Thank you, Eric and Remo.
I ended up actually being able to get it to work two ways. The key to
using port 25 was the tcp.smtp line that Eric suggested. Once that's in
place, the following settings in '/etc/roundcubemail/config.inc.php' worked:
$config['smtp_server'] = '127.0.0.1';
$config['smtp_port'] = 25;
$config['smtp_user'] = '';
$config['smtp_pass'] = '';
After updating tcp.smtp to contain:
127.:allow,RELAYCLIENT="",RBLSMTPD="",NOP0FCHECK="1"
I ran 'qmailctl cdb' to rebuild the database.
For the version using port 587, on the other hand, the settings that
worked for me were:
$config['smtp_server'] = 'tls://127.0.0.1';
$config['smtp_port'] = 587;
$config['smtp_user'] = '%u';
$config['smtp_pass'] = '%p';
$config['smtp_conn_options'] = array(
'ssl' => array(
'peer_name' => 'mail.example.com',
'verify_peer' => false,
'verify_peer_name' => false,
'cafile' => '/var/qmail/control/servercert.pem',
),
);
(replace 'mail.example.com' by the name of your mailhost).
As there doesn't seem to be any particular reason to use TLS/port 587
when connection to the webmail clients is already secured via HTTPS, I'm
going with the port 25 approach for now.
Thanks again for your help,
Angus
Remo Mattei wrote on 12/30/19 11:04 PM:
And here is what I have for my config.inc.php
$config['default_host'] = 'localhost';
14 // For example %n = mail.domain.tld, %t = domain.tld
15 $config['smtp_server'] = 'tls://localhost';
16
17 // SMTP port (default is 25; use 587 for STARTTLS or 465 for the
18 // deprecated SSL over SMTP (aka SMTPS))
19 $config['smtp_port'] = 587;
20
21 // SMTP username (if required) if you use %u as the username Roundcube
22 // will use the current username for login
23 $config['smtp_user'] = '%u';
24
25 // SMTP password (if required) if you use %p as the password Roundcube
26 // will use the current user's password for login
27 $config['smtp_pass'] = '%p';
28
29 // provide an URL where a user can get support for this Roundcube
installation
30 // PLEASE DO NOT LINK TO THE ROUNDCUBE.NET WEBSITE HERE!
31 $config['imap_conn_options'] = array(
31 $config['imap_conn_options'] = array(
32 'ssl' => array(
33 'verify_peer' => false,
34 'verfify_peer_name' => false,
35 ),
Hopefully this helps.
Remo
On Dec 30, 2019, at 16:19, Eric Broch <ebr...@whitehorsetc.com> wrote:
This is taken care of by rule in tcp.smtp (which works for squirrelmail) :
127.:allow,RELAYCLIENT="",RBLSMTPD="",NOP0FCHECK="1"
On 12/30/2019 3:03 PM, Angus McIntyre wrote:
I'm still trying to set up an Ansible role for creating a qmailtoaster install,
and I've run into some issues with Roundcube and Squirrelmail (Rainloop works
fine).
Following Eric's advice, I'm using local SMTP for submission, so the Roundcube
'/etc/roundcubemail/config.inc.php' file contains:
$config['smtp_server'] = '127.0.0.1';
$config['smtp_port'] = 25;
$config['smtp_user'] = '';
$config['smtp_pass'] = '';
If I attempt to send, however, the message is rejected with:
SMTP Error (554): Failed to add recipient "some...@somewhere.com"
(Refused. Sending to remote addresses (relaying) is not allowed.).
My guess is that the fix needed here isn't in Roundcube's config, but somewhere
in qmail's: I need to convince qmail that it should accept mail from Roundcube
running locally.
A line from '/var/log/qmail/smtp/current' reads:
CHKUSER accepted sender: from <u...@mydomain.com::> remote
<mail.mydomain.com:unknown:127.0.0.1> rcpt <> : sender accepted
The '/var/qmail/control/locals' file contains:
localhost
s6.mydomain.com
mail.mydomain.com
What have I forgotten to configure to make this work?
I have similar issues with SquirrelMail, but I think that if I can get
Roundcube working then I ought to be able to figure out how to make
Squirrelmail work the same way.
I also tried switching back to port 587, with 'tls://127.0.0.1' as the server,
and sending username and password -- but that gets me a 'STARTTLS failed' error
in the logs. According to https://starttls-everywhere.org/, TLS is working
correctly on my box, but ¯\_(ツ)_/¯ ...
Any suggestions would be welcome. Thank you.
Angus
---------------------------------------------------------------------
To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com
For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com
---------------------------------------------------------------------
To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com
For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com
---------------------------------------------------------------------
To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com
For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com
---------------------------------------------------------------------
To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com
For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com
