Mailserver

Postfix – SSL/TLS Configuration

Here you can find my Postfix – SSL/TLS Configuration file for ssl-tools.net. With this postfix main.cf config file every point is green under the website ssl-tools. Just add the following lines of code to the file: vim /etc/postfix/main.cf ##### TLS settings ###### ### Secure outgoing connections only ### #smtp_tls_security_level=encrypt smtp_tls_security_level=may smtp_tls_cert_file=/etc/letsencrypt/live/mail.DOMAIN.de/fullchain.pem smtp_tls_key_file=/etc/letsencrypt/live/mail.DOMAIN.de/privkey.pem smtp_tls_mandatory_protocols = TLSv1 …

Postfix – SSL/TLS Configuration Weiterlesen »

Helo command rejected: Host not found – postfix linux

I had some errors while sending a email to my server: <My-MacBook-Pro.local>: Helo command rejected: Host not found <server.mydomain.lan>: Helo command rejected: Host not found; from=<fail2ban@server.mydomain.lan> The problem is that lan and local Domains don’t have a correct HELO command. Solution: Permit sasl authenticated users. When you are logged in with the correct credentials then the helo …

Helo command rejected: Host not found – postfix linux Weiterlesen »

Postfix – hide client/sender ip

You can hide the client/sender ip and the user agent in the postfix main.cf Thats the way you do it nano /etc/postfix/main.cf smtp_header_checks = pcre:/etc/postfix/smtp_header_checks nano /etc/postfix/smtp_header_checks /^Received:.*with ESMTPSA/ IGNORE /etc/init.d/postfix restart Before The whole client ip was displayed. Received: from [192.168.2.231] (XXXXXXX.dip0.t-ipconnect.de [79.XXX.224.XXX] Result Just the server ip is displayed. Received: from pizza.mattionline.de (pizza.mattionline.de. …

Postfix – hide client/sender ip Weiterlesen »

Tutorial: Debian Jessie Mailserver (postfix dovecot mysql)

Debian Jessie Mailserver Tutorial (postfix, dovecot, mysql and postgrey) apt-get install postfix postfix-mysql dovecot-core dovecot-imapd dovecot-lmtpd dovecot-mysql mysql-server git postfix-pcre postgrey mysql datenbanken anlegen mysqladmin -p create mailserver mysql -p mailserver GRANT SELECT ON mailserver.* TO ‚mailuser’@’127.0.0.1‘ IDENTIFIED BY ‚mailuserpass‘; FLUSH PRIVILEGES; CREATE TABLE `virtual_domains` ( `id` int(11) NOT NULL auto_increment, `name` varchar(50) NOT NULL, …

Tutorial: Debian Jessie Mailserver (postfix dovecot mysql) Weiterlesen »

Thunderbird – PGP Verschlüsselung

Thunderbird Addon enigmail installieren gpg –gen-key 1 RSA und RSA 4096 Schlüssellänge 4y gültig Konten-Einstellungen -> OpenPGP-Sicherheit -> Aktivieren E-Mai-Adresse dieses Kontos verwenden…. Alle Häkchen setzen außer Nachrichten standartmäßig verschlüsseln Empfänger trusten: gpg –recv-keys 203896A3 Keys ausgeben: gpg –list-keys Key an Server keys.gnupg.net senden: gpg –send-keys B33A31B2 Publickey exportieren: gpg –export -a „Mathias“ > gpgpubkey …

Thunderbird – PGP Verschlüsselung Weiterlesen »

Mailserver – Configure TLS

openssl req -new -x509 -days 3650 -nodes -out /etc/ssl/mycerts/postfix.pem -keyout /etc/ssl/mycerts/postfix.key ##### TLS settings ###### tls_high_cipherlist=EDH+CAMELLIA:EDH+aRSA:EECDH+aRSA+AESGCM:EECDH+aRSA+SHA384:EECDH+aRSA+SHA256:EECDH:+CAMELLIA256:+AES256:+CAMELLIA128:+AES128:+SSLv3:!aNULL:!eNULL:!LOW:!3DES:!MD5:!EXP:!PSK:!DSS:!RC4:!SEED:!ECDS$ ### Secure outgoing connections only ### smtp_tls_security_level=encrypt smtp_tls_cert_file=/etc/ssl/mycerts/postfix.pem smtp_tls_key_file=/etc/ssl/mycerts/postfix.key smtp_tls_mandatory_protocols = !SSLv2, !SSLv3 smtp_tls_mandatory_ciphers=high smtp_tls_session_cache_database = btree:${data_directory}/smtp_scache ### Secure incoming connections only ### smtpd_tls_security_level=encrypt smtpd_tls_cert_file=/etc/ssl/mycerts/postfix.pem smtpd_tls_key_file=/etc/ssl/mycerts/postfix.key smtpd_tls_mandatory_protocols = !SSLv2, !SSLv3 smtpd_tls_mandatory_ciphers=high smtpd_tls_session_cache_database = btree:${data_directory}/smtpd_scache Quelle: https://thomas-leister.de/internet/erweiterte-postfix-ssltls-konfiguration-verschluesselte-server-server-verbindungen/

Eigene autoconfig für Thunderbird

Eines Tages hatte ich keine Lust mehr die Einstellungen meines Mailservers manuell einzutragen und habe mir eine autoconfig eingerichtet: nano /var/www/mattionline.de/vhosts/autoconfig/mail/config-v1.1.xml <?xml version=“1.0″ encoding=“UTF-8″?> <clientConfig version=“1.1″>   <emailProvider id=“mattionline.de“>     <domain>mattionline.de</domain>     <displayName>mattionline.de</displayName>     <displayShortName>mattionline.de</displayShortName>     <incomingServer type=“imap“>       <hostname>mail.mattionline.de</hostname>       <port>993</port>       <socketType>SSL</socketType>       <authentication>password-cleartext</authentication>       <username>%EMAILADDRESS%</username>     </incomingServer>     <outgoingServer type=“smtp“>       <hostname>mail.mattionline.de</hostname> …

Eigene autoconfig für Thunderbird Weiterlesen »

Scroll to Top