Skip to content
This repository was archived by the owner on Jun 29, 2018. It is now read-only.

My changes #126

Open
wants to merge 12 commits into
base: master
Choose a base branch
from
Open

My changes #126

wants to merge 12 commits into from

Conversation

@griff
Copy link
Contributor

@griff griff commented May 15, 2018

Here are the changes discussed in #61

Right now it downloads the ClamAV DB from my domain files.griff.name

griff added 10 commits May 15, 2018 04:20
@griff
Make dovecot sockets use postfix user/group options
cf1ef83
@griff
Start dovecot before postfix and add target for certificates
1728edb 
It seemed weird to me that preStart on postfix was used to generate
files not needed directly by postfix and for the self-signed
certificate which is also needed by dovecot. nginx.service was also
used as a proxy for when ACME certificate generation was done.

So I have created mailserver-certificates.target for when certificates
are available for other services. For self-signed that means that a
new oneshot service called mailserver-selfsigned-certificate has been
run. And for ACME this means that the target
acme-selfsigned-certificates has been reached (which is when acme has
created the self-signed certificates used before the actual
certificates provided by LetsEncrypt are created). This setup has the
added bonus that if you want to run a service to provide your own
certificates you can set that to run before
mailserver-certificates.target.

DH Parameters are only needed by dovecot so generation of that file has
been moved to the dovecot2 preStart.

And lastly the only remaining reason to for dovecot to start before
postfix was that the auth and lmtp sockets where located in a directory
created by postfix. But since they could just as well be located in
/run/dovecot2 as long as postfix has access to them I have moved them
there.
@griff
tests/extern: Fix small errors
c281530 
1. The lowquota test used the wrong fetchmail username and password
2. When running interactively repeatedly mkdir fails since dir exists
@griff
Use OpenDKIM instead of rmilter for DKIM
f9356f1 
As part of r-raymond#61 this moves DKIM handling from rmilter to OpenDKIM.
@griff
postfix: use masterConfig option instead of extraMasterConf
149b2b8 
extraMasterConf is just a string while masterConfig is a nix module so
the options are more explicit and has help text.
@griff
postfix: Use pypolicyd-spf for SPF checking
f06204b
@griff
tests: Add ClamAV test and fix errors in virus scanning
f81cd9b
@griff
Use nixpkgs functions to check dovecot version
daeeb0f
@griff
Move from rmilter to rspamd r-raymond#25
53630b9
@griff
dovecot: Add spam filter traning using imapsieve
b6e2bd0
@r-raymond
Copy link
Owner

Awesome! Give me some time to look through it. Any additional pair of eyes is very welcome!

@griff
Copy link
Contributor Author

griff commented May 15, 2018

Have you considered disabling Travis CI cache so that CI works again? I also believe both Travis and hydra.nixos.org store their cache/files in S3 so caching /nix/store will only be faster for things not built by hydra.nixos.org which this project doesn't have that much of.

@r-raymond
Copy link
Owner

@griff Seems you are right. Thanks for the insight :) - Also I think I don't have any complaints about your PR, thanks for the great work!

@sorki
Copy link

sorki commented Jun 12, 2018

Testing with master pulled few minutes ago and everything passes (deployment to libvirt and both tests).

@eqyiel
Copy link
Contributor

eqyiel commented Jun 29, 2018

@griff just in case you haven't got notifications set up for GitLab, we are discussing this in https://gitlab.com/simple-nixos-mailserver/nixos-mailserver/merge_requests/126. Thanks for your contribution!

Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

4 participants

@griff @r-raymond @sorki @eqyiel