首页 发现 帮助
登录
mirrors
/
mailcow-dockerized
镜像自地址 https://github.com/mailcow/mailcow-dockerized
2
0
派生 0
文件 工单管理 0 Wiki
目录树: 686df83a34
分支列表 标签列表
mailcow-dockeri...
/
data
/
misc
/
mailcow-setup-relayhost.sh

mailcow-setup-relayhost.sh 4.0 KB
文件历史 原始文件

12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061626364656667686970717273747576777879808182838485868788899091 
  1. #!/bin/bash
    2. 

  2. 

  3. # Postfix smtp_tls_security_level should be set to "may" to try an
    4. 

  4. # encrypted connection.
    5. 

  5. 

  6. if [ "$EUID" -ne 0 ]
    7. 

  7. 	then echo "Please run as root"
    8. 

  8. 	exit 1
    9. 

  9. fi
    10. 

  10. 

  11. # Find script directory and move to base directory of mailcow-dockerized
    12. 

  12. # so docker-compose is executed from the right location
    13. 

  13. DIR=$(echo $( cd "$( dirname "${BASH_SOURCE[0]}" )" && pwd ) | sed 's/data\/misc.*//')
    14. 

  14. cd $DIR
    15. 

  15. 

  16. if [[ ${1} == "reset" ]]; then
    17. 

  17. 	# Reset modified values to their defaults
    18. 

  18. 	sed -i "s/^relayhost\ \=.*/relayhost\ \=/" data/conf/postfix/main.cf
    19. 

  19. 	sed -i "s/^smtp\_sasl\_password\_maps.*/smtp\_sasl\_password\_maps\ \=/" data/conf/postfix/main.cf
    20. 

  20. 	sed -i "s/^smtp\_sasl\_security\_options.*/smtp\_sasl\_security\_options\ \=\ noplaintext\,\ noanonymous/" data/conf/postfix/main.cf
    21. 

  21. 	sed -i "s/^smtp\_sasl\_auth\_enable.*/smtp\_sasl\_auth\_enable\ \=\ no/" data/conf/postfix/main.cf
    22. 

  22. 	# Also delete the plaintext password file
    23. 

  23. 	rm -f data/conf/postfix/smarthost_passwd*
    24. 

  24. 	docker-compose exec postfix-mailcow postfix reload
    25. 

  25. 	# Exit last exit code
    26. 

  26. 	exit $?
    27. 

  27. elif [[ ${1} == "restore-string" ]]; then
    28. 

  28. 	# Set parameter value of smtp_sasl_password_maps
    29. 

  29. 	SMTPSASLPWDMAP="data/conf/postfix/smarthost_passwd"
    30. 

  30. 	# Get parameter value of relayhost
    31. 

  31. 	RELAYHOSTCFG=$(grep "relayhost\ =" data/conf/postfix/main.cf | awk '{print $3}')
    32. 

  32. 	# Exit if empty/unset
    33. 

  33. 	[[ -z ${RELAYHOSTCFG} ]] && exit 0
    34. 

  34. 	# Replace ':' by ' ' (white space)
    35. 

  35. 	RELAYHOSTCFG=${RELAYHOSTCFG//\:/ }
    36. 

  36. 	# Replace '[' by '' (empty)
    37. 

  37. 	RELAYHOSTCFG=${RELAYHOSTCFG//\[/}
    38. 

  38. 	# Replace ']' by '' (empty) and create array of result
    39. 

  39. 	RELAYHOSTCFGARR=(${RELAYHOSTCFG//\]/})
    40. 

  40. 	# Get 'username:password' from SASL password maps
    41. 

  41. 	# Grep relayhost without port and '[', ']' or ':' from SASL password map file without map type (e.g. 'hash:')
    42. 

  42. 	USRPWD=$(grep ${RELAYHOSTCFGARR[0]} $SMTPSASLPWDMAP | awk {'print $2'})
    43. 

  43. 	# Replace ':' by ' ' and create array of result
    44. 

  44. 	USRPWDARR=(${USRPWD//:/ })
    45. 

  45. 	# Echo script name, all values in RELAYHOSTCFGARR, first and second value in USRPWDARR
    46. 

  46. 	# Why?
    47. 

  47. 	# Host and port are required, so we can print the whole array RELAYHOSTCFGARR.
    48. 

  48. 	# Password might be empty, so we print them separately.
    49. 

  49. 	echo ${0} ${RELAYHOSTCFGARR[@]} \'${USRPWDARR[0]}\' \'${USRPWDARR[1]}\'
    50. 

  50. 	exit 0
    51. 

  51. elif [[ -z ${1} ]] || [[ -z ${2} ]]; then
    52. 

  52. 	# Exit with code 1 if host and port are missing
    53. 

  53. 	echo "Usage: ${0} relayhost port (username) (password)"
    54. 

  54. 	echo "Username and password are optional parameters."
    55. 

  55. 	exit 1
    56. 

  56. else
    57. 

  57. 	# Try a simple connection to host:port but don't recieve any data
    58. 

  58. 	# Abort after 3 seconds
    59. 

  59. 	if ! nc -z -v -w3 ${1} ${2} 2>/dev/null; then
    60. 

  60. 		echo "Connection to relayhost ${1} failed, aborting..."
    61. 

  61. 		exit 1
    62. 

  62. 	fi
    63. 

  63. 	# Use exact hostname as relayhost, don't lookup the MX record of relayhost
    64. 

  64. 	sed -i "s/relayhost\ \=.*/relayhost\ \=\ \[${1}\]\:${2}/" data/conf/postfix/main.cf
    65. 

  65. 	if grep -q "smtp_sasl_password_maps" data/conf/postfix/main.cf
    66. 

  66. 	then
    67. 

  67. 		sed -i "s/^smtp\_sasl\_password\_maps.*/smtp\_sasl\_password\_maps\ \=\ hash\:\/opt\/postfix\/conf\/smarthost\_passwd/" data/conf/postfix/main.cf
    68. 

  68. 	else
    69. 

  69. 		echo "smtp_sasl_password_maps = hash:/opt/postfix/conf/smarthost_passwd" >>  data/conf/postfix/main.cf
    70. 

  70. 	fi
    71. 

  71. 	if grep -q "smtp_sasl_auth_enable" data/conf/postfix/main.cf
    72. 

  72. 	then
    73. 

  73. 		sed -i "s/^smtp\_sasl\_auth\_enable.*/smtp\_sasl\_auth\_enable\ \=\ yes/" data/conf/postfix/main.cf
    74. 

  74. 	else
    75. 

  75. 		echo "smtp_sasl_auth_enable = yes" >>  data/conf/postfix/main.cf
    76. 

  76. 	fi
    77. 

  77. 	if grep -q "smtp_sasl_security_options" data/conf/postfix/main.cf
    78. 

  78. 	then
    79. 

  79. 		sed -i "s/^smtp\_sasl\_security\_options.*/smtp\_sasl\_security\_options\ \=/" data/conf/postfix/main.cf
    80. 

  80. 	else
    81. 

  81. 		echo "smtp_sasl_security_options =" >>  data/conf/postfix/main.cf
    82. 

  82. 	fi
    83. 

  83. 	if [[ ! -z ${3} ]]; then
    84. 

  84. 		echo ${1} ${3}:${4} > data/conf/postfix/smarthost_passwd
    85. 

  85. 		docker-compose exec postfix-mailcow postmap /opt/postfix/conf/smarthost_passwd
    86. 

  86. 	fi
    87. 

  87. 	docker-compose exec postfix-mailcow chown root:postfix /opt/postfix/conf/smarthost_passwd /opt/postfix/conf/smarthost_passwd.db
    88. 

  88. 	docker-compose exec postfix-mailcow chmod 660 /opt/postfix/conf/smarthost_passwd /opt/postfix/conf/smarthost_passwd.db
    89. 

  89. 	docker-compose exec postfix-mailcow postfix reload
    90. 

  90. 	exit $?
    91. 

  91. fi
    92.