-
Notifications
You must be signed in to change notification settings - Fork 223
Server
Joe H edited this page Sep 13, 2022
·
3 revisions
This document contains information that can be usefull when implementing the go-smtp server.
# Key considerations for algorithm "RSA" ≥ 2048-bit
openssl genrsa -out ./server.key 2048
# Key considerations for algorithm "ECDSA" (X25519 || ≥ secp384r1)
# https://safecurves.cr.yp.to/
# List ECDSA the supported curves (openssl ecparam -list_curves)
openssl ecparam -genkey -name secp384r1 -out ./server.key
Implement the default server as described in the root README.md
and change the main
function to
func main() {
be := &Backend{}
s := smtp.NewServer(be)
s.Addr = ":1025"
s.Domain = "localhost"
s.ReadTimeout = 10 * time.Second
s.WriteTimeout = 10 * time.Second
s.MaxMessageBytes = 1024 * 1024
s.MaxRecipients = 50
// force TLS for auth
s.AllowInsecureAuth = false
// Load the certificate and key
cer, err := tls.LoadX509KeyPair("server.crt", "server.key")
if err != nil {
log.Fatal(err)
return
}
// Configure the TLS support
s.TLSConfig = &tls.Config{Certificates: []tls.Certificate{cer}}
log.Println("Starting server at", s.Addr)
if err := s.ListenAndServe(); err != nil {
log.Fatal(err)
}
}
If you keep yourself to using methods that are supported by go-sasl, which is used by go-smtp, then it should be fairly easy.
LOGIN is an deprecated authentication method but sometimes you have to play
with the toys you got. For example, Microsofts Send-MailMessage
PowerShell
command does uses LOGIN and does not support PLAIN.
If you read issue Implement AUTH LOGIN method #41 you will find that RFC4422 reference a list that shows LOGIN as deprecated.
Change your server code and a call to EnableAuth
s := smtp.NewServer(be)
// Add deprecated LOGIN auth method as some clients haven't learned
s.EnableAuth(sasl.Login, func(conn *smtp.Conn) sasl.Server {
return sasl.NewLoginServer(func(username, password string) error {
state := conn.State()
session, err := be.Login(&state, username, password)
if err != nil {
return err
}
conn.SetSession(session)
return nil
})
})