HOWTO Secure the msmtp configuration file using libsecret's secret-tool password manager store and switch from Google to Microsoft SMTP servers (Ubuntu)

Links

Permanent location of video version: https://youtu.be/vHmnH6IijJM

Permanent location of text version: https://www.alanbonnici.com/2020/11/howto-secure-msmtp-configuration-file.html


Introduction and catchup

This is an evolution of "HOWTO Send an email using Gmail from a system configuration using msmtp and heirloom-mailx (Ubuntu)" that you can find at https://www.alanbonnici.com/2020/11/howto-send-email-from-google-from.html 


Libsecret's secret-tool utility

The password manager package that is being used here is called secret-tool and is part of the libsecret tools package. Documentation on this tool is available from http://manpages.ubuntu.com/manpages/focal/man1/secret-tool.1.html.


To save a password:

    secret-tool store  -- label=msmtp host smtp.gmail.com

(when prompted type in the password you want to store)


To verify that the password has been entered correctly:

    secret-tool lookup host smtp.gmail.com


Modify the /etc/msmtprc config file:

    sudo nano /etc/msmtprc

replace password line with 

    passwordeval "secret-tool lookup host smtp.gmail.com"



To use Microsoft rather than Google SMTP

Check the Sync option in your outlook client for the SMTP settings. The port and server name are retrieved from here.


An app password needs to be generated from within Microsoft and stored in the secret-tool vault.


/etc/msmtprc needs to be modified to cater for Microsoft's SMTP server.


    account default

    auth on

    tls on

    tls_trust_file /etc/ssl/certs/ca-certificates.crt

    logfile /var/log/msmtp


    # outlook

    host smtp.office365.com

    port 587

    from <account>@outlook.com

    user <account>

    password "secret-tool lookup host smtp.office365.com"


    # Syslog logging with facility LOG_MAIL instead of the default LOG_USER

    syslog LOG_MAIL


To test from the terminal that the email is working type the following

    echo "Hello, World! (Outlook)" | mail -s "HOWTO #2a" <recipient account>




Comments

Post a Comment

Popular posts from this blog

20150628 Giarratana Circular

Statistics Date: Jun 28, 2015 4:34 pm Distance: 15.21 km Duration: 2h:35m:36s Avg Speed: 5.87 km/h Max Speed: 7.40 km/h Min Altitude: 489 m Max Altitude: 594 m Ascent: 249 m Descent: 261 m Route Open route in new window: https://www.google.com/maps/d/edit?mid=z6HKMq7G_wEk.keh2K8cXD6Cc&usp=sharing Photos (Geotagged) Open photos in new Windows: https://plus.google.com/photos/105470926677245165774/albums/6166646868710719889
Read more

HOWTO setup OpenVPN server and client configuration files using EasyRSA

Image
Introduction OpenVPN allows client computers to tunnel into a server over a single UDP or TCP port securely. This HOWTO article is a step-by-step guide that explains how to create the server and client OpenVPN configuration files that makes this possible. In the process this article explains how to create the public key infrastructure (PKI) so that a client can securely communicate with the server. OpenSSL is the foundation for the security functionality of OpenVPN. For this tutorial you will need the following software: OpenVPN. You can download the latest version of OpenVPN from https://openvpn.net/index.php/open-source/downloads.html EasyRSA is the tool people use to create the Public Key Infrastructure (PKI) for OpenVPN. Download the latest release of EasyRSA from https://github.com/OpenVPN/easy-rsa/releases . There is not installation required. Extract the contents of the archive into a folder. OpenVPN is available on various platforms. The generation of the
Read more

How To Reset the firmware, wifi on GoPro Hero 3, 3+ and sync it with latest version of GoPro Quik

Image
Like others, I fished out my old Go Pro HERO 3+ and found that I could not link to it via WiFi because I had forgotten the password. A quick search on the internet and it seems that there are still many users of this good, albeit old Action Cam. Some had purchased one off eBay or from a second-hand shop while others, like me, found it in a drawer and decided to repurpose it. If the GoPro has not been used for a while it might not be on the latest firmware. Note that these models are no longer supported. The common thread is that without the Wi-Fi SSID and password, it isn't possible to control the camera from the phone using GoPro's Quik software. I referenced these sites: 1.  HERO3/3+ Information And Troubleshooting : This is an official GoPro Site from where you can download the camera firmware and update the camera Wi-Fi for the HERO 3 and HERO 3+. 2.  Software Update and Reset for GoPro Hero 3, 3+ and 4 : This is another source for firmware (covers more models) and there is
Read more