise he won't do any dkim signing. | ||
+ | allow_username_mismatch = true; | ||
+ | </ | ||
- | cp -R / | + | If you provide mailinglists, |
+ | < | ||
+ | ln -s / | ||
+ | </ | ||
- | --------------- | + | ==== Clamav integration ==== |
setup clamav for use with rspamd | setup clamav for use with rspamd | ||
Line 489: | Line 509: | ||
--------- | --------- | ||
+ | apache reverse proxy for web interface | ||
+ | ----- | ||
+ | |||
more fail2ban | more fail2ban | ||
linux_server_manuals/dovecot_ldap_rspamd.1516038636.txt.gz · Last modified: 2018/01/15 17:50 by ronney