{ "version": "https:\/\/jsonfeed.org\/version\/1.1", "title": "IT science: заметки с тегом Postfix", "_rss_description": "IT science — статьи и инструкции из мира IT", "_rss_language": "ru", "_itunes_email": "", "_itunes_categories_xml": "", "_itunes_image": "", "_itunes_explicit": "", "home_page_url": "https:\/\/itscience.pro\/tags\/postfix\/", "feed_url": "https:\/\/itscience.pro\/tags\/postfix\/json\/", "icon": "https:\/\/itscience.pro\/pictures\/userpic\/userpic@2x.jpg?1658757154", "authors": [ { "name": "IT science", "url": "https:\/\/itscience.pro\/", "avatar": "https:\/\/itscience.pro\/pictures\/userpic\/userpic@2x.jpg?1658757154" } ], "items": [ { "id": "45", "url": "https:\/\/itscience.pro\/all\/chistim-pochtovy-server-ot-staryh-rassylok\/", "title": "Чистим почтовый сервер от старых рассылок", "content_html": "

Что-то много мусора накопилось в ящиках пользователей.
\nМожно удалить старые письма (рассылки), которые потеряли свою актуальность.<\/p>\n

Опираться будем на уникальное содержимое письма. И возраст файла.<\/p>\n

например, ищем строку «Return-Path: »
\nи пусть, файл будет страше 30 дней<\/p>\n

получается скрипт:<\/p>\n

find \/var\/vmail\/ -type f -mtime +30 -exec grep -Ilr "Return-Path: <user@domain.ru>"  {} \\;<\/code><\/pre>
где «\/var\/vmail\/» — путь к хранилищу писем<\/p>\n
выполнив эту команду получим список нужных нам файлов, без удаления<\/p>\n
а теперь, просто допишем в конец команду для удаления<\/p>\n
find \/var\/vmail\/ -type f -mtime +30 -exec grep -Ilr "Return-Path: <user@domain.ru>"  {} \\; | xargs rm<\/code><\/pre>
всё<\/p>\n",
            "date_published": "2022-09-06T10:49:01+03:00",
            "date_modified": "2022-09-06T10:48:54+03:00",
            "tags": [
                "find",
                "linux",
                "Postfix"
            ],
            "_date_published_rfc2822": "Tue, 06 Sep 2022 10:49:01 +0300",
            "_rss_guid_is_permalink": "false",
            "_rss_guid": "45",
            "_e2_data": {
                "is_favourite": false,
                "links_required": [
                    "highlight\/highlight.js",
                    "highlight\/highlight.css"
                ],
                "og_images": []
            }
        },
        {
            "id": "30",
            "url": "https:\/\/itscience.pro\/all\/lechim-pochtovye-vlozheniya-winmail-dat\/",
            "title": "лечим почтовые вложения winmail.dat",
            "content_html": "
Проблема древняя и как водится связана с попыткой Microsoft навязывать свои стандарты. Откуда берется почтовое вложение winmail.dat вы можете почитать тут: https:\/\/support.mozilla.org\/ru\/kb\/chto-oznachaet-vlozhenie-winmaildat<\/a><\/p>\n
сегодня мы решим эту проблему глобально, прокачаем наш postfix сервер<\/p>\n
    \n
  1. Установим MIMEDefang.<\/li>\n<\/ol>\n
    \n
    для CentOS<\/p>\n<\/blockquote>\n
    yum install mimedefang<\/code><\/pre>
    \n
    для Ubuntu<\/p>\n<\/blockquote>\n
    apt-get install mimedefang<\/code><\/pre>
      \n
    1. Настроим MIMEDefang на определенный порт TCP, наша служба будет слушать этот порт. Для этого исправим конфигурацию<\/li>\n<\/ol>\n
      \n
      для CentOS: \/etc\/sysconfig\/mimedefang
      \nдля Ubuntu: \/etc\/default\/mimedefang<\/p>\n<\/blockquote>\n
      \n
      дописываем в конце<\/p>\n<\/blockquote>\n
      SOCKET=inet:10185<\/code><\/pre>
        \n
      1. Отредактируем файл  \/etc\/mail\/mimedefang-filter<\/b>, можете просто вставить текст ниже<\/li>\n<\/ol>\n
        # -*- Perl -*-\n#***********************************************************************\n#\n# mimedefang-filter\n#\n# Suggested minimum-protection filter for Microsoft Windows clients, plus\n# SpamAssassin checks if SpamAssassin is installed.\n#\n# Copyright (C) 2002 Roaring Penguin Software Inc.\n#\n# This program may be distributed under the terms of the GNU General\n# Public License, Version 2, or (at your option) any later version.\n#\n# $Id$\n#***********************************************************************\n\n#***********************************************************************\n# Set administrator's e-mail address here.  The administrator receives\n# quarantine messages and is listed as the contact for site-wide\n# MIMEDefang policy.  A good example would be 'defang-admin@mydomain.com'\n#***********************************************************************\n$AdminAddress = 'postmaster@localhost';\n$AdminName = "MIMEDefang Administrator's Full Name";\n\n#***********************************************************************\n# Set the e-mail address from which MIMEDefang quarantine warnings and\n# user notifications appear to come.  A good example would be\n# 'mimedefang@mydomain.com'.  Make sure to have an alias for this\n# address if you want replies to it to work.\n#***********************************************************************\n$DaemonAddress = 'mimedefang@localhost';\n\n#***********************************************************************\n# If you set $AddWarningsInline to 1, then MIMEDefang tries *very* hard\n# to add warnings directly in the message body (text or html) rather\n# than adding a separate "WARNING.TXT" MIME part.  If the message\n# has no text or html part, then a separate MIME part is still used.\n#***********************************************************************\n$AddWarningsInline = 0;\n\n#***********************************************************************\n# To enable syslogging of virus and spam activity, add the following\n# to the filter:\n# md_graphdefang_log_enable();\n# You may optionally provide a syslogging facility by passing an\n# argument such as:  md_graphdefang_log_enable('local4');  If you do this, be\n# sure to setup the new syslog facility (probably in \/etc\/syslog.conf).\n# An optional second argument causes a line of output to be produced\n# for each recipient (if it is 1), or only a single summary line\n# for all recipients (if it is 0.)  The default is 1.\n# Comment this line out to disable logging.\n#***********************************************************************\nmd_graphdefang_log_enable('mail', 1);\n\n#***********************************************************************\n# Uncomment this to block messages with more than 50 parts.  This will\n# *NOT* work unless you're using Roaring Penguin's patched version\n# of MIME tools, version MIME-tools-5.411a-RP-Patched-02 or later.\n#\n# WARNING: DO NOT SET THIS VARIABLE unless you're using at least\n# MIME-tools-5.411a-RP-Patched-02; otherwise, your filter will fail.\n#***********************************************************************\n# $MaxMIMEParts = 50;\n\n#***********************************************************************\n# Set various stupid things your mail client does below.\n#***********************************************************************\n\n# Set the next one if your mail client cannot handle multiple "inline"\n# parts.\n$Stupidity{"NoMultipleInlines"} = 0;\n\n# Detect and load Perl modules\ndetect_and_load_perl_modules();\n\n\nsub filter {\n    my($entity, $fname, $ext, $type) = @_;\n \n    ### Convert TNEF winmail.dat format\n    ### Note: You must install Convert::TNEF and File::Type from CPAN before using this script\n    if (lc($type) eq "application\/ms-tnef" or lc($fname) eq "winmail.dat" ) {\n        use Convert::TNEF;\n        use File::Type;\n        use File::Temp qw(tempfile tempdir);\n \n        # Create a unique temporary directory under "\/tmp"\n        my $tnefdir = tempdir(CLEANUP => 1, DIR => "\/tmp");\n        if (not $tnefdir) {\n                md_graphdefang_log('tnef_fail',"Unable to create temporary directory");\n                return action_accept();\n        }\n \n        # If we can't Convert the TNEF file for some reason, just accept the attachment and log the error\n        my $tnef = Convert::TNEF->read_ent($entity,{output_dir=>"$tnefdir"});\n        if (not $tnef) {\n                md_graphdefang_log('tnef_fail',$Convert::TNEF::errstr);\n                return action_accept();\n        }\n \n        my $ft = File::Type->new();\n \n        # Append attachments contained in the winmail.dat file to the message.\n        for ($tnef->attachments) {\n             # Determine the mime-type of the file\n             my $mimetype = $ft->mime_type($_->data);\n \n                # File::Type doesn't detect text files well, this is a workaround\n             if ($mimetype eq "application\/octet-stream") {\n                  #Set the mime-type to text\/plain if the first 1024 characters are printable\n                  $text_check = substr($_->data,0,1024);\n                  $mimetype = "text\/plain" unless $text_check =~ \/[^[:print:]s]\/;\n             }\n \n             my $tnef_entity = action_add_part($entity, "$mimetype", "base64", $_->data, $_->longname, "attachment");\n             md_graphdefang_log('tnef_ext', "File: " . $_->longname . " Type: $mimetype");\n \n             # Run each new TNEF-sourced MIME part back through the filter again, this ensures that bad filenames etc.\n             # cannot sneak through by being contained in winmail.dat files\n \n             filter ($tnef_entity, $_->longname, "", "$mimetype");\n        }\n \n        # Deletes working files\n        $tnef->purge;\n\n \n        # Remark this if you want still want to keep the original winmail.dat file\n        return action_drop();\n    }\n \n    # Keep the attachment\n    return action_accept();\n}\n\n# DO NOT delete the next line, or Perl will complain.\n1;<\/code><\/pre>
          \n
        1. Установим модели Perl  Convert::TNEF<\/b> и File::Type<\/b><\/li>\n<\/ol>\n
          \n
          для CentOS<\/p>\n<\/blockquote>\n
          yum install perl-Convert-TNEF.noarch<\/code><\/pre>
          \n
          второй пакет надо скачать и установить<\/p>\n<\/blockquote>\n
          wget https:\/\/ftp.tu-chemnitz.de\/pub\/linux\/dag\/redhat\/el6\/en\/x86_64\/rpmforge\/RPMS\/perl-File-Type-0.22-1.el6.rf.noarch.rpm<\/code><\/pre>
          yum install perl-File-Type-0.22-1.el6.rf.noarch.rpm<\/code><\/pre>
          \n
          для Ubuntu<\/p>\n<\/blockquote>\n
          apt-get install libconvert-tnef-perl<\/code><\/pre>
          apt-get install libfile-type-perl<\/code><\/pre>
            \n
          1. Проверим синтаксис Perl<\/li>\n<\/ol>\n
            # perl -c \/etc\/mail\/mimedefang-filter<\/code><\/pre>
              \n
            1. Настроим автозапуск службы MIMEDefang и запустим ее<\/li>\n<\/ol>\n
              systemctl enable mimedefang.service<\/code><\/pre>
              service mimedefang restart<\/code><\/pre>
                \n
              1. Проверим, слушает ли сервис указанный выше порт<\/li>\n<\/ol>\n
                # netstat -tlpn | grep 10185\ntcp        0      0 0.0.0.0:10185           0.0.0.0:*               LISTEN      7401\/mimedefang<\/code><\/pre>
                  \n
                1. Теперь добавим проверку в Postfix, для этого откроем конфиг \/etc\/postfic\/main.cf<\/b><\/li>\n<\/ol>\n
                  \n
                  и допишем в конце<\/p>\n<\/blockquote>\n
                  smtpd_milters = inet:localhost:10185\nmilter_default_action = accept<\/code><\/pre>
                  готово! Любое письмо, которое будет иметь во вложении winmail.dat, будет обработано нашей службой и вложение будет расшифровано!<\/p>\n",
            "date_published": "2020-12-21T11:47:09+03:00",
            "date_modified": "2020-12-21T11:46:58+03:00",
            "tags": [
                "MIMEDefang",
                "Perl",
                "Postfix",
                "winmail.dat"
            ],
            "_date_published_rfc2822": "Mon, 21 Dec 2020 11:47:09 +0300",
            "_rss_guid_is_permalink": "false",
            "_rss_guid": "30",
            "_e2_data": {
                "is_favourite": false,
                "links_required": [
                    "highlight\/highlight.js",
                    "highlight\/highlight.css"
                ],
                "og_images": []
            }
        },
        {
            "id": "25",
            "url": "https:\/\/itscience.pro\/all\/mail-server-i-mail-station\/",
            "title": "Mail Server и Mail Station",
            "content_html": "
                  Из бесплатных решений у synology есть два пакета, почтовый сервер на базе Postfix и пользовательский web клиент.<\/p>\n
                  \n\"\"\n<\/div>\n
                  давайте рассмотрим функционал сервера<\/p>\n
                  \n\"\"\n<\/div>\n