Hi all
today i noticed
http://technoquarter.blogspot.jp/2015/02/openbsd-mail-server-part-2-opensmtpd.html
----------------------
in this URL
on egress with tls (for incoming mail)
egress port submission with tls and authentication (for outgoing mail),
----------------------
so i rewrite smtpd.conf .
pki mail.aoiyuma.mydns.jp certificate "/etc/ssl/mail.aoiyuma.mydns.jp.crt"
pki mail.aoiyuma.mydns.jp key "/etc/ssl/private/mail.aoiyuma.mydns.jp.key"
listen on em0 tls pki mail.aoiyuma.mydns.jp
auth-optional
listen on em0 port submission tls-require pki mail.aoiyuma.mydns.jp auth
table aliases db:/etc/mail/aliases.db
table jp3 db:/etc/mail/jp3.db
accept from any for domain "aoiyuma.mydns.jp" alias <aliases>
deliver to maildir
accept from any for domain "aoiyuma.mydns.jp"
deliver to maildir
accept for local alias <aliases>
deliver to maildir
accept for local
deliver to maildir
accept from source <jp3> for any relay
accept from local for any relay
----------------------
cat jp3
6.2.6.2/32 114.22.25.247/32
makemap jp3
----------------------
this allows to send to and recieve from [email protected] .
and
if there is /home/foge , although it's shell is false ,
i do
chmod -R 400 /home/foge/Mairdir
in order not to be utilized user foge by crackers .
---
regards
--
You received this mail because you are subscribed to [email protected]
To unsubscribe, send a mail to: [email protected]
