- Mine
- Friday, May 4th, 2007 at 8:44:41am UTC
- # main.cf
- # See /usr/share/postfix/main.cf.dist for a commented, more complete version
- daemon_directory = /usr/lib/postfix
- command_directory = /usr/sbin
- program_directory = /usr/lib/postfix
- #smtpd_banner = $myhostname ESMTP $mail_name
- smtpd_banner = $mail_name
- biff = no
- # appending .domain is the MUA's job.
- append_dot_mydomain = no
- # Uncomment the next line to generate "delayed mail" warnings
- delay_warning_time = 4h
- # will it be a permanent error or temporary
- unknown_local_recipient_reject_code = 450
- # how long to keep message on queue before return as failed.
- # some have 3 days, I have 16 days as I am backup server for some people
- # whom go on holiday with their server switched off.
- maximal_queue_lifetime = 7d
- # max and min time in seconds between retries if connection failed
- minimal_backoff_time = 1000s
- maximal_backoff_time = 8000s
- # how long to wait when servers connect before receiving rest of data
- smtp_helo_timeout = 60s
- # how many address can be used in one message.
- # effective stopper to mass spammers, accidental copy in whole address list
- # but may restrict intentional mail shots.
- smtpd_recipient_limit = 16
- # how many error before back off.
- smtpd_soft_error_limit = 3
- # how many max errors before blocking it.
- smtpd_hard_error_limit = 12
- # TLS parameters
- smtpd_tls_cert_file=/etc/ssl/certs/ssl-cert-snakeoil.pem
- smtpd_tls_key_file=/etc/ssl/private/ssl-cert-snakeoil.key
- smtpd_use_tls=yes
- smtpd_tls_session_cache_database = btree:${queue_directory}/smtpd_scache
- smtp_tls_session_cache_database = btree:${queue_directory}/smtp_scache
- smtpd_data_restrictions = reject_unauth_pipelining
- # See /usr/share/doc/postfix/TLS_README.gz in the postfix-doc package for
- # information on enabling SSL in the smtp client.
- myhostname = mail.eudealers.com
- mydomain = eudealers.com
- mydestination = $myhostname, localhost.$mydomain, localhost
- #mailbox_size_limit = 0
- recipient_delimiter = +
- inet_interfaces = all
- # Requirements for the HELO statement
- #smtpd_helo_restrictions = permit_mynetworks, warn_if_reject reject_non_fqdn_hostname, permit
- #smtpd_helo_restrictions = permit_mynetworks, warn_if_reject reject_non_fqdn_hostname, reject_invalid_hostname, permit
- # Requirements for the sender details
- #smtpd_sender_restrictions = permit_sasl_authenticated, permit_mynetworks, warn_if_reject reject_non_fqdn_sender, reject_unauth_pipelining, permit
- #smtpd_sender_restrictions = permit_sasl_authenticated, permit_mynetworks, warn_if_reject reject_non_fqdn_sender, reject_unknown_sender_domain, reject_unauth_pipelining, permit
- # Requirements for the connecting server
- #smtpd_client_restrictions = reject_rbl_client sbl.spamhaus.org, reject_rbl_client relays.ordb.org, reject_rbl_client blackholes.easynet.nl, reject_rbl_client dnsbl.njabl.org
- smtpd_sender_restrictions = permit_sasl_authenticated,
- permit_mynetworks,
- reject_non_fqdn_sender,
- reject_unknown_sender_domain,
- reject_unauth_pipelining, permit
- # Requirement for the recipient address
- smtpd_recipient_restrictions =
- permit_mynetworks,
- permit_sasl_authenticated,
- reject_non_fqdn_hostname,
- reject_non_fqdn_sender,
- reject_non_fqdn_recipient,
- reject_unauth_destination,
- reject_unauth_pipelining,
- reject_invalid_hostname,
- reject_rbl_client list.dsbl.org,
- reject_rbl_client sbl-xbl.spamhaus.org,
- permit
- # require proper helo at connections
- #smtpd_helo_required = yes
- # waste spammers time before rejecting them
- #smtpd_delay_reject = yes
- #disable_vrfy_command = yes
- # Custom stuff for postfix admin
- virtual_alias_maps=pgsql:/etc/postfix/pgsql/virtual_alias_maps.cf
- # What (virtual) domains Postfix does mail for
- virtual_mailbox_domains = pgsql:/etc/postfix/pgsql/virtual_domains_maps.cf
- # Where Postfix finds the mailbox for $user@$domain
- virtual_mailbox_maps = pgsql:/etc/postfix/pgsql/virtual_mailbox_maps.cf
- # Incase we are a backup MX server for any domains :
- relay_domains = pgsql:/etc/postfix/pgsql/relay_domains.cf
- # Where all mailboxes are under
- # (i.e. resulting in /var/mail/vmail/$user@$domain/).
- virtual_mailbox_base = /var/mail/vmail
- # Quota limit...
- virtual_mailbox_limit = 51200000
- virtual_minimum_uid = 1001
- virtual_transport = virtual
- # What UID is used to deliver/own the mail files
- # (needs to link in with courier config)
- virtual_uid_maps = static:1001
- virtual_gid_maps = static:1001
- # This is necessary for the virtual 'stuff' above to be used
- local_transport = virtual
- # This tells Postfix to accept mail for users
- # which appear in the virtual_mailbox_maps above.
- local_recipient_maps = $virtual_mailbox_maps
- smtpd_sasl_auth_enable = yes
- broken_sasl_auth_clients = yes
- smtpd_sasl_path=sasl
- smtpd_sasl_local_domain = $myhostname
- smtpd_sasl_security_options = noanonymous
- smtpd_sasl_application_name = smtpd
- smtpd_pw_server_security_options = noanonymous
- #
- # Postfix master process configuration file. For details on the format
- # of the file, see the master(5) manual page (command: "man 5 master").
- #
- # ==========================================================================
- # service type private unpriv chroot wakeup maxproc command + args
- # (yes) (yes) (yes) (never) (100)
- # ==========================================================================
- smtp inet n - n - - smtpd
- 567 inet n - - - - smtpd
- # -o smtpd_enforce_tls=yes
- # -o smtpd_sasl_auth_enable=yes
- # -o smtpd_client_restrictions=permit_sasl_authenticated,reject
- smtps inet n - n - - smtpd
- -o smtpd_tls_wrappermode=yes
- -o smtpd_sasl_auth_enable=yes
- # -o smtpd_client_restrictions=permit_sasl_authenticated,reject
- #628 inet n - n - - qmqpd
- pickup fifo n - n 60 1 pickup
- cleanup unix n - n - 0 cleanup
- qmgr fifo n - n 300 1 qmgr
- #qmgr fifo n - - 300 1 oqmgr
- tlsmgr unix - - n 1000? 1 tlsmgr
- rewrite unix - - n - - trivial-rewrite
- bounce unix - - n - 0 bounce
- defer unix - - n - 0 bounce
- trace unix - - n - 0 bounce
- verify unix - - n - 1 verify
- flush unix n - n 1000? 0 flush
- proxymap unix - - n - - proxymap
- smtp unix - - n - - smtp
- # When relaying mail as backup MX, disable fallback_relay to avoid MX loops
- relay unix - - n - - smtp
- -o fallback_relay=
- # -o smtp_helo_timeout=5 -o smtp_connect_timeout=5
- showq unix n - n - - showq
- error unix - - n - - error
- discard unix - - n - - discard
- local unix - n n - - local
- virtual unix - n n - - virtual
- lmtp unix - - n - - lmtp
- anvil unix - - n - 1 anvil
- scache unix - - n - 1 scache
- #
- # ====================================================================
- # Interfaces to non-Postfix software. Be sure to examine the manual
- # pages of the non-Postfix software to find out what options it wants.
- #
- # Many of the following services use the Postfix pipe(8) delivery
- # agent. See the pipe(8) man page for information about ${recipient}
- # and other message envelope options.
- # ====================================================================
- #
- # maildrop. See the Postfix MAILDROP_README file for details.
- # Also specify in main.cf: maildrop_destination_recipient_limit=1
- #
- maildrop unix - n n - - pipe
- flags=DRhu user=vmail argv=/usr/bin/maildrop -d ${recipient}
- #
- # See the Postfix UUCP_README file for configuration details.
- #
- uucp unix - n n - - pipe
- flags=Fqhu user=uucp argv=uux -r -n -z -a$sender - $nexthop!rmail ($recipient)
- #
- # Other external delivery methods.
- #
- ifmail unix - n n - - pipe
- flags=F user=ftn argv=/usr/lib/ifmail/ifmail -r $nexthop ($recipient)
- bsmtp unix - n n - - pipe
- flags=Fq. user=bsmtp argv=/usr/lib/bsmtp/bsmtp -t$nexthop -f$sender $recipient
- scalemail-backend unix - n n - 2 pipe
- flags=R user=scalemail argv=/usr/lib/scalemail/bin/scalemail-store ${nexthop} ${user} ${extension}
- mailman unix - n n - - pipe
- flags=FR user=list argv=/usr/lib/mailman/bin/postfix-to-mailman.py
- ${nexthop} ${user}
- ############################
- pwcheck_method: authdaemond
- authdaemond_path: /var/run/courier/authdaemon/socket
- log_level: 3
- mech_list: login plain
Update the Post
Either update this post and resubmit it with changes, or make a new post.
You may also comment on this post.
Please note that information posted here will expire by default in one month. If you do not want it to expire, please set the expiry time above. If it is set to expire, web search engines will not be allowed to index it prior to it expiring. Items that are not marked to expire will be indexable by search engines. Be careful with your passwords. All illegal activities will be reported and any information will be handed over to the authorities, so be good.
