... | ... | @@ -183,9 +183,7 @@ the upstream, see [LDAP docs](howto/ldap#maintainer-users-and-upstream) for deta |
|
|
|
|
|
## Monitoring and testing
|
|
|
|
|
|
The submission server is monitored like other mail servers that have
|
|
|
`mail_processing` enabled, which is that it has the `mtail` exporter
|
|
|
(`profile::prometheus::postfix_mtail_exporter`).
|
|
|
TODO: nagios monitoring?
|
|
|
|
|
|
To test delivery, make sure you have an `emailPassword` set
|
|
|
(e.g. through [update.cgi](https://db.torproject.org/update.cgi)). Then you should be able to use the
|
... | ... | @@ -212,10 +210,14 @@ can be used as well](https://doc.dovecot.org/configuration_manual/authentication |
|
|
|
|
|
## Logs and metrics
|
|
|
|
|
|
TODO: logs and metrics
|
|
|
The submission server is monitored like other mail servers that have
|
|
|
`mail_processing` enabled, which is that it has the `mtail` exporter
|
|
|
(`profile::prometheus::postfix_mtail_exporter`). The [Grafana
|
|
|
dashboard](https://grafana.torproject.org/d/Ds5BxBYGk/postfix-mtail?orgId=1&var-node=submit-01.torproject.org) should provide shiny graphs.
|
|
|
|
|
|
<!-- where are the logs? how long are they kept? any PII? -->
|
|
|
<!-- what about performance metrics? same questions -->
|
|
|
Mail logs are in `/var/log/mail.log` and probably systemd
|
|
|
journals. They contain PII like IP addresses and usernames and are
|
|
|
regularly purged.
|
|
|
|
|
|
## Backups
|
|
|
|
... | ... | @@ -223,13 +225,17 @@ No special backup of this service is required. |
|
|
|
|
|
## Other documentation
|
|
|
|
|
|
TODO: <!-- references to upstream documentation, if relevant -->
|
|
|
|
|
|
* https://anarc.at/services/mail/
|
|
|
* https://doc.dovecot.org/configuration_manual/authentication/passwd_file/
|
|
|
* https://wiki.dovecot.org/VirtualUsers
|
|
|
* https://doc.dovecot.org/configuration_manual/authentication/password_databases_passdb/
|
|
|
* https://doc.dovecot.org/configuration_manual/authentication/user_databases_userdb/
|
|
|
This service was setup following some or all of those documents:
|
|
|
|
|
|
* [Anarcat's home email setup](https://anarc.at/services/mail/)
|
|
|
* [Postfix SASL howto](http://www.postfix.org/SASL_README.htm)
|
|
|
* [Dovecot configuration](https://doc.dovecot.org/)
|
|
|
* [VirtualUsers](https://wiki.dovecot.org/VirtualUsers)
|
|
|
* [passwd file](https://doc.dovecot.org/configuration_manual/authentication/passwd_file/)
|
|
|
* [password databases](https://doc.dovecot.org/configuration_manual/authentication/password_databases_passdb/)
|
|
|
* [user databases](https://doc.dovecot.org/configuration_manual/authentication/user_databases_userdb/)
|
|
|
* [RFC821](https://tools.ietf.org/html/rfc821) (SMTP, 1982) and [RFC5321](https://tools.ietf.org/html/rfc5321) (SMTP, 2008)
|
|
|
* [RFC6186](https://datatracker.ietf.org/doc/html/rfc6186) (SRV auto-discovery)
|
|
|
|
|
|
# Discussion
|
|
|
|
... | ... | |