{lib, ...}: let all_admins = [ "sils@vhack.eu" "soispha@vhack.eu" "nightingale@vhack.eu" ]; users = import ./users.nix {}; in { imports = [ ./impermanence.nix ]; mailserver = lib.recursiveUpdate { enable = true; fqdn = "server1.vhack.eu"; useFsLayout = true; extraVirtualAliases = { "abuse@vhack.eu" = all_admins; "postmaster@vhack.eu" = all_admins; "admin@vhack.eu" = all_admins; }; mailDirectory = "/var/lib/mail/vmail"; dkimKeyDirectory = "/var/lib/mail/dkim"; sieveDirectory = "/var/lib/mail/sieve"; backup.snapshotRoot = "/var/lib/mail/backup"; enableImap = false; enableImapSsl = true; enablePop3 = false; enablePop3Ssl = true; # SMTP enableSubmission = false; enableSubmissionSsl = true; openFirewall = true; keyFile = "/var/lib/acme/server1.vhack.eu/key.pem"; certificateScheme = "acme"; certificateFile = "/var/lib/acme/server1.vhack.eu/fullchain.pem"; } users; }