Golang SMTP server
tmail is a SMTP server
For french users see: http://tmail.io/doc/installer-tmail/
# su tmail $ cd $ wget ftp://ftp.toorop.fr/softs/tmail/tmail.zip $ unzip tmail.zip $ cd dist
Under dist you will find:
Make run script and tmail runnable:
chmod 700 run tmail
mkdir db mkdir store
if you want to enable Dovecot support add mailboxes directory:
See Enabling Dovecot support for tmail (french) for more info.
Init you conf file:
cd conf cp tmail.cfg.base tmail.cfg chmod 600 tmail.cfg
TMAIL_ME: Hostname of the SMTP server (will be used for HELO|EHLO)
TMAILDBDRIVER: I recommend sqlite3 unless you want to enable clustering (or you have a lot of domains/mailboxes)
TMAILSMTPDDSNS: listening IP(s), port(s) and SSL options (see conf file for more info)
TMAILDELIVERDLOCAL_IPS: IP(s) to use for sending mail to remote host.
TMAILSMTPDCONCURRENCY_INCOMING: max concurent incomming proccess
TMAILDELIVERDMAXINFLIGHT: concurrent delivery proccess
[email protected]:~/dist$ ./run Database 'driver: sqlite3, source: /home/tmail/dist/db/tmail.db' misses some tables. Should i create them ? (y/n): y
[dev.tmail.io - 127.0.0.1] 2015/02/02 12:42:32.449597 INFO - smtpd 22.214.171.124:2525 launched. [dev.tmail.io - 127.0.0.1] 2015/02/02 12:42:32.449931 INFO - smtpd 126.96.36.199:5877 launched. [dev.tmail.io - 127.0.0.1] 2015/02/02 12:42:32.450011 INFO - smtpd 188.8.131.52:4655 SSL launched. [dev.tmail.io - 127.0.0.1] 2015/02/02 12:42:32.499728 INFO - deliverd launched
As you run tmail under tmail user, it can't open port under 1024 (and for now tmail can be launched as root, open port under 25 and fork itself to unprivilegied user).
The workaround is to use iptables to forward ports. For example, if we have tmail listening on ports 2525, and 5877 and we want tu use 25 and 587 as public ports, we have to use those iptables rules:
iptables -t nat -A PREROUTING -p tcp --dport 25 -j REDIRECT --to-port 2525 iptables -t nat -A PREROUTING -p tcp --dport 587 -j REDIRECT --to-port 5877
$ telnet dev.tmail.io 25 Trying 184.108.40.206... Connected to dev.tmail.io. Escape character is '^]'. 220 tmail.io tmail ESMTP f22815e0988b8766b6fe69cbc73fb0d965754f60 HELO toto 250 tmail.io MAIL FROM: [email protected] 250 ok RCPT TO: [email protected] 554 5.7.1 : Relay access denied. Connection closed by foreign host.
Perfect ! You got "Relay access denied" because by default noboby can use tmail for relaying mails.
If you want tmail to relay mails for example.com, just run:
tmail rcpthost add example.com
Note: If you have activated Dovecot support and example.com is a local domain, add -l flag :
tmail rcpthost add -l example.com
Does it work as expected ?
$ telnet dev.tmail.io 25 Trying 220.127.116.11... Connected to dev.tmail.io. Escape character is '^]'. 220 tmail.io tmail ESMTP 96b78ef8f850253cc956820a874e8ce40773bfb7 HELO toto 250 tmail.io mail from: [email protected] 250 ok rcpt to: [email protected] 250 ok data 354 End data with . subject: test tmail
blabla . 250 2.0.0 Ok: queued 2736698d73c044fd7f1994e76814d737c702a25e quit 221 2.0.0 Bye Connection closed by foreign host.
tmail relayip add IP
tmail relayip add 127.0.0.1
By default tmail will use MX records for routing mails, but you can "manualy" configure alternative routing. If you want tmail to route mail from @example.com to mx.slowmail.com. It is as easy as adding this routing rule
tmail routes add -d example.com -rh mx.slowmail.com
You can find more elaborated routing rules on tmail routing documentation (french) (translators are welcomed ;))
If you want to enable relaying after SMTP AUTH for user [email protected], just enter:
tmail user add -r [email protected] password
If you want to delete user [email protected] :
tmail user del [email protected]
If you want to activate TLS/SSL connections with a valid certificate (not an auto-signed one as it's by default) between mail clients and your tmail server you can get a let's Encrypt certificate, you have first to install let's Encrypt :
cd ~ git clone https://github.com/letsencrypt/letsencrypt cd letsencrypt
Then you can request a certificate
./letsencrypt-auto certonly --standalone -d your.hostname
You'll have to provide a valid mail address and agree to the Let's Encrypt Term of Service. When certificate is issued you have to copy some files to the ssl/ directory
cd /home/tmail/dist/ssl cp /etc/letsencrypt/live/your.hostname/fullchain.pem server.crt cp /etc/letsencrypt/live/your.hostname/privkey.pem server.key chown tmail.tmail server.*
And it's done !
Feel free to inspect & improve tmail code, PR are welcomed ;)
If you are not a coder, you can contribute too:
install and use tmail, I need feebacks.
as you can see reading this page, english is not my native language, so I need help to write english documentation.
MIT, see LICENSE
github.com/nsqio/nsq/... github.com/codegangsta/cli github.com/codegangsta/negroni github.com/go-sql-driver/mysql github.com/jinzhu/gorm github.com/julienschmidt/httprouter github.com/kless/osutil/user/crypt/... github.com/lib/pq github.com/mattn/go-sqlite3 github.com/nbio/httpcontext golang.org/x/crypto/bcrypt golang.org/x/crypto/blowfish