2016-11-26 17:56:05 +01:00
|
|
|
Index: conf/master.cf
|
|
|
|
|
===================================================================
|
|
|
|
|
--- conf/master.cf.orig
|
|
|
|
|
+++ conf/master.cf
|
2017-04-09 00:23:20 +02:00
|
|
|
@@ -10,33 +10,39 @@
|
Accepting request 373635 from home:varkoly:branches:server:mail
- update to 3.1.0
- Since version 3.0 postfix supports dynamic loading of cdb:, ldap:,
lmdb:, mysql:, pcre:, pgsql:, sdbm:, and sqlite: database clients.
Thats why the patches dynamic_maps.patch and dynamic_maps_pie.patch
could be removed.
- Adapting all the patches to postfix 3.1.0
- The patch postfix-db6.diff is not more neccessary
- Backwards-compatibility safety net.
With NEW Postfix installs, you MUST install a main.cf file with
the setting "compatibility_level = 2". See conf/main.cf for an
example.
With UPGRADES of existing Postfix systems, you MUST NOT change the
main.cf compatibility_level setting, nor add this setting if it
does not exist.
Several Postfix default settings have changed with Postfix 3.0. To
avoid massive frustration with existing Postfix installations,
Postfix 3.0 comes with a safety net that forces Postfix to keep
running with backwards-compatible main.cf and master.cf default
settings. This safety net depends on the main.cf compatibility_level
setting (default: 0). Details are in COMPATIBILITY_README.
- Major changes - tls
* [Feature 20160207] A new "postfix tls" command to quickly enable
opportunistic TLS in the Postfix SMTP client or server, and to
manage SMTP server keys and certificates, including certificate
signing requests and TLSA DNS records for DANE.
* As of the middle of 2015, all supported Postfix releases no longer
nable "export" grade ciphers for opportunistic TLS, and no longer
use the deprecated SSLv2 and SSLv3 protocols for mandatory or
OBS-URL: https://build.opensuse.org/request/show/373635
OBS-URL: https://build.opensuse.org/package/show/server:mail/postfix?expand=0&rev=232
2016-03-18 18:07:45 +01:00
|
|
|
# (yes) (yes) (no) (never) (100)
|
2011-05-18 00:52:01 +02:00
|
|
|
# ==========================================================================
|
|
|
|
|
smtp inet n - n - - smtpd
|
|
|
|
|
+#amavis unix - - n - 4 smtp
|
|
|
|
|
+# -o smtp_data_done_timeout=1200
|
|
|
|
|
+# -o smtp_send_xforward_command=yes
|
|
|
|
|
+# -o disable_dns_lookups=yes
|
|
|
|
|
+# -o max_use=20
|
|
|
|
|
#smtp inet n - n - 1 postscreen
|
|
|
|
|
#smtpd pass - - n - - smtpd
|
|
|
|
|
#dnsblog unix - - n - 0 dnsblog
|
2017-04-09 00:23:20 +02:00
|
|
|
#tlsproxy unix - - n - 0 tlsproxy
|
|
|
|
|
#submission inet n - n - - smtpd
|
|
|
|
|
-# -o syslog_name=postfix/submission
|
|
|
|
|
-# -o smtpd_tls_security_level=encrypt
|
|
|
|
|
-# -o smtpd_sasl_auth_enable=yes
|
|
|
|
|
-# -o smtpd_tls_auth_only=yes
|
|
|
|
|
-# -o smtpd_reject_unlisted_recipient=no
|
|
|
|
|
-# -o smtpd_client_restrictions=$mua_client_restrictions
|
|
|
|
|
-# -o smtpd_helo_restrictions=$mua_helo_restrictions
|
|
|
|
|
-# -o smtpd_sender_restrictions=$mua_sender_restrictions
|
|
|
|
|
-# -o smtpd_recipient_restrictions=
|
|
|
|
|
-# -o smtpd_relay_restrictions=permit_sasl_authenticated,reject
|
|
|
|
|
-# -o milter_macro_daemon_name=ORIGINATING
|
|
|
|
|
+# -o syslog_name=postfix/submission
|
|
|
|
|
+# -o smtpd_tls_security_level=encrypt
|
|
|
|
|
+# -o smtpd_sasl_auth_enable=yes
|
|
|
|
|
+# -o smtpd_tls_auth_only=yes
|
|
|
|
|
+# -o smtpd_reject_unlisted_recipient=no
|
|
|
|
|
+# -o smtpd_client_restrictions=$mua_client_restrictions
|
|
|
|
|
+# -o smtpd_helo_restrictions=$mua_helo_restrictions
|
|
|
|
|
+# -o smtpd_sender_restrictions=$mua_sender_restrictions
|
|
|
|
|
+# -o smtpd_recipient_restrictions=
|
|
|
|
|
+# -o smtpd_relay_restrictions=permit_sasl_authenticated,reject
|
|
|
|
|
+# -o milter_macro_daemon_name=ORIGINATING
|
|
|
|
|
#smtps inet n - n - - smtpd
|
|
|
|
|
-# -o syslog_name=postfix/smtps
|
|
|
|
|
-# -o smtpd_tls_wrappermode=yes
|
|
|
|
|
-# -o smtpd_sasl_auth_enable=yes
|
|
|
|
|
-# -o smtpd_reject_unlisted_recipient=no
|
|
|
|
|
-# -o smtpd_client_restrictions=$mua_client_restrictions
|
|
|
|
|
-# -o smtpd_helo_restrictions=$mua_helo_restrictions
|
|
|
|
|
-# -o smtpd_sender_restrictions=$mua_sender_restrictions
|
|
|
|
|
-# -o smtpd_recipient_restrictions=
|
|
|
|
|
-# -o smtpd_relay_restrictions=permit_sasl_authenticated,reject
|
|
|
|
|
-# -o milter_macro_daemon_name=ORIGINATING
|
|
|
|
|
+# -o syslog_name=postfix/smtps
|
|
|
|
|
+# -o smtpd_tls_wrappermode=yes
|
|
|
|
|
+# -o content_filter=smtp:[127.0.0.1]:10024
|
|
|
|
|
+# -o smtpd_sasl_auth_enable=yes
|
|
|
|
|
+# -o smtpd_reject_unlisted_recipient=no
|
|
|
|
|
+# -o smtpd_client_restrictions=$mua_client_restrictions
|
|
|
|
|
+# -o smtpd_helo_restrictions=$mua_helo_restrictions
|
|
|
|
|
+# -o smtpd_sender_restrictions=$mua_sender_restrictions
|
|
|
|
|
+# -o smtpd_recipient_restrictions=
|
|
|
|
|
+# -o smtpd_relay_restrictions=permit_sasl_authenticated,reject
|
|
|
|
|
+# -o milter_macro_daemon_name=ORIGINATING
|
|
|
|
|
#628 inet n - n - - qmqpd
|
|
|
|
|
pickup unix n - n 60 1 pickup
|
|
|
|
|
cleanup unix n - n - 0 cleanup
|
|
|
|
|
@@ -63,6 +69,27 @@ virtual unix - n n
|
2011-05-18 00:52:01 +02:00
|
|
|
lmtp unix - - n - - lmtp
|
|
|
|
|
anvil unix - - n - 1 anvil
|
Accepting request 373635 from home:varkoly:branches:server:mail
- update to 3.1.0
- Since version 3.0 postfix supports dynamic loading of cdb:, ldap:,
lmdb:, mysql:, pcre:, pgsql:, sdbm:, and sqlite: database clients.
Thats why the patches dynamic_maps.patch and dynamic_maps_pie.patch
could be removed.
- Adapting all the patches to postfix 3.1.0
- The patch postfix-db6.diff is not more neccessary
- Backwards-compatibility safety net.
With NEW Postfix installs, you MUST install a main.cf file with
the setting "compatibility_level = 2". See conf/main.cf for an
example.
With UPGRADES of existing Postfix systems, you MUST NOT change the
main.cf compatibility_level setting, nor add this setting if it
does not exist.
Several Postfix default settings have changed with Postfix 3.0. To
avoid massive frustration with existing Postfix installations,
Postfix 3.0 comes with a safety net that forces Postfix to keep
running with backwards-compatible main.cf and master.cf default
settings. This safety net depends on the main.cf compatibility_level
setting (default: 0). Details are in COMPATIBILITY_README.
- Major changes - tls
* [Feature 20160207] A new "postfix tls" command to quickly enable
opportunistic TLS in the Postfix SMTP client or server, and to
manage SMTP server keys and certificates, including certificate
signing requests and TLSA DNS records for DANE.
* As of the middle of 2015, all supported Postfix releases no longer
nable "export" grade ciphers for opportunistic TLS, and no longer
use the deprecated SSLv2 and SSLv3 protocols for mandatory or
OBS-URL: https://build.opensuse.org/request/show/373635
OBS-URL: https://build.opensuse.org/package/show/server:mail/postfix?expand=0&rev=232
2016-03-18 18:07:45 +01:00
|
|
|
scache unix - - n - 1 scache
|
2011-05-18 00:52:01 +02:00
|
|
|
+#localhost:10025 inet n - n - - smtpd
|
|
|
|
|
+# -o content_filter=
|
|
|
|
|
+# -o smtpd_delay_reject=no
|
|
|
|
|
+# -o smtpd_client_restrictions=permit_mynetworks,reject
|
|
|
|
|
+# -o smtpd_helo_restrictions=
|
|
|
|
|
+# -o smtpd_sender_restrictions=
|
|
|
|
|
+# -o smtpd_recipient_restrictions=permit_mynetworks,reject
|
|
|
|
|
+# -o smtpd_data_restrictions=reject_unauth_pipelining
|
|
|
|
|
+# -o smtpd_end_of_data_restrictions=
|
|
|
|
|
+# -o smtpd_restriction_classes=
|
|
|
|
|
+# -o mynetworks=127.0.0.0/8
|
|
|
|
|
+# -o smtpd_error_sleep_time=0
|
|
|
|
|
+# -o smtpd_soft_error_limit=1001
|
|
|
|
|
+# -o smtpd_hard_error_limit=1000
|
|
|
|
|
+# -o smtpd_client_connection_count_limit=0
|
|
|
|
|
+# -o smtpd_client_connection_rate_limit=0
|
2011-07-01 14:45:31 +02:00
|
|
|
+# -o receive_override_options=no_unknown_recipient_checks,no_header_body_checks,no_address_mappings
|
2011-05-18 00:52:01 +02:00
|
|
|
+# -o local_header_rewrite_clients=
|
|
|
|
|
+# -o local_recipient_maps=
|
|
|
|
|
+# -o relay_recipient_maps=
|
Accepting request 373635 from home:varkoly:branches:server:mail
- update to 3.1.0
- Since version 3.0 postfix supports dynamic loading of cdb:, ldap:,
lmdb:, mysql:, pcre:, pgsql:, sdbm:, and sqlite: database clients.
Thats why the patches dynamic_maps.patch and dynamic_maps_pie.patch
could be removed.
- Adapting all the patches to postfix 3.1.0
- The patch postfix-db6.diff is not more neccessary
- Backwards-compatibility safety net.
With NEW Postfix installs, you MUST install a main.cf file with
the setting "compatibility_level = 2". See conf/main.cf for an
example.
With UPGRADES of existing Postfix systems, you MUST NOT change the
main.cf compatibility_level setting, nor add this setting if it
does not exist.
Several Postfix default settings have changed with Postfix 3.0. To
avoid massive frustration with existing Postfix installations,
Postfix 3.0 comes with a safety net that forces Postfix to keep
running with backwards-compatible main.cf and master.cf default
settings. This safety net depends on the main.cf compatibility_level
setting (default: 0). Details are in COMPATIBILITY_README.
- Major changes - tls
* [Feature 20160207] A new "postfix tls" command to quickly enable
opportunistic TLS in the Postfix SMTP client or server, and to
manage SMTP server keys and certificates, including certificate
signing requests and TLSA DNS records for DANE.
* As of the middle of 2015, all supported Postfix releases no longer
nable "export" grade ciphers for opportunistic TLS, and no longer
use the deprecated SSLv2 and SSLv3 protocols for mandatory or
OBS-URL: https://build.opensuse.org/request/show/373635
OBS-URL: https://build.opensuse.org/package/show/server:mail/postfix?expand=0&rev=232
2016-03-18 18:07:45 +01:00
|
|
|
+
|
2011-05-18 00:52:01 +02:00
|
|
|
#
|
|
|
|
|
# ====================================================================
|
Accepting request 373635 from home:varkoly:branches:server:mail
- update to 3.1.0
- Since version 3.0 postfix supports dynamic loading of cdb:, ldap:,
lmdb:, mysql:, pcre:, pgsql:, sdbm:, and sqlite: database clients.
Thats why the patches dynamic_maps.patch and dynamic_maps_pie.patch
could be removed.
- Adapting all the patches to postfix 3.1.0
- The patch postfix-db6.diff is not more neccessary
- Backwards-compatibility safety net.
With NEW Postfix installs, you MUST install a main.cf file with
the setting "compatibility_level = 2". See conf/main.cf for an
example.
With UPGRADES of existing Postfix systems, you MUST NOT change the
main.cf compatibility_level setting, nor add this setting if it
does not exist.
Several Postfix default settings have changed with Postfix 3.0. To
avoid massive frustration with existing Postfix installations,
Postfix 3.0 comes with a safety net that forces Postfix to keep
running with backwards-compatible main.cf and master.cf default
settings. This safety net depends on the main.cf compatibility_level
setting (default: 0). Details are in COMPATIBILITY_README.
- Major changes - tls
* [Feature 20160207] A new "postfix tls" command to quickly enable
opportunistic TLS in the Postfix SMTP client or server, and to
manage SMTP server keys and certificates, including certificate
signing requests and TLSA DNS records for DANE.
* As of the middle of 2015, all supported Postfix releases no longer
nable "export" grade ciphers for opportunistic TLS, and no longer
use the deprecated SSLv2 and SSLv3 protocols for mandatory or
OBS-URL: https://build.opensuse.org/request/show/373635
OBS-URL: https://build.opensuse.org/package/show/server:mail/postfix?expand=0&rev=232
2016-03-18 18:07:45 +01:00
|
|
|
# Interfaces to non-Postfix software. Be sure to examine the manual
|
2017-04-09 00:23:20 +02:00
|
|
|
@@ -96,7 +123,7 @@ scache unix - - n
|
2011-05-18 00:52:01 +02:00
|
|
|
# Also specify in main.cf: cyrus_destination_recipient_limit=1
|
|
|
|
|
#
|
|
|
|
|
#cyrus unix - n n - - pipe
|
|
|
|
|
-# user=cyrus argv=/cyrus/bin/deliver -e -r ${sender} -m ${extension} ${user}
|
|
|
|
|
+# user=cyrus argv=/usr/lib/cyrus/bin/deliver -e -r ${sender} -m ${extension} ${user}
|
|
|
|
|
#
|
|
|
|
|
# ====================================================================
|
|
|
|
|
#
|
2017-04-09 00:23:20 +02:00
|
|
|
@@ -129,3 +156,10 @@ scache unix - - n
|
2011-05-18 00:52:01 +02:00
|
|
|
#mailman unix - n n - - pipe
|
|
|
|
|
# flags=FR user=list argv=/usr/lib/mailman/bin/postfix-to-mailman.py
|
|
|
|
|
# ${nexthop} ${user}
|
|
|
|
|
+#
|
|
|
|
|
+#procmail unix - n n - - pipe
|
|
|
|
|
+# flags=R user=nobody argv=/usr/bin/procmail -t -m /etc/procmailrc ${sender} ${recipient}
|
|
|
|
|
+#
|
2014-06-28 01:38:12 +02:00
|
|
|
+#dovecot unix - n n - - pipe
|
|
|
|
|
+# flags=DRhu user=vmail:vmail argv=/usr/lib/dovecot/deliver -d ${recipient}
|
|
|
|
|
+#
|
