aboutsummaryrefslogtreecommitdiff
diff options
context:
space:
mode:
authorSam Chudnick <sam@chudnick.com>2023-07-03 10:53:52 -0400
committerSam Chudnick <sam@chudnick.com>2023-07-03 10:53:52 -0400
commit598c3cac83056c9618c59a49722889fe4944dbf6 (patch)
tree83a000c8e525fe6206bab11e8331432105d6d8a8
parent75585abd68e52d37579c694e641b5a87fffa6e02 (diff)
Add an FAQ section to READMEHEADmaster
-rw-r--r--README.md43
1 files changed, 43 insertions, 0 deletions
diff --git a/README.md b/README.md
index 1ef02fe..0318337 100644
--- a/README.md
+++ b/README.md
@@ -57,3 +57,46 @@ If you have passwordless sudo configured --ask-become-pass is not necessary.
57The playbook finishes by generating the DNS records required for mail verification. 57The playbook finishes by generating the DNS records required for mail verification.
58You can find these records under /home/root/dns\_records once the playbook finishes. 58You can find these records under /home/root/dns\_records once the playbook finishes.
59The records are in BIND9 format but the values can be extracted for use on any platform. 59The records are in BIND9 format but the values can be extracted for use on any platform.
60
61
62## FAQ
63
64### Distros
65I have only tested this on Debian 12 and that is currently the only "supported" distro.
66
67This will likely not work on Debian 11 due to some changes with the spamassassin package, but could easily be modified to work.
68
69It will likely also work with current versions of Ubuntu but may require some modifications there also.
70
71YMMV with any non Debian-based distro.
72
73### Users
74This configuration uses the local system for authentication.
75Additionally, postfix login and local maps are used so that not every user on the system can receive mail.
76
77To create a new mail user use the following script:
78```
79# create unix account - do not allow user to login to system
80useradd --shell /usr/sbin/nologin --create-home --user-group $username
81
82# login map
83echo "$username@$(cat /etc/mailname) $username" >> /etc/postfix/login_maps
84postmap /etc/postfix/login_maps
85
86# local recipient map
87echo "$username $username" >> /etc/postfix/local_maps
88postmap /etc/postfix/local_maps
89
90# reload postfix to make changes live
91postfix reload
92
93# set the user's password
94passwd $username
95```
96This will create a user on the system that is allowed to send and receive mail.
97As a security precaution, the user's shell is set to /usr/sbin/nologin to prevent
98management access to the server.
99
100### Multiple Domains
101The playbook will configure the mail server for a single domain. However, there is nothing in the configuration preventing a mult-domain setup.
102Setting up multiple domains will require some manual configuration of postfix main.cf.