Home

CentOS 8 QMT Host (Testing repository)
(Tested install, SMTP, SMTPS, Submission & IMAPS - 15 OCT 2020)

1. CentOS 8 Minimal Install
2. QMT Install ('Many-Domain' install option w/MySQL driver. Dovecot will eventually end support of vpopmail driver)
   1. # curl -O https://raw.githubusercontent.com/qmtoaster/scripts/master/qt_install_cos8.sh && \
      chmod 755 qt_install_cos8.sh && ./qt_install_cos8.sh
   2. EPEL ClamAV is standard with this install
   3. # toaststat

      Status of toaster services
      send: up (pid 45537) 5 seconds
      smtp: up (pid 45533) 5 seconds
      smtps: up (pid 45535) 5 seconds
      submission: up (pid 45542) 5 seconds
      send/log: up (pid 45532) 5 seconds
      smtp/log: up (pid 45536) 5 seconds
      smtps/log: up (pid 45544) 5 seconds
      submission/log: up (pid 45534) 5 seconds
   
      mysql mysqld
      systemd service:       clamd@scan.service:       [ OK ]
      systemd service:         clamav-freshclam:       [ OK ]
      systemd service:             spamassassin:       [ OK ]
      systemd service:                  dovecot:       [ OK ]
      systemd service:                   mysqld:       [ OK ]
      systemd service:                    httpd:       [ OK ]
      systemd service:                    named:       [ OK ]
      systemd service:                  chronyd:       [ OK ]
      systemd service:                     sshd:       [ OK ]
      systemd service:                    crond:       [ OK ]
      systemd service:                    acpid:       [ OK ]
      systemd service:                      atd:       [ OK ]
      systemd service:                   autofs:       [ OK ]
      systemd service:                   smartd:       [ OK ]
      systemd service:               irqbalance:       [ OK ] ( Multiple processors only )
   

   4. Check IMAPS, SMTPS, & Submission connections
      wget https://raw.githubusercontent.com/qmtoaster/scripts/master/conntest && chmod 755 conntest && ./conntest
   5. Incoming mail should have 'scanners: attach: 1.4.0 clamav: 0.102.4/m:59/d:25958 spam: 3.4.2' in emails' headers
   6. To troubleshoot simscan, clamav, or spamc add 'SIMSCAN_DEBUG="5"' to tcp.smtp, reload cbd (qmailctl cdb) and
      watch output of smtp log. You should see something like the following:
      2020-10-15 13:14:54.487439500 simscan: runned_scanners is attach: 1.4.0 clamav: 0.102.4/m:59/d:25957
      2020-10-15 13:14:54.487447500 simscan: found 0.102.4/m:59/d:25957
      2020-10-15 13:14:54.487447500 simscan: normal clamdscan return code: 0
      
      2020-10-15 23:20:18.803403500 simscan: calling spamc
      2020-10-15 23:20:18.803412500 simscan: calling /usr/bin/spamc spamc
      2020-10-15 23:20:20.417465500 simscan: cdb looking up version spam
      2020-10-15 23:20:20.417467500 simscan: runned_scanners is attach: 1.4.0 clamav: 0.102.4/m:59/d:25957 spam: 3.4.2
      2020-10-15 23:20:20.417468500 simscan: found 3.4.2
      2020-10-15 23:20:20.417468500 simscan:[4629]:CLEAN (0.30/12.00):1.9820s
   7. Installation of QMT with the many-domain option, to which QMT will eventually fully migrate, utilizes
      the dovecot communities' RPMS and authenticates by sql query not the vpopmail driver, so, maintenance
      of a dovecot .qt RPM is no longer necessary, and will most likely lead to more timely updates.
   8. Convert the vpopmail DB domain tables (one per domain) with this script to one table containing
      all (many) the domains. The original tables will be left intact. Back up anyway!

• Qmail-1.03-3.3.1 (Testing repo)
  1. Patches applied

CentOS 7 QMT Host
(Tested install, send/receive email, ClamAV conversion, 9 MAR 2020)

1. CentOS 7 Minimal Install
2. QMT Install
   1. # curl -O https://raw.githubusercontent.com/qmtoaster/scripts/master/qt_prep_cos7.sh && \
      chmod 755 qt_prep_cos7.sh && ./qt_prep_cos7.sh
      (reboot)
   2. # ./qt_install_cos7.sh
   3. Convert to EPEL ClamAV (optional, but I will eventually stop building QT version)
   4. # toaststat

Status of toaster services
send: up (pid 1323) 1517 seconds
smtp: up (pid 1324) 1517 seconds
submission: up (pid 1325) 1517 seconds
send/log: up (pid 1316) 1517 seconds
smtp/log: up (pid 1311) 1517 seconds
submission/log: up (pid 1314) 1517 seconds

systemd service:    clamav-daemon.service:       [ OK ]
systemd service:     clamav-daemon.socket:       [ OK ]
systemd service:         clamav-freshclam:       [ OK ]
systemd service:                    spamd:       [ OK ]
systemd service:                  dovecot:       [ OK ]
systemd service:                  mariadb:       [ OK ]
systemd service:                    httpd:       [ OK ]
systemd service:                    named:       [ OK ]
systemd service:                   vsftpd:       [ OK ]
systemd service:                  network:       [ OK ]
systemd service:                    acpid:       [ OK ]
systemd service:                      atd:       [ OK ]
systemd service:                   autofs:       [ OK ]
systemd service:                    crond:       [ OK ]
systemd service:                     ntpd:       [ OK ]
systemd service:                   smartd:       [ OK ]
systemd service:                     sshd:       [ OK ]
systemd service:               irqbalance:       [ OK ] ( Multiple processors only )

*See Upgrade PHP 5.x to 7.x, Should be done before Roundcube install 

3. Update CentOS 7/QMT
   1. # yum update
   2. # yum --enablerepo=qmt-testing update
   3. # yum --enablerepo=qmt-devel update

• Qmail-1.03-2.2.1 (Current repo)
  1. Patches applied
  2. Will not overwrite DKIM signing wrapper
• Qmail-1.03-3.3.1 (Testing repo)
  1. Patches applied
  2. Will not overwrite DKIM signing wrapper

CentOS 6 QMT Host
(Tested x86/x86_64 install, send and receive email, O1 OCT 2018)

1. CentOS 6 Minimal Install
2. QMT Install
   1. # curl https://raw.githubusercontent.com/qmtoaster/scripts/master/qt-bootstrap-1>qt-bootstrap-1 && curl https://raw.githubusercontent.com/qmtoaster/scripts/master/qt-bootstrap-2>qt-bootstrap-2
   2. # chmod 755 qt-bootstrap-*
   3. # ./qt-bootstrap-1 (reboot)
   4. # ./qt-bootstrap-2
   5. # qt-install
3. Update CentOS 6/QMT (Dovecot upgrades require higher versions of MySQL - Remi repo)
   1. # yum install -y yum-utils http://rpms.remirepo.net/enterprise/remi-release-6.rpm https://github.com/qmtoaster/release/raw/master/qmt-release-1-7.qt.el6.noarch.rpm
   2. # yum-config-manager --disable qmailtoaster-current qmailtoaster-current-nodist
   3. # yum-config-manager --enable remi remi-php56
   4. # yum -y update
   5. # yum -y --enablerepo=qmt-testing update (Most recent sources - Spamassassin, ClamAV, Squirrelmail, Dovecot...)
   6. # yum -y --enablerepo=qmt-devel update (Patched qmail and simscan. See below)

• Qmail-1.03-1 (Current repo)
  1. STARTTLS plaintext command injection vulnerability.
  2. Any to CNAME DNS patch
• Qmail-1.03-1.1 (Development repo)
  1. CNAME checks removed
• Qmail-1.03-2.1 (Development repo)
  1. The 20160918 Qmail-TLS - Frederik Vermeulen
  2. Secure SMTP (Port 465) available by default.
  3. 2048 bit RSA keys and DH params (default).
  4. This patch fixes the STARTTLS plaintext command injection vulnerability. Here.
  5. CNAME checks removed
• Qmail-1.03-3.1 (Development repo)
  1. Existing, updated, and new patches applied in ordered fashion for easier maintenance, Secure SMTPS (port 465).
     1. Tested install 27 SEP 2018
     2. Running on 3 production servers (CentOS 6/7) presently
     3. Existing, updated, and new patches applied to v1.03-3.1
     4. Configuration for squirrelmail

*See Notes

CentOS 5 QMT Host - Updates

1. Update CentOS 5/QMT
   1. # rpm -Uvh ftp://ftp.qmailtoaster.org/pub/repo/qmt/CentOS/5/current/noarch/whtc-qmt-1-1.qt.el5.noarch.rpm
   2. # yum update
   3. # yum --enablerepo=whtc-qmt-testing update
   4. OpenSSL > 0.9.8 and ClamAV (PCRE & Zlib)
   *Warning: Deletes Courier and replaces with Dovecot

General

• Initial Configuration
• Secure QMT web administration (CentOS 7)
• Qmail queue tools
• Remote SMTP TLS encryption, enable/disable.
• DKIM
• Spamdyke QRV
• Simscan Ramdisk
• Dovecot LDA (Sieve)
• Dspam
• Certificates
• Ethernet settings script (CentOS 7)
• DNS settings script (CentOS 7)
• Vpopmail Daemon
• PHP 5 to 7
• Roundcube Mail
• Rainloop Webmail
• Afterlogic Webmail Lite
• DAViCal CalDav Store
• ActiveSync (Z-push)
• Peripherals (Remote, Desktop, Collaboration, Cloud, Run-level)
• RPM build environment
• Notes
• IMAP & SMTP connection tests
• Spam Throttle reasonable defaults
• .rpm to .deb Ubuntu/Debian hosted QMT
• QMT GitHub
• Migrate to CentOS 7/QMT host
• Migrate CDB to MySQL
• Migrate vpopmail (many domains)
• Backup/Restore QMT vm/Proxmox VE
• Disable SELinux
• Master Slave Replication in MySQL
• Master Slave Replication in MySQL reset
• Convert to EPEL ClamAV
• QMT CentOS 8

Author: Eric Broch
Questions and Comments: ebroch at whitehorsetc.com
Qmailtoaster mailing list: Subscribe
Qmailtoaster mailing list archives
Qmailtoaster Network
Official Qmail website
Un-Official Qmail website
Qmail - wikipedia Some helpful links...maybe.
Repos
Old Repos
Wiki
Qmailtoaster Plus
Mirrors
QMT Github