|
sendmail 8.12.10 ¼³Ä¡ Çϱâ
Á¦°ø : howtosolaris.com
sendmail prescan ¹öÆÛ¿À¹öÇÃ·Î¿ì ¹ö±×¸¦ ¼öÁ¤ÇÑ sendmail 8.12.10À¸·Î ¼¾µå¸ÞÀÏÀ»
¾÷±×·¹À̵å ÇսôÙ. ¿Ö ±×·±°¡¿¡ ´ëÇÑ ±Ã±ÝÁõÀº http://www.sendmail.org/8.12.10.html ¿¡¼ ¾Ë¾Æº¸½Ã±â
¹Ù¶ó¸é¼ ¿À´Ãµµ ÇÏ¿ìÅõ¼Ö¶ó¸®½º ¿©·¯ºÐÀ» À§ÇÏ¾ß ¿ì¸®µþ Èñ¼°¡ Àáµç À̽𣠱ÛÀ» ¿Ã¸³´Ï´Ù.
1. OpenSSL ¼³Ä¡
OpenSSlÀº Sendmail TLS(Transport Layer Security) ÀÌ ÇÊ¿ä½Ã ÀνºÅç ÇÏ½Ã¸é µË´Ï´Ù.
´Ù¿îÀº ´ÙÀ½ ÁÖ¼Ò¿¡¼ ¹ÞÀ¸½Ã¸é µË´Ï´Ù¿ä
Solaris 2.6 ( http://www.howtosolaris.com/download.php?mode=download&id=283 )
Solaris 7 ( http://www.howtosolaris.com/download.php?mode=download&id=284 )
Solaris 8 ( http://www.howtosolaris.com/download.php?mode=download&id=285 )
ÀνºÅç ¹æ¹ýÀº ´ÙÀ½°ú °°ÀÌ ÇÏ½Ã¸é µË´Ï´Ù.
gunzip ´Ù¿î¹ÞÀºÆÐijÁö
pkgadd -d ./´Ù¿î¹ÞÀºÆÐijÁö
2. ¹öŬ¸® DB¼³Ä¡
sendmail ¿¡¼ database¸¦ hashÇϱâÀ§Çؼ´Â ÀÌ ¹öŬ¸® DB°¡ ÇÊ¿ä ÇÕ´Ï´Ù.
´Ù¿îÀº ´ÙÀ½ ÁÖ¼Ò¿¡¼ ¹ÞÀ¸½Ã¸é µË´Ï´Ù.
http://www.sleepycat.com/update/snapshot/db-4.1.25.tar.gz
ÀνºÅç ¹æ¹ýÀº ´ÙÀ½°ú °°½À´Ï´Ù.
howtosolaris# gunzip -cd db-4.1.25.tar.gz | tar xvf -
howtosolaris# cd db-4.1.25/build_unix
howtosolaris# setenv CC gcc
howtosolaris# ../dist/configure
howtosolaris# make
howtosolaris# make install
3. ¹öŬ¸® DB¿Í OpenSSl ¶óÀÌºí·¯¸® /usr/lib ¿¡ Ä«ÇÇÇϱâ
howtosolaris# cp /usr/local/ssl/lib/libssl.so.0.9.7 /usr/lib ( TLSÀ» Àû¿ëÇҺи¸ ÇϼÀ )
howtosolaris# cp /usr/local/ssl/lib/libcrypto.so.0.9.7 /usr/lib ( TLSÀ» Àû¿ëÇҺи¸ ÇϼÀ )
howtosolaris# cp /usr/local/BerkeleyDB.4.1/lib/libdb-4.1.so /usr/lib
howtosolaris# cd /usr/lib
howtosolaris# chmod 444 libssl.so.0.9.7 libcrypto.so.0.9.7 ( TLSÀ» Àû¿ëÇҺи¸ ÇϼÀ )
howtosolaris# chmod 444 libdb-4.1.so
4. TLSÀ» Àû¿ëÅ° À§Çؼ´Â /dev/urandom ÀÌ ÀÖ¾î¾ß ÇÕ´Ï´Ù. ¸¸¾à¿¡ ¾ø´Ù¸é
´ÙÀ½ ÁÖ¼Ò¿¡¼ ´Ù¿î ÇÏ½Ã¸é µË´Ï´Ù.
http://www.cosy.sbg.ac.at/%7Eandi/SUNrand/pkg/ANDIrand-0.7-5.6-sparc-1
.pkg (Solaris 2.6)
http://www.cosy.sbg.ac.at/~andi/SUNrand/pkg/ANDIrand-0.7-5.7-sparc-1.p
kg (Solaris 7)
http://www.cosy.sbg.ac.at/~andi/SUNrand/pkg/ANDIrand-0.7-5.8-sparc-1.p
kg (Solaris 8)
ÁÖÀÇ ) solaris 8À» »ç¿ëÇϽŴٸé patch 112438À» ÇÏ¼Å¾ß ÇÕ´Ï´Ù.
´Ù¿îÀÌ ´ÙµÇ¾úÀ¸¸é ¼³Ä¡´Â ´ÙÀ½°ú °°ÀÌ ÇÏ½Ã¸é µË´Ï´Ù.
howtosolaris# pkgadd -d ´Ù¿î¹ÞÀºÆÐijÁö
¼³Ä¡°¡ ´Ù µÇ¾úÀ¸¸é ´ÙÀ½°ú °°ÀÌ ±¸µ¿ ½ÃÅ°½Ã±â ¹Ù¶ø´Ï´Ù.
/etc/init.d/random start
5. senmail 8.12.10 ¼³Ä¡Çϱâ
sendmail 8.12.10À» ´ÙÀ½ ÁÖ¼Ò¿¡¼ ´Ù¿î ¹Þ½À´Ï´Ù.
¿µ¹®: ftp://ftp.sendmail.org/pub/sendmail/sendmail.8.12.10.tar.gz
ÇѱÛ: ftp://ftp.kreonet.re.kr/pub/people/sysuh/sendmail/sendmail-8.12.10-H.t
ar.gz
¼³Ä¡´Â ´ÙÀ½°ú °°ÀÌ ÇÏ½Ã¸é µË´Ï´Ù.
howtosolaris# gunzip -cd sendmail.8.12.10.tar.gz | tar xvf -
howtosolaris# cd sendmail-8.12.10
site.config.m4 ÆÄÀÏÀ» ¸¸µçÈÄ ´ÙÀ½°ú °°ÀÌ ³Ö½À´Ï´Ù.
howtosolaris# vi devtools/Site/site.config.m4
APPENDDEF(`confLIBDIRS', `-L/usr/local/BerkeleyDB.4.1/lib')
APPENDDEF(`confINCDIRS', `-I/usr/local/BerkeleyDB.4.1/include')
APPENDDEF(`confENVDEF', `-DNEWDB')
## TLS Àû¿ëÇϽǺР###
define(`confSTDIO_TYPE', `portable')
APPENDDEF(`conf_sendmail_ENVDEF', `-DSTARTTLS -DHASURANDOMDEV')
APPENDDEF(`conf_sendmail_LIBS', `-lssl -lcrypto')
APPENDDEF(`confLIBDIRS', `-L/usr/local/ssl/lib')
APPENDDEF(`confINCDIRS', `-I/usr/local/ssl/include')
APPENDDEF(`conf_sendmail_ENVDEF', `-DMILTER')
APPENDDEF(`conf_libmilter_ENVDEF', `-D_FFR_MILTER_ROOT_UNSAFE')
ºôµå Çսôç!!!
howtosolaris# ./Build -c
howtosolaris# groupadd smmsp
howtosolaris# useradd -g smmsp smmsp
howtosolaris# passmgmt -m -s /dev/null smmsp
howtosolaris# mkdir -p /usr/share/man/cat1
howtosolaris# mkdir /usr/share/man/cat5
howtosolaris# mkdir /usr/share/man/cat8
howtosolaris# ./Build install
6. Sendmail 8.12.10 º»°ÝÀÛ¾÷Çϱâ
howtosolaris# cd cf/cf
howtosolaris# cp generic-solaris.mc config.mc
howtosolaris# vi config.mc
divert(0)dnl
VERSIONID(`$Id: generic-solaris.mc,v 8.13 2001/06/27 21:46:30 gshapiro Exp $')
OSTYPE(solaris2)dnl
DOMAIN(generic)dnl
FEATURE(access_db)dnl
FEATURE(blacklist_recipients)dnl
FEATURE(mailertable)dnl
MAILER(local)dnl
MAILER(smtp)dnl
define(`confCACERT_PATH', `/etc/mail/certs')dnl
define(`confCACERT', `/etc/mail/certs/CAcert.pem')dnl
define(`confSERVER_CERT', `/etc/mail/certs/MYcert.pem')dnl
define(`confSERVER_KEY', `/etc/mail/certs/MYkey.pem')dnl
define(`confCLIENT_CERT', `/etc/mail/certs/MYcert.pem')dnl
define(`confCLIENT_KEY', `/etc/mail/certs/MYkey.pem')dnl
define(`confPRIVACY_FLAGS', `authwarnings,goaway,noetrn')dnl
define(`confTO_IDENT', `0')dnl
À§¿Í °°ÀÌ Ãß°¡ ÇÕ´Ï´Ù.
howtosolaris# sh Build config.cf
howtosolaris# cp config.cf /etc/mail/sendmail.cf
7. Sendmail ±¸µ¿ ½ºÅ©¸³Æ® ¸¸µé±â .
howtosolaris# vi /etc/init.d/sendmail
#!/sbin/sh
case "$1" in
'start')
# Start the MTA
/usr/lib/sendmail -L sm-mta -bd -q1h
# Start the MSP
/usr/lib/sendmail -L sm-msp-queue -Ac -q30m
;;
'stop')
pid=`/usr/bin/ps -eo pid,comm | /usr/bin/awk '{ if ($2 == "/usr/lib/sendmail") print $1 }'`
if test "$pid"
then
/usr/bin/kill $pid
fi
;;
*)
echo "Usage: $0 { start | stop }"
exit 1
;;
esac
exit 0
howtosolaris# chown root:sys /etc/init.d/sendmail
howtosolaris# chmod 744 /etc/init.d/sendmail
8. Sendmail database ÆÄÀÏ ¸¸µé±â
howtosolaris# cd /etc/mail
howtosolaris# touch access mailertable
howtosolaris# makemap hash access < access
howtosolaris# makemap hash mailertable < mailertable
howtosolaris# newaliases
9. TLS ÀÌ¿ë½Ã Á¶ÃëÇϱâ
howtosolaris# mkdir /etc/mail/certs
howtosolaris# mv CAcert.pem MYcert.pem MYkey.pem /etc/mail/certs
howtosolaris# cd /etc/mail/certs
howtosolaris# chmod 600 CAcert.pem MYcert.pem MYkey.pem
howtosolaris# chown root CAcert.pem MYcert.pem MYkey.pem
10. Sendmail ±¸µ¿Çϱâ .
/etc/init.d/sendmail start
|