Go to file
Robin Raymond ecd73f4e1c firewall respects settings 2017-08-13 14:20:02 +02:00
mail-server firewall respects settings 2017-08-13 14:20:02 +02:00
nixops add nixops deployment 2017-08-11 14:06:54 +02:00
LICENSE Initial commit 2016-07-21 18:09:04 +02:00
README.md fix submission port 2017-08-13 14:05:40 +02:00
mail-config.nix certificate scheme 2 2017-08-13 11:51:07 +02:00

README.md

nixos-mailserver

license

Work in progress...

What works and what is missing for first release

  • Postfix
    • starts
    • receive email on port 25
    • receive email on submission port 587
    • lmtp with dovecot
  • Dovecot
    • lmpto with postfix
    • creates maildir folders, saves mails
    • imap retrieval
    • pop3 retrieval (to check)
  • Certificates
    • manual certificates
    • on the fly creation
    • TODO: Let's Encrypt
  • Spam Filtering
    • scans emails
    • Dovecot moves spam to spam folder (to check)
  • Virus Scanning
    • TODO: Implement
  • DKIM Signing
    • TODO: Implement
  • User Management
    • Creates Users
    • TODO: Set Passwords in config file

How to Test

You can test the setup via nixops. After installation, do

nixops create nixops/single-server.nix nixops/vbox.nix -d mail
nixops deploy -d mail
nixops info -d mail

You can then test the server via e.g. telnet. To log into it, use

nixops ssh -d mail mailserver

A Complete Mail Server Without Moving Parts

Used Technologies

  • Nixos
  • Nixpkgs
  • Dovecot
  • Postfix
  • Rmilter
  • Rspamd
  • Clamav
  • Opendkim
  • Pam

Features

  • one domain
  • unlimited mail accounts
  • unlimited aliases for every mail account
  • spam and virus checking
  • dkim signing of outgoing emails
  • imap (optionally pop3)
  • startTLS

Nonfeatures

  • moving parts
  • SQL databases
  • configurations that need to be made after nixos-rebuild switch
  • complicated storage schemes
  • webclients / http-servers

Ideas for future releases

  • Fine grained control over ownership of aliases
  • More than one domain