Postfix邮件系统安装手册

　　Postfix邮件系统安装手册(MySQL+IGENUS+TLS+QUOTA)

　　1.分区：

　　1G /

　　1G swap

　　3G /var 邮件存储在这里所以设置比较大

　　1G /tmp

　　1G /home

　　3G /usr

　　剩下 /data

　　以上看自己的意愿了，想怎么分就怎么分

　　2.用户

　　添加cnhawk用户，口令另行约定，cnhawk用户需加入wheel组，root口令另行约定

　　3. packages安装

　　选择最小化安装

　　选中

　　在custom选项里选中

　　compat3x

　　compat4x

　　man

　　ports

　　4.rc.conf

　　设定：

　　sendmail_enable="NONE"

　　5. 安装mysql

　　A.可以在ports中安装 （注意client和server的一致性，否则怕有麻烦，我就被4.1和3.23累坏过:(）

　　Cd /usr/ports/databases/mysql323-server

　　Make install

　　安装的mysql的版本是mysql-3.23.58

　　B.以下是手动安装mysql-3.23.55

　　1)添加mysql用户组及mysql用户

　　hawk# pw groupadd mysql

　　hawk# pw useradd mysql -g mysql -s /nonexistent

　　2)配置安装

　　hawk# tar zxvf mysql-3.23.55.tar.gz

　　hawk# cd mysql-3.23.55

　　hawk# ./configure --prefix=/usr/local/mysql --with-low-memory

　　--with-charset=gb2312 --without-debug

　　hawk# make

　　hawk# make install

　　hawk# scripts/mysql_install_db

　　hawk# chown -R root /usr/local/mysql

　　hawk# chown -R mysql /usr/local/mysql/var

　　hawk# chgrp -R mysql /usr/local/mysql

　　hawk# cp support-files/my-medium.cnf /etc/my.cnf

　　hawk# ln -s /usr/local/mysql/bin/safe_mysqld /usr/local/bin/safe_mysqld

　　hawk# ln -s /usr/local/mysql/bin/mysqladmin /usr/local/bin/mysqladmin

　　hawk# ln -s /usr/local/mysql/bin/mysql /usr/local/bin/mysql

　　hawk# ln -s /usr/local/mysql/lib/mysql /usr/local/lib/mysql

　　3)编辑用户数据库

　　以下是建库的语句 创建用户用于访问数据库

　　use mysql;

　　#======================postfix=====================

　　INSERT INTO user (host,user,password) VALUES('localhost','postfix','');

　　update user set password=password('hawk') where User='postfix';

　　FLUSH PRIVILEGES;

　　GRANT ALL ON mail.* TO postfix@localhost IDENTIFIED BY "hawk";

　　#======================courier=======================

　　INSERT INTO user (host,user,password) VALUES ('localhost','courier','');

　　update user set password=password('hawk') where User='courier';

　　FLUSH PRIVILEGES;

　　GRANT select,insert,update on mail.* TO courier;

　　#=======================MAIL.SQL====================

　　#Create mail database

　　CREATE DATABASE mail;

　　use mail;

　　#Create the aliases table

　　CREATE TABLE aliases (

　　alias varchar(255) NOT NULL default '',

　　rcpt varchar(255) default NULL,

　　PRIMARY KEY (alias)

　　) TYPE=MyISAM;

　　#Create the transport table

　　CREATE TABLE transport (

　　domain char(128) NOT NULL default '',

　　transport char(128) NOT NULL default '',

　　UNIQUE KEY domain (domain)

　　) TYPE=MyISAM;

　　#Create thevirtua_users table

　　CREATE TABLE virtual_users (

　　unique_id int(32) unsigned NOT NULL auto_increment,

　　id char(128) NOT NULL default '',

　　password char(128) default NULL,

　　uid int(10) unsigned default '2003',

　　gid int(10) unsigned default '2003',

　　home char(255) default NULL,

　　maildir char(255) default NULL,

　　date_add date default NULL,

　　time_add time default NULL,

　　domain char(128) default NULL,

　　name char(255) default NULL,

　　imapok tinyint(3) unsigned default '1',

　　quota char(255) default '10485760',

　　PRIMARY KEY (id),

　　KEY unique_id (unique_id)

　　) TYPE=MyISAM;

　　#Create address table //该部分是为使用igenus而增加的。

　　CREATE TABLE address (

　　id int(32) unsigned NOT NULL auto_increment,

　　unique_id int(32) NOT NULL default '0',

　　name char(255) NOT NULL default ' ',

　　email char(255) NOT NULL default ' ',

　　PRIMARY KEY (id),

　　key unique_id (unique_id)

　　) TYPE=MyISAM;

　　#================================================

　　4)设置自启：

　　hawk# edit /usr/local/etc/rc.d/mysqld.sh

　　示例：mysqld.sh

　　#!/bin/sh

　　case "$1" in

　　start)

　　if [ -x /usr/local/mysql/bin/safe_mysqld ]; then

　　/usr/local/mysql/bin/safe_mysqld --user=mysql %26amp; > /dev/null %26amp;%26amp; echo -n ' mysqld'

　　fi

　　;;

　　stop)

　　/usr/bin/killall mysqld > /dev/null 2>%26amp;1 %26amp;%26amp; echo -n ' mysqld'

　　;;

　　*)

　　echo ""

　　echo "Usage: `basename $0` { start | stop }"

　　echo ""

　　exit 64

　　;;

　　esac

　　
　　hawk# chmod 755 /usr/local/etc/rc.d/mysqld.sh
　6.安装cyrus-sasl （注意版本不要高于2.1.15，后期版本不支持lbdm,好像是这个名字）

　　1)安装cyrus-sasl-2.1.12

　　hawk# tar -zxvf cyrus-sasl-2.1.12.tar.gz

　　hawk# cd cyrus-sasl-2.1.12

　　hawk# ./configure --disable-sample --disable-pwcheck --disable-cram
　　--disable-digest --disable-krb4 --disable-gssapi --disable-anon
　　--with-saslauthd=/var/run/saslauthd --enable-plain --enable-login

　　hawk# make

　　hawk# make install

　　hawk# ln -s /usr/local/lib/sasl2 /usr/lib/sasl2

　　2)配置sasl的lib库

　　hawk# edit /etc/defaults/rc.conf

　　(在ldconfig_paths="/usr/loca/lib后面加上/usr/local/lib/sasl2")

　　hawk# shutdown -r now(使其生效)

　　3)运行saslauthd(如果使用pam直接认证，则该步骤可以省略)

　　示例saslauthd.sh

　　#!/bin/sh

　　case "$1" in

　　start)

　　if [ -x /usr/local/sbin/saslauthd ]; then

　　/usr/local/sbin/saslauthd -a pam > /dev/null %26amp;%26amp; echo -n ' saslauthd'

　　fi

　　;;

　　stop)

　　/usr/bin/killall saslauthd > /dev/null 2>%26amp;1 %26amp;%26amp; echo -n ' saslauthd'

　　;;

　　*)

　　echo ""

　　echo "Usage: `basename $0` { start | stop }"

　　echo ""

　　exit 64

　　;;

　　Esac

　　hawk# mkdir /var/run/saslauthd

　　hawk# edit /usr/local/etc/rc.d/saslauthd.sh

　　hawk# chmod 755 /usr/local/etc/rc.d/saslauthd.sh

　　4)准备postfix认证的配置文件

　　A)使用pam直接认证：

　　hawk# echo pwcheck_method: pam > /usr/local/lib/sasl2/smtpd.conf

　　B)使用saslauthd调用pam认证：（个人觉得还是使用这个比较好）

　　hawk# echo pwcheck_method: saslauthd > /usr/lib/sasl2/smtpd.conf

　　7. 安装 pam_mysql

　　安装 pam_mysql-0.5 (由于采用源码安装编译不能通过，故使用freebsd4.9 ports安装)

　　1)安装

　　hawk# pkg_add –r gmake （pam_mysql需要gmake）

　　hawk# cd /usr/ports/security/pam-mysql/

　　hawk# cp /usr/local/lib/pam_mysql.so /usr/lib/

　　2)配置pam.conf调用mysql支持sasl认证

　　hawk# edit /etc/pam.conf(将pop3 和imap的前面加上#)添加下列代码：

　　smtp auth sufficient pam_mysql.so user=postfix passwd=hawk host=localhost db=mail table=virtual_users usercolumn=id passwdcolumn=password crypt=1

　　smtp account required pam_mysql.so user=postfix passwd=hawk
　　host=localhost db=mail table=virtual_users usercolumn=id passwdcolumn
　　=password crypt=1

　　(注：密码使用crypt加密，如果使用明文密码cyrpt=0,如果使用password()加密crypt=2)

　　以上没有什么可以说的了
　8.安装postfix

　　1)停止sendmail

　　hawk# mv /usr/bin/newaliases /usr/bin/newaliases.OFF

　　hawk# mv /usr/bin/mailq /usr/bin/mailq.OFF

　　hawk# mv /usr/sbin/sendmail /usr/sbin/sendmail.OFF

　　hawk# mv /etc/rc.sendmail /etc/sendmail.OFF

　　hawk# edit /etc/rc.conf(在sendmail="YES"前面添加# )

　　2)添加postfix用户

　　hawk# pw groupadd postfix -g 2003

　　hawk# pw groupadd postdrop -g 2004

　　hawk# pw useradd postfix -u 2003 -g 2003 -d /dev/null -s /nologin

　　3)安装 postfix 2.1.13

　　为了让系统可以支持 Quota 下载 Quota 补丁

　　http://web.onda.com.br/nadal/

　　为了让系统支持TLS

　　ftp ftp://ftp.aet.tu-cottbus.de/pub/postfix_tls/pfixtls-0.8.18-2.1.3-0.9.7d.tar.gz

　　./pfixtls-0.8.18-2.1.3-0.9.7d/contributed/make-postfix-cert.sh

　　Apply the TLS patch to the Postfix source per README file contained in pfixtls* package:
　　patch -p0 < pfixtls-0.8.16-2.0.15-0.9.7b/pfixtls.diff

　　hawk# tar zxvf postfix-2.1.13.tar.gz

　　hawk# cd postfix-2.1.13

　　make -f Makefile.init makefiles 'CCARGS=-DUSE_SASL_AUTH -DHAS_MYSQL
　　-DHAS_SSL -I/usr/local/include/openssl -I/usr/local/include/mysql -I/usr/local/include/sasl' 'AUXLIBS=-L/usr/local/lib/ -L/usr/local/lib/mysql
　　-lmysqlclient -lssl -lcrypto -lsasl2 -lz -lm'

　　hawk# make

　　hawk# make install(第一次安装使用此命令，安装过程中如果提示错误则在提示选择tmp的时候使用/tmp)

　　hawk# make upgrade(升级老版本使用此命令)

　　4)配置

　　hawk# echo ‘postfix: root’ >> /etc/aliases

　　hawk# /usr/bin/newaliases

　　(注：如果提示postfix无法打开opiekeys文件则执行：#hawk chown postfix:postfix /etc/opiekeys)

　　A)编辑修改/etc/posftix/main.cf 示例：main.cf
　　#======= BASE ==============
　　myhostname = mail.elm.com
　　mydomain = elm.com
　　home_mailbox=Maildir/
　　mydestination = $myhostname,$transport_maps
　　local_recipient_maps =
　　mailbox_command= /usr/lib/courier-imap/bin/deliverquota -w 90 ~/Maildir
　　content_filter = smtp-amavis:[127.0.0.1]:10024
　　#======= MYSQL =============
　　transport_maps = mysql:/etc/postfix/transport.cf
　　virtual_gid_maps = mysql:/etc/postfix/gids.cf
　　virtual_mailbox_base = /var/mail
　　virtual_mailbox_maps = mysql:/etc/postfix/mysql_virtual.cf
　　virtual_maps = mysql:/etc/postfix/mysql.aliases.cf
　　virtual_uid_maps = mysql:/etc/postfix/uids.cf
　　#======= Quota ============
　　message_size_limit = 2097152
　　virtual_mailbox_limit_inbox = yes
　　virtual_mailbox_limit_maps = mysql:/etc/postfix/mailboxsize-mysql.cf
　　virtual_mailbox_limit_override = yes
　　virtual_maildir_extended = yes
　　virtual_create_maildirsize = yes
　　virtual_mailbox_limit = 10485760
　　#====== SASL ================
　　smtpd_sasl_auth_enable = yes
　　smtpd_sasl_security_options = noanonymous
　　broken_sasl_auth_clients = yes
　　smtpd_recipient_restrictions = permit_sasl_authenticated,permit_auth_destination
　　,reject
　　#smtpd_sasl_local_domain = $mydomain
　　smtpd_client_restrictions = permit_sasl_authenticated
　　# tls config
　　smtp_use_tls = yes
　　smtpd_use_tls = yes
　　smtp_tls_note_starttls_offer = yes
　　smtpd_tls_key_file = /etc/postfix/ssl/smtpd.pem
　　smtpd_tls_cert_file = /etc/postfix/ssl/smtpd.pem
　　smtpd_tls_CAfile = /etc/postfix/ssl/smtpd.pem
　　smtpd_tls_loglevel = 1
　　smtpd_tls_received_header = yes
　　smtpd_tls_session_cache_timeout = 3600s
　　tls_random_source = dev:/dev/urandom
　　# end TLS

　　readme_directory = no
　　sample_directory = /etc/postfix
　　sendmail_path = /usr/sbin/sendmail
　　html_directory = no
　　setgid_group = postdrop
　　command_directory = /usr/sbin
　　manpage_directory = /usr/local/man
　　daemon_directory = /usr/libexec/postfix
　　newaliases_path = /usr/bin/newaliases
　　mailq_path = /usr/bin/mailq
　　queue_directory = /var/spool/postfix
　　mail_owner = postfix

　　B)确认/etc/postfix/master.cf的配置有如下内容

　　virtual unix - n n - - virtual

　　C)编辑/etc/posftix/transport.cf

　　示例：transport.cf

　　user = postfix

　　password = hawk

　　dbname = mail

　　table = transport

　　select_field = transport

　　where_field = domain

　　hosts = localhost

　　D)编辑/etc/postfix/gids.cf

　　示例：gids.cf

　　user = postfix

　　password= hawk

　　dbname = mail

　　table = virtual_users

　　select_field = gid

　　where_field = id

　　hosts = localhost

　　E)编辑/etc/postfix/uids.cf

　　示例：uids.cf

　　user = postfix

　　password= hawk

　　dbname = mail

　　table = virtual_users

　　select_field = uid

　　where_field = id

　　hosts = localhost

　　F)编辑/etc/posftix/mysql_virtual.cf

　　示例：mysql_virtual.cf

　　user = postfix

　　password= hawk

　　dbname = mail

　　table = virtual_users

　　select_field = maildir

　　where_field = id

　　hosts = localhost

　　G)编辑/etc/postfix/mysql.aliases.cf 示例：mysql.aliases.cf

　　user = postfix

　　password= hawk

　　dbname = mail

　　table = aliases

　　select_field = rcpt

　　where_field = alias

　　hosts = localhost

　　H)编辑/etc/postfix/mailboxsize-mysql.cf 示例：mailboxsize-mysql.cf

　　user = postfix

　　password = hawk

　　dbname = mail

　　table = virtual_users

　　select_field = quota

　　where_field = id

　　hosts = localhost

　　5)设置自启动

　　hawk# edit /usr/local/etc/rc.d/postfix-server.sh

　　示例：postfix-server.sh

　　#!/bin/sh

　　case "$1" in

　　start)

　　if [ -x /usr/sbin/postfix ]; then

　　/usr/sbin/postfix start %26amp;%26amp; echo -n ' postfix'

　　fi

　　;;

　　stop)

　　/usr/sbin/postfix stop %26amp;%26amp; echo -n ' postfix'

　　;;

　　*)

　　echo ""

　　echo "Usage: `basename $0` { start | stop }"

　　echo ""

　　exit 64

　　;;

　　esac

　　hawk# chmod 755 /usr/local/etc/rc.d/postfix-server.sh

　　9.安装expect.tar.gz(need tcl)

　　hawk# pkg_add tcl-8.3.5_2.tgz

　　hawk# tar zxvf expect-5.38.tar.gz

　　hawk# cd expect-5.38

　　hawk# ./configure --enable-threads --with-tcl=/usr/local/lib/tcl8.3 --with-tclinclude=/usr/local/include/tcl8.3

　　hawk# make

　　hawk# make install

10.安装Courier-imap-1.7.1(need gmake、expect) 　　1、安装 　　hawk# pkg_add -r gmake 远程安装包 　　hawk# pw useradd cnhawk -g wheel(the software MUST run the configure script as normal user, not root) 　　hawk$ bunzip2 courier-imap-1.7.1.tar.bz2 　　hawk$ tar xvf courier-imap-1.7.1.tar 　　hawk$ cd courier-imap-1.7.1 　　如果你的mysql是源码编译请用下面这个命令 　　hawk$ ./configure --without-ipv6 --enable-unicode 　　--enable-workarounds-for-imap-client-bugs 　　--with-mysql-libs=/usr/local/mysql/lib/mysql 　　--with-mysql-includes=/usr/local/mysql/include/mysql 　　如果你的mysql是ports安装请用下面这个命令 　　Hawk$./configure --without-ipv6 --enable-unicode --enable-workarounds-for-imap-client-bugs --with-mysql-libs=/usr/local/lib/mysql --with-mysql-includes=/usr/local/include/mysql 　　hawk$ gmake 　　hawk# su root 　　hawk# gmake install 　　# 记住一定用 gmake 　　hawk# gmake install-configure 　　2)配置 　　编辑修改/usr/lib/courier-imap/etc/authmysqlrc 示例：authmysqlrc 　　##VERSION: $Id: authmysqlrc,v 1.10 2002/04/02 23:41:41 mrsam Exp $ 　　# 　　# Copyright 2000 Double Precision, Inc. See COPYING for 　　# distribution information. 　　# 　　# Do not alter lines that begin with ##, they are used when upgrading 　　# this configuration. 　　# 　　# authmysqlrc created from authmysqlrc.dist by sysconftool 　　# 　　# DO NOT INSTALL THIS FILE with world read permissions. This file 　　# might contain the MySQL admin password! 　　# 　　# Each line in this file must follow the following format: 　　# 　　# field[spaces|tabs]value 　　# 　　# That is, the name of the field, followed by spaces or tabs, followed by 　　# field value. Trailing spaces are prohibited. 　　##NAME: LOCATION:0 　　# 　　# The server name, userid, and password used to log in. 　　MYSQL_SERVER localhost 　　MYSQL_USERNAME courier 　　MYSQL_PASSWORD hawk 　　##NAME: MYSQL_SOCKET:0 　　# 　　# MYSQL_SOCKET can be used with MySQL version 3.22 or later, it specifies the 　　# filesystem pipe used for the connection 　　# 　　MYSQL_SOCKET /tmp/mysql.sock 　　##NAME: MYSQL_PORT:0 　　# 　　# MYSQL_PORT can be used with MySQL version 3.22 or later to specify a port to 　　# connect to. 　　MYSQL_PORT 3306 　　##NAME: MYSQL_OPT:0 　　# 　　# Leave MYSQL_OPT as 0, unless you know what you're doing. 　　MYSQL_OPT 0 　　##NAME: MYSQL_DATABASE:0 　　# 　　# The name of the MySQL database we will open: 　　MYSQL_DATABASE mail 　　##NAME: MYSQL_USER_TABLE:0 　　# 　　# The name of the table containing your user data. See README.authmysqlrc 　　# for the required fields in this table. 　　MYSQL_USER_TABLE virtual_users 　　##NAME: MYSQL_CRYPT_PWFIELD:0 　　# 　　# Either MYSQL_CRYPT_PWFIELD or MYSQL_CLEAR_PWFIELD must be defined. Both 　　# are OK too. crypted passwords go into MYSQL_CRYPT_PWFIELD, cleartext 　　# passwords go into MYSQL_CLEAR_PWFIELD. Cleartext passwords allow 　　# CRAM-MD5 authentication to be implemented. 　　MYSQL_CRYPT_PWFIELD password 　　##NAME: MYSQL_CLEAR_PWFIELD:0 　　# 　　# 　　# MYSQL_CLEAR_PWFIELD clear 　　##NAME: MYSQL_DEFAULT_DOMAIN:0 　　# 　　# If DEFAULT_DOMAIN is defined, and someone tries to log in as 'user', 　　# we will look up 'user@DEFAULT_DOMAIN' instead. 　　# 　　# 　　# DEFAULT_DOMAIN example.com 　　##NAME: MYSQL_UID_FIELD:0 　　# 　　# Other fields in the mysql table: 　　# 　　# MYSQL_UID_FIELD - contains the numerical userid of the account 　　# 　　MYSQL_UID_FIELD uid 　　##NAME: MYSQL_GID_FIELD:0 　　# 　　# Numerical groupid of the account 　　MYSQL_GID_FIELD gid 　　##NAME: MYSQL_LOGIN_FIELD:0 　　# 　　# The login id, default is id. Basically the query is: 　　# 　　# SELECT MYSQL_UID_FIELD, MYSQL_GID_FIELD, ... WHERE id='loginid' 　　# 　　MYSQL_LOGIN_FIELD id 　　##NAME: MYSQL_HOME_FIELD:0 　　# 　　MYSQL_HOME_FIELD home 　　##NAME: MYSQL_NAME_FIELD:0 　　# 　　# The user's name (optional) 　　MYSQL_NAME_FIELD name 　　##NAME: MYSQL_MAILDIR_FIELD:0 　　# 　　# This is an optional field, and can be used to specify an arbitrary 　　# location of the maildir for the account, which normally defaults to 　　# $HOME/Maildir (where $HOME is read from MYSQL_HOME_FIELD). 　　# 　　# You still need to provide a MYSQL_HOME_FIELD, even if you uncomment this 　　# out. 　　# 　　MYSQL_MAILDIR_FIELD maildir 　　##NAME: MYSQL_QUOTA_FIELD:0 　　# 　　# Define MYSQL_QUOTA_FIELD to be the name of the field that can optionally 　　# specify a maildir quota. See README.maildirquota for more information 　　# 　　MYSQL_QUOTA_FIELD quota 　　##NAME: MYSQL_WHERE_CLAUSE:0 　　# 　　# This is optional, MYSQL_WHERE_CLAUSE can be basically set to an arbitrary 　　# fixed string that is appended to the WHERE clause of our query 　　# 　　MYSQL_WHERE_CLAUSE imapok=1 　　##NAME: MYSQL_SELECT_CLAUSE:0 　　# 　　# (EXPERIMENTAL) 　　# This is optional, MYSQL_SELECT_CLAUSE can be set when you have a database, 　　# which is structuraly different from proposed. The fixed string will 　　# be used to do a SELECT operation on database, which should return fields 　　# in order specified bellow: 　　# 　　# username, cryptpw, uid, gid, clearpw, home, maildir, quota, fullname 　　# 　　# Enabling this option causes ignorance of any other field-related 　　# options, excluding default domain. 　　# 　　# There are two variables, which you can use. Substitution will be made 　　# for them, so you can put entered username (local part) and domain name 　　# in the right place of your query. These variables are: 　　# $(local_part) and $(domain) 　　# 　　# If a $(domain) is empty (not given by the remote user) the default domain 　　# name is used in its place. 　　# 　　# This example is a little bit modified adaptation of vmail-sql 　　# database scheme: 　　# 　　# MYSQL_SELECT_CLAUSE SELECT popbox.local_part, 　　# CONCAT('{MD5}', popbox.password_hash), 　　# popbox.clearpw, 　　# domain.uid, 　　# domain.gid, 　　# CONCAT(domain.path, '/', popbox.mbox_name), 　　# '', 　　# domain.quota, 　　# '', 　　# FROM popbox, domain 　　# WHERE popbox.local_part = '$(local_part)' 　　# AND popbox.domain_name = '$(domain)' 　　# AND popbox.domain_name = domain.domain_name 　　# 　　##NAME: MYSQL_CHPASS_CLAUSE:0 　　# 　　# (EXPERIMENTAL) 　　# This is optional, MYSQL_CHPASS_CLAUSE can be set when you have a database, 　　# which is structuraly different from proposed. The fixed string will 　　# be used to do an UPDATE operation on database. In other words, it is 　　# used, when changing password. 　　# 　　# There are four variables, which you can use. Substitution will be made 　　# for them, so you can put entered username (local part) and domain name 　　# in the right place of your query. There variables are: 　　# $(local_part) , $(domain) , $(newpass) , $(newpass_crypt) 　　# 　　# If a $(domain) is empty (not given by the remote user) the default domain 　　# name is used in its place. 　　# $(newpass) contains plain password 　　# $(newpass_crypt) contains its crypted form 　　# 　　# MYSQL_CHPASS_CLAUSE UPDATE popbox 　　# SET clearpw='$(newpass)', 　　# password_hash='$(newpass_crypt)' 　　# WHERE local_part='$(local_part)' 　　# AND domain_name='$(domain)' 　　# 　　编辑修改/usr/lib/courier-imap/etc/authdaemonrc 　　version="authdaemond.mysql" 　　3)设置自启动 　　hawk# cd /usr/local/etc/rc.d 　　hawk# ln -s /usr/lib/courier-imap/libexec/imapd.rc imapd.sh 　　hawk# ln -s /usr/lib/courier-imap/libexec/pop3d.rc pop3d.sh 　　hawk# chmod 755 imapd.sh 　　hawk# chmod 755 pop3d.sh 　　现在开始测试： 　　1)设置用户： 　　hawk# mysql 　　mysql> use mail; 　　在数据库里你可以看到 　　mysql> show tables; 　　+----------------+ 　　| Tables_in_mail | 　　+----------------+ 　　| aliases | 　　| transport | 　　| virtual_users | 　　+----------------+ 　　mysql> desc aliases; 　　+-------+--------------+------+-----+---------+-------+ 　　| Field | Type | Null | Key | Default | Extra | 　　+-------+--------------+------+-----+---------+-------+ 　　| alias | varchar(255) | | PRI | | | 　　| rcpt | varchar(255) | YES | | NULL | | 　　+-------+--------------+------+-----+---------+-------+ 　　mysql> insert aliases values('postmaster@the9.com','cnhawk@the9.com'); 　　mysql> insert aliases values('postmaster@freebsd.net','cnhawk@freebsd.net'); 　　mysql> select * from aliases; 　　+--------------------------+--------------------+ 　　| alias | rcpt | 　　+--------------------------+--------------------+ 　　| postmaster@the9.com | cnhawk@the9.com | 　　| postmaster@freebsd.net | cnhawk@freebse.net | 　　+--------------------------+--------------------+ 　　mysql> desc transport; 　　+-----------+-----------+------+-----+---------+-------+ 　　| Field | Type | Null | Key | Default | Extra | 　　+-----------+-----------+------+-----+---------+-------+ 　　| domain | char(128) | | PRI | | | 　　| transport | char(128) | | | | | 　　+-----------+-----------+------+-----+---------+-------+ 　　mysql> insert transport values('the9.com','virtual:'); 　　mysql> insert transport values('freebsd.net','virtual:'); 　　mysql> select * from transport; 　　+---------------+-----------+ 　　| domain | transport | 　　+---------------+-----------+ 　　| nankai.edu.cn | virtual: | 　　| freebsd.net | virtual: | 　　+---------------+-----------+ 　　mysql> desc virtual_users; 　　+-----------+---------------------+------+-----+----------+----------------+ 　　| Field | Type | Null | Key | Default | Extra | 　　+-----------+---------------------+------+-----+----------+----------------+ 　　| unique_id | int(32) unsigned | | MUL | NULL | auto_increment | 　　| id | char(128) | | PRI | | | 　　| password | char(128) | YES | | NULL | | 　　| uid | int(10) unsigned | YES | | 104 | | 　　| gid | int(10) unsigned | YES | | 104 | | 　　| home | char(255) | YES | | NULL | | 　　| maildir | char(255) | YES | | NULL | | 　　| date_add | date | YES | | NULL | | 　　| time_add | time | YES | | NULL | | 　　| domain | char(128) | YES | | NULL | | 　　| name | char(255) | YES | | NULL | | 　　| imapok | tinyint(3) unsigned | YES | | 1 | | 　　| quota | char(255) | YES | | 10485760 | | 　　+-----------+---------------------+------+-----+----------+----------------+ 　　mysql> INSERT INTO virtual_users 　　mysql> (id,home,password,maildir,date_add,time_add,domain,name) 　　mysql> VALUES ('cnhawk@the9.com','/var/mail/',encrypt('cnhawk'), 　　mysql> 'the9.com/cnhawk/Maildir/','2003-04-23','01:18:24','the9.com','cnhawk'); 　　mysql> INSERT INTO virtual_users 　　mysql> (id,home,password,maildir,date_add,time_add,domain,name) 　　mysql> VALUES ('hawk@freebsd.net','/var/mail/',encrypt('hawk'), 　　mysql> 'freebsd.net/hawk/Maildir/','2003-04-23','01:18:24','freebsd.net','hawk'); 　　mysql> quit 　　2)设置用户的目录与权限： 　　hawk# mkdir -p /var/mail/the9.com/cnhawk 　　hawk# mkdir -p /var/mail/freebsd.net/hawk 　　hawk# cd /usr/lib/courier-imap/bin 　　hawk# ./maildirmake /var/mail/the9.com/cnhawk/Maildir 　　hawk# ./maildirmake /var/mail/freebsd.net/hawk/Maildir 　　hawk# chmod -R 700 /var/mail/the9.com/ 　　hawk# chmod -R 700 /var/mail/freebsd.net/ 　　hawk# chown -R postfix:postfix /var/mail/the9.com 　　hawk# chown -R postfix:postfix /var/mail/freebsd.net 　　至此用户设置完毕，这里仅仅使用两个虚拟域，同理可以设置若干个虚拟域，如：mail.com 　　3)用户登录测试： 　　先用perl的mod来产生这个base64编码，安装ports在/usr/ports/converters/p5-MIME-Base64/ 　　先获取plain字符窜。为了获得plain字符串，必须要用base64编码 　　hawk# perl -MMIME::Base64 -e 'print encode_base64("cnhawk@the9.com");' 　　在@前面的加个才可以成功得到字符串 　　Y25oYXdrQHRoZTkuY29t 　　hawk# perl -MMIME::Base64 -e 'print encode_base64("cnhawk");' 　　Y25oYXdr 　　%telnet 127.0.0.1 25 　　Trying 127.0.0.1... 　　Connected to 0. 　　Escape character is '^]'. 　　220 hawk.the9.com ESMTP Postfix 　　ehlo hawk 　　250-hawk.the9.com 　　250-PIPELINING 　　250-SIZE 2097152 　　250-VRFY 　　250-ETRN 　　250-AUTH LOGIN PLAIN OTP 　　250-AUTH=LOGIN PLAIN OTP 　　250-XVERP 　　250 8BITMIME 　　auth login 　　334 VXNlcm5hbWU6 　　Y25oYXdrQHRoZTkuY29t (此为用户名id：cnhawk@the9.com) 　　334 UGFzc3dvcmQ6 　　Y25oYXdr (此为用户密码password：cnhawk) 　　235 Authentication successful 　　quit 　　221 Bye 　　Connection closed by foreign host. 　　hawk# telnet 127.0.0.1 110 　　Trying 127.0.0.1.... 　　Connected to 0. 　　Escape character is '^]'. 　　+OK Hello there. 　　user cnhawk@the9.com 　　+OK Password required. 　　pass cnhawk 　　+OK logged in. (OK,pop 登录成功) 　　quit 　　+OK Bye-bye. 　　Connection closed by foreign host. 　　也可以使用任何其它的邮件客户端程序来测试，如foxmail、Outlook Express等等。 　　然后安装webmail 　　安装igenus 　　使用修改过的版本： http://218.6.128.194/igenus_docn.tar.gz 　　1.安装： 　　hawk # cd /usr/ports/www/apache2 　　hawk # make install 　　hawk# cd /usr/ports/www/mod_php4 　　hawk# make install 　　hawk# cd /var/mail 　　hawk# tar zxvf igenus_docn.tar.gz 　　hawk# edit /usr/local/apache/conf/httpd.conf 　　2.配置： 　　1)Group nobody、User nobody 　　修改为： Group postfix、User postfix 　　2)DocumentRoot "/usr/local/apache/htdocs" 　　修改为：DocumentRoot "/var/mail/webmail" 　　3) 查找 AddDefaultCharset ISO-8859-1 　　改为AddDefaultCharset GB2312 #中文支持 　　添加AddType application/x-httpd-php .php #php支持 　　4)修改config_inc.php文件 　　$CFG_BASEPATH = "/var/mail/webmail"; 　　$CFG_MYSQL_HOST = 'localhost'; 　　$CFG_MYSQL_USER = 'postfix'; 　　$CFG_MYSQL_PASS = 'hawk';(同以上密码，均可以自己修改) 　　$CFG_MYSQL_DB = 'mail'; 　　5) 编辑/usr/local/etc/php.ini，修改： 　　Cp /usr/local/etc/php.ini-dist /usr/local/etc/php.ini 　　register_globals = On 　　3.使用： 　　最后在浏览器的URL中输入： 　　http://IP 因为没有DNS 有了DNS就好了 可以直接定位域名 　　1. 修改/etc/php.ini 　　max_execution_time = 30 #改为60 (增加处理脚本的时间限制) 　　memory_limit = 8M #改为40M (这样才能发10M的附件) 　　post_max_size = 2M #改为10M 　　upload_max_filesize = 2M #改为10M 　　2. 修改/etc/httpd/conf.d/php.conf 　　 　　SetOutputFilter PHP 　　SetInputFilter PHP 　　LimitRequestBody 524288 #把524288改为10485760 　　这里的 LimitRequestBody 524288 限定了上传附件的上限为512k, 将其改为10M 　　3. 修改/etc/postfix/main.cf, 添加如下语句: 　　message_size_limit = 14336000 　　postfix的默认值是10M, 但这指的是邮件正文和编码后附件的总和, 经过base64编码,附件的大小会增加35%左右, 因此这里设定可接受邮件的大小为14M 　　可以使用如下命令查看postfix的有关设定: 　　/usr/sbin/postconf | grep size 　　4. 重起apache和postfix. 　　剩下反病毒反垃圾了:)