五，让postfix支持mysql的虚拟域和虚拟用户：

1、编辑/etc/postfix/main.cf，添加如下内容：

vi /etc/postfix/main.cf
#================ Virtual Mailbox Settings =====================#
# 指定用户邮箱所在的根目录
virtual_mailbox_base = /var/mailbox
#指定postfix如何去检索邮箱,这里是采用mysql
virtual_mailbox_maps = mysql:/etc/postfix/mysql_virtual_mailbox_maps.cf
#指定postfix如何去检索虚拟域
virtual_mailbox_domains = mysql:/etc/postfix/mysql_virtual_domains_maps.cf
virtual_alias_domains =
#指定postfix如何去检索虚拟别名
virtual_alias_maps = mysql:/etc/postfix/mysql_virtual_alias_maps.cf
#邮件账号uid, 即postfix组id号(即/var/mailbox目录所有者的帐号)
virtual_uid_maps = static:2525
virtual_gid_maps = static:2525
#如果没有安装maildrop，则此处为virtual
virtual_transport = virtual
maildrop_destination_recipient_limit = 1
maildrop_destination_concurrency_limit = 1

#================ QUOTA Settings =============================#(邮箱限额)

#每封信的最大(10M),postfix的默认值是10M, 但这指的是邮件正文和编码后附件的总和
#, 经过#base64编码,附件的大小会增加35%左右, 因此这里设定可接受邮件的大小为14M  
message_size_limit = 14336000
virtual_mailbox_limit = 20971520
virtual_create_maildirsize = yes
virtual_mailbox_extended = yes
#指定postfix如何获得用户的quota信息(每个用户的邮箱大小)
virtual_mailbox_limit_maps =
mysql:/etc/postfix/mysql_virtual_mailbox_limit_maps.cf
# 是否允许覆盖默认邮箱的大小
virtual_mailbox_limit_override = yes
virtual_maildir_limit_message = Sorry, the user‘s maildir has overdrawn his diskspace quota, please Tidy your mailbox and try again later.
virtual_overquota_bounce = yes

2、添加为支持虚拟域和虚拟用户所用到的配置文件:

vi /etc/postfix/mysql_virtual_alias_maps.cf //虚拟别名：

user = extmail
password = extmail
hosts = localhost
dbname = extmail
table = alias
select_field = goto
where_field = address
additional_conditions = AND active = ‘1‘

vi /etc/postfix/mysql_virtual_domains_maps.cf //虚拟域

user = extmail
password = extmail
hosts = localhost
dbname = extmail
table = domain
select_field = domain
where_field = domain
additional_conditions = AND active = ‘1‘

vi /etc/postfix/mysql_virtual_mailbox_limit_maps.cf //虚拟邮箱容量

user = extmail
password = extmail
hosts = localhost
dbname = extmail
table = mailbox
select_field = quota
where_field = username
additional_conditions = AND active = ‘1‘

vi /etc/postfix/mysql_virtual_mailbox_maps.cf //虚拟邮箱

user = extmail
password = extmail
hosts = localhost
dbname = extmail
table = mailbox
select_field = maildir
where_field = username
additional_conditions = AND active = ‘1‘

//新建虚拟用户邮箱所在目录，postfix用户所有:
mkdir -pv /var/mailbox
chown -R postfix:postfix /var/mailbox

//开启smtp也从mysql中验证帐号:
vi /usr/local/lib/sasl2/smtpd.conf (/usr/lib/sasl2连接到该目录)
pwcheck_method: auxprop
auxprop_plugin: sql
mech_list: PLAIN LOGIN
sql_engine: mysql
sql_hostname: localhost
sql_user: extmail
sql_passwd: extmail
sql_database: extmail
sql_select: SELECT password FROM mailbox WHERE username=‘%u@%r‘ and
domain=‘%r‘ and active=‘1‘

(%u表示登录的用户名,%r表示smtpd_sasl_local_domain = $myhostname 的值)
重启postfix

//打开mysql的查询日志功能
vi /etc/my.cnf
[mysqld]
log=/var/log/mysqld/log.log

创建日志文件并设置权限
mkdir /var/log/mysqld
touch /var/log/mysqld/log.log
chown -R mysql:mysql /var/log/mysqld  

//重启mysql
service mysqld stop
service mysqld start

//测试postfix连接mysql数据库查询认证
//取base64编码
perl -MMIME::Base64 -e ‘print encode_base64("upkiller")‘
dxBraWxsZXI=

nc localhost 25

220 mail.upkiller.com ESMTP Postfix (2.4.5)
ehlo mail.upkiller.com
250-mail.upkiller.com
250-PIPELINING
250-SIZE 10240000
250-VRFY
250-ETRN
250-AUTH PLAIN LOGIN (看见这二行即成功)
250-AUTH=PLAIN LOGIN
250-ENHANCEDSTATUSCODES
250-8BITMIME
250 DSN
auth login
334 VXNlcm5hbWU6
dXBraWxsZXI=
334 VXNlcm5hbWU6
dXBraWxsZXI=
235 2.0.0 Authentication successful

tail -f /var/log/mysqld/log.log
提示如下日志:
connect postfix@localhost on postfix
SELECT password FROM mailbox WHERE username=‘upkiller@upkiller.com‘ and
domain=‘upkiller.com‘ and active=‘1‘

tail -f /var/log/maillog

验证错误提示:
SASL login authentication failed: authentication failure
成功:connect from localhost.localdomain
把原先系统的cyruss-sasl删除，再重新编译cyrus-sasl和postfix:
rpm -e `rpm -qa | grep cyrus-sasl` --nodeps
一般都是没有安装和配置好courier authentication.

再做其它各种查询测试:
//邮箱
postmap -q ‘maps‘ mysql:/etc/postfix/mysql_virtual_mailbox_maps.cf
SELECT maildir FROM mailbox WHERE username=‘maps‘

//别名
postalias -q ‘alias‘ mysql:/etc/postfix/mysql_virtual_alias_maps.cf
SELECT goto FROM alias WHERE address=‘alias‘

六，安装Courier authentication library:

新版本的imap不再包含authentication library，必须先安装 Courier authentication library

http://kent.dl.sourceforge.net/sourceforge/courier/
下载:
http://www.mirrorservice.org/sites/download.sourceforge.net/pub/sourceforge/c/co/courier/courier-authlib-0.59.3.tar.bz2

解压编译安装:
tar jxvf courier-authlib-0.59.3.tar.bz2
cd courier-authlib-0.59.3
./configure --prefix=/usr/local/courier-authlib \
--sysconfdir=/etc \
--without-authpam \
--without-authldap \
--without-authpwd \
--without-authshadow \
--without-authvchkpw \
--without-authpgsql \
--with-authmysql \
--with-mysql-libs=/usr/local/mysql/lib/mysql \
--with-mysql-includes=/usr/local/mysql/inculde/mysql \
--with-redhat \
--with-authmysqlrc=/etc/authmysqlrc \
--with-authdaemonrc=/etc/authdaemonrc \

#优化
     CFLAGS="-march=i686 -O2 -fexpensive-optimizations"  
     CXXFLAGS="-march=i686 -O2 -fexpensive-optimizations"
make
make install

chmod 755 /usr/local/courier-authlib/var/spool/authdaemon
cp /etc/authdaemonrc.dist   /etc/authdaemonrc
cp /etc/authmysqlrc.dist   /etc/authmysqlrc

编辑authdaemonrc(确保只使用mysql认证):
vi authdaemonrc  
authmodulelist="authmysql"
authmodulelistorig="authmysql"
daemons=10
DEBUG_LOGIN=2 (打开日志方便调试，调试成功之后再关闭)

编辑/etc/authmysqlrc 为以下内容，其中2525，2525 为postfix 用户的UID和GID:

MYSQL_SERVER localhost
MYSQL_PORT 3306               (指定你的mysql监听的端口3306)
MYSQL_USERNAME   extmail       (extmail数据库的所有者的用户名)
MYSQL_PASSWORD   extmail         (数据库帐户密码)
MYSQL_SOCKET   /tmp/mysql.sock
MYSQL_DATABASE   extmail
MYSQL_USER_TABLE   mailbox
MYSQL_CRYPT_PWFIELD   password
MYSQL_UID_FIELD   ‘2525‘
MYSQL_GID_FIELD   ‘2525‘
MYSQL_LOGIN_FIELD   username
MYSQL_HOME_FIELD   concat(‘/var/mailbox/‘,homedir)
MYSQL_NAME_FIELD   name
MYSQL_MAILDIR_FIELD   concat(‘/var/mailbox/‘,maildir)

注意：确认在这个文件中不能用空格键，只能用tab键。
确认只使用单引号，比如：‘/var/mailbox/‘,‘UID‘,‘GID‘
localhost不能用单引号
确认你的/etc/hosts文件中有localhost
编译时如果支持Ipv6可能导致错误
MYSQL_GID_FIELD 和MYSQL_UID_FIELD是maildrop的UID和GID，而不是MySQL的。
如果想使用md5密码，把MYSQL_CLEAR_PWFIELD password改成MYSQL_CRYPT_PWFIELD password

加入库搜索路径:
echo "/usr/local/courier-authlib/lib/courier-authlib" >> /etc/ld.so.conf
ldconfig -v

加入开机启动:
cp courier-authlib.sysvinit /etc/init.d/courier-authlib
chmod 755 /etc/init.d/courier-authlib
chkconfig --add courier-authlib
chkconfig --level 35 courier-authlib on
手动启动:
/usr/local/courier-authlibn/sbin/authdaemond start
检测是否启动成功:
pstree | grep authdaemond

--------------------------------------------
错误FAQ:

1,MYSQL_SERVER: command not found等一大堆参数错误
原来是
cp /etc/authmysqlrc.dist   /etc/authdaemonrc
时复制文件名错误:(

2,configure: error: --with-authmysql specified but no mysqlclient.so

checking for mysql_config... /usr/bin/mysql_config
checking for mysql_connect... no
checking for mysql_real_connect... no

rm /usr/bin/mysql_config
ln -s /usr/local/mysql/bin/mysql_config /usr/bin/mysql_config
再不行:
ln -s libmysqlclient.so.15 libmysqlclient.so.12
ln -s libmysqlclient.so.15 mysqlclient.so

 

.
分页: [1] [2] [3]

• 上一篇:Postfix维护与管理技巧
• 下一篇:另类技巧:解决邮件无法到达国外邮箱问题

TAG: postfix extamil