aboutsummaryrefslogblamecommitdiff
path: root/postfix/main.cf
blob: 44060625a862da21bd9c5d86cc6ed16158c00f7d (plain) (tree) 
b3f46e0





















291156a ^






b3f46e0





d7f8c76 ^

b3f46e0




d7f8c76 ^



b3f46e0




291156a ^





b3f46e0












57e0747 ^



1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21

22
23
24
25
26
27

28
29
30
31
32

33

34
35
36
37

38
39
40

41
42
43
44

45
46
47
48
49

50
51
52
53
54
55
56
57
58
59
60
61

62
63
64





















                                                                           





                                                




                                                                            
                                                                                                                                                                       



                                                                                                  


                                                                      



                            




                                          











                                                                     


                       
maillog_file = /var/log/mail.log

# core options
myhostname = mail.arf20.com
myorigin = /etc/mailname
mydestination = mail.arf20.com, arf20.com, localhost, localhost.localdomain
#relayhost = # do relay (auth)
mynetworks = 127.0.0.0/8 [::ffff:127.0.0.0]/104 [::1]/128
mailbox_size_limit = 0
recipient_delimiter = +
inet_interfaces = all

alias_maps = hash:/etc/aliases
alias_database = hash:/etc/aliases

# common smtpd (incoming) options
#   tls options
smtpd_tls_cert_file=/etc/letsencrypt/live/mail.arf20.com/fullchain.pem
smtpd_tls_key_file=/etc/letsencrypt/live/mail.arf20.com/privkey.pem
smtpd_use_tls=yes
smtpd_tls_security_level=may
smtpd_tls_mandatory_ciphers = high
smtpd_tls_mandatory_exclude_ciphers = aNULL, MD5
smtpd_tls_mandatory_protocols = >=TLSv1.2
smtpd_tls_protocols = >=TLSv1.2
smtpd_tls_ciphers = high
smtpd_tls_exclude_ciphers = aNULL, MD5
smtpd_tls_session_cache_database = btree:${data_directory}/smtpd_scache
smtpd_relay_before_recipient_restrictions=no
#   restriction options
#     no client restrictions, allow all hosts to connect (for incoming mail)
#     allow incoming messages from unauthenticated servers
smtpd_recipient_restrictions = check_recipient_access hash:/etc/postfix/protected_destinations, permit_mynetworks, permit_sasl_authenticated, reject_unauth_destination
#     allow relaying mail only from ARFNET users
smtpd_relay_restrictions = permit_mynetworks, permit_sasl_authenticated, reject_unauth_destination
#     only allow messages to be sent from arf20.com domain
smtpd_sender_restrictions = reject_unknown_sender_domain
#   restrict mailing lists to insiders
smtpd_restriction_classes = insiders_only
insiders_only = check_sender_access hash:/etc/postfix/insiders, reject
#   auth options
smtpd_sasl_auth_enable=yes
smtpd_sasl_type=dovecot
smtpd_sasl_path=private/auth
#   milter options
#   chrooted to /var/spool/postfix/
smtpd_milters=unix:/opendkim/opendkim.sock
non_smtpd_milters = $smtpd_milters
milter_default_action = accept

# common smtp (outgoing) options
#   tls options
smtp_tls_cert_file=/etc/letsencrypt/live/mail.arf20.com/fullchain.pem
smtp_tls_key_file=/etc/letsencrypt/live/mail.arf20.com/privkey.pem
smtp_use_tls = yes
smtp_tls_security_level=may
smtp_tls_protocols = !SSLv2, !SSLv3
smtp_tls_session_cache_database = btree:${data_directory}/smtp_scache

local_recipient_maps = proxy:unix:passwd.byname $alias_maps

# for mlmmj
recipient_delimiter = +
generated by cgit v1.2.3 (git 2.39.1) at 2024-11-21 19:39:36 +0000