# See /usr/share/postfix/main.cf.dist for a commented, more complete version#

1. # See /usr/share/postfix/main.cf.dist for a commented, more complete version
2.  
3.  
4. # Debian specific: Specifying a file name will cause the first
5. # line of that file to be used as the name. The Debian default
6. # is /etc/mailname.
7. #myorigin = /etc/mailname
8.  
9. smtpd_banner = $myhostname ESMTP $mail_name (Debian/GNU)
10. biff = no
11.  
12. # appending .domain is the MUA's job.
13. append_dot_mydomain = no
14.  
15. # Uncomment the next line to generate "delayed mail" warnings
16. #delay_warning_time = 4h
17.  
18. readme_directory = no
19.  
20. # TLS parameters
21. smtpd_tls_cert_file=/etc/postfix/ssl/mailserver.crt
22. smtpd_tls_key_file=/etc/postfix/ssl/mailserver.key
23. smtpd_use_tls=yes
24. smtpd_tls_session_cache_database = btree:${data_directory}/smtpd_scache
25. smtp_tls_session_cache_database = btree:${data_directory}/smtp_scache
26.  
27. # See /usr/share/doc/postfix/TLS_README.gz in the postfix-doc package for
28. # information on enabling SSL in the smtp client.
29.  
30. myhostname = ErminM
31. alias_maps = hash:/etc/aliases
32. alias_database = hash:/etc/aliases
33. myorigin = /etc/mailname
34. mydestination = pentu.tk, ErminM, localhost.localdomain, localhost
35. relayhost =
36. mynetworks = 127.0.0.0/8 [::ffff:127.0.0.0]/104 [::1]/128
37. mailbox_size_limit = 0
38. recipient_delimiter = +
39. inet_interfaces = all
40.  
41. # a bit more spam protection
42. disable_vrfy_command = yes
43.  
44.  
45. # Auth
46. smtpd_sasl_type=dovecot
47. smtpd_sasl_path=private/auth_dovecot
48. smtpd_sasl_auth_enable = yes
49. smtpd_sasl_authenticated_header = yes
50. broken_sasl_auth_clients = yes
51.  
52. proxy_read_maps = $local_recipient_maps $mydestination $virtual_alias_maps $virtual_alias_domains $virtual_mailbox_maps $virtual_mailbox_domains $relay_recipient_maps $relay_domains $canonical_maps $sender_canonical_maps $recipient_canonical_maps $relocated_maps $transport_maps $mynetworks $smtpd_sender_login_maps
53.  
54. smtpd_sender_login_maps = proxy:mysql:/etc/postfix/mysql-sender-login-maps.cf
55.  
56. smtpd_sender_restrictions = reject_authenticated_sender_login_mismatch
57. reject_unknown_sender_domain
58.  
59. smtpd_recipient_restrictions = permit_sasl_authenticated
60. permit_mynetworks
61. reject_unauth_destination
62.  
63.  
64. # Virtual mailboxes
65. virtual_alias_maps = proxy:mysql:/etc/postfix/mysql-virtual-alias-maps.cf
66. virtual_mailbox_base = /var/vmail/
67. virtual_mailbox_domains = proxy:mysql:/etc/postfix/mysql-virtual-domains-maps.cf
68. virtual_mailbox_limit = 0
69. virtual_mailbox_maps = proxy:mysql:/etc/postfix/mysql-virtual-mailbox-maps.cf
70. virtual_minimum_uid = 104
71. virtual_transport = dovecot
72. local_transport = virtual
73. virtual_uid_maps = static:6000
74. virtual_gid_maps = static:6000
75.  
76. #
77. # Postfix master process configuration file. For details on the format
78. # of the file, see the master(5) manual page (command: "man 5 master").
79. #
80. # Do not forget to execute "postfix reload" after editing this file.
81. #
82. # ==========================================================================
83. # service type private unpriv chroot wakeup maxproc command + args
84. # (yes) (yes) (yes) (never) (100)
85. # ==========================================================================
86. smtp inet n - n - - smtpd
87. #smtp inet n - - - 1 postscreen
88. #smtpd pass - - - - - smtpd
89. #dnsblog unix - - - - 0 dnsblog
90. #tlsproxy unix - - - - 0 tlsproxy
91. submission inet n - - - - smtpd
92. # -o syslog_name=postfix/submission
93. # -o smtpd_tls_security_level=encrypt
94. # -o smtpd_sasl_auth_enable=yes
95. # -o smtpd_client_restrictions=permit_sasl_authenticated,reject
96. # -o milter_macro_daemon_name=ORIGINATING
97. smtps inet n - - - - smtpd
98. # -o syslog_name=postfix/smtps
99. -o smtpd_tls_wrappermode=yes
100. -o smtpd_sasl_auth_enable=yes
101. -o smtpd_client_restrictions=permit_sasl_authenticated,reject
102. # -o milter_macro_daemon_name=ORIGINATING
103. #628 inet n - - - - qmqpd
104. pickup fifo n - - 60 1 pickup
105. cleanup unix n - - - 0 cleanup
106. qmgr fifo n - n 300 1 qmgr
107. #qmgr fifo n - n 300 1 oqmgr
108. tlsmgr unix - - - 1000? 1 tlsmgr
109. rewrite unix - - - - - trivial-rewrite
110. bounce unix - - - - 0 bounce
111. defer unix - - - - 0 bounce
112. trace unix - - - - 0 bounce
113. verify unix - - - - 1 verify
114. flush unix n - - 1000? 0 flush
115. proxymap unix - - n - - proxymap
116. proxywrite unix - - n - 1 proxymap
117. smtp unix - - - - - smtp
118. relay unix - - - - - smtp
119. # -o smtp_helo_timeout=5 -o smtp_connect_timeout=5
120. showq unix n - - - - showq
121. error unix - - - - - error
122. retry unix - - - - - error
123. discard unix - - - - - discard
124. local unix - n n - - local
125. virtual unix - n n - - virtual
126. lmtp unix - - - - - lmtp
127. anvil unix - - - - 1 anvil
128. scache unix - - - - 1 scache
129. #
130. # ====================================================================
131. # Interfaces to non-Postfix software. Be sure to examine the manual
132. # pages of the non-Postfix software to find out what options it wants.
133. #
134. # Many of the following services use the Postfix pipe(8) delivery
135. # agent. See the pipe(8) man page for information about ${recipient}
136. # and other message envelope options.
137. # ====================================================================
138. #
139. # maildrop. See the Postfix MAILDROP_README file for details.
140. # Also specify in main.cf: maildrop_destination_recipient_limit=1
141. #
142. maildrop unix - n n - - pipe
143. flags=DRhu user=vmail argv=/usr/bin/maildrop -d ${recipient}
144. #
145. # ====================================================================
146. #
147. # Recent Cyrus versions can use the existing "lmtp" master.cf entry.
148. #
149. # Specify in cyrus.conf:
150. # lmtp cmd="lmtpd -a" listen="localhost:lmtp" proto=tcp4
151. #
152. # Specify in main.cf one or more of the following:
153. # mailbox_transport = lmtp:inet:localhost
154. # virtual_transport = lmtp:inet:localhost
155. #
156. # ====================================================================
157. #
158. # Cyrus 2.1.5 (Amos Gouaux)
159. # Also specify in main.cf: cyrus_destination_recipient_limit=1
160. #
161. #cyrus unix - n n - - pipe
162. # user=cyrus argv=/cyrus/bin/deliver -e -r ${sender} -m ${extension} ${user}
163. #
164. # ====================================================================
165. # Old example of delivery via Cyrus.
166. #
167. #old-cyrus unix - n n - - pipe
168. # flags=R user=cyrus argv=/cyrus/bin/deliver -e -m ${extension} ${user}
169. #
170. # ====================================================================
171. #
172. # See the Postfix UUCP_README file for configuration details.
173. #
174. uucp unix - n n - - pipe
175. flags=Fqhu user=uucp argv=uux -r -n -z -a$sender - $nexthop!rmail ($recipient)
176. #
177. # Other external delivery methods.
178. #
179. ifmail unix - n n - - pipe
180. flags=F user=ftn argv=/usr/lib/ifmail/ifmail -r $nexthop ($recipient)
181. bsmtp unix - n n - - pipe
182. flags=Fq. user=bsmtp argv=/usr/lib/bsmtp/bsmtp -t$nexthop -f$sender $recipient
183. scalemail-backend unix - n n - 2 pipe
184. flags=R user=scalemail argv=/usr/lib/scalemail/bin/scalemail-store ${nexthop} ${user} ${extension}
185. mailman unix - n n - - pipe
186. flags=FR user=list argv=/usr/lib/mailman/bin/postfix-to-mailman.py
187. ${nexthop} ${user}
188.  
189. dovecot unix - n n - - pipe
190. flags=DRhu user=vmail:vmail argv=/usr/lib/dovecot/deliver -d ${recipient}