Dies ist eine alte Version des Dokuments!

Mailconfig

mailbox_command = maildrop

virtual_maps =
        hash:/etc/postfix/virtual/buero-konstanz.de,
        hash:/etc/postfix/virtual/normanzi.de,
        hash:/etc/postfix/virtual/reitverein-schwabach.de,
        hash:/etc/postfix/virtual/scharfer-hase.de,
        hash:/etc/postfix/virtual/schwabacher-linuxtage.de

content_filter=smtp-amavis:[127.0.0.1]:10024

smtpd_sasl_auth_enable = yes
smtpd_sasl_security_options = noanonymous, noplaintext
smtpd_sasl_local_domain = $myhostname
smtpd_sasl_authenticated_header = yes
broken_sasl_auth_clients = no

smtpd_helo_required = yes

smtpd_helo_restrictions =
    permit_mynetworks,
    permit_sasl_authenticated,
    reject_invalid_hostname,
    reject_non_fqdn_hostname,
    permit
###    reject_unknown_hostname,

smtpd_sender_restrictions =
    permit_mynetworks,
    permit_sasl_authenticated,
    reject_unknown_sender_domain,
    reject_non_fqdn_sender,
    permit

smtpd_client_restrictions =
    permit_mynetworks,
    permit_sasl_authenticated,
    reject_unknown_client,
    permit

smtpd_recipient_restrictions =
    permit_mynetworks,
    permit_sasl_authenticated,
    reject_invalid_hostname,
    reject_non_fqdn_hostname,
    reject_non_fqdn_sender,
    reject_non_fqdn_recipient,
    reject_unknown_recipient_domain,
    reject_unauth_pipelining,
    reject_unauth_destination,
    check_policy_service inet:127.0.0.1:60000,
    permit

# TLS
smtpd_use_tls           = yes
smtpd_tls_auth_only     = yes
smtpd_tls_key_file      = /etc/postfix/tls/mail.normanzi.de.key.pem
smtpd_tls_cert_file     = /etc/postfix/tls/mail.normanzi.de.crt.pem
smtpd_tls_CAfile        = /etc/postfix/tls/ca-normanzi.de.pem
smtpd_tls_loglevel      = 2
smtpd_tls_received_header       = yes
smtpd_tls_session_cache_timeout = 3600s
tls_random_source               = dev:/dev/urandom