Specifications
Chapter 12 Managing Mail Service 203
 Postfix configuration file (/etc/postfix/main.cf)
The largest database is the mailbox folders database. Each mailbox folder contains the
following files:
 Message files—There is one file per message. The file name of each message is the
message’s UID followed by a period. The UID is a unique ID given to each message.
 cyrus.header—This file contains a magic number and variable-length information
about the mailbox.
 cyrus.index—This file contains fixed-length information about the mailbox and each
message in the mailbox.
 cyrus.cache—This file contains variable-length information about each message in
the mailbox.
 cyrus.seen—This file contains variable-length state information about each reader of
the mailbox.
Setting Up SSL for Mail Service
Mail service requires some configuration to provide Secure Sockets Layer (SSL)
connections automatically. The basic steps are as follows:
1 Generate a Certificate Signing Request (CSR) and create a keychain.
2 Obtain an SSL certificate from an issuing authority.
3 Import the SSL certificate into the keychain.
4 Create a password file.
These steps are explained in the following sections.
Generating a CSR and Creating a Keychain
To begin configuring Mail service for SSL connections, you generate a CSR and create a
keychain by using the certtool tool. A CSR is a file that provides information needed
to issue an SSL certificate.
To generate a CSR and create a keychain:
1 Log in to the server as root.
2 In the Terminal application, enter the following commands:
$ cd /private/var/root/Library/Keychains/
$ /usr/bin/certtool r csr.txt k=certkc c
This use of the certtool tool begins an interactive process that generates a CSR in the
file csr.txt and creates a keychain named certkc.
3 In the New Keychain Passphrase dialog that appears, enter a password for the keychain
you’re creating, enter the password a second time to verify it, and click OK.
Remember this password, because later you must supply it again.