Few postfix fixes
This commit is contained in:
parent
c228101df2
commit
2c3091da0c
|
@ -6,7 +6,7 @@ _configpath="/etc/postfix/redxen"
|
|||
. ../APKBUILD-config.common
|
||||
|
||||
pkgver=2021.02.19
|
||||
pkgrel=0
|
||||
pkgrel=3
|
||||
depends="postfix-pgsql redxen-secret-letsencrypt-chain redxen-secret-letsencrypt-private"
|
||||
install="$pkgname.pre-install"
|
||||
source="
|
||||
|
@ -16,7 +16,7 @@ source="
|
|||
pgsql-users.cf
|
||||
"
|
||||
|
||||
sha512sums="0c7bcc9e63762b12937938e31b25ed6a84508061fef2913625d7c89b1d6e4f27dfbe2065aca2f75e7c3a62d38cd613afc70af40526d7fd11c942bc4ba8b59515 master.cf
|
||||
d5764d19f75b4f6f766815ae79d1c373a147b701ed5c288b7998a4a3ce26c73b1668b9bf97ffbf3261895a7d4de1021e95576f4c7494e9efe20a33268ea607d3 main.cf
|
||||
sha512sums="b43313dc2b00848bfbc6b14bdcee2c7a024aeeae5d2a46b6aaf370d55f58ac9f9a4cf992b7d75a8acf35b75fd00d04144626169ef153614b223de87677bfda21 master.cf
|
||||
84a8f0ca3dacc535f4a770dbfae56c8ab2dfd52ff08b76b950b1662b93b6d1d495424c9091296bc86ff057897e42e9825e97fb927ae0606eb6a1908b40ed204f main.cf
|
||||
a1778901dbc12de543d9d5897b9d50ee5ebe47b7ef6ed87a0087249657f146ff8493de455d32016660cca3c8d669592e0ea9fbe9b6696d92cac6f014277f29e5 pgsql-aliases.cf
|
||||
72c50fe20b4d1a7ea2e60fb2cac0164814ab41011eb7f0d67a8a5715a0cc43d3ad573f198a7933eb130f68ec5c25c558fad791300e5bb25e020ca76a4303db4c pgsql-users.cf"
|
||||
|
|
|
@ -29,9 +29,10 @@ notify_classes = resource, software, bounce
|
|||
# SMTP TLS
|
||||
smtp_tls_CApath = /etc/ssl/certs
|
||||
smtp_tls_security_level = may
|
||||
smtp_tls_note_starttls_offer = yes
|
||||
|
||||
smtpd_use_tls = yes
|
||||
smtpd_delay_reject = yes
|
||||
smtpd_delay_reject = no
|
||||
smtpd_tls_cert_file = /etc/ssl/redxen/letsencrypt/chain.crt
|
||||
smtpd_tls_key_file = /etc/ssl/redxen/letsencrypt/private.key
|
||||
smtpd_tls_security_level = may
|
||||
|
@ -42,10 +43,10 @@ smtpd_sender_restrictions = reject_unknown_sender_domain
|
|||
smtpd_relay_restrictions = permit_sasl_authenticated,
|
||||
reject_unauth_destination
|
||||
smtpd_recipient_restrictions = permit_sasl_authenticated,
|
||||
reject_unauth_destination,
|
||||
reject_non_fqdn_recipient,
|
||||
reject_unknown_recipient_domain,
|
||||
reject_unknown_reverse_client_hostname,
|
||||
reject_unverified_recipient,
|
||||
reject_rbl_client sbl.spamhaus.org,
|
||||
reject_rbl_client xbl.spamhaus.org,
|
||||
reject_rhsbl_client dbl.spamhaus.org,
|
||||
|
@ -55,6 +56,7 @@ smtpd_helo_restrictions = reject_rhsbl_helo dbl.spamhaus.org
|
|||
smtpd_data_restrictions = reject_unauth_pipelining
|
||||
|
||||
# Dovecot auth
|
||||
smtpd_sasl_auth_enable = yes
|
||||
smtpd_sasl_type = dovecot
|
||||
smtpd_sasl_path = /run/dovecot/auth
|
||||
smtpd_sasl_security_options = noanonymous
|
||||
|
|
|
@ -3,14 +3,11 @@
|
|||
# (yes) (yes) (no) (never) (100)
|
||||
# ==========================================================================
|
||||
submission inet n - n - - smtpd
|
||||
-o smtpd_sasl_auth_enable=yes
|
||||
-o smtpd_client_restrictions=permit_sasl_authenticated,reject
|
||||
-o smtpd_sasl_security_options=noanonymous
|
||||
-o smtpd_tls_security_level=encrypt
|
||||
-o smtpd_tls_auth_only=yes
|
||||
smtp unix - - n - - smtp
|
||||
smtp inet n - n - - smtpd
|
||||
-o smtpd_sasl_auth_enable=yes
|
||||
smtps inet n - n - - smtpd
|
||||
-o smtpd_sasl_auth_enable=yes
|
||||
-o smtpd_tls_wrappermode=yes
|
||||
pickup unix n - y 60 1 pickup
|
||||
cleanup unix n - y - 0 cleanup
|
||||
|
|
Loading…
Reference in New Issue