350 lines
18 KiB
HTML
350 lines
18 KiB
HTML
<!DOCTYPE html>
|
|
<html lang="en">
|
|
|
|
<head>
|
|
<meta charset="utf-8">
|
|
<meta http-equiv="X-UA-Compatible" content="IE=edge">
|
|
<meta name="viewport" content="width=device-width, initial-scale=1">
|
|
|
|
|
|
<title>Postfix Admin</title>
|
|
|
|
<link href="https://captainark.net/rss.xml" type="application/atom+xml" rel="alternate" title="Sysadmining. All day. Every day. Full Atom Feed" />
|
|
<!-- Bootstrap Core CSS -->
|
|
<link href="https://captainark.net/theme/css/bootstrap.min.css" rel="stylesheet">
|
|
|
|
<!-- Custom CSS -->
|
|
<link href="https://captainark.net/theme/css/clean-blog.min.css" rel="stylesheet">
|
|
|
|
<!-- Code highlight color scheme -->
|
|
<link href="https://captainark.net/theme/css/code_blocks/github.css" rel="stylesheet">
|
|
|
|
|
|
<!-- Custom Fonts -->
|
|
<link href="https://maxcdn.bootstrapcdn.com/font-awesome/4.7.0/css/font-awesome.min.css" rel="stylesheet" type="text/css">
|
|
<link href='https://fonts.googleapis.com/css?family=Lora:400,700,400italic,700italic' rel='stylesheet' type='text/css'>
|
|
<link href='https://fonts.googleapis.com/css?family=Open+Sans:300italic,400italic,600italic,700italic,800italic,400,300,600,700,800' rel='stylesheet' type='text/css'>
|
|
|
|
<!-- HTML5 Shim and Respond.js IE8 support of HTML5 elements and media queries -->
|
|
<!-- WARNING: Respond.js doesn't work if you view the page via file:// -->
|
|
<!--[if lt IE 9]>
|
|
<script src="https://oss.maxcdn.com/libs/html5shiv/3.7.0/html5shiv.js"></script>
|
|
<script src="https://oss.maxcdn.com/libs/respond.js/1.4.2/respond.min.js"></script>
|
|
<![endif]-->
|
|
|
|
|
|
|
|
<meta name="description" content="As I explained in this previous tutorial, I've been running my own mail server without any issue for some time now. However, every time...">
|
|
|
|
<meta name="author" content="Antoine Joubert">
|
|
|
|
|
|
<meta property="og:locale" content="">
|
|
<meta property="og:site_name" content="Sysadmining. All day. Every day.">
|
|
|
|
<meta property="og:type" content="article">
|
|
<meta property="article:author" content="https://captainark.net/author/antoine-joubert.html">
|
|
<meta property="og:url" content="https://captainark.net/postfix-admin.html">
|
|
<meta property="og:title" content="Postfix Admin">
|
|
<meta property="article:published_time" content="2016-03-06 00:00:00+01:00">
|
|
<meta property="og:description" content="As I explained in this previous tutorial, I've been running my own mail server without any issue for some time now. However, every time...">
|
|
|
|
<meta property="og:image" content="https://captainark.net//bg.png">
|
|
<meta name="twitter:card" content="summary_large_image">
|
|
<meta name="twitter:site" content="@captainark">
|
|
<meta name="twitter:title" content="Postfix Admin">
|
|
|
|
<meta name="twitter:image" content="https://captainark.net//bg.png">
|
|
|
|
<meta name="twitter:description" content="As I explained in this previous tutorial, I've been running my own mail server without any issue for some time now. However, every time...">
|
|
</head>
|
|
|
|
<body>
|
|
|
|
<!-- Navigation -->
|
|
<nav class="navbar navbar-default navbar-custom navbar-fixed-top">
|
|
<div class="container-fluid">
|
|
<!-- Brand and toggle get grouped for better mobile display -->
|
|
<div class="navbar-header page-scroll">
|
|
<button type="button" class="navbar-toggle" data-toggle="collapse" data-target="#bs-example-navbar-collapse-1">
|
|
<span class="sr-only">Toggle navigation</span>
|
|
<span class="icon-bar"></span>
|
|
<span class="icon-bar"></span>
|
|
<span class="icon-bar"></span>
|
|
</button>
|
|
<a class="navbar-brand" href="https://captainark.net/">Sysadmining. All day. Every day.</a>
|
|
</div>
|
|
|
|
<!-- Collect the nav links, forms, and other content for toggling -->
|
|
<div class="collapse navbar-collapse" id="bs-example-navbar-collapse-1">
|
|
<ul class="nav navbar-nav navbar-right">
|
|
<li><a href="/">Homepage</a></li>
|
|
<li><a href="/rss.xml">RSS</a></li>
|
|
<li><a href="/categories.html">Categories</a></li>
|
|
|
|
<li><a href="https://captainark.net/pages/about.html">About</a></li>
|
|
<li><a href="https://captainark.net/pages/resume.html">Resume</a></li>
|
|
</ul>
|
|
</div>
|
|
<!-- /.navbar-collapse -->
|
|
</div>
|
|
<!-- /.container -->
|
|
</nav>
|
|
|
|
<!-- Page Header -->
|
|
<header class="intro-header" style="background-image: url('/bg.png')">
|
|
<div class="container">
|
|
<div class="row">
|
|
<div class="col-lg-8 col-lg-offset-2 col-md-10 col-md-offset-1">
|
|
<div class="post-heading">
|
|
<h1>Postfix Admin</h1>
|
|
<span class="meta">Posted by
|
|
<a href="https://captainark.net/author/antoine-joubert.html">Antoine Joubert</a>
|
|
on Sun 06 March 2016
|
|
</span>
|
|
|
|
</div>
|
|
</div>
|
|
</div>
|
|
</div>
|
|
</header>
|
|
|
|
<!-- Main Content -->
|
|
<div class="container">
|
|
<div class="row">
|
|
<div class="col-lg-8 col-lg-offset-2 col-md-10 col-md-offset-1">
|
|
<!-- Post Content -->
|
|
<article>
|
|
<p>As I explained in <a href="https://www.captainark.net/setting-up-a-mail-server.html">this previous tutorial</a>, I've been running my own mail server without any issue for some time now.</p>
|
|
<p>However, every time I've wanted to add a domain, create a new mailbox or change a user's password, I've had to do it manually from a SQL shell. As fun as it may be, it does get old very fast, so I've decided to install a web frontend to manage this database.</p>
|
|
<p>After a bit a googling, I've settled on <a href="http://postfixadmin.sourceforge.net/">Postfix Admin</a>.</p>
|
|
<p>The latest stable version of Postfix Admin was released in 2009. Version 3.0 has been in the works for some time now and the project can be cloned from their <a href="https://github.com/postfixadmin/postfixadmin">Github repo</a>.</p>
|
|
<p>I've also tried <a href="http://www.vimbadmin.net/">ViMbAdmin</a>, but it felt a little heavy considering what I was going to use it for.</p>
|
|
<p>You'll need a web server with PHP support to run Postfix Admin. I personnaly run nginx with php5-fpm, but I won't explain how to configure it here. I'll simply explain how to migrate your current database to one managed with Postfix Admin with as little downtime as possible.</p>
|
|
<h1>Creating a new database</h1>
|
|
<p>Since the database managed by Postfix Admin does not use the same schema as the one we've created in my previous tutorial, we'll have to create a new one. We will give all privileges on that database to the same user as before, <code>'mail'@'localhost'</code>.</p>
|
|
<div class="highlight"><pre><span></span><span class="k">CREATE</span> <span class="k">DATABASE</span> <span class="n">mailnew</span><span class="p">;</span>
|
|
<span class="k">GRANT</span> <span class="k">ALL</span> <span class="k">PRIVILEGES</span> <span class="k">ON</span> <span class="n">mailnew</span><span class="p">.</span><span class="o">*</span> <span class="k">TO</span> <span class="s1">'mail'</span><span class="o">@</span><span class="s1">'localhost'</span><span class="p">;</span>
|
|
<span class="n">FLUSH</span> <span class="k">PRIVILEGES</span><span class="p">;</span>
|
|
</pre></div>
|
|
|
|
|
|
<p>At this point, you can clone the Postfix Admin project from Github and go through the installation process.</p>
|
|
<p>While editing the config.inc.php file (or config.local.php file if you've decided to copy it), make sure that the <code>database_name</code> option is set to use the <code>mailnew</code> database we've just created.</p>
|
|
<p>Also, make sure that the <code>encrypt</code> option is set to <code>dovecot:SHA512-CRYPT</code>.</p>
|
|
<p>The installation process will create all the necessary tables in the database.</p>
|
|
<p><strong>At this point, you'll have to recreate all domains, mailboxes and aliases that you have configured in your current mail database using the Postfix Admin interface.</strong></p>
|
|
<h1>Postfix configuration</h1>
|
|
<p>Once you're done with Postfix Admin, it's time to configure Postfix to use its schema.</p>
|
|
<p>First thing first, let's backup our current configuration :</p>
|
|
<div class="highlight"><pre><span></span>mkdir /etc/postfix/mysql-backup
|
|
cp -a /etc/postfix/mysql-virtual* /etc/postfix/mysql-backup/
|
|
</pre></div>
|
|
|
|
|
|
<p>Next, we have to edit the 3 files we've just backed-up. The only line that actually changes is the one beginning with <code>query</code>.</p>
|
|
<p>The first file is /etc/postfix/mysql-virtual-mailbox-domains.cf :</p>
|
|
<div class="highlight"><pre><span></span>user = mail
|
|
password = mailpassword
|
|
hosts = 127.0.0.1
|
|
dbname = mail
|
|
query = SELECT 1 FROM domain WHERE domain='%s' AND active='1'
|
|
</pre></div>
|
|
|
|
|
|
<p>The second one is /etc/postfix/mysql-virtual-mailbox-maps.cf :</p>
|
|
<div class="highlight"><pre><span></span>user = mail
|
|
password = mailpassword
|
|
hosts = 127.0.0.1
|
|
dbname = mail
|
|
query = SELECT 1 FROM mailbox WHERE username='%s' AND active='1'
|
|
</pre></div>
|
|
|
|
|
|
<p>And the last one is /etc/postfix/mysql-virtual-alias-maps.cf :</p>
|
|
<div class="highlight"><pre><span></span>user = mail
|
|
password = mailpassword
|
|
hosts = 127.0.0.1
|
|
dbname = mail
|
|
query = SELECT goto FROM alias WHERE address='%s' AND active='1'
|
|
</pre></div>
|
|
|
|
|
|
<h1>Dovecot configuration</h1>
|
|
<p>Same as with Postfix, we now need to configure Dovecot to use the Postfix Admin schema.</p>
|
|
<p>First, let's backup our current configuration :</p>
|
|
<div class="highlight"><pre><span></span>cp -a /etc/dovecot/sql.conf /etc/dovecot/sql.conf.bak
|
|
</pre></div>
|
|
|
|
|
|
<p>Next, we have to edit the /etc/dovecot/sql.conf file. The only line that changes is the one beginning with <code>password_query</code>.</p>
|
|
<div class="highlight"><pre><span></span>driver = mysql
|
|
connect = host=localhost dbname=mail user=mail password=mailpassword
|
|
default_pass_scheme = SHA512-CRYPT
|
|
password_query = SELECT username as user, password FROM mailbox WHERE username='%u' AND active='1';
|
|
</pre></div>
|
|
|
|
|
|
<h1>Migrating to the new schema</h1>
|
|
<p>We're done with the configuration part. Time to migrate to the new schema.</p>
|
|
<p>First, let's create a backup of our current mail database :</p>
|
|
<div class="highlight"><pre><span></span>mysqldump mail <span class="p">|</span> bzip2 > /home/user/mail.sql.bz2
|
|
</pre></div>
|
|
|
|
|
|
<p>Next, in a SQL shell, we're going to drop and recreate the mail database :</p>
|
|
<div class="highlight"><pre><span></span><span class="k">DROP</span> <span class="k">DATABASE</span> <span class="n">mail</span><span class="p">;</span>
|
|
<span class="k">CREATE</span> <span class="k">DATABASE</span> <span class="n">mail</span><span class="p">;</span>
|
|
</pre></div>
|
|
|
|
|
|
<p>We now have to dump the contents of the mailnew database into the newly created mail database :</p>
|
|
<div class="highlight"><pre><span></span>mysqldump mailnew <span class="p">|</span> mysql mail
|
|
</pre></div>
|
|
|
|
|
|
<p>Next, let's restart Postfix and Dovecot so that they start using the new database schema :</p>
|
|
<div class="highlight"><pre><span></span>systemctl restart postfix
|
|
systemctl restart dovecot
|
|
</pre></div>
|
|
|
|
|
|
<p>At this point, Postfix and Dovecot are using the Postfix Admin schema in the mail database.</p>
|
|
<p>The last thing we have to do is to edit Postfix Admin's config.inc.php file to use the mail database as well instead of the mailnew database that it should be currently using.</p>
|
|
<h1>Cleanup</h1>
|
|
<p>Once you've confirmed that everything is working properly, you can delete the backup files we've created :</p>
|
|
<div class="highlight"><pre><span></span>rm -rf /etc/postfix/mysql-backup
|
|
rm /etc/dovecot/sql.conf.bak
|
|
</pre></div>
|
|
|
|
|
|
<p>You can drop the mailnew database as well :</p>
|
|
<div class="highlight"><pre><span></span><span class="k">DROP</span> <span class="k">DATABASE</span> <span class="n">mailnew</span><span class="p">;</span>
|
|
</pre></div>
|
|
|
|
|
|
<h1>Conclusion</h1>
|
|
<p>That's all ! As always, please do leave a comment if this article has been of any use to you !</p>
|
|
</article>
|
|
|
|
|
|
<hr>
|
|
|
|
<div class="comments">
|
|
<h2>Comments !</h2>
|
|
<div id="disqus_thread"></div>
|
|
<script type="text/javascript">
|
|
var disqus_shortname = 'captainark';
|
|
var disqus_identifier = 'postfix-admin.html';
|
|
var disqus_url = 'https://captainark.net/postfix-admin.html';
|
|
(function() {
|
|
var dsq = document.createElement('script'); dsq.type = 'text/javascript'; dsq.async = true;
|
|
dsq.src = '//captainark.disqus.com/embed.js';
|
|
(document.getElementsByTagName('head')[0] || document.getElementsByTagName('body')[0]).appendChild(dsq);
|
|
})();
|
|
</script>
|
|
<noscript>Please enable JavaScript to view the comments.</noscript>
|
|
</div>
|
|
</div>
|
|
</div>
|
|
</div>
|
|
|
|
<hr>
|
|
|
|
<!-- Footer -->
|
|
<footer>
|
|
<div class="container">
|
|
<div class="row">
|
|
<div class="col-lg-8 col-lg-offset-2 col-md-10 col-md-offset-1">
|
|
<ul class="list-inline text-center">
|
|
<li>
|
|
<a href="mailto:contact@captainark.net">
|
|
<span class="fa-stack fa-lg">
|
|
<i class="fa fa-circle fa-stack-2x"></i>
|
|
<i class="fa fa-envelope fa-stack-1x fa-inverse"></i>
|
|
</span>
|
|
</a>
|
|
</li>
|
|
<li>
|
|
<a href="https://twitter.com/captainark">
|
|
<span class="fa-stack fa-lg">
|
|
<i class="fa fa-circle fa-stack-2x"></i>
|
|
<i class="fa fa-twitter fa-stack-1x fa-inverse"></i>
|
|
</span>
|
|
</a>
|
|
</li>
|
|
<li>
|
|
<a href="https://github.com/captainark">
|
|
<span class="fa-stack fa-lg">
|
|
<i class="fa fa-circle fa-stack-2x"></i>
|
|
<i class="fa fa-github fa-stack-1x fa-inverse"></i>
|
|
</span>
|
|
</a>
|
|
</li>
|
|
<li>
|
|
<a href="http://www.last.fm/user/captainark">
|
|
<span class="fa-stack fa-lg">
|
|
<i class="fa fa-circle fa-stack-2x"></i>
|
|
<i class="fa fa-lastfm fa-stack-1x fa-inverse"></i>
|
|
</span>
|
|
</a>
|
|
</li>
|
|
<li>
|
|
<a href="https://steamcommunity.com/id/captainark">
|
|
<span class="fa-stack fa-lg">
|
|
<i class="fa fa-circle fa-stack-2x"></i>
|
|
<i class="fa fa-steam fa-stack-1x fa-inverse"></i>
|
|
</span>
|
|
</a>
|
|
</li>
|
|
<li>
|
|
<a href="http://www.twitch.tv/captainark">
|
|
<span class="fa-stack fa-lg">
|
|
<i class="fa fa-circle fa-stack-2x"></i>
|
|
<i class="fa fa-twitch fa-stack-1x fa-inverse"></i>
|
|
</span>
|
|
</a>
|
|
</li>
|
|
</ul>
|
|
<p class="copyright text-muted">
|
|
Blog powered by <a href="http://getpelican.com">Pelican</a>,
|
|
which takes great advantage of <a href="http://python.org">Python</a>. <br /> © Antoine Joubert
|
|
</p> </div>
|
|
</div>
|
|
</div>
|
|
</footer>
|
|
|
|
<!-- jQuery -->
|
|
<script src="https://captainark.net/theme/js/jquery.min.js"></script>
|
|
|
|
<!-- Bootstrap Core JavaScript -->
|
|
<script src="https://captainark.net/theme/js/bootstrap.min.js"></script>
|
|
|
|
<!-- Custom Theme JavaScript -->
|
|
<script src="https://captainark.net/theme/js/clean-blog.min.js"></script>
|
|
|
|
<script type="text/javascript">
|
|
var pkBaseURL = "www.captainark.net/stats";
|
|
var _paq = _paq || [];
|
|
_paq.push(["trackPageView"]);
|
|
_paq.push(["enableLinkTracking"]);
|
|
(function() {
|
|
var u=(("https:" == document.location.protocol) ? "https" : "http")+"://"+pkBaseURL+"/";
|
|
_paq.push(["setTrackerUrl", u+"p.php7"]);
|
|
_paq.push(["setSiteId", "1"]);
|
|
var d=document, g=d.createElement("script"), s=d.getElementsByTagName("script")[0]; g.type="text/javascript";
|
|
g.defer=true; g.async=true; g.src=u+"p.js"; s.parentNode.insertBefore(g,s);
|
|
})();
|
|
</script>
|
|
<script type="text/javascript">
|
|
var disqus_shortname = 'captainark';
|
|
(function () {
|
|
var s = document.createElement('script'); s.async = true;
|
|
s.type = 'text/javascript';
|
|
s.src = '//' + disqus_shortname + '.disqus.com/count.js';
|
|
(document.getElementsByTagName('HEAD')[0] || document.getElementsByTagName('BODY')[0]).appendChild(s);
|
|
}());
|
|
</script>
|
|
</body>
|
|
|
|
</html> |