• Announcements

    • MannDude

      Current state of vpsBoard   02/04/2017

      Dear vpsBoard members and guests:

      Over the last year or two vpsBoard activity and traffic has dwindled. I have had a change of career and interests, and as such am no longer an active member of the web hosting industry.

      Due to time constraints and new interests I no longer wish to continue to maintain vpsBoard. The web site will remain only as an archive to preserve and showcase some of the great material, guides, and industry news that has been generated by members, some of which I remain in contact to this very day and now regard as personal friends.

      I want to thank all of our members who helped make vpsBoard the fastest growing industry forum. In it's prime it was an active and ripe source of activity, news, guides and just general off-topic banter and fun.

      I wish all members and guests the very best, whether it be with your business or your personal projects.

      -MannDude
wlanboy

Running your own mail server

75 posts in this topic

Wow, there goes my upcoming weekend :)  You are most excellent @wlanboy!

 

Someone give this tutorial a spin and see how it goes.  

Share this post


Link to post
Share on other sites

Wow, there goes my upcoming weekend :)  You are most excellent @wlanboy!

 

Someone give this tutorial a spin and see how it goes.  

 

I'll tinker with it this weekend. Got an idle VPS sitting around.

Share this post


Link to post
Share on other sites

I hesitated for weeks if I should write this tutorial.

You can get a lot of trouble if the security of your mail server breaks. You can loose your mails too if you do not run backups.

 

I am running my mail server for about 1 1/2 years. Everything is fine - but mabe this is based on luck.

Share this post


Link to post
Share on other sites

 

You can get a lot of trouble if the security of your mail server breaks. You can loose your mails too if you do not run backups.

 

 

I'd rather have security issues and something break than continue to feed the monster systems directly and willingly.

 

Hopefully, others chime in with recommendations to build upon this tutorial.

Share this post


Link to post
Share on other sites

I'd rather have security issues and something break than continue to feed the monster systems directly and willingly.

Totally agree. Same reason why I am running my own mail server.

Share this post


Link to post
Share on other sites

You are surely aware of that fact that you are feeding the monsters already by sending and receiving unencrypted eMail alone. But I guess you meant the corporation monsters and not the government monsters... However, I was was always looking for a good step-by-step tutorial for setting up my own mailserver (without having to use a panel) and I am VERY thankful for your posting, wlanboy!

Like others already said: There goes my weekend! ;-)

1 person likes this

Share this post


Link to post
Share on other sites

You are surely aware of that fact that you are feeding the monsters already by sending and receiving unencrypted eMail alone

 

Oh no doubt.  

 

But, I use PGP to encrypt my real emails with some people.  That's when I actually use email.  

 

I'll be interested in seeing how your install goes @Amitz.  Everyone report back when they get this running or don't.

Share this post


Link to post
Share on other sites

You are surely aware of that fact that you are feeding the monsters already by sending and receiving unencrypted eMail alone.

Yup, but encryption should not be on server side! It should be client based. Even if someone is taking the whole disk or tracing tcp packets- they cannot read anything without the GnuPG keys on my local disk.

 

But, I use PGP to encrypt my real emails with some people.  That's when I actually use email.  

Me too.

 

Looking to the RAM usage per login:

23957 ?        S      0:00      0     0  5180  2528  1.9 dovecot/imap-login
23958 ?        S      0:00      0     0  4412  2212  1.6 dovecot/imap
23960 ?        S      0:00      0     0  5172  2536  1.9 dovecot/imap-login
23961 ?        S      0:00      0     0  4292  2080  1.5 dovecot/imap

5 MB of RAM per user should be sufficient.

Share this post


Link to post
Share on other sites

Thank you wlanboy. Do you know how to limit the sending rate? I'd like to set up a send-only server for multi users.

Share this post


Link to post
Share on other sites

Everyone report back when they get this running or don't.

After buying a new vps from ramnode (NL) I have setup my brand new mail server for my domain wlanboy.com (was once hosted at hotmail).

You can test my mail server by sending an email to [test][at][wlanboy].[com]

Share this post


Link to post
Share on other sites

Good tutorial! I'm about to repurpose another VPS so will use this instead of an utosetup with a panel and see how it goes... I'll be using Centos, but config files are config files. :)

Share this post


Link to post
Share on other sites

Thank you wlanboy. Do you know how to limit the sending rate? I'd like to set up a send-only server for multi users.

This is done in /etc/postfix/main.cf

smtpd_client_event_limit_exceptions = $mynetworks
#Clients that are excluded from connection count
anvil_rate_time_unit = 60s 
#The time unit over which client connection rates and other rates are calculated. 
anvil_status_update_time = 120s 
#How frequently the server logs peak usage information. 
smtpd_client_message_rate_limit=5 
#The maximal number of message delivery requests that any client is allowed to make to this service per time unit.

1 person likes this

Share this post


Link to post
Share on other sites

Anyone interested in server side virus scanner?

Share this post


Link to post
Share on other sites

Server side virus scanner for the email?  Well, good for the WIndozer users I guess.   I don't need it personally :)

Share this post


Link to post
Share on other sites

Server side virus scanner for the email?  Well, good for the WIndozer users I guess.   I don't need it personally :)

Its good for spam reduction :) Those spammers be always trying to target the lowest denominator.

But seriously good howto, but I think I will stick with Zimbra. Never been willing to accept the risk myself. It would be nice to see integrated backup into the tutorial (e.g to Backupsy), I hate to say it but its a must in this day and age.

Share this post


Link to post
Share on other sites

Added SPF and DKIM to the tutorials. Later just for the sake of having it.

Share this post


Link to post
Share on other sites

Excellent tutorial / walk through wlanboy! Though i use iredmail this style is my preferd for low ram use / leb's :)

Share this post


Link to post
Share on other sites

thanks, been waiting for such tutorial

1 person likes this

Share this post


Link to post
Share on other sites

  • Similar Content

    • By LiamCyrus
      Arch Industries, LLC. - Infrastructure as a Service - https://archhosting.net
       
      Arch Industries offers an affordable and powerful platform to launch your website. Take advantage of our unsaturated gigabit network and utilize our quality US & European peering for your own website. Our United Kingdom dedicated infrastructure offers the fastest possible connection while still providing the reliability and redundancy that your service needs. We are a legal United States LLC. and have years of experience providing quality hosting services.
       
      Micro Web Hosting
      1 GB SSD Storage
      100 GB Premium Bandwidth
      99 FTP Accounts
      99 Email Accounts
      99 MySQL Databases
      99 Subdomains
      $1.99/m [Order]
       
      Small Web Hosting
      5 GB SSD Storage
      500 GB Premium Bandwidth
      99 FTP Accounts
      99 Email Accounts
      99 MySQL Databases
      99 Subdomains
      $2.99/m [Order]
       
      Medium Web Hosting
      10 GB SSD Storage
      1 TB Premium Bandwidth
      99 FTP Accounts
      99 Email Accounts
      99 MySQL Databases
      99 Subdomains
      $3.99/m [Order]
       
      Features
      cPanel 11
      SSD Powered
      600 Gbps Shared Voxility DDoS Protection (Zare Network)
      1 Gbps unsaturated premium bandwidth network port
      Softaculous Script Installer
      CloudLinux OS
      Cloudflare Optimized Partner with Railgun available
      Increased PHP memory_limit for improved script performance
      Advanced SEO tools available in cPanel
      Advanced DNS manager
      Free daily backups
      7 day money back guarantee, no questions asked
      Responsive support team with a wide range of experience to assist with any issue
      Instant service setup
      Free website migrations
      99.99% SLA
      Latest PHP 6 with IonCube Loader, GD, PDO, cURL, and many other plugins enabled
      Much more! We’re constantly expanding and adding new features.
       
      Security
      Your file safety and online security is our top priority. We utilize signed AES 256 SSL encryption on all web services. Our infrastructure has been tested for vulnerabilities by multiple penetration testers and secured against attacks (Apache symlink attacks, hypervisor exploits). Our configuration includes routine backups to offsite locations to ensure that client data is not lost in the event of a hard drive failure.
       
      Sensitive client data is secured with military-grade AES encryption. All passwords are salted numerous times to ensure maximum security. Our set of in-house developers helps prevent us from being vulnerable to the same "zero-day" attacks that other providers may face. No credit card or sensitive billing information is kept on file, preventing any possibility of leaked credit card or financial data due to a security breach.
       
      All traffic is mitigated through a shared 600 Gbps Zare (Voxility) upstream. This ensures that even in the event of a DDoS attack, your website stays online. In addition to this, traffic is also ran through our datacenter’s provided Layer 7 DDoS protection.
       
      We utilize CloudLinux OS which provides numerous improved security benefits over CentOS. Most significantly is the utilization of CageFS, which provides your website dedicated resources and a jailed environment that’s completely separate from any other user on the server. Just because you’re on a shared server doesn’t mean you need to compromise security!
       
      Support
      Do you need a WordPress blog installed? Or maybe a MyBB forum or CMS? Let our support do it for you. Our support team consists of experienced webmasters, developers, and cPanel experts. We don't outsource our tickets to third party companies; all client tickets are handled by an authorized and reliable Arch employees. All registered accounts may create tickets in our help desk, which will receive a response within twelve hours max. We also offer support via text messages on our company line listed below. Lastly, even unregistered users can view our public knowledge base which contains solutions, answers, and tutorials regarding many common problems you may face.
       
      Contact Us
      Have a question? Contact me via PM, create a ticket, text our number, or email us!
       
      [email protected]
      Arch Industries, LLC.
      +1 (310) 853-3867
      https://archhosting.net
      Insanely awesome Infrastructure as a Service
       
    • By LiamCyrus
      Arch Industries, LLC. - Infrastructure as a Service - https://archhosting.net
       
      Arch Industries offers an affordable and powerful platform to launch your website. Take advantage of our unsaturated gigabit network and utilize our quality US & European peering for your own website. Our United Kingdom dedicated infrastructure offers the fastest possible connection while still providing the reliability and redundancy that your service needs. We are a legal United States LLC. and have years of experience providing quality hosting services.
       
      Micro Web Hosting
      1 GB SSD Storage
      100 GB Premium Bandwidth
      99 FTP Accounts
      99 Email Accounts
      99 MySQL Databases
      99 Subdomains
      $1.99/m [Order]
       
      Small Web Hosting
      5 GB SSD Storage
      500 GB Premium Bandwidth
      99 FTP Accounts
      99 Email Accounts
      99 MySQL Databases
      99 Subdomains
      $2.99/m [Order]
       
      Medium Web Hosting
      10 GB SSD Storage
      1 TB Premium Bandwidth
      99 FTP Accounts
      99 Email Accounts
      99 MySQL Databases
      99 Subdomains
      $3.99/m [Order]
       
      Features
      cPanel 11
      SSD Powered
      600 Gbps Shared Voxility DDoS Protection (Zare Network)
      1 Gbps unsaturated premium bandwidth network port
      Softaculous Script Installer
      CloudLinux OS
      Cloudflare Optimized Partner with Railgun available
      Increased PHP memory_limit for improved script performance
      Advanced SEO tools available in cPanel
      Advanced DNS manager
      Free daily backups
      7 day money back guarantee, no questions asked
      Responsive support team with a wide range of experience to assist with any issue
      Instant service setup
      Free website migrations
      99.99% SLA
      Latest PHP 6 with IonCube Loader, GD, PDO, cURL, and many other plugins enabled
      Much more! We’re constantly expanding and adding new features.
       
      Security
      Your file safety and online security is our top priority. We utilize signed AES 256 SSL encryption on all web services. Our infrastructure has been tested for vulnerabilities by multiple penetration testers and secured against attacks (Apache symlink attacks, hypervisor exploits). Our configuration includes routine backups to offsite locations to ensure that client data is not lost in the event of a hard drive failure.
       
      Sensitive client data is secured with military-grade AES encryption. All passwords are salted numerous times to ensure maximum security. Our set of in-house developers helps prevent us from being vulnerable to the same "zero-day" attacks that other providers may face. No credit card or sensitive billing information is kept on file, preventing any possibility of leaked credit card or financial data due to a security breach.
       
      All traffic is mitigated through a shared 600 Gbps Zare (Voxility) upstream. This ensures that even in the event of a DDoS attack, your website stays online. In addition to this, traffic is also ran through our datacenter’s provided Layer 7 DDoS protection.
       
      We utilize CloudLinux OS which provides numerous improved security benefits over CentOS. Most significantly is the utilization of CageFS, which provides your website dedicated resources and a jailed environment that’s completely separate from any other user on the server. Just because you’re on a shared server doesn’t mean you need to compromise security!
       
      Support
      Do you need a WordPress blog installed? Or maybe a MyBB forum or CMS? Let our support do it for you. Our support team consists of experienced webmasters, developers, and cPanel experts. We don't outsource our tickets to third party companies; all client tickets are handled by an authorized and reliable Arch employees. All registered accounts may create tickets in our help desk, which will receive a response within twelve hours max. We also offer support via text messages on our company line listed below. Lastly, even unregistered users can view our public knowledge base which contains solutions, answers, and tutorials regarding many common problems you may face.
       
      Contact Us
      Have a question? Contact me via PM, create a ticket, text our number, or email us!
       
      [email protected]
      Arch Industries, LLC.
      +1 (310) 853-3867
      https://archhosting.net
      Insanely awesome Infrastructure as a Service
       
    • By LiamCyrus
      Arch Industries, LLC. - Infrastructure as a Service - https://archhosting.net
        Arch Industries offers an affordable and powerful platform to launch your website. Take advantage of our unsaturated gigabit network and utilize our quality US & European peering for your own website. Our United Kingdom dedicated infrastructure offers the fastest possible connection while still providing the reliability and redundancy that your service needs. We are a legal United States LLC. and have years of experience providing quality hosting services.
        Micro Web Hosting
      1 GB SSD Storage
      100 GB Premium Bandwidth
      99 FTP Accounts
      99 Email Accounts
      99 MySQL Databases
      99 Subdomains
      $1.99/m [Order]
        Small Web Hosting
      5 GB SSD Storage
      500 GB Premium Bandwidth
      99 FTP Accounts
      99 Email Accounts
      99 MySQL Databases
      99 Subdomains
      $2.99/m [Order]
        Medium Web Hosting
      10 GB SSD Storage
      1 TB Premium Bandwidth
      99 FTP Accounts
      99 Email Accounts
      99 MySQL Databases
      99 Subdomains
      $3.99/m [Order]
        Features
      cPanel 11
      SSD Powered
      600 Gbps Shared Voxility DDoS Protection (Zare Network)
      1 Gbps unsaturated premium bandwidth network port
      Softaculous Script Installer
      CloudLinux OS
      Cloudflare Optimized Partner with Railgun available
      Increased PHP memory_limit for improved script performance
      Advanced SEO tools available in cPanel
      Advanced DNS manager
      Free daily backups
      7 day money back guarantee, no questions asked
      Responsive support team with a wide range of experience to assist with any issue
      Instant service setup
      Free website migrations
      99.99% SLA
      Latest PHP 6 with IonCube Loader, GD, PDO, cURL, and many other plugins enabled
      Much more! We’re constantly expanding and adding new features.
        Security
      Your file safety and online security is our top priority. We utilize signed AES 256 SSL encryption on all web services. Our infrastructure has been tested for vulnerabilities by multiple penetration testers and secured against attacks (Apache symlink attacks, hypervisor exploits). Our configuration includes routine backups to offsite locations to ensure that client data is not lost in the event of a hard drive failure.
        Sensitive client data is secured with military-grade AES encryption. All passwords are salted numerous times to ensure maximum security. Our set of in-house developers helps prevent us from being vulnerable to the same "zero-day" attacks that other providers may face. No credit card or sensitive billing information is kept on file, preventing any possibility of leaked credit card or financial data due to a security breach.
        All traffic is mitigated through a shared 600 Gbps Zare (Voxility) upstream. This ensures that even in the event of a DDoS attack, your website stays online. In addition to this, traffic is also ran through our datacenter’s provided Layer 7 DDoS protection.
        We utilize CloudLinux OS which provides numerous improved security benefits over CentOS. Most significantly is the utilization of CageFS, which provides your website dedicated resources and a jailed environment that’s completely separate from any other user on the server. Just because you’re on a shared server doesn’t mean you need to compromise security!
        Support
      Do you need a WordPress blog installed? Or maybe a MyBB forum or CMS? Let our support do it for you. Our support team consists of experienced webmasters, developers, and cPanel experts. We don't outsource our tickets to third party companies; all client tickets are handled by an authorized and reliable Arch employees. All registered accounts may create tickets in our help desk, which will receive a response within twelve hours max. We also offer support via text messages on our company line listed below. Lastly, even unregistered users can view our public knowledge base which contains solutions, answers, and tutorials regarding many common problems you may face.
        Contact Us
      Have a question? Contact me via PM, create a ticket, text our number, or email us!
        [email protected]
      Arch Industries, LLC.
      +1 (310) 853-3867
      https://archhosting.net
      Insanely awesome Infrastructure as a Service
       
    • By LiamCyrus
      Arch Industries, LLC. - Infrastructure as a Service - https://archhosting.net
        ** BLACK FRIDAY SALE: USE PROMO CODE GOBBLE AT CHECKOUT FOR 40% OFF YOUR SHARED HOSTING ORDER FOR LIFE! **
        Arch Industries offers an affordable and powerful platform to launch your website. Take advantage of our unsaturated gigabit network and utilize our quality US & European peering for your own website. Our United Kingdom dedicated infrastructure offers the fastest possible connection while still providing the reliability and redundancy that your service needs. We are a legal United States LLC. and have years of experience providing quality hosting services.
        Personal Web Hosting
      5 GB SSD Storage
      300 GB Premium Bandwidth
      99 FTP Accounts
      99 Email Accounts
      99 MySQL Databases
      99 Subdomains
      $2.99/m [Order]
        Startup Web Hosting
      10 GB SSD Storage
      500 GB Premium Bandwidth
      99 FTP Accounts
      99 Email Accounts
      99 MySQL Databases
      99 Subdomains
      $4.99/m [Order]
        Business Web Hosting
      15 GB SSD Storage
      1 TB Premium Bandwidth
      99 FTP Accounts
      99 Email Accounts
      99 MySQL Databases
      99 Subdomains
      $9.99/m [Order]
        Features
      cPanel 11
      SSD Powered
      600 Gbps Shared Voxility DDoS Protection (Zare Network)
      1 Gbps unsaturated premium bandwidth network port
      Softaculous Script Installer
      CloudLinux OS
      Cloudflare Optimized Partner with Railgun available
      Increased PHP memory_limit for improved script performance
      Advanced SEO tools available in cPanel
      Advanced DNS manager
      Free daily backups
      7 day money back guarantee, no questions asked
      Responsive support team with a wide range of experience to assist with any issue
      Instant service setup
      Free website migrations
      99.99% SLA
      PHP 5.6 with IonCube Loader, GD, PDO, cURL, and many other plugins enabled
      Much more! We’re constantly expanding and adding new features.
        Security
      Your file safety and online security is our top priority. We utilize signed AES 256 SSL encryption on all web services. Our infrastructure has been tested for vulnerabilities by multiple penetration testers and secured against attacks (Apache symlink attacks, hypervisor exploits). Our configuration includes routine backups to offsite locations to ensure that client data is not lost in the event of a hard drive failure.
        Sensitive client data is secured with military-grade AES encryption. All passwords are salted numerous times to ensure maximum security. Our set of in-house developers helps prevent us from being vulnerable to the same "zero-day" attacks that other providers may face. No credit card or sensitive billing information is kept on file, preventing any possibility of leaked credit card or financial data due to a security breach.
        All traffic is mitigated through a shared 600 Gbps Zare (Voxility) upstream. This ensures that even in the event of a DDoS attack, your website stays online. In addition to this, traffic is also ran through our datacenter’s provided Layer 7 DDoS protection.
        We utilize CloudLinux OS which provides numerous improved security benefits over CentOS. Most significantly is the utilization of CageFS, which provides your website dedicated resources and a jailed environment that’s completely separate from any other user on the server. Just because you’re on a shared server doesn’t mean you need to compromise security!
        Support
      Do you need a WordPress blog installed? Or maybe a MyBB forum or CMS? Let our support do it for you. Our support team consists of experienced webmasters, developers, and cPanel experts. We don't outsource our tickets to third party companies; all client tickets are handled by an authorized and reliable Arch employees. All registered accounts may create tickets in our help desk, which will receive a response within twelve hours max. We also offer support via text messages on our company line listed below. Lastly, even unregistered users can view our public knowledge base which contains solutions, answers, and tutorials regarding many common problems you may face.
        Contact Us
      Have a question? Contact me via PM, create a ticket, text our number, or email us!
        [email protected]
      Arch Industries, LLC.
      +1 (310) 853-3867
      https://archhosting.net
      Insanely awesome Infrastructure as a Service
       
    • By LiamCyrus
      Arch Industries, LLC. - Infrastructure as a Service - https://archhosting.net
        Arch Industries offers an affordable and powerful platform to launch your website. Take advantage of our unsaturated gigabit network and utilize our quality US & European peering for your own website. Our United Kingdom dedicated infrastructure offers the fastest possible connection while still providing the reliability and redundancy that your service needs. We are a legal United States LLC. and have years of experience providing quality hosting services.
        Personal Web Hosting
      5 GB SSD Storage
      300 GB Premium Bandwidth
      99 FTP Accounts
      99 Email Accounts
      99 MySQL Databases
      99 Subdomains
      $2.99/m [Order]
        Startup Web Hosting
      10 GB SSD Storage
      500 GB Premium Bandwidth
      99 FTP Accounts
      99 Email Accounts
      99 MySQL Databases
      99 Subdomains
      $4.99/m [Order]
        Business Web Hosting
      15 GB SSD Storage
      1 TB Premium Bandwidth
      99 FTP Accounts
      99 Email Accounts
      99 MySQL Databases
      99 Subdomains
      $9.99/m [Order]
        Features
      cPanel 11
      SSD Powered
      600 Gbps Shared Voxility DDoS Protection (Zare Network)
      1 Gbps unsaturated premium bandwidth network port
      Softaculous Script Installer
      CloudLinux OS
      Cloudflare Optimized Partner with Railgun available
      Increased PHP memory_limit for improved script performance
      Advanced SEO tools available in cPanel
      Advanced DNS manager
      Free daily backups
      7 day money back guarantee, no questions asked
      Responsive support team with a wide range of experience to assist with any issue
      Instant service setup
      Free website migrations
      99.99% SLA
      PHP 5.6 with IonCube Loader, GD, PDO, cURL, and many other plugins enabled
      Much more! We’re constantly expanding and adding new features.
        Security
      Your file safety and online security is our top priority. We utilize signed AES 256 SSL encryption on all web services. Our infrastructure has been tested for vulnerabilities by multiple penetration testers and secured against attacks (Apache symlink attacks, hypervisor exploits). Our configuration includes routine backups to offsite locations to ensure that client data is not lost in the event of a hard drive failure.
        Sensitive client data is secured with military-grade AES encryption. All passwords are salted numerous times to ensure maximum security. Our set of in-house developers helps prevent us from being vulnerable to the same "zero-day" attacks that other providers may face. No credit card or sensitive billing information is kept on file, preventing any possibility of leaked credit card or financial data due to a security breach.
        All traffic is mitigated through a shared 600 Gbps Zare (Voxility) upstream. This ensures that even in the event of a DDoS attack, your website stays online. In addition to this, traffic is also ran through our datacenter’s provided Layer 7 DDoS protection.
        We utilize CloudLinux OS which provides numerous improved security benefits over CentOS. Most significantly is the utilization of CageFS, which provides your website dedicated resources and a jailed environment that’s completely separate from any other user on the server. Just because you’re on a shared server doesn’t mean you need to compromise security!
        Support
      Do you need a WordPress blog installed? Or maybe a MyBB forum or CMS? Let our support do it for you. Our support team consists of experienced webmasters, developers, and cPanel experts. We don't outsource our tickets to third party companies; all client tickets are handled by an authorized and reliable Arch employees. All registered accounts may create tickets in our help desk, which will receive a response within twelve hours max. We also offer support via text messages on our company line listed below. Lastly, even unregistered users can view our public knowledge base which contains solutions, answers, and tutorials regarding many common problems you may face.
        Contact Us
      Have a question? Contact me via PM, create a ticket, text our number, or email us!
        [email protected]
      Arch Industries, LLC.
      +1 (310) 853-3867
      https://archhosting.net
      Insanely awesome Infrastructure as a Service