maralorn/nixos-config
1
0
Fork 0
Code Wiki Activity

Fix domains.

Browse source
This commit is contained in:
Malte Brandy 2021-06-06 03:02:35 +02:00
parent e84ac26208
commit c965713656
1 changed files with 4 additions and 3 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

7
nixos/machines/hera/mail.nix
View file

@ -1,6 +1,7 @@
{ pkgs, config, lib, ... }: { pkgs, config, lib, ... }:
let let
certPath = "/var/lib/acme/hera.m-0.eu"; certPath = "/var/lib/acme/hera.m-0.eu";
nonMailboxDomains = [ "lists.maralorn.de" ];
in in
{ {
networking.firewall.allowedTCPPorts = [ 25 143 587 993 ]; networking.firewall.allowedTCPPorts = [ 25 143 587 993 ];
@ -40,8 +41,8 @@ in
transport = "email2matrix.maralorn.de smtp:[::1]:2525"; transport = "email2matrix.maralorn.de smtp:[::1]:2525";
config = { config = {
# Allow TLSv1 because we need to be able to receive mail from legacy servers. # Allow TLSv1 because we need to be able to receive mail from legacy servers.
smtpd_tls_protocols = lib.mkForce smtpd_tls_protocols = lib.mkForce "TLSv1.3, TLSv1.2, TLSv1.1, TLSv1, !SSLv2, !SSLv3";
"TLSv1.3, TLSv1.2, TLSv1.1, TLSv1, !SSLv2, !SSLv3"; virtual_mailbox_domains = lib.mkForce (builtins.toFile "vhosts" (lib.concatStringsSep "\n" (builtins.filter (x: !builtins.elem x nonMailboxDomains) config.mailserver.domains)));
}; };
}; };
}; };
@ -51,7 +52,7 @@ in
enableImapSsl = true; enableImapSsl = true;
fqdn = "hera.m-0.eu"; fqdn = "hera.m-0.eu";
rewriteMessageId = true; rewriteMessageId = true;
domains = [ "m-0.eu" "maralorn.de" "choreutes.de" "mathechor.de" ]; domains = [ "m-0.eu" "maralorn.de" "choreutes.de" "mathechor.de" "lists.maralorn.de" ];
forwards = pkgs.privateValue { } "mail/forwards"; forwards = pkgs.privateValue { } "mail/forwards";
loginAccounts = pkgs.privateValue { } "mail/users"; loginAccounts = pkgs.privateValue { } "mail/users";
hierarchySeparator = "/"; hierarchySeparator = "/";