API tools faq
paste
Advertisement
Guest User

Postfix configuration

a guest
Oct 6th, 2017
82
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 46.59 KB | None | 0 0
raw download clone embed print report
  1. 2bounce_notice_recipient = postmaster
  2. access_map_defer_code = 450
  3. access_map_reject_code = 554
  4. address_verify_cache_cleanup_interval = 12h
  5. address_verify_default_transport = $default_transport
  6. address_verify_local_transport = $local_transport
  7. address_verify_map = btree:$data_directory/verify_cache
  8. address_verify_negative_cache = yes
  9. address_verify_negative_expire_time = 3d
  10. address_verify_negative_refresh_time = 5m
  11. address_verify_poll_count = ${stress?1}${stress:3}
  12. address_verify_poll_delay = 3s
  13. address_verify_positive_expire_time = 31d
  14. address_verify_positive_refresh_time = 5d
  15. address_verify_relay_transport = $relay_transport
  16. address_verify_relayhost = $relayhost
  17. address_verify_sender = $double_bounce_sender
  18. address_verify_sender_dependent_default_transport_maps = $sender_dependent_default_transport_maps
  19. address_verify_sender_dependent_relayhost_maps = $sender_dependent_relayhost_maps
  20. address_verify_sender_ttl = 0s
  21. address_verify_service_name = verify
  22. address_verify_transport_maps = $transport_maps
  23. address_verify_virtual_transport = $virtual_transport
  24. alias_database =
  25. alias_maps =
  26. allow_mail_to_commands = alias, forward
  27. allow_mail_to_files = alias, forward
  28. allow_min_user = yes
  29. allow_percent_hack = yes
  30. allow_untrusted_routing = no
  31. alternate_config_directories =
  32. always_add_missing_headers = no
  33. always_bcc =
  34. anvil_rate_time_unit = 5m
  35. anvil_status_update_time = 300s
  36. append_at_myorigin = yes
  37. append_dot_mydomain = no
  38. application_event_drain_time = 100s
  39. authorized_flush_users = static:anyone
  40. authorized_mailq_users = static:anyone
  41. authorized_submit_users = static:anyone
  42. backwards_bounce_logfile_compatibility = yes
  43. berkeley_db_create_buffer_size = 16777216
  44. berkeley_db_read_buffer_size = 131072
  45. best_mx_transport =
  46. biff = yes
  47. body_checks =
  48. body_checks_size_limit = 51200
  49. bounce_notice_recipient = postmaster
  50. bounce_queue_lifetime = 1d
  51. bounce_service_name = bounce
  52. bounce_size_limit = 50000
  53. bounce_template_file =
  54. broken_sasl_auth_clients = no
  55. bsmtp_delivery_slot_cost = $default_delivery_slot_cost
  56. bsmtp_delivery_slot_discount = $default_delivery_slot_discount
  57. bsmtp_delivery_slot_loan = $default_delivery_slot_loan
  58. bsmtp_destination_concurrency_failed_cohort_limit = $default_destination_concurrency_failed_cohort_limit
  59. bsmtp_destination_concurrency_limit = $default_destination_concurrency_limit
  60. bsmtp_destination_concurrency_negative_feedback = $default_destination_concurrency_negative_feedback
  61. bsmtp_destination_concurrency_positive_feedback = $default_destination_concurrency_positive_feedback
  62. bsmtp_destination_rate_delay = $default_destination_rate_delay
  63. bsmtp_destination_recipient_limit = $default_destination_recipient_limit
  64. bsmtp_extra_recipient_limit = $default_extra_recipient_limit
  65. bsmtp_initial_destination_concurrency = $initial_destination_concurrency
  66. bsmtp_minimum_delivery_slots = $default_minimum_delivery_slots
  67. bsmtp_recipient_limit = $default_recipient_limit
  68. bsmtp_recipient_refill_delay = $default_recipient_refill_delay
  69. bsmtp_recipient_refill_limit = $default_recipient_refill_limit
  70. bsmtp_time_limit = $command_time_limit
  71. canonical_classes = envelope_sender, envelope_recipient, header_sender, header_recipient
  72. canonical_maps =
  73. cleanup_service_name = cleanup
  74. command_directory = /usr/sbin
  75. command_execution_directory =
  76. command_expansion_filter = 1234567890!@%-_=+:,./abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ
  77. command_time_limit = 1000s
  78. config_directory = /etc/postfix
  79. connection_cache_protocol_timeout = 5s
  80. connection_cache_service_name = scache
  81. connection_cache_status_update_time = 600s
  82. connection_cache_ttl_limit = 2s
  83. content_filter =
  84. cyrus_delivery_slot_cost = $default_delivery_slot_cost
  85. cyrus_delivery_slot_discount = $default_delivery_slot_discount
  86. cyrus_delivery_slot_loan = $default_delivery_slot_loan
  87. cyrus_destination_concurrency_failed_cohort_limit = $default_destination_concurrency_failed_cohort_limit
  88. cyrus_destination_concurrency_limit = $default_destination_concurrency_limit
  89. cyrus_destination_concurrency_negative_feedback = $default_destination_concurrency_negative_feedback
  90. cyrus_destination_concurrency_positive_feedback = $default_destination_concurrency_positive_feedback
  91. cyrus_destination_rate_delay = $default_destination_rate_delay
  92. cyrus_destination_recipient_limit = $default_destination_recipient_limit
  93. cyrus_extra_recipient_limit = $default_extra_recipient_limit
  94. cyrus_initial_destination_concurrency = $initial_destination_concurrency
  95. cyrus_minimum_delivery_slots = $default_minimum_delivery_slots
  96. cyrus_recipient_limit = $default_recipient_limit
  97. cyrus_recipient_refill_delay = $default_recipient_refill_delay
  98. cyrus_recipient_refill_limit = $default_recipient_refill_limit
  99. cyrus_sasl_config_path =
  100. cyrus_time_limit = $command_time_limit
  101. daemon_directory = /usr/lib/postfix
  102. daemon_table_open_error_is_fatal = no
  103. daemon_timeout = 18000s
  104. data_directory = /var/lib/postfix/
  105. debug_peer_level = 2
  106. debug_peer_list =
  107. debugger_command =
  108. default_database_type = hash
  109. default_delivery_slot_cost = 5
  110. default_delivery_slot_discount = 50
  111. default_delivery_slot_loan = 3
  112. default_destination_concurrency_failed_cohort_limit = 1
  113. default_destination_concurrency_limit = 20
  114. default_destination_concurrency_negative_feedback = 1
  115. default_destination_concurrency_positive_feedback = 1
  116. default_destination_rate_delay = 0s
  117. default_destination_recipient_limit = 50
  118. default_extra_recipient_limit = 1000
  119. default_filter_nexthop =
  120. default_minimum_delivery_slots = 3
  121. default_privs = nobody
  122. default_process_limit = 100
  123. default_rbl_reply = $rbl_code Service unavailable; $rbl_class [$rbl_what] blocked using $rbl_domain${rbl_reason?; $rbl_reason}
  124. default_recipient_limit = 20000
  125. default_recipient_refill_delay = 5s
  126. default_recipient_refill_limit = 100
  127. default_transport = smtp
  128. default_verp_delimiters = +=
  129. defer_code = 450
  130. defer_service_name = defer
  131. defer_transports =
  132. delay_logging_resolution_limit = 2
  133. delay_notice_recipient = postmaster
  134. delay_warning_time = 0h
  135. deliver_lock_attempts = 20
  136. deliver_lock_delay = 1s
  137. destination_concurrency_feedback_debug = no
  138. detect_8bit_encoding_header = yes
  139. disable_dns_lookups = no
  140. disable_mime_input_processing = no
  141. disable_mime_output_conversion = no
  142. disable_verp_bounces = yes
  143. disable_vrfy_command = yes
  144. dnsblog_reply_delay = 0s
  145. dnsblog_service_name = dnsblog
  146. dont_remove = 0
  147. double_bounce_sender = double-bounce
  148. duplicate_filter_limit = 1000
  149. empty_address_default_transport_maps_lookup_key = <>
  150. empty_address_recipient = MAILER-DAEMON
  151. empty_address_relayhost_maps_lookup_key = <>
  152. enable_long_queue_ids = no
  153. enable_original_recipient = yes
  154. error_delivery_slot_cost = $default_delivery_slot_cost
  155. error_delivery_slot_discount = $default_delivery_slot_discount
  156. error_delivery_slot_loan = $default_delivery_slot_loan
  157. error_destination_concurrency_failed_cohort_limit = $default_destination_concurrency_failed_cohort_limit
  158. error_destination_concurrency_limit = $default_destination_concurrency_limit
  159. error_destination_concurrency_negative_feedback = $default_destination_concurrency_negative_feedback
  160. error_destination_concurrency_positive_feedback = $default_destination_concurrency_positive_feedback
  161. error_destination_rate_delay = $default_destination_rate_delay
  162. error_destination_recipient_limit = $default_destination_recipient_limit
  163. error_extra_recipient_limit = $default_extra_recipient_limit
  164. error_initial_destination_concurrency = $initial_destination_concurrency
  165. error_minimum_delivery_slots = $default_minimum_delivery_slots
  166. error_notice_recipient = postmaster
  167. error_recipient_limit = $default_recipient_limit
  168. error_recipient_refill_delay = $default_recipient_refill_delay
  169. error_recipient_refill_limit = $default_recipient_refill_limit
  170. error_service_name = error
  171. execution_directory_expansion_filter = 1234567890!@%-_=+:,./abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ
  172. expand_owner_alias = no
  173. export_environment = TZ MAIL_CONFIG LANG
  174. fallback_relay =
  175. fallback_transport =
  176. fallback_transport_maps =
  177. fast_flush_domains = $relay_domains
  178. fast_flush_purge_time = 7d
  179. fast_flush_refresh_time = 12h
  180. fault_injection_code = 0
  181. flush_service_name = flush
  182. fork_attempts = 5
  183. fork_delay = 1s
  184. forward_expansion_filter = 1234567890!@%-_=+:,./abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ
  185. forward_path = $home/.forward${recipient_delimiter}${extension}, $home/.forward
  186. frozen_delivered_to = yes
  187. hash_queue_depth = 3
  188. hash_queue_names = deferred, defer
  189. header_address_token_limit = 10240
  190. header_checks =
  191. header_size_limit = 102400
  192. helpful_warnings = yes
  193. home_mailbox = maildir/
  194. hopcount_limit = 50
  195. html_directory = no
  196. ifmail_delivery_slot_cost = $default_delivery_slot_cost
  197. ifmail_delivery_slot_discount = $default_delivery_slot_discount
  198. ifmail_delivery_slot_loan = $default_delivery_slot_loan
  199. ifmail_destination_concurrency_failed_cohort_limit = $default_destination_concurrency_failed_cohort_limit
  200. ifmail_destination_concurrency_limit = $default_destination_concurrency_limit
  201. ifmail_destination_concurrency_negative_feedback = $default_destination_concurrency_negative_feedback
  202. ifmail_destination_concurrency_positive_feedback = $default_destination_concurrency_positive_feedback
  203. ifmail_destination_rate_delay = $default_destination_rate_delay
  204. ifmail_destination_recipient_limit = $default_destination_recipient_limit
  205. ifmail_extra_recipient_limit = $default_extra_recipient_limit
  206. ifmail_initial_destination_concurrency = $initial_destination_concurrency
  207. ifmail_minimum_delivery_slots = $default_minimum_delivery_slots
  208. ifmail_recipient_limit = $default_recipient_limit
  209. ifmail_recipient_refill_delay = $default_recipient_refill_delay
  210. ifmail_recipient_refill_limit = $default_recipient_refill_limit
  211. ifmail_time_limit = $command_time_limit
  212. ignore_mx_lookup_error = no
  213. import_environment = MAIL_CONFIG MAIL_DEBUG MAIL_LOGTAG TZ XAUTHORITY DISPLAY LANG=C
  214. in_flow_delay = 1s
  215. inet_interfaces = all
  216. inet_protocols = ipv4
  217. initial_destination_concurrency = 5
  218. internal_mail_filter_classes =
  219. invalid_hostname_reject_code = 501
  220. ipc_idle = 5s
  221. ipc_timeout = 3600s
  222. ipc_ttl = 1000s
  223. line_length_limit = 2048
  224. lmdb_map_size = 16777216
  225. lmtp_address_preference = any
  226. lmtp_assume_final = no
  227. lmtp_bind_address =
  228. lmtp_bind_address6 =
  229. lmtp_body_checks =
  230. lmtp_cname_overrides_servername = no
  231. lmtp_connect_timeout = 0s
  232. lmtp_connection_cache_destinations =
  233. lmtp_connection_cache_on_demand = yes
  234. lmtp_connection_cache_time_limit = 2s
  235. lmtp_connection_reuse_count_limit = 0
  236. lmtp_connection_reuse_time_limit = 300s
  237. lmtp_data_done_timeout = 600s
  238. lmtp_data_init_timeout = 120s
  239. lmtp_data_xfer_timeout = 180s
  240. lmtp_defer_if_no_mx_address_found = no
  241. lmtp_delivery_slot_cost = $default_delivery_slot_cost
  242. lmtp_delivery_slot_discount = $default_delivery_slot_discount
  243. lmtp_delivery_slot_loan = $default_delivery_slot_loan
  244. lmtp_destination_concurrency_failed_cohort_limit = $default_destination_concurrency_failed_cohort_limit
  245. lmtp_destination_concurrency_limit = $default_destination_concurrency_limit
  246. lmtp_destination_concurrency_negative_feedback = $default_destination_concurrency_negative_feedback
  247. lmtp_destination_concurrency_positive_feedback = $default_destination_concurrency_positive_feedback
  248. lmtp_destination_rate_delay = $default_destination_rate_delay
  249. lmtp_destination_recipient_limit = $default_destination_recipient_limit
  250. lmtp_discard_lhlo_keyword_address_maps =
  251. lmtp_discard_lhlo_keywords =
  252. lmtp_dns_resolver_options =
  253. lmtp_dns_support_level =
  254. lmtp_enforce_tls = no
  255. lmtp_extra_recipient_limit = $default_extra_recipient_limit
  256. lmtp_generic_maps =
  257. lmtp_header_checks =
  258. lmtp_host_lookup = dns
  259. lmtp_initial_destination_concurrency = $initial_destination_concurrency
  260. lmtp_lhlo_name = $myhostname
  261. lmtp_lhlo_timeout = 300s
  262. lmtp_line_length_limit = 998
  263. lmtp_mail_timeout = 300s
  264. lmtp_mime_header_checks =
  265. lmtp_minimum_delivery_slots = $default_minimum_delivery_slots
  266. lmtp_mx_address_limit = 5
  267. lmtp_mx_session_limit = 2
  268. lmtp_nested_header_checks =
  269. lmtp_per_record_deadline = no
  270. lmtp_pix_workaround_delay_time = 10s
  271. lmtp_pix_workaround_maps =
  272. lmtp_pix_workaround_threshold_time = 500s
  273. lmtp_pix_workarounds = disable_esmtp,delay_dotcrlf
  274. lmtp_quit_timeout = 300s
  275. lmtp_quote_rfc821_envelope = yes
  276. lmtp_randomize_addresses = yes
  277. lmtp_rcpt_timeout = 300s
  278. lmtp_recipient_limit = $default_recipient_limit
  279. lmtp_recipient_refill_delay = $default_recipient_refill_delay
  280. lmtp_recipient_refill_limit = $default_recipient_refill_limit
  281. lmtp_reply_filter =
  282. lmtp_rset_timeout = 20s
  283. lmtp_sasl_auth_cache_name =
  284. lmtp_sasl_auth_cache_time = 90d
  285. lmtp_sasl_auth_enable = no
  286. lmtp_sasl_auth_soft_bounce = yes
  287. lmtp_sasl_mechanism_filter =
  288. lmtp_sasl_password_maps =
  289. lmtp_sasl_path =
  290. lmtp_sasl_security_options = noplaintext, noanonymous
  291. lmtp_sasl_tls_security_options = $lmtp_sasl_security_options
  292. lmtp_sasl_tls_verified_security_options = $lmtp_sasl_tls_security_options
  293. lmtp_sasl_type = cyrus
  294. lmtp_send_dummy_mail_auth = no
  295. lmtp_send_xforward_command = no
  296. lmtp_sender_dependent_authentication = no
  297. lmtp_skip_5xx_greeting = yes
  298. lmtp_skip_quit_response = no
  299. lmtp_starttls_timeout = 300s
  300. lmtp_tcp_port = 24
  301. lmtp_tls_CAfile =
  302. lmtp_tls_CApath =
  303. lmtp_tls_block_early_mail_reply = no
  304. lmtp_tls_cert_file =
  305. lmtp_tls_ciphers = export
  306. lmtp_tls_dcert_file =
  307. lmtp_tls_dkey_file = $lmtp_tls_dcert_file
  308. lmtp_tls_eccert_file =
  309. lmtp_tls_eckey_file = $lmtp_tls_eccert_file
  310. lmtp_tls_enforce_peername = yes
  311. lmtp_tls_exclude_ciphers =
  312. lmtp_tls_fingerprint_cert_match =
  313. lmtp_tls_fingerprint_digest = md5
  314. lmtp_tls_force_insecure_host_tlsa_lookup = no
  315. lmtp_tls_key_file = $lmtp_tls_cert_file
  316. lmtp_tls_loglevel = 0
  317. lmtp_tls_mandatory_ciphers = medium
  318. lmtp_tls_mandatory_exclude_ciphers =
  319. lmtp_tls_mandatory_protocols = !SSLv2
  320. lmtp_tls_note_starttls_offer = no
  321. lmtp_tls_per_site =
  322. lmtp_tls_policy_maps =
  323. lmtp_tls_protocols = !SSLv2
  324. lmtp_tls_scert_verifydepth = 9
  325. lmtp_tls_secure_cert_match = nexthop
  326. lmtp_tls_security_level =
  327. lmtp_tls_session_cache_database =
  328. lmtp_tls_session_cache_timeout = 3600s
  329. lmtp_tls_trust_anchor_file =
  330. lmtp_tls_verify_cert_match = hostname
  331. lmtp_use_tls = no
  332. lmtp_xforward_timeout = 300s
  333. local_command_shell =
  334. local_delivery_slot_cost = $default_delivery_slot_cost
  335. local_delivery_slot_discount = $default_delivery_slot_discount
  336. local_delivery_slot_loan = $default_delivery_slot_loan
  337. local_destination_concurrency_failed_cohort_limit = $default_destination_concurrency_failed_cohort_limit
  338. local_destination_concurrency_limit = 2
  339. local_destination_concurrency_negative_feedback = $default_destination_concurrency_negative_feedback
  340. local_destination_concurrency_positive_feedback = $default_destination_concurrency_positive_feedback
  341. local_destination_rate_delay = $default_destination_rate_delay
  342. local_destination_recipient_limit = 1
  343. local_extra_recipient_limit = $default_extra_recipient_limit
  344. local_header_rewrite_clients = permit_inet_interfaces
  345. local_initial_destination_concurrency = $initial_destination_concurrency
  346. local_minimum_delivery_slots = $default_minimum_delivery_slots
  347. local_recipient_limit = $default_recipient_limit
  348. local_recipient_maps = proxy:unix:passwd.byname $alias_maps
  349. local_recipient_refill_delay = $default_recipient_refill_delay
  350. local_recipient_refill_limit = $default_recipient_refill_limit
  351. local_transport = local:$myhostname
  352. luser_relay =
  353. mail_name = vcfr1mtai04p
  354. mail_owner = postfix
  355. mail_release_date = 20140115
  356. mail_spool_directory = /mnt/quarantine/storage
  357. mail_version = 2.11.0
  358. mailbox_command =
  359. mailbox_command_maps =
  360. mailbox_delivery_lock = fcntl, dotlock
  361. mailbox_size_limit = 52428800
  362. mailbox_transport =
  363. mailbox_transport_maps =
  364. maildrop_delivery_slot_cost = $default_delivery_slot_cost
  365. maildrop_delivery_slot_discount = $default_delivery_slot_discount
  366. maildrop_delivery_slot_loan = $default_delivery_slot_loan
  367. maildrop_destination_concurrency_failed_cohort_limit = $default_destination_concurrency_failed_cohort_limit
  368. maildrop_destination_concurrency_limit = $default_destination_concurrency_limit
  369. maildrop_destination_concurrency_negative_feedback = $default_destination_concurrency_negative_feedback
  370. maildrop_destination_concurrency_positive_feedback = $default_destination_concurrency_positive_feedback
  371. maildrop_destination_rate_delay = $default_destination_rate_delay
  372. maildrop_destination_recipient_limit = $default_destination_recipient_limit
  373. maildrop_extra_recipient_limit = $default_extra_recipient_limit
  374. maildrop_initial_destination_concurrency = $initial_destination_concurrency
  375. maildrop_minimum_delivery_slots = $default_minimum_delivery_slots
  376. maildrop_recipient_limit = $default_recipient_limit
  377. maildrop_recipient_refill_delay = $default_recipient_refill_delay
  378. maildrop_recipient_refill_limit = $default_recipient_refill_limit
  379. maildrop_time_limit = $command_time_limit
  380. mailq_path = /usr/bin/mailq
  381. manpage_directory = /usr/share/man
  382. maps_rbl_domains =
  383. maps_rbl_reject_code = 554
  384. masquerade_classes = envelope_sender, header_sender, header_recipient
  385. masquerade_domains =
  386. masquerade_exceptions =
  387. master_service_disable =
  388. max_idle = 100s
  389. max_use = 200
  390. maximal_backoff_time = 2h
  391. maximal_queue_lifetime = 7d
  392. message_reject_characters =
  393. message_size_limit = 52428800
  394. message_strip_characters =
  395. milter_command_timeout = 1m
  396. milter_connect_macros = j {daemon_name} v
  397. milter_connect_timeout = 30s
  398. milter_content_timeout = 1m
  399. milter_data_macros = i
  400. milter_default_action = tempfail
  401. milter_end_of_data_macros = i
  402. milter_end_of_header_macros = i
  403. milter_header_checks =
  404. milter_helo_macros = {tls_version} {cipher} {cipher_bits} {cert_subject} {cert_issuer}
  405. milter_macro_daemon_name = $myhostname
  406. milter_macro_v = $mail_name $mail_version
  407. milter_mail_macros = i {auth_type} {auth_authen} {auth_author} {mail_addr} {mail_host} {mail_mailer} {client_addr}
  408. milter_protocol = 6
  409. milter_rcpt_macros = i {rcpt_addr} {rcpt_host} {rcpt_mailer}
  410. milter_unknown_command_macros =
  411. mime_boundary_length_limit = 2048
  412. mime_header_checks =
  413. mime_nesting_limit = 100
  414. minimal_backoff_time = 5m
  415. multi_instance_directories =
  416. multi_instance_enable = no
  417. multi_instance_group =
  418. multi_instance_name =
  419. multi_instance_wrapper =
  420. multi_recipient_bounce_reject_code = 550
  421. mydestination = localhost,localhost.localdomain
  422. mydomain = $myorigin
  423. myhostname = XXXXXX.XXXX.XXX
  424. mynetworks = 127.0.0.0/8
  425. mynetworks_style = subnet
  426. myorigin = cloud.vadesecure.com
  427. nested_header_checks = $header_checks
  428. newaliases_path = /usr/bin/newaliases
  429. non_fqdn_reject_code = 504
  430. non_smtpd_milters =
  431. notify_classes =
  432. old-cyrus_delivery_slot_cost = $default_delivery_slot_cost
  433. old-cyrus_delivery_slot_discount = $default_delivery_slot_discount
  434. old-cyrus_delivery_slot_loan = $default_delivery_slot_loan
  435. old-cyrus_destination_concurrency_failed_cohort_limit = $default_destination_concurrency_failed_cohort_limit
  436. old-cyrus_destination_concurrency_limit = $default_destination_concurrency_limit
  437. old-cyrus_destination_concurrency_negative_feedback = $default_destination_concurrency_negative_feedback
  438. old-cyrus_destination_concurrency_positive_feedback = $default_destination_concurrency_positive_feedback
  439. old-cyrus_destination_rate_delay = $default_destination_rate_delay
  440. old-cyrus_destination_recipient_limit = $default_destination_recipient_limit
  441. old-cyrus_extra_recipient_limit = $default_extra_recipient_limit
  442. old-cyrus_initial_destination_concurrency = $initial_destination_concurrency
  443. old-cyrus_minimum_delivery_slots = $default_minimum_delivery_slots
  444. old-cyrus_recipient_limit = $default_recipient_limit
  445. old-cyrus_recipient_refill_delay = $default_recipient_refill_delay
  446. old-cyrus_recipient_refill_limit = $default_recipient_refill_limit
  447. old-cyrus_time_limit = $command_time_limit
  448. owner_request_special = yes
  449. parent_domain_matches_subdomains = debug_peer_list,fast_flush_domains,mynetworks,permit_mx_backup_networks,qmqpd_authorized_clients,relay_domains,smtpd_access_maps
  450. permit_mx_backup_networks =
  451. pickup_service_name = pickup
  452. plaintext_reject_code = 450
  453. postmulti_control_commands = reload flush
  454. postmulti_start_commands = start
  455. postmulti_stop_commands = stop abort drain quick-stop
  456. postscreen_access_list = permit_mynetworks,cidr:/etc/postfix/postscreen_access.cidr
  457. postscreen_bare_newline_action = ignore
  458. postscreen_bare_newline_enable = no
  459. postscreen_bare_newline_ttl = 30d
  460. postscreen_blacklist_action = ignore
  461. postscreen_cache_cleanup_interval = 12h
  462. postscreen_cache_map = btree:$data_directory/postscreen_cache
  463. postscreen_cache_retention_time = 7d
  464. postscreen_client_connection_count_limit = $smtpd_client_connection_count_limit
  465. postscreen_command_count_limit = 20
  466. postscreen_command_filter =
  467. postscreen_command_time_limit = ${stress?10}${stress:300}s
  468. postscreen_disable_vrfy_command = $disable_vrfy_command
  469. postscreen_discard_ehlo_keyword_address_maps = $smtpd_discard_ehlo_keyword_address_maps
  470. postscreen_discard_ehlo_keywords = $smtpd_discard_ehlo_keywords
  471. postscreen_dnsbl_action = drop
  472. postscreen_dnsbl_reply_map =
  473. postscreen_dnsbl_sites = XXXX,XXXXX
  474. postscreen_dnsbl_threshold = 1
  475. postscreen_dnsbl_ttl = 1h
  476. postscreen_dnsbl_whitelist_threshold = 0
  477. postscreen_enforce_tls = $smtpd_enforce_tls
  478. postscreen_expansion_filter = $smtpd_expansion_filter
  479. postscreen_forbidden_commands = $smtpd_forbidden_commands
  480. postscreen_greet_action = ignore
  481. postscreen_greet_banner = $smtpd_banner
  482. postscreen_greet_ttl = 1d
  483. postscreen_greet_wait = 1s
  484. postscreen_helo_required = $smtpd_helo_required
  485. postscreen_non_smtp_command_action = drop
  486. postscreen_non_smtp_command_enable = no
  487. postscreen_non_smtp_command_ttl = 30d
  488. postscreen_pipelining_action = enforce
  489. postscreen_pipelining_enable = no
  490. postscreen_pipelining_ttl = 30d
  491. postscreen_post_queue_limit = $default_process_limit
  492. postscreen_pre_queue_limit = $default_process_limit
  493. postscreen_reject_footer = $smtpd_reject_footer
  494. postscreen_tls_security_level = $smtpd_tls_security_level
  495. postscreen_upstream_proxy_protocol =
  496. postscreen_upstream_proxy_timeout = 5s
  497. postscreen_use_tls = $smtpd_use_tls
  498. postscreen_watchdog_timeout = 10s
  499. postscreen_whitelist_interfaces = static:all
  500. prepend_delivered_header = command, file, forward
  501. process_id = 39568
  502. process_id_directory = pid
  503. process_name = postconf
  504. propagate_unmatched_extensions = canonical, virtual
  505. proxy_interfaces =
  506. proxy_read_maps = $local_recipient_maps, $mydestination, $virtual_alias_maps, $virtual_alias_domains, $virtual_mailbox_maps, $virtual_mailbox_domains, $relay_recipient_maps, $relay_domains, $canonical_maps, $sender_canonical_maps, $recipient_canonical_maps, $relocated_maps, $transport_maps, $mynetworks, $sender_bcc_maps, $recipient_bcc_maps, $smtp_generic_maps, $lmtp_generic_maps, proxy:hash:/etc/postfix/FORCEROUTE_1, proxy:hash:/etc/postfix/FORCEROUTE-2, proxy:ldap:/etc/postfix/ldap.cf,
  507. proxy_write_maps = $smtp_sasl_auth_cache_name $lmtp_sasl_auth_cache_name $address_verify_map $postscreen_cache_map
  508. proxymap_service_name = proxymap
  509. proxywrite_service_name = proxywrite
  510. qmgr_clog_warn_time = 300s
  511. qmgr_daemon_timeout = 1000s
  512. qmgr_fudge_factor = 100
  513. qmgr_ipc_timeout = 60s
  514. qmgr_message_active_limit = 20000
  515. qmgr_message_recipient_limit = 20000
  516. qmgr_message_recipient_minimum = 10
  517. qmqpd_authorized_clients =
  518. qmqpd_client_port_logging = no
  519. qmqpd_error_delay = 1s
  520. qmqpd_timeout = 300s
  521. queue_directory = /var/spool/postfix/
  522. queue_file_attribute_count_limit = 100
  523. queue_minfree = 0
  524. queue_run_delay = 5m
  525. queue_service_name = qmgr
  526. rbl_reply_maps =
  527. readme_directory = /usr/share/doc/postfix
  528. receive_override_options =
  529. recipient_bcc_maps =
  530. recipient_canonical_classes = envelope_recipient, header_recipient
  531. recipient_canonical_maps =
  532. recipient_delimiter = +
  533. reject_code = 554
  534. reject_tempfail_action = defer_if_permit
  535. relay_clientcerts =
  536. relay_delivery_slot_cost = $default_delivery_slot_cost
  537. relay_delivery_slot_discount = $default_delivery_slot_discount
  538. relay_delivery_slot_loan = $default_delivery_slot_loan
  539. relay_destination_concurrency_failed_cohort_limit = $default_destination_concurrency_failed_cohort_limit
  540. relay_destination_concurrency_limit = $default_destination_concurrency_limit
  541. relay_destination_concurrency_negative_feedback = $default_destination_concurrency_negative_feedback
  542. relay_destination_concurrency_positive_feedback = $default_destination_concurrency_positive_feedback
  543. relay_destination_rate_delay = $default_destination_rate_delay
  544. relay_destination_recipient_limit = $default_destination_recipient_limit
  545. relay_domains = static:all
  546. relay_domains_reject_code = 554
  547. relay_extra_recipient_limit = $default_extra_recipient_limit
  548. relay_initial_destination_concurrency = $initial_destination_concurrency
  549. relay_minimum_delivery_slots = $default_minimum_delivery_slots
  550. relay_recipient_limit = $default_recipient_limit
  551. relay_recipient_maps =
  552. relay_recipient_refill_delay = $default_recipient_refill_delay
  553. relay_recipient_refill_limit = $default_recipient_refill_limit
  554. relay_transport = relay
  555. relayhost =
  556. relocated_maps =
  557. remote_header_rewrite_domain =
  558. require_home_directory = no
  559. reset_owner_alias = no
  560. resolve_dequoted_address = yes
  561. resolve_null_domain = no
  562. resolve_numeric_domain = no
  563. retry_delivery_slot_cost = $default_delivery_slot_cost
  564. retry_delivery_slot_discount = $default_delivery_slot_discount
  565. retry_delivery_slot_loan = $default_delivery_slot_loan
  566. retry_destination_concurrency_failed_cohort_limit = $default_destination_concurrency_failed_cohort_limit
  567. retry_destination_concurrency_limit = $default_destination_concurrency_limit
  568. retry_destination_concurrency_negative_feedback = $default_destination_concurrency_negative_feedback
  569. retry_destination_concurrency_positive_feedback = $default_destination_concurrency_positive_feedback
  570. retry_destination_rate_delay = $default_destination_rate_delay
  571. retry_destination_recipient_limit = $default_destination_recipient_limit
  572. retry_extra_recipient_limit = $default_extra_recipient_limit
  573. retry_initial_destination_concurrency = $initial_destination_concurrency
  574. retry_minimum_delivery_slots = $default_minimum_delivery_slots
  575. retry_recipient_limit = $default_recipient_limit
  576. retry_recipient_refill_delay = $default_recipient_refill_delay
  577. retry_recipient_refill_limit = $default_recipient_refill_limit
  578. rewrite_service_name = rewrite
  579. sample_directory = /usr/share/doc/postfix/examples
  580. send_cyrus_sasl_authzid = no
  581. sender_bcc_maps =
  582. sender_canonical_classes = envelope_sender, header_sender
  583. sender_canonical_maps =
  584. sender_dependent_default_transport_maps =
  585. sender_dependent_relayhost_maps =
  586. sendmail_fix_line_endings = always
  587. sendmail_path = /usr/sbin/sendmail
  588. service_throttle_time = 60s
  589. setgid_group = postdrop
  590. show_user_unknown_table_name = yes
  591. showq_service_name = showq
  592. slow_delivery_slot_cost = $default_delivery_slot_cost
  593. slow_delivery_slot_discount = $default_delivery_slot_discount
  594. slow_delivery_slot_loan = $default_delivery_slot_loan
  595. slow_destination_concurrency_failed_cohort_limit = $default_destination_concurrency_failed_cohort_limit
  596. slow_destination_concurrency_limit = $default_destination_concurrency_limit
  597. slow_destination_concurrency_negative_feedback = $default_destination_concurrency_negative_feedback
  598. slow_destination_concurrency_positive_feedback = $default_destination_concurrency_positive_feedback
  599. slow_destination_rate_delay = $default_destination_rate_delay
  600. slow_destination_recipient_limit = $default_destination_recipient_limit
  601. slow_extra_recipient_limit = $default_extra_recipient_limit
  602. slow_initial_destination_concurrency = $initial_destination_concurrency
  603. slow_minimum_delivery_slots = $default_minimum_delivery_slots
  604. slow_recipient_limit = $default_recipient_limit
  605. slow_recipient_refill_delay = $default_recipient_refill_delay
  606. slow_recipient_refill_limit = $default_recipient_refill_limit
  607. smtp.lowreputation_delivery_slot_cost = $default_delivery_slot_cost
  608. smtp.lowreputation_delivery_slot_discount = $default_delivery_slot_discount
  609. smtp.lowreputation_delivery_slot_loan = $default_delivery_slot_loan
  610. smtp.lowreputation_destination_concurrency_failed_cohort_limit = $default_destination_concurrency_failed_cohort_limit
  611. smtp.lowreputation_destination_concurrency_limit = $default_destination_concurrency_limit
  612. smtp.lowreputation_destination_concurrency_negative_feedback = $default_destination_concurrency_negative_feedback
  613. smtp.lowreputation_destination_concurrency_positive_feedback = $default_destination_concurrency_positive_feedback
  614. smtp.lowreputation_destination_rate_delay = $default_destination_rate_delay
  615. smtp.lowreputation_destination_recipient_limit = $default_destination_recipient_limit
  616. smtp.lowreputation_extra_recipient_limit = $default_extra_recipient_limit
  617. smtp.lowreputation_initial_destination_concurrency = $initial_destination_concurrency
  618. smtp.lowreputation_minimum_delivery_slots = $default_minimum_delivery_slots
  619. smtp.lowreputation_recipient_limit = $default_recipient_limit
  620. smtp.lowreputation_recipient_refill_delay = $default_recipient_refill_delay
  621. smtp.lowreputation_recipient_refill_limit = $default_recipient_refill_limit
  622. smtp.quarantine_delivery_slot_cost = $default_delivery_slot_cost
  623. smtp.quarantine_delivery_slot_discount = $default_delivery_slot_discount
  624. smtp.quarantine_delivery_slot_loan = $default_delivery_slot_loan
  625. smtp.quarantine_destination_concurrency_failed_cohort_limit = $default_destination_concurrency_failed_cohort_limit
  626. smtp.quarantine_destination_concurrency_limit = $default_destination_concurrency_limit
  627. smtp.quarantine_destination_concurrency_negative_feedback = $default_destination_concurrency_negative_feedback
  628. smtp.quarantine_destination_concurrency_positive_feedback = $default_destination_concurrency_positive_feedback
  629. smtp.quarantine_destination_rate_delay = $default_destination_rate_delay
  630. smtp.quarantine_destination_recipient_limit = $default_destination_recipient_limit
  631. smtp.quarantine_extra_recipient_limit = $default_extra_recipient_limit
  632. smtp.quarantine_initial_destination_concurrency = $initial_destination_concurrency
  633. smtp.quarantine_minimum_delivery_slots = $default_minimum_delivery_slots
  634. smtp.quarantine_recipient_limit = $default_recipient_limit
  635. smtp.quarantine_recipient_refill_delay = $default_recipient_refill_delay
  636. smtp.quarantine_recipient_refill_limit = $default_recipient_refill_limit
  637. smtp.split_delivery_slot_cost = $default_delivery_slot_cost
  638. smtp.split_delivery_slot_discount = $default_delivery_slot_discount
  639. smtp.split_delivery_slot_loan = $default_delivery_slot_loan
  640. smtp.split_destination_concurrency_failed_cohort_limit = $default_destination_concurrency_failed_cohort_limit
  641. smtp.split_destination_concurrency_limit = $default_destination_concurrency_limit
  642. smtp.split_destination_concurrency_negative_feedback = $default_destination_concurrency_negative_feedback
  643. smtp.split_destination_concurrency_positive_feedback = $default_destination_concurrency_positive_feedback
  644. smtp.split_destination_rate_delay = $default_destination_rate_delay
  645. smtp.split_destination_recipient_limit = 1
  646. smtp.split_extra_recipient_limit = $default_extra_recipient_limit
  647. smtp.split_initial_destination_concurrency = $initial_destination_concurrency
  648. smtp.split_minimum_delivery_slots = $default_minimum_delivery_slots
  649. smtp.split_recipient_limit = $default_recipient_limit
  650. smtp.split_recipient_refill_delay = $default_recipient_refill_delay
  651. smtp.split_recipient_refill_limit = $default_recipient_refill_limit
  652. smtp.verify_delivery_slot_cost = $default_delivery_slot_cost
  653. smtp.verify_delivery_slot_discount = $default_delivery_slot_discount
  654. smtp.verify_delivery_slot_loan = $default_delivery_slot_loan
  655. smtp.verify_destination_concurrency_failed_cohort_limit = $default_destination_concurrency_failed_cohort_limit
  656. smtp.verify_destination_concurrency_limit = $default_destination_concurrency_limit
  657. smtp.verify_destination_concurrency_negative_feedback = $default_destination_concurrency_negative_feedback
  658. smtp.verify_destination_concurrency_positive_feedback = $default_destination_concurrency_positive_feedback
  659. smtp.verify_destination_rate_delay = $default_destination_rate_delay
  660. smtp.verify_destination_recipient_limit = $default_destination_recipient_limit
  661. smtp.verify_extra_recipient_limit = $default_extra_recipient_limit
  662. smtp.verify_initial_destination_concurrency = $initial_destination_concurrency
  663. smtp.verify_minimum_delivery_slots = $default_minimum_delivery_slots
  664. smtp.verify_recipient_limit = $default_recipient_limit
  665. smtp.verify_recipient_refill_delay = $default_recipient_refill_delay
  666. smtp.verify_recipient_refill_limit = $default_recipient_refill_limit
  667. smtp_address_preference = any
  668. smtp_always_send_ehlo = yes
  669. smtp_bind_address = X.X.X.X
  670. smtp_bind_address6 =
  671. smtp_body_checks =
  672. smtp_cname_overrides_servername = no
  673. smtp_connect_timeout = 30s
  674. smtp_connection_cache_destinations =
  675. smtp_connection_cache_on_demand = yes
  676. smtp_connection_cache_time_limit = 2s
  677. smtp_connection_reuse_count_limit = 0
  678. smtp_connection_reuse_time_limit = 300s
  679. smtp_data_done_timeout = 600s
  680. smtp_data_init_timeout = 120s
  681. smtp_data_xfer_timeout = 180s
  682. smtp_defer_if_no_mx_address_found = no
  683. smtp_delivery_slot_cost = $default_delivery_slot_cost
  684. smtp_delivery_slot_discount = $default_delivery_slot_discount
  685. smtp_delivery_slot_loan = $default_delivery_slot_loan
  686. smtp_destination_concurrency_failed_cohort_limit = $default_destination_concurrency_failed_cohort_limit
  687. smtp_destination_concurrency_limit = $default_destination_concurrency_limit
  688. smtp_destination_concurrency_negative_feedback = $default_destination_concurrency_negative_feedback
  689. smtp_destination_concurrency_positive_feedback = $default_destination_concurrency_positive_feedback
  690. smtp_destination_rate_delay = $default_destination_rate_delay
  691. smtp_destination_recipient_limit = $default_destination_recipient_limit
  692. smtp_discard_ehlo_keyword_address_maps =
  693. smtp_discard_ehlo_keywords =
  694. smtp_dns_resolver_options =
  695. smtp_dns_support_level =
  696. smtp_enforce_tls = no
  697. smtp_extra_recipient_limit = $default_extra_recipient_limit
  698. smtp_fallback_relay = $fallback_relay
  699. smtp_generic_maps = pcre:/etc/postfix/smtp_generic_maps.pcre
  700. smtp_header_checks =
  701. smtp_helo_name = $myhostname
  702. smtp_helo_timeout = 300s
  703. smtp_host_lookup = native,dns
  704. smtp_initial_destination_concurrency = $initial_destination_concurrency
  705. smtp_line_length_limit = 998
  706. smtp_mail_timeout = 300s
  707. smtp_mime_header_checks =
  708. smtp_minimum_delivery_slots = $default_minimum_delivery_slots
  709. smtp_mx_address_limit = 5
  710. smtp_mx_session_limit = 2
  711. smtp_nested_header_checks =
  712. smtp_never_send_ehlo = no
  713. smtp_per_record_deadline = no
  714. smtp_pix_workaround_delay_time = 10s
  715. smtp_pix_workaround_maps =
  716. smtp_pix_workaround_threshold_time = 500s
  717. smtp_pix_workarounds = disable_esmtp,delay_dotcrlf
  718. smtp_quit_timeout = 300s
  719. smtp_quote_rfc821_envelope = yes
  720. smtp_randomize_addresses = yes
  721. smtp_rcpt_timeout = 300s
  722. smtp_recipient_limit = $default_recipient_limit
  723. smtp_recipient_refill_delay = $default_recipient_refill_delay
  724. smtp_recipient_refill_limit = $default_recipient_refill_limit
  725. smtp_reply_filter =
  726. smtp_rset_timeout = 20s
  727. smtp_sasl_auth_cache_name =
  728. smtp_sasl_auth_cache_time = 90d
  729. smtp_sasl_auth_enable = no
  730. smtp_sasl_auth_soft_bounce = yes
  731. smtp_sasl_mechanism_filter =
  732. smtp_sasl_password_maps =
  733. smtp_sasl_path =
  734. smtp_sasl_security_options = noplaintext, noanonymous
  735. smtp_sasl_tls_security_options = $smtp_sasl_security_options
  736. smtp_sasl_tls_verified_security_options = $smtp_sasl_tls_security_options
  737. smtp_sasl_type = cyrus
  738. smtp_send_dummy_mail_auth = no
  739. smtp_send_xforward_command = no
  740. smtp_sender_dependent_authentication = no
  741. smtp_skip_5xx_greeting = yes
  742. smtp_skip_quit_response = yes
  743. smtp_starttls_timeout = 300s
  744. smtp_tls_CAfile = /etc/ssl/certs/ca-certificates.crt
  745. smtp_tls_CApath =
  746. smtp_tls_block_early_mail_reply = no
  747. smtp_tls_cert_file =
  748. smtp_tls_ciphers = export
  749. smtp_tls_dcert_file =
  750. smtp_tls_dkey_file = $smtp_tls_dcert_file
  751. smtp_tls_eccert_file =
  752. smtp_tls_eckey_file = $smtp_tls_eccert_file
  753. smtp_tls_enforce_peername = yes
  754. smtp_tls_exclude_ciphers =
  755. smtp_tls_fingerprint_cert_match =
  756. smtp_tls_fingerprint_digest = md5
  757. smtp_tls_force_insecure_host_tlsa_lookup = no
  758. smtp_tls_key_file = $smtp_tls_cert_file
  759. smtp_tls_loglevel = 1
  760. smtp_tls_mandatory_ciphers = medium
  761. smtp_tls_mandatory_exclude_ciphers =
  762. smtp_tls_mandatory_protocols = !SSLv2,!SSLv3
  763. smtp_tls_note_starttls_offer = no
  764. smtp_tls_per_site =
  765. smtp_tls_policy_maps =
  766. smtp_tls_protocols = !SSLv2,!SSLv3
  767. smtp_tls_scert_verifydepth = 9
  768. smtp_tls_secure_cert_match = nexthop, dot-nexthop
  769. smtp_tls_security_level = may
  770. smtp_tls_session_cache_database = btree:/var/lib/postfix/smtp_scache
  771. smtp_tls_session_cache_timeout = 3600s
  772. smtp_tls_trust_anchor_file =
  773. smtp_tls_verify_cert_match = hostname
  774. smtp_use_tls = no
  775. smtp_xforward_timeout = 300s
  776. smtpd_authorized_verp_clients = $authorized_verp_clients
  777. smtpd_authorized_xclient_hosts =
  778. smtpd_authorized_xforward_hosts =
  779. smtpd_banner = $myhostname ESMTP $mail_name
  780. smtpd_client_connection_count_limit = 5
  781. smtpd_client_connection_rate_limit = 0
  782. smtpd_client_event_limit_exceptions = /etc/postfix/ratelimiting
  783. smtpd_client_message_rate_limit = 20000
  784. smtpd_client_new_tls_session_rate_limit = 0
  785. smtpd_client_port_logging = no
  786. smtpd_client_recipient_rate_limit = 0
  787. smtpd_client_restrictions = reject_non_fqdn_sender, reject_non_fqdn_recipient, permit_mynetworks, permit
  788. smtpd_command_filter =
  789. smtpd_data_restrictions =
  790. smtpd_delay_open_until_valid_rcpt = yes
  791. smtpd_delay_reject = no
  792. smtpd_discard_ehlo_keyword_address_maps =
  793. smtpd_discard_ehlo_keywords =
  794. smtpd_end_of_data_restrictions =
  795. smtpd_enforce_tls = no
  796. smtpd_error_sleep_time = 0
  797. smtpd_etrn_restrictions =
  798. smtpd_expansion_filter = \t\40!"#$%&'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\\]^_`abcdefghijklmnopqrstuvwxyz{|}~
  799. smtpd_forbidden_commands = CONNECT GET POST
  800. smtpd_hard_error_limit = 3
  801. smtpd_helo_required = yes
  802. smtpd_helo_restrictions =
  803. smtpd_history_flush_threshold = 100
  804. smtpd_junk_command_limit = ${stress?1}${stress:100}
  805. smtpd_log_access_permit_actions =
  806. smtpd_milter_close_on_error = no
  807. smtpd_milters = inet:127.0.0.1:8892
  808. smtpd_noop_commands =
  809. smtpd_null_access_lookup_key = <>
  810. smtpd_peername_lookup = yes
  811. smtpd_per_record_deadline = ${stress?yes}${stress:no}
  812. smtpd_policy_service_max_idle = 300s
  813. smtpd_policy_service_max_ttl = 1000s
  814. smtpd_policy_service_timeout = 100s
  815. smtpd_proxy_ehlo = $myhostname
  816. smtpd_proxy_filter =
  817. smtpd_proxy_options =
  818. smtpd_proxy_timeout = 100s
  819. smtpd_recipient_limit = 100
  820. smtpd_recipient_overshoot_limit = 1000
  821. smtpd_recipient_restrictions = reject_non_fqdn_recipient, reject_unauth_destination, permit
  822. smtpd_reject_footer =
  823. smtpd_reject_unlisted_recipient = yes
  824. smtpd_reject_unlisted_sender = no
  825. smtpd_relay_restrictions = permit_mynetworks, permit_sasl_authenticated, defer_unauth_destination
  826. smtpd_restriction_classes =
  827. smtpd_sasl_auth_enable = no
  828. smtpd_sasl_authenticated_header = no
  829. smtpd_sasl_exceptions_networks =
  830. smtpd_sasl_local_domain =
  831. smtpd_sasl_path = smtpd
  832. smtpd_sasl_security_options = noanonymous
  833. smtpd_sasl_service = smtp
  834. smtpd_sasl_tls_security_options = $smtpd_sasl_security_options
  835. smtpd_sasl_type = cyrus
  836. smtpd_sender_login_maps =
  837. smtpd_sender_restrictions = check_sender_access pcre:/etc/postfix/reject_sender.pcre, reject_unknown_sender_domain, reject_non_fqdn_sender
  838. smtpd_service_name = smtpd
  839. smtpd_soft_error_limit = 5
  840. smtpd_starttls_timeout = ${stress?10}${stress:300}s
  841. smtpd_timeout = ${stress?10}${stress:300}s
  842. smtpd_tls_CAfile = /etc/postfix/tls/cacert.pem
  843. smtpd_tls_CApath =
  844. smtpd_tls_always_issue_session_ids = yes
  845. smtpd_tls_ask_ccert = no
  846. smtpd_tls_auth_only = no
  847. smtpd_tls_ccert_verifydepth = 9
  848. smtpd_tls_cert_file = /etc/postfix/tls/smtpd.crt
  849. smtpd_tls_ciphers = export
  850. smtpd_tls_dcert_file =
  851. smtpd_tls_dh1024_param_file =
  852. smtpd_tls_dh512_param_file =
  853. smtpd_tls_dkey_file = $smtpd_tls_dcert_file
  854. smtpd_tls_eccert_file =
  855. smtpd_tls_eckey_file = $smtpd_tls_eccert_file
  856. smtpd_tls_eecdh_grade = strong
  857. smtpd_tls_exclude_ciphers = aNULL, RC4, EXP-RC2-CBC-MD5, EXP-DES-CBC-SHA, DES-CBC-SHA, DES-CBC3-SHA, EDH-RSA-DES-CBC-SHA
  858. smtpd_tls_fingerprint_digest = md5
  859. smtpd_tls_key_file = /etc/postfix/tls/smtpd.key
  860. smtpd_tls_loglevel = 1
  861. smtpd_tls_mandatory_ciphers = medium
  862. smtpd_tls_mandatory_exclude_ciphers =
  863. smtpd_tls_mandatory_protocols = !SSLv2,!SSLv3
  864. smtpd_tls_protocols = !SSLv2,!SSLv3
  865. smtpd_tls_received_header = yes
  866. smtpd_tls_req_ccert = no
  867. smtpd_tls_security_level =
  868. smtpd_tls_session_cache_database = btree:/var/lib/postfix/smtpd_scache
  869. smtpd_tls_session_cache_timeout = 3600s
  870. smtpd_tls_wrappermode = no
  871. smtpd_upstream_proxy_protocol =
  872. smtpd_upstream_proxy_timeout = 5s
  873. smtpd_use_tls = yes
  874. soft_bounce = no
  875. stale_lock_time = 500s
  876. stress =
  877. strict_7bit_headers = no
  878. strict_8bitmime = no
  879. strict_8bitmime_body = no
  880. strict_mailbox_ownership = yes
  881. strict_mime_encoding_domain = no
  882. strict_rfc821_envelopes = no
  883. sun_mailtool_compatibility = no
  884. swap_bangpath = yes
  885. syslog_facility = mail
  886. syslog_name = default
  887. tcp_windowsize = 0
  888. tls_append_default_CA = no
  889. tls_daemon_random_bytes = 32
  890. tls_dane_digest_agility = on
  891. tls_dane_digests = sha512 sha256
  892. tls_dane_trust_anchor_digest_enable = yes
  893. tls_disable_workarounds =
  894. tls_eecdh_strong_curve = prime256v1
  895. tls_eecdh_ultra_curve = secp384r1
  896. tls_export_cipherlist = aNULL:-aNULL:ALL:+RC4:@STRENGTH
  897. tls_high_cipherlist = aNULL:-aNULL:ALL:!EXPORT:!LOW:!MEDIUM:+RC4:@STRENGTH
  898. tls_legacy_public_key_fingerprints = no
  899. tls_low_cipherlist = aNULL:-aNULL:ALL:!EXPORT:+RC4:@STRENGTH
  900. tls_medium_cipherlist = aNULL:-aNULL:ALL:!EXPORT:!LOW:+RC4:@STRENGTH
  901. tls_null_cipherlist = eNULL:!aNULL
  902. tls_preempt_cipherlist = no
  903. tls_random_bytes = 32
  904. tls_random_exchange_name = ${data_directory}/prng_exch
  905. tls_random_prng_update_period = 3600s
  906. tls_random_reseed_period = 3600s
  907. tls_random_source = dev:/dev/urandom
  908. tls_ssl_options =
  909. tls_wildcard_matches_multiple_labels = yes
  910. tlsmgr_service_name = tlsmgr
  911. tlsproxy_enforce_tls = $smtpd_enforce_tls
  912. tlsproxy_service_name = tlsproxy
  913. tlsproxy_tls_CAfile = $smtpd_tls_CAfile
  914. tlsproxy_tls_CApath = $smtpd_tls_CApath
  915. tlsproxy_tls_always_issue_session_ids = $smtpd_tls_always_issue_session_ids
  916. tlsproxy_tls_ask_ccert = $smtpd_tls_ask_ccert
  917. tlsproxy_tls_ccert_verifydepth = $smtpd_tls_ccert_verifydepth
  918. tlsproxy_tls_cert_file = $smtpd_tls_cert_file
  919. tlsproxy_tls_ciphers = $smtpd_tls_ciphers
  920. tlsproxy_tls_dcert_file = $smtpd_tls_dcert_file
  921. tlsproxy_tls_dh1024_param_file = $smtpd_tls_dh1024_param_file
  922. tlsproxy_tls_dh512_param_file = $smtpd_tls_dh512_param_file
  923. tlsproxy_tls_dkey_file = $smtpd_tls_dkey_file
  924. tlsproxy_tls_eccert_file = $smtpd_tls_eccert_file
  925. tlsproxy_tls_eckey_file = $smtpd_tls_eckey_file
  926. tlsproxy_tls_eecdh_grade = $smtpd_tls_eecdh_grade
  927. tlsproxy_tls_exclude_ciphers = $smtpd_tls_exclude_ciphers
  928. tlsproxy_tls_fingerprint_digest = $smtpd_tls_fingerprint_digest
  929. tlsproxy_tls_key_file = $smtpd_tls_key_file
  930. tlsproxy_tls_loglevel = $smtpd_tls_loglevel
  931. tlsproxy_tls_mandatory_ciphers = $smtpd_tls_mandatory_ciphers
  932. tlsproxy_tls_mandatory_exclude_ciphers = $smtpd_tls_mandatory_exclude_ciphers
  933. tlsproxy_tls_mandatory_protocols = $smtpd_tls_mandatory_protocols
  934. tlsproxy_tls_protocols = $smtpd_tls_protocols
  935. tlsproxy_tls_req_ccert = $smtpd_tls_req_ccert
  936. tlsproxy_tls_security_level = $smtpd_tls_security_level
  937. tlsproxy_use_tls = $smtpd_use_tls
  938. tlsproxy_watchdog_timeout = 10s
  939. trace_service_name = trace
  940. transport_maps = pcre:/etc/postfix/transport.pcre
  941. transport_retry_time = 60s
  942. trigger_timeout = 10s
  943. undisclosed_recipients_header =
  944. unknown_address_reject_code = 450
  945. unknown_address_tempfail_action = $reject_tempfail_action
  946. unknown_client_reject_code = 450
  947. unknown_helo_hostname_tempfail_action = $reject_tempfail_action
  948. unknown_hostname_reject_code = 450
  949. unknown_local_recipient_reject_code = 550
  950. unknown_relay_recipient_reject_code = 550
  951. unknown_virtual_alias_reject_code = 550
  952. unknown_virtual_mailbox_reject_code = 550
  953. unverified_recipient_defer_code = 450
  954. unverified_recipient_reject_code = 550
  955. unverified_recipient_reject_reason =
  956. unverified_recipient_tempfail_action = $reject_tempfail_action
  957. unverified_sender_defer_code = 450
  958. unverified_sender_reject_code = 450
  959. unverified_sender_reject_reason =
  960. unverified_sender_tempfail_action = $reject_tempfail_action
  961. uucp_delivery_slot_cost = $default_delivery_slot_cost
  962. uucp_delivery_slot_discount = $default_delivery_slot_discount
  963. uucp_delivery_slot_loan = $default_delivery_slot_loan
  964. uucp_destination_concurrency_failed_cohort_limit = $default_destination_concurrency_failed_cohort_limit
  965. uucp_destination_concurrency_limit = $default_destination_concurrency_limit
  966. uucp_destination_concurrency_negative_feedback = $default_destination_concurrency_negative_feedback
  967. uucp_destination_concurrency_positive_feedback = $default_destination_concurrency_positive_feedback
  968. uucp_destination_rate_delay = $default_destination_rate_delay
  969. uucp_destination_recipient_limit = $default_destination_recipient_limit
  970. uucp_extra_recipient_limit = $default_extra_recipient_limit
  971. uucp_initial_destination_concurrency = $initial_destination_concurrency
  972. uucp_minimum_delivery_slots = $default_minimum_delivery_slots
  973. uucp_recipient_limit = $default_recipient_limit
  974. uucp_recipient_refill_delay = $default_recipient_refill_delay
  975. uucp_recipient_refill_limit = $default_recipient_refill_limit
  976. uucp_time_limit = $command_time_limit
  977. verp_delimiter_filter = -=+
  978. virtual_alias_domains = $virtual_alias_maps
  979. virtual_alias_expansion_limit = 1000
  980. virtual_alias_maps = $virtual_maps
  981. virtual_alias_recursion_limit = 1000
  982. virtual_delivery_slot_cost = $default_delivery_slot_cost
  983. virtual_delivery_slot_discount = $default_delivery_slot_discount
  984. virtual_delivery_slot_loan = $default_delivery_slot_loan
  985. virtual_destination_concurrency_failed_cohort_limit = $default_destination_concurrency_failed_cohort_limit
  986. virtual_destination_concurrency_limit = $default_destination_concurrency_limit
  987. virtual_destination_concurrency_negative_feedback = $default_destination_concurrency_negative_feedback
  988. virtual_destination_concurrency_positive_feedback = $default_destination_concurrency_positive_feedback
  989. virtual_destination_rate_delay = $default_destination_rate_delay
  990. virtual_destination_recipient_limit = $default_destination_recipient_limit
  991. virtual_extra_recipient_limit = $default_extra_recipient_limit
  992. virtual_gid_maps = static:999
  993. virtual_initial_destination_concurrency = $initial_destination_concurrency
  994. virtual_mailbox_base = /mnt/quarantine/storage
  995. virtual_mailbox_domains = /etc/postfix/virtual_domains
  996. virtual_mailbox_limit = 0
  997. virtual_mailbox_limit_inbox = no
  998. virtual_mailbox_limit_maps =
  999. virtual_mailbox_limit_override = no
  1000. virtual_mailbox_lock = fcntl, dotlock
  1001. virtual_mailbox_maps = pcre:/etc/postfix/virtual_mailbox_maps.pcre
  1002. virtual_maildir_extended = no
  1003. virtual_maildir_filter = no
  1004. virtual_maildir_filter_maps =
  1005. virtual_maildir_limit_message = Sorry, the user's maildir has overdrawn his diskspace quota, please try again later.
  1006. virtual_maildir_limit_message_maps =
  1007. virtual_maildir_suffix =
  1008. virtual_minimum_delivery_slots = $default_minimum_delivery_slots
  1009. virtual_minimum_uid = 100
  1010. virtual_overquota_bounce = no
  1011. virtual_recipient_limit = $default_recipient_limit
  1012. virtual_recipient_refill_delay = $default_recipient_refill_delay
  1013. virtual_recipient_refill_limit = $default_recipient_refill_limit
  1014. virtual_transport = virtual
  1015. virtual_trash_count = no
  1016. virtual_trash_name = .Trash
  1017. virtual_uid_maps = static:999
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!