Mail server install questions
Bill Cole
macportsusers-20171215 at billmail.scconsult.com
Sat Sep 7 21:43:16 UTC 2019
On 7 Sep 2019, at 7:48, Gerben Wierda wrote:
> So, I’m back to my (slow) migration of an existing macOS High Sierra
> + Server.app Apple-’supported’ mail server to one based on macOS
> Mojave + Server.app + macports. Server.app is running. DNS is running.
> Users are in OpenDirectory. Their backup home directories (synced with
> clients) are available. Now it’s time to migrate the mail server.
> That is (as on High Sierra): postfix + dovecot + spamassasin + clamav
> + greylisting. But while I’m at it I’d like to enable DMARC at
> least. I’m used to managing the configuration by editing files (such
> as main.cf and master.cf, whitelists, etc.) at the unix level. A
> user-friendly way to manage sieve filtering by end-users would be nice
> (I had roundcube once, have been editing the sieve file by hand since
> then on the server).
I am unaware of any end-user-friendly Sieve management tool other than
the feature in RoundCube. If you find one you like, please consider
making a port for it.
> I have a few questions that arose during preparation (mostly because I
> was unable to find documentation for the port):
> I was looking at available documentation. There is a mail-server
> ‘aggregate’, but it wants X11. Why?
Generic answer: because developers have a weak sense of what system
administration is.
Specific answer: mail-server->gmime->vala->graphviz->X11 (and general
dependency Hell)
I have no idea why mail-server needs gmime. Steven Smith should know, as
it's a direct dependency.
Also, if you want to avoid pulling in the core Haskell "stack" as a
result of how Open-Xchange has chosen to regenerate a handful of
Markdown files in very uncommon circumstances that never include
MacPorts builds, see the patch in
https://trac.macports.org/ticket/58890.
> How do I find out what variants I need.
A port should specify any required variants of its dependencies which
are not defaults.
> Definitely pure,
??? Is that a typo?
> but for instance do I need a variant that can use the local Open
> Directory for authentication (postfix and dovecot) and if so, how do I
> find out?
As Steven has said, that's not an option because OD support in Dovecot
(which provides auth service for Postfix) was an Apple customization.
Their custom code should be in their OSS repository (if it still exists)
and be backportable, if you're into doing such things.
It should be possible to use the LDAP server component of OD as a userdb
and passdb backend for Dovecot. See
https://wiki.dovecot.org/AuthDatabase/LDAP
> Why would I add lucene etc. if all searching and indexing happens on
> the client side (Mail.app, spotlight)?
That's a big "if."
Some clients use server-side IMAP search, some use their own search
facilities and/or those provided by their OS (e.g. Spotlight.) If you
know that all IMAP clients used by your users only use client-side
search, you do not get anything from any of the server-side search
options of Dovecot. If clients DO use servber-siode search, it helps a
great deal to have a server-side index (i.e. Solr.)
> I looked at installs for postfix and I noticed in the last year it has
> been installed only once. Is that right? dovecot2 has 2. dovecot2 has
> no maintainer. I find wiki pages, but then they are often
> unfinished/incomplete. Makes me wonder: is there any volume in this
> community or will I be effectively be the only one?
Postfix is typically very stable, getting a major update annually and
patches in-between only for major bugs & security issues. The MacPorts
port has had 6 updates in 2019, skipping the 3.4.2-3 patchelevels which
came unusually fast. See
https://github.com/macports/macports-ports/commits/master/mail/postfix/Portfile
for details.
The dovecot2 port does have less active maintenance than it should, but
the broader (predominantly Linux) community is huge, the official wiki
(https://wiki.dovecot.org) is reasonably complete and up-to-date, and
development is robustly led by a going commercial entity: Open-Xchange.
The port needs a maintainer, but the software is far from dead.
--
Bill Cole
bill at scconsult.com or billcole at apache.org
(AKA @grumpybozo and many *@billmail.scconsult.com addresses)
More information about the macports-users
mailing list