Wụnye iRedMail (ihe nkesa ozi egosipụtara nke ọma) na ngalaba mebere, Webmail, SpamAssassin & ClamAV na Linux
Mgbe HTTP na ọrụ DNS gachara, mail (SMTP, POP, IMAP na usoro akwụkwọ ozi ezoro ezo niile metụtara) bụ otu n'ime ọrụ a na-ejikarị na ịntanetị, yana kwa, otu n'ime ezi uche, n'ihi spam na sava ozi na-emeghe.
Nkuzi a ga - eduzi gị site na ịwụnye ihe nkesa ozi zuru oke na ngwanrọ MTA, MDA na MUA n'ime nkeji ole na ole na RHEL, CentOS, Linux Scientific na Debian, Ubuntu, Linux Mint na Postfix, Virtual Domains na Ndị ọrụ nwere MySQL, Dovecot - nkwado maka POP3/POP3S, IMAP/IMAPS, Roundcube – Webmail yana kwa, spam na nyocha nje na SpamAssassin na ClamAV, arụnyere niile site na iji otu ngwugwu ngwanrọ akpọrọ 'iRedMail'.
iRedMail bụ ihe ngosipụta nke ihe nkesa ozi mepere emepe nke nwere ike ịwepụta oge dị ukwuu maka ndị na-ahụ maka sistemụ maka nhazi dị mgbagwoju anya, nwere nkwado maka nkesa Linux na ụgbọ mmiri niile nwere ngwugwu Linux ndị a.
- Postfix: Ọrụ SMTP – MTA ndabara.
- Dovecot: POP3/POP3S, IMAP/IMAPS, Jikwaa ọrụ – MDA ndabara.
- Apache: Sava webụ.
- MySQL/PostgreSQL: Ịchekwa data ngwa na/ma ọ bụ akaụntụ ozi.
- OpenLDAP: Na-echekwa akaụntụ mail.
- Policyd: Ihe nkesa iwu Postfix.
- Amavisd: interface dị n'etiti Postfix na SpamAssassin, ClamAV. Ejiri ya maka nyocha spam na nje.
- Chube: Webmail – MUA nke ndabara.
- Awsstats: Apache na Postfix log analyzer.
- Fail2ban: na-enyocha faịlụ ndekọ (dịka /var/log/maillog) wee machibido IP ndị na-egosi mbọ sistemu ọjọọ.
- CentOS 6.5 obere nrụnye – Ntuziaka nwụnye CentOS 6.5
- ndekọ MX DNS ziri ezi nke na-arụtụ aka na sava ozi gị maka aha ngalaba gị.
Ọzọkwa, a haziri nkuzi a maka nnwale na mmụta naanị ma ọ naghị eji ndekọ MX ziri ezi, ma ọ bụ ezigbo ngalaba ngalaba DNS, a na-eme nhazi niile na mpaghara site na iji ndị nnata mebere na MySQL (nwere ike ịnata ma ọ bụ zipu ozi n'etiti ndị ọrụ ngalaba mpaghara naanị. - aha mpaghara enyere site na faịlụ ndị ọbịa) mana mara na, n'agbanyeghị na sistemụ anyị enweghị ike ịnata ozi sitere na ngalaba ịntanetị, ọ nwere ike ibuga ozi na sava ozi ngalaba ahụ site na Postfix MTA, ọbụlagodi na ị bi na oghere adreesị IP nkeonwe. , na-enweghị ndekọ MX ziri ezi yana iji ngalaba akụkọ ifo, yabụ tinye uche na ihe ị na-eme.
Kwụpụ 1: Nhazi izizi na adreesị IP static
1. Mgbe mbụ reboot nbanye na gị mgbọrọgwụ akaụntụ na jide n'aka na gị usoro bụ ọhụrụ na wụnye ụfọdụ bara uru ngwugwu mkpa maka emechaa ojiji.
# yum update && yum upgrade # yum install nano wget bzip2
# apt-get update && apt-get upgrade # apt-get install nano wget bzip2
2. N'ihi na igbe a na-arụ ọrụ dị ka Mail Server, ekwesịrị ịhazi IP static na Interface Network. Ka ịgbakwunye IP static mepere ma dezie faịlụ nhazi NIC gị dị na /etc/sysconfig/network-scripts/ ụzọ wee tinye ụkpụrụ ndị a.
# nano /etc/sysconfig/network-scripts/ifcfg-eth0
Jiri faịlụ a dị ka ndebiri ma jiri ụkpụrụ ahaziri gị dochie ya.
DEVICE="eth0" BOOTPROTO="static" HWADDR="00:0C:29:01:99:E8" NM_CONTROLLED="yes" ONBOOT="yes" TYPE="Ethernet" UUID="7345dd1d-f280-4b9b-a760-50208c3ef558" NAME="eth0" IPADDR=192.168.1.40 NETMASK=255.255.255.0 GATEWAY=192.168.1.1 DNS1=192.168.1.1 DNS2=8.8.8.8
Mgbe ịmechara idezi faịlụ NIC gị, mepee faịlụ netwọk site na otu ebe dị n'elu wee tinye aha nnabata nke sava gị na-erughị eru na ntụziaka HOSTNAME.
# nano /etc/sysconfig/network-scripts/network
# nano /etc/network/interfaces
Jiri ntọala gị dochie ụkpụrụ ndị a.
auto eth0 iface eth0 inet static address 192.168.1.40 netmask 255.255.255.0 gateway 192.168.1.1 dns-nameservers 192.168.1.1 dns-search 8.8.8.8
Ozugbo, imechara faịlụ netwọk gị, tinye ugbu a aha nnabata gị na /etc/hostname file.
# nano /etc/hostnames
3. Wee mepee /etc/resolv.conf faịlụ wee tinye sistemụ sava IP DNS gị n'obosara dị ka nseta ihuenyo dị n'okpuru.
# nano /etc/resolv.conf
Jiri sava aha ọkacha mmasị gị tinye ọdịnaya ndị a.
search mydomain.lan nameserver 8.8.8.8 nameserver 8.8.8.8
4. Mgbe edechara nhazi niile dị n'elu na faịlụ ha dabara na ya malitegharịa ọrụ netwọk gị ka itinye nhazi ọhụrụ wee nyochaa ya site na iji ping na ifconfig iwu.
# service network restart [On RedHat based systems] # service networking restart [On Debian based systems]
# ifconfig
5. Ugbu a na netwọk gị static arụ ọrụ nke ọma, dezie faịlụ /etc/hosts wee tinye aha nnabata gị erughị eru na FQDN dị ka ihe atụ dị n'okpuru.
# nano /etc/hosts
127.0.0.1 centos.mydomain.lan centos localhost localhost.localdomain 192.168.1.40 centos.mydomain.lan centos
Iji nyochaa okwu nhazi aha nnabata gị, gbaa aha nnabata na aha nnabata -f iwu.
# hostname # hostname -f
6. Ihe ngwugwu ọzọ bara uru bụ bash-completion (usoro iwu zuru oke na-eji [Tab] igodo) nke enyere site na EPEL repository n'okpuru sistemụ dabere na RedHat wee melite isi mmalite gị. .
# rpm –Uvh http://fedora.mirrors.romtelecom.ro/pub/epel/6/i386/epel-release-6-8.noarch.rpm # yum repolist && yum upgrade
Mgbe emelitere isi mmalite gị wụnye bash-completion utility (zaa Ee na ajụjụ niile).
# yum install bash-completion
Enwere ike itinye ngwungwu bash-emecha n'okpuru sistemụ Debian n'ụzọ dị mfe site na iji iwu.
# apt-get install bash-completion
7. Nzọụkwụ ikpeazụ bụ ịgbakwunye onye ọrụ usoro nwere ikike mgbọrọgwụ. Buru ụzọ tinye onye ọrụ wee hazie paswọọdụ ya.
# adduser your_user # passwd your_user
Mgbe agbakwunyere onye ọrụ gị, mepee /etc/sudoers faịlụ yana otu % wheel, wee tinye onye ọrụ gị emepụtara ọhụrụ na otu wheel.
# nano /etc/sudoers
Chọọ na uncomment wheel otu ahịrị ka ọ dị ka nke a.
%wheel ALL=(ALL) ALL
Mechie faịlụ ma tinye onye ọrụ gị na otu wheel na-enye iwu a.
# usermod -aG wheel your_user
8. Tupu anyị enwee ike ịmalite nbudata na wụnye iRedMail software, reboot your system, wee banye na onye ọrụ ọhụrụ gị mebere wee hụ na ihe niile na-arụ ọrụ nke ọma.
Nzọụkwụ 2: Wụnye iRedMail
9. Iji wetuo ngwugwu iRedMail Archive, ị ga-agarịrị ngalaba nbudata ọrụ gọọmentị ma ọ bụ ị nwere ike iji wget iwu ibudata ụdị ikpeazụ ( 0.8.7) n'oge nke na-ede akụkọ a).
# wget https://bitbucket.org/zhb/iredmail/downloads/iRedMail-0.8.7.tar.bz2
10. Mgbe iRedMail Archive download gwụchara, wepụ ya site na iji iwu na-esonụ.
# tar xvjf iRedMail-0.8.7.tar.bz2
11. wee banye ọhụrụ amịpụtara iRedMail directory ụzọ, kaa iRedMail.sh script na executable ikike wee mee ya.
# cd iRedMail-0.8.7 # chmod +x iRedMail.sh # sudo ./iRedMail.sh
12. Mgbe mbụ usoro elele usoro ihe omume na-amalite na-agbakwụnye chọrọ repository mgbe mbụ nduzi ozugbo na-ajụ gị ma ị chọrọ ịnọgide na echichi ma ọ bụ ime ime. Họrọ Ee ka ịga n'ihu.
13. iRedMail na-eji usoro Maildir chekwaa ozi-e na /var/vmail ụzọ sistemu ebe ọ na-emepụta akwụkwọ ndekọ aha dị iche iche maka ngalaba ọ bụla ị na-agbakwunye na sava MTA gị. Ọ bụrụ na ị nwere ntụsara ahụ na ụzọ a kụrụ Ọzọ ka ịga n'ihu na nhazi ihe nkesa ọzọ nye ebe ị chọrọ mgbe ahụ Ọzọ.
14. Na nzọụkwụ ọzọ họrọ ị họọrọ nchekwa data iji chekwaa ngalaba ozi na ndị nnata ga-ejikọta na Postfix. Nkuzi a gbadoro ụkwụ na nchekwa data MySQL, yabụ họrọ MySQL iji [Oghere] wee gaa n'ihu na Ọzọ wee nye paswọọdụ siri ike maka akaụntụ MySQL mgbọrọgwụ.
15. Na nzọụkwụ ọzọ tinye gị mbụ mebere ngalaba aha. Ọ bụrụ na ị nwere aha ngalaba aha agbakwunyere ebe a (tinye naanị ngalaba aha abụghị sistemụ FQDN).
16. Site na ndabara iRedAdmin na-emepụta onye ọrụ nchịkwa na ikike zuru ezu n'elu ihe nkesa gị nke nwere ike ịnweta site na iRedAdmin panel ma ọ bụ site na usoro Dovecot (ndabara Roundcube webmail interface ma ọ bụ ihe ọ bụla ọzọ IMAP/POP MUA software dị ka SquirrelMail, Rainloop, Microsoft Outlook, Mozilla Thunderbird, Evolution, Mutt, Elm wdg).
Ọzọkwa a na-eji akaụntụ nchịkwa postmaster a site na sistemụ ịkọ akụkọ ihe mere eme metụtara ọrụ ozi ma ọ bụ ọdịda sistemụ ndị ọzọ ma ọ bụ ozi bara uru - logwatch na-ezigakarị ọnụ ọgụgụ ya ebe a - họrọ paswọọdụ siri ike wee gaa n'ihu na Ọzọ.
17. Na nzọụkwụ ọzọ họrọ gị ndị ọzọ mail nkesa components dị ka iRedAdmin ukara administrative panel ka Postfix, DKIM ngalaba igodo - (na-agbakwụnye a mbinye aka na ozi nkụnye eji isi mee na-atụle ozi ntụkwasị obi maka ikpeazụ nnyefe ma ọ bụ n'ihu relays), Roundcube ndabere webmail interface (ma ọ bụrụ na ị na-eme atụmatụ. ka iji ndị ọzọ Ozi Nnyefe Agent skip Roundcube ), PhpMyadmin (ọ bụrụ na ị na-enwe ntụsara ahụ na MySQL iwu ahịrị ị ga-ahapụkwa wụnye PhpMyAdmin ), Awstats ( bara uru log ọnụ ọgụgụ na analyzer ), Fail2ban (na-echebe gị ihe nkesa si brute ike ọgụ).
18. Na usoro ajụjụ na-esote, dabere na akụrụngwa nhọrọ gị arụnyere ị ga-aza Ee. Lezienụ anya na faịlụ iRedMail.tips dị na ndekọ $HOME ewepụtara n'ihi na ọ nwere ozi sava ozi nwere mmetụta dị ka aha njirimara na okwuntughe maka ngwa sava, faịlụ nhazi ihe nkesa, URL ndabara na ozi ndị ọzọ dị mkpa.
19. Mgbe echichi mechara reboot sistemụ gị wee nyochaa iRedmail.tips faịlụ iji hụ ntọala ndabara nkesa gị - ịkwesịrị ịkwaga faịlụ a na ụzọ sistemụ echekwara yana ikike 600 na ya. .
20. Nweta ngwa weebụ ndabara na URL ndị a.
- Roundcube Webmail – https://domain_name ma ọ bụ server_IP/mail/
- IRedAdmin panel – https://domain_name or server_IP/iredadmin/
- PhpMyadmin – https://domain_name or server_IP /phpmyadmin/
- Awstats – https://domain_name ma ọ bụ server_IP/awstats/awstats.pl?config=web (ma ọ bụ ?config=smtp)
- Ihe mgbakwunye mgbochi spam nke Policyyd – https://domain_name or server_IP/cluebringer/
Nzọụkwụ 3: Nhazi Webmail mbụ
21. iRedAdmin nhazi panel awade isi webmail interface ebe ị nwere ike tinye mebere ngalaba na akaụntụ gị ozi nkesa na Postfix nwere ike ijikwa site MySQL backend. Iji banye na iRedAdmin panel rụtụ ihe nchọgharị gị gaa na https://domain_name/iredadmin/ ma ọ bụ https://server_IP/iredadmin/ URL wee jiri nzere ndabara ndị a.
- Aha njirimara: [email echebe]_domain_name.tld
- Paswọọdụ: okwuntughe onye nzi ozi edobere na akara #16
22. Iji tinye onye ọrụ gaa na Tinye -> Onye ọrụ wee nye adreesị ozi njirimara na paswọọdụ ịchọrọ. Ịnwekwara ike ịhazi ohere nke igbe ozi onye ọrụ gị nwere ike ijikwa na Quota ma ị nwekwara ike ịkwalite ndị ọrụ nwere ikike nhazi n'elu iRedAdmin panel site na Onye ọrụ na-eme akara dị ka onye nchịkwa ụwa.
23. Ndị ọrụ na-agụ akwụkwọ na-enye email site na Roundcube webụ interface. Iji nweta ya gaa na https://domain_name/mail ma ọ bụ https://server_IP/mail/ URL wee webata nzere akaụntụ mail gị n'ụdị [ email chedoro].
Ịnweta onye na-ahụ maka akaụntụ ozi nhazi nke ndabara, ị ga-ahụ ozi-e mbụ abụọ, otu n'ime ha gụnyere ozi nwere mmetụta nke ihe nkesa gị. Site ebe a ị nwere ike ịgụ ozi-e, dee na zipu ozi na ndị ọrụ ngalaba ndị ọzọ.
24. Iji nweta ihe nkesa Atụmatụ mgbochi spam nke Policyyd gaa na https://domain_name/cluebringer ma ọ bụ https://server_IP/cluebringer/ na nye nzere ndị a.
- Aha njirimara: [email chedoro]
- Paswọọdụ: okwuntughe onye nzi ozi
25. Ka ilele ọnụ ọgụgụ nkesa ozi gị gaa na https://mydomain.lan/awstats/awstats.pl/?config=smtp ma ọ bụ https://mydomain.lan/awstats/awstats .plma jiri nzere ndị a.
- Aha njirimara: [email chedoro]
- Paswọọdụ: okwuntughe onye nzi ozi
26. Ọ bụrụ na ịchọrọ ịlele njikọ meghere nke ihe nkesa gị na-ege ntị daemon steeti na oghere afferent ha na-enye iwu ndị a.
# netstat -tulpn ## numerical view # netstat -tulp ## semantic view
27. Iji mebie nsogbu ndị ọzọ na azụmahịa mail ma ọ bụ lelee ihe nkesa gị na-arụ ọrụ ị nwere ike iji iwu ndị a.
# tailf /var/log/maillog ## visualize mail logs in real time # mailq ## inspect mail queue # telnet ## test your server protocols and security form a different location # nmap ## scan your server opened connections from different locations
28. Ugbu a, i tinyela ebe nchekwa ozi zuru oke, naanị ihe na-efu, ma ọ dịkarịa ala na isiokwu a bụ aha ngalaba aha na ndekọ MX DNS ịnata ozi sitere na ngalaba ịntanetị ndị ọzọ mana SMTP mpaghara. ihe nkesa nwere ike na ọ ga-eziga ozi na ngalaba ịntanetị ndị ọzọ dị irè ya mere ṅaa ntị nke ọma onye ị na-eziga ozi n'ihi na ị nwere ike ịbanye na nsogbu iwu na-akwadoghị na ISP gị.
Site na nseta ihuenyo dị n'okpuru ị ga-ahụ na ezipụla m ozi-e site na ngalaba na-abụghị nke obodo m na otu akaụntụ google.com m na akaụntụ google m nwetara email ahụ nke ọma.
N'adịghị ka ọrụ netwọk ndị ọzọ ebe ị wụnye ma chefuo ha ruo ogologo oge ijikwa ihe nkesa ozi bụ ọrụ siri ike na-aga n'ihu n'ihi nsogbu ndị metụtara ozi ozi dị ka SPAM, oghere relay na ozi bounces.
Njikọ ntụaka
IRedMail ibe