From a050a1dfc542e95a0e1e8b9e1e637c1ca5011499 Mon Sep 17 00:00:00 2001
From: Mauricio Baeza
Date: Sat, 16 Oct 2021 21:52:05 -0500
Subject: [PATCH] Start new script for convert
---
convert.py | 49 ++++
convert.sh | 2 +-
es_MX/overview/0-network.ports.md | 42 +++
es_MX/overview/0-used.components.md | 38 +++
.../0-why.build.your.own.mail.server.md | 37 +++
es_MX/overview/_summary.md | 3 +
es_MX/overview/_title.md | 1 +
html/active.directory.html | 38 +--
html/additional.smtp.port-it_IT.html | 2 -
html/additional.smtp.port.html | 2 -
...to.send.email.as.different.user-it_IT.html | 7 +-
...users.to.send.email.as.different.user.html | 7 +-
...cure.pop3.imap.smtp.connections-it_IT.html | 3 -
...w.insecure.pop3.imap.smtp.connections.html | 3 -
...mber.to.send.email.as.mail.list-it_IT.html | 1 -
...mber.to.send.email.as.mail.list-zh_CN.html | 2 -
...low.member.to.send.email.as.mail.list.html | 1 -
html/allow.send.without.smtp.auth.html | 5 -
...nd.email.without.authentication-it_IT.html | 3 -
...nd.email.without.authentication-zh_CN.html | 6 -
....to.send.email.without.authentication.html | 6 -
...isd.per-recipient.policy.lookup-it_IT.html | 1 -
html/amavisd.per-recipient.policy.lookup.html | 1 -
html/amavisd.wblist-it_IT.html | 5 -
html/amavisd.wblist.html | 5 -
html/authenticate.without.domain.name.html | 2 -
html/backup.restore.html | 18 --
html/backupmx.html | 3 -
html/change.mail.attachment.size-it_IT.html | 4 -
html/change.mail.attachment.size-zh_CN.html | 7 -
html/change.mail.attachment.size.html | 7 -
html/change.mailbox.format.html | 2 -
html/cluebringer.to.iredapd.html | 12 -
...ble.amavisd.clamav.spamassassin-it_IT.html | 9 +-
...y.disable.amavisd.clamav.spamassassin.html | 11 +-
html/concurrent.processing.html | 4 -
html/dbmail.mysql.centos.html | 52 +---
html/debug.amavisd-zh_CN.html | 2 -
html/debug.amavisd.html | 2 -
html/debug.cluebringer.html | 1 -
html/debug.dovecot-zh_CN.html | 2 -
html/debug.dovecot.html | 4 +-
html/debug.fail2ban.html | 1 -
html/debug.iredapd.html | 1 -
html/debug.mysql.html | 1 -
html/debug.nginx.html | 1 -
html/debug.openldap.html | 1 -
html/debug.postfix.html | 3 -
html/debug.roundcubemail.html | 1 -
html/debug.sogo.html | 1 -
html/disable.greylisting-it_IT.html | 1 -
html/disable.greylisting-zh_CN.html | 1 -
html/disable.greylisting.html | 1 -
...rus.scanning.for.outgoing.mails-it_IT.html | 3 +-
...rus.scanning.for.outgoing.mails-zh_CN.html | 3 +-
...pam.virus.scanning.for.outgoing.mails.html | 3 +-
html/dovecot.imapsieve.html | 15 --
html/dovecot.master.user.html | 3 -
html/ejabberd.openldap.ubuntu.html | 8 -
html/enable.dnsbl.html | 2 -
html/enable.postscreen.html | 3 -
html/enable.smtp.auth.on.port.25-it_IT.html | 2 -
html/enable.smtp.auth.on.port.25.html | 1 -
html/enable.smtps-it_IT.html | 7 -
html/enable.smtps.html | 7 -
html/errors.html | 6 -
html/fail2ban.sql.html | 26 --
html/file.locations.html | 4 +-
html/force.user.to.change.password.html | 4 +-
html/haproxy.keepalived.glusterfs.html | 54 ----
html/ignore.trash.folder.in.quota-zh_CN.html | 3 -
html/ignore.trash.folder.in.quota.html | 2 -
html/index-es_MX.html | 29 ++
html/index-it_IT.html | 2 +-
html/index-zh_CN.html | 2 +-
html/index.html | 4 +-
html/install.iredadmin.on.debian.html | 8 -
html/install.iredadmin.on.freebsd.html | 8 -
html/install.iredadmin.on.openbsd.html | 8 -
html/install.iredadmin.on.rhel.html | 8 -
...stall.iredmail.on.debian.ubuntu-zh_CN.html | 9 +-
html/install.iredmail.on.debian.ubuntu.html | 9 +-
html/install.iredmail.on.freebsd.html | 12 +-
...install.iredmail.on.freebsd.with.jail.html | 15 --
html/install.iredmail.on.openbsd.html | 9 +-
html/install.iredmail.on.rhel-zh_CN.html | 10 +-
html/install.iredmail.on.rhel.html | 10 +-
...all.iredmail.with.remote.mysql.server.html | 5 -
html/integration.mlmmj.ldap.html | 33 ---
html/integration.mlmmj.mysql.html | 32 ---
html/integration.mlmmj.pgsql.html | 32 ---
html/integration.netdata.freebsd.html | 20 --
html/integration.netdata.linux.html | 28 --
html/iredadmin-pro.custom.ban.rules.html | 4 -
html/iredadmin-pro.custom.user.services.html | 3 -
.../iredadmin-pro.customize.maildir.path.html | 2 -
...iredadmin-pro.default.password.policy.html | 2 -
...min-pro.domain.ownership.verification.html | 2 -
html/iredadmin-pro.restful.api-20170123.html | 37 ---
html/iredadmin-pro.restful.api-20170824.html | 46 ----
html/iredadmin-pro.restful.api-20180403.html | 46 ----
html/iredadmin-pro.restful.api-20181217.html | 54 ----
html/iredadmin-pro.restful.api-20190327.html | 58 ----
html/iredadmin-pro.restful.api-20190428.html | 62 -----
html/iredadmin-pro.restful.api-20190606.html | 62 -----
html/iredadmin-pro.restful.api-20190801.html | 65 -----
html/iredadmin-pro.restful.api-20190906.html | 65 -----
html/iredadmin-pro.restful.api-20191022.html | 65 -----
html/iredadmin-pro.restful.api-20191209.html | 65 -----
html/iredadmin-pro.restful.api-20200210.html | 65 -----
html/iredadmin-pro.restful.api-new.html | 67 -----
html/iredadmin-pro.restful.api.curl.html | 1 -
html/iredadmin-pro.restful.api.html | 67 -----
html/iredadmin-pro.restful.api.python.html | 1 -
html/iredadmin-pro.set.a.proper.timezone.html | 1 -
...iredmail-easy.autoconfig.autodiscover.html | 5 -
html/iredmail-easy.best.practice.html | 17 --
html/iredmail-easy.setup.sudo.html | 4 -
...iredmail-easy.what.is.ssh.jump.server.html | 2 -
html/ldap.add.catch-all.html | 1 -
html/ldap.add.mail.list.html | 4 -
html/ldap.bulk.create.mail.users.html | 7 +-
html/letsencrypt.html | 21 --
html/mailbox.sharing-zh_CN.html | 4 -
html/mailbox.sharing.html | 4 -
html/manage.iredapd.html | 23 --
html/manage.subscribable.mailing.list.html | 8 -
html/manage.subscribeable.mailing.lists.html | 1 -
html/migrate.or.upgrade.iredadmin.html | 2 -
html/migrate.to.iredmail.easy.html | 2 -
html/migrate.to.new.iredmail.server.html | 6 -
....incoming.and.outgoing.mails.with.bcc.html | 9 +-
html/move.detected.spam.to.junk.folder.html | 1 -
html/network.ports-es_MX.html | 254 ++++++++++++++++++
html/network.ports.html | 6 +-
html/no.x-spam.headers-it_IT.html | 2 -
html/no.x-spam.headers.html | 3 -
html/openldap.intro.html | 1 -
html/password.hashes-zh_CN.html | 5 -
html/password.hashes.html | 4 -
html/per-account.transport.html | 2 -
html/per-user.send.receive.restrictions.html | 6 +-
html/performance.tuning-it_IT.html | 2 +-
html/performance.tuning-zh_CN.html | 2 +-
html/performance.tuning.html | 2 +-
...l.for.certain.user.to.external.script.html | 4 -
html/promote.user.to.be.global.admin.html | 2 -
html/public.folder.html | 13 -
...quarantine.clean.mails.per-user-it_IT.html | 4 -
html/quarantine.clean.mails.per-user.html | 4 -
html/quarantining-it_IT.html | 16 +-
html/quarantining-old.html | 16 +-
html/quarantining.html | 13 +-
html/recalculate.mailbox.quota.html | 4 -
html/relayhost.html | 13 +-
html/reset.user.password-zh_CN.html | 4 -
html/reset.user.password.html | 8 -
...o.login.from.specified.ip.or.networks.html | 2 -
...out.email.from.specified.ip.addresses.html | 5 -
html/setup.dns.html | 18 +-
html/sign.disclaimer.html | 2 -
...n.dkim.signature.for.new.domain-it_IT.html | 17 +-
html/sign.dkim.signature.for.new.domain.html | 17 +-
html/sogo-centos-6-mysql.html | 18 --
html/sogo-centos-6-openldap.html | 16 --
html/sogo.manage.resources.html | 5 -
html/sql.add.alias.domain.html | 1 -
html/sql.bulk.create.mail.users.html | 7 +-
html/sql.create.catch-all-20170701.html | 3 +-
html/sql.create.catch-all.html | 3 +-
html/sql.create.mail.alias-20170701.html | 4 +-
html/sql.create.mail.alias.html | 5 +-
html/sql.create.mail.user.html | 8 +-
html/sql.user.mail.forwarding-20170701.html | 3 -
html/sql.user.mail.forwarding.html | 3 -
html/srs.html | 10 -
html/store.spamassassin.bayes.in.sql.html | 9 -
html/subdomain.web.apps.html | 5 -
html/track.user.last.login.html | 5 -
html/unattended.iredmail.installation.html | 6 +-
html/upgrade.debian.10-11.html | 3 -
html/upgrade.debian.8-9.html | 3 -
html/upgrade.debian.9-10.html | 3 -
html/upgrade.dovecot.1.1.to.1.2.html | 10 -
html/upgrade.dovecot.2.2-2.3.html | 9 -
html/upgrade.iredapd.html | 1 -
html/upgrade.iredapd.py2.html | 1 -
html/upgrade.iredmail.0.3.2-0.4.0.html | 38 ---
html/upgrade.iredmail.0.4.0-0.5.0.html | 37 ---
html/upgrade.iredmail.0.5.0-0.5.1.html | 17 --
html/upgrade.iredmail.0.5.1-0.6.0.html | 85 ++----
html/upgrade.iredmail.0.6.1-0.7.0.html | 23 --
html/upgrade.iredmail.0.7.0-0.7.1.html | 1 -
html/upgrade.iredmail.0.7.1-0.7.2.html | 1 -
html/upgrade.iredmail.0.7.2-0.7.3.html | 3 -
html/upgrade.iredmail.0.7.3-0.7.4.html | 5 -
html/upgrade.iredmail.0.7.4-0.8.0.html | 14 -
html/upgrade.iredmail.0.8.0-0.8.1.html | 26 --
html/upgrade.iredmail.0.8.1-0.8.2.html | 12 -
html/upgrade.iredmail.0.8.2-0.8.3.html | 7 -
html/upgrade.iredmail.0.8.3-0.8.4.html | 17 --
html/upgrade.iredmail.0.8.4-0.8.5.html | 24 --
html/upgrade.iredmail.0.8.5-0.8.6.html | 10 -
html/upgrade.iredmail.0.8.6-0.8.7.html | 19 --
html/upgrade.iredmail.0.8.7-0.9.0.html | 19 --
html/upgrade.iredmail.0.9.0-0.9.1.html | 51 ----
html/upgrade.iredmail.0.9.1-0.9.2.html | 30 ---
html/upgrade.iredmail.0.9.2-0.9.3.html | 72 +----
html/upgrade.iredmail.0.9.3-0.9.4.html | 6 -
html/upgrade.iredmail.0.9.4-0.9.5.html | 61 +----
html/upgrade.iredmail.0.9.5-0.9.5-1.html | 3 -
html/upgrade.iredmail.0.9.5.1-0.9.6.html | 47 ----
html/upgrade.iredmail.0.9.6-0.9.7.html | 27 --
html/upgrade.iredmail.0.9.7-0.9.8.html | 44 +--
html/upgrade.iredmail.0.9.8-0.9.9.html | 26 --
html/upgrade.iredmail.0.9.9-1.0.html | 23 --
html/upgrade.iredmail.1.0-1.1.html | 11 -
html/upgrade.iredmail.1.1-1.2.html | 11 -
html/upgrade.iredmail.1.2-1.2.1.html | 1 -
html/upgrade.iredmail.1.2.1-1.3.html | 19 --
html/upgrade.iredmail.1.3-1.3.1.html | 2 -
html/upgrade.iredmail.1.3.1-1.3.2.html | 5 -
html/upgrade.iredmail.1.3.2-1.4.0.html | 10 -
html/upgrade.iredmail.1.4.0-1.4.1.html | 23 +-
html/upgrade.iredmail.1.4.1-1.4.2.html | 15 +-
html/upgrade.iredmail.1.4.2-1.4.3.html | 5 -
html/upgrade.mlmmjadmin.html | 1 -
html/upgrade.mlmmjadmin.py2.html | 1 -
html/upgrade.netdata.html | 1 -
html/upgrade.old.iredapd.html | 7 -
html/upgrade.sogo.2.to.3.html | 10 -
html/upgrade.sogo.3.to.4.html | 11 -
html/upgrade.sogo.4.to.5.html | 13 -
html/upgrade.sogo.combined.sql.tables.html | 3 -
html/upgrade.ubuntu.14.04-16.04.html | 6 -
html/upgrade.ubuntu.18.04-20.04.html | 1 -
html/use.a.bought.ssl.certificate.html | 3 -
html/used.components-es_MX.html | 110 ++++++++
html/used.components.html | 6 +-
html/user.alias.address-20170701.html | 1 -
html/user.alias.address.html | 1 -
html/webmail.customization.html | 1 -
.../why.build.your.own.mail.server-es_MX.html | 68 +++++
html/why.build.your.own.mail.server.html | 6 +-
html/why.no.sieve.support.in.sogo.html | 1 -
tools/markdown2html.py | 7 +-
246 files changed, 764 insertions(+), 2771 deletions(-)
create mode 100644 convert.py
create mode 100644 es_MX/overview/0-network.ports.md
create mode 100644 es_MX/overview/0-used.components.md
create mode 100644 es_MX/overview/0-why.build.your.own.mail.server.md
create mode 100644 es_MX/overview/_summary.md
create mode 100644 es_MX/overview/_title.md
create mode 100644 html/index-es_MX.html
create mode 100644 html/network.ports-es_MX.html
create mode 100644 html/used.components-es_MX.html
create mode 100644 html/why.build.your.own.mail.server-es_MX.html
diff --git a/convert.py b/convert.py
new file mode 100644
index 00000000..2034fa2c
--- /dev/null
+++ b/convert.py
@@ -0,0 +1,49 @@
+#!/usr/bin/env python3
+
+from pathlib import Path
+
+
+OUTPUT_DIR = 'html'
+CHAPTERS = (
+ 'overview',
+ 'installation',
+ 'mua',
+ 'upgrade',
+ 'iredmail-easy',
+ 'migrations',
+ 'howto',
+ 'integrations',
+ 'cluster',
+ 'iredadmin',
+ 'troubleshooting',
+ 'faq')
+
+
+def _get_dir_languages(path):
+ FILE_NAME = '_lang.md'
+
+ languages = {}
+ directories = [p for p in Path(path).iterdir() if p.is_dir()]
+ for d in directories:
+ path_name = d / FILE_NAME
+ if path_name.exists():
+ languages[d.name.lower()] = {
+ 'path': d,
+ 'name': path_name.read_text(encoding='utf-8').strip()
+ }
+
+ return languages
+
+
+def main():
+ current_dir = Path(__file__).parent
+ output_dir = current_dir / OUTPUT_DIR
+
+ languages = _get_dir_languages(current_dir)
+ en = languages.pop('en_us')
+
+ return
+
+
+if __name__ == '__main__':
+ main()
diff --git a/convert.sh b/convert.sh
index e7b2a747..25957056 100755
--- a/convert.sh
+++ b/convert.sh
@@ -30,7 +30,7 @@ strip_name_prefix()
}
# Available translations
-export all_languages='en_US it_IT lv_LV zh_CN'
+export all_languages='en_US it_IT zh_CN es_MX'
# Chapter directories in specified order
export all_chapter_dirs="overview \
diff --git a/es_MX/overview/0-network.ports.md b/es_MX/overview/0-network.ports.md
new file mode 100644
index 00000000..f6f032db
--- /dev/null
+++ b/es_MX/overview/0-network.ports.md
@@ -0,0 +1,42 @@
+# Qué puertos de red deben estar abiertos para iRedMail
+
+Puerto | Servicio | Software | Comentario | ¿Permitir el acceso público?
+--- |--- |--- |--- |---
+25 | smtp | Postfix | Used for communication betweem mail servers. __WARNING__: This port __MUST__ be open, otherwise you cannot receive email sent by other mail servers. | __YES (REQUIRED)__{: .red }
+587 | submission | Postfix | SMTP over TLS. Used by end users to send/submit email. | YES (open to your end users)
+110 | pop3 | Dovecot | Used by end users to retrieve emails via POP3 protocol, secure connection over STARTTLS is enforced by default. | YES (open to your end users)
+995 | pop3s | Dovecot | Used by end users to retrieve emails via POP3 protocol over SSL. | YES (open to your end users)
+143 | imap |Dovecot | Used by end users to retrieve emails via IMAP protocol, secure connection over STARTTLS is enforced by default. | YES (open to your end users)
+993 | imaps | Dovecot | Used by end users to retrieve emails via IMAP protocol over SSL. | YES (open to your end users)
+24 | lmtp | Dovecot | Used to deliver email to local mailboxes via LMTP protocol. | NO (listen on `127.0.0.1` by default)
+4190 | managesieve | Dovecot | Sieve service used by end users to manage mail filters. Note: in old iRedMail releases, it's port 2000 (deprecated and not even listed in `/etc/services` file). | NO (disabled by default and users are forced to manage mail filters with webmail)
+80 | http | Apache/Nginx | Web service. Redirect to https by default. | YES (open to your webmail users)
+443 | https | Apache/Nginx | Web service over over SSL, secure connection. | YES (open to your webmail and ActiveSync users)
+3306 | mysql | MySQL/MariaDB | MySQL/MariaDB database service | NO (listen on `127.0.0.1` by default)
+5432 | postgresql | PostgreSQL | PostgreSQL database service | NO (listen on `127.0.0.1` by default)
+389 | ldap | OpenLDAP (or OpenBSD ldapd) | LDAP service, STARTTLS is available for secure connection. | NO (listen on `127.0.0.1` by default)
+636 |ldaps | OpenLDAP (or OpenBSD ldapd) | LDAP service over SSL. Deprecated, port 389 with STARTTLS is recommended. | NO (Not enabled by default)
+10024 | | Amavisd-new | Used to scan inbound messages, includes spam/virus scanning, DKIM verification, applying spam policy. | NO (listen on `127.0.0.1` by default)
+10025 | smtp | Postfix | Used by Amavisd to inject scanned emails back to Postfix queue. | NO (listen on `127.0.0.1` by default)
+10026 | | Amavisd-new | Used to scan outbound messages, includes spam/virus scanning, DKIM signing, applying spam policy. | NO (listen on `127.0.0.1` by default)
+10027 | | Amavisd-new | Used by mlmmj mailing list manager, it bypasses spam/virus/header/banned checks by default, but have DKIM signing enabled. | NO (listen on `127.0.0.1` by default)
+10028 | | Postfix | Used by Amavisd-new to handle email message sent by mlmmj mailing list manager. Introduced in iRedMail-0.9.9. | NO (listen on `127.0.0.1` by default)
+9998 | | Amavisd-new | Used to manage quarantined emails. | NO (listen on `127.0.0.1` by default)
+7777 | | iRedAPD | Postfix policy service for greylisting, whitelisting, blacklists, throttling, etc | NO (listen on `127.0.0.1` by default)
+7778 | | iRedAPD | [SRS](https://en.wikipedia.org/wiki/Sender_Rewriting_Scheme) sender address rewritting. | NO (listen on `127.0.0.1` by default)
+7779 | | iRedAPD | [SRS](https://en.wikipedia.org/wiki/Sender_Rewriting_Scheme) recipient address rewritting. | NO (listen on `127.0.0.1` by default)
+7790 | http | mlmmjadmin | RESTful API server used to manage mlmmj mailing lists. Introduced in iRedMail-0.9.8. | NO (listen on `127.0.0.1` by default)
+7791 | http | iredadmin | iRedAdmin (standalone uwsgi instance). Introduced in iRedMail-0.9.9. | NO (listen on `127.0.0.1` by default)
+20000 | | SOGo | SOGo groupware | NO (listen on `127.0.0.1` by default)
+11211 | | Memcached | A distributed, high performance memory object caching system. Currently used by only SOGo Groupware. | NO (listen on `127.0.0.1` by default)
+12340 | | Dovecot | Dovecot quota status. Introduced in iRedMail-1.0. | NO (listen on `127.0.0.1` by default)
+24242 | | Dovecot | Dovecot service status. Introduced in iRedMail-0.9.8. | NO (listen on `127.0.0.1` by default)
+19999 | | Netdata | Netdata monitor. Introduced in iRedMail-0.9.8. | NO (listen on `127.0.0.1` by default)
+
+!!! Nota:
+
+ * En iRedMail-0.9.2 y versiones anteriores, Policyd o Cluebringer escuchan el
+ puerto 10031. Han sido eliminados en iRedMail-0.9.3, y reemplazados por
+ iRedAPD.
+ * El puerto 465, para por ejemplo SMTP sobre SSL, ha sido depreciado por años.
+ Por favor, use el puerto 587.
diff --git a/es_MX/overview/0-used.components.md b/es_MX/overview/0-used.components.md
new file mode 100644
index 00000000..e3f0d201
--- /dev/null
+++ b/es_MX/overview/0-used.components.md
@@ -0,0 +1,38 @@
+# Major open source softwares used in iRedMail
+
+[TOC]
+
+## Used Components
+
+Name | Comment
+--- |---
+[Postfix](http://www.postfix.org) | Mail Transfer Agent (MTA)
+[Dovecot](http://www.dovecot.org) | POP3, IMAP and Managesieve server
+[Nginx](http://www.nginx.org), [Nginx](http://nginx.org) | Web server
+[OpenLDAP](http://www.openldap.org), [ldapd(8)](http://www.openbsd.org/cgi-bin/man.cgi/OpenBSD-current/man8/ldapd.8?query=ldapd&arch=i386) | LDAP server, used for storing mail accounts (optional)
+[MySQL](http://www.mysql.com), [MariaDB](https://mariadb.org), [PostgreSQL](http://www.postgresql.org) | SQL server used to store application data. Could be used to store mail accounts too.
+[mlmmj](http://mlmmj.org) | Mailing list manager. Shipped in iRedMail-0.9.8 and later releases.
+[Amavisd-new](http://www.amavis.org) | Interface between Postfix and SpamAssassin, ClamAV.
+[SpamAssassin](http://spamassassin.apache.org) | Content-based spam scanner
+[ClamAV](http://www.clamav.net/) | Virus scanner
+[Roundcube webmail](http://roundcube.net) | Webmail (PHP)
+[SOGo Groupware](http://sogo.nu) | A groupware which provides calendar (CalDAV), contact (CardDAV), tasks and ActiveSync services
+[Fail2ban](http://www.fail2ban.org) | Scans log files and bans IPs that show the malicious signs
+[iRedAPD](https://github.com/iredmail/iRedAPD/) | A simple postfix policy server developed by iRedMail team, with SRS (Sender Rewrite Scheme) support.
+
+## The Big Picture
+
+![](./images/big.picture.png)
+
+## Mail Flow of Inbound Emails
+
+![](./images/flow.inbound.png)
+
+## Mail Flow of Outbound Emails
+
+![](./images/flow.outbound.png)
+
+## See also
+
+* [Locations of configuration and log files of major components](./file.locations.html)
+* [Which network ports are open by iRedMail](./network.ports.html)
diff --git a/es_MX/overview/0-why.build.your.own.mail.server.md b/es_MX/overview/0-why.build.your.own.mail.server.md
new file mode 100644
index 00000000..5b940805
--- /dev/null
+++ b/es_MX/overview/0-why.build.your.own.mail.server.md
@@ -0,0 +1,37 @@
+# Why build your own mail server instead of outsourcing to external entities
+
+Quote from [Spamhaus news article](http://www.spamhaus.org/news/article/719/a-survival-guide-for-the-small-mail-server):
+
+> outsourcing (the mail service) does not come without costs, even when the
+> outsourced service appears to be "free". Hidden costs include:
+>
+> * Another organization can see the content of all messages. In some cases,
+> the contents of messages are stored on the outsourcing company's servers
+> indefinitely. External access to unencrypted emails poses privacy and
+> confidentiality issues. Furthermore, the outsourcing company may be located
+> in another country and be subjected to different regulations and obligations.
+>
+> * In some cases, the outsourcing company's terms and conditions allow it to
+> search the content of emails to aid in targeting advertising, which poses
+> even greater privacy and confidentiality problems.
+>
+> * The organization no longer has control of its own email security.
+> Server-based encryption and authentication is managed by the outsourcing
+> company, requiring end-to-end encryption for sensitive communications.
+>
+> * Large companies with many customers are often a target of cybercrime
+> attacks aimed at stealing customer data, and some of these attacks have
+> succeeded.
+>
+> * Inspection of SMTP transaction logs may be impossible for the end user.
+> Troubleshooting failed deliveries and other email problems requires
+> interacting with an external support desk. Support desks are sometimes
+> slow to respond. First-line support, in particular, might lack the
+> training and access to fix any but simple problems, requiring escalation
+> and further delays.
+>
+> * Sharing a mail server with other organizations can cause delivery issues
+> when a user at another organization sends spam through that mail server.
+> When the outsourcing company fails to detect and block spam, or is slow to
+> terminate service to spammers, the likelihood of problems increases
+> substantially.
diff --git a/es_MX/overview/_summary.md b/es_MX/overview/_summary.md
new file mode 100644
index 00000000..d62fd232
--- /dev/null
+++ b/es_MX/overview/_summary.md
@@ -0,0 +1,3 @@
+* [Por qué construir su propio servidor de correo en lugar de subcontratar un servicio](./why.build.your.own.mail.server.html)
+* [Principal softwar libre utilizado en iRedMail, y el flujo general del correo](./used.components.html)
+* [Qué puertos de red abre iRedMail](./network.ports.html)
diff --git a/es_MX/overview/_title.md b/es_MX/overview/_title.md
new file mode 100644
index 00000000..ef7c4ec5
--- /dev/null
+++ b/es_MX/overview/_title.md
@@ -0,0 +1 @@
+Visión General {: #overview }
diff --git a/html/active.directory.html b/html/active.directory.html
index 18725927..31479eba 100644
--- a/html/active.directory.html
+++ b/html/active.directory.html
@@ -132,17 +132,15 @@ same account vmail
in AD, with strong and complex password.
Make sure this newly created user is able to connect to AD server with
below command on iRedMail server:
-# ldapsearch -x -h ad.example.com -D 'vmail' -W -b 'cn=users,dc=example,dc=com'
+# ldapsearch -x -h ad.example.com -D 'vmail' -W -b 'cn=users,dc=example,dc=com'
Enter password: password_of_vmail
-
If it prints all users stored in AD server, then it's working as expected.
If you're using LDAPS, replace -h ad.example.com
by
-H ldaps://ad.example.com:636
instead:
-# ldapsearch -x -H ldaps://ad.example.com:636 -D 'vmail' -W -b 'cn=users,dc=example,dc=com'
+# ldapsearch -x -H ldaps://ad.example.com:636 -D 'vmail' -W -b 'cn=users,dc=example,dc=com'
Enter password: password_of_vmail
-
If LDAPS doesn't work, you may need to update parameter TLS_CACERT
in
/etc/openldap/ldap.conf
(RHEL/CentOS) or /etc/ldap/ldap.conf
to use correct CA
certificate. For example:
@@ -151,63 +149,53 @@ certificate. For example:
TLS_CACERT /etc/pki/tls/certs/ca-bundle.trust.crt
-
- on Debian/Ubuntu, use
/etc/ssl/certs/ca-certificates.crt
:
TLS_CACERT /etc/ssl/certs/ca-certificates.crt
-
Enable LDAP query with AD in Postfix
Disable unused iRedMail special settings:
-postconf -e virtual_alias_maps=''
+postconf -e virtual_alias_maps=''
postconf -e sender_bcc_maps=''
postconf -e recipient_bcc_maps=''
postconf -e relay_domains=''
postconf -e relay_recipient_maps=''
postconf -e sender_dependent_relayhost_maps=''
-
Add your mail domain name in smtpd_sasl_local_domain
and virtual_mailbox_domains
:
-postconf -e smtpd_sasl_local_domain='example.com'
+postconf -e smtpd_sasl_local_domain='example.com'
postconf -e virtual_mailbox_domains='example.com'
-
Change transport maps setting:
postconf -e transport_maps='hash:/etc/postfix/transport'
-
Enable AD query. Note: We will create these 3 files later.
-postconf -e smtpd_sender_login_maps='proxy:ldap:/etc/postfix/ad_sender_login_maps.cf'
+postconf -e smtpd_sender_login_maps='proxy:ldap:/etc/postfix/ad_sender_login_maps.cf'
-
-postconf -e virtual_mailbox_maps='proxy:ldap:/etc/postfix/ad_virtual_mailbox_maps.cf'
+postconf -e virtual_mailbox_maps='proxy:ldap:/etc/postfix/ad_virtual_mailbox_maps.cf'
-
- Verify local mail lists/groups.
postconf -e virtual_alias_maps='proxy:ldap:/etc/postfix/ad_virtual_group_maps.cf'
-
- Create/edit file:
/etc/postfix/transport
.
example.com dovecot
-
Note: the name dovecot
used here is a Postfix transport defined in
/etc/postfix/master.cf
, used to deliver received emails to local user mailboxes.
Run postmap
so that postfix can read it:
# postmap hash:/etc/postfix/transport
-
- Create file:
/etc/postfix/ad_sender_login_maps.cf
:
@@ -224,7 +212,6 @@ query_filter = (&(userPrincipalName=%s)(objectClass=person)(!(userAccount
result_attribute= userPrincipalName
debuglevel = 0
-
- Create file:
/etc/postfix/ad_virtual_mailbox_maps.cf
:
@@ -242,7 +229,6 @@ result_attribute= userPrincipalName
result_format = %d/%u/Maildir/
debuglevel = 0
-
Note: We hard-code user's mailbox path in result_format =
parameter, it
will be something like example.com/username/Maildir/
.
@@ -263,7 +249,6 @@ leaf_result_attribute = mail
result_attribute= userPrincipalName
debuglevel = 0
-
Notes:
- If your user have email address in both
mail
and userPrincipalName
, you
@@ -285,10 +270,9 @@ Before testing, we have to create two testing mail accounts first:
user user@example.com
as group member.
- Query mail user account with below command:
-
# postmap -q user@example.com ldap:/etc/postfix/ad_virtual_mailbox_maps.cf
+# postmap -q user@example.com ldap:/etc/postfix/ad_virtual_mailbox_maps.cf
example.com/user/Maildir/
-
If nothing returned by the command, it means LDAP query doesn't get expected
result. Please set debuglevel = 1
file /etc/postfix/ad_virtual_mailbox_maps.cf
,
then query again, it now will print detailed debug message. If you're not
@@ -298,12 +282,10 @@ familiar with LDAP related info, please post the debug message in our
# postmap -q user@example.com ldap:/etc/postfix/ad_sender_login_maps.cf
user@example.com
-
Verify mail group
# postmap -q testgroup@example.com ldap:/etc/postfix/ad_virtual_group_maps.cf
user@example.com
-
NOTE: postmap
return nothing if:
- mail group doesn't exist
@@ -343,7 +325,6 @@ pass_attrs = userPassword=password
default_pass_scheme = CRYPT
user_attrs = =home=/var/vmail/vmail1/%Ld/%Ln/,=mail=maildir:~/Maildir/
-
Restart dovecot service to make it work.
Attention
@@ -373,7 +354,6 @@ number of gigabytes:
^] # <- Quit telnet with "Ctrl+]", then type 'quit'.
-
Note: Do NOT miss the dot character before login
command. if it returns
Logged in
, then dovecot + AD works.
Enable Active Directory integration in Roundcube webmail for Global LDAP Address Book
@@ -383,7 +363,7 @@ address book setting added by iRedMail, and add new setting for AD like below:
on RHEL/CentOS/Debian/Ubuntu and OpenBSD: it's /opt/www/roundcubemail/config/config.inc.php
on FreeBSD: it's /usr/local/www/roundcubemail/config/config.inc.php
-
#
+#
# "sql" is personal address book stored in roundcube database.
# "global_ldap_abook" is the new LDAP address book for AD, we will create it below.
#
@@ -456,7 +436,6 @@ $config['ldap_public']["global_ldap_abook"] = array(
// Directory setups
);
-
Enable Active Directory integration in SOGo Groupware
Edit SOGo config file /etc/sogo/sogo.conf
, comment out the LDAP address book
setting added by iRedMail, and add new setting for AD like below:
@@ -542,7 +521,6 @@ setting added by iRedMail, and add new setting for AD like below:
}
);
-
Additions documents
- If your mail domain name is different than Windows Active Directory domain: https://forum.iredmail.org/topic3165-integration-with-windows-domain.html
diff --git a/html/additional.smtp.port-it_IT.html b/html/additional.smtp.port-it_IT.html
index 1be8e022..f943fa84 100644
--- a/html/additional.smtp.port-it_IT.html
+++ b/html/additional.smtp.port-it_IT.html
@@ -39,12 +39,10 @@
-o smtpd_sasl_auth_enable=yes
-o smtpd_sasl_security_options=noanonymous
-
2525
è il nuovo numero di porta per il servizio smtp. potete cambiarlo nel valore che preferite.
Il riavvio del servizio Posfitx è necessario. Dopo il riavvio potete verificare se si sta ascoltando su questa nuova porta:
netstat -ntlp | grep 2525
-
Ora è il momento di aggiornare i vostri apparati di rete, affinché inviino la posta attraverso questo numero di porta, senza usare STARTTLS o SSL.
Note
diff --git a/html/additional.smtp.port.html b/html/additional.smtp.port.html
index 7c9363c9..c9878f5e 100644
--- a/html/additional.smtp.port.html
+++ b/html/additional.smtp.port.html
@@ -48,7 +48,6 @@ in
/etc/postfix/master.cf
(on Linux/OpenBSD) or
-o smtpd_tls_security_level=may
-o smtpd_sender_restrictions=permit_sasl_authenticated,reject
-
2525
is the new port number for smtp service, you're free to change it to
your favourite port number.
@@ -58,7 +57,6 @@ in /etc/postfix/master.cf
(on Linux/OpenBSD) or
it's listening on this new port:
netstat -ntlp | grep 2525
-
Now update your network devices to send email through this port number,
without STARTTLS and SSL.
diff --git a/html/allow.certain.users.to.send.email.as.different.user-it_IT.html b/html/allow.certain.users.to.send.email.as.different.user-it_IT.html
index 90b8c377..e179542a 100644
--- a/html/allow.certain.users.to.send.email.as.different.user-it_IT.html
+++ b/html/allow.certain.users.to.send.email.as.different.user-it_IT.html
@@ -40,22 +40,19 @@ con il plugin iRedAPD
reject_sender_login_mismatch
.
smtpd_sender_restrictions = permit_mynetworks, permit_sasl_authenticated
-
- Nel file di configurazione iRedADP
/opt/iredapd/settings.py
abilita il
plugin:
-
plugins = ['reject_sender_login_mismatch', ...]
+plugins = ['reject_sender_login_mismatch', ...]
-
- Elenca i mittenti che sono autorizzati ad inviare email con indirizzi
diversi dai propri, nel file di configurazione iRedAPD
ALLOWED_LOGIN_MISMATCH_SENDERS
. Per esempio:
-ALLOWED_LOGIN_MISMATCH_SENDERS = ['user1@here.com', 'user2@here.com']
+ALLOWED_LOGIN_MISMATCH_SENDERS = ['user1@here.com', 'user2@here.com']
-
NOTA: Questo parametro non è presnete di default, aggiungilo manualmente.
Riavvia il servizio iRedAPD. Questo è tutto.