From adb38207ad35101bb01ce21621baa1c342fa205d Mon Sep 17 00:00:00 2001 From: Georg Lauterbach <44545919+georglauterbach@users.noreply.github.com> Date: Sat, 8 Apr 2023 23:54:35 +0200 Subject: [PATCH] add a note about TLS to "Usage" page (#3236) --- docs/content/usage.md | 14 ++++++++++---- 1 file changed, 10 insertions(+), 4 deletions(-) diff --git a/docs/content/usage.md b/docs/content/usage.md index 4d845eaf..fbda6e09 100644 --- a/docs/content/usage.md +++ b/docs/content/usage.md @@ -45,9 +45,9 @@ Now let's say you just bought `example.com` and you want to be able to send and We will later dig into DKIM, DMARC & SPF, but for now, these are the records that suffice in getting you up and running. Here is a short explanation of what the records do: - The **MX record** tells everyone which (DNS) name is responsible for e-mails on your domain. - Because you want to keep the option of running another service on the domain name itself, you run your mail server on `mail.example.com`. - This does not imply your e-mails will look like `test@mail.example.com`, the DNS name of your mail server is decoupled of the domain it serves e-mails for. - In theory, you mail server could even serve e-mails for `test@some-other-domain.com`, if the MX record for `some-other-domain.com` points to `mail.example.com`. + Because you want to keep the option of running another service on the domain name itself, you run your mail server on `mail.example.com`. + This does not imply your e-mails will look like `test@mail.example.com`, the DNS name of your mail server is decoupled of the domain it serves e-mails for. + In theory, you mail server could even serve e-mails for `test@some-other-domain.com`, if the MX record for `some-other-domain.com` points to `mail.example.com`. - The **A record** tells everyone which IP address the DNS name `mail.example.com` resolves to. - The **PTR record** is the counterpart of the A record, telling everyone what name the IP address `11.22.33.44` resolves to. @@ -142,6 +142,12 @@ On first start, you will need to add at least one email account (unless you're u ## Further Miscellaneous Steps +### Setting up TLS + +You definitely want to setup TLS. Please refer to [our documentation about TLS][docs-tls]. + +[docs-tls]: ./config/security/ssl.md + ### Aliases You should add at least one [alias][docs-aliases], the [_postmaster alias_][docs-env-postmaster]. This is a common convention, but not strictly required. @@ -165,7 +171,7 @@ When keys are generated, you can configure your DNS server by just pasting the c !!! note In case you're using LDAP, the setup looks a bit different as you do not add user accounts directly. Postfix doesn't know your domain(s) and you need to provide it when configuring DKIM: - + ``` BASH docker exec -ti setup config dkim domain '[,]' ```