RedXen
/
aports
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity

Few postfix fixes

This commit is contained in:
Alex D. 2021-02-19 15:03:17 +00:00
parent c228101df2
commit 2c3091da0c
Signed by: caskd
GPG Key ID: F92BA85F61F4C173
3 changed files with 9 additions and 10 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
config/postfix/APKBUILD
View File

@ -6,7 +6,7 @@ _configpath="/etc/postfix/redxen"
. ../APKBUILD-config.common
pkgver=2021.02.19
pkgrel=0
pkgrel=3
depends="postfix-pgsql redxen-secret-letsencrypt-chain redxen-secret-letsencrypt-private"
install="$pkgname.pre-install"
source="
@ -16,7 +16,7 @@ source="
pgsql-users.cf
"
sha512sums="0c7bcc9e63762b12937938e31b25ed6a84508061fef2913625d7c89b1d6e4f27dfbe2065aca2f75e7c3a62d38cd613afc70af40526d7fd11c942bc4ba8b59515 master.cf
d5764d19f75b4f6f766815ae79d1c373a147b701ed5c288b7998a4a3ce26c73b1668b9bf97ffbf3261895a7d4de1021e95576f4c7494e9efe20a33268ea607d3 main.cf
sha512sums="b43313dc2b00848bfbc6b14bdcee2c7a024aeeae5d2a46b6aaf370d55f58ac9f9a4cf992b7d75a8acf35b75fd00d04144626169ef153614b223de87677bfda21 master.cf
84a8f0ca3dacc535f4a770dbfae56c8ab2dfd52ff08b76b950b1662b93b6d1d495424c9091296bc86ff057897e42e9825e97fb927ae0606eb6a1908b40ed204f main.cf
a1778901dbc12de543d9d5897b9d50ee5ebe47b7ef6ed87a0087249657f146ff8493de455d32016660cca3c8d669592e0ea9fbe9b6696d92cac6f014277f29e5 pgsql-aliases.cf
72c50fe20b4d1a7ea2e60fb2cac0164814ab41011eb7f0d67a8a5715a0cc43d3ad573f198a7933eb130f68ec5c25c558fad791300e5bb25e020ca76a4303db4c pgsql-users.cf"

6
config/postfix/main.cf
View File

@ -29,9 +29,10 @@ notify_classes = resource, software, bounce
# SMTP TLS
smtp_tls_CApath = /etc/ssl/certs
smtp_tls_security_level = may
smtp_tls_note_starttls_offer = yes
smtpd_use_tls = yes
smtpd_delay_reject = yes
smtpd_delay_reject = no
smtpd_tls_cert_file = /etc/ssl/redxen/letsencrypt/chain.crt
smtpd_tls_key_file = /etc/ssl/redxen/letsencrypt/private.key
smtpd_tls_security_level = may
@ -42,10 +43,10 @@ smtpd_sender_restrictions = reject_unknown_sender_domain
smtpd_relay_restrictions = permit_sasl_authenticated,
reject_unauth_destination
smtpd_recipient_restrictions = permit_sasl_authenticated,
reject_unauth_destination,
reject_non_fqdn_recipient,
reject_unknown_recipient_domain,
reject_unknown_reverse_client_hostname,
reject_unverified_recipient,
reject_rbl_client sbl.spamhaus.org,
reject_rbl_client xbl.spamhaus.org,
reject_rhsbl_client dbl.spamhaus.org,
@ -55,6 +56,7 @@ smtpd_helo_restrictions = reject_rhsbl_helo dbl.spamhaus.org
smtpd_data_restrictions = reject_unauth_pipelining
# Dovecot auth
smtpd_sasl_auth_enable = yes
smtpd_sasl_type = dovecot
smtpd_sasl_path = /run/dovecot/auth
smtpd_sasl_security_options = noanonymous

7
config/postfix/master.cf
View File

@ -3,14 +3,11 @@
# (yes) (yes) (no) (never) (100)
# ==========================================================================
submission inet n - n - - smtpd
-o smtpd_sasl_auth_enable=yes
-o smtpd_client_restrictions=permit_sasl_authenticated,reject
-o smtpd_sasl_security_options=noanonymous
-o smtpd_tls_security_level=encrypt
-o smtpd_tls_auth_only=yes
smtp unix - - n - - smtp
smtp inet n - n - - smtpd
-o smtpd_sasl_auth_enable=yes
smtps inet n - n - - smtpd
-o smtpd_sasl_auth_enable=yes
-o smtpd_tls_wrappermode=yes
pickup unix n - y 60 1 pickup
cleanup unix n - y - 0 cleanup