From dacf980342f91654768a37926b23633846d8bb2f Mon Sep 17 00:00:00 2001 From: Soispha Date: Mon, 3 Jul 2023 15:10:14 +0200 Subject: Refactor(system/services/mail): Move mail to services as it's one --- system/services/mail/default.nix | 42 ++++++++++++++++++++++++++++++++++++++++ 1 file changed, 42 insertions(+) create mode 100644 system/services/mail/default.nix (limited to 'system/services/mail/default.nix') diff --git a/system/services/mail/default.nix b/system/services/mail/default.nix new file mode 100644 index 0000000..f9d00ea --- /dev/null +++ b/system/services/mail/default.nix @@ -0,0 +1,42 @@ +{lib, ...}: let + all_admins = [ + "sils@vhack.eu" + "soispha@vhack.eu" + "nightingale@vhack.eu" + ]; + users = import ./users.nix {}; +in { + mailserver = + lib.recursiveUpdate { + enable = true; + fqdn = "server1.vhack.eu"; + + useFsLayout = true; + + extraVirtualAliases = { + "abuse@vhack.eu" = all_admins; + "postmaster@vhack.eu" = all_admins; + "admin@vhack.eu" = all_admins; + }; + + mailDirectory = "/srv/mail/vmail"; + dkimKeyDirectory = "/srv/mail/dkim"; + sieveDirectory = "/srv/mail/sieve"; + backup.snapshotRoot = "/srv/mail/backup"; + + enableImap = false; + enableImapSsl = true; + enablePop3 = false; + enablePop3Ssl = true; + # SMTP + enableSubmission = false; + enableSubmissionSsl = true; + openFirewall = true; + + keyFile = "/var/lib/acme/server1.vhack.eu/key.pem"; + certificateScheme = "acme"; + certificateFile = "/var/lib/acme/server1.vhack.eu/fullchain.pem"; + } + users; +} +# vim: ts=2 -- cgit 1.4.1