yum install httpd mysql php php-mysql wget

Set up SQL

mysql_install_db –user=mysql

mysql_secure_installation

service mysql start

mysql -p

You should now be staring at an SQL prompt. The following should be all of the necessary SQL commands for the entire HOWTO.

mysql> CREATE DATABASE postfix;
mysql> CREATE USER postfix@localhost IDENTIFIED BY ‘your_password’;
mysql> GRANT ALL PRIVILEGES ON postfix.* TO postfix;
mysql> grant SELECT ON postfix.* to ‘dovecot’@’localhost’ IDENTIFIED by ‘dovecot_password’;
mysql> grant SELECT, RELOAD, LOCK TABLES ON . to ‘backup’@’localhost’ IDENTIFIED by ‘backup’;
mysql> flush privileges;
mysql> exit

I’d really recommend writing a SQL backup script, and tossing it in your crontab. It’s optional, but a bloody good idea.

env EDITOR=nano crontab -e

You might want to tune your Apache HTTPD configuration.

nano /etc/httpd/conf/httpd.conf

service httpd restart

Grab a copy of PostfixAdmin

wget http://sourceforge.net/projects/postfixadmin/files/postfixadmin/postfixadmin-2.3.3/postfixadmin-2.3.3.tar.gz/download

tar -zxvf postfixadmin-2.3.3.tar.gz

mv postfixadmin-2.3.3.tar.gz postfixadmin

mv postfixadmin /var/www/html/

cd /var/www/html/postfixadmin

nano config.inc.php

Follow the steps in config.inc.php to complete configuration. Basically, you’ll need to fill in some database information and create a password for adding administrators to PostfixAdmin. You want to point your web browser at http://www.yourdomain.tdl/postfixadmin/setup.php

It’ll display a checklist. Make sure all of your checks are good and it should make the necessary structure changes to the SQL database. Be sure to log in PostfixAdmin and make sure everything is happy. Otherwise you will be sad. Toss in some info, test email addresses and whatnot.

Enable CentOS Plus repo, then install postfix. The standard CentOS 5.5 repo doesn’t include the version of Postfix with SQL support. Why, I have no bloody clue. You want postfix 2.3.x. Be sure to exclude postfix from the updates and regular base repo. I snagged the version of PHP5 from the CentOS Testing repo as well, lot of webapps want it. I configured both additional repositories to only snag the packages I want.

1. Edit the file /etc/yum.repos.d/CentOS-Base.repoor its equivalent in RHEL and edit the lines below.

postconf -m

postconf -a

If it doesn’t list MySQL on the first command and dovecot on the second, you have the wrong version of postfix. You probably messed up your repo hacking. Let’s ignore postifx for a moment, and move on into the realm of insanity. Here there be dragons.

Now, to snag dovecot. This is going to be ugly.

rpm -Uvh http://packages.sw.be/rpmforge-release/rpmforge-release-0.5.2-2.el6.rf.i686.rpm

( or for x86_64, use http://packages.sw.be/rpmforge-release/rpmforge-release-0.5.2-2.el6.rf.x86_64.rpm )

rpm –import http://apt.sw.be/RPM-GPG-KEY.dag.txt

yum install dovecot

You should have gotten dovecot 1.0.13. Recheck your repo config if you didn’t. For the love of the odd gods, do NOT use the standard CentOS repository for dovecot, which would be 1.0.7 or whatnot. It’s broken. Yes, do not ask me why anyone would keep a royally screwed up version in the main repository of a distribution known for testing and stability. I have no bloody clue.

mkdir -p /var/vmail

chmod 770 /var/vmail

useradd -r -u 101 -g mail -d /var/vmail -s /sbin/nologin -c “Virtual mailbox” vmail

chown vmail.mail /var/vmail

cd /etc

cp dovecot.conf dovecot.conf.original

echo “” > dovecot.conf

nano dovecot.conf

————————————

START OF DOVECOT CONFIGURATION

————————————

mail_location = maildir:/var/vmail/%d/%u
first_valid_uid = 101
last_valid_uid = 101
maildir_copy_with_hardlinks = yes
protocol imap {
mail_plugins = quota imap_quota
imap_client_workarounds = outlook-idle delay-newmail
}
protocol pop3 {
mail_plugins = quota
pop3_client_workarounds = outlook-no-nuls oe-ns-eoh
}
protocol lda {
postmaster_address = postmaster@example.com
mail_plugins = quota
log_path = /var/log/dovecot-deliver.log
info_log_path = /var/log/dovecot-deliver.log
}
auth default {

Having “login” also as a mechanism make sure outlook can use the auth smtpd as well

http://wiki.dovecot.org/Authentication/Mechanisms

mechanisms = plain login
passdb sql {
args = /etc/dovecot/sql.conf
}
userdb sql {
args = /etc/dovecot/sql.conf
}
userdb prefetch {
}
user = nobody
socket listen {
master {
path = /var/run/dovecot/auth-master
mode = 0660
user = vmail
group = mail
}
client {
path = /var/spool/postfix/private/auth
mode = 0660
user = postfix
group = mail
}
}
}
dict {
}
plugin {

quota = maildir:storage=10240:messages=1000

acl = vfile:/etc/dovecot/acls

trash = /etc/dovecot/trash.conf
}

—————————————

END OF CONFIGURATION – Dovecot

—————————————

Save it and get back to the command prompt. We still need to connect up to the SQL database that PostfixAdmin set up for us. Remember the dovecot password from that MySQL query earlier?

nano /etc/dovecot/sql.conf

—————————————

START OF CONFIGURATION – SQL.CONF

—————————————

driver = mysql
connect = host=localhost dbname=postfix user=dovecot password=DOVECOT_SQL_password
user_query = SELECT concat(‘/var/vmail/’, maildir) as home, concat(‘maildir:/var/vmail/’, maildir) as mail, 101 AS uid, 12 AS gid, concat(‘maildir:storage=’, quota) AS quota FROM mailbox WHERE username = ‘%u’ AND active = ’1′
password_query = SELECT username as user, password, concat(‘/var/vmail/’, maildir) as userdb_home, concat(‘maildir:/var/vmail/’, maildir) as userdb_mail, 101 as userdb_uid, 12 as userdb_gid FROM mailbox WHERE username = ‘%u’ AND active = ’1′

—————————————

Config Notes:

Note, query needs to be on ONE line

Your web browser and paste will wrap it.

—————————————

END OF CONFIGURATION

—————————————

nano /etc/dovecot/trash.conf

Paste in the folders you want created automatically
Example:

1 Spam
2 Trash

cd /etc/postfix

nano master.cf

Paste the following (yes, intended on the third line)

Dovecot LDA

dovecot unix – n n – – pipe
flags=DRhu user=vmail:mail argv=/usr/libexec/dovecot/deliver -d ${recipient}

cp main.cf main.cf.original

echo “” > main.cf

nano main.cf

Paste all of the following into main.cf

—————————————

START OF CONFIGURATION – postfix

—————————————

Local Settings

myhostname = mail.example.tld # Change this, dude.
inet_interfaces = localhost, $myhostname
mynetworks = $config_directory/mynetworks
mydestination = localhost.$mydomain, localhost, $myhostname

uncomment if you need relay_domains… do not list domains in both relay and virtual

relay_domains = proxy:mysql:$config_directory/mysql_relay_domains_maps.cf

Virtual domain start

virtual_mailbox_domains = proxy:mysql:$config_directory/mysql_virtual_domains_maps.cf
virtual_mailbox_base = /var/vmail
virtual_mailbox_maps = proxy:mysql:$config_directory/mysql_virtual_mailbox_maps.cf
virtual_alias_maps = proxy:mysql:$config_directory/mysql_virtual_alias_maps.cf
virtual_mailbox_limit_maps = proxy:mysql:/etc/postfix/mysql_virtual_mailbox_limit_maps.cf
virtual_minimum_uid = 101
virtual_uid_maps = static:101
virtual_gid_maps = static:12
virtual_transport = dovecot
dovecot_destination_recipient_limit = 1

—————————————

END OF CONFIGURATION – Postfix

—————————————

Save. Restart dovecot and postfix. Attempt to send mail back and forth. If it doesn’t work, go to /var/log/maillog and start reading.

If it works, and only once it works, we start on spamassassin.

yum install spamassassin

sa-update

spamassassin –lint

If you get an error, then do the following:
– # rpm -q perl-Net-DNS perl-NetAddr-IP perl perl-IO-Socket-INET6
– # rpm -qi perl-IO-Socket-INET6
– # yum remove perl-IO-Socket-INET6
– # spamassassin –lint

If you didn’t get an error, start back here.

adduser spamfilter -s /sbin/nologin

nano /etc/postfix/master.cf

Add to bottom:

spamfilter unix – n n – – pipe
flags=Rq user=spamfilter argv=/usr/local/bin/spamfilter -f ${sender} — ${recipient}

Change from near top

smtp inet n – n – – smtpd
-o content_filter=spamfilter:dummy

nano /usr/local/bin/spamfilter

Past in the following

!/bin/bash

/usr/bin/spamc | /usr/sbin/sendmail.postfix -i “$@”

exit $?

chown spamfilter /usr/local/bin/spamfilter

chmod 755 /usr/local/bin/spamfilter

postfix reload

You can generate a config file from SA Configuration Generator. The output goes to /etc/mail/spamassassin/local.cf

Enable Mail forwarding and alias for postfixadmin:

we can do that forwarding and alias together for a mail. This was a hidden feature and could be enabled by editing the config.inc.php file

$CONF[‘alias_control’]=”YES”
$CONF[‘alias_control_admin’]=”YES”

NOTE: Postfix mail status defferred ( Temporary Failure ) : Check permissions and ownership on /var/vmail ( should be owned by vmail ) # chown -R vmail:vmail /var/vmail