nixos-config/configs/sputnik/mail-server.nix

{ config, pkgs, lib, ... }:

# make sure no update befor changing this parameter
assert lib.versionOlder lib.version "20.09";

let release = "nixos-20.09";

in {
  imports = [
    (builtins.fetchTarball {
      url =
        "https://gitlab.com/simple-nixos-mailserver/nixos-mailserver/-/archive/${release}/nixos-mailserver-${release}.tar.gz";
      # This hash needs to be updated
      sha256 = "0000000000000000000000000000000000000000000000000000";
    })
  ];

  mailserver = {
    enable = true;
    fqdn = "mail.ingolf-wagner.de";
    domains = [ "ingolf-wagner.de" ];

    # A list of all login accounts. To create the password hashes, use
    # nix-shell -p mkpasswd --run 'mkpasswd -m sha-512 "super secret password"'
    loginAccounts = {
      "root@ingolf-wagner.com" = {
        hashedPassword = lib.fileContents
          <secrets/mailserver/hashedPasswords/root_at_ingolf-wagner.de>;
        #aliases = [
        #  "postmaster@gaykraft.com"
        #];
        # Make this user the catchAll address for domains
        catchAll = [ "ingol-wagner.de" ];
      };
    };

    # Extra virtual aliases. These are email addresses that are forwarded to
    # loginAccounts addresses.
    #extraVirtualAliases = {
    # address = forward address;
    #"abuse@example.com" = "user1@example.com";
    #};

    # Use Let's Encrypt certificates. Note that this needs to set up a stripped
    # down nginx and opens port 80.
    certificateScheme = 3;

    # Enable IMAP and POP3
    enableImap = false;
    enablePop3 = true;
    enableImapSsl = false;
    enablePop3Ssl = true;

    # Enable the ManageSieve protocol
    enableManageSieve = true;

    # whether to scan inbound emails for viruses (note that this requires at least
    # 1 Gb RAM for the server. Without virus scanning 256 MB RAM should be plenty)
    virusScanning = false;
  };
}
mailserver setup 2021-02-08 20:48:44 +01:00			`{ config, pkgs, lib, ... }:`

			`# make sure no update befor changing this parameter`
			`assert lib.versionOlder lib.version "20.09";`

			`let release = "nixos-20.09";`

			`in {`
mail-server.nix: add gaykraft mail server for testing purpose 2019-11-27 03:21:44 +01:00			`imports = [`
			`(builtins.fetchTarball {`
nixfmt: reformat all files 2019-12-20 05:54:26 +01:00			`url =`
mailserver setup 2021-02-08 20:48:44 +01:00			`"https://gitlab.com/simple-nixos-mailserver/nixos-mailserver/-/archive/${release}/nixos-mailserver-${release}.tar.gz";`
			`# This hash needs to be updated`
			`sha256 = "0000000000000000000000000000000000000000000000000000";`
mail-server.nix: add gaykraft mail server for testing purpose 2019-11-27 03:21:44 +01:00			`})`
			`];`

			`mailserver = {`
			`enable = true;`
mailserver setup 2021-02-08 20:48:44 +01:00			`fqdn = "mail.ingolf-wagner.de";`
			`domains = [ "ingolf-wagner.de" ];`
mail-server.nix: add gaykraft mail server for testing purpose 2019-11-27 03:21:44 +01:00
			`# A list of all login accounts. To create the password hashes, use`
			`# nix-shell -p mkpasswd --run 'mkpasswd -m sha-512 "super secret password"'`
			`loginAccounts = {`
mailserver setup 2021-02-08 20:48:44 +01:00			`"root@ingolf-wagner.com" = {`
nixfmt: reformat all files 2019-12-20 05:54:26 +01:00			`hashedPassword = lib.fileContents`
mailserver setup 2021-02-08 20:48:44 +01:00			`<secrets/mailserver/hashedPasswords/root_at_ingolf-wagner.de>;`
mail-server.nix: add gaykraft mail server for testing purpose 2019-11-27 03:21:44 +01:00			`#aliases = [`
			`# "postmaster@gaykraft.com"`
			`#];`
			`# Make this user the catchAll address for domains`
mailserver setup 2021-02-08 20:48:44 +01:00			`catchAll = [ "ingol-wagner.de" ];`
mail-server.nix: add gaykraft mail server for testing purpose 2019-11-27 03:21:44 +01:00			`};`
			`};`

			`# Extra virtual aliases. These are email addresses that are forwarded to`
			`# loginAccounts addresses.`
			`#extraVirtualAliases = {`
nixfmt: reformat all files 2019-12-20 05:54:26 +01:00			`# address = forward address;`
			`#"abuse@example.com" = "user1@example.com";`
mail-server.nix: add gaykraft mail server for testing purpose 2019-11-27 03:21:44 +01:00			`#};`

			`# Use Let's Encrypt certificates. Note that this needs to set up a stripped`
			`# down nginx and opens port 80.`
			`certificateScheme = 3;`

			`# Enable IMAP and POP3`
mailserver setup 2021-02-08 20:48:44 +01:00			`enableImap = false;`
mail-server.nix: add gaykraft mail server for testing purpose 2019-11-27 03:21:44 +01:00			`enablePop3 = true;`
mailserver setup 2021-02-08 20:48:44 +01:00			`enableImapSsl = false;`
mail-server.nix: add gaykraft mail server for testing purpose 2019-11-27 03:21:44 +01:00			`enablePop3Ssl = true;`

			`# Enable the ManageSieve protocol`
mail-server: disabled it for now, because it was not properly working 2019-11-29 06:01:03 +01:00			`enableManageSieve = true;`
mail-server.nix: add gaykraft mail server for testing purpose 2019-11-27 03:21:44 +01:00
			`# whether to scan inbound emails for viruses (note that this requires at least`
			`# 1 Gb RAM for the server. Without virus scanning 256 MB RAM should be plenty)`
			`virusScanning = false;`
			`};`
			`}`