Scalix mit Debian Etch: Unterschied zwischen den Versionen
Zur Navigation springen
Zur Suche springen
Keine Bearbeitungszusammenfassung |
Keine Bearbeitungszusammenfassung |
||
| Zeile 124: | Zeile 124: | ||
<pre> | <pre> | ||
sendmailconfig | sendmailconfig | ||
</pre> | |||
''/etc/init.d/amavisd-milter'' | |||
<pre> | |||
#! /bin/sh | |||
### BEGIN INIT INFO | |||
# Provides: amavisd-milter | |||
# Required-Start: $local_fs $remote_fs | |||
# Required-Stop: $local_fs $remote_fs | |||
# Default-Start: 2 3 4 5 | |||
# Default-Stop: 0 1 6 | |||
# Short-Description: Amavisd Milter Interface | |||
# Description: Start amavisd-milter to allow scanning of mail by amavisd-new | |||
# | |||
### END INIT INFO | |||
# Author: neobiker neobiker@friedrichnet.de | |||
# | |||
# Please remove the "Author" lines above and replace them | |||
# with your own name if you copy and modify this script. | |||
# Do NOT "set -e" | |||
PATH=/sbin:/usr/sbin:/bin:/usr/bin | |||
DESC="Amavisd Milter Interface" | |||
NAME=amavisd-milter | |||
DAEMON=/usr/sbin/$NAME | |||
DAEMON_ARGS="" | |||
PIDFILE=/var/run/$NAME.pid | |||
SCRIPTNAME=/etc/init.d/$NAME | |||
# Exit if the package is not installed | |||
[ -x "$DAEMON" ] || exit 0 | |||
# Read configuration variable file if it is present | |||
[ -r /etc/default/$NAME ] && . /etc/default/$NAME | |||
PIDFILE=$MILTER_PID | |||
DAEMON_ARGS="$MILTER_FLAGS" | |||
START="--start --quiet --pidfile $MILTER_PID --name ${NAME} --startas ${DAEMON}" | |||
STOP="--stop --quiet --pidfile $MILTER_PID --name ${NAME}" | |||
# Load the VERBOSE setting and other rcS variables | |||
. /lib/init/vars.sh | |||
# Define LSB log_* functions. | |||
# Depend on lsb-base (>= 3.0-6) to ensure that this file is present. | |||
. /lib/lsb/init-functions | |||
# | |||
# Function that starts the daemon/service | |||
# | |||
do_start() | |||
{ | |||
# Return | |||
# 0 if daemon has been started | |||
# 1 if daemon was already running | |||
# 2 if daemon could not be started | |||
set -x | |||
start-stop-daemon --start --quiet --pidfile $PIDFILE --exec $DAEMON --test > /dev/null \ | |||
|| return 1 | |||
start-stop-daemon ${START} -- $DAEMON_ARGS \ | |||
|| return 2 | |||
# Add code here, if necessary, that waits for the process to be ready | |||
# to handle requests from services started subsequently which depend | |||
# on this one. As a last resort, sleep for some time. | |||
set +x | |||
} | |||
# | |||
# Function that stops the daemon/service | |||
# | |||
do_stop() | |||
{ | |||
# Return | |||
# 0 if daemon has been stopped | |||
# 1 if daemon was already stopped | |||
# 2 if daemon could not be stopped | |||
# other if a failure occurred | |||
start-stop-daemon --stop --quiet --retry=TERM/30/KILL/5 --pidfile $PIDFILE --name $NAME | |||
RETVAL="$?" | |||
[ "$RETVAL" = 2 ] && return 2 | |||
# Wait for children to finish too if this is a daemon that forks | |||
# and if the daemon is only ever run from this initscript. | |||
# If the above conditions are not satisfied then add some other code | |||
# that waits for the process to drop all resources that could be | |||
# needed by services started subsequently. A last resort is to | |||
# sleep for some time. | |||
start-stop-daemon --stop --quiet --oknodo --retry=0/30/KILL/5 --exec $DAEMON | |||
[ "$?" = 2 ] && return 2 | |||
# Many daemons don't delete their pidfiles when they exit. | |||
rm -f $PIDFILE | |||
return "$RETVAL" | |||
} | |||
# | |||
# Function that sends a SIGHUP to the daemon/service | |||
# | |||
do_reload() { | |||
# | |||
# If the daemon can reload its configuration without | |||
# restarting (for example, when it is sent a SIGHUP), | |||
# then implement that here. | |||
# | |||
start-stop-daemon --stop --signal 1 --quiet --pidfile $PIDFILE --name $NAME | |||
return 0 | |||
} | |||
case "$1" in | |||
start) | |||
[ "$VERBOSE" != no ] && log_daemon_msg "Starting $DESC" "$NAME" | |||
do_start | |||
case "$?" in | |||
0|1) [ "$VERBOSE" != no ] && log_end_msg 0 ;; | |||
2) [ "$VERBOSE" != no ] && log_end_msg 1 ;; | |||
esac | |||
;; | |||
stop) | |||
[ "$VERBOSE" != no ] && log_daemon_msg "Stopping $DESC" "$NAME" | |||
do_stop | |||
case "$?" in | |||
0|1) [ "$VERBOSE" != no ] && log_end_msg 0 ;; | |||
2) [ "$VERBOSE" != no ] && log_end_msg 1 ;; | |||
esac | |||
;; | |||
#reload|force-reload) | |||
# | |||
# If do_reload() is not implemented then leave this commented out | |||
# and leave 'force-reload' as an alias for 'restart'. | |||
# | |||
#log_daemon_msg "Reloading $DESC" "$NAME" | |||
#do_reload | |||
#log_end_msg $? | |||
#;; | |||
restart|force-reload) | |||
# | |||
# If the "reload" option is implemented then remove the | |||
# 'force-reload' alias | |||
# | |||
log_daemon_msg "Restarting $DESC" "$NAME" | |||
do_stop | |||
case "$?" in | |||
0|1) | |||
do_start | |||
case "$?" in | |||
0) log_end_msg 0 ;; | |||
1) log_end_msg 1 ;; # Old process is still running | |||
*) log_end_msg 1 ;; # Failed to start | |||
esac | |||
;; | |||
*) | |||
# Failed to stop | |||
log_end_msg 1 | |||
;; | |||
esac | |||
;; | |||
*) | |||
#echo "Usage: $SCRIPTNAME {start|stop|restart|reload|force-reload}" >&2 | |||
echo "Usage: $SCRIPTNAME {start|stop|restart|force-reload}" >&2 | |||
exit 3 | |||
;; | |||
esac | |||
exit 0 | |||
</pre> | |||
''/etc/defaults/amavisd-milter'' | |||
<pre> | |||
### /etc/sysconfig/amavisd-milter | |||
### Configuration options for amavisd-milter | |||
### Suitable for Redhat & SuSE systems. | |||
# | |||
# | |||
### Location of milter binary. | |||
MILTER="/usr/local/sbin/amavisd-milter" | |||
### Amavisd's homedir. | |||
### This should match the '$MYHOME' directive in amavisd.conf | |||
AMAVIS_HOME="/var/run/amavis" | |||
MILTER_HOME="/var/lib/amavis/amavisd-milter" | |||
### User that amavisd-milter will run as. | |||
### For RH/CentOS/Fedora set to "amavis" | |||
### For SuSE set to "vscan" | |||
MILTER_USER="amavis" | |||
### This is the socket used for communication between sendmail <--> milter | |||
### It must correspond to the "S=" variable of the milter definition in sendmail.cf | |||
### Note the variable substitution! | |||
MILTER_SOCKET="local:$AMAVIS_HOME/amavisd-milter.sock" | |||
### This is the socket used for communication between amavisd <--> milter | |||
### It must correspond to the value of "$unix_socketname" in amavisd.conf | |||
### Note the variable substitution! | |||
AMAVISD_SOCKET="$AMAVIS_HOME/amavisd.sock" | |||
### Pid file | |||
### Note the variable substitution! | |||
MILTER_PID="$AMAVISD_HOME/amavisd-milter.pid" | |||
### All the args to milter | |||
MILTER_FLAGS="-s $MILTER_SOCKET -p $MILTER_PID -w $MILTER_HOME -S $AMAVISD_SOCKET" | |||
</pre> | </pre> | ||
Version vom 13. Mai 2007, 19:01 Uhr
Vorbereitung
Etch Installation in XEN DomU
Ich starte mit der Installation auf einer frischen Etch-Installation unter XEN. Der Einfachheit halber benutze ich die xen-tools.
apt-get install xen-tools vi /etc/xen-tools/xen-tools.conf # # ... lvm = vg debootstrap = 1 # ## # Disk and Sizing options. ## # size = 4Gb # Disk image size. memory = 128Mb # Memory size swap = 128Mb # Swap size # noswap = 1 # Don't use swap at all for the new system. fs = ext3 # use the EXT3 filesystem for the disk image. dist = etch # Default distribution to install. image = sparse # Specify sparse vs. full disk images. dhcp = 1 # # Default kernel and ramdisk to use for the virtual servers # kernel = /boot/vmlinuz-2.6.18-4-xen-686 initrd = /boot/initrd.img-2.6.18-4-xen-686 # # The default mirror for debootstrap which can be used to install # Debian Sid, Sarge, and Etch. # mirror = http://ftp.de.debian.org/debian/ # ...
Etch-DomU starten
xen-create-image --hostname=scx vi /etc/xen/scx.cfg xm create -c /etc/xen/scx.cfg ... ethtool -K eth0 tx off vi /etc/network/interfaces # uncomment ethtool # post-up ethtool -K eth0 tx off
Zusätzliche Pakete installieren
Jetzt die notwendigen Pakete installieren:
- Sendmail
- Kerberos
- Postgres
- SASL2
- diverse Libraries
- Sun Java
- gawk, wget, elinks, ethtool, less
apt-get install -u sendmail sendmail-doc apt-get install -u krb5-config krb5-doc krb5-user libkadm55 libkrb53 apt-get install -u postgresql apt-get install -u saslauthd libsasl2-modules libsasl2-gssapi-mit sasl2-bin libssl0.9.7 apt-get install -u libxml2 libglib2.0-0 libstdc++2.10-glibc2.2 libstdc++5 apt-get install -u sun-java5-jre apt-get install -u gawk elinks wget w3m less ethtool
Sendmail konfigurieren
Smarthost unter z.B. /etc/mail/m4/provider.m4 eintragen
define(`SMART_HOST', `mail.1und1.de')
Die MAILER Definitionen sollten ans Ende der Konfiguration verschoben werden, sonst tritt eine Fehlermeldung auf. Folgendes habe ich angepasst:
- Smarthost (s.o.)
- Debug Level
- Interface nicht nur an 127.0.0.1 binden
- Masquerading
- Amavisd-new integrieren
vi /etc/mail/sendmail.mc dnl # ... define(`confLOG_LEVEL',`15')dnl #### only until Config is OK #### dnl # dnl # Daemon options - restrict to servicing LOCALHOST ONLY !!! dnl # Remove `, Addr=' clauses to receive from any interface dnl # If you want to support IPv6, switch the commented/uncommentd lines FEATURE(`no_default_msa')dnl dnl DAEMON_OPTIONS(`Family=inet6, Name=MTA-v6, Port=smtp, Addr=::1')dnl DAEMON_OPTIONS(`Family=inet, Name=MTA-v4, Port=smtp')dnl dnl DAEMON_OPTIONS(`Family=inet6, Name=MSP-v6, Port=submission, Addr=::1')dnl DAEMON_OPTIONS(`Family=inet, Name=MSP-v4, Port=submission')dnl dnl # dnl # SASL / TLS dnl # include(`/etc/mail/sasl/sasl.m4')dnl include(`/etc/mail/tls/starttls.m4')dnl define(`confCRL\', `/etc/mail/tls/revocation.list\')dnl dnl # define(`confCONTROL_SOCKET_NAME',`/var/run/sendmail/mta/smcontrol-rx')dnl dnl # dnl # dnl # Masquerading options dnl # FEATURE(`always_add_domain')dnl MASQUERADE_AS(`scx.neobiker.de')dnl FEATURE(`allmasquerade')dnl FEATURE(`masquerade_envelope')dnl dnl # dnl # use MILTER API dnl # define(`MILTER', 1)dnl INPUT_MAIL_FILTER(`milter-amavis', `S=local:/var/run/amavis/amavisd-milter.sock, F=T, T=S:10m;R:10m;E:10m')dnl dnl # dnl # Default Mailer setup dnl # MAILER_DEFINITIONS MAILER(`local')dnl MAILER(`smtp')dnl
Jetzt die neue sendmail.cf generieren.
sendmailconfig
/etc/init.d/amavisd-milter
#! /bin/sh
### BEGIN INIT INFO
# Provides: amavisd-milter
# Required-Start: $local_fs $remote_fs
# Required-Stop: $local_fs $remote_fs
# Default-Start: 2 3 4 5
# Default-Stop: 0 1 6
# Short-Description: Amavisd Milter Interface
# Description: Start amavisd-milter to allow scanning of mail by amavisd-new
#
### END INIT INFO
# Author: neobiker neobiker@friedrichnet.de
#
# Please remove the "Author" lines above and replace them
# with your own name if you copy and modify this script.
# Do NOT "set -e"
PATH=/sbin:/usr/sbin:/bin:/usr/bin
DESC="Amavisd Milter Interface"
NAME=amavisd-milter
DAEMON=/usr/sbin/$NAME
DAEMON_ARGS=""
PIDFILE=/var/run/$NAME.pid
SCRIPTNAME=/etc/init.d/$NAME
# Exit if the package is not installed
[ -x "$DAEMON" ] || exit 0
# Read configuration variable file if it is present
[ -r /etc/default/$NAME ] && . /etc/default/$NAME
PIDFILE=$MILTER_PID
DAEMON_ARGS="$MILTER_FLAGS"
START="--start --quiet --pidfile $MILTER_PID --name ${NAME} --startas ${DAEMON}"
STOP="--stop --quiet --pidfile $MILTER_PID --name ${NAME}"
# Load the VERBOSE setting and other rcS variables
. /lib/init/vars.sh
# Define LSB log_* functions.
# Depend on lsb-base (>= 3.0-6) to ensure that this file is present.
. /lib/lsb/init-functions
#
# Function that starts the daemon/service
#
do_start()
{
# Return
# 0 if daemon has been started
# 1 if daemon was already running
# 2 if daemon could not be started
set -x
start-stop-daemon --start --quiet --pidfile $PIDFILE --exec $DAEMON --test > /dev/null \
|| return 1
start-stop-daemon ${START} -- $DAEMON_ARGS \
|| return 2
# Add code here, if necessary, that waits for the process to be ready
# to handle requests from services started subsequently which depend
# on this one. As a last resort, sleep for some time.
set +x
}
#
# Function that stops the daemon/service
#
do_stop()
{
# Return
# 0 if daemon has been stopped
# 1 if daemon was already stopped
# 2 if daemon could not be stopped
# other if a failure occurred
start-stop-daemon --stop --quiet --retry=TERM/30/KILL/5 --pidfile $PIDFILE --name $NAME
RETVAL="$?"
[ "$RETVAL" = 2 ] && return 2
# Wait for children to finish too if this is a daemon that forks
# and if the daemon is only ever run from this initscript.
# If the above conditions are not satisfied then add some other code
# that waits for the process to drop all resources that could be
# needed by services started subsequently. A last resort is to
# sleep for some time.
start-stop-daemon --stop --quiet --oknodo --retry=0/30/KILL/5 --exec $DAEMON
[ "$?" = 2 ] && return 2
# Many daemons don't delete their pidfiles when they exit.
rm -f $PIDFILE
return "$RETVAL"
}
#
# Function that sends a SIGHUP to the daemon/service
#
do_reload() {
#
# If the daemon can reload its configuration without
# restarting (for example, when it is sent a SIGHUP),
# then implement that here.
#
start-stop-daemon --stop --signal 1 --quiet --pidfile $PIDFILE --name $NAME
return 0
}
case "$1" in
start)
[ "$VERBOSE" != no ] && log_daemon_msg "Starting $DESC" "$NAME"
do_start
case "$?" in
0|1) [ "$VERBOSE" != no ] && log_end_msg 0 ;;
2) [ "$VERBOSE" != no ] && log_end_msg 1 ;;
esac
;;
stop)
[ "$VERBOSE" != no ] && log_daemon_msg "Stopping $DESC" "$NAME"
do_stop
case "$?" in
0|1) [ "$VERBOSE" != no ] && log_end_msg 0 ;;
2) [ "$VERBOSE" != no ] && log_end_msg 1 ;;
esac
;;
#reload|force-reload)
#
# If do_reload() is not implemented then leave this commented out
# and leave 'force-reload' as an alias for 'restart'.
#
#log_daemon_msg "Reloading $DESC" "$NAME"
#do_reload
#log_end_msg $?
#;;
restart|force-reload)
#
# If the "reload" option is implemented then remove the
# 'force-reload' alias
#
log_daemon_msg "Restarting $DESC" "$NAME"
do_stop
case "$?" in
0|1)
do_start
case "$?" in
0) log_end_msg 0 ;;
1) log_end_msg 1 ;; # Old process is still running
*) log_end_msg 1 ;; # Failed to start
esac
;;
*)
# Failed to stop
log_end_msg 1
;;
esac
;;
*)
#echo "Usage: $SCRIPTNAME {start|stop|restart|reload|force-reload}" >&2
echo "Usage: $SCRIPTNAME {start|stop|restart|force-reload}" >&2
exit 3
;;
esac
exit 0
/etc/defaults/amavisd-milter
### /etc/sysconfig/amavisd-milter ### Configuration options for amavisd-milter ### Suitable for Redhat & SuSE systems. # # ### Location of milter binary. MILTER="/usr/local/sbin/amavisd-milter" ### Amavisd's homedir. ### This should match the '$MYHOME' directive in amavisd.conf AMAVIS_HOME="/var/run/amavis" MILTER_HOME="/var/lib/amavis/amavisd-milter" ### User that amavisd-milter will run as. ### For RH/CentOS/Fedora set to "amavis" ### For SuSE set to "vscan" MILTER_USER="amavis" ### This is the socket used for communication between sendmail <--> milter ### It must correspond to the "S=" variable of the milter definition in sendmail.cf ### Note the variable substitution! MILTER_SOCKET="local:$AMAVIS_HOME/amavisd-milter.sock" ### This is the socket used for communication between amavisd <--> milter ### It must correspond to the value of "$unix_socketname" in amavisd.conf ### Note the variable substitution! AMAVISD_SOCKET="$AMAVIS_HOME/amavisd.sock" ### Pid file ### Note the variable substitution! MILTER_PID="$AMAVISD_HOME/amavisd-milter.pid" ### All the args to milter MILTER_FLAGS="-s $MILTER_SOCKET -p $MILTER_PID -w $MILTER_HOME -S $AMAVISD_SOCKET"
Dual-Konfiguration für amavisd-new Integration
mkdir /var/spool/mqueue-rx chown root:amavis /var/spool/mqueue-rx chmod 700 /var/spool/mqueue-rx mkdir /var/lib/sendmail/host_status m4 /usr/share/sendmail/cf/m4/cf.m4 /etc/mail/hostname-rx.mc > /etc/mail/sendmail-rx.cf m4 /usr/share/sendmail/cf/m4/cf.m4 /etc/mail/hostname-tx.mc > /etc/mail/sendmail.cf /usr/sbin/sendmail -C /etc/mail/sendmail-rx.cf -L sm-mta-rx -bd -qp /usr/sbin/sendmail -L sm-mta-tx -bd -q15m /usr/sbin/sendmail -Ac -L sm-msp-queue -q10m
Quellen
[1] Scalix Wiki: Manuelle Installation unter Etch
[2] Linux Magazin Online: Mail Server