From: (no name) (no email)
Date: Wed Apr 11 2007 - 15:31:05 EDT
The system is intended to be used as a first line of defense relying on
rbl's and clam to cut down on the number of incoming messages before it
passes the messages on via a transport to the mailstores. For some strange
reason, users that don't exist cause the following error to show up in the
logs
Apr 10 12:03:46 mail16 postfix/virtual[1805]: 9430F139BC69:
to=<>, relay=virtual, delay=83105,
delays=83105/0.03/0/0.03, dsn=4.3.5, status=deferred (mail system
configuration error)
The strange part is that the sender does get a bounce... so i'm not
entirely clear on what is going on. The following is a main.cf
-------------------------------------------------------------------------
default_process_limit = 150
queue_directory = /data/queue
command_directory = /usr/local/sbin
daemon_directory = /usr/local/libexec/postfix
mail_owner = postfix
debug_peer_level = 2
debugger_command =
PATH=/bin:/usr/bin:/usr/local/bin:/usr/X11R6/bin
xxgdb $daemon_directory/$process_name $process_id & sleep 5
sendmail_path = /usr/local/sbin/sendmail
newaliases_path = /usr/local/bin/newaliases
mailq_path = /usr/local/bin/mailq
manpage_directory = /usr/local/man
html_directory = no
sample_directory = /usr/local/etc/postfix
readme_directory = no
initial_destination_concurrency = 5
default_destination_concurrency_limit=20
#smtpd_client_connection_count_limit=25
smtpd_client_connection_rate_limit=150
unknown_local_recipient_reject_code = 550
setgid_group = maildrop
smtp_host_lookup=native
#------------------------ settings below copied from mx11
virtual_alias_domains= $virtual_alias_maps
proxy_read_maps =
proxy:mysql:/usr/local/etc/postfix/sql/virtual_mailbox_domains.cf
proxy:mysql:/usr/local/etc/postfix/sql/virtual_mailbox_maps.cf
proxy:mysql:/usr/local/etc/postfix/sql/virtual_alias_maps.cf
proxy:mysql:/usr/local/etc/postfix/sql/transport_maps.cf
proxy:mysql:/usr/local/etc/postfix/sql/relay_domains.cf
proxy:mysql:/usr/local/etc/postfix/sql/rcpt_bcc.cf
proxy:mysql:/usr/local/etc/postfix/sql/recipient_access.cf
proxy:mysql:/usr/local/etc/postfix/sql/client_access.cf
recipient_bcc_maps = proxy:mysql:/usr/local/etc/postfix/sql/rcpt_bcc.cf
mynetworks = hash:/usr/local/etc/postfix/my_network
relay_domains = proxy:mysql:/usr/local/etc/postfix/sql/relay_domains.cf
virtual_alias_maps =
proxy:mysql:/usr/local/etc/postfix/sql/virtual_alias_maps.cf
virtual_mailbox_domains =
proxy:mysql:/usr/local/etc/postfix/sql/virtual_mailbox_domains.cf
virtual_transport = proxy:mysql:/usr/local/etc/postfix/sql/transport_maps.cf
virtual_mailbox_maps =
proxy:mysql:/usr/local/etc/postfix/sql/virtual_mailbox_maps.cf
virtual_mailbox_base=/data/mail
virtual_mailbox_limit=102400000
transport_maps = proxy:mysql:/usr/local/etc/postfix/sql/transport_maps.cf
disable_vrfy_command = yes
smtpd_helo_required = yes
strict_rfc821_envelopes = yes
smtpd_delay_reject=yes
smtpd_reject_unlisted_sender = yes
#Filtering class definitions.
#10/23/06
#Basic = Greylisting, Sender Restrictions.
#Common = RBLs, Sender Restrictions.
#Proactive = Greylisting, RBLs, Sender Restrictions.
#Restrictive = Greylisting, RBLs, Sender Restrictions, HELO (all 3 helo
tests)
#Extreme = reserved for testing
smtpd_restriction_classes = none, basic, common, proactive, extreme,
restrictive, permissive
none = permit
permissive = permit
basic =
reject_unknown_sender_domain
reject_non_fqdn_sender
reject_unknown_recipient_domain
reject_non_fqdn_recipient
common=
reject_unknown_sender_domain
reject_non_fqdn_sender
reject_unknown_recipient_domain
reject_non_fqdn_recipient
reject_rbl_client zen.spamhaus.org
reject_rbl_client bl.spamcop.net
#reject_rbl_client psbl.surriel.com
proactive =
reject_unknown_sender_domain
reject_non_fqdn_sender
reject_unknown_recipient_domain
reject_non_fqdn_recipient
reject_rbl_client zen.spamhaus.org
reject_rbl_client bl.spamcop.net
reject_rbl_client cbl.abuseat.org
#reject_rbl_client psbl.surriel.com
restrictive=
reject_invalid_hostname
reject_non_fqdn_hostname
#reject_unknown_hostname
reject_unknown_sender_domain
reject_non_fqdn_sender
reject_unknown_recipient_domain
reject_non_fqdn_recipient
reject_rbl_client zen.spamhaus.org,
reject_rbl_client dnsbl-1.uceprotect.net,
check_policy_service inet:127.0.0.1:12525
check_policy_service inet:127.0.0.1:10031
extreme = #Reserved for testing.
reject_invalid_hostname
reject_unknown_hostname
reject_non_fqdn_hostname
reject_unknown_sender_domain
reject_non_fqdn_sender
reject_unknown_recipient_domain
reject_non_fqdn_recipient
reject_unknown_client
reject_rbl_client zen.spamhaus.org
reject_rbl_client dul.dnsbl.sorbs.net
reject_rbl_client psbl.surriel.com
smtpd_recipient_restrictions = permit_mynetworks,
check_client_access
proxy:mysql:/usr/local/etc/postfix/sql/client_access.cf,
reject_unauth_destination,
reject_unauth_pipelining,
check_recipient_access
proxy:mysql:/usr/local/etc/postfix/sql/recipient_access.cf,
check_recipient_access hash:/usr/local/etc/postfix/rcpt_access
smtpd_client_restrictions = permit_mynetworks,
reject_unknown_sender_domain,
reject_unauth_destination
message_size_limit=102400000
append_at_myorigin=no
append_dot_mydomain=no
bounce_queue_lifetime = 30m
maximal_queue_lifetime = 1d
qmgr_message_recipient_limit = 30000
qmgr_message_active_limit = 30000
#clamsmtpd
#content_filter = scan:[localhost]:10025
receive_override_options = no_address_mappings
local_recipient_maps =
local_transport = error:local mail delivery is disabled
#TLS configuration parameters
smtp_use_tls = yes
smtpd_use_tls = yes
smtp_tls_note_starttls_offer = yes
smtpd_tls_cert_file = /usr/local/etc/postfix/ssl/mail.simplicato.com.crt
smtpd_tls_key_file = /usr/local/etc/postfix/ssl/mail.simplicato.com.key
smtpd_tls_loglevel = 1
smtpd_tls_received_header = yes
smtpd_tls_session_cache_timeout = 3600s
tls_random_source = dev:/dev/urandom
smtp_tls_per_site = hash:/usr/local/etc/postfix/tls_per_site
|
|
|