Qmail FreeBSD toaster

It is Saturday 23 November 2024 - 21:10:06.
Your IP address is 18.222.163.231

news personal professional computing outdoors reference travel humor

Reference
Emoticons
Mail Lists

Games
ISP Related
Telco/NAS
Hardware
IP Routing
Internet Security

AppleTalk
DNS
MAIL
RADIUS
SNMP (manage)
WWW
SQL

BSDI
FreeBSD
HPUX
Linux
RedHat

MacOS
MacOS X PB
MacOS X 10.1.4
MacOS X 10.2
PalmOS

Qmail + vpopmail + CourierIMAP + sqwebmail + MySQL for FreeBSD 4.4 Tutorial (v2.0.1)
Written by Matt Simerson and last updated (ChangeLog)01/07/2001.

The original of this document can be found on Matt's server in Michigan or my other server in Atlanta.

This HOW-TO makes some assumptions. First it assumes that you are a moderately competent system administrator. It also assumes you run FreeBSD and you track the -stable source tree. PAY ATTENTION to software versions as listed below. Installation order IS important. These programs check and configure themselves for use with each other. Build them in this order and your experience will be better.

Support is NOT provided. I value my time and if you want some, expect to pay for it. There is a mailing list available where I and a growing crowd of mail toaster owners hang out. You can even browse the archives.

Contributions: If you have something to contribute to the toaster, express the idea on the mailing list. If you've built a toaster and are anxious to express your gratitude, feel free to purchase something from my wish list.

Features:

SMTP Mail Server (+SMTP-AUTH, TLS (SSL), tarpitting)
Virtual Domain Hosting
Virtual Domain Users
AutoResponder
Mailing List
Web Based E-Mail (SSL, spell check, LDAP lookup)
Web Based Virtual Domain Administration
Spam Blocking
SMTP roaming via SMTP-AUTH, POP-AUTH, & IMAP-AUTH
POP3 (+SSL)
IMAP (+SSL)

You will install the following programs:

qmail-1.03.tar.gz : qmail!
mysql-3.23 : Database engine
ucspi-tcp-0.88.tar.gz : Inetd replacement
daemontools-0.70.tar.gz : Useful tools for managing daemons
qmailanalog-0.70.tar.gz: Tools for compiling qmail logs into useful info.
ezmlm-idx-0.40.tar.gz: Mailing list management
Apache + ssl, php, & perl: Secure HTTP server
OpenLDAP: LDAP client & server
vpopmail : Virtual Domain module
autorespond : Auto Responder
gdbm : Database routines
ispell : Spell checking for web mail
qmailadmin : Web Control Panel Interface
sqwebmail: Web based email
courier-IMAP: IMAP & POP3 servers

Install from the FreeBSD Packages/Ports Collection:

pkg_add -r ispell
pkg_add -r gdbm
pkg_add -r autorespond
pkg_add -r setquota
pkg_add -r autoconf
pkg_add -r automake
pkg_add -r expect
pkg_add -r gnupg
pkg_add -r maildrop
cd /usr/ports/mail/qmail; make enable-qmail clean
cd /usr/ports/mail/qmailanalog; make install clean

Make Users & Groups for Vpopmail

pw groupadd -n vchkpw -g 89
pw useradd -n vpopmail -u 89 -g 89 -c Vpopmail-Master \
-d /usr/local/vpopmail -s /sbin/nologin

Install Qmail (with a few hacks)

mkdir -p /usr/local/src/mail; cd /usr/local/src/mail
cp /usr/ports/distfiles/qmail-1.03.tar.gz .
fetch http://matt.simerson.net/computing/mail/toaster/qmail-1.03-toaster-2.0.patch
tar -xzf qmail-1.03.tar.gz
cd qmail-1.03
patch -p1 < ../qmail-1.03-toaster-2.0.patch
make setup
make cert
echo "255" > /var/qmail/control/concurrencyremote
chmod 644 /var/qmail/control/concurrencyremote
echo "domain.com" > /var/qmail/control/me
echo "50" > /var/qmail/control/tarpitcount
echo "5" > /var/qmail/control/tarpitdelay

Make Directories for Special Modules

mkdir -p /var/qmail/supervise; cd /var/qmail/supervise
mkdir -p smtp/log send/log
chmod +t smtp send
mkdir /service

Edit config files

mkdir -p ~vpopmail/etc
fetch -o ~vpopmail/etc/tcp.smtp \
http://matt.simerson.net/computing/mail/toaster/tcp_smtp.txt

echo user@domain.com > /var/qmail/alias/.qmail-root
echo user@domain.com > /var/qmail/alias/.qmail-postmaster
echo user@domain.com > /var/qmail/alias/.qmail-mailer-daemon

/var/qmail/bin/maildirmake /usr/share/skel/Maildir ( necessary if using /etc/passwd accounts)

Install Apache www server + mod_php + mod_ssl + mod_perl

Apache build instructions

UCSPI-TCP: UNIX Client-Server Program Interface for TCP
The patch adds MySQL support and patches rblsmtpd to support the RBL's new format.

cd /usr/local/src/mail
fetch http://cr.yp.to/ucspi-tcp/ucspi-tcp-0.88.tar.gz
tar -xzf ucspi-tcp-0.88.tar.gz
fetch http://matt.simerson.net/computing/mail/toaster/ucspi-tcp-0.88-mysql+rss.patch
cd ucspi-tcp-0.88
patch -p1 < ../ucspi-tcp-0.88-mysql+rss.patch
make setup check

Create the configuration file for tcpserver

# vi /var/qmail/control/sql
server db.domain.com
port 3306
database vpopmail
table relay
user vpopmail
pass secret
time 1800

Daemon Tools (Useful tools)

cd /usr/ports/sysutils/daemontools
make install clean

Install Ezmlm & Ezmlm-idx (Mailing List)

cd /usr/ports/mail/ezmlm-idx
make -DWITH_MYSQL install
cp work/ezmlm-0.53/ezmlmrc /usr/local/bin
make clean
cd /usr/local/etc/ezmlm
cp ezmlmglrc.sample ezmlmglrc
cp ezmlmrc.sample ezmlmrc
cp ezmlmsubrc.sample ezmlmsubrc

OpenLDAP

cd /usr/ports/net/openldap
make install clean

Vpopmail (Virtual Domain & POP)

cd /usr/local/src/mail
fetch http://www.inter7.com/vpopmail/vpopmail-5.0.tar.gz
tar xzf vpopmail-5.0.tar.gz; cd vpopmail-5.0
./configure --enable-mysql=y --enable-default-domain=simerson.net \
--enable-roaming-users=y --enable-hardquota=100000000 \
--enable-clear-passwd=y --enable-learn-passwords=y \
--enable-mysql-replication=y --enable-logging=p \
--enable-auth-logging=y --enable-mysql-logging=y
vi vmysql.h

make install

# crontab -e
9-59,10 * * * * /usr/local/vpopmail/bin/clearopensmtp 2>&1 > /dev/null
# ln -s ~vpopmail/doc/man_html /usr/local/www/data/vpopmail

Now you can point your web browser at https://host.yourdomain.com/vpopmail and see the spiffy documentation that comes with vpopmail. Since your test certificate isn't signed by a CA you'll have to approve it manually. Older versions of IE didn't deal well with new certificates.

QmailAdmin (Web Control Interface)

cd /usr/local/src/mail
fetch http://www.inter7.com/qmailadmin/qmailadmin-1.0.tar.gz
tar -xzf qmailadmin-1.0.tar.gz; cd qmailadmin-1.0
./configure --enable-cgibindir=/usr/local/www/cgi-bin.mail
make install-strip

If you set up domains under /etc/passwd users you MUST do this:
chown root /usr/local/www/cgi-bin.mail/qmailadmin

Sqwebmail (Web Based Email)

cd /usr/ports/mail/sqwebmail
make -DWITH_VCHKPW -DWITH_ISPELL install
make clean

# crontab -e
40 * * * * /usr/local/share/sqwebmail/cleancache.pl 2>&1 > /dev/null

chmod -R 755 /usr/local/www/data/webmail
cd /usr/local/share/sqwebmail
cp authdaemonrc.dist authdaemonrc
cp ldapaddressbook.dist ldapaddressbook

Courier-IMAP

cd /usr/local/src/mail
fetch http://download.sourceforge.net/courier/courier-imap-1.3.12.tar.gz
fetch http://matt.simerson.net/computing/mail/toaster/courier-imap-1.3.12-opensmtp.txt
tar zxvf courier-imap-1.3.12.tar.gz; cd courier-imap-1.3.12/authlib
patch -p1 < ../../courier-imap-1.3.12-opensmtp.txt; cd ..
./configure --prefix=/usr/local --exec-prefix=/usr/local --without-authldap \
--without-authshadow --with-authvchkpw --without-authcram \
--sysconfdir=/usr/local/etc/courier-imap \
--datadir=/usr/local/share/courier-imap \
--libexecdir=/usr/local/libexec/courier-imap \
--enable-workarounds-for-imap-client-bugs \
--disable-root-check --without-authdaemon
make install

cd /usr/local/etc/courier-imap
cp pop3d.cnf.dist pop3d.cnf
cp imapd.cnf.dist imapd.cnf
vi pop3d.cnf imapd.cnf
cp pop3d.dist pop3d
cp imapd.dist imapd
cp pop3d-ssl.dist pop3d-ssl
cp imapd-ssl.dist imapd-ssl
vi imapd pop3d
cp quotawarnmsg.example quotawarnmsg; vi quotawarnmsg
cd /usr/local/share/courier-imap; ./mkimapdcert; ./mkpop3dcert

At this point in time, we'll start to add, remove and edit configuration files. We will also accomplish a number of other fun things.

Edit DNS zone file - You will need to get the dns properly configured for each domain you want to collect mail for. If your dns records are incorrect you will likely have problems with mail routing. For some helpful DNS links have a look at my dns links.

Adding Mail Domains

mysql -u root -p
CREATE DATABASE vpopmail;
GRANT ALL PRIVILEGES ON vpopmail.* TO vpopmail@"hostname" IDENTIFIED BY 'password';
quit;
mysql -u vpopmail -h db.domain.com -p (get this working before you continue)

# ~vpopmail/bin/vadddomain test.com [password]

vadddomain will modify the following qmail files (default locations used):

/var/qmail/control/locals, rcpthosts, virtualdomains
/var/qmail/control/morercpthosts (if rcpthosts > than 50 lines)
/var/qmail/control/virtualdomains
/var/qmail/users/assign, cdb

It will also create a domains directory

~vpopmail/domains/domain.com
~vpopmail/domains/domain.com/postmaster/Maildir

Now it's time to get qmail up and running. We're going to create a bunch of startup files that the daemontools package will monitor for us.

Supervise/Svscan Startup

cd /var/qmail/supervise
fetch -o smtp/run \
http://matt.simerson.net/computing/mail/toaster/smtp_run.txt
chmod 751 smtp/run
touch smtp/log/run smtp/log/down
chmod 751 smtp/log/*
fetch -o send/run \
http://matt.simerson.net/computing/mail/toaster/send_run.txt
chmod 751 send/run
touch send/log/run send/log/down
chmod 751 send/log/run
fetch -o /var/qmail/rc \
http://matt.simerson.net/computing/mail/toaster/qmail_rc.txt
chmod 751 /var/qmail/rc
vi smtp/run send/run /var/qmail/rc
rm /usr/local/etc/rc.d/qmail.sh
fetch -o /usr/local/sbin/qmail \
http://matt.simerson.net/computing/mail/toaster/qmail.txt
chmod 751 /usr/local/sbin/qmail
fetch -o /usr/local/etc/rc.d/services.sh \
http://matt.simerson.net/computing/mail/toaster/services.txt
chmod 751 /usr/local/etc/rc.d/services.sh
ln -s /usr/local/etc/rc.d/services.sh /usr/local/sbin/services
rehash; qmail cdb

Fire up qmail

ln -s /var/qmail/supervise/smtp /service/
ln -s /var/qmail/supervise/send /service/
services start

What you should see in the process list:
# ps au

USER PID TT STAT STARTED TIME COMMAND
root 33322 p1 S 11:14PM 0:00.02 svscan
root 33323 p1 I 11:14PM 0:00.01 supervise send
root 33324 p1 I 11:14PM 0:00.01 supervise log
root 33325 p1 I 11:14PM 0:00.01 supervise smtp
root 33326 p1 I 11:14PM 0:00.01 supervise log

OK, now you're ready to have some real fun. Point a web browser at http://mail.domain.com/cgi-bin/qmailadmin. Log in with postmaster, test.com, and the test password. Add a user named "user". Time to send some email:

# mail user@test.com
Subject: test
test
.
# ls ~vpopmail/domains/test.com/user/Maildir/*

You should see a file in the new directory. If not, tail /var/log/maillog and figure out why.

Now we want to get our POP3-SSL and IMAP servers working. Install the startup scripts in /usr/local/etc/rc.d:

cp /usr/local/libexec/courier-imap/imapd.rc /usr/local/etc/rc.d/imapd.sh
cp /usr/local/libexec/courier-imap/pop3d.rc /usr/local/etc/rc.d/pop3d.sh
cp /usr/local/libexec/courier-imap/imapd-ssl.rc /usr/local/etc/rc.d/imapd-ssl.sh
cp /usr/local/libexec/courier-imap/pop3d-ssl.rc /usr/local/etc/rc.d/pop3d-ssl.sh

Once installed we'll make symbolic links to the scripts for easy administration:

ln -s /usr/local/etc/rc.d/imapd.sh /usr/local/sbin/imap
ln -s /usr/local/etc/rc.d/pop3d.sh /usr/local/sbin/pop3
ln -s /usr/local/etc/rc.d/imapd-ssl.sh /usr/local/sbin/imapssl
ln -s /usr/local/etc/rc.d/pop3d-ssl.sh /usr/local/sbin/pop3ssl

Now we can either reboot or start the servers manually:

rehash
imap start
pop3 start
imapssl start
pop3ssl start

Users can now get their email at the following addresses:

pop3://mail.domain.com
imap://mail.domain.com
imaps://mail.domain.com
http://mail.domain.com/cgi-bin/sqwebmail (redirects to https)
https://mail.domain.com/cgi-bin/sqwebmail

Domain administrators can add/edit/delete users, mailing lists, autoresponders, mail forwarding, and aliases by logging into the qmailadmin interface:

http://mail.domain.com/cgi-bin/qmailadmin
https://mail.domain.com/cgi-bin/qmailadmin

SYSTEM ADMIN stuff.

maildomain perl script - Front end to nearly everything you can do with the vpopmail programs.

Convert Multilog date stamps to human readable date stamps

# tai64nlocal < logfile > qmaillog.tmp

Statistics about your mail queue:

Feed your qmail-send output through matchup and pipe it through a stats processor:
# /usr/local/qmailanalog/bin/matchup < /var/log/mail/send/current | /usr/local/qmailanalog/bin/z*
where z* is one of the following
# zddist, zdeferrals, zfailures, zoverall, zrecipients, zrhosts, zrxdelay, zsenders, zsuccesses, zsuids

Modify the HTML interface:

Sqwebmail: html temples live in /usr/local/share/sqwebmail/html/en-us/
qmailadmin: html templates live in /usr/local/share/qmailadmin/html/

Man pages:

vpopmail: http://mail.domain.com/vpopmail/
maildrop: http://mail.domain.com/maildrop

perl -MCPAN -e 'install Date::Parse'


© Matt Simerson 1999-2004 - Email suggestions or updates.