Project

General

Profile

PostfixInstallDebianLenny » History » Version 1

Lutz Suhrbier, 09/13/2010 06:27 PM

1 1 Lutz Suhrbier
2 1 Lutz Suhrbier
## Postfix Installation (Debian Etch)
3 1 Lutz Suhrbier
4 1 Lutz Suhrbier
Only relayhost, accept only local mail.
5 1 Lutz Suhrbier
6 1 Lutz Suhrbier
apt-get install postfix
7 1 Lutz Suhrbier
8 1 Lutz Suhrbier
9 1 Lutz Suhrbier
/etc/aliases - aliases für local accounts einrichten und umleiten auf externen user.
10 1 Lutz Suhrbier
11 1 Lutz Suhrbier
newaliases um hashmap zu erstellen
12 1 Lutz Suhrbier
13 1 Lutz Suhrbier
14 1 Lutz Suhrbier
/etc/postfix/main.cf
15 1 Lutz Suhrbier
16 1 Lutz Suhrbier
relayhost parameter auf smtp-mailserver setzen.
17 1 Lutz Suhrbier
18 1 Lutz Suhrbier
19 1 Lutz Suhrbier
/etc/postfix/sasl_passwd enthält mail-server    user:password
20 1 Lutz Suhrbier
21 1 Lutz Suhrbier
relayhost = mail.math.fu-berlin.de
22 1 Lutz Suhrbier
23 1 Lutz Suhrbier
smtp_sasl_password_maps = hash:/etc/postfix/sasl_passwd
24 1 Lutz Suhrbier
25 1 Lutz Suhrbier
smtp_always_send_ehlo = yes
26 1 Lutz Suhrbier
27 1 Lutz Suhrbier
Dann postmap /etc/postfix/sasl_passwd
28 1 Lutz Suhrbier
29 1 Lutz Suhrbier
30 1 Lutz Suhrbier
Für jeden user ein file (touch) in /var/mail erstellen. Für root sollte reichen, wenn alles nach root umgeleiten wird.
31 1 Lutz Suhrbier
32 1 Lutz Suhrbier
33 1 Lutz Suhrbier
~~~
34 1 Lutz Suhrbier
# See /usr/share/postfix/main.cf.dist for a commented, more complete version
35 1 Lutz Suhrbier
36 1 Lutz Suhrbier
37 1 Lutz Suhrbier
# Debian specific:  Specifying a file name will cause the first
38 1 Lutz Suhrbier
# line of that file to be used as the name.  The Debian default
39 1 Lutz Suhrbier
# is /etc/mailname.
40 1 Lutz Suhrbier
#myorigin = /etc/mailname
41 1 Lutz Suhrbier
42 1 Lutz Suhrbier
smtpd_banner = $myhostname ESMTP $mail_name (Debian/GNU)
43 1 Lutz Suhrbier
biff = no
44 1 Lutz Suhrbier
45 1 Lutz Suhrbier
# appending .domain is the MUA's job.
46 1 Lutz Suhrbier
append_dot_mydomain = no
47 1 Lutz Suhrbier
48 1 Lutz Suhrbier
# Uncomment the next line to generate "delayed mail" warnings
49 1 Lutz Suhrbier
#delay_warning_time = 4h
50 1 Lutz Suhrbier
51 1 Lutz Suhrbier
mydomain = e-taxonomy.eu
52 1 Lutz Suhrbier
myhostname = idp.$mydomain
53 1 Lutz Suhrbier
#myorigin = /etc/mailname
54 1 Lutz Suhrbier
myorigin = $myhostname 
55 1 Lutz Suhrbier
56 1 Lutz Suhrbier
mydestination = $myhostname, localhost.$mydomain, localhost
57 1 Lutz Suhrbier
58 1 Lutz Suhrbier
mynetworks = 127.0.0.0/8
59 1 Lutz Suhrbier
inet_interfaces = all
60 1 Lutz Suhrbier
61 1 Lutz Suhrbier
mailbox_transport = lmtp:localhost
62 1 Lutz Suhrbier
#mailbox_size_limit = 0
63 1 Lutz Suhrbier
64 1 Lutz Suhrbier
alias_maps = hash:/etc/aliases
65 1 Lutz Suhrbier
alias_database = hash:/etc/aliases
66 1 Lutz Suhrbier
67 1 Lutz Suhrbier
#local_recipient_maps = $alias_maps ldap:/etc/postfix/local_recipient_maps.cf
68 1 Lutz Suhrbier
local_recipient_maps = 
69 1 Lutz Suhrbier
70 1 Lutz Suhrbier
relayhost = mail.math.fu-berlin.de
71 1 Lutz Suhrbier
72 1 Lutz Suhrbier
recipient_delimiter = +
73 1 Lutz Suhrbier
74 1 Lutz Suhrbier
# SASL parameters
75 1 Lutz Suhrbier
#smtpd_sasl_local_domain = $mydomain
76 1 Lutz Suhrbier
#smtpd_sasl_auth_enable = yes
77 1 Lutz Suhrbier
smtp_sasl_password_maps = hash:/etc/postfix/sasl_passwd
78 1 Lutz Suhrbier
smtp_always_send_ehlo = yes
79 1 Lutz Suhrbier
#smtpd_sasl_security_options = noanonymous
80 1 Lutz Suhrbier
broken_sasl_auth_clients = yes
81 1 Lutz Suhrbier
82 1 Lutz Suhrbier
# TLS parameters
83 1 Lutz Suhrbier
# See /usr/share/doc/postfix/TLS_README.gz in the postfix-doc package for
84 1 Lutz Suhrbier
# information on enabling SSL in the smtp client.
85 1 Lutz Suhrbier
#smtpd_tls_cert_file=/etc/ssl/certs/idp.e-taxonomy.eu-cert.pem
86 1 Lutz Suhrbier
#smtpd_tls_key_file=/etc/ssl/private/idp.e-taxonomy.eu-key.pem
87 1 Lutz Suhrbier
#smtpd_tls_CApath=/etc/ssl/certs
88 1 Lutz Suhrbier
#smtpd_use_tls=yes
89 1 Lutz Suhrbier
#smtpd_tls_auth_only = yes
90 1 Lutz Suhrbier
#smtpd_tls_loglevel = 2
91 1 Lutz Suhrbier
#smtpd_tls_session_cache_database = btree:${queue_directory}/smtpd_scache
92 1 Lutz Suhrbier
#tls_random_source = dev:/dev/urandom
93 1 Lutz Suhrbier
#smtp_tls_session_cache_database = btree:${queue_directory}/smtp_scache
94 1 Lutz Suhrbier
95 1 Lutz Suhrbier
# Anti-Spam
96 1 Lutz Suhrbier
smtpd_helo_required = yes
97 1 Lutz Suhrbier
disable_vrfy_command = yes
98 1 Lutz Suhrbier
strict_rfc821_envelopes = yes
99 1 Lutz Suhrbier
100 1 Lutz Suhrbier
smtpd_recipient_restrictions =
101 1 Lutz Suhrbier
	permit_sasl_authenticated,
102 1 Lutz Suhrbier
	permit_mynetworks,
103 1 Lutz Suhrbier
	reject_unauth_destination,
104 1 Lutz Suhrbier
	reject_invalid_hostname,
105 1 Lutz Suhrbier
	reject_non_fqdn_hostname,
106 1 Lutz Suhrbier
    reject_non_fqdn_sender,
107 1 Lutz Suhrbier
	reject_non_fqdn_recipient,
108 1 Lutz Suhrbier
    reject_unknown_sender_domain,
109 1 Lutz Suhrbier
    reject_unknown_recipient_domain,
110 1 Lutz Suhrbier
    reject_unauth_pipelining,
111 1 Lutz Suhrbier
#    check_client_access hash:/etc/postfix/maps/access_client,
112 1 Lutz Suhrbier
#    check_helo_access hash:/etc/postfix/maps/access_helo,
113 1 Lutz Suhrbier
#    check_sender_access hash:/etc/postfix/maps/access_sender,
114 1 Lutz Suhrbier
#    check_recipient_access hash:/etc/postfix/maps/access_recipient,
115 1 Lutz Suhrbier
	reject_rbl_client bl.spamcop.net,
116 1 Lutz Suhrbier
    reject_rbl_client dynablock.njabl.org,
117 1 Lutz Suhrbier
    reject_rbl_client zen.spamhaus.org,
118 1 Lutz Suhrbier
    reject_rbl_client cbl.abuseat.org,
119 1 Lutz Suhrbier
	reject_rbl_client sbl.spamhaus.org,
120 1 Lutz Suhrbier
	reject_rbl_client pbl.spamhaus.org,
121 1 Lutz Suhrbier
    reject_rbl_client list.dsbl.org,
122 1 Lutz Suhrbier
    permit
123 1 Lutz Suhrbier
124 1 Lutz Suhrbier
# Amavis integration
125 1 Lutz Suhrbier
#content_filter=smtp-amavis:[127.0.0.1]:10024
126 1 Lutz Suhrbier
#receive_override_options=no_address_mappings
127 1 Lutz Suhrbier
~~~
Add picture from clipboard (Maximum size: 40 MB)