please add ntp to the install-packages

this way we always have the correct time on the server

furthermore it is needed for proper openldap-replication - this way we can just copy+paste the ntp.conf to the secondary server

Some users reported that if they ran ntp, dovecot will stop suddenly. So i prefer to leave it to admins.

Do you mean OpenSSH daemon? Well, again, leave it to admins.

But we can add ntp and change SSH setting in iRedOS, because we are pretty sure this OS is a FRESH one:
http://www.iredmail.org/forum/topic1890 … sting.html

how about postfwd......

A longer key makes the application more secure, but it can slow performance.
A shorter key makes encryption and decryption faster, but lowers security.

Currently, 1024 is minimal recommended length, i prefer to keep it.

I found another blog here, just a reference:

Thanks for your links, you convinced me of switching to 2048 as default key length, i committed this change moment ago:
http://code.google.com/p/iredmail/sourc … e06d2d9186

It will be the default key length in iRedMail-0.7.1, which is scheduled to be released on May 01.

It's a good idea. But i don't want to do it now.

'default_bits' in openssl.cnf is set by OS provider, i prefer to use the system default value since we don't use it in iRedMail related components.

I bet there will be more and more minor improvement requests like this one, such as tuning software X/Y/Z, adjust system config files A/B/C. iRedMail is a standalone bundle, we'd better not to touch files we don't need directly, and leave them to admins.

It's better to create an customized ISO image with these deep tuning/improvements, for example, iRedOS. What do you think? Any interesting? If you can lead this project, i'm in.

Fixed moment ago:
http://code.google.com/p/iredmail/sourc … c586ec71a5

It will check 'default_bits' in openssl.cnf first, if it's greater or equal to 2048, iRedMail will use it. Otherwise, uses 2048.

I didn't use Gentoo before, that could be the biggest problem to me. If you can help test it on Gentoo, we can work together to make it happen.

• How to install packages on Gentoo. Is it possible to install binary packages? Or we have to install them with emerge? You should help decide this, and specify related USE flags.

• Confirm file locations of related config files. It should be easy after we have packages installed.

These are major steps. It could be easy after we have required packages installed.

new wiki-article Keep your computer-time in sync for admins

Hi,
looking at your site, nice mail-server.
just a few thinks, i think every one will need, that's if it not their already, if it is, my-bad.

a) can a setup with one domain, say mydomain.com have an alias domain added to it, say mydomain2.com, and all the users of mydomain.com will auto have mydomain2.com as well. eg: i created a user (madmax) under mydomain.com can i send an email to that user from gmail using madmax@mydomain2.com and it get put in is mydoamin.com mail box?

b) Is there a way to block an extension? (but, see b1)

say a zip file or doc.doc files or from a list of band file and send or attach a message saying "the file was remove, please contack your admin ...etc".

b1) have a a part that you can put an email address, so any band file will get send to that email address?
eg: remove.attachment@mydomain.com

b2) all so a list of email band attachments. like .exe .zip .vbs .bat ...etc? and the option to add your own to the list?

Nice one ZhangHuangbin.

and thank you.

(sorry for posting reply on this wishlist)