FreeBSD Install the following from ports: mail/courier Note: Make sure you upgrade Perl before you build courier. This is so that perlfilter can find perl modules installed later, e.g. Courier::Filter. Add to /etc/make.conf # For Courier WITH_GNUPG=yes WITH_ISPELL=yes WITH_LDAP2=no WITH_MYSQL=yes Also, you need to make sure that courier is using Perl > 5.6 and not the system perl. During the build, courier uses /usr/bin/perl5. This is the system perl. Here’s the work around.
Install Kerberos 5 Add kerberos to the USE flag in /etc/make.conf. USE="kerberos" Then install everything: emerge -N world – Or – emerge mit-krb5 This will install the MIT kerberos 5 library which may be restricted under US export restrictions. The Heimdal krb5 implementation is free from those restrictions. You can install Heimdal by doing: emerge app-crypt/heimdal Because the kerberos install will change libgssapi, you will need to run revdep-rebuild to fix any apps that you build prior to install krb5.
Introduction I’ve been using amavis-ng with courier-mta for over a year and for various reasons, I’ve been unhappy with it. I decided to switch to amavisd-new. This doc describes my setup. Note: I use FreeBSD. These docs should work for any OS that courier runs on with appropriate changes to paths, etc. Installation Needed Perl Modules This list is from INSTALL in the package. Archive::Tar (archivers/p5-Archive-Tar) Archive::Zip (archivers/p5-Archive-Zip) (1.
Updating a FreeBSD box is fairly simple but it can still be a pain when you have lots of them to upgrade. I have put together this little tutorial as an “It works for me” example. There may be better ways of doing this. Building Machine The first thing you will need is a building machine. This box will download and build the kernel, userland apps and libraries for every machine.
Setting up the 2100S is actually pretty simple. Here’s how I did it. Configure your Kernel The 2100S uses the asr driver which is included in the GENERIC kernel, however, I take that out of my custom kernels since most of my machine do not have a RAID controller at all, so I added this line to my kernel config and rebuilt. device asr # DPT SmartRAID V, VI and Adaptec SCSI RAID Install the Adaptec RAID Control Software The CD that comes with the controller includes some software to control and configure the RAID.
I use MySQL to store user data in courier. Here’s how to set it up. Configure Courier Before you begin, find your courier installation’s configuration directory. It is usually /usr/local/etc/courier, /etc/courier or /usr/local/courier/etc. Unless otherwise noted, the files mentioned here will be in this directory. smtpaccess/ You need to edit the files in this directory to allow relaying by IP address. To allow an IP to relay, add a line like this to any file in this directory.
SPF is a protocol to try to provide some defense against domain spoofing. You can turn on SPF checks in courier-mta by adding various things to bofh. You might want to begin by reading the SPF RFC and the Courier SPF docs. Possible Keywords (descriptions from the RFC): Keyword Description “none” A result of None means that no records were published by the domain.
Like many people, I setup courier to use mysql for authentication. When I went through the setup, I decided to store username as user@domain in the accounts table. Users who are not in the default domain, can login as user@domain and they are good to go. This works well in most modern email clients, but some older clients, notably Netscape 4.5, can’t use this syntax and are unable to login.
Note: I have switched to amavisd-new. These docs should still work but I am no longer maintaining them. See Courier with Amavisd-new. These intructions walk you through the setup of AMaViS-ng with the F-Prot virus scanner from Frisk. It should be fairly trivial to use another virus scanner, such as clamav, instead. Needed Ports archivers/lha archivers/unarj or archivers/arj archivers/unrar or archivers/rar archivers/zoo or archivers/unzoo archivers/arc archivers/p5-Compress-Zlib archivers/p5-Archive-Tar archivers/p5-Archive-Zip archivers/bzip2 devel/p5-IO-stringy converters/p5-MIME-Base64 converters/p5-Convert-UUlib converters/p5-Convert-TNEF mail/p5-MIME-Tools mail/p5-Mail-Tools devel/p5-Config-IniFiles devel/p5-File-MMagic sysutils/p5-Unix-Syslog F-Prot You need to install wget (ftp/wget) and unzip (archivers/unzip) for check-updates.
Real-time Blacklists (RBLs) are commonly used to block mail from known spammers or servers that can be used to send spam (open relays and the like). I found a lot of good info on setting up rbldnsd here. I use Bind 9 on my DNS servers so that I can run rbldnsd on the same IP as bind. Note: Setting up and configuring Bind 9 for basic DNS is beyond the scope of this document.