Next message: Fajar: "Two Different Postfix Server"
Thanks Wietse, I am going to look that over right now.
In regards to mailman, it requires the right hand side of the aliases file it maintains (/etc/mailman/aliases) to call external programs, which based on my research, cannot be done using virtual_alias_maps. So my constraint is using alias table that can call external programs.
/etc/mailman/aliases
# STANZA START: thelist
# CREATED: Tue Jan 3 10:43:27 2006
thelist: "|/usr/lib/mailman/mail/mailman post thelist"
thelist-admin: "|/usr/lib/mailman/mail/mailman admin thelist"
thelist-bounces: "|/usr/lib/mailman/mail/mailman bounces thelist"
thelist-confirm: "|/usr/lib/mailman/mail/mailman confirm thelist"
thelist-join: "|/usr/lib/mailman/mail/mailman join thelist"
thelist-leave: "|/usr/lib/mailman/mail/mailman leave thelist"
thelist-owner: "|/usr/lib/mailman/mail/mailman owner thelist"
thelist-request: "|/usr/lib/mailman/mail/mailman request thelist"
thelist-subscribe: "|/usr/lib/mailman/mail/mailman subscribe thelist"
thelist-unsubscribe: "|/usr/lib/mailman/mail/mailman unsubscribe thelist"
# STANZA END: thelist
So it appears I have to settle on what I guess is a non-standard/ hybrid setup. So I have $mydomain in both relay_domains and mydestination, and identical local_recipient_maps and relay_recipient_maps, and I discovered reject_unverified_recipient with unverified_recipient_reject_code = 550 to reject non existant recipients. In hindsight I realize I wouldn't have to do this if I didn't run my mailing list manager on my mail gateway. You live and learn I guess.
alias_database = hash:/etc/aliases hash:/etc/postfix/aliases hash:/etc/postfix/pelican.aliases
alias_maps = hash:/etc/aliases hash:/etc/postfix/aliases hash:/etc/mailman/aliases hash:/etc/postfix/pelican.aliases
broken_sasl_auth_clients = yes
command_directory = /usr/sbin
config_directory = /etc/postfix
content_filter = smtp:[127.0.0.1]:10025
daemon_directory = /usr/libexec/postfix
debug_peer_level = 2
disable_vrfy_command = yes
html_directory = no
inet_interfaces = $myhostname, localhost
local_recipient_maps = $alias_maps ldap:ldaprelays
mail_owner = postfix
mailq_path = /usr/bin/mailq.postfix
manpage_directory = /usr/share/man
masquerade_domains = uvi.edu
mydestination = $myhostname, localhost.$mydomain, localhost, $mydomain
mydomain = uvi.edu
myhostname = mahi.uvi.edu
mynetworks = 146.226.0.0/16, 127.0.0.0/8
myorigin = $mydomain
newaliases_path = /usr/bin/newaliases.postfix
owner_request_special = no
queue_directory = /var/spool/postfix
readme_directory = /usr/share/doc/postfix-2.2.2/README_FILES
recipient_delimiter = +
relay_domains = $mydomain, $mydestination
relay_recipient_maps = $alias_maps ldap:ldaprelays
sample_directory = /usr/share/doc/postfix-2.2.2/samples
sendmail_path = /usr/sbin/sendmail.postfix
setgid_group = postdrop
smtpd_helo_required = yes
smtpd_recipient_restrictions = reject_non_fqdn_sender, reject_non_fqdn_recipient, reject_unknown_sender_domain, reject_unknown_recipient_domain, permit_sasl_authenticated, permit_mynetworks, reject_invalid_hostname, reject_non_fqdn_hostname, reject_unauth_destination, reject_unverified_recipient, check_recipient_access pcre:/etc/postfix/recipient_checks.pcre, check_helo_access hash:/etc/postfix/helo_checks, check_client_access hash:/etc/postfix/client_checks, reject_rbl_client relays.ordb.org, reject_rbl_client bl.spamcop.net, reject_rhsbl_client blackhole.securitysage.com, reject_rhsbl_recipient blackhole.securitysage.com, reject_rhsbl_sender blackhole.securitysage.com, reject_rhsbl_sender block.rhs.mailpolice.com, reject_rhsbl_client block.rhs.mailpolice.com, reject_rhsbl_sender dynamic.rhsmailpolice.com, reject_rhsbl_client dynamic.rhs.mailpolice.com, reject_rbl_client relays.ordb.org, reject_rbl_client list.dsbl.org, reject_rbl_client sbl-xbl.spamhaus.org, reject_rbl_client dul.dnsbl.sorbs.net, permit_auth_destination, reject
smtpd_sasl_application_name = smtpd
smtpd_sasl_auth_enable = yes
smtpd_sasl_security_options = noanonymous
smtpd_tls_CAfile = cacert.pem
smtpd_tls_cert_file = smtp-cert.pem
smtpd_tls_key_file = smtp-key.pem
smtpd_tls_received_header = yes
smtpd_use_tls = yes
tls_random_source = dev:/dev/urandom
transport_maps = ldap:ldaptransport
unknown_local_recipient_reject_code = 550
unverified_recipient_reject_code = 550
________________________________
From: Wietse Venema [mailto:]
Sent: Tue 1/3/2006 8:23 PM
To: Wesley K. Joyce
Cc:
Subject: [SPAM] - Re: Postfix mail gateway not rejecting non-existant local / relay recipients - Found word(s) domain name in the Text body
Wesley K. Joyce:
> I am running mailman locally on my mail gateway and it appears it will onl
>-y work if I have local recipients and can be referenced by the aliases (loca
>-l) daemon.
That is incorrect. You can list the recipients elsewhere PROVIDED THAT
YOU list the domain name in the correct place.
Please review the ADDRESS_CLASS_README document carefully.
Wietse
