Mudanças entre as edições de "IRedMail com Nginx"
De MochilaWiki
Ir para navegaçãoIr para pesquisar(15 revisões intermediárias pelo mesmo usuário não estão sendo mostradas) | |||
Linha 1: | Linha 1: | ||
− | + | ==instalando== | |
+ | <source lang="bash"> | ||
+ | echo deb http://nginx.org/packages/debian/ wheezy nginx >> /etc/apt/sources.list | ||
+ | echo deb http://packages.dotdeb.org wheezy all >> /etc/apt/sources.list | ||
+ | wget -O - http://nginx.org/keys/nginx_signing.key | apt-key add - | ||
+ | wget -O - http://www.dotdeb.org/dotdeb.gpg | apt-key add - | ||
+ | apt-get update | ||
+ | apt-get install nginx php5-fpm | ||
+ | postconf -e 'message_size_limit = 536870912' | ||
+ | sed -i 's/post_max_size\ =\ 8M/post_max_size\ =\ 64M/g' /etc/php5/fpm/php.ini | ||
+ | sed -i 's/upload_max_filesize\ =\ 2M/upload_max_filesize\ =\ 64M/g' /etc/php5/fpm/php.ini | ||
+ | echo cgi.fix_pathinfo = 1 >> /etc/php5/fpm/php.ini | ||
+ | echo suhosin.session.encrypt = Off >> /etc/php5/fpm/php.ini | ||
+ | echo 'date.timezone = "America/Sao_paulo"' > /etc/php5/conf.d/date.ini | ||
+ | wget http://pub.nkosi.org/iredmail/nginx.conf-iredmail | ||
+ | wget http://pub.nkosi.org/iredmail/nginx.conf | ||
+ | sed -i 's/mail.elegbara.net/novoendereco.com.br/g' nginx.conf-iredmail | ||
+ | mkdir /etc/nginx/sites-enabled/ | ||
+ | mv /etc/nginx/nginx.conf /etc/nginx/nginx.conf.old | ||
+ | mv nginx.conf /etc/nginx/ | ||
+ | mv nginx.conf-iredmail /etc/nginx/sites-enabled/iredmail | ||
+ | sed -i 's#/var/run/php5-fpm.sock#127.0.0.1:9000#g' /etc/php5/fpm/pool.d/www.conf | ||
+ | update-rc.d -f apache2 remove | ||
+ | update-rc.d nginx defaults | ||
+ | /etc/init.d/apache2 stop | ||
+ | /etc/init.d/php5-fpm start | ||
+ | /etc/init.d/nginx start | ||
+ | </source> | ||
+ | |||
+ | funciona | ||
+ | * https://mail.testquijaua.net/webmail/ | ||
+ | * https://mail.testquijaua.net/phpmyadmin | ||
+ | * https://mail.testquijaua.net/postfixadmin/ | ||
+ | * https://mail.testquijaua.net/mail/ | ||
+ | # roundcube | ||
+ | |||
+ | ==conf geral== | ||
+ | <source lang="apache"> | ||
+ | server { | ||
+ | listen 80; | ||
+ | server_name mail.example.com; | ||
+ | |||
+ | location / { | ||
+ | rewrite ^ https://mail.example.com permanent; | ||
+ | } | ||
+ | |||
+ | location ~ \.php$ { | ||
+ | fastcgi_pass 127.0.0.1:9000; | ||
+ | fastcgi_index index.php; | ||
+ | include fastcgi_params; | ||
+ | fastcgi_param SCRIPT_FILENAME /usr/share/apache2/roundcubemail$fastcgi_script_name; | ||
+ | } | ||
+ | |||
+ | } | ||
+ | |||
+ | server { | ||
+ | listen 443; | ||
+ | server_name mail.example.com; | ||
+ | |||
+ | location / { | ||
+ | root /usr/share/apache2/roundcubemail/; | ||
+ | index index.php index.html; | ||
+ | } | ||
+ | |||
+ | location ~ \.php$ { | ||
+ | root /usr/share/apache2/roundcubemail/; | ||
+ | include fastcgi_params; | ||
+ | fastcgi_pass 127.0.0.1:9000; | ||
+ | fastcgi_index index.php; | ||
+ | fastcgi_param SCRIPT_FILENAME /usr/share/apache2/roundcubemail$fastcgi_script_name; | ||
+ | fastcgi_param SERVER_NAME $http_host; | ||
+ | fastcgi_ignore_client_abort on; | ||
+ | } | ||
+ | |||
+ | ssl on; | ||
+ | ssl_certificate /etc/ssl/certs/iRedMail_CA.pem; | ||
+ | ssl_certificate_key /etc/ssl/private/iRedMail.key; | ||
+ | ssl_session_timeout 5m; | ||
+ | ssl_protocols SSLv2 SSLv3 TLSv1; | ||
+ | ssl_ciphers ALL:!ADH:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP; | ||
+ | ssl_prefer_server_ciphers on; | ||
+ | } | ||
+ | </source> | ||
+ | |||
+ | ==phpLDAPadmin== | ||
+ | <source lang="apache"> | ||
+ | #phpLDAPadmin | ||
+ | server { | ||
+ | listen 443; | ||
+ | server_name ldap.example.com; | ||
+ | |||
+ | location / { | ||
+ | root /usr/share/phpldapadmin/; | ||
+ | index index.php index.html; | ||
+ | } | ||
+ | |||
+ | location ~ \.php$ { | ||
+ | root /usr/share/phpldapadmin/; | ||
+ | include fastcgi_params; | ||
+ | fastcgi_pass 127.0.0.1:9000; | ||
+ | fastcgi_index index.php; | ||
+ | fastcgi_param SCRIPT_FILENAME /usr/share/phpldapadmin$fastcgi_script_name; | ||
+ | fastcgi_param SERVER_NAME $http_host; | ||
+ | fastcgi_ignore_client_abort on; | ||
+ | } | ||
+ | |||
+ | ssl on; | ||
+ | ssl_certificate /etc/ssl/certs/iRedMail_CA.pem; | ||
+ | ssl_certificate_key /etc/ssl/private/iRedMail.key; | ||
+ | ssl_session_timeout 5m; | ||
+ | ssl_protocols SSLv2 SSLv3 TLSv1; | ||
+ | ssl_ciphers ALL:!ADH:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP; | ||
+ | ssl_prefer_server_ciphers on; | ||
+ | } | ||
+ | </source> | ||
+ | |||
+ | |||
+ | ==iRedAdmin== | ||
<source lang="bash"> | <source lang="bash"> | ||
− | + | sudo -s | |
− | + | add-apt-repository ppa:nginx/stable | |
− | + | add-apt-repository ppa:uwsgi/release | |
− | + | apt-get update | |
− | + | apt-get install nginx uwsgi-python python-virtualenv | |
− | + | ||
− | + | cat >/etc/uwsgi-python/apps-enabled/uwsgi.xml << EOF | |
− | + | <uwsgi> | |
− | + | <limit-as>256</limit-as> | |
+ | <processes>6</processes> | ||
+ | <memory-report/> | ||
+ | <vhost/> | ||
+ | <no-site/> | ||
+ | </uwsgi> | ||
+ | EOF | ||
+ | |||
+ | mkdir /usr/share/apache2/iredadmin/python-home | ||
+ | virtualenv /usr/share/apache2/iredadmin/python-home | ||
+ | chown www-data:www-data /usr/share/apache2/iredadmin/* -R | ||
+ | </source> | ||
+ | |||
+ | <source lang="apache"> | ||
+ | # iRedAdmin | ||
+ | server { | ||
+ | listen 80; | ||
+ | server_name iredadmin.example.com; | ||
+ | |||
+ | location / { | ||
+ | rewrite ^(.*) https://$server_name$1 permanent; | ||
+ | } | ||
+ | } | ||
+ | |||
+ | server { | ||
+ | listen 443; | ||
+ | server_name ira.example.com; | ||
+ | |||
+ | access_log /var/log/nginx/iredadmin.access_log; | ||
+ | error_log /var/log/nginx/iredadmin.error_log; | ||
+ | |||
+ | location / { | ||
+ | root /usr/share/apache2/iredadmin; | ||
+ | uwsgi_pass unix:///var/run/uwsgi-python/uwsgi/socket; | ||
+ | uwsgi_param UWSGI_PYHOME /usr/share/apache2/iredadmin/python-home; | ||
+ | uwsgi_param UWSGI_CHDIR /usr/share/apache2/iredadmin; | ||
+ | uwsgi_param UWSGI_SCRIPT iredadmin; | ||
+ | include uwsgi_params; | ||
+ | } | ||
+ | |||
+ | location /static { | ||
+ | alias /usr/share/apache2/iredadmin/static/; | ||
+ | } | ||
+ | |||
+ | ssl on; | ||
+ | ssl_certificate /etc/ssl/certs/iRedMail_CA.pem; | ||
+ | ssl_certificate_key /etc/ssl/private/iRedMail.key; | ||
+ | ssl_session_timeout 5m; | ||
+ | ssl_protocols SSLv2 SSLv3 TLSv1; | ||
+ | ssl_ciphers ALL:!ADH:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP; | ||
+ | ssl_prefer_server_ciphers on; | ||
+ | } | ||
+ | </source> | ||
+ | |||
+ | <source lang="bash"> | ||
+ | /etc/init.d/nginx restart | ||
+ | /etc/init.d/uwsgi-python restart | ||
</source> | </source> | ||
funciona | funciona | ||
− | * https://mail. | + | * https://mail.example.com |
− | * https:// | + | * https://ldap.example.com |
− | * https:// | + | * https://iredadmin.example.com |
− | + | referências: | |
− | * | + | * http://antlite.com/blog/2011/06/ubuntu-iredmail-nginx-settings/ |
IRedMail with Nginx | IRedMail with Nginx | ||
+ | |||
+ | [[Categoria:Email]] |
Edição atual tal como às 23h13min de 29 de junho de 2014
instalando
echo deb http://nginx.org/packages/debian/ wheezy nginx >> /etc/apt/sources.list
echo deb http://packages.dotdeb.org wheezy all >> /etc/apt/sources.list
wget -O - http://nginx.org/keys/nginx_signing.key | apt-key add -
wget -O - http://www.dotdeb.org/dotdeb.gpg | apt-key add -
apt-get update
apt-get install nginx php5-fpm
postconf -e 'message_size_limit = 536870912'
sed -i 's/post_max_size\ =\ 8M/post_max_size\ =\ 64M/g' /etc/php5/fpm/php.ini
sed -i 's/upload_max_filesize\ =\ 2M/upload_max_filesize\ =\ 64M/g' /etc/php5/fpm/php.ini
echo cgi.fix_pathinfo = 1 >> /etc/php5/fpm/php.ini
echo suhosin.session.encrypt = Off >> /etc/php5/fpm/php.ini
echo 'date.timezone = "America/Sao_paulo"' > /etc/php5/conf.d/date.ini
wget http://pub.nkosi.org/iredmail/nginx.conf-iredmail
wget http://pub.nkosi.org/iredmail/nginx.conf
sed -i 's/mail.elegbara.net/novoendereco.com.br/g' nginx.conf-iredmail
mkdir /etc/nginx/sites-enabled/
mv /etc/nginx/nginx.conf /etc/nginx/nginx.conf.old
mv nginx.conf /etc/nginx/
mv nginx.conf-iredmail /etc/nginx/sites-enabled/iredmail
sed -i 's#/var/run/php5-fpm.sock#127.0.0.1:9000#g' /etc/php5/fpm/pool.d/www.conf
update-rc.d -f apache2 remove
update-rc.d nginx defaults
/etc/init.d/apache2 stop
/etc/init.d/php5-fpm start
/etc/init.d/nginx start
funciona
- https://mail.testquijaua.net/webmail/
- https://mail.testquijaua.net/phpmyadmin
- https://mail.testquijaua.net/postfixadmin/
- https://mail.testquijaua.net/mail/
- roundcube
conf geral
server {
listen 80;
server_name mail.example.com;
location / {
rewrite ^ https://mail.example.com permanent;
}
location ~ \.php$ {
fastcgi_pass 127.0.0.1:9000;
fastcgi_index index.php;
include fastcgi_params;
fastcgi_param SCRIPT_FILENAME /usr/share/apache2/roundcubemail$fastcgi_script_name;
}
}
server {
listen 443;
server_name mail.example.com;
location / {
root /usr/share/apache2/roundcubemail/;
index index.php index.html;
}
location ~ \.php$ {
root /usr/share/apache2/roundcubemail/;
include fastcgi_params;
fastcgi_pass 127.0.0.1:9000;
fastcgi_index index.php;
fastcgi_param SCRIPT_FILENAME /usr/share/apache2/roundcubemail$fastcgi_script_name;
fastcgi_param SERVER_NAME $http_host;
fastcgi_ignore_client_abort on;
}
ssl on;
ssl_certificate /etc/ssl/certs/iRedMail_CA.pem;
ssl_certificate_key /etc/ssl/private/iRedMail.key;
ssl_session_timeout 5m;
ssl_protocols SSLv2 SSLv3 TLSv1;
ssl_ciphers ALL:!ADH:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP;
ssl_prefer_server_ciphers on;
}
phpLDAPadmin
#phpLDAPadmin
server {
listen 443;
server_name ldap.example.com;
location / {
root /usr/share/phpldapadmin/;
index index.php index.html;
}
location ~ \.php$ {
root /usr/share/phpldapadmin/;
include fastcgi_params;
fastcgi_pass 127.0.0.1:9000;
fastcgi_index index.php;
fastcgi_param SCRIPT_FILENAME /usr/share/phpldapadmin$fastcgi_script_name;
fastcgi_param SERVER_NAME $http_host;
fastcgi_ignore_client_abort on;
}
ssl on;
ssl_certificate /etc/ssl/certs/iRedMail_CA.pem;
ssl_certificate_key /etc/ssl/private/iRedMail.key;
ssl_session_timeout 5m;
ssl_protocols SSLv2 SSLv3 TLSv1;
ssl_ciphers ALL:!ADH:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP;
ssl_prefer_server_ciphers on;
}
iRedAdmin
sudo -s
add-apt-repository ppa:nginx/stable
add-apt-repository ppa:uwsgi/release
apt-get update
apt-get install nginx uwsgi-python python-virtualenv
cat >/etc/uwsgi-python/apps-enabled/uwsgi.xml << EOF
<uwsgi>
<limit-as>256</limit-as>
<processes>6</processes>
<memory-report/>
<vhost/>
<no-site/>
</uwsgi>
EOF
mkdir /usr/share/apache2/iredadmin/python-home
virtualenv /usr/share/apache2/iredadmin/python-home
chown www-data:www-data /usr/share/apache2/iredadmin/* -R
# iRedAdmin
server {
listen 80;
server_name iredadmin.example.com;
location / {
rewrite ^(.*) https://$server_name$1 permanent;
}
}
server {
listen 443;
server_name ira.example.com;
access_log /var/log/nginx/iredadmin.access_log;
error_log /var/log/nginx/iredadmin.error_log;
location / {
root /usr/share/apache2/iredadmin;
uwsgi_pass unix:///var/run/uwsgi-python/uwsgi/socket;
uwsgi_param UWSGI_PYHOME /usr/share/apache2/iredadmin/python-home;
uwsgi_param UWSGI_CHDIR /usr/share/apache2/iredadmin;
uwsgi_param UWSGI_SCRIPT iredadmin;
include uwsgi_params;
}
location /static {
alias /usr/share/apache2/iredadmin/static/;
}
ssl on;
ssl_certificate /etc/ssl/certs/iRedMail_CA.pem;
ssl_certificate_key /etc/ssl/private/iRedMail.key;
ssl_session_timeout 5m;
ssl_protocols SSLv2 SSLv3 TLSv1;
ssl_ciphers ALL:!ADH:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP;
ssl_prefer_server_ciphers on;
}
/etc/init.d/nginx restart
/etc/init.d/uwsgi-python restart
funciona
referências:
IRedMail with Nginx