Re: [qmailtoaster] Centos 8 Stream minimal install + autoresponder + mirror support
You can use CentOS but we use Rocky or Springdale: Springdale ISO 8.1 on toaster page: https://qmailtoaster.org/ That page for becoming a repo mirror is obsolete since I took over the project. I'll get you the info needed to do that. Eric On Nov 19, 2021, 2:54 PM, at 2:54 PM, Janno Sannik wrote: >1) Is there some guide to have minimal install for latest version and >latest cent8S. I would like to make a conversion from old version, but >I >don't use any of the "frontend" features so I don't need apache, >roundcube,squirrel, vqadmin( we have our own management system >programmed on top of qmail for that). > >I made the install using the script provided, but felt really violated >if all that stuff was installed. Also I don't know what's the total >memory loss because only turning off httpd would give 200MB of ram. > >It kinda would seem that I could bail out on the end of the script to >not have this UI stuff. Just asking some recon info before diving in. > > >2) is autoresponder still filebased ( we re-compiled it with mysql >support so that we could manage it remotely). So I'm thinking if I need > >to recompile that part. > > >3) I would like to become a mirror. I've done my homework on >https://github.com/QMailToaster/qmailtoaster-mirror/blob/master/howto.md > >. ip range: 90.190.106.96/27 > > >Janno
Re: [qmailtoaster] CentOS 8 issues
Thanks!
I'll have a look
On 5/26/2020 7:39 AM, xaf wrote:
Hi Eric,
CentOS 8, fresh install
OVH VPS server (ovh.com)
{send,smtp,smtps,submission}: unable to open supervise/ok: file does not exist
{send,smtp,smtps,submission}/log: unable to open supervise/ok: file does not
exist
systemd service: clamav-daemon.service: [ FAILED ]
systemd service: clamav-daemon.socket: [ FAILED ]
systemd service: dovecot: [ FAILED ]
CentOS 8 minimal install doesn't include firewalld,
chaining SELINUX command to firewalld command not exiting 0,
makes SELINUX keeps enforcing status (default),
therefore svscan can't create supervise files and directories,
dovecot can't link to servercert.pem…
1- don't chain SELINUX to firewalld:
qt_install_cos8.sh:10
- echo -n "Reload firewall settings : " && tput setaf 2 && firewall-cmd --reload &&
tput sgr0 && \
+ echo -n "Reload firewall settings : " && tput setaf 2 && firewall-cmd --reload
&& tput sgr0
2- sendmail
sendmail symbolic link is missing
ln -s /var/qmail/bin/sendmail /usr/sbin/sendmail
3- SSL protocols
Since SSLv3 and TLSv1.0/1/2 are disabled in CentOS 8, some SMTPs fail to connect
TLS_connect_failed:_error:1425F102:SSL_routines:ssl_choose_client_version:unsupported_protocolZConnected_to_193.252.22.65_but_connection_died._(#4.4.2)/
solution is to relax crypto policies
update-crypto-policies --set LEGACY
then reboot,
or edit only /usr/share/crypto-policies/DEFAULT/opensslcnf.txt
set SECLEVEL=1 (to accept DH 1024 key size)
add ECDHE-RSA-AES256-GCM-SHA384 to Ciphersuites (TLSv1.2 cipher)
then systemctl restart sssd.
4- optional queue utilities
add qmt-plus in install command and/or in qmt-centos8.repo.
Thanks
xaf
-
To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com
For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com
-
To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com
For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com
Re: [qmailtoaster] CentOS 8?
Angus, Although, QMT on CentOS 8 (alpaha)is available and works and would most likely work in production, I've still got work to do with most recent TLS patch for QMT concerning which I've been procrastinating. Building from sources Dovecot requires some programs only available in the Fedora repo, and there are those on the Dovecot mailing list waiting for them in the Enterprise Linux repo. So, I'd go with CentOS 7 for now and wouldn't hesitate to install latest version in Development tree. It looks like CentOS 7 will be supported to at least 2024. Eric On 2/27/2020 9:10 AM, Angus McIntyre wrote: I see that CentOS 8 is upon us. What's the recommendation for anyone contemplating a new QMT install: make it the target platform of choice, or stay the hell away from it because QMT support is still bleeding edge? Recommendations gratefully received, Angus - To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com - To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com
