WebSVN – ALCASAR – Diff – //scripts/alcasar-mail-install.sh

 				exit 1
 			;;
 		esac
 	done
 fi
-echo "Type=$TYPE_MAIL - port=$port - smtpIP=$smtpIP - mailAddr=$mailAddr - mailMdp=$mailMdp - adminMail=$adminMail - whitedomain=$whiteDomain"
 if  [[ $TYPE_MAIL -eq 0 ]]; then # disable mail service
 	$SED "s/^MAIL=.*/MAIL=off/" $CONF_FILE
 	$SED "s/^MAIL_TYPE=.*/MAIL_TYPE=/" $CONF_FILE
 	$SED "s/^MAIL_SMTP_IP=.*/MAIL_SMTP_IP=/" $CONF_FILE
 	$SED "s/^MAIL_SMTP_PORT=.*/MAIL_SMTP_PORT=/" $CONF_FILE
 	$SED "/^SMTP_IP=/ s/^/#/" $LOCAL_IPTABLE_FILE
 	$SED "/^SMTP_PORT=/ s/^/#/" $LOCAL_IPTABLE_FILE
 	$SED "s/^\$IPTABLES -A OUTPUT -p tcp --dport \$SMTP_PORT.*/#\$IPTABLES -A OUTPUT -p tcp --dport \$SMTP_PORT -d \$SMTP_IP -m conntrack --ctstate NEW,ESTABLISHED -j ACCEPT/" $LOCAL_IPTABLE_FILE
 	$SED "s/^\$IPTABLES -A INPUT  -p tcp --sport \$SMTP_PORT.*/#\$IPTABLES -A INPUT  -p tcp --sport \$SMTP_PORT -s \$SMTP_IP -m conntrack --ctstate ESTABLISHED     -j ACCEPT/" $LOCAL_IPTABLE_FILE
 	$SED "s/^relayhost =.*/relayhost =/" $POSTFIX_CONF_FILE
+	$SED "s/^smtp_tls_security_level =.*/smtp_tls_security_level = may/g" $POSTFIX_CONF_FILE
+	$SED "/^smtp_tls_wrappermode = yes/d" $POSTFIX_CONF_FILE
+	[ -e ${SASLPATH}/sasl_passwd ] && rm -f ${SASLPATH}/sasl_passwd
+elif [[ $TYPE_MAIL -eq 1 ]]; then # Enable mail service (act as smtp server)
+	$SED "s/^MAIL=.*/MAIL=on/" $CONF_FILE
+	$SED "s/^MAIL_TYPE=.*/MAIL_TYPE=1/" $CONF_FILE
+	$SED "s/^MAIL_SMTP_IP=.*/MAIL_SMTP_IP=/" $CONF_FILE
+	$SED "s/^MAIL_SMTP_PORT=.*/MAIL_SMTP_PORT=/" $CONF_FILE
+	$SED "s/^MAIL_ADDR=.*/MAIL_ADDR=/" $CONF_FILE
+	$SED "s/^MAIL_PASSWORD=.*/MAIL_PASSWORD=/" $CONF_FILE
+	$SED "s/^MAIL_WHITEDOMAIN=.*/MAIL_WHITEDOMAIN=$whiteDomain/" $CONF_FILE
+	$SED "s/^MAIL_ADMIN=.*/MAIL_ADMIN=$adminMail/" $CONF_FILE
+	$SED "/^SMTP_IP=/ s/^/#/" $LOCAL_IPTABLE_FILE
+	$SED "/^SMTP_PORT=/ s/^/#/" $LOCAL_IPTABLE_FILE
+	$SED "s/^\$IPTABLES -A OUTPUT -p tcp --dport \$SMTP_PORT.*/#\$IPTABLES -A OUTPUT -p tcp --dport \$SMTP_PORT -d \$SMTP_IP -m conntrack --ctstate NEW,ESTABLISHED -j ACCEPT/" $LOCAL_IPTABLE_FILE
+	$SED "s/^\$IPTABLES -A INPUT  -p tcp --sport \$SMTP_PORT.*/#\$IPTABLES -A INPUT  -p tcp --sport \$SMTP_PORT -s \$SMTP_IP -m conntrack --ctstate ESTABLISHED     -j ACCEPT/" $LOCAL_IPTABLE_FILE
+	$SED "s/^relayhost =.*/relayhost =/" $POSTFIX_CONF_FILE
+	$SED "s/^smtp_tls_security_level =.*/smtp_tls_security_level = may/g" $POSTFIX_CONF_FILE
+	$SED "/^smtp_tls_wrappermode = yes/d" $POSTFIX_CONF_FILE
 	[ -e ${SASLPATH}/sasl_passwd ] && rm -f ${SASLPATH}/sasl_passwd
 elif [[ $TYPE_MAIL -eq 2 ]]; then # Enable mail service (relaying to an extern mail server)
 	$SED "s/^MAIL=.*/MAIL=on/" $CONF_FILE
 	$SED "s/^MAIL_TYPE=.*/MAIL_TYPE=2/" $CONF_FILE
 	$SED "s/^MAIL_SMTP_IP=.*/MAIL_SMTP_IP=$smtpIP/" $CONF_FILE
 	$SED "s/^MAIL_ADMIN=.*/MAIL_ADMIN=$adminMail/" $CONF_FILE
 	$SED "s/^#SMTP_IP=.*/SMTP_IP=$smtpIP/" $LOCAL_IPTABLE_FILE
 	$SED "s/^#SMTP_PORT=.*/SMTP_PORT=$smtpPort/" $LOCAL_IPTABLE_FILE
 	$SED "s/^#\$IPTABLES -A OUTPUT -p tcp --dport \$SMTP_PORT.*/\$IPTABLES -A OUTPUT -p tcp --dport \$SMTP_PORT -d \$SMTP_IP -m conntrack --ctstate NEW,ESTABLISHED -j ACCEPT/" $LOCAL_IPTABLE_FILE
 	$SED "s/^#\$IPTABLES -A INPUT  -p tcp --sport \$SMTP_PORT.*/\$IPTABLES -A INPUT  -p tcp --sport \$SMTP_PORT -s \$SMTP_IP -m conntrack --ctstate ESTABLISHED     -j ACCEPT/" $LOCAL_IPTABLE_FILE
-	$SED "s/^relayhost =.*/relayhost = $smtpIP:$port/g" $POSTFIX_CONF_FILE
+	$SED "s/^relayhost =.*/relayhost = $smtpIP:$smtpPort/g" $POSTFIX_CONF_FILE
+	$SED "s/^smtp_tls_security_level =.*/smtp_tls_security_level = may/g" $POSTFIX_CONF_FILE
+	$SED "/^smtp_tls_wrappermode = yes/d" $POSTFIX_CONF_FILE
 	[ -e ${SASLPATH}/sasl_passwd ] && rm -f ${SASLPATH}/sasl_passwd
 elif [[ $TYPE_MAIL -eq 3 ]]; then # Enable mail service (using an email address)
 	$SED "s/^MAIL=.*/MAIL=on/" $CONF_FILE
 	$SED "s/^MAIL_TYPE=.*/MAIL_TYPE=3/" $CONF_FILE
 	$SED "s/^MAIL_SMTP_IP=.*/MAIL_SMTP_IP=$smtpIP/" $CONF_FILE
 	$SED "s/^MAIL_ADMIN=.*/MAIL_ADMIN=$adminMail/" $CONF_FILE
 	$SED "s/^#SMTP_IP=.*/SMTP_IP=$smtpIP/" $LOCAL_IPTABLE_FILE
 	$SED "s/^#SMTP_PORT=.*/SMTP_PORT=$smtpPort/" $LOCAL_IPTABLE_FILE
 	$SED "s/^#\$IPTABLES -A OUTPUT -p tcp --dport \$SMTP_PORT.*/\$IPTABLES -A OUTPUT -p tcp --dport \$SMTP_PORT -m conntrack --ctstate NEW,ESTABLISHED -j ACCEPT/" $LOCAL_IPTABLE_FILE
 	$SED "s/^#\$IPTABLES -A INPUT  -p tcp --sport \$SMTP_PORT.*/\$IPTABLES -A INPUT  -p tcp --sport \$SMTP_PORT -m conntrack --ctstate ESTABLISHED     -j ACCEPT/" $LOCAL_IPTABLE_FILE
-	$SED "s/^relayhost =.*/relayhost = $smtpIP:$port/g" $POSTFIX_CONF_FILE
+	$SED "s/^relayhost =.*/relayhost = $smtpIP:$smtpPort/g" $POSTFIX_CONF_FILE
+	$SED "s/^smtp_tls_security_level =.*/smtp_tls_security_level = encrypt/g" $POSTFIX_CONF_FILE
+	echo "smtp_tls_wrappermode = yes" >> $POSTFIX_CONF_FILE
 	[ -d ${SASLPATH} ] || mkdir ${SASLPATH}
-	echo "[${smtpIP}]:${port} ${mailAddr}:${mailMdp}" > ${SASLPATH}/sasl_passwd
+	echo "[${smtpIP}]:${smtpPort} ${mailAddr}:${mailMdp}" > ${SASLPATH}/sasl_passwd
 	postmap ${SASLPATH}/sasl_passwd
 	chmod -R 644 ${SASLPATH}
 	chown root:root ${SASLPATH}/sasl_passwd*
 	chmod 0600 ${SASLPATH}/sasl_passwd*
 else

Subversion Repositories ALCASAR

(root)//scripts/alcasar-mail-install.sh – Rev 3021 → 3022