1、Mini安装Centos 6.5 X64,配置好IP地址、网关、DNS
service iptables stop
chkconfig iptables off
yum update -y
sed 's/SELINUX=enforcing/SELINUX=disabled/g' /etc/selinux/config > /etc/selinux/config1
rm -rf /etc/selinux/config
cp /etc/selinux/config1 /etc/selinux/config
groupadd vmail -g 1001
useradd -u 1001 -g 1001 vmail
usermod -G vmail postfix
id vmail
mkdir /shell
touch /shell/start.sh
chmod 700 /shell/start.sh
mkdir -p /home/mailbox/finnce.cn
mkdir -p /home/www
echo '/shell/start.sh' >> /etc/rc.local
chown -R vmail:vmail /home/www
chown -R vmail:vmail /home/mailbox
chmod -R 700 /home/mailbox
mkdir -p /usr/local/src/tarbag/
mkdir -p /usr/local/src/software/
yum install -y gcc gcc-c++ autoconf libjpeg libjpeg-devel libpng libpng-devel freetype freetype-devel libxml2 libxml2-devel zlib zlib-devel glibc glibc-devel glib2 glib2-devel bzip2 bzip2-devel
yum install -y ncurses ncurses-devel curl curl-devel e2fsprogs e2fsprogs-devel krb5* krb5-devel libidn libidn-devel rrdtool*
yum install -y openssl openssl-devel openldap openldap-devel nss_ldap* openldap-clients openldap-servers expect pcre* libtool gd
yum install -y httpd-devel apr apr-devel
yum install -y php*
yum install -y gd*
yum install -y cyrus-sasl*
yum install -y saslwrapper
yum install -y cyrus-sasl-md5
yum install -y cyrus-sasl-lib
yum install -y python-saslwrapper
yum install -y cyrus-sasl-devel
yum install -y cpan
yum install -y ntpdate*
yum install -y perl*
ntpdate 203.117.180.36
ntpdate 0.uk.pool.ntp.org
chkconfig httpd on
chkconfig saslauthd on
chkconfig postfix on
chkconfig php-fpm on
service httpd restart
service saslauthd restart
service postfix restart
service php-fpm restart
perl -MCPAN -e shell
force install DBI::DBD
install File::Tail
install Unix::Syslog
cd /usr/local/src/tarbag/
rpm -ivh atrpms-77-1.noarch.rpm
rpm -ivh perl-FCGI-0.67-2.el6.x86_64.rpm
cd /usr/local/src/tarbag/
tar -zxvf mod_fastcgi-2.4.6.tar.gz -C ../software/
cd ../software/mod_fastcgi-2.4.6/
cp Makefile.AP2 Makefile
make top_dir=/usr/lib64/httpd install
cd /usr/local/src/tarbag
tar -jxvf courier-authlib-0.63.0.tar.bz2 -C ../software/
cd ../software/courier-authlib-0.63.0
./configure --prefix=/usr/local/courier-authlib --with-mailuser=vmail --with-mailgroup=vmail --sysconfdir=/etc \--without-authpam --with-authldaplib --with-authldap --without-authpwd --without-authshadow --without-authvchkpw \--without-authpgsql --with-authdaemonrc=/etc/authdaemonrc FLAGS="-march=x86-64 -O2 -fexpensive-optimizations" CXXFLAGS="-march=x86-64 -O2 -fexpensive-optimizations"
make && make install
echo '/usr/local/courier-authlib/lib/courier-authlib/' >> /etc/ld.so.conf
ldconfig
ldconfig -v | grep courier
echo 'authmodulelist="authldap"' >>/etc/authdaemonrc
echo 'authmodulelistorig="authldap"' >>/etc/authdaemonrc
echo 'daemons=5' >>/etc/authdaemonrc
echo 'authdaemonvar=/usr/local/courier-authlib/var/spool/authdaemon' >>/etc/authdaemonrc
echo 'DEBUG_LOGIN=0' >>/etc/authdaemonrc
echo 'DEFAULTOPTIONS=""' >>/etc/authdaemonrc
echo 'LOGGEROPTS=""' >>/etc/authdaemonrc
cat /etc/authdaemonrc
echo '/usr/local/courier-authlib/sbin/authdaemond start' >> /shell/start.sh
rm -rf /etc/sasl2/smtpd.conf
echo 'pwcheck_method: authdaemond' >> /etc/sasl2/smtpd.conf
echo 'log_level: 3' >> /etc/sasl2/smtpd.conf
echo 'mech_list: PLAIN LOGIN' >> /etc/sasl2/smtpd.conf
echo 'authdaemond_path:/usr/local/courier-authlib/var/spool/authdaemon/socket' >> /etc/sasl2/smtpd.conf
chmod -R 755 /usr/local/courier-authlib/var/spool/authdaemon/
chown -R root:root /usr/local/courier-authlib/var/spool/authdaemon
echo 'LDAP_URI ldap://finnce.cn' >> /etc/authlib/authldaprc
echo 'LDAP_PORT 389' >> /etc/authlib/authldaprc
echo 'LDAP_PROTOCOL_VERSION 3' >> /etc/authlib/authldaprc
echo 'LDAP_BASEDN ou=finnce,dc=finnce,dc=cn' >> /etc/authlib/authldaprc
echo 'LDAP_BINDDN cn=vmail,ou=finnce,dc=finnce,dc=cn' >> /etc/authlib/authldaprc
echo 'LDAP_BINDPW admin*00' >> /etc/authlib/authldaprc
echo 'LDAP_TIMEOUT 10' >> /etc/authlib/authldaprc
echo 'LDAP_AUTHBIND 1' >> /etc/authlib/authldaprc
echo 'LDAP_MAIL mail' >> /etc/authlib/authldaprc
echo 'LDAP_DOMAIN finnce.cn' >> /etc/authlib/authldaprc
echo 'LDAP_GLOB_UID vmail' >> /etc/authlib/authldaprc
echo 'LDAP_GLOB_GID vmail' >> /etc/authlib/authldaprc
echo 'LDAP_HOMEDIR sAMAccountName' >> /etc/authlib/authldaprc
echo 'LDAP_MAILROOT /home/mailbox/finnce.cn' >> /etc/authlib/authldaprc
echo 'LDAP_MAILDIR mailbox' >> /etc/authlib/authldaprc
echo 'LDAP_MAILDIRQUOTA mailQuota' >> /etc/authlib/authldaprc
echo 'LDAP_DEREF never' >> /etc/authlib/authldaprc
echo 'LDAP_FULLNAME displayName' >> /etc/authlib/authldaprc
echo 'LDAP_CRYPTPW userPassword' >> /etc/authlib/authldaprc
rm -f /etc/postfix/main.cf
echo 'queue_directory = /var/spool/postfix' >> /etc/postfix/main.cf
echo 'command_directory = /usr/sbin' >> /etc/postfix/main.cf
echo 'daemon_directory = /usr/libexec/postfix' >> /etc/postfix/main.cf
echo 'data_directory = /var/lib/postfix' >> /etc/postfix/main.cf
echo 'mail_owner = postfix' >> /etc/postfix/main.cf
echo 'myhostname = mail.finnce.cn' >> /etc/postfix/main.cf
echo 'mydomain = finnce.cn' >> /etc/postfix/main.cf
echo 'inet_interfaces = all' >> /etc/postfix/main.cf
echo 'mydestination =' >> /etc/postfix/main.cf
echo 'mynetworks = 127.0.0.0/8 172.0.0.0/8 10.0.0.0/8' >> /etc/postfix/main.cf
echo 'inet_protocols = ipv4' >> /etc/postfix/main.cf
echo 'unknown_local_recipient_reject_code = 550' >> /etc/postfix/main.cf
echo 'alias_maps = hash:/etc/aliases' >> /etc/postfix/main.cf
echo 'alias_database = hash:/etc/aliases' >> /etc/postfix/main.cf
echo 'debug_peer_level = 2' >> /etc/postfix/main.cf
echo 'debugger_command =' >> /etc/postfix/main.cf
echo ' PATH=/bin:/usr/bin:/usr/local/bin:/usr/X11R6/bin' >> /etc/postfix/main.cf
echo ' ddd $daemon_directory/$process_name $process_id & sleep 5' >> /etc/postfix/main.cf
echo 'sendmail_path = /usr/sbin/sendmail.postfix' >> /etc/postfix/main.cf
echo 'newaliases_path = /usr/bin/newaliases.postfix' >> /etc/postfix/main.cf
echo 'mailq_path = /usr/bin/mailq.postfix' >> /etc/postfix/main.cf
echo 'setgid_group = postdrop' >> /etc/postfix/main.cf
echo 'html_directory = no' >> /etc/postfix/main.cf
echo 'manpage_directory = /usr/share/man' >> /etc/postfix/main.cf
echo 'sample_directory = /usr/share/doc/postfix-2.6.6/samples' >> /etc/postfix/main.cf
echo 'readme_directory = /usr/share/doc/postfix-2.6.6/README_FILES' >> /etc/postfix/main.cf
echo '##====================SASL========================' >> /etc/postfix/main.cf
echo 'broken_sasl_auth_clients = yes' >> /etc/postfix/main.cf
echo 'smtpd_recipient_restrictions =' >> /etc/postfix/main.cf
echo ' permit_mynetworks,' >> /etc/postfix/main.cf
echo ' permit_sasl_authenticated,' >> /etc/postfix/main.cf
echo ' reject_invalid_hostname,' >> /etc/postfix/main.cf
echo ' reject_non_fqdn_hostname,' >> /etc/postfix/main.cf
echo ' reject_unknown_sender_domain,' >> /etc/postfix/main.cf
echo ' reject_non_fqdn_sender,' >> /etc/postfix/main.cf
echo ' reject_non_fqdn_recipient,' >> /etc/postfix/main.cf
echo ' reject_unknown_recipient_domain,' >> /etc/postfix/main.cf
echo ' reject_unauth_pipelining,' >> /etc/postfix/main.cf
echo ' reject_unauth_destination,' >> /etc/postfix/main.cf
echo ' permit' >> /etc/postfix/main.cf
echo 'smtpd_sasl_auth_enable = yes' >> /etc/postfix/main.cf
echo 'smtpd_sasl_security_options = noanonymous' >> /etc/postfix/main.cf
echo 'smtpd_sasl_application_name = smtpd' >> /etc/postfix/main.cf
echo 'smtpd_banner = $myhostname ESMTP $mail_name ($mail_version)' >> /etc/postfix/main.cf
echo '#================ Virtual Mailbox Settings =====================#' >> /etc/postfix/main.cf
echo 'virtual_mailbox_base = /home/mailbox' >> /etc/postfix/main.cf
echo 'virtual_mailbox_maps = ldap:/etc/postfix/ldap-users.cf' >> /etc/postfix/main.cf
echo 'virtual_mailbox_domains = $mydomain' >> /etc/postfix/main.cf
echo 'virtual_alias_domains = ' >> /etc/postfix/main.cf
echo 'virtual_alias_maps = ldap:/etc/postfix/ldap-group.cf' >> /etc/postfix/main.cf
echo 'virtual_uid_maps = static:1001' >> /etc/postfix/main.cf
echo 'virtual_gid_maps = static:1001' >> /etc/postfix/main.cf
echo 'virtual_transport = maildrop' >> /etc/postfix/main.cf
echo 'maildrop_destination_recipient_limit = 1' >> /etc/postfix/main.cf
echo 'maildrop_destination_concurrency_limit = 1' >> /etc/postfix/main.cf
echo 'message_size_limit = 102400000' >> /etc/postfix/main.cf
echo 'virtual_mailbox_limit = 102400000000' >> /etc/postfix/main.cf
echo 'virtual_create_maildirsize = yes' >> /etc/postfix/main.cf
echo 'virtual_mailbox_extended = yes' >> /etc/postfix/main.cf
echo 'virtual_mailbox_limit_maps = ldap:/etc/postfix/ldap-group.cf' >> /etc/postfix/main.cf
echo 'virtual_mailbox_limit_override = yes' >> /etc/postfix/main.cf
echo 'virtual_maildir_limit_message = Sorry, the users maildir has overdrawn his diskspace quota, please Tidy your mailbox and try again later.' >> /etc/postfix/main.cf
echo 'virtual_overquota_bounce = yes' >> /etc/postfix/main.cf
#=====================SSL/TLS==================================#
smtpd_use_tls = yes
smtpd_tls_key_file = /etc/tls/mailkey.pem
smtpd_tls_cert_file = /etc/tls/mail_signed_cert.pem
smtpd_tls_CAfile = /etc/tls/cacert.pem
smtp_use_tls = yes
smtp_tls_note_starttls_offer = yes
smtp_tls_key_file = /etc/tls/mailkey.pem
smtp_tls_cert_file = /etc/tls/mail_signed_cert.pem
smtp_tls_CAfile = /etc/tls/cacert.pem
echo 'maildrop unix - n n - - pipe' >> /etc/postfix/master.cf
echo ' flags=DRhu user=vmail argv=/usr/local/bin/maildrop -d ${recipient}' >> /etc/postfix/master.cf
echo 'server_host = 172.16.10.109' >> /etc/postfix/ldap-users.cf
echo 'search_base = dc=finnce,dc=com' >> /etc/postfix/ldap-users.cf
echo 'version = 3' >> /etc/postfix/ldap-users.cf
echo 'query_filter = (&(objectclass=person)(|(mail=%s)(othermailbox=%s))(!(userAccountControl=66050)))' >> /etc/postfix/ldap-users.cf
echo 'bind = yes' >> /etc/postfix/ldap-users.cf
echo 'bind_dn = vmail@finnce.cn' >> /etc/postfix/ldap-users.cfecho 'bind_pw = admin*00' >> /etc/postfix/ldap-users.cf
echo 'result_attribute = sAMAccountName' >> /etc/postfix/ldap-users.cf
echo 'result_format = %s/Maildir' >> /etc/postfix/ldap-users.cf
echo 'server_host = 172.16.10.109' >> /etc/postfix/ldap-group.cf
echo 'search_base = dc=finnce,dc=com' >> /etc/postfix/ldap-group.cf
echo 'version=3' >> /etc/postfix/ldap-group.cf
echo 'query_filter=(&(objectClass=group)(mail=%s))' >> /etc/postfix/ldap-group.cf
echo 'leaf_result_attribute = mail' >> /etc/postfix/ldap-group.cf
echo 'special_result_attribute = member' >> /etc/postfix/ldap-group.cf
echo 'bind = yes' >> /etc/postfix/ldap-group.cf
echo 'bind_dn = vmail@finnce.cn' >> /etc/postfix/ldap-group.cf
echo 'bind_pw = admin*00' >> /etc/postfix/ldap-group.cf
authconfig --enableldap
cd /usr/local/src/tarbag/
tar -jxvf courier-imap-4.9.3.tar.bz2 -C ../software/
cd ../software/courier-imap-4.9.3/
./configure --prefix=/usr/local/courier-imap --with-redhat --enable-unicode --disable-root-check --with-trashquota --without-ipv6\
CPPFLAGS='-I/usr/local/courier-authlib/include' COURIERAUTHCONFIG='/usr/local/courier-authlib/bin/courierauthconfig'
make && make install
echo 'PIDFILE=/var/run/pop3d.pid' >> /usr/local/courier-imap/etc/pop3d
echo 'MAXDAEMONS=20480' >> /usr/local/courier-imap/etc/pop3d
echo 'MAXPERIP=10240' >> /usr/local/courier-imap/etc/pop3d
echo 'POP3AUTH="LOGIN PLAIN"' >> /usr/local/courier-imap/etc/pop3d
echo 'POP3AUTH_ORIG="PLAIN LOGIN CRAM-MD5 CRAM-SHA1 CRAM-SHA256"' >> /usr/local/courier-imap/etc/pop3d
echo 'POP3AUTH_TLS=""' >> /usr/local/courier-imap/etc/pop3d
echo 'POP3AUTH_TLS_ORIG="LOGIN PLAIN"' >> /usr/local/courier-imap/etc/pop3d
echo 'POP3_PROXY=0' >> /usr/local/courier-imap/etc/pop3d
echo 'PORT=110' >> /usr/local/courier-imap/etc/pop3d
echo 'ADDRESS=0' >> /usr/local/courier-imap/etc/pop3d
echo 'TCPDOPTS="-nodnslookup -noidentlookup"' >> /usr/local/courier-imap/etc/pop3d
echo 'LOGGEROPTS="-name=pop3d"' >> /usr/local/courier-imap/etc/pop3d
echo 'POP3DSTART=YES' >> /usr/local/courier-imap/etc/pop3d
echo 'MAILDIRPATH=Maildir' >> /usr/local/courier-imap/etc/pop3d
echo 'ADDRESS=0' >> /usr/local/courier-imap/etc/imapd
echo 'PORT=143' >> /usr/local/courier-imap/etc/imapd
echo 'MAXDAEMONS=20480' >> /usr/local/courier-imap/etc/imapd
echo 'MAXPERIP=10250' >> /usr/local/courier-imap/etc/imapd
echo 'PIDFILE=/var/run/imapd.pid' >> /usr/local/courier-imap/etc/imapd
echo 'TCPDOPTS="-nodnslookup -noidentlookup"' >> /usr/local/courier-imap/etc/imapd
echo 'LOGGEROPTS="-name=imapd"' >> /usr/local/courier-imap/etc/imapd
echo 'IMAP_CAPABILITY="IMAP4rev1 UIDPLUS CHILDREN NAMESPACE THREAD=ORDEREDSUBJECT THREAD=REFERENCES SORT QUOTA IDLE"' >> /usr/local/courier-imap/etc/imapd
echo 'IMAP_KEYWORDS=1' >> /usr/local/courier-imap/etc/imapd
echo 'IMAP_ACL=1' >> /usr/local/courier-imap/etc/imapd
echo 'IMAP_CAPABILITY_ORIG="IMAP4rev1 UIDPLUS CHILDREN NAMESPACE THREAD=ORDEREDSUBJECT THREAD=REFERENCES SORT QUOTA AUTH=CRAM-MD5 AUTH=CRAM-SHA1 AUTH=CRAM-SHA256 IDLE"' >> /usr/local/courier-imap/etc/imapd
echo 'IMAP_PROXY=0' >> /usr/local/courier-imap/etc/imapd
echo 'IMAP_PROXY_FOREIGN=0' >> /usr/local/courier-imap/etc/imapd
echo 'IMAP_IDLE_TIMEOUT=60' >> /usr/local/courier-imap/etc/imapd
echo 'IMAP_MAILBOX_SANITY_CHECK=1' >> /usr/local/courier-imap/etc/imapd
echo 'IMAP_CAPABILITY_TLS="$IMAP_CAPABILITY AUTH=PLAIN"' >> /usr/local/courier-imap/etc/imapd
echo 'IMAP_CAPABILITY_TLS_ORIG="$IMAP_CAPABILITY_ORIG AUTH=PLAIN"' >> /usr/local/courier-imap/etc/imapd
echo 'IMAP_DISABLETHREADSORT=0' >> /usr/local/courier-imap/etc/imapd
echo 'IMAP_CHECK_ALL_FOLDERS=0' >> /usr/local/courier-imap/etc/imapd
echo 'IMAP_OBSOLETE_CLIENT=0' >> /usr/local/courier-imap/etc/imapd
echo 'IMAP_UMASK=022' >> /usr/local/courier-imap/etc/imapd
echo 'IMAP_ULIMITD=65536' >> /usr/local/courier-imap/etc/imapd
echo 'IMAP_USELOCKS=1' >> /usr/local/courier-imap/etc/imapd
echo 'IMAP_SHAREDINDEXFILE=/usr/local/courier-imap/etc/shared/index' >> /usr/local/courier-imap/etc/imapd
echo 'IMAP_ENHANCEDIDLE=0' >> /usr/local/courier-imap/etc/imapd
echo 'IMAP_TRASHFOLDERNAME=Trash' >> /usr/local/courier-imap/etc/imapd
echo 'IMAP_EMPTYTRASH=Trash:7' >> /usr/local/courier-imap/etc/imapd
echo 'IMAP_MOVE_EXPUNGE_TO_TRASH=0' >> /usr/local/courier-imap/etc/imapd
echo 'SENDMAIL=/usr/sbin/sendmail' >> /usr/local/courier-imap/etc/imapd
echo 'HEADERFROM=X-IMAP-Sender' >> /usr/local/courier-imap/etc/imapd
echo 'IMAPDSTART=YES' >> /usr/local/courier-imap/etc/imapd
echo 'MAILPATH=Maildir' >> /usr/local/courier-imap/etc/imapd
echo 'SSLPORT=993' >> /usr/local/courier-imap/etc/imapd-ssl
echo 'SSLADDRESS=0' >> /usr/local/courier-imap/etc/imapd-ssl
echo 'SSLPIDFILE=/var/run/imapd-ssl.pid' >> /usr/local/courier-imap/etc/imapd-ssl
echo 'SSLLOGGEROPTS="-name=imapd-ssl"' >> /usr/local/courier-imap/etc/imapd-ssl
echo 'IMAPDSSLSTART=YES' >> /usr/local/courier-imap/etc/imapd-ssl
echo 'IMAPDSTARTTLS=YES' >> /usr/local/courier-imap/etc/imapd-ssl
echo 'IMAP_TLS_REQUIRED=0' >> /usr/local/courier-imap/etc/imapd-ssl
echo 'COURIERTLS=/usr/local/courier-imap/bin/couriertls' >> /usr/local/courier-imap/etc/imapd-ssl
echo 'TLS_KX_LIST=ALL' >> /usr/local/courier-imap/etc/imapd-ssl
echo 'TLS_COMPRESSION=ALL' >> /usr/local/courier-imap/etc/imapd-ssl
echo 'TLS_CERTS=X509' >> /usr/local/courier-imap/etc/imapd-ssl
echo 'TLS_CERTFILE=/usr/local/courier-imap/share/imapd.pem' >> /usr/local/courier-imap/etc/imapd-ssl
echo 'TLS_TRUSTCERTS=/etc/pki/tls/cert.pem' >> /usr/local/courier-imap/etc/imapd-ssl
echo 'TLS_VERIFYPEER=NONE' >> /usr/local/courier-imap/etc/imapd-ssl
echo 'TLS_CACHEFILE=/usr/local/courier-imap/var/couriersslcache' >> /usr/local/courier-imap/etc/imapd-ssl
echo 'TLS_CACHESIZE=524288' >> /usr/local/courier-imap/etc/imapd-ssl
echo 'MAILDIRPATH=Maildir' >> /usr/local/courier-imap/etc/imapd-ssl
echo 'SSLPORT=995' >> /usr/local/courier-imap/etc/pop3d-ssl
echo 'SSLADDRESS=0' >> /usr/local/courier-imap/etc/pop3d-ssl
echo 'SSLPIDFILE=/var/run/pop3d-ssl.pid' >> /usr/local/courier-imap/etc/pop3d-ssl
echo 'SSLLOGGEROPTS="-name=pop3d-ssl"' >> /usr/local/courier-imap/etc/pop3d-ssl
echo 'POP3DSSLSTART=YES' >> /usr/local/courier-imap/etc/pop3d-ssl
echo 'POP3_STARTTLS=YES' >> /usr/local/courier-imap/etc/pop3d-ssl
echo 'POP3_TLS_REQUIRED=0' >> /usr/local/courier-imap/etc/pop3d-ssl
echo 'COURIERTLS=/usr/local/courier-imap/bin/couriertls' >> /usr/local/courier-imap/etc/pop3d-ssl
echo 'TLS_STARTTLS_PROTOCOL=TLS1' >> /usr/local/courier-imap/etc/pop3d-ssl
echo 'TLS_KX_LIST=ALL' >> /usr/local/courier-imap/etc/pop3d-ssl
echo 'TLS_COMPRESSION=ALL' >> /usr/local/courier-imap/etc/pop3d-ssl
echo 'TLS_CERTS=X509' >> /usr/local/courier-imap/etc/pop3d-ssl
echo 'TLS_CERTFILE=/usr/local/courier-imap/share/pop3d.pem' >> /usr/local/courier-imap/etc/pop3d-ssl
echo 'TLS_TRUSTCERTS=/etc/pki/tls/cert.pem' >> /usr/local/courier-imap/etc/pop3d-ssl
echo 'TLS_VERIFYPEER=NONE' >> /usr/local/courier-imap/etc/pop3d-ssl
echo 'TLS_CACHEFILE=/usr/local/courier-imap/var/couriersslcache' >> /usr/local/courier-imap/etc/pop3d-ssl
echo 'TLS_CACHESIZE=524288' >> /usr/local/courier-imap/etc/pop3d-ssl
echo 'MAILDIRPATH=Maildir' >> /usr/local/courier-imap/etc/pop3d-ssl
cp /usr/local/src/software/courier-imap-4.9.3/courier-imap.sysvinit /etc/init.d/imapd
chmod 755 /etc/init.d/imapd
chkconfig --add imapd
chkconfig --level 2345 imapd on
service imapd start
ln -sv /usr/local/courier-authlib/bin/courierauthconfig /usr/bin
ln -sv /usr/local/courier-authlib/include/* /usr/include
cd /usr/local/src/tarbag/
tar -jxvf maildrop-2.5.4.tar.bz2 -C ../software/
cd ../software/maildrop-2.5.4/
./configure --enable-sendmail=/usr/sbin/sendmail.postfix --enable-trusted-users='root vmail' --enable-syslog=1 --enable-maildirquota \
--enable-maildrop-uid=1001 --enable-maildrop-gid=1001 --with-trashquota --with-dirsync
make && make install
echo 'logfile "/var/log/maildrop.log"' >> /etc/maildroprc
echo 'to "$HOME/Maildir"' >> /etc/maildroprc
touch /var/log/maildrop.log
chmod 777 /var/log/maildrop.log
cd /usr/local/src/tarbag/
tar xvf extmail-20141018.tar -C /home/www/
cd /home/www/
chown vmail.vmail -R extmail
cd extmail/
cd /usr/local/src/tarbag
mkdir /tmp/extmail
chown -R vmail:vmail /tmp/extmail
chmod -R 700 /tmp/extmail
cd /usr/local/src/tarbag
tar zxvf extman-1.1.tar.gz -C /home/www
cd /home/www/
mv extman-1.1 extman
chown -R vmail:vmail extman
cd /var/run/
mkdir extmail
/home/www/extman/daemon/cmdserver -v -d
cd /home/www/extman/addon
cp -r /home/www/extman/addon/mailgraph_ext /usr/local/
/usr/local/mailgraph_ext/mailgraph-init start
cd /usr/local/src/tarbag
tar zxvf slockd-0.99.tar.gz -C ../software/
cd ../software
mv slockd/ /usr/local/
/usr/local/slockd/slockd-init start
echo '/home/www/extmail/dispatch-init start' >> /shell/start.sh
echo '/usr/local/mailgraph_ext/mailgraph-init start' >> /shell/start.sh
echo '/usr/local/slockd/slockd-init start' >> /shell/start.sh
mv /etc/httpd/conf/httpd.conf /etc/httpd/conf/httpd.conf.bak
echo 'ServerTokens OS' >> /etc/httpd/conf/httpd.conf
echo 'ServerRoot "/etc/httpd"' >> /etc/httpd/conf/httpd.conf
echo 'PidFile run/httpd.pid' >> /etc/httpd/conf/httpd.conf
echo 'Timeout 60' >> /etc/httpd/conf/httpd.conf
echo 'KeepAlive Off' >> /etc/httpd/conf/httpd.conf
echo 'MaxKeepAliveRequests 100' >> /etc/httpd/conf/httpd.conf
echo 'KeepAliveTimeout 15' >> /etc/httpd/conf/httpd.conf
echo '<IfModule prefork.c>' >> /etc/httpd/conf/httpd.conf
echo 'StartServers 8' >> /etc/httpd/conf/httpd.conf
echo 'MinSpareServers 5' >> /etc/httpd/conf/httpd.conf
echo 'MaxSpareServers 20' >> /etc/httpd/conf/httpd.conf
echo 'ServerLimit 256' >> /etc/httpd/conf/httpd.conf
echo 'MaxClients 256' >> /etc/httpd/conf/httpd.conf
echo 'MaxRequestsPerChild 4000' >> /etc/httpd/conf/httpd.conf
echo '</IfModule>' >> /etc/httpd/conf/httpd.conf
echo '<IfModule worker.c>' >> /etc/httpd/conf/httpd.conf
echo 'StartServers 4' >> /etc/httpd/conf/httpd.conf
echo 'MaxClients 300' >> /etc/httpd/conf/httpd.conf
echo 'MinSpareThreads 25' >> /etc/httpd/conf/httpd.conf
echo 'MaxSpareThreads 75 ' >> /etc/httpd/conf/httpd.conf
echo 'ThreadsPerChild 25' >> /etc/httpd/conf/httpd.conf
echo 'MaxRequestsPerChild 0' >> /etc/httpd/conf/httpd.conf
echo '</IfModule>' >> /etc/httpd/conf/httpd.conf
echo 'LoadModule auth_basic_module modules/mod_auth_basic.so' >> /etc/httpd/conf/httpd.conf
echo 'LoadModule auth_digest_module modules/mod_auth_digest.so' >> /etc/httpd/conf/httpd.conf
echo 'LoadModule authn_file_module modules/mod_authn_file.so' >> /etc/httpd/conf/httpd.conf
echo 'LoadModule authn_alias_module modules/mod_authn_alias.so' >> /etc/httpd/conf/httpd.conf
echo 'LoadModule authn_anon_module modules/mod_authn_anon.so' >> /etc/httpd/conf/httpd.conf
echo 'LoadModule authn_dbm_module modules/mod_authn_dbm.so' >> /etc/httpd/conf/httpd.conf
echo 'LoadModule authn_default_module modules/mod_authn_default.so' >> /etc/httpd/conf/httpd.conf
echo 'LoadModule authz_host_module modules/mod_authz_host.so' >> /etc/httpd/conf/httpd.conf
echo 'LoadModule authz_user_module modules/mod_authz_user.so' >> /etc/httpd/conf/httpd.conf
echo 'LoadModule authz_owner_module modules/mod_authz_owner.so' >> /etc/httpd/conf/httpd.conf
echo 'LoadModule authz_groupfile_module modules/mod_authz_groupfile.so' >> /etc/httpd/conf/httpd.conf
echo 'LoadModule authz_dbm_module modules/mod_authz_dbm.so' >> /etc/httpd/conf/httpd.conf
echo 'LoadModule authz_default_module modules/mod_authz_default.so' >> /etc/httpd/conf/httpd.conf
echo 'LoadModule ldap_module modules/mod_ldap.so' >> /etc/httpd/conf/httpd.conf
echo 'LoadModule authnz_ldap_module modules/mod_authnz_ldap.so' >> /etc/httpd/conf/httpd.conf
echo 'LoadModule include_module modules/mod_include.so' >> /etc/httpd/conf/httpd.conf
echo 'LoadModule log_config_module modules/mod_log_config.so' >> /etc/httpd/conf/httpd.conf
echo 'LoadModule logio_module modules/mod_logio.so' >> /etc/httpd/conf/httpd.conf
echo 'LoadModule env_module modules/mod_env.so' >> /etc/httpd/conf/httpd.conf
echo 'LoadModule ext_filter_module modules/mod_ext_filter.so' >> /etc/httpd/conf/httpd.conf
echo 'LoadModule mime_magic_module modules/mod_mime_magic.so' >> /etc/httpd/conf/httpd.conf
echo 'LoadModule expires_module modules/mod_expires.so' >> /etc/httpd/conf/httpd.conf
echo 'LoadModule deflate_module modules/mod_deflate.so' >> /etc/httpd/conf/httpd.conf
echo 'LoadModule headers_module modules/mod_headers.so' >> /etc/httpd/conf/httpd.conf
echo 'LoadModule usertrack_module modules/mod_usertrack.so' >> /etc/httpd/conf/httpd.conf
echo 'LoadModule setenvif_module modules/mod_setenvif.so' >> /etc/httpd/conf/httpd.conf
echo 'LoadModule mime_module modules/mod_mime.so' >> /etc/httpd/conf/httpd.conf
echo 'LoadModule dav_module modules/mod_dav.so' >> /etc/httpd/conf/httpd.conf
echo 'LoadModule status_module modules/mod_status.so' >> /etc/httpd/conf/httpd.conf
echo 'LoadModule autoindex_module modules/mod_autoindex.so' >> /etc/httpd/conf/httpd.conf
echo 'LoadModule info_module modules/mod_info.so' >> /etc/httpd/conf/httpd.conf
echo 'LoadModule dav_fs_module modules/mod_dav_fs.so' >> /etc/httpd/conf/httpd.conf
echo 'LoadModule vhost_alias_module modules/mod_vhost_alias.so' >> /etc/httpd/conf/httpd.conf
echo 'LoadModule negotiation_module modules/mod_negotiation.so' >> /etc/httpd/conf/httpd.conf
echo 'LoadModule dir_module modules/mod_dir.so' >> /etc/httpd/conf/httpd.conf
echo 'LoadModule actions_module modules/mod_actions.so' >> /etc/httpd/conf/httpd.conf
echo 'LoadModule speling_module modules/mod_speling.so' >> /etc/httpd/conf/httpd.conf
echo 'LoadModule userdir_module modules/mod_userdir.so' >> /etc/httpd/conf/httpd.conf
echo 'LoadModule alias_module modules/mod_alias.so' >> /etc/httpd/conf/httpd.conf
echo 'LoadModule substitute_module modules/mod_substitute.so' >> /etc/httpd/conf/httpd.conf
echo 'LoadModule rewrite_module modules/mod_rewrite.so' >> /etc/httpd/conf/httpd.conf
echo 'LoadModule proxy_module modules/mod_proxy.so' >> /etc/httpd/conf/httpd.conf
echo 'LoadModule proxy_balancer_module modules/mod_proxy_balancer.so' >> /etc/httpd/conf/httpd.conf
echo 'LoadModule proxy_ftp_module modules/mod_proxy_ftp.so' >> /etc/httpd/conf/httpd.conf
echo 'LoadModule proxy_http_module modules/mod_proxy_http.so' >> /etc/httpd/conf/httpd.conf
echo 'LoadModule proxy_ajp_module modules/mod_proxy_ajp.so' >> /etc/httpd/conf/httpd.conf
echo 'LoadModule proxy_connect_module modules/mod_proxy_connect.so' >> /etc/httpd/conf/httpd.conf
echo 'LoadModule cache_module modules/mod_cache.so' >> /etc/httpd/conf/httpd.conf
echo 'LoadModule suexec_module modules/mod_suexec.so' >> /etc/httpd/conf/httpd.conf
echo 'LoadModule disk_cache_module modules/mod_disk_cache.so' >> /etc/httpd/conf/httpd.conf
echo 'LoadModule cgi_module modules/mod_cgi.so' >> /etc/httpd/conf/httpd.conf
echo 'LoadModule version_module modules/mod_version.so' >> /etc/httpd/conf/httpd.conf
echo 'LoadModule fastcgi_module modules/mod_fastcgi.so ' >> /etc/httpd/conf/httpd.conf
echo '<Ifmodule mod_fastcgi.c> ' >> /etc/httpd/conf/httpd.conf
echo 'FastCgiExternalServer /home/www/extmail/dispatch.fcgi -host 127.0.0.1:8888 ' >> /etc/httpd/conf/httpd.conf
echo '</Ifmodule> ' >> /etc/httpd/conf/httpd.conf
echo 'Include conf/webmail.conf' >> /etc/httpd/conf/httpd.conf
echo 'User vmail' >> /etc/httpd/conf/httpd.conf
echo 'Group vmail' >> /etc/httpd/conf/httpd.conf
echo 'ServerAdmin root@localhost' >> /etc/httpd/conf/httpd.conf
echo 'ServerName www.example.com:80 ' >> /etc/httpd/conf/httpd.conf
echo 'UseCanonicalName Off' >> /etc/httpd/conf/httpd.conf
echo 'DocumentRoot "/home/www/extmail/html"' >> /etc/httpd/conf/httpd.conf
echo '<Directory />' >> /etc/httpd/conf/httpd.conf
echo ' Options FollowSymLinks' >> /etc/httpd/conf/httpd.conf
echo ' AllowOverride None' >> /etc/httpd/conf/httpd.conf
echo '</Directory>' >> /etc/httpd/conf/httpd.conf
echo '<Directory "/var/www/html">' >> /etc/httpd/conf/httpd.conf
echo ' Options Indexes FollowSymLinks' >> /etc/httpd/conf/httpd.conf
echo ' AllowOverride None' >> /etc/httpd/conf/httpd.conf
echo ' Order allow,deny' >> /etc/httpd/conf/httpd.conf
echo ' Allow from all' >> /etc/httpd/conf/httpd.conf
echo '</Directory>' >> /etc/httpd/conf/httpd.conf
echo '<IfModule mod_userdir.c>' >> /etc/httpd/conf/httpd.conf
echo ' #' >> /etc/httpd/conf/httpd.conf
echo ' # UserDir is disabled by default since it can confirm the presence' >> /etc/httpd/conf/httpd.conf
echo ' # of a username on the system (depending on home directory' >> /etc/httpd/conf/httpd.conf
echo ' # permissions).' >> /etc/httpd/conf/httpd.conf
echo ' #' >> /etc/httpd/conf/httpd.conf
echo ' UserDir disabled' >> /etc/httpd/conf/httpd.conf
echo ' #' >> /etc/httpd/conf/httpd.conf
echo ' # To enable requests to /~user/ to serve the users public_html' >> /etc/httpd/conf/httpd.conf
echo ' # directory, install the "UserDir disabled" line above, and uncomment' >> /etc/httpd/conf/httpd.conf
echo ' # the following line instead:' >> /etc/httpd/conf/httpd.conf
echo ' # ' >> /etc/httpd/conf/httpd.conf
echo ' #UserDir public_html' >> /etc/httpd/conf/httpd.conf
echo '</IfModule>' >> /etc/httpd/conf/httpd.conf
echo 'DirectoryIndex index.html index.html.var' >> /etc/httpd/conf/httpd.conf
echo 'AccessFileName .htaccess' >> /etc/httpd/conf/httpd.conf
echo '<Files ~ "^\.ht">' >> /etc/httpd/conf/httpd.conf
echo ' Order allow,deny' >> /etc/httpd/conf/httpd.conf
echo ' Deny from all' >> /etc/httpd/conf/httpd.conf
echo ' Satisfy All' >> /etc/httpd/conf/httpd.conf
echo '</Files>' >> /etc/httpd/conf/httpd.conf
echo 'TypesConfig /etc/mime.types' >> /etc/httpd/conf/httpd.conf
echo 'DefaultType text/plain' >> /etc/httpd/conf/httpd.conf
echo '<IfModule mod_mime_magic.c>' >> /etc/httpd/conf/httpd.conf
echo ' MIMEMagicFile conf/magic' >> /etc/httpd/conf/httpd.conf
echo '</IfModule>' >> /etc/httpd/conf/httpd.conf
echo 'HostnameLookups Off' >> /etc/httpd/conf/httpd.conf
echo 'ErrorLog logs/error_log' >> /etc/httpd/conf/httpd.conf
echo 'LogLevel warn' >> /etc/httpd/conf/httpd.conf
echo 'LogFormat "%h %l %u %t \"%r\" %>s %b \"%{Referer}i\" \"%{User-Agent}i\"" combined' >> /etc/httpd/conf/httpd.conf
echo 'LogFormat "%h %l %u %t \"%r\" %>s %b" common' >> /etc/httpd/conf/httpd.conf
echo 'LogFormat "%{Referer}i -> %U" referer' >> /etc/httpd/conf/httpd.conf
echo 'LogFormat "%{User-agent}i" agent' >> /etc/httpd/conf/httpd.conf
echo 'CustomLog logs/access_log combined' >> /etc/httpd/conf/httpd.conf
echo 'ServerSignature On' >> /etc/httpd/conf/httpd.conf
echo 'Alias /icons/ "/var/www/icons/"' >> /etc/httpd/conf/httpd.conf
echo '<Directory "/var/www/icons">' >> /etc/httpd/conf/httpd.conf
echo ' Options Indexes MultiViews FollowSymLinks' >> /etc/httpd/conf/httpd.conf
echo ' AllowOverride None' >> /etc/httpd/conf/httpd.conf
echo ' Order allow,deny' >> /etc/httpd/conf/httpd.conf
echo ' Allow from all' >> /etc/httpd/conf/httpd.conf
echo '</Directory>' >> /etc/httpd/conf/httpd.conf
echo '<IfModule mod_dav_fs.c>' >> /etc/httpd/conf/httpd.conf
echo ' # Location of the WebDAV lock database.' >> /etc/httpd/conf/httpd.conf
echo ' DAVLockDB /var/lib/dav/lockdb' >> /etc/httpd/conf/httpd.conf
echo '</IfModule>' >> /etc/httpd/conf/httpd.conf
echo 'ScriptAlias /cgi-bin/ "/var/www/cgi-bin/"' >> /etc/httpd/conf/httpd.conf
echo '<Directory "/var/www/cgi-bin">' >> /etc/httpd/conf/httpd.conf
echo ' AllowOverride None' >> /etc/httpd/conf/httpd.conf
echo ' Options None' >> /etc/httpd/conf/httpd.conf
echo ' Order allow,deny' >> /etc/httpd/conf/httpd.conf
echo ' Allow from all' >> /etc/httpd/conf/httpd.conf
echo '</Directory>' >> /etc/httpd/conf/httpd.conf
echo 'IndexOptions FancyIndexing VersionSort NameWidth=* HTMLTable Charset=UTF-8' >> /etc/httpd/conf/httpd.conf
echo 'AddIconByEncoding (CMP,/icons/compressed.gif) x-compress x-gzip' >> /etc/httpd/conf/httpd.conf
echo 'AddIconByType (TXT,/icons/text.gif) text/*' >> /etc/httpd/conf/httpd.conf
echo 'AddIconByType (IMG,/icons/image2.gif) image/*' >> /etc/httpd/conf/httpd.conf
echo 'AddIconByType (SND,/icons/sound2.gif) audio/*' >> /etc/httpd/conf/httpd.conf
echo 'AddIconByType (VID,/icons/movie.gif) video/*' >> /etc/httpd/conf/httpd.conf
echo 'AddIcon /icons/binary.gif .bin .exe' >> /etc/httpd/conf/httpd.conf
echo 'AddIcon /icons/binhex.gif .hqx' >> /etc/httpd/conf/httpd.conf
echo 'AddIcon /icons/tar.gif .tar' >> /etc/httpd/conf/httpd.conf
echo 'AddIcon /icons/world2.gif .wrl .wrl.gz .vrml .vrm .iv' >> /etc/httpd/conf/httpd.conf
echo 'AddIcon /icons/compressed.gif .Z .z .tgz .gz .zip' >> /etc/httpd/conf/httpd.conf
echo 'AddIcon /icons/a.gif .ps .ai .eps' >> /etc/httpd/conf/httpd.conf
echo 'AddIcon /icons/layout.gif .html .shtml .htm .pdf' >> /etc/httpd/conf/httpd.conf
echo 'AddIcon /icons/text.gif .txt' >> /etc/httpd/conf/httpd.conf
echo 'AddIcon /icons/c.gif .c' >> /etc/httpd/conf/httpd.conf
echo 'AddIcon /icons/p.gif .pl .py' >> /etc/httpd/conf/httpd.conf
echo 'AddIcon /icons/f.gif .for' >> /etc/httpd/conf/httpd.conf
echo 'AddIcon /icons/dvi.gif .dvi' >> /etc/httpd/conf/httpd.conf
echo 'AddIcon /icons/uuencoded.gif .uu' >> /etc/httpd/conf/httpd.conf
echo 'AddIcon /icons/script.gif .conf .sh .shar .csh .ksh .tcl' >> /etc/httpd/conf/httpd.conf
echo 'AddIcon /icons/tex.gif .tex' >> /etc/httpd/conf/httpd.conf
echo 'AddIcon /icons/bomb.gif core' >> /etc/httpd/conf/httpd.conf
echo 'AddIcon /icons/back.gif ..' >> /etc/httpd/conf/httpd.conf
echo 'AddIcon /icons/hand.right.gif README' >> /etc/httpd/conf/httpd.conf
echo 'AddIcon /icons/folder.gif ^^DIRECTORY^^' >> /etc/httpd/conf/httpd.conf
echo 'AddIcon /icons/blank.gif ^^BLANKICON^^' >> /etc/httpd/conf/httpd.conf
echo 'DefaultIcon /icons/unknown.gif' >> /etc/httpd/conf/httpd.conf
echo 'ReadmeName README.html' >> /etc/httpd/conf/httpd.conf
echo 'HeaderName HEADER.html' >> /etc/httpd/conf/httpd.conf
echo 'IndexIgnore .??* *~ *# HEADER* README* RCS CVS *,v *,t' >> /etc/httpd/conf/httpd.conf
echo 'AddLanguage ca .ca' >> /etc/httpd/conf/httpd.conf
echo 'AddLanguage cs .cz .cs' >> /etc/httpd/conf/httpd.conf
echo 'AddLanguage da .dk' >> /etc/httpd/conf/httpd.conf
echo 'AddLanguage de .de' >> /etc/httpd/conf/httpd.conf
echo 'AddLanguage el .el' >> /etc/httpd/conf/httpd.conf
echo 'AddLanguage en .en' >> /etc/httpd/conf/httpd.conf
echo 'AddLanguage eo .eo' >> /etc/httpd/conf/httpd.conf
echo 'AddLanguage es .es' >> /etc/httpd/conf/httpd.conf
echo 'AddLanguage et .et' >> /etc/httpd/conf/httpd.conf
echo 'AddLanguage fr .fr' >> /etc/httpd/conf/httpd.conf
echo 'AddLanguage he .he' >> /etc/httpd/conf/httpd.conf
echo 'AddLanguage hr .hr' >> /etc/httpd/conf/httpd.conf
echo 'AddLanguage it .it' >> /etc/httpd/conf/httpd.conf
echo 'AddLanguage ja .ja' >> /etc/httpd/conf/httpd.conf
echo 'AddLanguage ko .ko' >> /etc/httpd/conf/httpd.conf
echo 'AddLanguage ltz .ltz' >> /etc/httpd/conf/httpd.conf
echo 'AddLanguage nl .nl' >> /etc/httpd/conf/httpd.conf
echo 'AddLanguage nn .nn' >> /etc/httpd/conf/httpd.conf
echo 'AddLanguage no .no' >> /etc/httpd/conf/httpd.conf
echo 'AddLanguage pl .po' >> /etc/httpd/conf/httpd.conf
echo 'AddLanguage pt .pt' >> /etc/httpd/conf/httpd.conf
echo 'AddLanguage pt-BR .pt-br' >> /etc/httpd/conf/httpd.conf
echo 'AddLanguage ru .ru' >> /etc/httpd/conf/httpd.conf
echo 'AddLanguage sv .sv' >> /etc/httpd/conf/httpd.conf
echo 'AddLanguage zh-CN .zh-cn' >> /etc/httpd/conf/httpd.conf
echo 'AddLanguage zh-TW .zh-tw' >> /etc/httpd/conf/httpd.conf
echo 'LanguagePriority en ca cs da de el eo es et fr he hr it ja ko ltz nl nn no pl pt pt-BR ru sv zh-CN zh-TW' >> /etc/httpd/conf/httpd.conf
echo 'ForceLanguagePriority Prefer Fallback' >> /etc/httpd/conf/httpd.conf
echo 'AddDefaultCharset UTF-8' >> /etc/httpd/conf/httpd.conf
echo 'AddType application/x-compress .Z' >> /etc/httpd/conf/httpd.conf
echo 'AddType application/x-gzip .gz .tgz' >> /etc/httpd/conf/httpd.conf
echo 'AddType application/x-x509-ca-cert .crt' >> /etc/httpd/conf/httpd.conf
echo 'AddType application/x-pkcs7-crl .crl' >> /etc/httpd/conf/httpd.conf
echo 'AddHandler type-map var' >> /etc/httpd/conf/httpd.conf
echo 'AddType text/html .shtml' >> /etc/httpd/conf/httpd.conf
echo 'AddOutputFilter INCLUDES .shtml' >> /etc/httpd/conf/httpd.conf
echo 'Alias /error/ "/var/www/error/"' >> /etc/httpd/conf/httpd.conf
echo '<IfModule mod_negotiation.c>' >> /etc/httpd/conf/httpd.conf
echo '<IfModule mod_include.c>' >> /etc/httpd/conf/httpd.conf
echo ' <Directory "/var/www/error">' >> /etc/httpd/conf/httpd.conf
echo ' AllowOverride None' >> /etc/httpd/conf/httpd.conf
echo ' Options IncludesNoExec' >> /etc/httpd/conf/httpd.conf
echo ' AddOutputFilter Includes html' >> /etc/httpd/conf/httpd.conf
echo ' AddHandler type-map var' >> /etc/httpd/conf/httpd.conf
echo ' Order allow,deny' >> /etc/httpd/conf/httpd.conf
echo ' Allow from all' >> /etc/httpd/conf/httpd.conf
echo ' LanguagePriority en es de fr' >> /etc/httpd/conf/httpd.conf
echo ' ForceLanguagePriority Prefer Fallback' >> /etc/httpd/conf/httpd.conf
echo ' </Directory>' >> /etc/httpd/conf/httpd.conf
echo '</IfModule>' >> /etc/httpd/conf/httpd.conf
echo '</IfModule>' >> /etc/httpd/conf/httpd.conf
echo 'BrowserMatch "Mozilla/2" nokeepalive' >> /etc/httpd/conf/httpd.conf
echo 'BrowserMatch "MSIE 4\.0b2;" nokeepalive downgrade-1.0 force-response-1.0' >> /etc/httpd/conf/httpd.conf
echo 'BrowserMatch "RealPlayer 4\.0" force-response-1.0' >> /etc/httpd/conf/httpd.conf
echo 'BrowserMatch "Java/1\.0" force-response-1.0' >> /etc/httpd/conf/httpd.conf
echo 'BrowserMatch "JDK/1\.0" force-response-1.0' >> /etc/httpd/conf/httpd.conf
echo 'BrowserMatch "Microsoft Data Access Internet Publishing Provider" redirect-carefully' >> /etc/httpd/conf/httpd.conf
echo 'BrowserMatch "MS FrontPage" redirect-carefully' >> /etc/httpd/conf/httpd.conf
echo 'BrowserMatch "^WebDrive" redirect-carefully' >> /etc/httpd/conf/httpd.conf
echo 'BrowserMatch "^WebDAVFS/1.[0123]" redirect-carefully' >> /etc/httpd/conf/httpd.conf
echo 'BrowserMatch "^gnome-vfs/1.0" redirect-carefully' >> /etc/httpd/conf/httpd.conf
echo 'BrowserMatch "^XML Spy" redirect-carefully' >> /etc/httpd/conf/httpd.conf
echo 'BrowserMatch "^Dreamweaver-WebDAV-SCM1" redirect-carefully' >> /etc/httpd/conf/httpd.conf
echo "Listen *:80" >> /etc/httpd/conf/webmail.conf
echo "<VirtualHost *:80>" >> /etc/httpd/conf/webmail.conf
echo " ServerAdmin test@finnce.cn" >> /etc/httpd/conf/webmail.conf
echo " ServerName mail.finnce.cn" >> /etc/httpd/conf/webmail.conf
echo " DocumentRoot /home/www/extmail/html" >> /etc/httpd/conf/webmail.conf
echo " ScriptAlias /extmail/cgi /home/www/extmail/cgi" >> /etc/httpd/conf/webmail.conf
echo " Alias /extmail /home/www/extmail/html" >> /etc/httpd/conf/webmail.conf
echo " ScriptAlias /extman/cgi /home/www/extman/cgi" >> /etc/httpd/conf/webmail.conf
echo " Alias /extman /home/www/extman/html" >> /etc/httpd/conf/webmail.conf
echo " <Directory /home/www>" >> /etc/httpd/conf/webmail.conf
echo " Authtype basic" >> /etc/httpd/conf/webmail.conf
echo " Options execcgi" >> /etc/httpd/conf/webmail.conf
echo " Options Indexes FollowSymLinks" >> /etc/httpd/conf/webmail.conf
echo " AllowOverride None" >> /etc/httpd/conf/webmail.conf
echo " Order allow,deny" >> /etc/httpd/conf/webmail.conf
echo " Allow from all" >> /etc/httpd/conf/webmail.conf
echo " </Directory>" >> /etc/httpd/conf/webmail.conf
echo "</VirtualHost>" >> /etc/httpd/conf/webmail.conf
mv /etc/sysconfig/iptables /etc/sysconfig/iptables.bak
echo '# Firewall configuration written by system-config-firewall' >> /etc/sysconfig/iptables
echo '# Manual customization of this file is not recommended.' >> /etc/sysconfig/iptables
echo '*filter' >> /etc/sysconfig/iptables
echo ':INPUT DROP [0:0]' >> /etc/sysconfig/iptables
echo ':FORWARD DROP [0:0]' >> /etc/sysconfig/iptables
echo ':OUTPUT DROP [0:0]' >> /etc/sysconfig/iptables
echo '' >> /etc/sysconfig/iptables
echo '' >> /etc/sysconfig/iptables
echo '' >> /etc/sysconfig/iptables
echo '-A INPUT -m state --state NEW -m tcp -p tcp --dport 22 -j ACCEPT' >> /etc/sysconfig/iptables
echo '-A INPUT -m state --state NEW -m tcp -p tcp --dport 25 -j ACCEPT' >> /etc/sysconfig/iptables
echo '-A INPUT -m state --state NEW -m tcp -p tcp --sport 25 -j ACCEPT' >> /etc/sysconfig/iptables
echo '-A INPUT -m state --state NEW -m tcp -p tcp --dport 80 -j ACCEPT' >> /etc/sysconfig/iptables
echo '-A INPUT -m state --state NEW -m tcp -p tcp --dport 110 -j ACCEPT' >> /etc/sysconfig/iptables
echo '-A INPUT -m state --state NEW -m udp -p udp --sport 123 -j ACCEPT' >> /etc/sysconfig/iptables
echo '-A INPUT -m state --state NEW -m tcp -p tcp --dport 143 -j ACCEPT' >> /etc/sysconfig/iptables
echo '-A INPUT -m state --state NEW -m tcp -p tcp --dport 465 -j ACCEPT' >> /etc/sysconfig/iptables
echo '-A INPUT -m state --state NEW -m tcp -p tcp --dport 993 -j ACCEPT' >> /etc/sysconfig/iptables
echo '-A INPUT -m state --state NEW -m tcp -p tcp --dport 995 -j ACCEPT' >> /etc/sysconfig/iptables
echo '-A INPUT -s 172.16.16.0/24 -p tcp -m tcp --dport 22 -j ACCEPT' >> /etc/sysconfig/iptables
echo '-A OUTPUT -d 172.16.16.0/24 -p tcp -m tcp --sport 22 -j ACCEPT' >> /etc/sysconfig/iptables
echo '' >> /etc/sysconfig/iptables
echo '' >> /etc/sysconfig/iptables
echo '-A INPUT -s 172.16.16.0/24 -j ACCEPT' >> /etc/sysconfig/iptables
echo '-A OUTPUT -d 172.16.16.0/24 -j ACCEPT' >> /etc/sysconfig/iptables
echo '' >> /etc/sysconfig/iptables
echo '' >> /etc/sysconfig/iptables
echo '' >> /etc/sysconfig/iptables
echo '-A OUTPUT -p tcp -m tcp --sport 25 -j ACCEPT' >> /etc/sysconfig/iptables
echo '-A OUTPUT -p tcp -m tcp --dport 25 -j ACCEPT' >> /etc/sysconfig/iptables
echo '-A OUTPUT -p udp -m udp --dport 53 -j ACCEPT' >> /etc/sysconfig/iptables
echo '-A OUTPUT -p tcp -m tcp --sport 80 -j ACCEPT' >> /etc/sysconfig/iptables
echo '-A OUTPUT -p tcp -m tcp --sport 110 -j ACCEPT' >> /etc/sysconfig/iptables
echo '-A OUTPUT -p udp -m udp --dport 123 -j ACCEPT' >> /etc/sysconfig/iptables
echo '-A OUTPUT -p tcp -m tcp --sport 143 -j ACCEPT' >> /etc/sysconfig/iptables
echo '-A OUTPUT -p tcp -m tcp --sport 465 -j ACCEPT' >> /etc/sysconfig/iptables
echo '-A OUTPUT -p tcp -m tcp --sport 993 -j ACCEPT' >> /etc/sysconfig/iptables
echo '-A OUTPUT -p tcp -m tcp --sport 995 -j ACCEPT' >> /etc/sysconfig/iptables
echo '' >> /etc/sysconfig/iptables
echo '-A INPUT -j REJECT --reject-with icmp-host-prohibited' >> /etc/sysconfig/iptables
echo '-A FORWARD -j REJECT --reject-with icmp-host-prohibited' >> /etc/sysconfig/iptables
echo 'COMMIT' >> /etc/sysconfig/iptables
service iptables restart
chkconfig iptables on