API tools faq
paste
Advertisement
Guest User

Untitled

a guest
Dec 8th, 2016
70
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 4.35 KB | None | 0 0
raw download clone embed print report
  1. # See /usr/share/postfix/main.cf.dist for a commented, more complete version
  2.  
  3. postscreen_greet_action = enforce
  4.  
  5. policy-spf_time_limit = 3600s
  6.  
  7. smtpd_helo_required = yes
  8. smtpd_helo_restrictions = permit_mynetworks, permit_sasl_authenticated, reject_non_fqdn_helo_hostname, reject_invalid_helo_hostname
  9.  
  10. strict_rfc821_envelopes = yes
  11.  
  12. smtpd_client_restrictions = permit_mynetworks, permit_sasl_authenticated, reject_unknown_client_hostname, check_client_access mysql:/etc/postfix/mysql-virtual_client.cf, reject_rbl_client cbl.abuseat.org, reject_rbl_client b.barracudacentral.org
  13.  
  14. # Debian specific: Specifying a file name will cause the first
  15. # line of that file to be used as the name. The Debian default
  16. # is /etc/mailname.
  17. #myorigin = /etc/mailname
  18.  
  19. smtpd_banner = $myhostname ESMTP $mail_name (Debian/GNU)
  20. biff = no
  21.  
  22. # appending .domain is the MUA's job.
  23. append_dot_mydomain = no
  24.  
  25. # Uncomment the next line to generate "delayed mail" warnings
  26. #delay_warning_time = 4h
  27.  
  28. readme_directory = /usr/share/doc/postfix
  29.  
  30. # TLS parameters
  31. smtpd_tls_cert_file = /etc/postfix/smtpd.cert
  32. smtpd_tls_key_file = /etc/postfix/smtpd.key
  33. smtpd_use_tls = yes
  34. smtpd_tls_session_cache_database = btree:${data_directory}/smtpd_scache
  35. smtp_tls_session_cache_database = btree:${data_directory}/smtp_scache
  36.  
  37. # See /usr/share/doc/postfix/TLS_README.gz in the postfix-doc package for
  38. # information on enabling SSL in the smtp client.
  39.  
  40. myhostname = sun.bluesignals.com
  41. alias_maps = hash:/etc/aliases, hash:/var/lib/mailman/data/aliases
  42. alias_database = hash:/etc/aliases, hash:/var/lib/mailman/data/aliases
  43. myorigin = /etc/mailname
  44. mydestination = sun.bluesignals.com, localhost, localhost.localdomain
  45. relayhost =
  46. mynetworks = 127.0.0.0/8 [::1]/128
  47. mailbox_command = procmail -a "$EXTENSION"
  48. mailbox_size_limit = 0
  49. recipient_delimiter = +
  50. inet_interfaces = all
  51. html_directory = /usr/share/doc/postfix/html
  52. virtual_alias_domains =
  53. virtual_alias_maps = hash:/var/lib/mailman/data/virtual-mailman, proxy:mysql:/etc/postfix/mysql-virtual_forwardings.cf, proxy:mysql:/etc/postfix/mysql-virtual_email2email.cf
  54. virtual_mailbox_domains = proxy:mysql:/etc/postfix/mysql-virtual_domains.cf
  55. virtual_mailbox_maps = proxy:mysql:/etc/postfix/mysql-virtual_mailboxes.cf
  56. virtual_mailbox_base = /var/vmail
  57. virtual_uid_maps = static:5000
  58. virtual_gid_maps = static:5000
  59. inet_protocols = all
  60. smtpd_sasl_auth_enable = yes
  61. broken_sasl_auth_clients = yes
  62. smtpd_sasl_authenticated_header = yes
  63.  
  64. smtpd_recipient_restrictions = permit_mynetworks, permit_sasl_authenticated, reject_unauth_destination, check_recipient_access mysql:/etc/postfix/mysql-virtual_recipient.cf, reject_unknown_recipient_domain, check_policy_service unix:private/policy-spf, check_policy_service inet:127.0.0.1:10023
  65.  
  66. smtpd_data_restrictions = reject_unauth_pipelining
  67.  
  68. smtpd_delay_reject = yes
  69.  
  70. smtpd_tls_security_level = may
  71. transport_maps = hash:/var/lib/mailman/data/transport-mailman, proxy:mysql:/etc/postfix/mysql-virtual_transports.cf
  72. relay_domains = mysql:/etc/postfix/mysql-virtual_relaydomains.cf
  73. relay_recipient_maps = mysql:/etc/postfix/mysql-virtual_relayrecipientmaps.cf
  74. proxy_read_maps = $local_recipient_maps $mydestination $virtual_alias_maps $virtual_alias_domains $virtual_mailbox_maps $virtual_mailbox_domains $relay_recipient_maps $relay_domains $canonical_maps $sender_canonical_maps $recipient_canonical_maps $relocated_maps $transport_maps $mynetworks
  75. smtpd_sender_restrictions = check_sender_access regexp:/etc/postfix/tag_as_originating.re
  76. smtpd_client_message_rate_limit = 100
  77. maildrop_destination_concurrency_limit = 1
  78. maildrop_destination_recipient_limit = 1
  79. virtual_transport = dovecot
  80. header_checks = regexp:/etc/postfix/header_checks
  81. mime_header_checks = regexp:/etc/postfix/mime_header_checks
  82. nested_header_checks = regexp:/etc/postfix/nested_header_checks
  83. body_checks = regexp:/etc/postfix/body_checks
  84. owner_request_special = no
  85. dovecot_destination_recipient_limit = 1
  86. smtpd_sasl_type = dovecot
  87. smtpd_sasl_path = private/auth
  88. content_filter = amavis:[127.0.0.1]:10024
  89. receive_override_options = no_address_mappings
  90. message_size_limit = 0
  91. smtp_tls_security_level = may
  92. smtpd_tls_mandatory_protocols = !SSLv2, !SSLv3
  93. smtpd_tls_protocols = !SSLv2,!SSLv3
  94. smtp_tls_protocols = !SSLv2,!SSLv3
  95. smtpd_tls_mandatory_exclude_ciphers = aNULL, eNULL, EXPORT, DES, RC4, MD5, PSK, aECDH, EDH-DSS-DES-CBC3-SHA, EDH-RSA-DES-CDC3-SHA, KRB5-DE5, CBC3-SHA
  96. smtpd_tls_dh1024_param_file = /etc/ssl/private/dhparams.pem
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!