{"id":5345,"date":"2018-07-11T12:23:47","date_gmt":"2018-07-11T08:23:47","guid":{"rendered":"https:\/\/www.howtoforge.com\/tutorial\/postfix-virtual-hosting-with-ldap-backend-and-dovecot-imap-pop3-server-on-ubuntu-bionic-beaver-1804-lts\/"},"modified":"2018-07-11T12:23:47","modified_gmt":"2018-07-11T08:23:47","slug":"postfix-virtual-hosting-with-ldap-backend-and-with-dovecot-as-imap-pop3-server-on-ubuntu-bionic-beaver-18-04-lts","status":"publish","type":"post","link":"https:\/\/afaghhosting.net\/blog\/postfix-virtual-hosting-with-ldap-backend-and-with-dovecot-as-imap-pop3-server-on-ubuntu-bionic-beaver-18-04-lts\/","title":{"rendered":"Postfix Virtual Hosting With LDAP Backend And With Dovecot As IMAP\/POP3 Server On Ubuntu Bionic Beaver 18.04 LTS"},"content":{"rendered":"

This howto will describe how to set up and configure virtual mail hosting with an\u00a0LDAP backend.<\/p>\n

The software\u00a0we will use in this howto:\u00a0Postfix<\/a>\u00a0(MTA), Dovecot<\/a>\u00a0(IMAP \/ POP3),<\/span>\u00a0<\/a>Gnarwl<\/a>\u00a0(vacation), OpenLDAP<\/a>\u00a0(LDAP)\u00a0 and\u00a0vMailpanel<\/a> as the management interface.<\/span><\/p>\n

Optional are\u00a0<\/a>Proftpd<\/a>\u00a0FTP,\u00a0Roundcube<\/a>\u00a0(webmail) and\u00a0MariaDB<\/a> (SQL backend for Roundcube).<\/span><\/p>\n

This worked for me, but I cannot guarantee that this set up will work for you so this howto comes without any guarantee.<\/p>\n

Assumptions<\/b><\/p>\n

This how-to assumes the following configurations, if your installation differs from this, then replace the entries below with your actual configuration.<\/p>\n

Mail delivery (mailboxes) path:<\/p>\n

\/home\/vmail\/<\/p>\n

User\u00a0<\/span>vmail<\/span>:<\/p>\n

UID:1000, GID:1000<\/p>\n

User\u00a0<\/span>postfix<\/span>:<\/p>\n

UID: 108, GID:108<\/p>\n

OpenLDAP base dn:<\/p>\n

dc=example,dc=tld<\/p>\n

OpenLDAP admin account:<\/p>\n

cn=admin,dc=example,dc=tld<\/p>\n

vMailpanel search dn:<\/p>\n

o=hosting,dc=example,dc=tld<\/p>\n

A read only account for the o=hosting,dc=example,dc=tld tree:<\/p>\n

cn=vmail,o=hosting,dc=example,dc=tld<\/p>\n

You’re using root as the user during this guide.\u00a0<\/p>\n

If you want for example o=maildomains or ou=domains, please make sure to replace o=hosting with what you\u00a0 want, especially in the acl.ldif. This acl file is strict, phamm will not work correctly if it is not exactly as it should be. If you want a different read only user than phamm than replace cn=phamm with cn=wat-you everywhere in this how to.<\/p>\n

This guide also assumes that you have installed and configured your Ubuntu server to your needs, there are plenty of good guides on\u00a0<\/span>Howtoforge<\/a>\u00a0<\/span>for example:<\/p>\n

The Perfect Server – Ubuntu 18.04 (Bionic Beaver) with Apache, PHP, MySQL, PureFTPD, BIND, Postfix, Dovecot and ISPConfig 3.1<\/a><\/p>\n

You can stop after the installation and configuration of Apache2.<\/p>\n

Step 1: Download vMailpanel<\/h2>\n

Download the vMailpanel package:<\/p>\n

cd \/usr\/share<\/p>\n

Get the latest version of vMailpanel:<\/p>\n

git clone https:\/\/git.com\/wolmfan68\/vMailpanel<\/p>\n

OK, now we can start.<\/p>\n

Step 2: Install and configure OpenLDAP<\/h2>\n

Install OpenLDAP and ldap-utils:<\/p>\n

apt -y install slapd ldap-utils php-ldap<\/p>\n

Reconfigure slapd to make sure it reflects your wanted setup<\/p>\n

dpkg-reconfigure slapd<\/p>\n

You will have to answer some questions:<\/p>\n

Omit OpenLDAP server configuration? No<\/pre>\n
 DNS domain name: example.tld ==>put your domain name here<\/span><\/pre>\n
Organization name: example.tld ==> put your organization here<\/span><\/pre>\n
 Administrator password: secret ==> put your password<\/span><\/pre>\n
 Confirm password: secret <\/pre>\n
Database backend to use: MDB<\/pre>\n
 Do you want the database to be removed when slapd is purged? Yes<\/pre>\n
 Move old database? Yes<\/pre>\n
Change into the \/etc\/ldap\/schema directory:<\/p>\n
cd \/etc\/ldap\/schema<\/p>\n
Copy the phamm.schema and perversia.net.schema from the phamm package to the schema directory:<\/p>\n
cp \/usr\/share\/vMailbox\/schema\/* \/etc\/ldap\/schema.<\/p>\n
Now we add the schemas to openldap.<\/p>\n
ldapadd -Y EXTERNAL -H ldapi:\/\/\/ -f \/etc\/ldap\/schema\/phamm.ldif\u00a0<\/span>
ldapadd -Y EXTERNAL -H ldapi:\/\/\/ -f \/etc\/ldap\/schema\/ISPEnv2.ldif
ldapadd -Y EXTERNAL -H ldapi:\/\/\/ -f \/etc\/ldap\/schema\/amavis.ldif\u00a0<\/span>
ldapadd -Y EXTERNAL -H ldapi:\/\/\/ -f \/etc\/ldap\/schema\/pureftpd.ldif\u00a0<\/span>
ldapadd -Y EXTERNAL -H ldapi:\/\/\/ -f \/etc\/ldap\/schema\/perversia.net.ldif<\/p>\n
Now we create the o=hosting entry, and the vmail account.<\/p>\n
Modify the text below to your needs and wants and generate a password for the vmail account. The hash currently in this file sets the password to read-only<\/p>\n
To create the hash for the vmail account\u00a0 issue the following command:<\/p>\n
slappasswd -h {MD5}<\/p>\n
Type the wanted password twice and copy the result into the text below.<\/p>\n
nano base.ldif<\/p>\n
Contents of base.ldif<\/p>\n
dn: o=hosting,dc=example,dc=tld<\/pre>\n
objectClass: organization<\/pre>\n
objectClass: top<\/pre>\n
o: hosting description: Hosting Organization<\/pre>\n
# Read only account<\/pre>\n
dn: cn=vmail,o=hosting,dc=example,dc=tld<\/pre>\n
objectClass: simpleSecurityObject<\/pre>\n
objectClass: organizationalRole<\/pre>\n
cn: vmail<\/pre>\n
userPassword: {MD5}M267sheb6qc0Ck8WIPOvQA==<\/pre>\n
description: Read only account<\/pre>\n
Load the base dn into the database with the following command:<\/p>\n
ldapmodify -a -D cn=admin,dc=example,dc=tld -W -f base.ldif<\/p>\n
Now we need to modify the acl’s so that the correct access is given to each user type.<\/p>\n
ldapmodify -Y EXTERNAL -H ldapi:\/\/\/ -f acl-remove.ldif<\/p>\n
ldapmodify -Y EXTERNAL -H ldapi:\/\/\/ -f acl-new.ldif<\/p>\n
You can check the new acl’s with the following command:<\/p>\n
slapcat -n 0<\/p>\n
This concludes the OpenLDAP configuration.<\/p>\n
Step 3: Install And Configure Postfix<\/h2>\n
Before this, we need to have the\u00a0<\/span>vmail<\/span>\u00a0<\/span>user and its home directory.<\/p>\n
Create the\u00a0<\/span>vmail<\/span>\u00a0<\/span>user and group:<\/p>\n
useradd vmail<\/p>\n
By default, the group\u00a0<\/span>vmail<\/span>\u00a0<\/span>is created, too.<\/p>\n
Check\u00a0<\/span>\/etc\/passwd<\/span>\u00a0<\/span>for the actual uid and group number.<\/p>\n
Next, create the\u00a0<\/span>vmail<\/span>\u00a0<\/span>directory and set ownership to the\u00a0<\/span>vmail<\/span>\u00a0<\/span>user and group.<\/p>\n
mkdir \/home\/vmail
mkdir \/home\/vmail\/domains\u00a0<\/span>
chown -R vmail:vmail \/home\/vmail<\/p>\n
Run the following command to install Postfix and other required applications:<\/p>\n
apt install postfix postfix-ldap<\/p>\n
You will be asked two questions. Answer as follows:<\/p>\n
General type of mail configuration:<\/span>\u00a0<\/span><–Stand alone<\/span>
System mail name:<\/span>\u00a0<\/span><– mail.example.tld<\/span><\/p>\n
We do not install sasl since we will use the Dovecot LDA and deliver.<\/p>\n
Now we create the certificates for TLS:<\/p>\n
mkdir \/etc\/postfix\/ssl
cd \/etc\/postfix\/ssl\/
openssl genrsa -des3 -rand \/etc\/hosts -out smtpd.key 1024<\/p>\n
chmod 600 smtpd.key
openssl req -new -key smtpd.key -out smtpd.csr<\/p>\n
openssl x509 -req -days 3650 -in smtpd.csr -signkey smtpd.key -out smtpd.crt<\/p>\n
openssl rsa -in smtpd.key -out smtpd.key.unencrypted<\/p>\n
mv -f smtpd.key.unencrypted smtpd.key
openssl req -new -x509 -extensions v3_ca -keyout cakey.pem -out cacert.pem -days 3650<\/p>\n
Note: you can copy all of the files under examples\/postfix to your etc\/postfix directory and make changes accordingly. For completeness reasons I will give the complete setup below.<\/p>\n
Now we will configure postfix:<\/p>\n
cd \/etc\/postfix\u00a0<\/span><\/p>\n
mv \/etc\/postfix\/main.cf \/etc\/postfix\/main.cf.bck<\/p>\n
nano \/etc\/postfix\/main.cf<\/p>\n
And paste the following into it. Please not that this config allows the sending (relaying) of mails by authenticated users, and also the sending of local mails (like for example to root, postmaster, …) to the respective aliases if they are configured.<\/p>\n
smtpd_banner = $myhostname ESMTP $mail_name
biff = no
\u00a0
# appending .domain is the MUA’s job.
append_dot_mydomain = no
\u00a0
# Uncomment the next line to generate “delayed mail” warnings
delay_warning_time = 4h
\u00a0
# TLS parameters
smtpd_tls_cert_file = \/etc\/postfix\/ssl\/smtpd.crt
smtpd_tls_key_file = \/etc\/postfix\/ssl\/smtpd.key
smtpd_use_tls = yes
smtpd_tls_session_cache_database = btree:${queue_directory}\/smtpd_scache
smtp_tls_session_cache_database = btree:${queue_directory}\/smtp_scache
\u00a0
myhostname = mail.example.tld
alias_maps = hash:\/etc\/aliases,
alias_database = hash:\/etc\/aliases
myorigin = localhost
relayhost =\u00a0<\/span>
mynetworks = 127.0.0.0\/8
dovecot_destination_recipient_limit = 1
mailbox_command = \/usr\/lib\/deliver
mailbox_size_limit = 0
recipient_delimiter = +
inet_interfaces = all
inet_protocols = all
#smtp_bind_address = your ip address (optional) ==>unmark and change the ip address for your setup.
smtpd_sasl_local_domain =\u00a0<\/span>
smtpd_sasl_auth_enable = yes
smtpd_sasl_security_options = noanonymous
smtpd_sasl_type = dovecot
smtpd_sasl_path = private\/auth
broken_sasl_auth_clients = yes
smtpd_tls_auth_only = no<\/span><\/p>\n
smtp_use_tls = yes
smtp_tls_note_starttls_offer = yes
smtpd_tls_CAfile = \/etc\/postfix\/ssl\/cacert.pem
smtpd_tls_loglevel = 1
smtpd_tls_received_header = yes
smtpd_tls_session_cache_timeout = 3600s
tls_random_source = dev:\/dev\/urandom<\/p>\n
home_mailbox = Maildir\/
\u00a0
smtpd_recipient_restrictions =
\u00a0\u00a0\u00a0 permit_mynetworks
\u00a0\u00a0\u00a0 permit_sasl_authenticated
\u00a0\u00a0\u00a0 reject_invalid_hostname
\u00a0\u00a0\u00a0 reject_non_fqdn_hostname
\u00a0\u00a0\u00a0 reject_non_fqdn_sender
\u00a0\u00a0\u00a0 reject_non_fqdn_recipient
\u00a0\u00a0\u00a0 reject_unauth_destination
\u00a0\u00a0\u00a0 reject_unauth_pipelining
\u00a0\u00a0\u00a0 reject_invalid_hostname
\u00a0\u00a0\u00a0 reject_unknown_sender_domain
\u00a0\u00a0\u00a0 reject_rbl_client list.dsbl.org
\u00a0\u00a0\u00a0 reject_rbl_client cbl.abuseat.org
\u00a0\u00a0\u00a0 reject_rhsbl_sender dsn.fc-ignorant.org<\/p>\n
smtpd_data_restrictions =
\u00a0\u00a0\u00a0 reject_unauth_pipelining,
\u00a0\u00a0\u00a0 reject_multi_recipient_bounce,
\u00a0\u00a0\u00a0 permit<\/p>\n
smtpd_helo_required = yes
\u00a0
# transport_maps
maildrop_destination_concurrency_limit = 2\u00a0<\/span>
maildrop_destination_recipient_limit = 1
gnarwl_destination_concurrency_limit = 1\u00a0<\/span>
gnarwl_destination_recipient_limit = 1
transport_maps = hash:\/etc\/postfix\/transport, ldap:\/etc\/postfix\/ldap-transport.cf
mydestination = $transport_maps, localhost, localhost.localdomain, $myhostname, localhost.$mydomain, $mydomain<\/p>\n
virtual_alias_maps =\u00a0<\/span>
\u00a0\u00a0\u00a0 ldap:\/etc\/postfix\/ldap-aliases.cf,
\u00a0\u00a0\u00a0 ldap:\/etc\/postfix\/ldap-virtualforward.cf,
\u00a0\u00a0\u00a0 ldap:\/etc\/postfix\/ldap-accountsmap.cf
\u00a0
# virtual accounts for delivery
virtual_mailbox_base = \/home\/vmail
virtual_mailbox_maps =
\u00a0\u00a0\u00a0 ldap:\/etc\/postfix\/ldap-accounts.cf
virtual_minimum_uid = 1000 ==>\u00a0Change this to the actual uid of the user vmail<\/span>
virtual_uid_maps = static:1000\u00a0==>\u00a0Change this to the actual uid of the user vmail<\/span>
virtual_gid_maps = static:1000\u00a0==>\u00a0Change this to the actual uid of the user vmail<\/span>
\u00a0
local_recipient_maps = $alias_maps<\/p>\n
recipient_bcc_maps = ldap:\/etc\/postfix\/ldap-vacation.cf<\/p>\n
nano \/etc\/postfix\/master.cf<\/p>\n
And paste the following into it (add the end):<\/p>\n
dovecot unix - n n - - pipe
 \u00a0\u00a0\u00a0\u00a0 flags=DRhu user=vmail:vmail argv=\/usr\/lib\/dovecot\/deliver -f ${sender} -d ${recipient}
\ngnarwl unix - n n - - pipe
 \u00a0 \u00a0 flags=F user=vmail argv=\/usr\/bin\/gnarwl -a ${user}@${nexthop} -s ${sender}<\/span><\/pre>\n
\u00a0Now we need to write the different ldap-xxx.cf files<\/p>\n
nano ldap-accounts.cf<\/p>\n
And paste the following in to it:<\/p>\n
server_host = localhost
server_port = 389
version = 3
bind = yes
start_tls = no
bind_dn = cn=vmail,o=hosting,dc=example,dc=tld
bind_pw = readmonly
search_base = o=hosting,dc=example,dc=tld
scope = sub
query_filter = (&(&(objectClass=VirtualMailAccount)(mail=%s))(forwardActive=FALSE)(accountActive=TRUE)(delete=FALSE))
result_attribute = mailbox\u00a0<\/span><\/span><\/p>\n
nano ldap-accounstmap.cf<\/p>\n
And paste the following in to it:<\/p>\n
server_host = localhost
server_port = 389
version = 3
bind = yes
start_tls = no
bind_dn = cn=vmail,o=hosting,dc=example,dc=tld
bind_pw = readonly
search_base = o=hosting,dc=example,dc=tld
scope = sub
query_filter = (&(&(objectClass=VirtualMailAccount)(mail=%s))(forwardActive=FALSE)(accountActive=TRUE)(delete=FALSE))
result_attribute = mail\u00a0<\/span><\/span><\/p>\n
nano ldap-aliases.cf<\/p>\n
And paste the following in to it:<\/p>\n
server_host = localhost
server_port = 389
version = 3
bind = yes
start_tls = no
bind_dn = cn=vmail,o=hosting,dc=example,dc=tld
bind_pw = readonly
search_base = o=hosting,dc=example,dc=tld
scope = sub
query_filter = (&(&(objectClass=VirtualMailAlias)(mail=%s))(accountActive=TRUE))
result_attribute = maildrop\u00a0<\/span><\/span><\/p>\n
nano ldap-transport.cf<\/p>\n
And paste the following in to it:<\/p>\n
server_host = localhost
server_port = 389
version = 3
bind = yes
start_tls = no
bind_dn = cn=vmail,o=hosting,dc=example,dc=tld
bind_pw = readonly
search_base = o=hosting,dc=example,dc=tld
scope = sub
query_filter = (&(&(vd=%s)(objectClass=VirtualDomain))(accountActive=TRUE)(delete=FALSE))\u00a0<\/span>
result_attribute = postfixTransport\u00a0<\/span><\/span><\/p>\n
nano ldap-vacation.cf<\/p>\n
And paste the following in to it:<\/p>\n
server_host = localhost
server_port = 389
version = 3
bind = yes
start_tls = no
bind_dn = cn=vmail,o=hosting,dc=example,dc=tld
bind_pw = readonly
search_base = o=hosting,dc=example,dc=tld
scope = sub
query_filter = (&(&(objectClass=VirtualMailAccount)(mail=%s))(vacationActive=TRUE)(forwardActive=FALSE)(accountActive=TRUE)(delete=FALSE))
result_attribute = mailAutoreply\u00a0<\/span><\/span><\/p>\n
nano ldap-virtualforward.cf<\/p>\n
And paste the following in to it:<\/p>\n
server_host = localhost
server_port = 389
version = 3
bind = yes
start_tls = no
bind_dn = cn=vmail,o=hosting,dc=example,dc=tld
bind_pw = readonly
search_base = o=hosting,dc=example,dc=tld
scope = sub
query_filter = (&(&(objectClass=VirtualMailAccount)(mail=%s))(vacationActive=FALSE)(forwardActive=TRUE)(accountActive=TRUE)(delete=FALSE))
result_attribute = maildrop<\/span><\/p>\n
This concludes the postfix setup.\u00a0<\/span><\/p>\n
Step 4: Install And Configure Dovecot<\/h2>\n
apt install dovecot-imapd dovecot-pop3d dovecot-ldap<\/p>\n
This will install dovecot and all necessary files and also create the standard SSL certificates for IMAPs and POP3s.<\/p>\n
First, we change into the dovecot directory.<\/p>\n
Note: you can copy all of the files under examples\/dovecot to your etc\/dovecot directory and make changes accordingly. For completeness reasons I will give the complete setup below.<\/span><\/p>\n
\u00a0cd \/etc\/dovecot<\/p>\n
Now we configure the different dovecot configuration files.<\/p>\n
nano dovecot-ldap.conf.ext<\/p>\n
\u00a0And make the following changes:<\/p>\n
hosts\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 = localhost:389
ldap_version\u00a0\u00a0\u00a0 = 3
auth_bind\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 = yes
dn\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 = cn=vmail,o=hosting,dc=example,dc=tld
dnpass\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 = readonly
base\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 = o=hosting,dc=hosting,dc=tld
scope\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 = subtree
deref\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 = never<\/span><\/p>\n
user_attrs = quota=quota=maildir:storage
user_attrs = quota=quota=maildir:storage=%$B
user_filter = (&(objectClass=VirtualMailAccount)(accountActive=TRUE)(mail=%u))
pass_attrs = mail,userPassword
pass_filter = (&(objectClass=VirtualMailAccount)(accountActive=TRUE)(mail=%u))
default_pass_scheme = MD5<\/p>\n
cd conf.d<\/p>\n
vi 10-auth.conf<\/p>\n
\u00a0And change the section\u00a0<\/span>Password and User Databases\u00a0<\/span><\/span>to this:<\/p>\n
#!include auth-deny.conf.ext
#!include auth-master.conf.ext<\/span><\/p>\n
#!include auth-system.conf.ext
#!include auth-sql.conf.ext
!include auth-ldap.conf.ext
#!include auth-passwdfile.conf.ext
#!include auth-checkpassword.conf.ext
#!include auth-vpopmail.conf.ext
#!include auth-static.conf.ext<\/p>\n
vi 10-mail.conf\u00a0<\/span><\/p>\n
\u00a0And make the following changes:<\/p>\n
mail_location = maildir:\/home\/vmail\/%d\/%u<\/span><\/p>\n
mail_uid = 1000 ==> change to the actual vmail uid value<\/span><\/span><\/p>\n
mail_gid = 1000 ==> change this to the actual vmail gid value<\/span><\/span><\/p>\n
first_valid_uid = 1000\u00a0==> change to the actual vmail uid value<\/span><\/span><\/p>\n
first_valid_gid = 1000\u00a0<\/span>==> change this to the actual vmail gid value<\/span><\/p>\n
vi 10-master.conf\u00a0<\/span><\/p>\n
And make the following changes:<\/p>\n
\u00a0\u00a0 unix_listener auth-userdb {
\u00a0\u00a0\u00a0 mode = 0666
\u00a0\u00a0\u00a0 user = vmail
\u00a0\u00a0\u00a0 group = vmail
\u00a0 }<\/span><\/p>\n
\u00a0 # Postfix smtp-auth
\u00a0 unix_listener \/var\/spool\/postfix\/private\/auth {
\u00a0\u00a0\u00a0 mode = 0666
\u00a0 }<\/p>\n
\u00a0vi 15-lda.conf<\/p>\n
And make the following changes:\u00a0<\/span><\/p>\n
postmaster_address =\u00a0<\/span>[email\u00a0protected]<\/a><\/span><\/p>\n
lda_mailbox_autocreate = yes<\/span><\/p>\n
This concludes the Dovecot configuration.<\/p>\n
Step 5: Install And Configure gnarwl<\/h2>\n
Let’s install gnarwl:<\/p>\n
apt install gnarwl<\/p>\n
Now let’s configure gnarwl.<\/p>\n
First, we’re going to back up the original configuration file and replace it with a new one.<\/p>\n
mv \/etc\/gnarwl.conf \/etc\/gnarwl.conf.bck<\/p>\n
Now we create the new conf file:<\/p>\n
vi \/etc\/gnarwl.conf<\/p>\n
And insert the following:<\/p>\n
map_sender $sender
\nmap_receiver $recepient
\nmap_subject $subject
\nmap_field $begin vacationStart
\nmap_field $end vacationEnd
\nmap_field $fullname cn
\nmap_field $deputy vacationForward
\nmap_field $reply mail
\nserver localhost
\nport 389
\nscope sub
\nlogin cn=vmail,o=hosting,dc=example,dc=tld
\npassword readonly
\nprotocol 0
\nbase dc=example,dc=tld
\nqueryfilter (&(mailAutoreply=$recepient)(vacationActive=TRUE))
\nresult vacationInfo
\nblockfiles \/var\/lib\/gnarwl\/block\/
\numask 0644
\nblockexpire 48
\nmta \/usr\/sbin\/sendmail -F $recepient -t $sender
\nmaxreceivers 64
\nmaxheader 512
\ncharset ISO8859-1
\nbadheaders \/var\/lib\/gnarwl\/badheaders.db
\nblacklist \/var\/lib\/gnarwl\/blacklist.db
\nforceheader \/var\/lib\/gnarwl\/header.txt
\nforcefooter \/var\/lib\/gnarwl\/footer.txt
\nrecvheader To Cc
\nloglevel 3<\/pre>\n
Make the gnarwl directory readable for the vmail user<\/span><\/p>\n
chown -R vmail:vmail \/var\/lib\/gnarwl\/<\/p>\n
Next, we need to add the gnarwl transport to postfix<\/p>\n
vi \/etc\/postfix\/transport<\/p>\n
Insert the following:<\/p>\n
.autoreply\u00a0\u00a0\u00a0\u00a0\u00a0 gnarwl:<\/p>\n
Now we need to create the transport.db<\/p>\n
postmap \/etc\/postfix\/transport<\/p>\n
This concludes the gnarwl configuration.\u00a0<\/span><\/p>\n
Step 6: Install And Configure vMailpanel<\/h2>\n
Since we downloaded\u00a0vMailpanel before, we can directly begin with the configuration of the vMailpanel interface.<\/p>\n
chown -R www-data:www-data \/usr\/share\/phamm
cd \/usr\/share\/vMailpanel<\/p>\n
Now we will configure phamm for actual use.<\/p>\n
cp config.inc.example.php config.inc.php<\/p>\n
nano config.inc.php<\/p>\n
Change the ldap connection parameters to fit your actual configuration.<\/p>\n
\/\/ *============================*
\n\/\/ *=== LDAP Server Settings ===*
\n\/\/ *============================*
\n
\n\/\/ The server address (IP or FQDN)
\ndefine ('LDAP_HOST_NAME','127.0.0.1');
\n
\n\/\/ The protocol version [2,3]
\ndefine ('LDAP_PROTOCOL_VERSION','3');
\n
\n\/\/ The server port
\ndefine ('LDAP_PORT','389');
\n
\n\/\/ The container
\ndefine ('SUFFIX','dc=example,dc=tld');
\n
\n\/\/ The admin bind dn (could be rootdn)
\ndefine ('BINDDN','cn=admin,dc=example,dc=tld');
\n
\n\/\/ The Phamm container
\ndefine ('LDAP_BASE','o=hosting,dc=example,dc=tld');<\/pre>\n
and change<\/p>\n
\/\/ Welcome message
\ndefine ('SEND_WELCOME',1);
\n$welcome_msg = '..\/welcome_message.txt';
\n$welcome_subject = 'Welcome!';
\n# $welcome_sender = '[email\u00a0protected]<\/a>';
\n$welcome_bcc = '[email\u00a0protected]<\/a>';<\/pre>\n
This will send a welcome message and a bcc to your postmaster account.<\/p>\n
Enable the fpt and person plugin by removing the \/\/ in the plugins section. If wanted you can also enable the davical and or jabber plugins, the schema needed for these plugins is installed.<\/p>\n
In the config.inc.php you will find:<\/p>\n
define ('DELETE_ACCOUNT_IMMEDIATELY', false);<\/span><\/pre>\n
If you set this to true, account or domain deletion takes effect immediately. However, the physical mailbox is not deleted (or the domain directory). In order to delete the physical mailbox, we should use the cleaner.sh script. This is described below.<\/span><\/p>\n
You can edit\u00a0<\/span>plugins\/mail.xml<\/span>\u00a0<\/span>to change the defaults for SMTP and quota, modify them to your needs. The default is set to 1GB quota.<\/p>\n
You can edit\u00a0<\/span><\/span>plugins\/ftp.xml<\/span>\u00a0<\/span>to change the defaults for default ftp (base) directory and quota, modify them to your needs.<\/span><\/p>\n
Do not forget to create the aliases and or mailboxes for postmaster, webmaster since these are used by official’s and ISP’s to send mail to in case of … Not having these addresses could result in being blacklisted.<\/p>\n
By default the aliases [email\u00a0protected]<\/span><\/a>\u00a0and [email\u00a0protected]<\/span><\/a>\u00a0that default to [email\u00a0protected]<\/span><\/a>\u00a0are created.<\/p>\n
Now the cleaner script:<\/p>\n
cp tools\/cleaner.sh \/home\/vmail\/cleaner.sh<\/p>\n
Change the following in cleaner.sh<\/p>\n
BINDDN=\"cn=admin,dc=example,dc=tld\"BINDPW=\"password\"LDAP_BASE=\"o=hosting,dc=example,dc=tld\"<\/pre>\n
To reflect your installation<\/p>\n
nano \/home\/vmail\/cleaner.sh<\/p>\n
crontab -e<\/p>\n
Insert the following:<\/p>\n
*\/10 * * * * \/home\/vmail\/cleaner.sh<\/pre>\n
This will run the cleaner script every 10 minutes. Feel free to change the timing.<\/p>\n
Now we will add vMailpanel to Apache<\/p>\n
nano \/etc\/apache2\/conf-enabled\/000-default.conf<\/p>\n
And add between the <VirtualHost> <\/VirtualHost> entries the following:<\/p>\n
Alias \/vmailpanel \/usr\/share\/vMailpanel\/public<\/pre>\n
This concludes the vMailpanel configuration.<\/p>\n
Step 7: Install and configure Roundcube webmail<\/h2>\n
First, we create a database called\u00a0<\/span>roundcube<\/span>:<\/p>\n
mysqladmin -u root -p create roundcube<\/p>\n
Next, we go to the MySQL shell:<\/p>\n
mysql -u root -p<\/p>\n
On the MySQL shell, we create the user\u00a0<\/span>roundcube<\/span>\u00a0<\/span>with the password\u00a0<\/span>roundcube_password<\/span>\u00a0<\/span>(replace it with a password of your choice) who has\u00a0<\/span>SELECT,INSERT,UPDATE,DELETE<\/span>\u00a0<\/span>privileges on the\u00a0<\/span>roundcube<\/span>\u00a0<\/span>database. This user will be used by Postfix and Courier to connect to the\u00a0<\/span>roundcube<\/span>\u00a0<\/span>database:<\/p>\n
GRANT SELECT, INSERT, UPDATE, DELETE ON roundcube.* TO ’roundcube’@’localhost’ IDENTIFIED BY ’roundcube_password’;
GRANT SELECT, INSERT, UPDATE, DELETE ON roundcube.* TO ’roundcube’@’localhost.localdomain’ IDENTIFIED BY ’roundcube_password’;
FLUSH PRIVILEGES;<\/p>\n
Now we download and install Roundcube:<\/p>\n
cd\/usr\/src\u00a0<\/span>
wget https:\/\/github.com\/roundcube\/roundcubemail\/releases\/download\/1.3.6\/roundcubemail-1.3.6.tar.gz<\/p>\n
tar xvzf roundcubemail-1.3.6.tar.gz<\/p>\n
mv roundcubemail-1.3.6 \/var\/www\/roundcube<\/p>\n
chown -R www-data:www-data \/var\/www\/roundcube<\/p>\n
cd \/var\/www\/roundcube<\/p>\n
Always check for the lastest version of Roundcube and download that one and modify the commands above to the version of Roundcube you downloaded.<\/p>\n
https:\/\/roundcube.net\/download\/<\/a><\/p>\n
Now we load the sql tables in to the database we created before:<\/p>\n
mysql -u roundcube -p roundcube <\u00a0 SQL\/mysql.initial.sql<\/p>\n
Now we edit the Roundcube configuration:<\/p>\n
cp config\/config.inc.php.sample config\/config.inc.php<\/p>\n
Set the database configuration:<\/p>\n
nano config\/config.inc.php<\/p>\n
Change the following line to the database configuration:<\/p>\n
$rcmail_config['db_dsnw'] = 'mysql:\/\/roundcube:[email\u00a0protected]<\/a>\/roundcube';<\/pre>\n
And change the following<\/p>\n
From:<\/p>\n
\/\/ List of active plugins (in plugins\/ directory)
\n$config['plugins'] = array(<\/pre>\n
 'archive', <\/pre>\n
 'zipdownload',<\/pre>\n
To:<\/p>\n
\/\/ List of active plugins (in plugins\/ directory)
\n$config['plugins'] = array(<\/pre>\n
 'archive', <\/pre>\n
 'zipdownload',<\/pre>\n
 'password',<\/pre>\n
 'vacation', <\/pre>\n
Change:<\/span><\/p>\n
chars.$rcmail_config['des_key'] = 'rcmail-!24ByteDESkey*Str';<\/pre>\n
To:<\/p>\n
chars.$rcmail_config['des_key'] = 'your-own-24-digitkeystring<\/span>';<\/pre>\n
Change:<\/p>\n
$rcmail_config['default_host'] = '';<\/pre>\n
To:<\/p>\n
$rcmail_config['default_host'] = 'localhost'; <\/pre>\n
Change:<\/p>\n
$rcmail_config['smtp_server'] = ''; <\/pre>\n
To<\/p>\n
$rcmail_config['smtp_server'] = 'localhost'; <\/pre>\n
The configuration for the password plugin:<\/p>\n
cp plugins\/password\/config.inc.php.dist plugins\/password\/config.inc.php<\/p>\n
Edit the configuration:<\/p>\n
nano\u00a0plugins\/password\/config.inc.php<\/p>\n
Change the following entries<\/p>\n
From:<\/p>\n
$rcmail_config['password_driver'] = 'sql';<\/pre>\n
To:<\/p>\n
$rcmail_config['password_driver'] = 'ldap'; <\/pre>\n
From:<\/p>\n
\/\/ LDAP Driver options
\n\/\/ -------------------
\n\/\/ LDAP server name to connect to.
\n\/\/ You can provide one or several hosts in an array in which case the hosts are tried from left to right.
\n\/\/ Exemple: array('ldap1.exemple.com', 'ldap2.exemple.com');
\n\/\/ Default: 'localhost'
\n$rcmail_config['password_ldap_host'] = 'localhost';
\n
\n\/\/ LDAP server port to connect to
\n\/\/ Default: '389'
\n$rcmail_config['password_ldap_port'] = '389';
\n
\n\/\/ TLS is started after connecting
\n\/\/ Using TLS for password modification is recommanded.
\n\/\/ Default: false
\n$rcmail_config['password_ldap_starttls'] = false;
\n
\n\/\/ LDAP version
\n\/\/ Default: '3'
\n$rcmail_config['password_ldap_version'] = '3';
\n
\n\/\/ LDAP base name (root directory)
\n\/\/ Exemple: 'dc=exemple,dc=com'
\n$rcmail_config['password_ldap_basedn'] = 'dc=exemple,dc=com';
\n
\n\/\/ LDAP connection method
\n\/\/ There is two connection method for changing a user's LDAP password.
\n\/\/ 'user': use user credential (recommanded, require password_confirm_current=true)
\n\/\/ 'admin': use admin credential (this mode require password_ldap_adminDN and password_ldap_adminPW)
\n\/\/ Default: 'user'
\n$rcmail_config['password_ldap_method'] = 'user';
\n
\n\/\/ LDAP Admin DN
\n\/\/ Used only in admin connection mode
\n\/\/ Default: null
\n$rcmail_config['password_ldap_adminDN'] = null;
\n
\n\/\/ LDAP Admin Password
\n\/\/ Used only in admin connection mode
\n\/\/ Default: null
\n$rcmail_config['password_ldap_adminPW'] = null;
\n
\n\/\/ LDAP user DN mask
\n\/\/ The user's DN is mandatory and as we only have his login,
\n\/\/ we need to re-create his DN using a mask
\n\/\/ '%login' will be replaced by the current roundcube user's login
\n\/\/ '%name' will be replaced by the current roundcube user's name part
\n\/\/ '%domain' will be replaced by the current roundcube user's domain part
\n\/\/ Exemple: 'uid=%login,ou=people,dc=exemple,dc=com'
\n$rcmail_config['password_ldap_userDN_mask'] = 'uid=%login,ou=people,dc=exemple,dc=com';
\n
\n\/\/ LDAP password hash type
\n\/\/ Standard LDAP encryption type which must be one of: crypt,
\n\/\/ ext_des, md5crypt, blowfish, md5, sha, smd5, ssha, or clear.
\n\/\/ Please note that most encodage types require external libraries
\n\/\/ to be included in your PHP installation, see function hashPassword in drivers\/ldap.php for more info.
\n\/\/ Default: 'crypt'
\n$rcmail_config['password_ldap_encodage'] = 'crypt';
\n
\n\/\/ LDAP password attribute
\n\/\/ Name of the ldap's attribute used for storing user password
\n\/\/ Default: 'userPassword'
\n$rcmail_config['password_ldap_pwattr'] = 'userPassword';
\n
\n\/\/ LDAP password force replace
\n\/\/ Force LDAP replace in cases where ACL allows only replace not read
\n\/\/ See http:\/\/pear.php.net\/package\/Net_LDAP2\/docs\/latest\/Net_LDAP2\/Net_LDAP2_Entry.html#methodreplace
\n\/\/ Default: true
\n$rcmail_config['password_ldap_force_replace'] = true;<\/pre>\n
To:<\/p>\n
$rcmail_config['password_ldap_host'] = 'localhost';
\n$rcmail_config['password_ldap_port'] = '389';
\n$rcmail_config['password_ldap_starttls'] = false;
\n$rcmail_config['password_ldap_version'] = '3';
\n$rcmail_config['password_ldap_basedn'] = 'o=hosting,dc=example,dc=tld';
\n
\n$rcmail_config['password_ldap_method'] = 'user';
\n$rcmail_config['password_ldap_adminDN'] = null;
\n$rcmail_config['password_ldap_adminPW'] = null;
\n
\n$rcmail_config['password_ldap_userDN_mask'] = 'mail=%login,vd=%domain,o=hosting,dc=example,dc=tld';
\n
\n$rcmail_config['password_ldap_encodage'] = 'md5';
\n$rcmail_config['password_ldap_pwattr'] = 'userPassword';
\n
\n$rcmail_config['password_ldap_force_replace'] = true;<\/pre>\n
Now we’re going to download and install the vacation plugin:<\/p>\n
cd \/usr\/src
wget\u00a0https:\/\/github.com\/bhuisgen\/rc-vacation\/archive\/master.zip
unzip rc-vacation-master.zip
mv rc-vacation \/var\/www\/roundcube\/plugins\/vacation
cd \/var\/www\/roundcube\/plugins\/vacation<\/p>\n
Now we edit the configuration and change:<\/p>\n
nano plugins\/vacation\/config.inc.php<\/p>\n
Change:<\/p>\n
$rcmail_config['vacation_gui_vacationsubject'] = TRUE;<\/pre>\n
To:<\/p>\n
$rcmail_config['vacation_gui_vacationsubject'] = FALSE;<\/pre>\n
Change:<\/p>\n
$rcmail_config['vacation_driver'] = 'sql'; <\/pre>\n
To:<\/p>\n
$rcmail_config['vacation_driver'] = 'ldap';<\/pre>\n
Change:<\/p>\n
\/\/ Base DN
\n$rcmail_config['vacation_ldap_base'] = 'dc=ldap,dc=my,dc=domain';
\n
\n\/\/ Bind DN
\n$rcmail_config['vacation_ldap_binddn'] =
 'cn=user,dc=ldap,dc=my,dc=domain';
\n
\n\/\/ Bind password
\n$rcmail_config['vacation_ldap_bindpw'] = 'pa$$w0rd';<\/pre>\n
To:<\/p>\n
\/\/ Base DN
\n$rcmail_config['vacation_ldap_base'] = 'o=hosting,dc=example,dc=tld';
\n
\n\/\/ Bind DN
\n$rcmail_config['vacation_ldap_binddn'] = 'cn=admin,dc=example,dc=tld';
\n
\n\/\/ Bind password
\n$rcmail_config['vacation_ldap_bindpw'] = 'yourpassword';<\/pre>\n
Change:<\/p>\n
\/\/ Search filter to read data
\n$rcmail_config['vacation_ldap_search_filter'] = '(objectClass=mailAccount)';
\n
\n\/\/ Search attributes to read data
\n$rcmail_config['vacation_ldap_search_attrs'] = array ('vacationActive', 'vacationInfo');
\n
\n\/\/ array of DN to use for modify operations required to write data.
\n$rcmail_config['vacation_ldap_modify_dns'] = array (
 'cn=%email_local,ou=Mailboxes,dc=%email_domain,ou=MailServer,dc=ldap,dc=my,dc=domain'
\n);<\/pre>\n
To:<\/p>\n
\/\/ Search base to read data
\n$rcmail_config['vacation_ldap_search_base'] =
 'mail=%username,vd=%email_domain,o=hosting,dc=example,dc=tld';
\n
\n\/\/ Search filter to read data
\n$rcmail_config['vacation_ldap_search_filter'] = '(objectClass=VirtualMailAccount)';
\n
\n\/\/ Search attributes to read data
\n$rcmail_config['vacation_ldap_search_attrs'] = array ('vacationActive', 'vacationInfo');
\n
\n\/\/ array of DN to use for modify operations required to write data.
\n$rcmail_config['vacation_ldap_modify_dns'] = array (
 'mail=%username,vd=%email_domain,o=hosting,dc=example,dc=tld'
\n);<\/pre>\n
We have to change the document root in the Apche2 server configuration so that Roundcube can be accessed.<\/p>\n
nano \/etc\/apache2\/sites-enabled\/000-default.conf<\/p>\n
And change from:<\/p>\n
DocumentRoot \/var\/www\/html<\/span><\/pre>\n
To:<\/span><\/p>\n
DocumentRoot \/var\/www\/<\/span><\/pre>\n
This concludes the configuration for Roundcube.<\/p>\n
Step 8: Install and configure proftpd<\/h2>\n
First, we will install proftpd and its requirements:<\/p>\n
apt install proftpd proftpd-mod-ldap<\/p>\n
Depending on your load you can decide between stand alone and inet.d.<\/p>\n
Note: You can copy the config files from examples\/proftpd to \/etc\/proftpd but for clarity, I will outline all of the configuration steps.<\/p>\n
Edit\u00a0<\/span>\/etc\/proftpd\/proftpd.conf<\/span>:<\/p>\n
nano \/etc\/proftpd\/proftpd.conf<\/p>\n
And change from:<\/p>\n
# Use this to jail all users in their homes
\n# DefaultRoot\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 ~<\/pre>\n
To:<\/p>\n
# Use this to jail all users in their homes
\nDefaultRoot\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0<\/pre>\n
And change from:<\/p>\n
#RequireValidShell \u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0off<\/span><\/pre>\n
To:<\/span><\/p>\n
RequireValidShell \u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0off<\/span><\/pre>\n
And change:<\/p>\n
# Alternative authentication frameworks## Include \/etc\/proftpd\/ldap.conf#Include \/etc\/proftpd\/sql.conf<\/pre>\n
To:<\/p>\n
# Alternative authentication frameworks#Include \/etc\/proftpd\/ldap.conf#Include \/etc\/proftpd\/sql.conf\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 ~<\/pre>\n
Now edit\u00a0<\/span>\/etc\/proftpd\/modules.conf<\/span>:<\/p>\n
nano \/etc\/proftpd\/modules.conf\u00a0<\/span><\/p>\n
And change from:<\/p>\n
# Install proftpd-mod-ldap to use this
\n#LoadModule mod_ldap.c<\/pre>\n
To:<\/p>\n
# Install proftpd-mod-ldap to use this
\nLoadModule mod_ldap.c<\/pre>\n
And from:<\/p>\n
# Install proftpd-mod-ldap to use this
\n# LoadModule mod_quotatab_ldap.c<\/pre>\n
To:<\/p>\n
# Install proftpd-mod-ldap to use this
\nLoadModule mod_quotatab_ldap.c <\/pre>\n
No edit\u00a0<\/span>\/etc\/proftpd\/ldap.conf<\/span>\u00a0<\/span>and set the following:<\/p>\n
<IfModule mod_ldap.c>##LDAPServer ldap:\/\/ldap.example.com#LDAPBindDN \"cn=admin,dc=example,dc=com\" \"admin_password\"#LDAPUsers dc=users,dc=example,dc=com (uid=%u) (uidNumber=%u)#LDAPUseTLS on###LDAPServer ldaps:\/\/ldap.example.com#LDAPBindDN \"cn=admin,dc=example,dc=com\" \"admin_password\"#LDAPUsers dc=users,dc=example,dc=com (uid=%u) (uidNumber=%u)#LDAPServer ldap:\/\/127.0.0.1\/??subLDAPBindDN \"cn=vmail,o=hosting,dc=example,dc=tld \"readonly\"LDAPUsers \"o=hosting,dc=example,dc=tld\" \"(&(uid=%v)(objectclass=posixAccount))\"LDAPDefaultGID 33LDAPDefaultUID 33LDAPForceDefaultGID TrueLDAPForceDefaultUID True
<\/IfModule><\/p><\/pre>\n
The following commands set the default user to www-data which suits me, you can change these values to suit your setup or leave them out to use the login uid \/ gid.<\/p>\n
LDAPDefaultGID 33LDAPDefaultUID 33LDAPForceDefaultGID TrueLDAPForceDefaultUID True<\/pre>\n
33 Is the uid\/gid of my testing setup, it can be different on your setup.\u00a0<\/span><\/p>\n
This concludes the proftpd installation.<\/p>\n
Step 9: Bringing it all together<\/h2>\n
Issue the following commands to restart all of the services:<\/p>\n
service slapd restart\u00a0<\/span><\/p>\n
service postfix restart<\/p>\n
service dovecot restart<\/p>\n
service proftpd\u00a0restart<\/p>\n
service apache2 restart<\/p>\n
Now you can go to phamm and start adding mail domains and users.<\/p>\n
Enjoy.<\/p>\n
Note: notify me of any errors or problems with this how to so I can improve and amend this how to.\u00a0<\/span><\/p>\n
Use this thread in the forum:<\/span><\/p>\n
https:\/\/www.howtoforge.com\/community\/threads\/postfix-virtual-hosting-with-ldap-backend-and-with-dovecot-as-imap-pop3-server-on-ubuntu-bionic-beav.79408\/<\/a><\/p>\n
I am subscribed to this thread so I will get notifications of new posts in this thread.<\/p>\n
\n
Share this page:<\/b><\/p>\n
\n\"\"<\/a>
\n\"\"<\/a>
\n\"\"<\/a>
\n\"\"<\/a>\n<\/p>\n<\/div>\n","protected":false},"excerpt":{"rendered":"
This howto will describe how to set up and configure virtual mail hosting with an\u00a0LDAP backend. The software\u00a0we will use in this howto:\u00a0Postfix\u00a0(MTA), Dovecot\u00a0(IMAP \/ POP3),\u00a0Gnarwl\u00a0(vacation), OpenLDAP\u00a0(LDAP)\u00a0 and\u00a0vMailpanel as the management interface. Optional are\u00a0Proftpd\u00a0FTP,\u00a0Roundcube\u00a0(webmail) and\u00a0MariaDB (SQL backend for Roundcube). This worked for me, but I cannot guarantee that this set up will work for you …<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[36],"tags":[],"class_list":["post-5345","post","type-post","status-publish","format-standard","hentry","category-36"],"_links":{"self":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/posts\/5345","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/comments?post=5345"}],"version-history":[{"count":0,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/posts\/5345\/revisions"}],"wp:attachment":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/media?parent=5345"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/categories?post=5345"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/tags?post=5345"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}