Differences

This shows you the differences between two versions of the page.

--- hosts:web:email [2022/09/30 21:58] – created tcmal
+++ hosts:web:email [Unknown date] (current) – removed - external edit (Unknown date) 127.0.0.1
@@ Line 1: / Line 1: @@
-====== Email ======
-^ Port(s) | 25, 143, 587, 80, 443 |
-^ Publicly Accessible?   | Yes |
-^ Upstream       | [[https://www.dovecot.org/|Dovecot]], [[https://www.postfix.org/|Postfix]], [[https://rspamd.com/|RSpamd]], [[http://www.opendkim.org/|OpenDKIM]], and [[https://www.rainloop.net/|Rainloop]] |
-Sends and receives email. Rainloop is a simple webmail client that communicates with normal IMAP/SMTP.
-If not used to the jumble of services used for mail, [[https://workaround.org/ispmail|ISPMail]] is a good explanation, although we use a slightly different setup outlined below.
-When receiving:
-  - Postfix receives an incoming SMTP connection
-  - Postfix queries [[hosts:enclave:ldap|LDAP]] to find the user/alias for the address.
-  - Postfix checks it with rspamd
-  - If rspamd decides we should deliver it, we pass it to dovecot through LMTP
-  - Dovecot queries [[hosts:enclave:ldap|LDAP]] again and places it in the user's mailbox
-  - The user then uses their MUA to access their mailbox through dovecot (over IMAP)
-When sending:
-  - Postfix receives an SMTP connection on port 587
-  - The user authenticates, which postfix asks dovecot for help with
-    - Dovecot uses bind authentication against our [[hosts:enclave:ldap|LDAP]]
-  - Postfix cleans up the headers and passes it to OpenDKIM to do signing
-  - Postfix sends the signed message to wherever it needs to go
-===== Data directories =====
-  * ''/var/lib/mail'', which is ceph share ''maildirs'' mounted over NFS.
-===== Configuration locations =====
-Managed declaratively using [[https://git.tardisproject.uk/tardis/nix/-/tree/main/profiles/services/email|Nix]].