Look here to see how this is done. In summary, you should open, at least, ports 25 smtp , pop3 and imap in the firewall. Release Log. Added ability to re-enable the Enabler, in case new system updates overwrites the current configuration. Made sending mail and administering a mail server into two distinct pieces, so it's clearer you can use just the first part without using the other.
Also, the configuration for a mail server is slightly different from one that would only support outgoing mail.
Made the changes to reflect that. Finally, the system should now work for Macs that have been upgraded to Panther, rather than via a clean install. Both modes of operation support SSL. An Admin Password is requested only once, on startup. Added ability to set Message Size Limit. There is one bug fix.
This solution was contributed by Andy Black. Also, thanks to Eric Kuo , we now also have a Traditional Chinese interface. Added the ability to look into the mail log, get a summary of the active Postfix configuration, and append custom Postfix parameters to that provided by the user interface. Made one important oft-requested change to where IMAP stores its mailboxes, so that it will work nicely with Mail.
The first version compatible with OS X Tiger Rewrote everything in Objective-C. Window is now re-sizeable. This version helps to put them back. This release fixes it. Thanks, Michel. This version will work also on systems that have been formatted case-sensitive - i. This version accepts admin passwords containing diacriticals like accents and umlauts. Compatibility fix. Conforms to Tiger's new way of launching system services, using launchd.
Clicking Enable Postfix now will shift you over to launchd. Will continue to launch services in the "old" way on Panther. This release also fixes the problem where a PowerBook refuses to go to sleep when running Postfix. Also, the serial number field is now more forgiving of leading and trailing spaces.
Version 1. This is a Universal Binary release. Also, new in 1. This release adds a Japanese localisation, originally undertaken by Chiang Hai Hwee, with a lot of help from Takashi Yoshida thanks Takashi, always in your debt , and also to Makoto Imai for the suggestions for improvement and encouragement. Added a radio button the Relay Mail button in the Mail Server panel for the user to make sure that the server is not acting as an Open Relay when it's placed directly on a broadband line, as opposed to being behind a router or Airport Base Station.
Please support our work by purchasing a serial number before downloading Postfix Enabler. But, if you're already a PayPal user and yet elect to pay by credit card, you'll need to use an alternate email address that isn't linked to your PayPal account. The serial number will be displayed in the browser after payment is completed, and also sent via email. The latest version is 1. Italian - Joram mugroma. Thanks to all of you.
Really appreciate it! Luca Snow Leopard Luca is an accrual-based double-entry accounting system. Hit the Enable Postfix button. And that's it. You can test this using Terminal. First, type in this command: telnet localhost 25 If you see a : Connected to localhost. Now, do a : telnet cutedgesystems. The first panel of Postfix Enabler gives you a few options to get around that. Enter the ISP's mail server address and your userID:password combination, as shown in the example below : Finally, if you want your message to look like it's being sent from a particular domain and avoid the " May be forged " headers that some ISPs' servers tag onto it , enter that doman name into the Masquerade As field.
The last field on Panel 1 is the Message Size Limit. Set to 0 for no limit. Setting Up Mail. If you use Eudora or Entourage, you can set them up in a similar way. Setting up POP3 and IMAP Services It's important to realise at this point that you need to set up user accounts on the mail server to collect and act as diistribution points for the in-coming mail. Hit the Restart Postfix button. Check that it works Assuming that my domain name is cutedgesystems.
The next step is to share the mail server with all the other machines on your network. Via Internet Sharing The second way to share an Internet connection is to turn on Internet Sharing on the mail server machine. Use Postfix Enabler, look for the Access field, and enter the following into a new line in the Access field : Via a Router The third way to share an Internet connection is via a router.
Use Postfix Enabler, look for the Access field, and enter the following into a new line in the Access field: Other uses for the Access field The Access field can be used to blacklist individual mail senders from sending mail to your site, or even entire domains.
Forward mail without valid recipients to - the Catch-All mailbox You can choose who, among your users, gets to be swamped by mail that has been sent to no one with that name on your server. The Additional Domain Names Field If your server hosts more than one domain, you can list the additional domains in this field separated by commas so that Postfix knows that it has to accept messages sent to these domains.
Relay Mail From - the server machine only or all machines on subnet This option allows you to prevent your Mac acting as an open relay if you've placed it directly on a broadband line.
The Custom Postfix Settings field This is meant to allow experienced Postfix users to add their own modifications to the Postfix configuration that have not been taken care of by the Postfix Enabler user interface.
Addtional Note for Outbound Mail If you're running a mail server and your ISP requires you to go through their mail server for outbound mail, enter their server name into the Smart Host field otherwise leave it blank on the Send Mail panel. You need to make sure you enter the same User Name and Password combination that you gave to this user, using the server's OS X System Preferences panel : SASLDB is considered to be more secure because passwords are never sent down the wire, only tokens.
Release Log 1. Postfix Enabler 1. Released with a POP server. Added the ability to turn on or off SSL mode. Added the ability to look into the mail log, get a summary of the active Postfix configuration, and append custom Postfix parameters to that provided by the user interface 1.
We build commercial-quality software at shareware prices. PayPal will accept all credit cards. Download : PostfixEnabler. If you run Postfix on a virtual network interface, or if your machine runs other mailers on virtual interfaces, you'll have to look at the other parameters listed here as well:.
The two most important files are main. Giving someone else write permission to main. Postfix configuration parameters resemble shell variables, with two important differences: the first one is that Postfix does not know about quotes like the UNIX shell does. The Postfix configuration language uses lazy evaluation, and does not look at a parameter value until it is needed at runtime.
Postfix uses database files for access control, address rewriting and other purposes. Here is a common example of how Postfix invokes a database:. Whenever you make a change to the main.
The myorigin parameter specifies the domain that appears in mail that is posted on this machine. For the sake of consistency between sender and recipient addresses, myorigin also specifies the domain name that is appended to an unqualified recipient address.
The mydestination parameter specifies what domains this machine will deliver locally, instead of forwarding to another machine. The default is to receive mail for the machine itself. By default, Postfix will forward mail from clients in authorized network blocks to any destination. Authorized networks are defined with the mynetworks configuration parameter. The current default is to authorize the local machine only. Prior to Postfix 3. Postfix can also be configured to relay mail from "mobile" clients that send mail from outside an authorized network block.
You can specify the trusted networks in the main. The default is to let Postfix do the work. On Linux, this works correctly only with interfaces specified with the "ifconfig" or "ip" command. Don't do this with a dialup site - it would cause Postfix to "trust" your entire provider's network. Instead, specify an explicit mynetworks list by hand, as described below. You can also specify the absolute pathname of a pattern file instead of listing the patterns in the main.
By default, Postfix will forward mail from strangers clients outside authorized networks to authorized remote destinations only. The default is to authorize all domains and subdomains of the domains listed with the mydestination parameter. By default, Postfix tries to deliver mail directly to the Internet. It's important to realise at this point that you need to set up user accounts on the mail server to collect and act as distribution points for the in-coming mail.
Once you've created your user accounts on the server, you can choose between two different mechanisms that will allow your mail users to download their in-coming mail to whatever machine they happen to be using as their workstation.
POP3 is a simple mechanism for transferring mail to a mail client software like Eudora, Mail. IMAP is a "smarter" system because you can use more than one machine to read your mail and the state of your mail box is synchronised across all these machines in terms of the messages last read, state of drafts, etc. So, next, you will need to enable either POP3 or IMAP services or both so that all the machines and users on your network can retrieve their incoming mail.
Assuming that my domain name is cutedgesystems. Test it first on the local machine, i. The User Name and Password fields will correspond with the name and password of a user you had created using the Systems Preferences - Accounts Panel on the server machine.
When you are ready, use Mail to send mail out to anybody you know and see if you can get a reply. The replies will come back to the same server. The Access field can be used to blacklist individual mail senders from sending mail to your site, or even entire domains. It can also be used to stop mail from reaching a particular user account on your system, e. Imagine that Brendan has left the company but he was subscribing to lots of mailing lists.
The above setting in the Access field will bounce all mail for brendan back to the sender. Note : use brendan as a wild card setting, if you're receiving mail for more than one domain. If you want to specify that you want to block Brendan's mail for just one specific domain, use brendan cutedgesystems. Some required entries for Aliases are already created for you. Each site needs to have a Postmaster and a Root user so that other ISPs and you own system processes can contact a responsible person when they find problems with your system.
When senders find that their messages have bounced, they may need to contact someone for clarification. The first line in the example, below, shows that you can create e-mail groups quickly by entering a group name on the left-hand side of an Alias entry, and entering a series of user names, separated by commas, on the right-hand side, which can include users from other domains.
The last line in the example, above, shows another way of creating e-mail groups - by pointing the mail server to a file that contains a list of e-mail addresses, with one address on each line.
You can choose who, among your users, gets to be swamped by mail that cannot find a valid user on your server. If you elect not to nominate anyone, all these messages will be bounced back to the sender. If your server hosts more than one domain, you can list the additional domains in this field separated by commas so that Postfix knows that it has to accept messages sent to these domains. Make sure that these domain names work first and that they're also pointing correctly to your server machine.
Ordinarily, there is no separation between users into particular domains. For example, on my server, mail for bernard cutedgesystems. To get mail for sales cutedgesystems. This option allows you to prevent your Mac acting as an open relay if you've placed it directly on a broadband line.
The default setting is to allow all machines on the same subnet as the server to relay mail through it without needing to authenticate, which is convenient for getting a shared server up quickly.
But if you've placed the server directly on a broadband or dial-up line, then you will have all machines sitting on your ISP's network becoming your local network, inadvertently creating an open relay.
Clicking on the "Relay Mail From : only clients who authenticate" choice will close up the open relay. If you need to still allow mail relay from known users, turn on authentication.
This will be the safest option. This is meant to allow experienced Postfix users to add their own modifications to the Postfix configuration that have not been taken care of by the MailServe user interface. These will not be over-written when you do a Restart Postfix. Set to 0 for no limit, which may be useful for people running Fetchmail.
The default is about 50 MB. This allows the server administrator to open more ports beside port 25 for mail clients to contact it. For example, it may be useful to add port and also , separated by a comma. This way, if your users happen to be on a network that blocks outgoing mail from using port 25, your users would still be able to relay mail out your server by switching their mail clients to use either port or You can also use this field to open more ports for other mail servers to contact your server, to deliver mail to it.
For example, you may be attempting to set up a mail server on a network whose ISP blocks incoming port This way, no other mail servers will be able to deliver mail to your server.
There is a way around this, that people using DynDNS. But you need to open an alternate port that MailHop can use to contact your server check the dyndns. If you have more than one, you should separate them by commas.
Such sites include bl. You can choose from among a lot more if you search Google. Ordinarily, even if you receive mail for two domains - domainA. You need to create two separate user accounts on the server first, say, brendan and beekhim, respectively. Then make sure that the two domains, domainA. Note that you can also add an entry for sales for the primary domain i. The messages for sales domainB. This allows the mail server to be accessed remotely only by authorised users, whose name:password combinations have been registered with the server.
By default, machines on the local network need not authenticate to send mail through the server. You can force everybody to authenticate by choosing the "Relay Mail from : Only clients who authenticate" option.
This is especially important if you've placed your server directly on the broadband line, instead of behind a router or Airport Base Station, in which case all the other machines on your ISP's network becomes your "local" network! The safest practise is to turn on SMTP authentication, as shown below. The first method is so simple to use. It authenticates against the Mac's built-in user account management - so you maintain just one set of passwords, using System Preferences.
Turn it on and you're done. But the downside is that passwords are sent in the clear, unless you turn on SSL encryption, as shown below and explained in the SSL section. In Mail. You need to make sure you enter the same User Name and Password combination that you gave to this user, using the server's OS X System Preferences panel :.
The second method, SASLDB, is considered to be more secure because passwords are never sent down the wire, only tokens. If you choose to turn on SMTP Authentication via SASLDB, you will need to provide the server with a list of username:password combinations, for each user who will be needing to send mail remotely through the server. Enter the username:password combination that was registered for this user on the server. You can create test self-signed certs to test the SSL connection to and from the mail server.
You can always replace them with "real" certs, of the same name, in the future. You can require SSL be set in the mail client before your server will agree to relay mail for it. Just check the Require SSL option.
0コメント