API tools faq
paste
Advertisement
Guest User

Untitled

a guest
Mar 16th, 2016
97
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 4.96 KB | None | 0 0
raw download clone embed print report
  1. mydomain = domen
  2. myhostname = domen
  3.  
  4. #mydestination = localhost, localhost.localdomain
  5. mydestination = $myhostname localhost.$mydomain localhost
  6. mynetworks = 127.0.0.0/8 192.168.1.0/24
  7. message_size_limit = 41943040
  8. append_dot_mydomain = yes
  9.  
  10. virtual_alias_domains =
  11. virtual_alias_maps = proxy:mysql:/etc/postfix/mysql_virtual_alias_maps.cf
  12. virtual_mailbox_domains = proxy:mysql:/etc/postfix/mysql_virtual_domains_maps.cf
  13. virtual_mailbox_maps = proxy:mysql:/etc/postfix/mysql_virtual_mailbox_maps.cf
  14. virtual_mailbox_base = /home/vmail
  15. virtual_uid_maps = static:107
  16. virtual_gid_maps = static:110
  17. #home_mailbox = Maildir/
  18.  
  19. smtpd_sasl_auth_enable = yes
  20. smtpd_sasl_type = dovecot
  21. broken_sasl_auth_clients = yes
  22. smtpd_sasl_authenticated_header = yes
  23. smtpd_sasl_path = private/auth
  24. #smtpd_sasl_application_name = smtpd
  25. #smtpd_sasl_path = /var/lib/dovecot
  26. smtpd_sasl_security_options = noanonymous
  27.  
  28. smtpd_recipient_restrictions =
  29. permit_mynetworks,
  30. # check_recipient_access hash:/etc/postfix/rec_access,
  31. permit_sasl_authenticated,
  32. permit_tls_clientcerts,
  33. reject_unauth_destination,
  34. check_client_access hash:/etc/postfix/rbl_override,
  35. check_helo_access hash:/etc/postfix/corrupted_mailers,
  36. #check_recipient_access pcre:$config_directory/recipient_global.allow,
  37. reject_invalid_helo_hostname,
  38. reject_non_fqdn_helo_hostname,
  39. reject_unknown_helo_hostname,
  40. warn_if_reject reject_unknown_client,
  41. reject_non_fqdn_sender,
  42. reject_non_fqdn_recipient,
  43. reject_unknown_sender_domain,
  44. reject_unknown_recipient_domain,
  45. # reject_unverified_sender,
  46. reject_unverified_recipient,
  47. #check_helo_access hash:$config_directory/mydomain.deny,
  48. #check_helo_access cidr:$config_directory/mynetworks.deny,
  49. #check_helo_access cidr:$config_directory/reserved_ip.deny,
  50. #check_sender_mx_access cidr:$config_directory/reserved_ip.deny,
  51. #check_sender_access pcre:$config_directory/sender.deny,
  52. #!! check_sender_access mysql:$config_directory/sql/access.cf,
  53. #check_recipient_access pcre:$config_directory/recipient.deny,
  54. #check_sender_access pcre:$config_directory/sender_email.allow,
  55. #check_recipient_access pcre:$config_directory/recipient_email_fast.allow,
  56. #check_recipient_access pcre:$config_directory/recipient_domain.allow,
  57. reject_rbl_client cbl.abuseat.org
  58. reject_rbl_client list.dsbl.org
  59. reject_rbl_client opm.blitzed.org
  60. reject_rbl_client sbl.spamhaus.org
  61. reject_rbl_client bl.spamcop.net
  62.  
  63. # reject_rbl_client dnsbl.sorbs.net=127.0.0.2
  64. # reject_rbl_client dnsbl.sorbs.net=127.0.0.3
  65. # reject_rbl_client dnsbl.sorbs.net=127.0.0.4
  66. # reject_rbl_client dnsbl.sorbs.net=127.0.0.5
  67. # reject_rbl_client dnsbl.sorbs.net=127.0.0.7
  68. # reject_rbl_client dnsbl.sorbs.net=127.0.0.9
  69. # reject_rbl_client dnsbl.sorbs.net=127.0.0.11
  70. # reject_rbl_client dnsbl.sorbs.net=127.0.0.12
  71. warn_if_reject reject_rhsbl_sender dsn.rfc-ignorant.org
  72. warn_if_reject reject_rhsbl_sender abuse.rfc-ignorant.org
  73. warn_if_reject reject_rhsbl_sender whois.rfc-ignorant.org
  74. warn_if_reject reject_rhsbl_sender bogusmx.rfc-ignorant.org
  75. warn_if_reject reject_rhsbl_sender postmaster.rfc-ignorant.org
  76. permit
  77. smtpd_data_restrictions =
  78. reject_unauth_pipelining,
  79. reject_multi_recipient_bounce,
  80. permit
  81. smtpd_helo_required = yes
  82. #address_verify_map = btree:/var/spool/postfix/verify
  83. address_verify_map = btree:/var/lib/postfix/verify
  84. smtpd_etrn_restrictions = reject
  85. smtpd_reject_unlisted_sender = yes
  86. disable_vrfy_command = yes
  87. strict_rfc821_envelopes = yes
  88. show_user_unknown_table_name = no
  89. unverified_sender_reject_code = 550
  90. unknown_local_recipient_reject_code = 550
  91. smtpd_hard_error_limit = 8
  92.  
  93.  
  94. non_fqdn_reject_code = 450
  95. invalid_hostname_reject_code = 450
  96. maps_rbl_reject_code = 450
  97.  
  98. smtpd_use_tls = yes
  99. smtpd_tls_cert_file=/etc/ssl/certs/ssl-cert-snakeoil.pem
  100. smtpd_tls_key_file=/etc/ssl/private/ssl-cert-snakeoil.key
  101. #virtual_create_maildirsize = yes
  102. #virtual_maildir_extended = yes
  103. proxy_read_maps = $local_recipient_maps $mydestination $virtual_alias_maps $virtual_alias_domains $virtual_mailbox_maps $virtual_mailbox_domains $relay_recipient_maps $relay_domains $canonical_maps $sender_canonical_maps $recipient_canonical_maps $relocated_maps $transport_maps $mynetworks $virtual_mailbox_limit_maps
  104. virtual_transport = dovecot
  105. dovecot_destination_recipient_limit = 1
  106. #relayhost = 192.168.2.1
  107. queue_run_delay = 240s
  108. minimal_backoff_time = 240s
  109.  
  110. content_filter = scan:127.0.0.1:10025
  111. receive_override_options = no_address_mappings
  112.  
  113. milter_default_action = accept
  114. milter_protocol = 2
  115. smtpd_milters = unix:/var/run/opendkim/opendkim.sock
  116. non_smtpd_milters = unix:/var/run/opendkim/opendkim.sock
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!