Free mailserver software for linux

For those who want to build their own mailserver from sources on different GNU/Linux distributions like Slackware, Gentoo, CentOS, SuSe, Fedora Core or Debian, we created an universal package called qinstall-src.
qinstall-src is a source package collection along with a bash script that helps an administrator to compile, configure, install and run an e-mail server, based on qmail, together with all the programs required to run properly.
Main features:
- all perl modules required for optimum runtime;
- user administration web interface(qmailadmin);
- console-based user and domain administration (vpopmail, cqadmin);
- a bash script that eases the administration of queue pending messages (qmHandle);
- personalized webmail (SSL/TLS), activated quota, password changer (squirrelmail);
- ESMTP/SMTP, IMAP/POP3 SSL services activated by default (qmail, courier imap);
- e-mail autoresponder (autorespond);
- antivirus and antispam software (clamav, spamassassin);
- email filters (procmail);
- other programs that help running the e-mail server at optimum speed;
qinstall-src is tested on Slackware, Gentoo, Fedora Core, CentOS, openSuSe and Debian.
Enhancements:
- Many packages have been upgraded to the latest version.
- All packages have been ported to Bluewhite64 Linux (64-bit).

Openmailadmin is a little administration interface to every complete IMAP mail server daemon. Openmailadmin supports every feature IMAP provides, and fits in most MTA configurations.
A key feature is the non-standard, generic administration hierarchy which not only seperates "normal users" from "administrators", but enables the mailserver-master to create instances between them.
You will be able to let other users create their own sub-users and thus either share a single mail server between different organizations or project your companys employee structure. It excels with features such as regex addresses and folder ACL management.
Installation:
1. Copy all the files into your DocumentRoot-folder.
2. Modify following files by changing usernames and passwords:
- samples/pam/imap
- inc/database.sql
And either of these:
- samples/postfix/*
- samples/oma_mail.daimon.*
3. Create the required database and users in MySQL. Modify database.sql and have it executed inside the new database.
4. Copy samples/pam/imap settings to your /etc/pam.d folder
{{{
chmod 600 samples/pam/imap
cp samples/pam/imap /etc/pam.d/imap
ln -s /etc/pam.d/imap /etc/pam.d/pop
ln -s /etc/pam.d/imap /etc/pam.d/sieve
ln -s /etc/pam.d/imap /etc/pam.d/smtp
}}}
5. For security reasons, remove these files from your DocumentRoot-folder:
{{{
rm inc/database.sql
rm -r samples/pam
rm samples/oma_mail.daimon.* samples/postfix
}}}

DNS::ZoneParse is a Perl module to parse and manipulate DNS Zone Files.

SYNOPSIS

use DNS::ZoneParse;

my $zonefile = DNS::ZoneParse->new("/path/to/dns/zonefile.db", $origin);

# Get a reference to the MX records
my $mx = $zonefile->mx;

# Change the first mailserver on the list
$mx->[0] = { host => mail.localhost.com,
priority => 10,
name => @ };

# update the serial number
$zonefile->new_serial();

# write the new zone file to disk
open NEWZONE, ">/path/to/dns/zonefile.db" or die "error";
print NEWZONE $zonefile->output();
close NEWZONE;

INSTALLATION

perl Makefile.PL
make
make test
make install

fetchExc project is java utilily which retrieves mail from your MS Exchange (2000/2003) inbox and forwards it to SMTP server of your choice or mbox type file.
FetchExc uses webDAV (OWA) to retrieve mail either over http or https. This is also means that you administrator must have left Outlook Webaccess available in Exchange in order to get this utility to work.
Although version number is still below 1.0 I consider this program usable in production environment.
There are still many places that should be polished and improved but atleast there havent been major problems in over an half a year. Before you install read installation instructions from below carefully.
Installing:
So far this only covers *nix systems (windows instructions may follow if they are needed)
Extract fetchExc-*.tar.gz or make directory for fetchExc.jar. If you are downloading Jakarta components yourself put them in the same directory as fetchExc.jar.
Create fetchExc.properties file in your home directory. Remember to protect it with chmod 700 (it contains your password). If you took .tar.gz package there should be example included.
ExchangeServer=xxx.dddddd.com
ExchangePath=exchange
ExchangeUser=exuser
MailServer=yyy.dddddd.com
DestinationAddress=user@yyy.dddddd.com
Username=domainuser
Password=domainpassword
Domain=DOMAIN
Delete=false
All=false
Secure=true
FBApath=/exchweb/bin/auth/owaauth.dll
ExchangeServer - Name of your MS Exchange server.
ExchangePath - Exchange path for MS Exchange OutLook WebAccess.
ExchangeUser - Name of you MS Exchange User.
You can test first three properties by making URL out of them: http://xxx.dddddd.com/exchange/exuser. This should give you a Outlook Webaccess Page.
MboxFile - Path and name of mbox-type mail box. This disables MailServer- and DestinationAddress-properties. Be careful with this because Im not 100% sure that file locking works (YMMV). If there are problems let me know. Also success reports would be nice.
MailServer - Name of your SMTP Server which receives forwarded messages. If there is MboxFile defined this property wont be used.
DestinationAddess - Address of recipient of forwarded messages. If there is MboxFile defined this property wont be used.
Username - Username for your windows domain user. It may be same as ExchangeUser but necessarily.
Password - Password for domain user.
Domain - Domain for above user.
Delete - Whether program should delete mail from Inbox or just mark them as read. If Delete is true mail will be deleted after succesful forwarding. Any other value will just mark message as read. While you are configuring other properties I strongly recommend that you use value false for this property.
All - Whether program should real all mail from Inbox or just which are not read yet. If All is true every mail will be read. Any other value will read only unread mail. While you are configuring other properties I strongly recommend that you use value false for this property.
WARNING!!! Dont combine Delete=false and All=true if you are not testing. That will fetch every mail from your Inbox everytime you start the program.
Secure - If value is true program will use https. Any other value will use http. Https should be user whenever possible.
FBApath - Path to form based authentication. If not set defaults to /exchweb/bin/auth/owaauth.dll. This can be found on FBA login page source (hint: search for "destination")
ForceFrom - If this is set to true forwarded mail will be forwarded with address from ForceFromAddr parameter. This only happens when sender address is not valid. For example if there is two From: fields in mail header Exchange can join addresses. NOTE: This may help spam to get through so use carefully.
ForceFromAddr - E-mail address that forwarding server will accept. Only used if ForceFrom is true
NoEightBitMime - If this is true SMTP forwarding doesnt use BODY=8BITMIME. Default is false.
Now you just need to include JRE in you path. If it is in you path you can run program:
java -jar /install/fetchExc/fetchExc.jar
You can now (>0.80) use -p switch to change properties file. For example:
java -jar /install/fetchExc/fetchExc.jar -p test.properties
would run program using properties from test.properties
I use fetchExc with following little shell script and crontab entry so that it keeps fetching mail every two minutes.
fetchExc
#!/bin/bash
export PATH=$PATH:/usr/local/jre/bin
java -jar /install/fetchExc/fetchExc.jar $* >> fetchExc.log 2>> fetchExc.err
If you use this script replace /usr/local/jre/bin with path to your java runtime environment. Same applies to location of your installation on next line.
crontab entry:
*/2 * * * * ~jrauti/bin/fetchExc
Enhancements:
- Java has been changed from 1.4 to 1.5.
- The Jakarta HHTTP client has been upgraded from 2.0 to 3.0.
- Proxying also works with HTTPS.
- Code cleanups.
- A small fix in mbox saving (in Mac OS X, messages were coalesced).

SafeRelay is a certificate authority center, based on OpenSSL, for network administrators who want to deploy certificates on a LAN (local area network). SafeRelay is written in CURSEL.

You may be thinking of using TLS/SSL and certificates on your LAN for activities like:

configuring intranet web servers to use HTTPS instead of plain HTTP
making LAN users connect over IMAP/SSL or POP3/SSL to your mailserver
letting your LAN users connect to your Sendmail SMTP server using certificate client authentication
having LAN users sign or encrypt their email with S/MIME
client authentication based on certificates for intranet HTTPS webservers

The basic idea is that users tend to forget to make a backup of their certificates.

If the PC of the user crashes, the private key and certificate, can be recovered, from the diskette, by the user without help or intervention from the system or network administrator.

If the user has multiple PCs (e.g. a laptop and desktop), it suffices to simply import the certificate from the diskette on both PCs.

If the diskette is lost by the user, or stolen by another user, or if the diskette suffers from a media error, a new diskette with a new keypair must be prepared for the user.

In any case, by giving the user a diskette with a certificate, the user immediately receives a backup. Any tangible medium would also work. In fact, SafeRelay could allow you to use "cdrecord" and a CD-RW drive instead. For important keys and certificates, you could copy the contents of the diskette onto a read-only medium such as a CD.

Virge is mail scanner written in C, which replaces/substitutes procmail for a while, checks the incoming mail, and then sends the mail to the procmail. It will check mail for viruses and/or attachment names. Check the FEATURES/README/NEWS files for more details. Virge requires Sendmail and (optionally) AVPDaemon, Sophie or Trophie (to check attachments for viruses).
Virge replaces temporarily procmail. When new mail comes in, Sendmail will pass the contents of the mail to Virge. At that point, Virge performs set of checks:
Checks if the mail has attachments. If it does not, it sends it to procmail for delivery.
If mail has attachments, Virge creates temporary directory, unpacks attachments there, and asks AVP/Sophie/Trophie to scan the temporary directory for viruses. Virge was created with 2 things in mind: performance and security. Because of performance issues, it was not feasible to use any command line scanners like TrendMicro of McAfee ones.
AVP/Sophie/Trophie are instructed to scan attachments for viruses next. If it finds any viruses, mail is immediately isolated in a directory not (hopefully) accessible to anyone except administrators.
If no viruses were found, Virge will then perform attachment check, and see if any of the attachments are not allowed to be sent to the end user. A configuration file is consulted for list of extensions (or full filenames) that should not be allowed in. If any such attachments were found, tricky part comes - Virge will *hopefully* properly "rewrite" the whole email, and strip the attachments that are not allowed. Small notice is attached at the end of the mail, with names of stripped attachments. Mail is also isolated, in case poor overworked sysadmin ever gets some free time to take a closer look.
IMPORTANT: Please, keep in mind that Virge will *NOT* rewrite & send mails when virus has been found. I will *NOT* implement any such features, since it doesnt make any sense (I havent seen a mail with virus that actually had some valuable content in it for many months - maybe even years).
If AVP/Sophie/Trophie are not available (daemon is down), Virge will still deliver mails and annoy admins through syslog messages. Attachment check is still performed.
Users for which no checks should be performed can also be configured. Location of the file can be specified in the configuration file.
Virge is definitelly trying to not let any lame script kiddies abuse it in any way. It is trying to resist to race conditions, buffer overflows, and similar neat tricks. No guarantees, of course, that there are no security problems in Virge.
Virge tries to be as fast as possible, and not waste CPU time or any other resources. It is still possible to make it perform even better, although I presume it would be in 1-5% range. Will take some more time later, and try to fix all the small performance problems.
And yes - Virge *is* fast. I have made a complete Virge V1 in Perl some time ago, but it was absolute failure. Although I tried to use as little modules as possible and make it as fast as possible... it was crap. 2 minutes after I started a script that sends 3-5 mails per second, I started wondering "Why the hell cant I login to the mailserver anymore?". Perl is nice, but its not good for tools like this. Not at all (except if you have low traffic on your mailserver).
And Virge still needs a *lot* of testing. I have tried to test Virge with many different mail (MIME) formats and tried different tricks in order to bypass its decoding techniques (in order to send a virus or .exe to users), but it handles things pretty well. There are cases, though, when it is possible to trick librfc2045 and send attachments that dont get caught, but those attachments are violating RFCs anyway. If your mail client is so stupid to decode invalid/malformed attachments/mails - you deserved it. Dont use stupid mail clients then. Im not going to start adding all those crappy features into Virge that would let someone detect all possible tricks which can be used. Use good mail clients, dont rely on Virge to save you.
Main features:
- Virge can check every incoming mail for attachments, and can remove attachments that are considered dangerous.
- "Dangerous" can be defined:
- email with specific kinds of attachments (e.g., .EXE, .COM, etc.)
- email that contains a virus as identified by Sophie ( http://www.vanja.com )
- email that contains a virus as identified by trophie ( http://www.vanja.com )
- email that contains a virus as identified by AVPDaemon (http://www.avp.ch)
- Any combination of the above.
- Dangerous email can trigger:
- rewriting that removes virus.
- alert back to sender.
- alert to recepient.
- alert to system manager.
- rewrite to remove virus.
- All offending mail messages can be isolated for later reviewing.
- Written in C, so it is very fast, doesnt waste resources, and doesnt depend on a complicated perl installation (which is subject to breaking).
- Notification can be sent (configurable) to sender/recipient of suspicious/infected mail. Templates can be used to define the layout of the mail.
- Regular expressions can be used for filename matching
- Virge was made with security in mind, and should be hard to abuse
- Can be configured to fail open or fail closed if load on the machine goes too high.
- Virge 3.0 designed for easy integration with Postfix

mod_tee serves to "clone" an document as it is served. mod_tee was hacked up as a quick-and-dirty fix when a Site Valet user complained of problems saving a Valet report: mod_tee now serves to enable registered users to request email copies of any report generated.

The current status is "works for us", but it is not of release quality. It is less-than-complete in several respects. Its probably not a good idea to use it operationally unless youre prepared to get your hands dirty fixing any problems, or pay for support.

Configuration

TeeType FILE|PIPE|SMTP [Destination]
Where to send the cloned output:

FILE - save to a destination file. For testing only!
PIPE - pipes output to a destination program with popen.
SMTP - sends cloned output directly to email at a destination mailserver. Implements SMTP handshake with no error checking - so its a dangerous option!

TeeCondition query|cookie|path|header|env|true|false [key] [val]

Defines a condition for mod_tee to be activated for a request. Values true and false are unconditional, while the others define a QUERY_STRING key, a Cookie, a PATH_INFO component, a request header or an environment variable to trigger the tee. Conditional values require a key. If val is defined then key must match it; otherwise any value of key will activate the tee.

TeeHeader key value

Defines an RFC822-style header to be inserted in front of the body of the page.

AeroMail 2 is the next generation of Mark Cushmans AeroMail.
AeroMail is a web-based e-mail client written in PHP. AeroMail uses an IMAP server to read and store messages in one or more user-defined folders. Features include HTTP authentication for login (no cookies) and folder manipulation.
AeroMail 2 adds something to the original. You can now embed AeroMail in a webpage of your own design, and customize its appearance more easily.
Furthermore, displaying of messages was improved to include foreign languages like Russian and Chinese, and to display HTML messages including pictures. Last but not least, spam flagging using DNS blacklists is now possible.
Who can use Aeromail?
Are you an ISP who want a webmail service that is easily configurable? AeroMail allows you full control over operation and appearance.
Are you a webhosting company who need webmail for their clients? AeroMail comes with genericstable support, spam marking and many configurable options.
Are you a mail user who is sick of spam? You can use AeroMail to mark and delete your spam without downloading it to your own computer first.
Do you just want a fast and easy way to check mail when youre on the move? AeroMail is small, easy to set up and does not depend on MySQL, LDAP or other things you do not have: you only need an Apache webserver, PHP and an IMAP mailserver.
Why use AeroMail?
AeroMail is small, fast and simple to use. It is known for its clear and elegant interface.
AeroMail has support for other characters sets. It displays e-mail in Russian, Chinese, Japanese and many other languages.
AeroMail is available in many languages: currently you can choose from Bulgarian, Catalan, Chinese, Croatian, Czech, Danish, Dutch, English, Estonian, Finnish, French, German, Italian, Japanese, Latvian, Lithuanian, Norse, Polish, Portuguese (Brasil), Portuguese (Portugal), Romanian, Russian, Serbian (Roman or Cyrillic), Slovenian, Spanish, Swedish, Turkish, Thai and Ukranian.
Optionally you can use AeroMail to flag spam, so you can easily delete it before downloading it to your own computer.
AeroMail is very easy to set up: just copy the files, answer some questions and youre ready to go!
Where use AeroMail?
AeroMail can be used on many types of IMAP servers: Cyrus, UWash and Courier IMAP servers are supported.
You dont need an LDAP server or a MySQL server to use AeroMail. It will work on any Apache server with PHP 4 installed.
You can use AeroMail from virtually any browser: No JavaScript required, simple HTML that will also work on mobile devices.
You can use AeroMail from any computer you want. It uses basic authentication (no cookies) or use cookies (session variables) for login, and can run on an SSL IMAP server.
Main features:
Basic features:
- Aeromail is a webmail client that lets you read e-mail from an IMAP server
- Each mail folder can be sorted in many ways
- View HTML messages and rich-text messages
- Clickable links and e-mail addresses in plain-text messages
- View inline images and text attachments
- Recieve attachments
- Optionally reply to and forward e-mail, write new messages and delete messages
- Use Cc and Bcc
- Send attachments yourself
- Optionally create and delete folders, and move messages between folders
Advanced features:
- Optional multi-message view lets you view selected messages in one window (nice for catching up or when on a slow link)
- Optional spam blacklisting using reverse DNS lookup (e.g. SpamCop)
- Optionally move junk mail automatically to another folder
- Show full e-mail addresses, or just the name (Outlook style)
- Show full address lists in mail overview, or just the first few
- Automatically wrap wide message, or leave them unchanged
- Optional colorization of messages (quoted text and signatures)
Languages and character sets:
- AeroMail comes in 29 languages
- Full support for foreign character sets (using UTF-8)
Configuration features:
- AeroMail is easily embedded in a web page of your own design
- AeroMail comes with many color schemes or themes
- The HTML code is separated from the program, so it can be changed more easily
- Folder use and management can be switched on or off
- Sent mail folder and Trash folder can be switched on or off
- Writing of messages can be switched on or off
- Deleting of messages can be switched on or off
Technical features:
- Use UWash, Cyrus and Courier type IMAP servers
- Either use Basic Authentication for login (no cookies), or cookies (session variables)
- Support for sendmails genericstable
- Alternatively force the senders from-address
- Support for SSL IMAP servers
- No SQL server or LDAP server required
- No JavaScript browser required