-
-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathmailroom.env
120 lines (98 loc) · 3.5 KB
/
mailroom.env
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
# Mail Room Example Configuration
# Mail Room version
VERSION=dev
# Internal IPv4 network subnet
POSTNET_NETWORK=172.22.0
# Path to the client certificates used S/MIME encrypt emails.
# If left blank, S/MIME encryption is disabled.
USER_CERTS_PATH=./certs/users/
# Log verbosity level
# Allowed values: DEBUG, INFO, WARN, ERROR
LOG_LEVEL="INFO"
# -----------------------------------
# Inbox Server Configuration
# -----------------------------------
# Hostname for the Inbox server.
INBOX_HOST=smtp.example.com
# IP address and port to bind the Inbox server.
INBOX_IPV4_BIND=0.0.0.0:25
INBOX_IPV6_BIND=[::]:25
# Maximum number of concurrent connections allowed.
INBOX_MAX_CONNECTIONS=1024
# Specifies required authentication methods for incoming mail.
# Allowed values: spf dkim arc dmarc. If blank, authentication is optional.
INBOX_AUTH=""
# Path to the TLS private key for the Inbox server.
INBOX_TLS_KEY=/etc/ssl/inbox/privkey.pem
# Path to the TLS certificate for the Inbox server.
INBOX_TLS_CERT=/etc/ssl/inbox/cert.pem
# Log path
INBOX_LOG=/tmp/inbox.log
# -----------------------------------
# Outbox Server Configuration
# -----------------------------------
# Hostname for the Outbox server.
OUTBOX_HOST=mail.example.com
# IP address and port to bind the Outbox server.
OUTBOX_IPV4_BIND=0.0.0.0:587
OUTBOX_IPV6_BIND=[::]:587
# Path to the TLS private key for the Outbox server.
OUTBOX_TLS_KEY=/etc/ssl/outbox/privkey.pem
# Path to the TLS certificate for the Outbox server.
OUTBOX_TLS_CERT=/etc/ssl/outbox/cert.pem
# Directory containing DKIM keys.
OUTBOX_DKIM_PATH=./certs/dkim/
# -----------------------------------
# Dovecot Configuration
# -----------------------------------
# Hostname for the Dovecot IMAP server.
DOVECOT_HOST=mail.example.com
# IP address and port to bind the Dovecot server.
DOVECOT_IPV4_BIND=0.0.0.0:993
DOVECOT_IPV6_BIND=[::]:993
# Path to the TLS private key for Dovecot.
DOVECOT_TLS_KEY=/etc/ssl/dovecot/privkey.pem
# Path to the TLS certificate for Dovecot.
DOVECOT_TLS_CERT=/etc/ssl/dovecot/cert.pem
# -----------------------------------
# Backup Configuration
# -----------------------------------
RCLONE_REMOTE="backups:backups/vhosts"
BACKUP_MAX_AGE="2w"
# -----------------------------------
# Global TLS Configuration
# -----------------------------------
# Applies to both Inbox and Outbox services.
# Can be overridden by prefixing with INBOX_ or OUTBOX_.
# List of supported TLS ciphers.
TLS_CIPHERS="TLS_AES_256_GCM_SHA384:TLS_CHACHA20_POLY1305_SHA256"
# Minimum allowed TLS version.
TLS_MIN_VERSION=TLSv1.3
# Maximum allowed TLS version.
TLS_MAX_VERSION=TLSv1.3
# -----------------------------------
# Rspamd Configuration
# -----------------------------------
# Password for authenticating with the Rspamd service.
RSPAMD_PASSWORD=""
# -----------------------------------
# Spamhaus Configuration
# -----------------------------------
# API key for Spamhaus integration.
# The integration is disabled if API key is blank.
SPAMHAUS_API_KEY=""
# -----------------------------------
# IPQualityScore Configuration
# -----------------------------------
# API key for IPQualityScore integration.
# The integration is disabled if API key is blank.
IPQS_API_KEY=""
# Defines the maximum acceptable IPQS fraud score.
# Connections with higher scores are rejected.
IPQS_SCORE_LIMIT=90
# -----------------------------------
# IP-Score.com Configuration
# -----------------------------------
# Checks connection address against multiple blacklists.
# Enable or disable IP-Score.com integration.
IPSCORE_ENABLED=true