[postfix-users] Port 557 und 465 - MäcServer 10.6.8

Matthias Schmidt beta at admilon.net
Sa Mär 17 10:40:10 CET 2012


Hallo,
ich würd meinen Mailserver gern auf beiden ports laufen lassen.
Aktiviere ich jetzt smtps in master.cf hier:
smtps     inet  n       -       n       -       -       smtpd
  -o smtpd_tls_wrappermode=yes
  -o smtpd_sasl_auth_enable=yes
  -o smtpd_client_restrictions=permit_sasl_authenticated,reject
bekomm ich den Fehler:
 smtps: nodename nor servname provided, or not known

fragt jetzt bitte nicht  warum, hat was mit meiner Datenbank-Komponente zu tun, die kann nicht auf 587, warum muss ich erst klären, ohne SSL bekomm ich nen Login-Fehler und mit ein connection refused. 
Ersteres könnte an meiner Postfix-Konfiguration liegen, da bin ich aber noch nicht fündig geworden (smtpd_enforce_tls=no macht keinen Unterschied) und der zweite Fehler liegt wohl daran, dass das Plugin STARTTLS nicht kann.

Erste Abhilfe ist wohl die Mühle auf 465 zum Arbeiten  zu bewegen ;-)

Im Postfix Buch hab ich leider auch nichts dazu gefunden.

ich paste mal gleich meine main und master files, weil  postconf -n anscheinend ein unübliches Ergebnis liefert....
Ja das ist ein MacOS 10.6.8 Server-System....

Dank und Gruss
Matthias

master.cf:
#
# Postfix master process configuration file.  For details on the format
# of the file, see the master(5) manual page (command: "man 5 master").
#
# ==========================================================================
# service type  private unpriv  chroot  wakeup  maxproc command + args
#               (yes)   (yes)   (yes)   (never) (100)
# ==========================================================================
# ==== Begin auto-generated section ========================================
# This section of the master.cf file is auto-generated by the Server Admin
#  Mail backend plugin whenever mails settings are modified.
smtp      inet  n       -       n       -       -       smtpd
smtp      unix  -       -       n       -       -       smtp
submission inet  n       -       n       -       -       smtpd
  -o smtpd_tls_security_level=encrypt
# === End auto-generated section ===========================================
#=====inserted 16.3.2012
  -o smtpd_enforce_tls=yes
  -o smtpd_sasl_auth_enable=yes
  -o smtpd_client_restrictions=permit_sasl_authenticated,reject
#enabled 16.3.2012
#smtps     inet  n       -       n       -       -       smtpd
#  -o smtpd_tls_wrappermode=yes
#  -o smtpd_sasl_auth_enable=yes
#  -o smtpd_client_restrictions=permit_sasl_authenticated,reject
#======= finish edit
#628      inet  n       -       n       -       -       qmqpd
pickup    fifo  n       -       n       60      1       pickup
cleanup   unix  n       -       n       -       0       cleanup
qmgr      fifo  n       -       n       300     1       qmgr
#qmgr     fifo  n       -       n       300     1       oqmgr
tlsmgr    unix  -       -       n       1000?   1       tlsmgr
rewrite   unix  -       -       n       -       -       trivial-rewrite
bounce    unix  -       -       n       -       0       bounce
defer     unix  -       -       n       -       0       bounce
trace     unix  -       -       n       -       0       bounce
verify    unix  -       -       n       -       1       verify
flush     unix  n       -       n       1000?   0       flush
proxymap  unix  -       -       n       -       -       proxymap
# When relaying mail as backup MX, disable fallback_relay to avoid MX loops
relay     unix  -       -       n       -       -       smtp
	-o fallback_relay=
#       -o smtp_helo_timeout=5 -o smtp_connect_timeout=5
showq     unix  n       -       n       -       -       showq
error     unix  -       -       n       -       -       error
retry     unix  -       -       n       -       -       error
discard   unix  -       -       n       -       -       discard
local     unix  -       n       n       -       -       local
virtual   unix  -       n       n       -       -       virtual
lmtp      unix  -       -       n       -       -       lmtp
anvil     unix  -       -       n       -       1       anvil
scache	  unix	-	-	n	-	1	scache
proxywrite unix -       -       n       -       1       proxymap
#
# ====================================================================
# amavis set up
# ====================================================================
#
smtp-amavis unix -      -       n       -       2       smtp 	
   -o smtp_data_done_timeout=1200
   -o smtp_send_xforward_command=yes
   -o disable_dns_lookups=yes
   -o max_use=20
     
192.168.2.10:25 inet n    -       n       -       -     smtpd
     -o content_filter=smtp-amavis:[127.0.0.1]:10024
     -o receive_override_options=no_address_mappings
     -o mynetworks=127.0.0.0/8,192.168.2.0/24,192.168.1.0/24
#
127.0.0.1:10025 inet n    -       n       -       -     smtpd
     -o content_filter=
     -o smtpd_delay_reject=no
     -o smtpd_client_restrictions=
     -o smtpd_helo_restrictions=
     -o smtpd_sender_restrictions=
     -o smtpd_recipient_restrictions=permit_mynetworks,reject
     -o smtpd_data_restrictions=reject_unauth_pipelining
     -o smtpd_end_of_data_restrictions=
     -o smtpd_restriction_classes=
     -o mynetworks=127.0.0.0/8,192.168.2.0/24,192.168.1.0/24
     -o smtpd_error_sleep_time=0
     -o smtpd_soft_error_limit=1001
     -o smtpd_hard_error_limit=1000
     -o smtpd_client_connection_count_limit=0
     -o smtpd_client_connection_rate_limit=0
     -o receive_override_options=no_header_body_checks,no_unknown_recipient_checks,no_milters
#
127.0.0.1:10027 inet n    -       n       -       -     smtpd
     -o content_filter=
     -o smtpd_delay_reject=no
     -o smtpd_client_restrictions=
     -o smtpd_helo_restrictions=
     -o smtpd_sender_restrictions=
     -o smtpd_recipient_restrictions=permit_mynetworks,reject
     -o smtpd_data_restrictions=reject_unauth_pipelining
     -o smtpd_end_of_data_restrictions=
     -o smtpd_restriction_classes=
     -o mynetworks=127.0.0.0/8,192.168.2.0/24,192.168.1.0/24
     -o smtpd_error_sleep_time=0
     -o smtpd_soft_error_limit=1001
     -o smtpd_hard_error_limit=1000
     -o smtpd_client_connection_count_limit=0
     -o smtpd_client_connection_rate_limit=0
     -o receive_override_options=no_header_body_checks,no_unknown_recipient_checks,no_milters
# ====================================================================
# Interfaces to non-Postfix software. Be sure to examine the manual
# pages of the non-Postfix software to find out what options it wants.
#
# Many of the following services use the Postfix pipe(8) delivery
# agent.  See the pipe(8) man page for information about ${recipient}
# and other message envelope options.
# ====================================================================
#
# maildrop. See the Postfix MAILDROP_README file for details.
# Also specify in main.cf: maildrop_destination_recipient_limit=1
#
#maildrop  unix  -       n       n       -       -       pipe
#  flags=DRhu user=vmail argv=/usr/local/bin/maildrop -d ${recipient}
#
# ====================================================================
#
# The Cyrus deliver program has changed incompatibly, multiple times.
#
#old-cyrus unix  -       n       n       -       -       pipe
#  flags=R user=cyrus argv=/cyrus/bin/deliver -e -m ${extension} ${user}
#
# ====================================================================
#
# Cyrus 2.1.5 (Amos Gouaux)
# Also specify in main.cf: cyrus_destination_recipient_limit=1
#
cyrus     unix  -       n       n       -       -       pipe
  user=_cyrus argv=/usr/bin/cyrus/bin/deliver -e -r ${sender} -m ${extension} ${user}
#
# ====================================================================
#
# See the Postfix UUCP_README file for configuration details.
#
#uucp      unix  -       n       n       -       -       pipe
#  flags=Fqhu user=uucp argv=uux -r -n -z -a$sender - $nexthop!rmail ($recipient)
#
# ====================================================================
#
# Other external delivery methods.
#
#ifmail    unix  -       n       n       -       -       pipe
#  flags=F user=ftn argv=/usr/lib/ifmail/ifmail -r $nexthop ($recipient)
#
#bsmtp     unix  -       n       n       -       -       pipe
#  flags=Fq. user=bsmtp argv=/usr/local/sbin/bsmtp -f $sender $nexthop $recipient
#
#scalemail-backend unix -       n       n       -       2       pipe
#  flags=R user=scalemail argv=/usr/lib/scalemail/bin/scalemail-store
#  ${nexthop} ${user} ${extension}
#
#mailman   unix  -       n       n       -       -       pipe
#  flags=FR user=list argv=/usr/lib/mailman/bin/postfix-to-mailman.py
#  ${nexthop} ${user}
#
# Dovecot deliver
#
dovecot   unix  -       n       n       -       25      pipe
  flags=DRhu user=_dovecot:mail argv=/usr/libexec/dovecot/deliver -d ${user}
#
# Greylist policy server
#
policy    unix  -       n       n       -       -       spawn
  user=nobody:mail argv=/usr/bin/perl /usr/libexec/postfix/greylist.pl

smtp-amavis unix -      -       y       -       2       smtp
   -o smtp_data_done_timeout=1200
   -o smtp_send_xforward_command=yes
   -o disable_dns_lookups=yes

127.0.0.1:10025 inet n  -       y       -       -       smtpd
   -o content_filter=
   -o local_recipient_maps=
   -o relay_recipient_maps=
   -o smtpd_restriction_classes=
   -o smtpd_client_restrictions=
   -o smtpd_helo_restrictions=
   -o smtpd_sender_restrictions=
   -o smtpd_recipient_restrictions=permit_mynetworks,reject
   -o mynetworks=127.0.0.0/8
   -o smtpd_enforce_tls=no
   -o strict_rfc821_envelopes=yes
   -o smtpd_error_sleep_time=0
   -o smtpd_soft_error_limit=1001
   -o smtpd_hard_error_limit=1000
   -o receive_override_options=no_header_body_checks

mainf.cf
# Global Postfix configuration file. This file lists only a subset
# of all parameters. For the syntax, and for a complete parameter
# list, see the postconf(5) manual page (command: "man 5 postconf").
#
# For common configuration examples, see BASIC_CONFIGURATION_README
# and STANDARD_CONFIGURATION_README. To find these documents, use
# the command "postconf html_directory readme_directory", or go to
# http://www.postfix.org/.
#
# For best results, change no more than 2-3 parameters at a time,
# and test if Postfix still works after every change.

# SOFT BOUNCE
#
# The soft_bounce parameter provides a limited safety net for
# testing.  When soft_bounce is enabled, mail will remain queued that
# would otherwise bounce. This parameter disables locally-generated
# bounces, and prevents the SMTP server from rejecting mail permanently
# (by changing 5xx replies into 4xx replies). However, soft_bounce
# is no cure for address rewriting mistakes or mail routing mistakes.
#
#soft_bounce = no

# LOCAL PATHNAME INFORMATION
#
# The queue_directory specifies the location of the Postfix queue.
# This is also the root directory of Postfix daemons that run chrooted.
# See the files in examples/chroot-setup for setting up Postfix chroot
# environments on different UNIX systems.
#
queue_directory = /private/var/spool/postfix

# The command_directory parameter specifies the location of all
# postXXX commands.
#
command_directory = /usr/sbin

# The daemon_directory parameter specifies the location of all Postfix
# daemon programs (i.e. programs listed in the master.cf file). This
# directory must be owned by root.
#
daemon_directory = /usr/libexec/postfix

# QUEUE AND PROCESS OWNERSHIP
#
# The mail_owner parameter specifies the owner of the Postfix queue
# and of most Postfix daemon processes.  Specify the name of a user
# account THAT DOES NOT SHARE ITS USER OR GROUP ID WITH OTHER ACCOUNTS
# AND THAT OWNS NO OTHER FILES OR PROCESSES ON THE SYSTEM.  In
# particular, don't specify nobody or daemon. PLEASE USE A DEDICATED
# USER.
#
mail_owner = _postfix

# The default_privs parameter specifies the default rights used by
# the local delivery agent for delivery to external file or command.
# These rights are used in the absence of a recipient user context.
# DO NOT SPECIFY A PRIVILEGED USER OR THE POSTFIX OWNER.
#
#default_privs = nobody

# INTERNET HOST AND DOMAIN NAMES
# 
# The myhostname parameter specifies the internet hostname of this
# mail system. The default is to use the fully-qualified domain name
# from gethostname(). $myhostname is used as a default value for many
# other configuration parameters.
#
#myhostname = host.domain.tld
#myhostname = virtual.domain.tld

# The mydomain parameter specifies the local internet domain name.
# The default is to use $myhostname minus the first component.
# $mydomain is used as a default value for many other configuration
# parameters.
#
#mydomain = domain.tld

# SENDING MAIL
# 
# The myorigin parameter specifies the domain that locally-posted
# mail appears to come from. The default is to append $myhostname,
# which is fine for small sites.  If you run a domain with multiple
# machines, you should (1) change this to $mydomain and (2) set up
# a domain-wide alias database that aliases each user to
# user at that.users.mailhost.
#
# For the sake of consistency between sender and recipient addresses,
# myorigin also specifies the default domain name that is appended
# to recipient addresses that have no @domain part.
#
#myorigin = $myhostname
#myorigin = $mydomain

# RECEIVING MAIL

# The inet_interfaces parameter specifies the network interface
# addresses that this mail system receives mail on.  By default,
# the software claims all active interfaces on the machine. The
# parameter also controls delivery of mail to user@[ip.address].
#
# See also the proxy_interfaces parameter, for network addresses that
# are forwarded to us via a proxy or network address translator.
#
# Note: you need to stop/start Postfix when this parameter changes.
#
#inet_interfaces = all
#inet_interfaces = $myhostname
#inet_interfaces = $myhostname, localhost

# The proxy_interfaces parameter specifies the network interface
# addresses that this mail system receives mail on by way of a
# proxy or network address translation unit. This setting extends
# the address list specified with the inet_interfaces parameter.
#
# You must specify your proxy/NAT addresses when your system is a
# backup MX host for other domains, otherwise mail delivery loops
# will happen when the primary MX host is down.
#
#proxy_interfaces =
#proxy_interfaces = 1.2.3.4

# The mydestination parameter specifies the list of domains that this
# machine considers itself the final destination for.
#
# These domains are routed to the delivery agent specified with the
# local_transport parameter setting. By default, that is the UNIX
# compatible delivery agent that lookups all recipients in /etc/passwd
# and /etc/aliases or their equivalent.
#
# The default is $myhostname + localhost.$mydomain.  On a mail domain
# gateway, you should also include $mydomain.
#
# Do not specify the names of virtual domains - those domains are
# specified elsewhere (see VIRTUAL_README).
#
# Do not specify the names of domains that this machine is backup MX
# host for. Specify those names via the relay_domains settings for
# the SMTP server, or use permit_mx_backup if you are lazy (see
# STANDARD_CONFIGURATION_README).
#
# The local machine is always the final destination for mail addressed
# to user@[the.net.work.address] of an interface that the mail system
# receives mail on (see the inet_interfaces parameter).
#
# Specify a list of host or domain names, /file/name or type:table
# patterns, separated by commas and/or whitespace. A /file/name
# pattern is replaced by its contents; a type:table is matched when
# a name matches a lookup key (the right-hand side is ignored).
# Continue long lines by starting the next line with whitespace.
#
# See also below, section "REJECTING MAIL FOR UNKNOWN LOCAL USERS".
#
#mydestination = $myhostname, localhost.$mydomain, localhost
#mydestination = $myhostname, localhost.$mydomain, localhost, $mydomain
#mydestination = $myhostname, localhost.$mydomain, localhost, $mydomain,
#	mail.$mydomain, www.$mydomain, ftp.$mydomain

# REJECTING MAIL FOR UNKNOWN LOCAL USERS
#
# The local_recipient_maps parameter specifies optional lookup tables
# with all names or addresses of users that are local with respect
# to $mydestination, $inet_interfaces or $proxy_interfaces.
#
# If this parameter is defined, then the SMTP server will reject
# mail for unknown local users. This parameter is defined by default.
#
# To turn off local recipient checking in the SMTP server, specify
# local_recipient_maps = (i.e. empty).
#
# The default setting assumes that you use the default Postfix local
# delivery agent for local delivery. You need to update the
# local_recipient_maps setting if:
#
# - You define $mydestination domain recipients in files other than
#   /etc/passwd, /etc/aliases, or the $virtual_alias_maps files.
#   For example, you define $mydestination domain recipients in    
#   the $virtual_mailbox_maps files.
#
# - You redefine the local delivery agent in master.cf.
#
# - You redefine the "local_transport" setting in main.cf.
#
# - You use the "luser_relay", "mailbox_transport", or "fallback_transport"
#   feature of the Postfix local delivery agent (see local(8)).
#
# Details are described in the LOCAL_RECIPIENT_README file.
#
# Beware: if the Postfix SMTP server runs chrooted, you probably have
# to access the passwd file via the proxymap service, in order to
# overcome chroot restrictions. The alternative, having a copy of
# the system passwd file in the chroot jail is just not practical.
#
# The right-hand side of the lookup tables is conveniently ignored.
# In the left-hand side, specify a bare username, an @domain.tld
# wild-card, or specify a user at domain.tld address.
# 
#local_recipient_maps = unix:passwd.byname $alias_maps
#local_recipient_maps = proxy:unix:passwd.byname $alias_maps
#local_recipient_maps =

# The unknown_local_recipient_reject_code specifies the SMTP server
# response code when a recipient domain matches $mydestination or
# ${proxy,inet}_interfaces, while $local_recipient_maps is non-empty
# and the recipient address or address local-part is not found.
#
# The default setting is 550 (reject mail) but it is safer to start
# with 450 (try again later) until you are certain that your
# local_recipient_maps settings are OK.
#
unknown_virtual_alias_reject_code = 550
unknown_virtual_mailbox_reject_code = 550
unknown_local_recipient_reject_code = 550

# TRUST AND RELAY CONTROL

# The mynetworks parameter specifies the list of "trusted" SMTP
# clients that have more privileges than "strangers".
#
# In particular, "trusted" SMTP clients are allowed to relay mail
# through Postfix.  See the smtpd_recipient_restrictions parameter
# in postconf(5).
#
# You can specify the list of "trusted" network addresses by hand
# or you can let Postfix do it for you (which is the default).
#
# By default (mynetworks_style = subnet), Postfix "trusts" SMTP
# clients in the same IP subnetworks as the local machine.
# On Linux, this does works correctly only with interfaces specified
# with the "ifconfig" command.
# 
# Specify "mynetworks_style = class" when Postfix should "trust" SMTP
# clients in the same IP class A/B/C networks as the local machine.
# Don't do this with a dialup site - it would cause Postfix to "trust"
# your entire provider's network.  Instead, specify an explicit
# mynetworks list by hand, as described below.
#  
# Specify "mynetworks_style = host" when Postfix should "trust"
# only the local machine.
# 
#mynetworks_style = class
#mynetworks_style = subnet
mynetworks_style = host

# Alternatively, you can specify the mynetworks list by hand, in
# which case Postfix ignores the mynetworks_style setting.
#
# Specify an explicit list of network/netmask patterns, where the
# mask specifies the number of bits in the network part of a host
# address.
#
# You can also specify the absolute pathname of a pattern file instead
# of listing the patterns here. Specify type:table for table-based lookups
# (the value on the table right-hand side is not used).
#
#mynetworks = 168.100.189.0/28, 127.0.0.0/8
#mynetworks = $config_directory/mynetworks
#mynetworks = hash:/etc/postfix/network_table

# The relay_domains parameter restricts what destinations this system will
# relay mail to.  See the smtpd_recipient_restrictions description in
# postconf(5) for detailed information.
#
# By default, Postfix relays mail
# - from "trusted" clients (IP address matches $mynetworks) to any destination,
# - from "untrusted" clients to destinations that match $relay_domains or
#   subdomains thereof, except addresses with sender-specified routing.
# The default relay_domains value is $mydestination.
# 
# In addition to the above, the Postfix SMTP server by default accepts mail
# that Postfix is final destination for:
# - destinations that match $inet_interfaces or $proxy_interfaces,
# - destinations that match $mydestination
# - destinations that match $virtual_alias_domains,
# - destinations that match $virtual_mailbox_domains.
# These destinations do not need to be listed in $relay_domains.
# 
# Specify a list of hosts or domains, /file/name patterns or type:name
# lookup tables, separated by commas and/or whitespace.  Continue
# long lines by starting the next line with whitespace. A file name
# is replaced by its contents; a type:name table is matched when a
# (parent) domain appears as lookup key.
#
# NOTE: Postfix will not automatically forward mail for domains that
# list this system as their primary or backup MX host. See the
# permit_mx_backup restriction description in postconf(5).
#
#relay_domains = $mydestination

# INTERNET OR INTRANET

# The relayhost parameter specifies the default host to send mail to
# when no entry is matched in the optional transport(5) table. When
# no relayhost is given, mail is routed directly to the destination.
#
# On an intranet, specify the organizational domain name. If your
# internal DNS uses no MX records, specify the name of the intranet
# gateway host instead.
#
# In the case of SMTP, specify a domain, host, host:port, [host]:port,
# [address] or [address]:port; the form [host] turns off MX lookups.
#
# If you're connected via UUCP, see also the default_transport parameter.
#
#relayhost = $mydomain
#relayhost = [gateway.my.domain]
#relayhost = [mailserver.isp.tld]
#relayhost = uucphost
#relayhost = [an.ip.add.ress]

# REJECTING UNKNOWN RELAY USERS
#
# The relay_recipient_maps parameter specifies optional lookup tables
# with all addresses in the domains that match $relay_domains.
#
# If this parameter is defined, then the SMTP server will reject
# mail for unknown relay users. This feature is off by default.
#
# The right-hand side of the lookup tables is conveniently ignored.
# In the left-hand side, specify an @domain.tld wild-card, or specify
# a user at domain.tld address.
# 
#relay_recipient_maps = hash:/etc/postfix/relay_recipients

# INPUT RATE CONTROL
#
# The in_flow_delay configuration parameter implements mail input
# flow control. This feature is turned on by default, although it
# still needs further development (it's disabled on SCO UNIX due
# to an SCO bug).
# 
# A Postfix process will pause for $in_flow_delay seconds before
# accepting a new message, when the message arrival rate exceeds the
# message delivery rate. With the default 100 SMTP server process
# limit, this limits the mail inflow to 100 messages a second more
# than the number of messages delivered per second.
# 
# Specify 0 to disable the feature. Valid delays are 0..10.
# 
#in_flow_delay = 1s

# ADDRESS REWRITING
#
# The ADDRESS_REWRITING_README document gives information about
# address masquerading or other forms of address rewriting including
# username->Firstname.Lastname mapping.

# ADDRESS REDIRECTION (VIRTUAL DOMAIN)
#
# The VIRTUAL_README document gives information about the many forms
# of domain hosting that Postfix supports.

# "USER HAS MOVED" BOUNCE MESSAGES
#
# See the discussion in the ADDRESS_REWRITING_README document.

# TRANSPORT MAP
#
# See the discussion in the ADDRESS_REWRITING_README document.

# ALIAS DATABASE
#
# The alias_maps parameter specifies the list of alias databases used
# by the local delivery agent. The default list is system dependent.
#
# On systems with NIS, the default is to search the local alias
# database, then the NIS alias database. See aliases(5) for syntax
# details.
# 
# If you change the alias database, run "postalias /etc/aliases" (or
# wherever your system stores the mail alias file), or simply run
# "newaliases" to build the necessary DBM or DB file.
#
# It will take a minute or so before changes become visible.  Use
# "postfix reload" to eliminate the delay.
#
#alias_maps = dbm:/etc/aliases
#alias_maps = hash:/etc/aliases
#alias_maps = hash:/etc/aliases, nis:mail.aliases
#alias_maps = netinfo:/aliases

# The alias_database parameter specifies the alias database(s) that
# are built with "newaliases" or "sendmail -bi".  This is a separate
# configuration parameter, because alias_maps (see above) may specify
# tables that are not necessarily all under control by Postfix.
#
#alias_database = dbm:/etc/aliases
#alias_database = dbm:/etc/mail/aliases
#alias_database = hash:/etc/aliases
#alias_database = hash:/etc/aliases, hash:/opt/majordomo/aliases

# ADDRESS EXTENSIONS (e.g., user+foo)
#
# The recipient_delimiter parameter specifies the separator between
# user names and address extensions (user+foo). See canonical(5),
# local(8), relocated(5) and virtual(5) for the effects this has on
# aliases, canonical, virtual, relocated and .forward file lookups.
# Basically, the software tries user+foo and .forward+foo before
# trying user and .forward.
#
#recipient_delimiter = +

# DELIVERY TO MAILBOX
#
# The home_mailbox parameter specifies the optional pathname of a
# mailbox file relative to a user's home directory. The default
# mailbox file is /var/spool/mail/user or /var/mail/user.  Specify
# "Maildir/" for qmail-style delivery (the / is required).
#
#home_mailbox = Mailbox
#home_mailbox = Maildir/
 
# The mail_spool_directory parameter specifies the directory where
# UNIX-style mailboxes are kept. The default setting depends on the
# system type.
#
#mail_spool_directory = /var/mail
#mail_spool_directory = /var/spool/mail

# The mailbox_command parameter specifies the optional external
# command to use instead of mailbox delivery. The command is run as
# the recipient with proper HOME, SHELL and LOGNAME environment settings.
# Exception:  delivery for root is done as $default_user.
#
# Other environment variables of interest: USER (recipient username),
# EXTENSION (address extension), DOMAIN (domain part of address),
# and LOCAL (the address localpart).
#
# Unlike other Postfix configuration parameters, the mailbox_command
# parameter is not subjected to $parameter substitutions. This is to
# make it easier to specify shell syntax (see example below).
#
# Avoid shell meta characters because they will force Postfix to run
# an expensive shell process. Procmail alone is expensive enough.
#
# IF YOU USE THIS TO DELIVER MAIL SYSTEM-WIDE, YOU MUST SET UP AN
# ALIAS THAT FORWARDS MAIL FOR ROOT TO A REAL USER.
#
#mailbox_command = /some/where/procmail
#mailbox_command = /some/where/procmail -a "$EXTENSION"

# The mailbox_transport specifies the optional transport in master.cf
# to use after processing aliases and .forward files. This parameter
# has precedence over the mailbox_command, fallback_transport and
# luser_relay parameters.
#
# Specify a string of the form transport:nexthop, where transport is
# the name of a mail delivery transport defined in master.cf.  The
# :nexthop part is optional. For more details see the sample transport
# configuration file.
#
# NOTE: if you use this feature for accounts not in the UNIX password
# file, then you must update the "local_recipient_maps" setting in
# the main.cf file, otherwise the SMTP server will reject mail for    
# non-UNIX accounts with "User unknown in local recipient table".
#
#mailbox_transport = lmtp:unix:/file/name
#mailbox_transport = cyrus

# The fallback_transport specifies the optional transport in master.cf
# to use for recipients that are not found in the UNIX passwd database.
# This parameter has precedence over the luser_relay parameter.
#
# Specify a string of the form transport:nexthop, where transport is
# the name of a mail delivery transport defined in master.cf.  The
# :nexthop part is optional. For more details see the sample transport
# configuration file.
#
# NOTE: if you use this feature for accounts not in the UNIX password
# file, then you must update the "local_recipient_maps" setting in
# the main.cf file, otherwise the SMTP server will reject mail for    
# non-UNIX accounts with "User unknown in local recipient table".
#
#fallback_transport = lmtp:unix:/file/name
#fallback_transport = cyrus
#fallback_transport =

# The luser_relay parameter specifies an optional destination address
# for unknown recipients.  By default, mail for unknown@$mydestination,
# unknown@[$inet_interfaces] or unknown@[$proxy_interfaces] is returned
# as undeliverable.
#
# The following expansions are done on luser_relay: $user (recipient
# username), $shell (recipient shell), $home (recipient home directory),
# $recipient (full recipient address), $extension (recipient address
# extension), $domain (recipient domain), $local (entire recipient
# localpart), $recipient_delimiter. Specify ${name?value} or
# ${name:value} to expand value only when $name does (does not) exist.
#
# luser_relay works only for the default Postfix local delivery agent.
#
# NOTE: if you use this feature for accounts not in the UNIX password
# file, then you must specify "local_recipient_maps =" (i.e. empty) in
# the main.cf file, otherwise the SMTP server will reject mail for    
# non-UNIX accounts with "User unknown in local recipient table".
#
#luser_relay = $user at other.host
#luser_relay = $local at other.host
#luser_relay = admin+$local
  
# JUNK MAIL CONTROLS
# 
# The controls listed here are only a very small subset. The file
# SMTPD_ACCESS_README provides an overview.

# The header_checks parameter specifies an optional table with patterns
# that each logical message header is matched against, including
# headers that span multiple physical lines.
#
# By default, these patterns also apply to MIME headers and to the
# headers of attached messages. With older Postfix versions, MIME and
# attached message headers were treated as body text.
#
# For details, see "man header_checks".
#
#header_checks = regexp:/etc/postfix/header_checks

# FAST ETRN SERVICE
#
# Postfix maintains per-destination logfiles with information about
# deferred mail, so that mail can be flushed quickly with the SMTP
# "ETRN domain.tld" command, or by executing "sendmail -qRdomain.tld".
# See the ETRN_README document for a detailed description.
# 
# The fast_flush_domains parameter controls what destinations are
# eligible for this service. By default, they are all domains that
# this server is willing to relay mail to.
# 
#fast_flush_domains = $relay_domains

# SHOW SOFTWARE VERSION OR NOT
#
# The smtpd_banner parameter specifies the text that follows the 220
# code in the SMTP server's greeting banner. Some people like to see
# the mail version advertised. By default, Postfix shows no version.
#
# You MUST specify $myhostname at the start of the text. That is an
# RFC requirement. Postfix itself does not care.
#
#smtpd_banner = $myhostname ESMTP $mail_name
#smtpd_banner = $myhostname ESMTP $mail_name ($mail_version)

# PARALLEL DELIVERY TO THE SAME DESTINATION
#
# How many parallel deliveries to the same user or domain? With local
# delivery, it does not make sense to do massively parallel delivery
# to the same user, because mailbox updates must happen sequentially,
# and expensive pipelines in .forward files can cause disasters when
# too many are run at the same time. With SMTP deliveries, 10
# simultaneous connections to the same domain could be sufficient to
# raise eyebrows.
# 
# Each message delivery transport has its XXX_destination_concurrency_limit
# parameter.  The default is $default_destination_concurrency_limit for
# most delivery transports. For the local delivery agent the default is 2.

#local_destination_concurrency_limit = 2
#default_destination_concurrency_limit = 20

# DEBUGGING CONTROL
#
# The debug_peer_level parameter specifies the increment in verbose
# logging level when an SMTP client or server host name or address
# matches a pattern in the debug_peer_list parameter.
#
debug_peer_level = 5

# The debug_peer_list parameter specifies an optional list of domain
# or network patterns, /file/name patterns or type:name tables. When
# an SMTP client or server host name or address matches a pattern,
# increase the verbose logging level by the amount specified in the
# debug_peer_level parameter.
#
#debug_peer_list = 127.0.0.1
#debug_peer_list = some.domain

# The debugger_command specifies the external command that is executed
# when a Postfix daemon program is run with the -D option.
#
# Use "command .. & sleep 5" so that the debugger can attach before
# the process marches on. If you use an X-based debugger, be sure to
# set up your XAUTHORITY environment variable before starting Postfix.
#
debugger_command =
	 PATH=/bin:/usr/bin:/usr/local/bin:/usr/X11R6/bin
	 xxgdb $daemon_directory/$process_name $process_id & sleep 5

# If you can't use X, use this to capture the call stack when a
# daemon crashes. The result is in a file in the configuration
# directory, and is named after the process name and the process ID.
#
# debugger_command =
#	PATH=/bin:/usr/bin:/usr/local/bin; export PATH; (echo cont;
#	echo where) | gdb $daemon_directory/$process_name $process_id 2>&1
#	>$config_directory/$process_name.$process_id.log & sleep 5
#
# Another possibility is to run gdb under a detached screen session.
# To attach to the screen sesssion, su root and run "screen -r
# <id_string>" where <id_string> uniquely matches one of the detached
# sessions (from "screen -list").
#
# debugger_command =
#	PATH=/bin:/usr/bin:/sbin:/usr/sbin; export PATH; screen
#	-dmS $process_name gdb $daemon_directory/$process_name
#	$process_id & sleep 1

# INSTALL-TIME CONFIGURATION INFORMATION
#
# The following parameters are used when installing a new Postfix version.
# 
# sendmail_path: The full pathname of the Postfix sendmail command.
# This is the Sendmail-compatible mail posting interface.
# 
sendmail_path = /usr/sbin/sendmail

# newaliases_path: The full pathname of the Postfix newaliases command.
# This is the Sendmail-compatible command to build alias databases.
#
newaliases_path = /usr/bin/newaliases

# mailq_path: The full pathname of the Postfix mailq command.  This
# is the Sendmail-compatible mail queue listing command.
# 
mailq_path = /usr/bin/mailq

# setgid_group: The group for mail submission and queue management
# commands.  This must be a group name with a numerical group ID that
# is not shared with other accounts, not even with the Postfix account.
#
setgid_group = _postdrop

# html_directory: The location of the Postfix HTML documentation.
#
html_directory = no

# manpage_directory: The location of the Postfix on-line manual pages.
#
manpage_directory = /usr/share/man

# sample_directory: The location of the Postfix sample configuration files.
# This parameter is obsolete as of Postfix 2.1.
#
sample_directory = /usr/share/doc/postfix/examples

# readme_directory: The location of the Postfix README files.
#
readme_directory = /usr/share/doc/postfix
mydomain_fallback = localhost
#message_size_limit = 10485760
message_size_limit = 41943040
myhostname = mcgregor.admilon.net
# fertig
 # on re-queueing of a message smtpd_*_restrictions do not apply,
 # so we'd better provide a safe default for a content_filter,
 # even at an expense of later flipping the choice twice
 # (which adds a bit to log clutter, but never mind)
 #
content_filter = smtp-amavis:[127.0.0.1]:10024
# vorher
#content_filter = smtp-amavis:[127.0.0.1]:10024
#
mailbox_transport = dovecot
mydomain = admilon.net
mailbox_size_limit = 0
enable_server_options = yes
inet_interfaces = all
smtpd_sasl_auth_enable = yes
smtpd_helo_required = yes
smtpd_use_pw_server = yes
#mit Greylisting
#smtpd_recipient_restrictions = permit_sasl_authenticated permit_mynetworks reject_unauth_destination check_policy_service unix:private/policy permit
#ohne Greylisting
smtpd_recipient_restrictions = permit_sasl_authenticated,permit_mynetworks,reject_unauth_destination,permit
smtpd_pw_server_security_options = login,gssapi,cram-md5
data_directory = /var/lib/postfix
smtpd_client_restrictions = 
	permit_sasl_authenticated 
		permit_mynetworks
		check_sender_access hash:/etc/postfix/whitelist
		reject_non_fqdn_hostname
		reject_unknown_reverse_client_hostname  
		reject_rbl_client cbl.abuseat.org 
		reject_rbl_client zen.spamhaus.org		
		permit
		#
		#reject_rbl_client bl.spamcop.net 
		#reject_unknown_client 
	  #
  # reject_invalid_hostname
  
# each triggered FILTER deposits its argument into a
# content_filter setting, the last deposited value applies
#
# das hier kommt nach smtpd_client_restrictions
# d.h. alles was vorher abgewiesen wurde landet hier gar nicht
smtpd_sender_restrictions = 
	check_sender_access regexp:/etc/postfix/tag_as_originating.re
	permit_mynetworks
	permit_sasl_authenticated
	permit_tls_clientcerts
	check_sender_access regexp:/etc/postfix/tag_as_foreign.re

  # Make sure to assign FILTER tags in restrictions which
  # are only invoked once per message, e.g. client or sender
  # restrictions, but NOT on smtpd_recipient_restrictions,
  # as a message may have multiple recipients, so multiple
  # passes through FILTER tag assignments can yield a
  # surprising (and incorrect) result.
 
 # 
smtpd_data_restrictions = permit_mynetworks, reject_unauth_pipelining, permit
#
mydestination = $myhostname, localhost.$mydomain, $mydomain, localhost, mail.$mydomain
virtual_transport = virtual
# changes to postfix aliase 
# weil der leopard schluckauf hat
#virtual_mailbox_domains = 
#virtual_alias_domains = hash:/etc/postfix/virtual_domains
#virtual_alias_maps = hash:/etc/postfix/virtual_users
virtual_mailbox_domains = hash:/etc/postfix/virtual_domains_dummy
virtual_alias_domains = hash:/etc/postfix/virtual_domains
virtual_alias_maps = hash:/etc/postfix/virtual
#hash:/private/var/mailman/data/virtual-mailman
#relayhost = 
mynetworks = 127.0.0.0/8,192.168.2.0/24,192.168.1.0/24
#this should not be used but is current
#smtpd_use_tls = yes
#smtpd_enforce_tls = no
#instead this should be used:
smtpd_tls_security_level = may
#
smtpd_tls_cert_file = /etc/certificates/mcgregor.admilon.net.476EFD153EAF1C131C9885854A44E5635D465588.cert.pem
smtpd_tls_key_file = /etc/certificates/mcgregor.admilon.net.476EFD153EAF1C131C9885854A44E5635D465588.key.pem
#
#smtp_use_tls = yes
smtp_tls_note_starttls_offer = yes
#smtp_tls_key_file = /etc/certificates/admilon.net.key
#smtp_tls_cert_file = /etc/certificates/admilon.net.crt
#smtpd_tls_ask_ccert = yes
#smtpd_tls_req_ccert = nosmtpd_tls_loglevel = 0
smtpd_tls_loglevel = 0
smtpd_tls_CAfile = /etc/certificates/mcgregor.admilon.net.476EFD153EAF1C131C9885854A44E5635D465588.chain.pem
tls_random_source = dev:/dev/urandom
owner_request_special = no
recipient_delimiter = +
#alias_maps = hash:/etc/aliases,hash:/usr/share/mailman/data/aliases
#,hash:/var/mailman/data/aliases
#alias_maps = hash:/etc/aliases,hash:/var/mailman/data/aliases
smtp_uce_controlls = 1
relayhost = 
smtpd_helo_restrictions = reject_invalid_helo_hostname reject_non_fqdn_helo_hostname
header_checks = pcre:/etc/postfix/custom_header_checks
nested_header_checks = $header_checks
smtp_connection_cache_time_limit = 2s
lmtp_rcpt_timeout = 300s
tls_export_cipherlist = ALL:+RC4:@STRENGTH
smtp_sasl_auth_cache_name = 
check_for_od_forward = yes
default_verp_delimiters = +=
showq_service_name = showq
smtp_enforce_tls = no
milter_macro_daemon_name = $myhostname
smtpd_tls_security_level = 
command_expansion_filter = 1234567890!@%-_=+:,./abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ
smtpd_tls_mandatory_exclude_ciphers = 
milter_connect_timeout = 30s
local_destination_concurrency_negative_feedback = $default_destination_concurrency_negative_feedback
default_delivery_slot_loan = 3
smtp_destination_recipient_limit = $default_destination_recipient_limit
default_transport = smtp
lmtp_defer_if_no_mx_address_found = no
lmtp_pix_workaround_maps = 
local_recipient_maps = proxy:unix:passwd.byname $alias_maps
lmtp_tls_enforce_peername = yes
lmtp_tls_fingerprint_digest = md5
flush_service_name = flush
non_fqdn_reject_code = 504
smtpd_tls_req_ccert = no
lmtp_destination_concurrency_negative_feedback = $default_destination_concurrency_negative_feedback
ipc_idle = 5s
smtp_discard_ehlo_keyword_address_maps = 
proxy_read_maps = $local_recipient_maps $mydestination $virtual_alias_maps $virtual_alias_domains $virtual_mailbox_maps $virtual_mailbox_domains $relay_recipient_maps $relay_domains $canonical_maps $sender_canonical_maps $recipient_canonical_maps $relocated_maps $transport_maps $mynetworks $sender_bcc_maps $recipient_bcc_maps $smtp_generic_maps $lmtp_generic_maps
address_verify_map = 
lmtp_tls_key_file = $lmtp_tls_cert_file
connection_cache_status_update_time = 600s
always_bcc = 
smtpd_starttls_timeout = 300s
berkeley_db_create_buffer_size = 16777216
forward_expansion_filter = 1234567890!@%-_=+:,./abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ
smtpd_client_port_logging = no
myorigin = $myhostname
smtp_tls_per_site = 
default_recipient_refill_delay = 5s
lmtp_pix_workaround_delay_time = 10s
lmtp_sasl_type = cyrus
deliver_lock_delay = 1s
lmtp_tls_loglevel = 0
local_destination_concurrency_failed_cohort_limit = $default_destination_concurrency_failed_cohort_limit
lmtp_send_xforward_command = no
smtp_tls_secure_cert_match = nexthop, dot-nexthop
undisclosed_recipients_header = To: undisclosed-recipients:;
dont_remove = 0
sender_canonical_maps = 
smtpd_policy_service_max_idle = 300s
smtpd_authorized_verp_clients = $authorized_verp_clients
smtpd_null_access_lookup_key = <>
bounce_size_limit = 50000
tls_random_exchange_name = ${data_directory}/prng_exch
milter_connect_macros = j {daemon_name} v
smtp_sasl_tls_verified_security_options = $smtp_sasl_tls_security_options
virtual_initial_destination_concurrency = $initial_destination_concurrency
smtp_sasl_mechanism_filter = 
alias_database = hash:/etc/aliases
smtp_sasl_auth_soft_bounce = yes
fallback_transport_maps = 
reject_code = 554
cleanup_service_name = cleanup
lmtp_tls_session_cache_database = 
unverified_recipient_reject_code = 450
lmtp_lhlo_name = $myhostname
qmgr_message_recipient_minimum = 10
smtpd_banner = $myhostname ESMTP $mail_name
mail_release_date = 20080902
lmtp_mail_timeout = 300s
lmtp_pix_workaround_threshold_time = 500s
tls_high_cipherlist = ALL:!EXPORT:!LOW:!MEDIUM:+RC4:@STRENGTH
transport_maps = 
smtp_bind_address6 = 
resolve_numeric_domain = no
default_recipient_refill_limit = 100
tls_daemon_random_bytes = 32
smtp_rset_timeout = 20s
smtpd_discard_ehlo_keywords = 
smtp_sasl_type = cyrus
cyrus_sasl_config_path = 
qmqpd_timeout = 300s
anvil_rate_time_unit = 60s
smtpd_sasl_authenticated_header = no
virtual_mailbox_base = 
virtual_uid_maps = 
tls_low_cipherlist = ALL:!EXPORT:+RC4:@STRENGTH
relay_domains = $mydestination
relay_domains_reject_code = 554
address_verify_negative_cache = yes
lmtp_nested_header_checks = 
tls_random_prng_update_period = 3600s
smtp_pix_workaround_threshold_time = 500s
relay_clientcerts = 
smtp_tls_dcert_file = 
smtpd_authorized_xforward_hosts = 
delay_notice_recipient = postmaster
lmtp_tls_dkey_file = $lmtp_tls_dcert_file
anvil_status_update_time = 600s
virtual_destination_concurrency_positive_feedback = $default_destination_concurrency_positive_feedback
lmtp_tls_mandatory_protocols = SSLv3, TLSv1
smtpd_tls_exclude_ciphers = 
local_initial_destination_concurrency = $initial_destination_concurrency
smtp_connection_reuse_time_limit = 300s
duplicate_filter_limit = 1000
queue_file_attribute_count_limit = 100
mail_spool_directory = /var/mail
local_command_shell = 
proxy_interfaces = 
unknown_relay_recipient_reject_code = 550
address_verify_relay_transport = $relay_transport
smtp_generic_maps = 
smtpd_policy_service_max_ttl = 1000s
virtual_gid_maps = 
smtp_fallback_relay = $fallback_relay
relay_destination_recipient_limit = $default_destination_recipient_limit
local_header_rewrite_clients = permit_inet_interfaces
lmtp_sasl_tls_verified_security_options = $lmtp_sasl_tls_security_options
bounce_notice_recipient = postmaster
default_destination_concurrency_negative_feedback = 1
authorized_mailq_users = static:anyone
smtpd_expansion_filter = \t\40!"#$%&'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\\]^_`abcdefghijklmnopqrstuvwxyz{|}~
smtp_helo_timeout = 300s
smtpd_client_event_limit_exceptions = ${smtpd_client_connection_limit_exceptions:$mynetworks}
tls_random_bytes = 32
local_destination_recipient_limit = 1
mail_name = Postfix
smtpd_discard_ehlo_keyword_address_maps = 
mailbox_delivery_lock = flock, dotlock
sender_canonical_classes = envelope_sender, header_sender
debug_peer_list = 
smtp_tls_mandatory_ciphers = medium
strict_mailbox_ownership = yes
lmtp_header_checks = 
unknown_hostname_reject_code = 450
message_strip_characters = 
smtp_destination_concurrency_negative_feedback = $default_destination_concurrency_negative_feedback
lmtp_tls_CApath = 
process_id_directory = pid
smtpd_client_connection_rate_limit = 0
smtpd_client_connection_count_limit = 50
address_verify_service_name = verify
non_smtpd_milters = 
maximal_backoff_time = 4000s
transport_retry_time = 60s
qmgr_clog_warn_time = 300s
lmtp_tls_verify_cert_match = hostname
config_directory = /etc/postfix
smtpd_recipient_overshoot_limit = 1000
milter_unknown_command_macros = 
hash_queue_depth = 1
address_verify_transport_maps = $transport_maps
defer_service_name = defer
smtpd_sasl_tls_security_options = $smtpd_sasl_security_options
tls_random_reseed_period = 3600s
luser_relay = 
prepend_delivered_header = command, file, forward
qmqpd_error_delay = 1s
smtpd_junk_command_limit = 100
line_length_limit = 2048
smtpd_sasl_path = smtpd
resolve_null_domain = no
smtpd_tls_ccert_verifydepth = 9
lmtp_body_checks = 
smtp_tls_exclude_ciphers = 
smtpd_tls_dkey_file = $smtpd_tls_dcert_file
lmtp_randomize_addresses = yes
virtual_destination_concurrency_failed_cohort_limit = $default_destination_concurrency_failed_cohort_limit
queue_minfree = 0
milter_helo_macros = {tls_version} {cipher} {cipher_bits} {cert_subject} {cert_issuer}
lmtp_tls_security_level = 
forward_path = $home/.forward${recipient_delimiter}${extension}, $home/.forward
bounce_template_file = 
application_event_drain_time = 100s
smtp_send_xforward_command = no
virtual_minimum_uid = 100
lmtp_tls_cert_file = 
lmtp_sasl_path = 
smtp_use_tls = no
smtpd_noop_commands = 
lmtp_host_lookup = dns
canonical_classes = envelope_sender, envelope_recipient, header_sender, header_recipient
daemon_timeout = 18000s
address_verify_default_transport = $default_transport
lmtp_connection_cache_time_limit = 2s
smtp_tls_enforce_peername = yes
smtpd_soft_error_limit = 10
default_rbl_reply = $rbl_code Service unavailable; $rbl_class [$rbl_what] blocked using $rbl_domain${rbl_reason?; $rbl_reason}
ipc_timeout = 3600s
recipient_canonical_classes = envelope_recipient, header_recipient
smtpd_sasl_type = cyrus
masquerade_exceptions = 
proxy_write_maps = $smtp_sasl_auth_cache_name $lmtp_sasl_auth_cache_name
frozen_delivered_to = yes
relay_destination_concurrency_positive_feedback = $default_destination_concurrency_positive_feedback
virus_db_last_update = 2009-07-09 14:07:59 +0900
lmtp_destination_recipient_limit = $default_destination_recipient_limit
spam_domain_name = admilon.net
smtpd_tls_mandatory_protocols = SSLv3, TLSv1
smtp_quit_timeout = 300s
default_extra_recipient_limit = 1000
mime_header_checks = $header_checks
smtp_sasl_tls_security_options = $smtp_sasl_security_options
bounce_service_name = bounce
ipc_ttl = 1000s
address_verify_positive_refresh_time = 7d
lmtp_tcp_port = 24
lmtp_initial_destination_concurrency = $initial_destination_concurrency
pickup_service_name = pickup
receive_override_options = 
smtp_tls_session_cache_database = 
virtual_alias_expansion_limit = 1000
default_delivery_slot_discount = 50
fast_flush_domains = $relay_domains
relocated_maps = 
smtp_tls_fingerprint_digest = md5
relay_destination_concurrency_failed_cohort_limit = $default_destination_concurrency_failed_cohort_limit
smtpd_delay_open_until_valid_rcpt = yes
lmtp_sasl_security_options = noplaintext, noanonymous
lmtp_destination_rate_delay = $default_destination_rate_delay
import_environment = MAIL_CONFIG MAIL_DEBUG MAIL_LOGTAG TZ XAUTHORITY DISPLAY LANG=C
smtp_line_length_limit = 990
header_size_limit = 102400
lmtp_connection_cache_on_demand = yes
smtp_sasl_path = 
fallback_transport = 
smtpd_history_flush_threshold = 100
backwards_bounce_logfile_compatibility = yes
smtpd_tls_mandatory_ciphers = medium
smtp_tls_CApath = 
qmgr_message_recipient_limit = 20000
connection_cache_service_name = scache
relay_destination_concurrency_limit = $default_destination_concurrency_limit
in_flow_delay = 1s
milter_end_of_header_macros = i
smtp_initial_destination_concurrency = $initial_destination_concurrency
lmtp_tls_per_site = 
smtpd_proxy_timeout = 100s
lmtp_discard_lhlo_keywords = 
lmtp_tls_scert_verifydepth = 9
smtp_pix_workarounds = disable_esmtp,delay_dotcrlf
smtp_sasl_password_maps = 
smtp_starttls_timeout = 300s
tls_null_cipherlist = eNULL:!aNULL
unverified_sender_reject_code = 450
lmtp_enforce_tls = no
hopcount_limit = 50
smtpd_forbidden_commands = CONNECT GET POST
message_reject_characters = 
lmtp_sasl_auth_cache_time = 90d
maps_rbl_domains = 
unknown_address_reject_code = 450
smtp_tls_security_level = 
lmtp_quote_rfc821_envelope = yes
lmtp_tls_note_starttls_offer = no
default_destination_concurrency_limit = 20
local_transport = local:$myhostname
permit_mx_backup_networks = 
smtp_tls_policy_maps = 
lmtp_mime_header_checks = 
lmtp_line_length_limit = 990
lmtp_tls_mandatory_exclude_ciphers = 
smtp_nested_header_checks = 
lmtp_xforward_timeout = 300s
send_cyrus_sasl_authzid = no
smtp_xforward_timeout = 300s
lmtp_mx_session_limit = 2
address_verify_negative_expire_time = 3d
smtpd_client_message_rate_limit = 0
smtp_mx_session_limit = 2
header_address_token_limit = 10240
smtp_rcpt_timeout = 300s
smtpd_tls_dcert_file = 
mime_nesting_limit = 100
lmtp_bind_address6 = 
relay_destination_concurrency_negative_feedback = $default_destination_concurrency_negative_feedback
connection_cache_protocol_timeout = 5s
error_service_name = error
virtual_destination_concurrency_limit = $default_destination_concurrency_limit
lmtp_rset_timeout = 20s
smtp_tls_session_cache_timeout = 3600s
notify_classes = resource, software
smtpd_timeout = 300s
virtual_mailbox_maps = 
alias_maps = hash:/etc/aliases
sender_bcc_maps = 
execution_directory_expansion_filter = 1234567890!@%-_=+:,./abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ
lmtp_tls_dcert_file = 
default_recipient_limit = 20000
virtual_mailbox_lock = fcntl, dotlock
authorized_flush_users = static:anyone
lmtp_connection_reuse_time_limit = 300s
double_bounce_sender = double-bounce
relay_recipient_maps = 
smtp_pix_workaround_maps = 
maximal_queue_lifetime = 5d
smtpd_tls_always_issue_session_ids = yes
smtp_defer_if_no_mx_address_found = no
address_verify_sender = $double_bounce_sender
lmtp_mx_address_limit = 5
smtpd_tls_CApath = 
stale_lock_time = 500s
smtpd_tls_dh1024_param_file = 
trace_service_name = trace
default_destination_concurrency_positive_feedback = 1
smtp_mx_address_limit = 5
default_privs = nobody
deliver_lock_attempts = 20
lmtp_starttls_timeout = 300s
parent_domain_matches_subdomains = debug_peer_list,fast_flush_domains,mynetworks,permit_mx_backup_networks,qmqpd_authorized_clients,relay_domains,smtpd_access_maps
lmtp_cname_overrides_servername = no
smtp_tls_dkey_file = $smtp_tls_dcert_file
smtp_data_xfer_timeout = 180s
#war 0
smtpd_client_new_tls_session_rate_limit = 10
lmtp_sasl_auth_cache_name = 
lmtp_tls_secure_cert_match = nexthop
smtp_tls_loglevel = 0
milter_end_of_data_macros = i
smtpd_reject_unlisted_recipient = yes
command_execution_directory = 
authorized_submit_users = static:anyone
syslog_name = postfix
smtpd_end_of_data_restrictions = 
lmtp_generic_maps = 
default_minimum_delivery_slots = 3
smtp_helo_name = $myhostname
access_map_reject_code = 554
lmtp_sasl_mechanism_filter = 
lmtp_sasl_auth_soft_bounce = yes
lmtp_sender_dependent_authentication = no
address_verify_relayhost = $relayhost
smtpd_tls_received_header = no
smtp_mime_header_checks = 
lmtp_sasl_tls_security_options = $lmtp_sasl_security_options
smtpd_tls_dh512_param_file = 
rewrite_service_name = rewrite
mailbox_transport_maps = 
error_notice_recipient = postmaster
milter_content_timeout = 300s
smtpd_error_sleep_time = 1s
destination_concurrency_feedback_debug = no
fault_injection_code = 0
internal_mail_filter_classes = 
smtpd_peername_lookup = yes
lmtp_destination_concurrency_positive_feedback = $default_destination_concurrency_positive_feedback
propagate_unmatched_extensions = canonical, virtual
smtp_mail_timeout = 300s
smtpd_authorized_xclient_hosts = 
address_verify_positive_expire_time = 31d
delay_logging_resolution_limit = 2
qmgr_fudge_factor = 100
lmtp_data_xfer_timeout = 180s
max_use = 100
milter_data_macros = i
maps_rbl_reject_code = 554
qmqpd_authorized_clients = 
allow_mail_to_commands = alias, forward
relay_transport = relay
bounce_queue_lifetime = 5d
masquerade_domains = 
smtp_sender_dependent_authentication = no
smtpd_sender_login_maps = 
lmtp_tls_CAfile = 
address_verify_poll_delay = 3s
smtp_discard_ehlo_keywords = 
delay_warning_time = 0h
smtp_connect_timeout = 30s
smtp_tls_mandatory_exclude_ciphers = 
service_throttle_time = 60s
milter_default_action = tempfail
smtp_data_init_timeout = 120s
detect_8bit_encoding_header = yes
2bounce_notice_recipient = postmaster
default_delivery_slot_cost = 5
smtp_tls_verify_cert_match = hostname
qmqpd_client_port_logging = no
smtpd_tls_ask_ccert = no
masquerade_classes = envelope_sender, header_sender, header_recipient
qmgr_message_active_limit = 20000
address_verify_local_transport = $local_transport
lmtp_tls_fingerprint_cert_match = 
connection_cache_ttl_limit = 2s
smtpd_etrn_restrictions = 
virtual_destination_rate_delay = $default_destination_rate_delay
export_environment = TZ MAIL_CONFIG LANG
lmtp_tls_exclude_ciphers = 
virtual_alias_recursion_limit = 1000
stress = 
smtpd_hard_error_limit = 20
smtp_destination_concurrency_failed_cohort_limit = $default_destination_concurrency_failed_cohort_limit
smtp_connection_cache_on_demand = yes
smtp_tls_key_file = $smtp_tls_cert_file
trigger_timeout = 10s
address_verify_poll_count = 3
fast_flush_refresh_time = 12h
smtp_tls_mandatory_protocols = SSLv3, TLSv1
smtpd_proxy_ehlo = $myhostname
relay_destination_rate_delay = $default_destination_rate_delay
lmtp_pix_workarounds = disable_esmtp,delay_dotcrlf
lmtp_destination_concurrency_limit = $default_destination_concurrency_limit
mail_version = 2.5.5
relay_initial_destination_concurrency = $initial_destination_concurrency
remote_header_rewrite_domain = 
max_idle = 100s
mailbox_command_maps = 
empty_address_relayhost_maps_lookup_key = <>
default_destination_concurrency_failed_cohort_limit = 1
multi_recipient_bounce_reject_code = 550
smtpd_sasl_exceptions_networks = 
#should be no
smtpd_tls_auth_only = no
use_od_delivery_path = no
verp_delimiter_filter = -=+
smtp_pix_workaround_delay_time = 10s
smtp_data_done_timeout = 600s
smtpd_restriction_classes = 
mailbox_command = 
lmtp_data_init_timeout = 120s
recipient_bcc_maps = 
smtpd_tls_session_cache_database = 
virtual_destination_concurrency_negative_feedback = $default_destination_concurrency_negative_feedback
allow_mail_to_files = alias, forward
address_verify_negative_refresh_time = 3h
lmtp_tls_policy_maps = 
lmtp_lhlo_timeout = 300s
lmtp_tls_session_cache_timeout = 3600s
lmtp_tls_mandatory_ciphers = medium
plaintext_reject_code = 450
initial_destination_concurrency = 5
lmtp_quit_timeout = 300s
smtpd_client_recipient_rate_limit = 0
smtpd_proxy_filter = 
tls_medium_cipherlist = ALL:!EXPORT:!LOW:+RC4:@STRENGTH
default_database_type = hash
smtp_destination_concurrency_limit = $default_destination_concurrency_limit
address_verify_sender_dependent_relayhost_maps = $sender_dependent_relayhost_maps
smtp_sasl_auth_cache_time = 90d
fast_flush_purge_time = 7d
local_destination_concurrency_positive_feedback = $default_destination_concurrency_positive_feedback
body_checks_size_limit = 51200
smtp_body_checks = 
smtp_header_checks = 
unknown_client_reject_code = 450
lmtp_discard_lhlo_keyword_address_maps = 
empty_address_recipient = MAILER-DAEMON
lmtp_skip_5xx_greeting = yes
smtp_destination_rate_delay = $default_destination_rate_delay
berkeley_db_read_buffer_size = 131072
virtual_mailbox_limit = 51200000
invalid_hostname_reject_code = 501
smtpd_sasl_security_options = noanonymous
address_verify_virtual_transport = $virtual_transport
inet_protocols = ipv4
default_process_limit = 100
smtp_sasl_security_options = noplaintext, noanonymous
smtp_host_lookup = dns
fork_delay = 1s
smtpd_reject_unlisted_sender = no
defer_code = 450
lmtp_connect_timeout = 0s
local_destination_rate_delay = $default_destination_rate_delay
lmtp_data_done_timeout = 600s
milter_protocol = 2
lmtp_connection_cache_destinations = 
smtp_tls_scert_verifydepth = 9
smtp_tls_CAfile = 
milter_command_timeout = 30s
smtpd_tls_session_cache_timeout = 3600s
smtpd_milters = 
syslog_facility = mail
smtp_tls_fingerprint_cert_match = 
defer_transports = 
enable_original_recipient = yes
fork_attempts = 5
use_getpwnam_ext = yes
milter_mail_macros = i {auth_type} {auth_authen} {auth_author} {mail_addr}
default_destination_rate_delay = 0s
milter_rcpt_macros = i {rcpt_addr}
smtp_quote_rfc821_envelope = yes
command_time_limit = 1000s
default_destination_recipient_limit = 50
lmtp_use_tls = no
smtp_destination_concurrency_positive_feedback = $default_destination_concurrency_positive_feedback
smtp_tls_cert_file = 
smtpd_policy_service_timeout = 100s
queue_service_name = qmgr
hash_queue_names = deferred,defer
smtp_cname_overrides_servername = no
smtpd_tls_fingerprint_digest = md5
lmtp_bind_address = 
milter_macro_v = $mail_name $mail_version
smtpd_recipient_limit = 1000
mime_boundary_length_limit = 2048
smtp_connection_cache_destinations = 
smtpd_tls_wrappermode = no
queue_run_delay = 300s
minimal_backoff_time = 300s
local_destination_concurrency_limit = 2
lmtp_destination_concurrency_failed_cohort_limit = $default_destination_concurrency_failed_cohort_limit
virtual_destination_recipient_limit = $default_destination_recipient_limit
best_mx_transport = 
sender_dependent_relayhost_maps = 
rbl_reply_maps = 



Mehr Informationen über die Mailingliste postfix-users