CentOS7.1最新1503版本最小化安裝,基於lnmp,nginx與mysql爲yum安裝,當然沒有安裝php,其他編譯所需要的全是官網上下載的最新穩定版,搭建的過程中出了很多錯誤,經過幾天的實驗,最後終於搭建成了,這次博客也是重新搭建,邊寫邊搭建,如果再次出現錯誤的話,會將錯誤一併寫出來。
一、 裝備工作
1、防止不必要的麻煩關閉Selinux
setenforce 0
關閉防火牆
systemctl stop firewalld
2、清空iptables
iptables -P INPUT ACCEPT iptables -F iptables -X iptables -L
查看是否全部爲ACCEPT
3、由於CentOS7默認安裝的是MariaDB,所以要添加MySQL的yum源,有些編譯需要的devel包只有epel有,所以我們把epel源也一併添加
yum install -y wget wget http://dev.mysql.com/get/mysql-community-release-el7-5.noarch.rpm rpm -ivh mysql-community-release-el7-5.noarch.rpm wget http://dl.fedoraproject.org/pub/epel/epel-release-latest-7.noarch.rpm rpm -ivh epel-release-latest-7.noarch.rpm
二、安裝postfix
1、安裝編譯及其他所需要的包,我這總共有124個包需要安裝,mysql-server比較大,速度也比較慢
yum install nginx vim gcc gcc-c++ openssl openssl-devel db4-devel ntpdate mysql mysql-devel mysql-server bzip2 php-mysql cyrus-sasl-md5 perl-GD perl-DBD-MySQL perl-GD perl-CPAN perl-CGI perl-CGI-Session cyrus-sasl-lib cyrus-sasl-plain cyrus-sasl cyrus-sasl-devel libtool-ltdl-devel telnet mail libicu-devel -y
2、編譯安裝postfix
1、卸載系統自帶的postfix,刪除postfix用戶,重新指定uid、gid創建新用戶postfix,postdrop
yum remove postfix -y userdel postfix groupdel postdrop groupadd -g 2525 postfix useradd -g postfix -u 2525 -s /sbin/nologin -M postfix groupadd -g 2526 postdrop useradd -g postdrop -u 2526 -s /sbin/nologin -M postdrop
2、下載源碼包並解壓編譯
wget http://mirrors.go-parts.com/postfix/source/official/postfix-3.0.1.tar.gz tar xf postfix-3.0.1.tar.gz cd postfix-3.0.1 make makefiles 'CCARGS=-DHAS_MYSQL -I/usr/include/mysql -DUSE_SASL_AUTH -DUSE_CYRUS_SASL -I/usr/include/sasl -DUSE_TLS ' 'AUXLIBS=-L/usr/lib64/mysql -lmysqlclient -lz -lrt -lm -L/usr/lib64/sasl2 -lsasl2 -lssl -lcrypto' make && make install
make install的時候會有個交互式的界面,自定義一些目錄,我們這裏只更改第二項臨時文件目錄,其他的全部默認。
Please specify the prefix for installed file names. Specify this ONLY if you are building ready-to-install packages for distribution to OTHER machines. See PACKAGE_README for instructions. install_root: [/] Please specify a directory for scratch files while installing Postfix. You must have write permission in this directory. tempdir: [/root/postfix-3.0.1] /tmp/extmail ………………………… ………………………… shlib_directory: [no] Please specify the final destination directory for non-executable files that are shared among multiple Postfix instances, such as postfix-files, dynamicmaps.cf, as well as the multi-instance template files main.cf.proto and master.cf.proto. meta_directory: [/etc/postfix]
3、更改目錄屬主屬組
chown -R postfix:postdrop /var/spool/postfix chown -R postfix:postdrop /var/lib/postfix/ chown root /var/spool/postfix chown -R root /var/spool/postfix/pid
4,修改postfix的配置文件
[root@localhost ~]# vim /etc/postfix/main.cf myhostname = mail.everyoo.com //設置主機名 mydomain = everyoo.com //指定域名 myorigin = $mydomain //指明發件人所在的域名 inet_interfaces = //all指定postfix系統監聽的網絡接口 mydestination = $myhostname, localhost.$mydomain, localhost,$mydomain //指定postfix接收郵件時收件人的域名 [使用虛擬域需要禁用] mynetworks_style = host //指定信任網段類型 mynetworks = 192.168.1.0/24, 127.0.0.0/8 //指定信任的客戶端 relay_domains = $mydestination //指定允許中轉郵件的域名 alias_maps = hash:/etc/aliases //設置郵件的別名
三、安裝dovecot
1、yum安裝
[root@localhost ~]# yum install -y dovecot dovecot-mysql
2、配置dovecot
[root@localhost ~]# cd /etc/dovecot/ [root@localhost dovecot]# vim dovecot.conf //直接在配置文件最後添加即可 protocols = imap pop3 !include conf.d/*.conf listen = * base_dir = /var/run/dovecot/ [root@localhost dovecot]# cd conf.d/ [root@localhost conf.d]# vim 10-auth.conf disable_plaintext_auth = no [root@localhost conf.d]# vim 10-mail.conf mail_location = maildir:~/Maildir mail_location = maildir:/var/mailbox/%d/%n/Maildir mail_privileged_group = mail [root@localhost conf.d]# vim 10-ssl.conf ssl = no [root@localhost conf.d]# vim 10-logging.conf og_path = /var/log/dovecot.log info_log_path = /var/log/dovecot.info log_timestamp = "%Y-%m-%d %H:%M:%S " [root@localhost conf.d]# cp auth-sql.conf.ext auth-sql.conf [root@localhost conf.d]# vim auth-sql.conf passdb { driver = sql # Path for SQL configuration file, see example-config/dovecot-sql.conf.ext args = /etc/dovecot/dovecot-sql.conf.ext} userdb { driver = sql args = /etc/dovecot/dovecot-sql.conf.ext}
3、編輯dovecot通過mysql認證的配置文件
[root@localhost conf.d]# vim /etc/dovecot-mysql.conf driver = mysql connect = host=localhost dbname=extmail user=extmail password=extmail default_pass_scheme = CRYPT password_query = SELECT username AS user,password AS password FROM mailbox WHERE username = '%u' user_query = SELECT maildir, uidnumber AS uid, gidnumber AS gid FROM mailbox WHERE username = '%u'
四、安裝courier-authlib
1、下載解壓並並編譯
[root@localhost ~]# wget https://sourceforge.net/projects/courier/files/authlib/0.66.2/courier-authlib-0.66.2.tar.bz2 [root@localhost ~]# tar xf courier-authlib-0.66.2.tar.bz2 [root@localhost ~]# cd courier-authlib-0.66.2 [root@localhost ~]# ./configure \ --prefix=/usr/local/courier-authlib \ --sysconfdir=/etc \ --without-authpam \ --without-authshadow \ --without-authvchkpw \ --without-authpgsql \ --with-authmysql \ --with-mysql-libs=/usr/lib64/mysql \ --with-mysql-includes=/usr/include/mysql \ --with-redhat \ --with-authmysqlrc=/etc/authmysqlrc \ --with-authdaemonrc=/etc/authdaemonrc \ --with-mailuser=postfix
這裏會報錯,configure: error: The Courier Unicode Library 1.2 appears not to be installed.提示
Courier Unicode Library沒有安裝,我們下載
courier-unicode-1.2並編譯安裝。
[root@localhost ~]# wget https://sourceforge.net/projects/courier/files/courier-unicode/1.2/courier-unicode-1.2.tar.bz2 [root@localhost ~]# tar xf courier-unicode-1.2.tar.bz2 [root@localhost ~]# cd courier-unicode-1.2 [root@localhost courier-unicode-1.2]# ./configure [root@localhost courier-unicode-1.2]# make && make install
再次編譯courier-authlib
就沒問題了,別忘了make && makeinstall
2、配置courier-authlib
[root@localhost courier-authlib-0.66.2]# chmod 755 /usr/local/courier-authlib/var/spool/authdaemon [root@localhost courier-authlib-0.66.2]# cp /etc/authdaemonrc.dist /etc/authdaemonrc [root@localhost courier-authlib-0.66.2]# cp /etc/authmysqlrc.dist /etc/authmysqlrc [root@localhost courier-authlib-0.66.2]# vim /etc/authdaemonrc //配置文件裏的驗證方法比較多,我們這裏只使用authmysql authmodulelist="authmysql" authmodulelistorig="authmysql" [root@localhost courier-authlib-0.66.2]# vim /etc/authmysqlrc //直接添加到配置文件尾部,然後去上面將響應系統默認的注視掉,或者刪除即可 MYSQL_SERVER localhost MYSQL_USERNAME extmail MYSQL_PASSWORD extmail MYSQL_SOCKET /var/lib/mysql/mysql.sock MYSQL_PORT 3306 MYSQL_DATABASE extmail MYSQL_USER_TABLE mailbox MYSQL_CRYPT_PWFIELD password DEFAULT_DOMAIN test.com MYSQL_UID_FIELD '2525' MYSQL_GID_FIELD '2525' MYSQL_LOGIN_FIELD username MYSQL_HOME_FIELD concat('/var/mailbox/',homedir) MYSQL_NAME_FIELD name MYSQL_MAILDIR_FIELD concat('/var/mailbox/',maildir)
3、
courier-authlib
添加服務啓動腳本及其他
[root@localhost courier-authlib-0.66.2]# cp courier-authlib.sysvinit /etc/init.d/courier-authlib [root@localhost courier-authlib-0.66.2]# chmod +x /etc/init.d/courier-authlib [root@localhost courier-authlib-0.66.2]# chkconfig --add courier-authlib [root@localhost courier-authlib-0.66.2]# chkconfig courier-authlib on [root@localhost courier-authlib-0.66.2]# echo "/usr/local/courier-authlib/lib/courier-authlib" >> /etc/ld.so.conf.d/courier-authlib.conf [root@localhost courier-authlib-0.66.1]# ldconfig [root@localhost courier-authlib-0.66.1]# service courier-authlib start Starting Courier authentication services: authdaemond
4、smtp以及虛擬用戶相關的設置
[root@localhost ~]# vim /usr/lib64/sasl2/smtpd.conf //文件不存在,要自己創建 pwcheck_method: authdaemond log_level: 3 mech_list: PLAIN LOGIN authdaemond_path:/usr/local/courier-authlib/var/spool/authdaemon/socket [root@localhost ~]# vim /etc/postfix/main.cf ##postfix支持SMTP## smtpd_sasl_auth_enable = yes smtpd_sasl_local_domain = '' smtpd_recipient_restrictions = permit_mynetworks,permit_sasl_authenticated,reject_unauth_destination broken_sasl_auth_clients=yes smtpd_client_restrictions = permit_sasl_authenticated smtpd_sasl_security_options = noanonymous ##postfix支持虛擬用戶## virtual_mailbox_base = /var/mailbox virtual_mailbox_maps = mysql:/etc/postfix/mysql_virtual_mailbox_maps.cf //這裏的配置文件需在後面extman 裏複製過來 virtual_mailbox_domains = mysql:/etc/postfix/mysql_virtual_domains_maps.cf virtual_alias_domains = virtual_alias_maps = mysql:/etc/postfix/mysql_virtual_alias_maps.cf virtual_uid_maps = static:2525 virtual_gid_maps = static:2525 virtual_transport = virtual
五、安裝extmail
extmail和extman可通過這兩個鏈接下載
http://7xivyw.com1.z0.glb.clouddn.com/extmail-1.2.tar.gz
http://7xivyw.com1.z0.glb.clouddn.com/extman-1.1.tar.gz
1、創建目錄並解壓
[root@localhost ~]# mkdir -p /var/www/extsuite [root@localhost ~]# tar xf extmail-1.2.tar.gz -C /var/www/extsuite/ [root@localhost ~]# mv /var/www/extsuite/extmail-1.2/ /var/www/extsuite/extmail
2、更改extmail的配置文件
[root@localhost ~]# cd /var/www/extsuite/extmail [root@localhost extmail]# cp webmail.cf.default webmail.cf [root@localhost extmail]# vim webmail.cf SYS_SESS_DIR = /tmp/extmail SYS_UPLOAD_TMPDIR = /tmp/extmail/upload SYS_USER_LANG = zh_CN SYS_MIN_PASS_LEN = 8 SYS_MAILDIR_BASE = /var/mailbox SYS_MYSQL_USER = extmail SYS_MYSQL_PASS = extmail SYS_MYSQL_DB = extmail SYS_MYSQL_HOST = localhost SYS_MYSQL_SOCKET = /var/lib/mysql/mysql.sock SYS_MYSQL_TABLE = mailbox SYS_MYSQL_ATTR_USERNAME = username SYS_MYSQL_ATTR_DOMAIN = domain SYS_MYSQL_ATTR_PASSWD = password SYS_AUTHLIB_SOCKET = /usr/local/courier-authlib/var/spool/authdaemon/socket
3、建立臨時文件目錄與session目錄
[root@localhost extmail]# mkdir -p /tmp/extmail/upload [root@localhost extmail]# chown -R postfix.postfix /tmp/extmail/
六、安裝extman
1、解壓extman
[root@localhost ~]# tar xf extman-1.1.tar.gz -C /var/www/extsuite/ [root@localhost ~]# cd /var/www/extsuite/ [root@localhost extsuite]# mv extman-1.1/ extman
2、更改extman配置文件
[root@localhost extsuite]# cd extman/ [root@localhost extman]# cp webman.cf.default webman.cf
3、更改cgi目錄屬主屬組
[root@localhost extman]# chown -R postfix.postfix /var/www/extsuite/extman/cgi/ [root@localhost extman]# chown -R postfix.postfix /var/www/extsuite/extmail/cgi/
4、導入數據庫
由於數據庫不能識別TYPE=MyISAM
,所以這裏直接導入會出錯,先編輯extmail.sql數據庫文件,將TYPE=MyISAM更改爲ENGINE=MyISAM
[root@localhost extman]# vim docs/extmail.sql :% s/TYPE/ENGINE/g
共有五處修改
導入還是會報錯
[root@localhost extman]# mysql -uroot < docs/extmail.sql ERROR 1364 (HY000) at line 31: Field 'ssl_cipher' doesn't have a default value
此處需要修改my.cnf配置文件
[root@localhost extman]# vim /etc/my.cnf # Recommended in standard MySQL setup #sql_mode=NO_ENGINE_SUBSTITUTION,STRICT_TRANS_TABLES //將這行注視掉,重啓mysql,這裏需要注意的是,等數據庫導入成功後,這項是不可以去掉註釋的,不然mysql就啓動不起來了。 再次導入數據庫 [root@localhost extman]# mysql -uroot < docs/extmail.sql [root@localhost extman]# mysql -uroot < docs/init.sql
5、創建數據庫用戶extmail並授予權限
mysql> GRANT ALL ON extmail.* to extmail@'%' identified by 'extmail'; //這裏直接在授權任何權限在任意地址上了 Query OK, 0 rows affected (0.00 sec) mysql> FLUSH PRIVILEGES; Query OK, 0 rows affected (0.00 sec)
6、複製四-4提到的配置文件
[root@localhost ~]# cd /var/www/extsuite/extman/docs/ [root@localhost docs]# cp mysql_virtual_* /etc/postfix/
6、爲extman創建臨時目錄
[root@localhost extman]# mkdir /tmp/extman [root@localhost extman]# chown -R postfix.postfix /tmp/extman/
7、啓動postfix、dovecot、saslauthd
[root@localhost extman]# ss -tnluo | grep :25 tcp LISTEN 0 100 *:25 *:* [root@localhost extman]# ps aux | grep dovecot root 2220 0.1 0.3 15616 1508 ? Ss 03:02 0:00 /usr/sbin/dovecot -F dovecot 2223 0.0 0.1 9312 1004 ? S 03:02 0:00 dovecot/anvil root 2224 0.0 0.2 9440 1172 ? S 03:02 0:00 dovecot/log root 2226 0.0 0.4 12428 2184 ? S 03:02 0:00 dovecot/config root 2240 0.0 0.1 112640 972 pts/0 R+ 03:02 0:00 grep --color=auto dovecot [root@localhost extman]# ps aux | grep saslauthd root 2230 0.0 0.1 71944 916 ? Ss 03:02 0:00 /usr/sbin/saslauthd -m /run/saslauthd -a pam root 2231 0.0 0.1 71944 676 ? S 03:02 0:00 /usr/sbin/saslauthd -m /run/saslauthd -a pam root 2232 0.0 0.1 71944 676 ? S 03:02 0:00 /usr/sbin/saslauthd -m /run/saslauthd -a pam root 2233 0.0 0.1 71944 676 ? S 03:02 0:00 /usr/sbin/saslauthd -m /run/saslauthd -a pam root 2234 0.0 0.1 71944 676 ? S 03:02 0:00 /usr/sbin/saslauthd -m /run/saslauthd -a pam root 2242 0.0 0.1 112640 668 pts/0 R+ 03:03 0:00 grep --color=auto saslauthd
七、測試
1、測試虛擬用戶
[root@localhost courier-authlib-0.66.2]# /usr/local/courier-authlib/sbin/authtest -s login [email protected] extmail Authentication succeeded. //顯示這個表示成功,測試時使用的是[email protected],因爲我們導入的數據庫init.sql裏面自帶了這個。 Authenticated: [email protected] (uid 2525, gid 2525) Home Directory: /var/mailbox/extmail.org/postmaster //這裏需要注意/var/mailbox這個目錄現在我們還沒有創建,後面web訪問的時候如果沒有會報錯,所以提前創建。 Maildir: /var/mailbox/extmail.org/postmaster/Maildir/ Quota: (none) Encrypted Password: $1$phz1mRrj$3ok6BjeaoJYWDBsEPZb5C0 Cleartext Password: extmail Options: (none) [root@localhost courier-authlib-0.66.2]# mkdir /var/mailbox [root@localhost courier-authlib-0.66.2]# chown -R postfix.postfix /var/mailbox/
不創建的話會報錯
2、測試smtp發信
[root@localhost ~]# printf "[email protected]" | openssl base64 cG9zdG1hc3RlckBleHRtYWlsLm9yZw== [root@localhost ~]# printf "extmail" | openssl base64 ZXh0bWFpbA== [root@localhost ~]# telnet localhost 25 Trying ::1... telnet: connect to address ::1: Connection refused Trying 127.0.0.1... Connected to localhost. Escape character is '^]'. 220 mail.daen.com ESMTP Postfix auth login 334 VXNlcm5hbWU6 cG9zdG1hc3RlckBleHRtYWlsLm9yZw== 334 UGFzc3dvcmQ6 ZXh0bWFpbA== 235 2.7.0 Authentication successful //成功 quit 221 2.0.0 Bye Connection closed by foreign host.
八、啓動nginx實現web訪問
1、nginx本身並不能解析cgi,extmail自帶了解析cgi的程序,但是有些地方需要修改下
[root@localhost ~]# vim /var/www/extsuite/extmail/dispatch-init SU_UID=postfix SU_GID=postfix
啓動dispatch-init
[root@localhost ~]# /var/www/extsuite/extmail/dispatch-init start Starting extmail FCGI server...
啓動cmdserver,不啓動會出現Connection refused
[root@localhost ~]# /var/www/extsuite/extman/daemon/cmdserver -v -d loaded ok
2、添加nginx虛擬主機
[root@localhost ~]# vim /etc/nginx/conf.d/extmail.conf
server { listen 8080; server_name mail.everyoo.com; index index.html index.htm index.php index.cgi; root /var/www/extsuite/extmail/html/; location /extmail/cgi/ { fastcgi_pass 127.0.0.1:8888; fastcgi_index index.cgi; fastcgi_param SCRIPT_FILENAME /var/www/extsuite/extmail/cgi/$fastcgi_script_name; include fcgi.conf; } location /extmail/ { alias /var/www/extsuite/extmail/html/; } location /extman/cgi/ { fastcgi_pass 127.0.0.1:8888; fastcgi_index index.cgi; fastcgi_param SCRIPT_FILENAME /var/www/extsuite/extman/cgi/$fastcgi_script_name; include fcgi.conf; } location /extman/ { alias /var/www/extsuite/extman/html/; } access_log /var/log/extmail_access.log; }
生成fcgi.conf
[root@localhost ~]# vim /etc/nginx/fcgi.conf fastcgi_param GATEWAY_INTERFACE CGI/1.1; fastcgi_param SERVER_SOFTWARE nginx; fastcgi_param QUERY_STRING $query_string; fastcgi_param REQUEST_METHOD $request_method; fastcgi_param CONTENT_TYPE $content_type; fastcgi_param CONTENT_LENGTH $content_length; fastcgi_param SCRIPT_NAME $fastcgi_script_name; fastcgi_param REQUEST_URI $request_uri; fastcgi_param DOCUMENT_ROOT $document_root; fastcgi_param SERVER_PROTOCOL $server_protocol; fastcgi_param REMOTE_ADDR $remote_addr; fastcgi_param REMOTE_PORT $remote_port; fastcgi_param SERVER_ADDR $server_addr; fastcgi_param SERVER_PORT $server_port; fastcgi_param SERVER_NAME $server_name;
重啓nginx,訪問192.168.1.105:8080
出錯,需要安裝Unix::Syslog
安裝Unix::Syslog
[root@localhost ~]# wget http://www.cpan.org/authors/id/M/MH/MHARNISCH/Unix-Syslog-1.1.tar.gz [root@localhost ~]# tar xf Unix-Syslog-1.1.tar.gz [root@localhost ~]# cd Unix-Syslog-1.1[root@localhost Unix-Syslog-1.1]# perl Makefile.PL [root@localhost Unix-Syslog-1.1]# make && make install
再次訪問就可以了,extman的登錄賬戶爲[email protected]密碼爲extmail*123*,首次使用需要先添加域,添加之後再修改域,改爲可自由註冊,再註冊用戶就可以登錄發郵件了
九、問題集錦
圖形日誌無法查看,後續補充
另外參考了兩篇文章,非常感謝!
http://hypocritical.blog.51cto.com/3388028/1403385
http://www.programaloco.com/blog/MIzMyADMwATz.html