Màj 06-04-2024

2024-04-06 09:54:09 +02:00
parent cd8cebe7cb
commit 259b9c6a24
76 changed files with 5126 additions and 229 deletions
--- a/docs/Raspberry/mail.md
+++ b/docs/Raspberry/mail.md
@@ -0,0 +1,217 @@
+### Envoyer un mail depuis le Raspberry
+
+
+
+Il faut installer **msmtp**:
+
+```bash
+# apt install bsd-mailx msmtp msmtp-mta
+```
+
+
+
+#### Configuration:
+
+https://doc.ubuntu-fr.org/tutoriel/comment_envoyer_un_mail_par_smtp_en_ligne_de_commande
+
+https://wiki.archlinux.org/title/Msmtp
+
+http://www.futurile.net/resources/msmtp-a-simple-mail-transfer-agent/
+
+```bash
+nano /etc/msmtprc
+```
+
+```bash
+#Set default values for all accounts.
+defaults
+auth login
+tls on
+tls_starttls off
+tls_certcheck on
+tls_trust_file /etc/ssl/certs/ca-certificates.crt
+logfile /var/log/msmtp.log
+
+#OVH settings
+account ovh
+host ssl0.ovh.net
+#auth login
+#tls on
+#tls_starttls off
+#tls_certcheck on
+#tls_trust_file /etc/ssl/certs/ca-certificates.crt
+from xxxxxxxxxxx@clicclac.info
+port 465
+user xxxxxxxxxxx@clicclac.info
+password xxxxxxxxxxx
+
+#Orange settings
+account orange
+host smtp.orange.fr
+protocol smtp
+#auth login
+#tls on
+#tls_starttls off
+#tls_certcheck on
+#tls_trust_file /etc/ssl/certs/ca-certificates.crt
+from byyyyyyyyyyyyy@orange.fr
+maildomain orange.fr
+port 465
+user byyyyyyyyyyyyy
+password yyyyyyyyyyyyy
+
+#Set a default account
+account default : orange
+```
+
+on sécurise le fichier de config:
+
+```bash
+root@PiHole2:~# chown root:msmtp /etc/msmtprc
+root@PiHole2:~# chmod 640 /etc/msmtprc
+```
+
+Encrypter `/etc/msmtprc`
+
+https://www.howtoraspberry.com/2021/06/how-to-send-mail-from-a-raspberry-pi/
+
+
+
+#### Test:
+
+```bash
+root@PiHole2:~# echo "BEEP BEEP" | mailx -s "Subject: This is a test!" bxxxxxxxxxxx@orange.fr
+```
+
+
+
+nano test.mail
+
+```bash
+To: bxxxxxxxxxxx@orange.fr
+From: bxxxxxxxxxxx@orange.fr
+Subject: Pi-Hole update
+
+Hello there.
+
+version 3
+```
+
+```bash
+cat test.mail | msmtp --read-envelope-from --read-recipients
+
+cat test.mail | msmtp --account=default --read-envelope-from --read-recipients
+```
+
+```
+cat /tmp/fichier | mail 
+```
+
+
+
+
+
+
+
+
+
+```
+apt install libsecret-tools
+```
+
+
+
+
+
+```bash
+gpg --full-generate-key
+
+gpg: /root/.gnupg/trustdb.gpg : base de confiance créée
+gpg: répertoire « /root/.gnupg/openpgp-revocs.d » créé
+gpg: revocation certificate stored as '/root/.gnupg/openpgp-revocs.d/75199AB29FD34F8BDEA93ABF97857FE7ED14794A.rev'
+les clefs publique et secrète ont été créées et signées.
+
+pub   rsa3072 2024-03-02 [SC]
+      75199AB29FD34F8BDEA93ABF97857FE7ED14794A
+uid                      pihole <liste@clicclac.info>
+sub   rsa3072 2024-03-02 [E]
+```
+
+
+
+```bash
+# gpg --list-secret-keys --keyid-format LONG
+gpg: vérification de la base de confiance
+gpg: marginals needed: 3  completes needed: 1  trust model: pgp
+gpg: profondeur : 0  valables :   1  signées :   0
+     confiance : 0 i., 0 n.d., 0 j., 0 m., 0 t., 1 u.
+/root/.gnupg/pubring.kbx
+------------------------
+sec   rsa3072/97857FE7ED14794A 2024-03-02 [SC]
+      75199AB29FD34F8BDEA93ABF97857FE7ED14794A
+uid                [  ultime ] pihole <liste@clicclac.info>
+ssb   rsa3072/9B43CA525CFA97A6 2024-03-02 [E]
+```
+
+https://unix.stackexchange.com/questions/614737/how-to-cache-gpg-key-passphrase-with-gpg-agent-and-keychain-on-debian-10
+
+
+
+```bash
+# util ou pas ?
+~/.gnupg# mv gnu.conf gpg.conf
+```
+
+
+
+```
+keychain --eval --agents gpg pihole
+
+ * keychain 2.8.5 ~ http://www.funtoo.org
+ * Found existing gpg-agent: 238
+GPG_AGENT_INFO=/root/.gnupg/S.gpg-agent:238:1; export GPG_AGENT_INFO;
+
+ * Adding 1 gpg key(s): pihole
+```
+
+
+
+
+
+```bash
+~# apparmor_parser -R /etc/apparmor.d/usr.bin.msmtp
+Cache read/write disabled: interface file missing. (Kernel needs AppArmor 2.4 compatibility patch.)
+Avertissement : impossible de trouver un syst?me de fichiers appropri? dans /proc/mounts, est-il mont? ?
+Utilisez --subdomainfs pour remplacer.
+
+# apt install apparmor-utils
+
+~# systemctl enable apparmor
+Synchronizing state of apparmor.service with SysV service script with /lib/systemd/systemd-sysv-install.
+Executing: /lib/systemd/systemd-sysv-install enable apparmor
+
+~# systemctl status apparmor
+○ apparmor.service - Load AppArmor profiles
+     Loaded: loaded (/lib/systemd/system/apparmor.service; enabled; preset: enabled)
+     Active: inactive (dead)
+       Docs: man:apparmor(7)
+             https://gitlab.com/apparmor/apparmor/wikis/home/
+
+~# apparmor_parser -R /etc/apparmor.d/usr.bin.msmtp
+Cache read/write disabled: interface file missing. (Kernel needs AppArmor 2.4 compatibility patch.)
+Avertissement : impossible de trouver un syst?me de fichiers appropri? dans /proc/mounts, est-il mont? ?
+Utilisez --subdomainfs pour remplacer.
+
+
+```
+
+https://discourse.pi-hole.net/t/apparmor-reference-in-unbound-guide-clarification-requested/62351/3
+
+
+
+```bash
+~# gpg --encrypt --output orange.mail.gpg --recipient liste@clicclac.info orange.mail
+
+~# gpg --decrypt --output file.txt orange.mail.gpg
+```
+