docker-mailserver/README.md

# docker-mailserver

A fullstack but simple mail server (smtp, imap, antispam, antivirus...).  
Only configuration files, no SQL database. Keep it simple and versioned.  
Easy to deploy and upgrade.  

Includes:

- postfix with smtp auth
- courier-imap with ssl support
- amavis
- spamassasin
- clamav with automatic updates

Additional informations:

- only config files, no *sql database required
- mails are stored in `/var/mail/${domain}/${username}`
- you should use a data volume container for `/var/mail` for data persistence
- email login are full email address (`username1@my-domain.com`)
- user accounts are managed in `./postfix/accounts.cf`
- aliases and fowards/redirects are managed in `./postfix/virtual`
- antispam rules are managed in `./spamassassin/rules.cf`
- files must be mounted to `/tmp` in your container (see `docker-compose.yml` template)
- ssl is strongly recommended, you can provide a self-signed certificate, see below

## installation

	docker pull tvial/docker-mailserver

## build

	docker build -t tvial/docker-mailserver .

## run

	docker run --name mail -v "$(pwd)/postfix":/tmp/postfix -v "$(pwd)/spamassassin":/tmp/spamassassin -p "25:25" -p "143:143" -p "587:587" -p "993:993" -h mail.my-domain.com -t tvial/docker-mailserver

## docker-compose template (recommended)

	mail:
	  # image: tvial/docker-mailserver
	  build: .
	  hostname: mail
	  domainname: my-domain.com
	  ports:
	  - "25:25"
	  - "143:143"
	  - "587:587"
	  - "993:993"
	  volumes:
	  - ./spamassassin:/tmp/spamassassin/
	  - ./postfix:/tmp/postfix/

Volumes allow to:

- Insert custom antispam rules
- Manage mail users, passwords and aliases
- Manage SSL certificates

# usage

	docker-compose up -d mail

# configure ssl

## generate self-signed ssl certificate

You can easily generate a self-signed SSL certificate by using the following command:

	docker run -ti --rm -v "$(pwd)"/postfix/ssl:/ssl -h mail.my-domain.com -t tvial/docker-mailserver generate-ssl-certificate

	# Press enter
	# Enter a password when needed
	# Fill information like Country, Organisation name
	# Fill "mail.my-domain.com" as FQDN
	# Don't fill extras
	# Enter same password when needed
	# Sign the certificate? [y/n]:y
	# 1 out of 1 certificate requests certified, commit? [y/n]y

	# will generate:
	# postfix/ssl/mail.my-domain.com-key.pem (used in postfix)
	# postfix/ssl/mail.my-domain.com-req.pem (only used to generate other files)
	# postfix/ssl/mail.my-domain.com-cert.pem (used in postfix)
	# postfix/ssl/mail.my-domain.com-combined.pem (used in courier)
	# postfix/ssl/demoCA/cacert.pem (certificate authority)

Note that the certificate will be generate for the container `fqdn`, that is passed as `-h` argument.

## configure ssl certificate (convention over configuration)

If a matching certificate (files listed above) is found in `postfix/ssl`, it will be automatically setup in postfix and courier-imap-ssl. You just have to place them in `postfix/ssl` folder.

# client configuration

	# imap
	username:  				<username1@my-domain.com>
	password:  				<username1password>
	server:    				<your-server-ip-or-hostname>
	imap port: 				143 or 993 with ssl (recommended)
	imap path prefix:		INBOX
	auth method:			md5 challenge-response

	# smtp
	smtp port:				25 or 587 with ssl (recommended)
	username:  				<username1@my-domain.com>
	password:  				<username1password>
	auth method:			md5 challenge-response

# todo

Things to do or to improve are stored on [Github](https://github.com/tomav/docker-mailserver/issues), some open by myself.
Feel free to improve this docker image.

# wanna help?

Fork, improve and PR. ;-)
Added basic README. 2015-03-28 16:04:09 +01:00			`# docker-mailserver`

Improved markdown style. 2015-06-29 14:57:08 +02:00			`A fullstack but simple mail server (smtp, imap, antispam, antivirus...).`
			`Only configuration files, no SQL database. Keep it simple and versioned.`
			`Easy to deploy and upgrade.`
Working image. 2015-03-28 16:44:40 +01:00
			`Includes:`
Simplified configurations 2015-03-29 14:07:56 +02:00
Now postfix configuration is generic. 2015-03-31 17:28:13 +02:00			`- postfix with smtp auth`
Added SSL for courier-imap using courier-imap-ssl. Fixed /etc/postfix/vhost issue. 2015-03-31 19:31:18 +02:00			`- courier-imap with ssl support`
Now postfix configuration is generic. 2015-03-31 17:28:13 +02:00			`- amavis`
Working image. 2015-03-28 16:44:40 +01:00			`- spamassasin`
Improved documentation (added client configuration) 2015-06-29 14:55:54 +02:00			`- clamav with automatic updates`
Working image. 2015-03-28 16:44:40 +01:00
Now postfix configuration is generic. 2015-03-31 17:28:13 +02:00			`Additional informations:`

			`- only config files, no *sql database required`
			- mails are stored in `/var/mail/${domain}/${username}`
Removed "docker_mail_domain" env. variable to use docker hostname and improved documentation for #13 2015-08-17 22:16:08 +02:00			- you should use a data volume container for `/var/mail` for data persistence
Added SSL for courier-imap using courier-imap-ssl. Fixed /etc/postfix/vhost issue. 2015-03-31 19:31:18 +02:00			- email login are full email address (`username1@my-domain.com`)
Improved documentation to fix #9 2015-07-27 10:00:53 +02:00			- user accounts are managed in `./postfix/accounts.cf`
Improved documentation related to #11 2015-08-10 12:20:50 +02:00			- aliases and fowards/redirects are managed in `./postfix/virtual`
Fixed typo. 2015-08-19 15:59:04 +02:00			- antispam rules are managed in `./spamassassin/rules.cf`
Update README.md 2015-08-05 13:35:22 +02:00			- files must be mounted to `/tmp` in your container (see `docker-compose.yml` template)
Improved documentation 2015-08-19 16:13:56 +02:00			`- ssl is strongly recommended, you can provide a self-signed certificate, see below`
Working image. 2015-03-28 16:44:40 +01:00
Added basic README. 2015-03-28 16:04:09 +01:00			`## installation`

Working image. 2015-03-28 16:44:40 +01:00			`docker pull tvial/docker-mailserver`
Added basic README. 2015-03-28 16:04:09 +01:00
			`## build`

			`docker build -t tvial/docker-mailserver .`

Fixes #5 => added how to run without docker-compose 2015-05-06 00:12:36 +02:00			`## run`

Removed "docker_mail_domain" env. variable to use docker hostname and improved documentation for #13 2015-08-17 22:16:08 +02:00			`docker run --name mail -v "$(pwd)/postfix":/tmp/postfix -v "$(pwd)/spamassassin":/tmp/spamassassin -p "25:25" -p "143:143" -p "587:587" -p "993:993" -h mail.my-domain.com -t tvial/docker-mailserver`
Fixes #5 => added how to run without docker-compose 2015-05-06 00:12:36 +02:00
			`## docker-compose template (recommended)`
Added basic README. 2015-03-28 16:04:09 +01:00
			`mail:`
Fixes #8 - BC BREAK - User configuration is no longer in docker-compose.yml to make it easier to maintain 2015-07-16 19:35:11 +02:00			`# image: tvial/docker-mailserver`
			`build: .`
Added basic README. 2015-03-28 16:04:09 +01:00			`hostname: mail`
			`domainname: my-domain.com`
			`ports:`
			`- "25:25"`
			`- "143:143"`
			`- "587:587"`
			`- "993:993"`
Fixes #8 - BC BREAK - User configuration is no longer in docker-compose.yml to make it easier to maintain 2015-07-16 19:35:11 +02:00			`volumes:`
Removed "docker_mail_domain" env. variable to use docker hostname and improved documentation for #13 2015-08-17 22:16:08 +02:00			`- ./spamassassin:/tmp/spamassassin/`
			`- ./postfix:/tmp/postfix/`
Fixes #8 - BC BREAK - User configuration is no longer in docker-compose.yml to make it easier to maintain 2015-07-16 19:35:11 +02:00
			`Volumes allow to:`

			`- Insert custom antispam rules`
			`- Manage mail users, passwords and aliases`
Improved documentation 2015-08-19 16:13:56 +02:00			`- Manage SSL certificates`
Fixes #8 - BC BREAK - User configuration is no longer in docker-compose.yml to make it easier to maintain 2015-07-16 19:35:11 +02:00
			`# usage`
Improved documentation related to #11 2015-08-10 12:20:50 +02:00
			`docker-compose up -d mail`
Improved documentation (added client configuration) 2015-06-29 14:55:54 +02:00
Added a way to generate and configure a specific SSL certificate for postfix #14 2015-08-18 13:13:08 +02:00			`# configure ssl`

Improved documentation about SSL certs. which are self-signed 2015-08-19 10:08:43 +02:00			`## generate self-signed ssl certificate`
Added a way to generate and configure a specific SSL certificate for postfix #14 2015-08-18 13:13:08 +02:00
Improved documentation about SSL certs. which are self-signed 2015-08-19 10:08:43 +02:00			`You can easily generate a self-signed SSL certificate by using the following command:`
Added a way to generate and configure a specific SSL certificate for postfix #14 2015-08-18 13:13:08 +02:00
			`docker run -ti --rm -v "$(pwd)"/postfix/ssl:/ssl -h mail.my-domain.com -t tvial/docker-mailserver generate-ssl-certificate`

Improved documentation for #14 2015-08-18 20:49:49 +02:00			`# Press enter`
			`# Enter a password when needed`
			`# Fill information like Country, Organisation name`
			`# Fill "mail.my-domain.com" as FQDN`
			`# Don't fill extras`
			`# Enter same password when needed`
			`# Sign the certificate? [y/n]:y`
			`# 1 out of 1 certificate requests certified, commit? [y/n]y`

Added a way to generate and configure a specific SSL certificate for postfix #14 2015-08-18 13:13:08 +02:00			`# will generate:`
Improved documentation for #14 2015-08-18 20:49:49 +02:00			`# postfix/ssl/mail.my-domain.com-key.pem (used in postfix)`
Added better check on self-signed certs. for #14 2015-08-19 15:47:20 +02:00			`# postfix/ssl/mail.my-domain.com-req.pem (only used to generate other files)`
Improved documentation for #14 2015-08-18 20:49:49 +02:00			`# postfix/ssl/mail.my-domain.com-cert.pem (used in postfix)`
Added better check on self-signed certs. for #14 2015-08-19 15:47:20 +02:00			`# postfix/ssl/mail.my-domain.com-combined.pem (used in courier)`
			`# postfix/ssl/demoCA/cacert.pem (certificate authority)`
Added a way to generate and configure a specific SSL certificate for postfix #14 2015-08-18 13:13:08 +02:00
			Note that the certificate will be generate for the container `fqdn`, that is passed as `-h` argument.

			`## configure ssl certificate (convention over configuration)`

Added better check on self-signed certs. for #14 2015-08-19 15:47:20 +02:00			If a matching certificate (files listed above) is found in `postfix/ssl`, it will be automatically setup in postfix and courier-imap-ssl. You just have to place them in `postfix/ssl` folder.
Added a way to generate and configure a specific SSL certificate for postfix #14 2015-08-18 13:13:08 +02:00
Improved documentation (added client configuration) 2015-06-29 14:55:54 +02:00			`# client configuration`

			`# imap`
			`username: <username1@my-domain.com>`
			`password: <username1password>`
			`server: <your-server-ip-or-hostname>`
			`imap port: 143 or 993 with ssl (recommended)`
Text formating 2015-07-01 14:10:52 +02:00			`imap path prefix: INBOX`
Improved documentation (added client configuration) 2015-06-29 14:55:54 +02:00			`auth method: md5 challenge-response`

			`# smtp`
			`smtp port: 25 or 587 with ssl (recommended)`
			`username: <username1@my-domain.com>`
			`password: <username1password>`
			`auth method: md5 challenge-response`

Added information about issues. 2015-03-31 22:21:44 +02:00			`# todo`

			`Things to do or to improve are stored on [Github](https://github.com/tomav/docker-mailserver/issues), some open by myself.`
			`Feel free to improve this docker image.`

Working image. 2015-03-28 16:44:40 +01:00			`# wanna help?`

Improved documentation (added client configuration) 2015-06-29 14:55:54 +02:00			`Fork, improve and PR. ;-)`