Mudanças entre as edições de "IRedMail com Nginx"

De MochilaWiki
Ir para navegaçãoIr para pesquisar
 
(13 revisões intermediárias pelo mesmo usuário não estão sendo mostradas)
Linha 1: Linha 1:
Depois de instalar o [[Iredmail]] e o [[Nginx]] faça:
+
==instalando==
 +
<source lang="bash">
 +
echo deb http://nginx.org/packages/debian/ wheezy nginx >> /etc/apt/sources.list
 +
echo deb http://packages.dotdeb.org wheezy all >> /etc/apt/sources.list
 +
wget -O - http://nginx.org/keys/nginx_signing.key | apt-key add -
 +
wget -O - http://www.dotdeb.org/dotdeb.gpg | apt-key add -
 +
apt-get update
 +
apt-get install nginx php5-fpm
 +
postconf -e 'message_size_limit = 536870912'
 +
sed -i 's/post_max_size\ =\ 8M/post_max_size\ =\ 64M/g' /etc/php5/fpm/php.ini
 +
sed -i 's/upload_max_filesize\ =\ 2M/upload_max_filesize\ =\ 64M/g' /etc/php5/fpm/php.ini
 +
echo cgi.fix_pathinfo = 1 >> /etc/php5/fpm/php.ini
 +
echo suhosin.session.encrypt = Off >> /etc/php5/fpm/php.ini
 +
echo 'date.timezone = "America/Sao_paulo"' > /etc/php5/conf.d/date.ini
 +
wget http://pub.nkosi.org/iredmail/nginx.conf-iredmail
 +
wget http://pub.nkosi.org/iredmail/nginx.conf
 +
sed -i 's/mail.elegbara.net/novoendereco.com.br/g' nginx.conf-iredmail
 +
mkdir /etc/nginx/sites-enabled/
 +
mv /etc/nginx/nginx.conf /etc/nginx/nginx.conf.old
 +
mv nginx.conf /etc/nginx/
 +
mv nginx.conf-iredmail /etc/nginx/sites-enabled/iredmail
 +
sed -i 's#/var/run/php5-fpm.sock#127.0.0.1:9000#g' /etc/php5/fpm/pool.d/www.conf
 +
update-rc.d -f apache2 remove
 +
update-rc.d nginx defaults
 +
/etc/init.d/apache2 stop
 +
/etc/init.d/php5-fpm start
 +
/etc/init.d/nginx start
 +
</source>
 +
 
 +
funciona
 +
* https://mail.testquijaua.net/webmail/
 +
* https://mail.testquijaua.net/phpmyadmin
 +
* https://mail.testquijaua.net/postfixadmin/
 +
* https://mail.testquijaua.net/mail/
 +
# roundcube
 +
 
 +
==conf geral==
 +
<source lang="apache">
 +
server {
 +
    listen          80;
 +
    server_name mail.example.com;
 +
 
 +
    location / {
 +
            rewrite ^ https://mail.example.com permanent;
 +
    }
 +
 
 +
    location ~ \.php$ {
 +
            fastcgi_pass  127.0.0.1:9000;
 +
            fastcgi_index  index.php;
 +
            include fastcgi_params;
 +
            fastcgi_param SCRIPT_FILENAME /usr/share/apache2/roundcubemail$fastcgi_script_name;
 +
    }
 +
 
 +
}
 +
 
 +
server {
 +
    listen      443;
 +
    server_name  mail.example.com;
 +
 
 +
    location / {
 +
        root  /usr/share/apache2/roundcubemail/;
 +
        index  index.php index.html;
 +
    }
 +
 
 +
    location ~ \.php$ {
 +
        root            /usr/share/apache2/roundcubemail/;
 +
        include        fastcgi_params;
 +
        fastcgi_pass    127.0.0.1:9000;
 +
        fastcgi_index  index.php;
 +
        fastcgi_param  SCRIPT_FILENAME /usr/share/apache2/roundcubemail$fastcgi_script_name;
 +
        fastcgi_param  SERVER_NAME $http_host;
 +
        fastcgi_ignore_client_abort on;
 +
    }
 +
 
 +
    ssl                  on;
 +
    ssl_certificate      /etc/ssl/certs/iRedMail_CA.pem;
 +
    ssl_certificate_key  /etc/ssl/private/iRedMail.key;
 +
    ssl_session_timeout  5m;
 +
    ssl_protocols  SSLv2 SSLv3 TLSv1;
 +
    ssl_ciphers  ALL:!ADH:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP;
 +
    ssl_prefer_server_ciphers  on;
 +
}
 +
</source>
 +
 
 +
==phpLDAPadmin==
 +
<source lang="apache">
 +
#phpLDAPadmin
 +
server {
 +
    listen      443;
 +
    server_name  ldap.example.com;
 +
 
 +
    location / {
 +
        root  /usr/share/phpldapadmin/;
 +
        index  index.php index.html;
 +
    }
 +
 
 +
    location ~ \.php$ {
 +
        root            /usr/share/phpldapadmin/;
 +
        include        fastcgi_params;
 +
        fastcgi_pass    127.0.0.1:9000;
 +
        fastcgi_index  index.php;
 +
        fastcgi_param  SCRIPT_FILENAME /usr/share/phpldapadmin$fastcgi_script_name;
 +
        fastcgi_param  SERVER_NAME $http_host;
 +
        fastcgi_ignore_client_abort on;
 +
    }
 +
 
 +
    ssl                  on;
 +
    ssl_certificate      /etc/ssl/certs/iRedMail_CA.pem;
 +
    ssl_certificate_key  /etc/ssl/private/iRedMail.key;
 +
    ssl_session_timeout  5m;
 +
    ssl_protocols  SSLv2 SSLv3 TLSv1;
 +
    ssl_ciphers  ALL:!ADH:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP;
 +
    ssl_prefer_server_ciphers  on;
 +
}
 +
</source>
 +
 
 +
 
 +
==iRedAdmin==
  
 
<source lang="bash">
 
<source lang="bash">
update-rc.d -f apache2 remove
+
sudo -s
/etc/init.d/apache2 stop
+
add-apt-repository ppa:nginx/stable
sed -i 's/post_max_size\ =\ 8M/post_max_size\ =\ 10M/g' /etc/php5/cgi/php.ini
+
add-apt-repository ppa:uwsgi/release
sed -i 's/upload_max_filesize\ =\ 2M/upload_max_filesize\ =\ 10M/g' /etc/php5/cgi/php.ini
+
apt-get update
ln -s /usr/share/apache2/roundcubemail-0.3.1/ /usr/share/apache2/webmail
+
apt-get install nginx uwsgi-python python-virtualenv
ln -s /usr/share/apache2/phpldapadmin-1.2.0.5 /usr/share/apache2/ldap
+
 
ln -s /usr/share/apache2/roundcubemail-0.3.1/ /usr/share/apache2/mail
+
cat >/etc/uwsgi-python/apps-enabled/uwsgi.xml << EOF
wget http://pub.nkosi.org/iredmail/nginx.conf-iredmail
+
<uwsgi>
  wget http://pub.nkosi.org/praweb/cgi-bin.php.txt
+
  <limit-as>256</limit-as>
  mv cgi-bin.php.txt /usr/share/apache2/cgi-bin.php
+
  <processes>6</processes>
mv nginx.conf-iredmail /etc/nginx/sites-enabled/iredmail
+
  <memory-report/>
 +
  <vhost/>
 +
  <no-site/>
 +
</uwsgi>
 +
EOF
 +
 
 +
mkdir /usr/share/apache2/iredadmin/python-home
 +
virtualenv /usr/share/apache2/iredadmin/python-home
 +
chown www-data:www-data /usr/share/apache2/iredadmin/* -R
 +
</source>
 +
 
 +
<source lang="apache">
 +
# iRedAdmin
 +
server {
 +
    listen          80;
 +
    server_name iredadmin.example.com;
 +
 
 +
    location / {
 +
        rewrite ^(.*) https://$server_name$1 permanent;
 +
    }
 +
}
 +
 
 +
server {
 +
    listen 443;
 +
    server_name ira.example.com;
 +
 
 +
    access_log  /var/log/nginx/iredadmin.access_log;
 +
    error_log  /var/log/nginx/iredadmin.error_log;
 +
 
 +
    location / {
 +
        root /usr/share/apache2/iredadmin;
 +
        uwsgi_pass unix:///var/run/uwsgi-python/uwsgi/socket;
 +
        uwsgi_param UWSGI_PYHOME /usr/share/apache2/iredadmin/python-home;
 +
        uwsgi_param UWSGI_CHDIR /usr/share/apache2/iredadmin;
 +
        uwsgi_param UWSGI_SCRIPT iredadmin;
 +
        include uwsgi_params;
 +
    }
 +
 
 +
    location /static {
 +
        alias /usr/share/apache2/iredadmin/static/;
 +
    }
 +
 
 +
    ssl                  on;
 +
    ssl_certificate      /etc/ssl/certs/iRedMail_CA.pem;
 +
    ssl_certificate_key /etc/ssl/private/iRedMail.key;
 +
    ssl_session_timeout  5m;
 +
    ssl_protocols  SSLv2 SSLv3 TLSv1;
 +
    ssl_ciphers ALL:!ADH:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP;
 +
    ssl_prefer_server_ciphers  on;
 +
}
 +
</source>
 +
 
 +
<source lang="bash">
 +
/etc/init.d/nginx restart
 +
/etc/init.d/uwsgi-python restart
 
</source>
 
</source>
  
 
funciona
 
funciona
* https://mail.elegbara.net/webmail/
+
* https://mail.example.com
* https://mail.elegbara.net/phpmyadmin
+
* https://ldap.example.com
* https://mail.elegbara.net/postfixadmin/
+
* https://iredadmin.example.com
* https://mail.elegbara.net/awstats/awstats.pl
 
  
falta ainda
+
referências:
* nginx com mysql para o awstats com senha
+
* http://antlite.com/blog/2011/06/ubuntu-iredmail-nginx-settings/
  
 
IRedMail with Nginx
 
IRedMail with Nginx
 +
 +
[[Categoria:Email]]

Edição atual tal como às 23h13min de 29 de junho de 2014

instalando

echo deb http://nginx.org/packages/debian/ wheezy nginx >> /etc/apt/sources.list
echo deb http://packages.dotdeb.org wheezy all >> /etc/apt/sources.list
wget -O - http://nginx.org/keys/nginx_signing.key | apt-key add -
wget -O - http://www.dotdeb.org/dotdeb.gpg | apt-key add -
apt-get update
apt-get install nginx php5-fpm
postconf -e 'message_size_limit = 536870912'
sed -i 's/post_max_size\ =\ 8M/post_max_size\ =\ 64M/g' /etc/php5/fpm/php.ini
sed -i 's/upload_max_filesize\ =\ 2M/upload_max_filesize\ =\ 64M/g' /etc/php5/fpm/php.ini
echo cgi.fix_pathinfo = 1 >> /etc/php5/fpm/php.ini
echo suhosin.session.encrypt = Off >> /etc/php5/fpm/php.ini
echo 'date.timezone = "America/Sao_paulo"' > /etc/php5/conf.d/date.ini
wget http://pub.nkosi.org/iredmail/nginx.conf-iredmail
wget http://pub.nkosi.org/iredmail/nginx.conf
sed -i 's/mail.elegbara.net/novoendereco.com.br/g' nginx.conf-iredmail
mkdir /etc/nginx/sites-enabled/
mv /etc/nginx/nginx.conf /etc/nginx/nginx.conf.old
mv nginx.conf /etc/nginx/
mv nginx.conf-iredmail /etc/nginx/sites-enabled/iredmail
sed -i 's#/var/run/php5-fpm.sock#127.0.0.1:9000#g' /etc/php5/fpm/pool.d/www.conf 
update-rc.d -f apache2 remove
update-rc.d nginx defaults
/etc/init.d/apache2 stop
/etc/init.d/php5-fpm start
/etc/init.d/nginx start

funciona

  1. roundcube

conf geral

server {
    listen          80;
    server_name mail.example.com;

    location / {
            rewrite ^ https://mail.example.com permanent;
    }

    location ~ \.php$ {
            fastcgi_pass   127.0.0.1:9000;
            fastcgi_index  index.php;
            include fastcgi_params;
            fastcgi_param SCRIPT_FILENAME /usr/share/apache2/roundcubemail$fastcgi_script_name;
    }

}

server {
    listen       443;
    server_name  mail.example.com;

    location / {
        root   /usr/share/apache2/roundcubemail/;
        index  index.php index.html;
    }

     location ~ \.php$ {
        root            /usr/share/apache2/roundcubemail/;
        include         fastcgi_params;
        fastcgi_pass    127.0.0.1:9000;
        fastcgi_index   index.php;
        fastcgi_param   SCRIPT_FILENAME /usr/share/apache2/roundcubemail$fastcgi_script_name;
        fastcgi_param   SERVER_NAME $http_host;
        fastcgi_ignore_client_abort on;
    }

    ssl                  on;
    ssl_certificate      /etc/ssl/certs/iRedMail_CA.pem;
    ssl_certificate_key  /etc/ssl/private/iRedMail.key;
    ssl_session_timeout  5m;
    ssl_protocols  SSLv2 SSLv3 TLSv1;
    ssl_ciphers  ALL:!ADH:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP;
    ssl_prefer_server_ciphers   on;
}

phpLDAPadmin

#phpLDAPadmin
server {
    listen       443;
    server_name  ldap.example.com;

    location / {
        root   /usr/share/phpldapadmin/;
        index  index.php index.html;
    }

     location ~ \.php$ {
        root            /usr/share/phpldapadmin/;
        include         fastcgi_params;
        fastcgi_pass    127.0.0.1:9000;
        fastcgi_index   index.php;
        fastcgi_param   SCRIPT_FILENAME /usr/share/phpldapadmin$fastcgi_script_name;
        fastcgi_param   SERVER_NAME $http_host;
        fastcgi_ignore_client_abort on;
    }

    ssl                  on;
    ssl_certificate      /etc/ssl/certs/iRedMail_CA.pem;
    ssl_certificate_key  /etc/ssl/private/iRedMail.key;
    ssl_session_timeout  5m;
    ssl_protocols  SSLv2 SSLv3 TLSv1;
    ssl_ciphers  ALL:!ADH:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP;
    ssl_prefer_server_ciphers   on;
}


iRedAdmin

sudo -s
add-apt-repository ppa:nginx/stable
add-apt-repository ppa:uwsgi/release
apt-get update
apt-get install nginx uwsgi-python python-virtualenv

cat >/etc/uwsgi-python/apps-enabled/uwsgi.xml << EOF
<uwsgi>
  <limit-as>256</limit-as>
  <processes>6</processes>
  <memory-report/>
  <vhost/>
  <no-site/>
</uwsgi>
EOF

mkdir /usr/share/apache2/iredadmin/python-home
virtualenv /usr/share/apache2/iredadmin/python-home
chown www-data:www-data /usr/share/apache2/iredadmin/* -R

# iRedAdmin
server {
    listen          80;
    server_name iredadmin.example.com;

    location / {
        rewrite ^(.*) https://$server_name$1 permanent;
    }
}

server {
    listen 443;
    server_name ira.example.com;

    access_log  /var/log/nginx/iredadmin.access_log;
    error_log   /var/log/nginx/iredadmin.error_log;

    location / {
        root /usr/share/apache2/iredadmin;
        uwsgi_pass unix:///var/run/uwsgi-python/uwsgi/socket;
        uwsgi_param UWSGI_PYHOME /usr/share/apache2/iredadmin/python-home;
        uwsgi_param UWSGI_CHDIR /usr/share/apache2/iredadmin;
        uwsgi_param UWSGI_SCRIPT iredadmin;
        include uwsgi_params;
    }

    location /static {
        alias /usr/share/apache2/iredadmin/static/;
    }

    ssl                  on;
    ssl_certificate      /etc/ssl/certs/iRedMail_CA.pem;
    ssl_certificate_key  /etc/ssl/private/iRedMail.key;
    ssl_session_timeout  5m;
    ssl_protocols  SSLv2 SSLv3 TLSv1;
    ssl_ciphers  ALL:!ADH:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP;
    ssl_prefer_server_ciphers   on;
}

/etc/init.d/nginx restart
/etc/init.d/uwsgi-python restart

funciona

referências:

IRedMail with Nginx

Disponível em “https://docs.nkosi.org/index.php?title=IRedMail_com_Nginx&oldid=5734