E
EoleO

  • 13 nov. 2017
  • Inscrit 1 déc. 2014
  • Bonjour,

    J'ai jeté un œil à la documentation de Nextcloud 11 et j'ai pu constater un certain nombre de différences entre les fichiers de configuration Nginx présent ici et dans la documentation officiel.
    https://docs.nextcloud.com/server/11/admin_manual/installation/nginx_nextcloud_9x.html

    J'aurais voulu savoir si les éléments en plus dans la documentation officiel sont nécessaire ou alors si la configuration Nginx du tutoriel suffit ?

    Merci

    • Bonjour a tous,

      Je viens d'installer un serveur d'email sur mon nouveau serveur Online et je me retrouve fasse a l'erreur suivante :
      Error: SSL: Stacked error: error:14094416:SSL routines:ssl3_read_bytes:sslv3 alert certificate unknown: SSL alert number 46
      Est ce que quelqu'un voit d'ou cela peut provenir ?

      Ci-joint le rapport établie par le script de debuggage :
      http://paste.ubuntu.com/23115362/

      Merci par avance.
    • Mille merci, le problème venait effectivement de la.
      Tout marche désormais
    • Merci de ta réponse !

      /etc/postfix/main.cf
      # Règles sur les adresses de destination                                                                             
      # permit_sasl_authenticated : Accepter la connexion lorsque le client est authentifié                                
      # reject_non_fqdn_recipient : Refuser les adresses de destinations invalides (non FQDN)                              
      smtpd_recipient_restrictions =                                                                                       
              permit_mynetworks,                                                                                           
              permit_sasl_authenticated,                                                                                   
              reject_non_fqdn_recipient,                                                                                   
              reject_unauth_destination,                                                                                   
              reject_unknown_recipient_domain                                                                              
                                                                                                                           
      # Règles sur l'échange HELO qui survient avant la connexion                                                          
      # reject_invalid_helo_hostname : Refuser les échanges HELO invalides                                                 
      # reject_non_fqdn_helo_hostname : Refuser les noms d'hôte invalides (non FQDN)                                       
      # reject_unknown_helo_hostname : Refuser les noms d'hôte qui n'ont pas de champ DNS A ou MX dans leurs DNS.          
              smtpd_helo_restrictions =                                                                                    
              permit_mynetworks,                                                                                           
              permit_sasl_authenticated,                                                                                   
              reject_invalid_helo_hostname,                                                                                
              reject_non_fqdn_helo_hostname,                                                                               
              reject_unknown_helo_hostname                                                                                 
                                                                                                                           
      # Règles de connexion des clients                                                                                    
      # permit_sasl_authenticated : Accepter la connexion lorsque le client est authentifié                                
      # reject_plaintext_session : Refuser les connexions non sécurisées                                                   
      # reject_unauth_pipelining : Refuser les défauts lors de la connexion                                                
      smtpd_client_restrictions =                                                                                          
              permit_mynetworks,                                                                                           
              permit_inet_interfaces,                                                                                      
              permit_sasl_authenticated,                                                                                   
              # reject_plaintext_session,                                                                                  
              # reject_unauth_pipelining                                                                                   
                                                                                                                           
      # Règles sur les expéditeurs                                                                                         
      # reject_non_fqdn_sender : Refuser les expéditeurs invalides (non FQDN)                                              
      # reject_unknown_sender_domain : Refuser les expéditeurs qui n'ont pas de champ DNS A ou MX dans leurs DNS.          
      smtpd_sender_restrictions =                                                                                          
              reject_non_fqdn_sender,                                                                                      
              reject_unknown_sender_domain                                                                                 
                                                                                                                           
      # TLS                                                                                                                
      smtpd_tls_auth_only = no                                                                                             
      smtpd_tls_security_level = may                                                                                       
                                                                                                                           
      # Paramètres de connexion SASL                                                                                       
      # C'est ici que l'on déclare Dovecot comme une passerelle pour authentifier les utilisateurs.                        
      # Postfix peut s'appuyer sur Dovecot pour identifier les connexions SMTP.                                            
      smtpd_sasl_auth_enable = yes                                                                                         
      smtpd_sasl_type = dovecot                                                                                            
      smtpd_sasl_path = private/auth                                                                                       
      smtpd_sasl_security_options = noanonymous                                                                            
      smtpd_sasl_tls_security_options = $smtpd_sasl_security_options                                                       
      smtpd_sasl_local_domain = $mydomain                                                                                  
      smtpd_sasl_authenticated_header = yes
      
      # Chemin vers votre certficat SSL                                                                          
      smtpd_tls_cert_file = /etc/ssl/certs/server.crt                                                            
      smtpd_tls_key_file = /etc/ssl/private/server.key                                                           
                                                                                                                 
      # vmail User                                                                                               
      virtual_uid_maps = static:5000                                                                             
      virtual_gid_maps = static:5000                                  
      virtual_mailbox_base = /var/mail
                                                                                                                 
      # Comment se connecter pour récupérer les informations de la BDD                                           
      virtual_mailbox_domains = mysql:/etc/postfix/mysql-virtual-mailbox-domains.cf                              
      virtual_mailbox_maps = mysql:/etc/postfix/mysql-virtual-mailbox-maps.cf                                    
      virtual_alias_maps = mysql:/etc/postfix/mysql-virtual-alias-maps.cf    
      
      # Ou envoyer les email recu                                                                                                                                                       
      virtual_transport = lmtp:unix:private/dovecot-lmtp                                                         
                                                                                                                 
      # Parametres generaux            
      myhostname = nosdef.fr                                                                                     
      alias_maps = hash:/etc/aliases                                                                             
      alias_database = hash:/etc/aliases                                                                         
      myorigin = /etc/mailname                                                                                   
      mydestination = localhosons = noanonymous                                                                  
      relayhost =                                                                                                
      mynetworks = 127.0.0.0/8 [::ffff:127.0.0.0]/104 [::1]/128                                                  
      mailbox_command = procmail -a "$EXTENSION"                                                                 
      mailbox_size_limit = 0                                                                                     
      recipient_delimiter = +                                                                                    
      inet_interfaces = all /etc/ssl/certs/server.crt                                                            
      inet_protocols = ipv4                                                                                      
      
      /etc/postfix/master.cf
      #                                                                            
      # Postfix master process configuration file.  For details on the format      
      # of the file, see the master(5) manual page (command: "man 5 master" or     
      # on-line: http://www.postfix.org/master.5.html).                            
      #                                                                            
      # Do not forget to execute "postfix reload" after editing this file.         
      #                                                                            
      # ========================================================================== 
      # service type  private unpriv  chroot  wakeup  maxproc command + args       
      #               (yes)   (yes)   (yes)   (never) (100)                        
      # ========================================================================== 
      smtp      inet  n       -       -       -       -       smtpd                
      #smtp      inet  n       -       -       -       1       postscreen          
      #smtpd     pass  -       -       -       -       -       smtpd               
      #dnsblog   unix  -       -       -       -       0       dnsblog             
      #tlsproxy  unix  -       -       -       -       0       tlsproxy            
      submission inet n       -       -       -       -       smtpd                
        -o syslog_name=postfix/submission                                          
        -o smtpd_tls_security_level=encrypt                                        
        -o smtpd_sasl_auth_enable=yes                                              
      #  -o smtpd_reject_unlisted_recipient=no                                     
        -o smtpd_client_restrictions=permit_sasl_authenticated,reject              
      #  -o smtpd_client_restrictions=$mua_client_restrictions                     
      #  -o smtpd_helo_restrictions=$mua_helo_restrictions                         
      #  -o smtpd_sender_restrictions=$mua_sender_restrictions                     
      #  -o smtpd_recipient_restrictions=                                          
      #  -o smtpd_relay_restrictions=permit_sasl_authenticated,reject              
      #  -o milter_macro_daemon_name=ORIGINATING                                   
      #smtps     inet  n       -       -       -       -       smtpd               
      #  -o syslog_name=postfix/smtps                                              
      #  -o smtpd_tls_wrappermode=yes                                              
      #  -o smtpd_sasl_auth_enable=yes                                             
      #  -o smtpd_reject_unlisted_recipient=no                                     
      #  -o smtpd_client_restrictions=$mua_client_restrictions                     
      #  -o smtpd_helo_restrictions=$mua_helo_restrictions                         
      #  -o smtpd_sender_restrictions=$mua_sender_restrictions                     
      #  -o smtpd_recipient_restrictions=                                          
      #  -o smtpd_relay_restrictions=permit_sasl_authenticated,reject              
      #  -o milter_macro_daemon_name=ORIGINATING                                   
      #628       inet  n       -       -       -       -       qmqpd               
      pickup    unix  n       -       -       60      1       pickup               
      cleanup   unix  n       -       -       -       0       cleanup              
      qmgr      unix  n       -       n       300     1       qmgr                 
      #qmgr     unix  n       -       n       300     1       oqmgr                
      tlsmgr    unix  -       -       -       1000?   1       tlsmgr               
      rewrite   unix  -       -       -       -       -       trivial-rewrite      
      bounce    unix  -       -       -       -       0       bounce               
      defer     unix  -       -       -       -       0       bounce               
      trace     unix  -       -       -       -       0       bounce               
      verify    unix  -       -       -       -       1       verify               
      flush     unix  n       -       -       1000?   0       flush                
      proxymap  unix  -       -       n       -       -       proxymap             
      proxywrite unix -       -       n       -       1       proxymap             
      smtp      unix  -       -       -       -       -       smtp                 
      relay     unix  -       -       -       -       -       smtp                 
      #       -o smtp_helo_timeout=5 -o smtp_connect_timeout=5
      showq     unix  n       -       -       -       -       showq         
      error     unix  -       -       -       -       -       error         
      retry     unix  -       -       -       -       -       error         
      discard   unix  -       -       -       -       -       discard       
      local     unix  -       n       n       -       -       local         
      virtual   unix  -       n       n       -       -       virtual       
      lmtp      unix  -       -       -       -       -       lmtp          
      anvil     unix  -       -       -       -       1       anvil         
      scache    unix  -       -       -       -       1       scache        
      #                                                                     
      # ====================================================================
      # Interfaces to non-Postfix software. Be sure to examine the manual   
      # pages of the non-Postfix software to find out what options it wants.
      #                                                                     
      # Many of the following services use the Postfix pipe(8) delivery     
      # agent.  See the pipe(8) man page for information about ${recipient} 
      # and other message envelope options.                                 
      # ====================================================================
      #                                                                     
      # maildrop. See the Postfix MAILDROP_README file for details.         
      # Also specify in main.cf: maildrop_destination_recipient_limit=1     
      #                                                                     
      maildrop  unix  -       n       n       -       -       pipe          
        flags=DRhu user=vmail argv=/usr/bin/maildrop -d ${recipient}ap      
      #                                                                     
      # ====================================================================
      #                                                                     
      # Recent Cyrus versions can use the existing "lmtp" master.cf entry.  
      #                                                                               
      # Specify in cyrus.conf:                                                        
      #   lmtp    cmd="lmtpd -a" listen="localhost:lmtp" proto=tcp4                   
      #                                                                               
      # Specify in main.cf one or more of the following:                              
      #  mailbox_transport = lmtp:inet:localhost                                      
      #  virtual_transport = lmtp:inet:localhost                                      
      #                                                                               
      # ====================================================================          
      #                                                                               
      # Cyrus 2.1.5 (Amos Gouaux)                                                     
      # Also specify in main.cf: cyrus_destination_recipient_limit=1                  
      #                                                                               
      #cyrus     unix  -       n       n       -       -       pipe                   
      #  user=cyrus argv=/cyrus/bin/deliver -e -r ${sender} -m ${extension} ${user}   
      #                                                                               
      # ====================================================================          
      # Old example of delivery via Cyrus.                                            
      #                                                                               
      #old-cyrus unix  -       n       n       -       -       pipe                   
      #  flags=R user=cyrus argv=/cyrus/bin/deliver -e -m ${extension} ${user}        
      #                                                                               
      # ====================================================================          
      #                                                                               
      # See the Postfix UUCP_README file for configuration details.                   
      #                                                                               
      uucp      unix  -       n       n       -       -       pipe                    
        flags=Fqhu user=uucp argv=uux -r -n -z -a$sender - $nexthop!rmail ($recipient)
      #                                                                               
      # Other external delivery methods.                                              
      #
      ifmail    unix  -       n       n       -       -       pipe
        flags=F user=ftn argv=/usr/lib/ifmail/ifmail -r $nexthop ($recipient)
      bsmtp     unix  -       n       n       -       -       pipe
        flags=Fq. user=bsmtp argv=/usr/lib/bsmtp/bsmtp -t$nexthop -f$sender $recipient
      scalemail-backend unix  -       n       n       -       2       pipe
        flags=R user=scalemail argv=/usr/lib/scalemail/bin/scalemail-store ${nexthop} ${user} ${extension}
      mailman   unix  -       n       n       -       -       pipe
        flags=FR user=list argv=/usr/lib/mailman/bin/postfix-to-mailman.py
        ${nexthop} ${user}
      
      /etc/aliases
      # See man 5 aliases for format
      postmaster:    root
      
    • Bonjour, j'ai un souci pour recevoir des messages quelqu'un voit d'ou cela peut provenir ?
      En vous remerciant par avance.
      Dec  2 22:05:43 sd-43639 postfix/anvil[14446]: statistics: max cache size 1 at Dec  2 22:02:23
      Dec  2 22:06:22 sd-43639 postfix/smtpd[14456]: connect from dub004-omc1s16.hotmail.com[157.55.0.215]
      Dec  2 22:06:23 sd-43639 postfix/smtpd[14456]: warning: unknown smtpd restriction: "smtpd_helo_restrictions"
      Dec  2 22:06:23 sd-43639 postfix/smtpd[14456]: NOQUEUE: reject: RCPT from dub004-omc1s16.hotmail.com[157.55.0.215]: 451 4.3.5 Server configuration error; from=<eol94@hotmail.com> to=<jesus@nosdef.fr> proto=ESMTP helo=<DUB004-OMC1S16.hotmail.com>
      Dec  2 22:06:23 sd-43639 postfix/cleanup[14463]: 2A5CA1AC1300: message-id=<20141202210623.2A5CA1AC1300@nosdef.fr>
      Dec  2 22:06:23 sd-43639 postfix/qmgr[14354]: 2A5CA1AC1300: from=<double-bounce@nosdef.fr>, size=1235, nrcpt=1 (queue active)
      Dec  2 22:06:23 sd-43639 postfix/smtpd[14456]: disconnect from dub004-omc1s16.hotmail.com[157.55.0.215]
      Dec  2 22:06:23 sd-43639 postfix/smtp[14465]: 2A5CA1AC1300: to=<postmaster@change-this-to-your.domain.tld>, orig_to=<postmaster>, relay=none, delay=0.04, delays=0.03/0.01/0/0, dsn=5.4.4, status=bounced (Host or domain name not found. Name service error for name=change-this-to-your.domain.tld type=A: Host not found)
      Dec  2 22:06:23 sd-43639 postfix/bounce[14466]: warning: 2A5CA1AC1300: undeliverable postmaster notification discarded
      Dec  2 22:06:23 sd-43639 postfix/qmgr[14354]: 2A5CA1AC1300: removed