Postfix – Configurer le protocole TLS

janvier 12, 2017 9:08 Publié par Laissez vos commentaires

Génération du certificat :

cd /etc/postfix
mkdir -p tls
cd /tls
openssl req -new -x509 -days 3650 -nodes -out /etc/postfix/tls/mondomaine.pem -keyout /etc/postfix/tls/mondomaine.pem

Application des droits :

chmod 600 mondomaine.pem

Configuration

nano /etc/postfix/main.cf
#TLS
smtpd_use_tls=yes
smtpd_tls_security = may
smtpd_tls_key_file = /etc/postfix/tls/mondomaine.pem
smtpd_tls_cert_file = /etc/postfix/tls/mondomaine.pem
#smtpd_tls_loglevel = 1
smtpd_tls_received_header = yes
smtpd_tls_session_cache_timeout = 3600s
tls_random_source = dev:/dev/urandom
smtpd_tls_session_cache_database = btree:$data_directory/smtpd_scache

smtp_tls_session_cache_database = btree:$data_directory/smtp_scache
smtp_use_tls = yes
smtp_tls_security_level = may
#smtp_tls_loglevel = 1
service postfix restart

test

telnet localhost 25
ehlo localhost

250-PIPELINING
250-SIZE 10240000
250-VRFY
250-ETRN
250-STARTTLS
250-ENHANCEDSTATUSCODES
250-8BITMIME
250 DSN
nano /etc/postfix/master.cf
#  -o smtpd_tls_security_level=encrypt

Classés dans :

Cet article a été écrit par admin

Laisser un commentaire