2015-04-19 17:30:41 -05:00
|
|
|
#!/bin/bash
|
|
|
|
|
2018-05-09 02:06:30 -05:00
|
|
|
[ "${DEBUG}" == "yes" ] && set -x
|
|
|
|
|
|
|
|
function add_config_value() {
|
|
|
|
local key=${1}
|
|
|
|
local value=${2}
|
2020-03-23 18:30:00 -05:00
|
|
|
# local config_file=${3:-/etc/postfix/main.cf}
|
2018-05-09 02:06:30 -05:00
|
|
|
[ "${key}" == "" ] && echo "ERROR: No key set !!" && exit 1
|
|
|
|
[ "${value}" == "" ] && echo "ERROR: No value set !!" && exit 1
|
|
|
|
|
|
|
|
echo "Setting configuration option ${key} with value: ${value}"
|
2019-02-17 12:50:21 -05:00
|
|
|
postconf -e "${key} = ${value}"
|
2018-05-09 02:06:30 -05:00
|
|
|
}
|
|
|
|
|
2021-05-21 18:03:01 -05:00
|
|
|
# Read password and username from file to avoid unsecure env variables
|
2021-11-02 10:36:20 +01:00
|
|
|
if [ -n "${SMTP_PASSWORD_FILE}" ]; then [ -e "${SMTP_PASSWORD_FILE}" ] && SMTP_PASSWORD=$(cat "${SMTP_PASSWORD_FILE}") || echo "SMTP_PASSWORD_FILE defined, but file not existing, skipping."; fi
|
|
|
|
if [ -n "${SMTP_USERNAME_FILE}" ]; then [ -e "${SMTP_USERNAME_FILE}" ] && SMTP_USERNAME=$(cat "${SMTP_USERNAME_FILE}") || echo "SMTP_USERNAME_FILE defined, but file not existing, skipping."; fi
|
2020-06-19 23:52:21 +02:00
|
|
|
|
2015-04-19 17:30:41 -05:00
|
|
|
[ -z "${SMTP_SERVER}" ] && echo "SMTP_SERVER is not set" && exit 1
|
2018-03-06 01:18:30 -05:00
|
|
|
[ -z "${SERVER_HOSTNAME}" ] && echo "SERVER_HOSTNAME is not set" && exit 1
|
2023-11-09 15:33:26 +01:00
|
|
|
[ -n "${SMTP_USERNAME}" -a -z "${SMTP_PASSWORD}" ] && echo "SMTP_USERNAME is set but SMTP_PASSWORD is not set" && exit 1
|
2015-04-19 17:30:41 -05:00
|
|
|
|
2020-01-21 10:47:27 +01:00
|
|
|
SMTP_PORT="${SMTP_PORT:-587}"
|
2018-05-24 12:14:45 +09:00
|
|
|
|
2015-05-22 23:45:58 -05:00
|
|
|
#Get the domain from the server host name
|
2023-11-09 15:33:26 +01:00
|
|
|
DOMAIN=$(echo "${SERVER_HOSTNAME}" | awk 'BEGIN{FS=OFS="."}{print $(NF-1),$NF}')
|
2015-05-22 23:45:58 -05:00
|
|
|
|
2018-05-09 02:06:30 -05:00
|
|
|
# Set needed config options
|
2021-04-27 16:44:39 -05:00
|
|
|
add_config_value "maillog_file" "/dev/stdout"
|
2023-11-09 15:33:26 +01:00
|
|
|
add_config_value "myhostname" "${SERVER_HOSTNAME}"
|
2018-05-09 02:06:30 -05:00
|
|
|
add_config_value "mydomain" ${DOMAIN}
|
2021-06-30 05:05:26 -04:00
|
|
|
add_config_value "mydestination" "${DESTINATION:-localhost}"
|
2018-05-09 02:06:30 -05:00
|
|
|
add_config_value "myorigin" '$mydomain'
|
2023-10-31 10:30:45 +01:00
|
|
|
add_config_value "append_dot_mydomain" 'no'
|
2018-05-24 12:14:45 +09:00
|
|
|
add_config_value "relayhost" "[${SMTP_SERVER}]:${SMTP_PORT}"
|
2018-05-09 02:06:30 -05:00
|
|
|
add_config_value "smtp_use_tls" "yes"
|
2023-11-09 15:33:26 +01:00
|
|
|
if [ -n "${SMTP_USERNAME}" ]; then
|
2021-03-23 22:41:01 +01:00
|
|
|
add_config_value "smtp_sasl_auth_enable" "yes"
|
|
|
|
add_config_value "smtp_sasl_password_maps" "lmdb:/etc/postfix/sasl_passwd"
|
|
|
|
add_config_value "smtp_sasl_security_options" "noanonymous"
|
|
|
|
fi
|
2020-08-24 21:41:08 +02:00
|
|
|
add_config_value "always_add_missing_headers" "${ALWAYS_ADD_MISSING_HEADERS:-no}"
|
2021-03-17 17:17:39 -05:00
|
|
|
#Also use "native" option to allow looking up hosts added to /etc/hosts via
|
|
|
|
# docker options (issue #51)
|
|
|
|
add_config_value "smtp_host_lookup" "native,dns"
|
2015-05-13 01:06:38 -05:00
|
|
|
|
2020-12-17 01:18:27 +09:00
|
|
|
if [ "${SMTP_PORT}" = "465" ]; then
|
|
|
|
add_config_value "smtp_tls_wrappermode" "yes"
|
|
|
|
add_config_value "smtp_tls_security_level" "encrypt"
|
|
|
|
fi
|
|
|
|
|
2018-05-09 02:06:30 -05:00
|
|
|
# Create sasl_passwd file with auth credentials
|
2023-11-09 15:33:26 +01:00
|
|
|
# shellcheck disable=SC2236
|
2021-03-23 22:41:01 +01:00
|
|
|
if [ ! -f /etc/postfix/sasl_passwd -a ! -z "${SMTP_USERNAME}" ]; then
|
2018-05-09 02:06:30 -05:00
|
|
|
grep -q "${SMTP_SERVER}" /etc/postfix/sasl_passwd > /dev/null 2>&1
|
2023-11-09 15:33:26 +01:00
|
|
|
# shellcheck disable=SC2181
|
2018-05-09 02:06:30 -05:00
|
|
|
if [ $? -gt 0 ]; then
|
|
|
|
echo "Adding SASL authentication configuration"
|
2021-07-08 10:11:22 -04:00
|
|
|
echo "[${SMTP_SERVER}]:${SMTP_PORT} ${SMTP_USERNAME}:${SMTP_PASSWORD}" >> /etc/postfix/sasl_passwd
|
2018-05-09 02:06:30 -05:00
|
|
|
postmap /etc/postfix/sasl_passwd
|
|
|
|
fi
|
|
|
|
fi
|
2015-04-19 17:30:41 -05:00
|
|
|
|
2020-03-22 23:17:24 -05:00
|
|
|
#Set header tag
|
2023-11-09 15:33:26 +01:00
|
|
|
if [ -n "${SMTP_HEADER_TAG}" ]; then
|
2021-10-27 11:42:03 -04:00
|
|
|
postconf -e "header_checks = regexp:/etc/postfix/header_checks"
|
|
|
|
echo -e "/^MIME-Version:/i PREPEND RelayTag: $SMTP_HEADER_TAG\n/^Content-Transfer-Encoding:/i PREPEND RelayTag: $SMTP_HEADER_TAG" >> /etc/postfix/header_checks
|
2019-01-26 17:12:50 -05:00
|
|
|
echo "Setting configuration option SMTP_HEADER_TAG with value: ${SMTP_HEADER_TAG}"
|
2019-01-16 12:34:48 -05:00
|
|
|
fi
|
|
|
|
|
2023-11-03 11:28:21 +01:00
|
|
|
#Set smtp_generic_map
|
2023-11-09 15:33:26 +01:00
|
|
|
#war speziell fur posteo nötig, da ohne return-address=info@mgrote.net die mail nicht angekommen sind, wenn mail -r nicht gesetzt wurde
|
|
|
|
if [ -n "${SMTP_GENERIC_MAP}" ]; then
|
2023-11-03 11:28:21 +01:00
|
|
|
echo "smtp_generic_maps = pcre:/etc/postfix/generic" >> /etc/postfix/main.cf
|
|
|
|
echo "${SMTP_GENERIC_MAP}" > /etc/postfix/generic
|
|
|
|
echo "Setting configuration option SMTP_GENERIC_MAP with value: ${SMTP_GENERIC_MAP}"
|
|
|
|
fi
|
|
|
|
|
2021-10-27 11:42:03 -04:00
|
|
|
#Enable logging of subject line
|
|
|
|
if [ "${LOG_SUBJECT}" == "yes" ]; then
|
|
|
|
postconf -e "header_checks = regexp:/etc/postfix/header_checks"
|
|
|
|
echo -e "/^Subject:/ WARN" >> /etc/postfix/header_checks
|
|
|
|
echo "Enabling logging of subject line"
|
|
|
|
fi
|
|
|
|
|
2019-03-17 17:17:51 -04:00
|
|
|
#Check for subnet restrictions
|
|
|
|
nets='10.0.0.0/8, 172.16.0.0/12, 192.168.0.0/16'
|
2023-11-09 15:33:26 +01:00
|
|
|
if [ -n "${SMTP_NETWORKS}" ]; then
|
2022-04-28 17:49:08 +02:00
|
|
|
declare ipv6re="^((([0-9a-fA-F]{1,4}:){7,7}[0-9a-fA-F]{1,4}|([0-9a-fA-F]{1,4}:){1,7}:|\
|
|
|
|
([0-9a-fA-F]{1,4}:){1,6}:[0-9a-fA-F]{1,4}|([0-9a-fA-F]{1,4}:){1,5}(:[0-9a-fA-F]{1,4}){1,2}|\
|
|
|
|
([0-9a-fA-F]{1,4}:){1,4}(:[0-9a-fA-F]{1,4}){1,3}|([0-9a-fA-F]{1,4}:){1,3}(:[0-9a-fA-F]{1,4}){1,4}|\
|
|
|
|
([0-9a-fA-F]{1,4}:){1,2}(:[0-9a-fA-F]{1,4}){1,5}|[0-9a-fA-F]{1,4}:((:[0-9a-fA-F]{1,4}){1,6})|\
|
|
|
|
:((:[0-9a-fA-F]{1,4}){1,7}|:)|fe80:(:[0-9a-fA-F]{0,4}){0,4}|\
|
|
|
|
::(ffff(:0{1,4}){0,1}:){0,1}((25[0-5]|(2[0-4]|1{0,1}[0-9]){0,1}[0-9])\.){3,3}(25[0-5]|\
|
|
|
|
(2[0-4]|1{0,1}[0-9]){0,1}[0-9])|([0-9a-fA-F]{1,4}:){1,4}:((25[0-5]|\
|
|
|
|
(2[0-4]|1{0,1}[0-9]){0,1}[0-9])\.){3,3}(25[0-5]|(2[0-4]|1{0,1}[0-9]){0,1}[0-9]))/[0-9]{1,3})$"
|
|
|
|
|
|
|
|
for i in $(sed 's/,/\ /g' <<<$SMTP_NETWORKS); do
|
2023-11-09 15:33:26 +01:00
|
|
|
# shellcheck disable=SC2013,SC2001,2086
|
2023-11-09 15:34:41 +01:00
|
|
|
if grep -Eq "[0-9]{1,3}\.[0-9]{1,3}\.[0-9]{1,3}\.[0-9]{1,3}/[0-9]{1,2}" <<<$i ; then
|
2022-04-28 17:49:08 +02:00
|
|
|
nets+=", $i"
|
2023-11-09 15:34:41 +01:00
|
|
|
elif grep -Eq "$ipv6re" <<<$i ; then
|
2023-11-09 15:36:46 +01:00
|
|
|
# shellcheck disable=SC1073,SC1126,SC1072,SC1009
|
2023-11-09 15:33:26 +01:00
|
|
|
readarray -d \/ -t arr < <(printf '%s' "$i") # shellcheck disable=SC1001
|
2022-04-28 17:49:08 +02:00
|
|
|
nets+=", [${arr[0]}]/${arr[1]}"
|
|
|
|
else
|
|
|
|
echo "$i is not in proper IPv4 or IPv6 subnet format. Ignoring."
|
|
|
|
fi
|
|
|
|
done
|
2019-03-17 17:17:51 -04:00
|
|
|
fi
|
|
|
|
add_config_value "mynetworks" "${nets}"
|
|
|
|
|
2021-11-19 10:31:40 +01:00
|
|
|
# Set SMTPUTF8
|
2023-11-09 15:33:26 +01:00
|
|
|
if [ -n "${SMTPUTF8_ENABLE}" ]; then
|
2021-11-19 10:31:40 +01:00
|
|
|
postconf -e "smtputf8_enable = ${SMTPUTF8_ENABLE}"
|
|
|
|
echo "Setting configuration option smtputf8_enable with value: ${SMTPUTF8_ENABLE}"
|
|
|
|
fi
|
|
|
|
|
2022-06-21 00:38:09 +03:00
|
|
|
# Set message_size_limit
|
2023-11-09 15:33:26 +01:00
|
|
|
if [ -n "${MESSAGE_SIZE_LIMIT}" ]; then
|
2022-06-21 00:38:09 +03:00
|
|
|
postconf -e "message_size_limit = ${MESSAGE_SIZE_LIMIT}"
|
|
|
|
echo "Setting configuration option message_size_limit with value: ${MESSAGE_SIZE_LIMIT}"
|
|
|
|
fi
|
|
|
|
|
2023-10-31 10:25:38 +01:00
|
|
|
# Set inet_protocol
|
2023-11-09 15:33:26 +01:00
|
|
|
if [ -n "${INET_PROTOCOL}" ]; then
|
2023-10-31 10:25:38 +01:00
|
|
|
sed -i -e 's/inet_protocols = all/inet_protocols = ipv4/g' /etc/postfix/main.cf
|
|
|
|
echo "Setting configuration option inet_protocols with value: ${INET_PROTOCOL}"
|
|
|
|
fi
|
|
|
|
|
|
|
|
|
2018-05-09 02:06:30 -05:00
|
|
|
#Start services
|
2019-10-23 17:20:20 -05:00
|
|
|
|
|
|
|
# If host mounting /var/spool/postfix, we need to delete old pid file before
|
|
|
|
# starting services
|
|
|
|
rm -f /var/spool/postfix/pid/master.pid
|
|
|
|
|
2021-04-27 16:44:39 -05:00
|
|
|
exec /usr/sbin/postfix -c /etc/postfix start-fg
|