diff options
| author | f--t <2817965+f--t@users.noreply.github.com> | 2019-11-19 13:16:16 -0800 |
|---|---|---|
| committer | GitHub <noreply@github.com> | 2019-11-19 13:16:16 -0800 |
| commit | 4c18309ca68010db90ee294d945a3ee5b71d8c9a (patch) | |
| tree | eb4fc432f7d4acb0374962a6044c89ad69ff1f77 /nixos/modules/services/mail | |
| parent | d7982b7382f61a524de4eaf8bbfb25156be4c6c2 (diff) | |
| parent | 943508a7fa95ce6aa8f14a9a717881e436b3816e (diff) | |
| download | nixlib-4c18309ca68010db90ee294d945a3ee5b71d8c9a.tar nixlib-4c18309ca68010db90ee294d945a3ee5b71d8c9a.tar.gz nixlib-4c18309ca68010db90ee294d945a3ee5b71d8c9a.tar.bz2 nixlib-4c18309ca68010db90ee294d945a3ee5b71d8c9a.tar.lz nixlib-4c18309ca68010db90ee294d945a3ee5b71d8c9a.tar.xz nixlib-4c18309ca68010db90ee294d945a3ee5b71d8c9a.tar.zst nixlib-4c18309ca68010db90ee294d945a3ee5b71d8c9a.zip | |
Merge branch 'master' into fix/roundcube
Diffstat (limited to 'nixos/modules/services/mail')
| -rw-r--r-- | nixos/modules/services/mail/mailhog.nix | 1 | ||||
| -rw-r--r-- | nixos/modules/services/mail/opensmtpd.nix | 18 | ||||
| -rw-r--r-- | nixos/modules/services/mail/postfix.nix | 8 | ||||
| -rw-r--r-- | nixos/modules/services/mail/rspamd.nix | 2 |
4 files changed, 16 insertions, 13 deletions
diff --git a/nixos/modules/services/mail/mailhog.nix b/nixos/modules/services/mail/mailhog.nix index b78f4c8e0e66..0f998c6d0ea6 100644 --- a/nixos/modules/services/mail/mailhog.nix +++ b/nixos/modules/services/mail/mailhog.nix @@ -27,6 +27,7 @@ in { users.users.mailhog = { name = cfg.user; description = "MailHog service user"; + isSystemUser = true; }; systemd.services.mailhog = { diff --git a/nixos/modules/services/mail/opensmtpd.nix b/nixos/modules/services/mail/opensmtpd.nix index a870550ba50b..1fabe2da45c5 100644 --- a/nixos/modules/services/mail/opensmtpd.nix +++ b/nixos/modules/services/mail/opensmtpd.nix @@ -101,6 +101,12 @@ in { }; }; + systemd.tmpfiles.rules = [ + "d /var/spool/smtpd 711 root - - -" + "d /var/spool/smtpd/offline 770 root smtpq - -" + "d /var/spool/smtpd/purge 700 smtpq root - -" + ]; + systemd.services.opensmtpd = let procEnv = pkgs.buildEnv { name = "opensmtpd-procs"; @@ -110,18 +116,6 @@ in { in { wantedBy = [ "multi-user.target" ]; after = [ "network.target" ]; - preStart = '' - mkdir -p /var/spool/smtpd - chmod 711 /var/spool/smtpd - - mkdir -p /var/spool/smtpd/offline - chown root.smtpq /var/spool/smtpd/offline - chmod 770 /var/spool/smtpd/offline - - mkdir -p /var/spool/smtpd/purge - chown smtpq.root /var/spool/smtpd/purge - chmod 700 /var/spool/smtpd/purge - ''; serviceConfig.ExecStart = "${cfg.package}/sbin/smtpd -d -f ${conf} ${args}"; environment.OPENSMTPD_PROC_PATH = "${procEnv}/libexec/opensmtpd"; }; diff --git a/nixos/modules/services/mail/postfix.nix b/nixos/modules/services/mail/postfix.nix index d5fd76da970b..df438a0c69d1 100644 --- a/nixos/modules/services/mail/postfix.nix +++ b/nixos/modules/services/mail/postfix.nix @@ -631,6 +631,14 @@ in setgid = true; }; + security.wrappers.mailq = { + program = "mailq"; + source = "${pkgs.postfix}/bin/mailq"; + group = setgidGroup; + setuid = false; + setgid = true; + }; + security.wrappers.postqueue = { program = "postqueue"; source = "${pkgs.postfix}/bin/postqueue"; diff --git a/nixos/modules/services/mail/rspamd.nix b/nixos/modules/services/mail/rspamd.nix index 4db35d9e89ab..7ef23ad17262 100644 --- a/nixos/modules/services/mail/rspamd.nix +++ b/nixos/modules/services/mail/rspamd.nix @@ -60,7 +60,7 @@ let }; type = mkOption { type = types.nullOr (types.enum [ - "normal" "controller" "fuzzy_storage" "rspamd_proxy" "lua" "proxy" + "normal" "controller" "fuzzy" "rspamd_proxy" "lua" "proxy" ]); description = '' The type of this worker. The type <literal>proxy</literal> is |