github-com-docker-mailserver/docker-mailserver

mirror of https://github.com/docker-mailserver/docker-mailserver.git synced 2024-01-19 02:48:50 +00:00

Mirror of https://github.com/docker-mailserver/docker-mailserver

amavis antispam antivirus docker docker-mailserver dovecot fail2ban imap ldap letsencrypt mail mailserver opendkim opendmarc postfix postgrey saslauthd-ldap smtp spamassassin ssl

Go to file

Thorsten von Eicken 1ff72b2faf improve finder for botched permissions		2016-05-23 20:45:58 -07:00
config	Refactored documentation and Wiki	2016-04-24 17:37:10 +02:00
target	improve finder for botched permissions	2016-05-23 20:45:58 -07:00
test	tests for regexp alias	2016-05-23 20:38:11 -07:00
.gitignore	Added missing newline	2016-04-26 20:20:54 +02:00
.travis.yml	Added new line when needed and fixed a test	2015-10-18 21:30:53 +02:00
docker-compose.yml.dist	Update docker-compose.yml.dist	2016-05-08 19:01:42 +02:00
Dockerfile	support sending via AWS SES	2016-05-22 21:45:00 -07:00
LICENSE	Renamed	2016-04-12 09:43:13 +02:00
Makefile	Rename environment variable ENABLE_MANAGE_SIEVE to ENABLE_MANAGESIEVE.	2016-04-29 17:09:48 +02:00
README.md	gratuitous commit to trigger docker build	2016-05-22 22:31:39 -07:00

README.md

docker-mailserver

This is a fork of https://github.com/tomav/docker-mailserver with some additional features described below.

Sending outbound mail via Amazon SES

Instead of letting postfix deliver mail directly it is possible to forward outgoing email through Amazon SES (Simple Email Service). To enable this feature, define the following two environment variables in the docker-compose.yml with the appropriate values for your AWS SES subscription (the values for AWS_SES_USERPASS are the "SMTP username" and "SMTP password" provided when yuo create SMTP credentials for SES):

    environment:
    - AWS_SES_HOST=email-smtp.us-east-1.amazonaws.com
    - AWS_SES_USERPASS=AKIAXXXXXXXXXXXXXXXX:kqXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX

Configuring regexp aliases

Additional regexp aliases can be configured by placing them into config/postfix-regexp.cf. The regexp aliases get evaluated after the virtual aliases (postfix-cirtual.cf). For example, the following config/postfix-regexp.cf causes all email to test users to be delivered to qa@example.com:

/^test[0-9][0-9]*@example.com/ qa@example.com

Overview

A fullstack but simple mail server (smtp, imap, antispam, antivirus...). Only configuration files, no SQL database. Keep it simple and versioned. Easy to deploy and upgrade.

Includes:

postfix with smtp auth
dovecot for sasl, imap (and optional pop3) with ssl support
amavis
spamassasin supporting custom rules
clamav with automatic updates
opendkim
opendmarc
fail2ban
basic sieve support using dovecot
LetsEncrypt and self-signed certificates
integration tests
automated builds on docker hub

Why I created this image: Simple mail server with Docker

Before you open an issue, please have a look this README, the Wiki and Postfix/Dovecot documentation.

Usage

Get latest image

docker pull tvial/docker-mailserver:latest

Create a `docker-compose.yml`

Adapt this file with your FQDN.

version: '2'

services:
  mail:
    image: tvial/docker-mailserver:latest
    # build: .
    hostname: mail
    domainname: domain.com
    container_name: mail
    ports:
    - "25:25"
    - "143:143"
    - "587:587"
    - "993:993"
    volumes:
    - maildata:/var/mail
    - ./config/:/tmp/docker-mailserver/

volumes:
  maildata:
    driver: local

Create your mail accounts

Don't forget to adapt MAIL_USER and MAIL_PASS to your needs

mkdir -p config
docker run --rm \
  -e MAIL_USER=user1@domain.tld \
  -e MAIL_PASS=mypassword \
  -ti tvial/docker-mailserver:latest \
  /bin/sh -c 'echo "$MAIL_USER|$(doveadm pw -s CRAM-MD5 -u $MAIL_USER -p $MAIL_PASS)"' >> config/postfix-accounts.cf

Generate DKIM keys

docker run --rm \
  -v "$(pwd)/config":/tmp/docker-mailserver \
  -ti tvial/docker-mailserver:latest generate-dkim-config

Now the keys are generated, you can configure your DNS server by just pasting the content of config/opedkim/keys/domain.tld/mail.txt in your domain.tld.hosts zone.

Start the container

docker-compose up -d mail

You're done!

Environment variables

Please check how the container starts to understand what's expected.

Value in bold is the default value.

ENABLE_POP3

empty => POP3 service disabled
1 => Enables POP3 service

ENABLE_FAIL2BAN

empty => fail2ban service disabled
1 => Enables fail2ban service

If you enable Fail2Ban, don't forget to add the following lines to your docker-compose.yml:

cap_add:
  - NET_ADMIN

Otherwise, iptables won't be able to ban IPs.

ENABLE_MANAGESIEVE

empty => Managesieve service disabled
1 => Enables Managesieve on port 4190

SA_TAG

2.0 => add spam info headers if at, or above that level

SA_TAG2

6.31 => add 'spam detected' headers at that level

SA_KILL

6.31 => triggers spam evasive actions

SASL_PASSWD

empty => No sasl_passwd will be created
string => /etc/postfix/sasl_passwd will be created with the string as password

SMTP_ONLY

empty => all daemons start
1 => only launch postfix smtp

SSL_TYPE

empty => SSL disabled
letsencrypt => Enables Let's Encrypt certificates
custom => Enables custom certificates
self-signed => Enables self-signed certificates

Please read the SSL page in the wiki for more information.