在CentOS上配置邮件服务器通常涉及安装和配置Postfix作为邮件传输代理(MTA)和Dovecot作为邮件投递代理(MDA),以及设置数据库和其他相关服务。以下是配置邮件服务器的基本步骤:
sudo yum update -y
sudo yum install postfix dovecot mariadb-server opendkim php-fpm php-mbstring php-mysql php-xml
sudo systemctl start mariadb
mysql_secure_installation
创建邮件数据库和用户:
sudo mysql -u root -p
CREATE DATABASE mail;
USE mail;
CREATE TABLE users (
id INT AUTO_INCREMENT PRIMARY KEY,
email VARCHAR(255) NOT NULL,
password VARCHAR(255) NOT NULL
);
GRANT SELECT, INSERT, UPDATE, DELETE ON mail.* TO 'mailuser'@'localhost' IDENTIFIED BY 'password';
FLUSH PRIVILEGES;
EXIT;
编辑 /etc/postfix/main.cf 文件,设置以下参数:
myhostname mail.example.com
mydomain example.com
myorigin mydomain
inet_interfaces all
inet_protocols all
mydestination myhostname, localhost.mydomain, localhost, mydomain
home_mailbox Maildir/
smtpd_sasl_auth_enable yes
smtpd_sasl_security_options noanonymous
mynetworks 127.0.0.0/8
smtpd_recipient_restrictions permit_mynetworks, permit_sasl_authenticated, reject_unauth_destination
重启并启动Postfix服务:
sudo systemctl restart postfix
sudo systemctl enable postfix
编辑 /etc/dovecot/dovecot.conf 文件,设置以下参数:
protocols imap pop3 lmtp
listen *, ::ssl
disable_plaintext_auth no
mail_location maildir:/Maildir
创建自签名证书(可选,用于加密连接):
openssl genrsa -des3 -out server.key 2048
openssl rsa -in server.key -out server.key.insecure
openssl req -new -key server.key.insecure -out server.csr
openssl x509 -req -days 3650 -in server.csr -signkey server.key -out server.crt
chmod 400 server.key
mv server.crt /etc/ssl/certs/server.crt
mv server.key /etc/ssl/private/server.key
重启并启动Dovecot服务:
sudo systemctl restart dovecot
sudo systemctl enable dovecot
允许邮件服务的相关端口通过防火墙:
sudo firewall-cmd --permanent --add-services=smtp
sudo firewall-cmd --permanent --add-service=pop3
sudo firewall-cmd --permanent --add-service=imap
sudo firewall-cmd --reload
你可以使用邮件客户端或命令行工具连接到服务器进行测试。例如,使用telnet连接到SMTP端口:
telnet mail.example.com 25
如果连接成功,你应该会看到类似以下的输出:
220 mail.example.com ESMTP Postfix