Postfix - Sasl

To: debian-user-spanish@lists.debian.org
Subject: Postfix - Sasl
From: "Joan Manuel" <joanmanuel@elecgtm.une.cu>
Date: Tue, 9 Mar 2010 18:50:08 -0000 (UTC)
Message-id: <[🔎] 39588.10.22.4.1.1268160608.squirrel@webmail.elecgtm.une.cu>
Aqui les envio mi config completa para que la revises

#--nombre,dominios(s) y red(es)--#
myhostname = correo.subdominio.cu
mydomain = subdominio.cu
relayhost = 200.13.14.8

#--direccion que aparece en el from--#
myorigin = $mydomain

#--appending .domain is the MUA's job--#
append_dot_mydomain = no
biff = no

#--parametro TLS por defecto--#
smtpd_tls_cert_file=/etc/ssl/certs/ssl-cert-snakeoil.pem
smtpd_tls_key_file=/etc/ssl/private/ssl-cert-snakeoil.key
smtpd_use_tls=yes
smtpd_tls_session_cache_database = btree:${data_directory}/smtpd_scache
smtp_tls_session_cache_database = btree:${data_directory}/smtp_scache

#--ubicacion de direcctorios--#
queue_directory        = /var/spool/postfix
command_directory = /usr/sbin
daemon_directory = /usr/lib/postfix
program_directory = /usr/lib/postfix

#--propietario de colas y procesos--#
mail_owner = postfix
setgid_group = postdrop

#--tratamientos de alias--#
alias_maps = hash:/etc/aliases
alias_database = hash:/etc/aliases

#--identificacion de usuarios locales--#
local_recipient_maps        = $alias_maps unix:passwd.byname

#--entrega en paralelo para limitar el ancho de banda--#
default_destination_concurrency_limit        = 10
local_destination_concurrency_limit        = 10
local_destination_recipient_limit = 80

#--notificacion en caso de algun error--#
notify_classes                        = resource, software, policy

#--seguridad informatica--#
sender_bcc_maps = hash:/etc/postfix/sender_bcc
recipient_bcc_maps = hash:/etc/postfix/recipient_bcc

#--mensajes de error de entrega--#
bounce_template_file = /etc/postfix/bounce.cf

#--otros parametros de configuracion--#
recipient_delimiter = +
inet_interfaces = all
inet_protocols = all

#--2 mbytes maximo--#
message_size_limit = 2097152

#--50 mbytes buzon --#
mailbox_size_limit = 52428800

#--control de correo entrante / saliente--#
mynetworks = /etc/postfix/smtp_ip_permit
mydestination = $myhostname, $mydomain, localhost.$mydomain, localhost

#--habilitar el soporte sasl--#
smtpd_sasl_auth_enable = yes
smtp_sasl_auth_enable = yes
smtpd_sasl_security_options = noanonymous
smtpd_sasl_local_domain = $myhostname
broken_sasl_auth_clients = yes
smtpd_sasl_auth_enable = yes

#--habilitar el soporte tls--#
smtpd_tls_auth_only = no
smtp_use_tls = yes
smtp_tls_note_starttls_offer = yes
smtpd_tls_loglevel = 1
smtpd_tls_received_header = yes
smtpd_tls_session_cache_timeout = 3600s
tls_random_source = dev:/dev/urandom

#--host que pueden hacer smtp definidos en mynetworks--#
smtpd_client_restrictions =
permit_sasl_authenticated,permit_mynetworks,reject
smtpd_recipient_restrictions =
permit_mynetworks,permit_sasl_authenticated,reject_unauth_destination,check_policy_service
inet:127.0.0.1:60000

#--pasar toda la mesajeria a la cola hold para el mailscanner y filtrado--#
header_checks         = regexp:/etc/postfix/header_checks
body_checks        = regexp:/etc/postfix/body_checks

#--soporte para el MAILDIR--#
home_mailbox = Maildir/

#--restrinciones nacionales y la une--#
smtpd_restriction_classes  =
    admin_in,
    nac_in,
    nac_out,
    yahoo_in,
    yahoo_out,

smtpd_sender_restrictions =
     check_recipient_access hash:/etc/postfix/_usuarios_admin_in,
     check_recipient_access hash:/etc/postfix/_usuarios_nac_in,
     check_recipient_access hash:/etc/postfix/_usuarios_yahoo_in,
     reject_non_fqdn_sender,
     permit

smtpd_recipient_restrictions =
     check_sender_access hash:/etc/postfix/_usuarios_nac_out,
     check_sender_access hash:/etc/postfix/_usuarios_yahoo_out,
     permit_sasl_authenticated,
     permit_mynetworks,
     reject_non_fqdn_recipient,
     reject_unknown_recipient_domain,
     reject_unauth_destination,
     reject

inter_out =
       permit

admin_in  =
       check_recipient_access regexp:/etc/postfix/_filtro_admin,
       reject

nac_out  =
       check_recipient_access regexp:/etc/postfix/_filtro_nac,
       reject

nac_in =
       check_sender_access regexp:/etc/postfix/_filtro_nac,
       reject

yahoo_in =
       check_sender_access regexp:/etc/postfix/_filtro_yahoo,
       reject

yahoo_out  =
       check_recipient_access regexp:/etc/postfix/_filtro_yahoo,
       reject

smtpd_data_restrictions = reject_unauth_pipelining



-- 
 _________________________________________
/ Joan Manuel López de la Cruz            \
| Administrador de Red                    |
| Phone: (0121) 383421                    |
| Phone: (0121) 383465 Ext. 314           |
| Jabber: joanmanuel@jb.elecgtm.une.cu    |
| Jabber: joanmanuel@jb.une.cu            |
| Jabber: joanmanuel_l@yahoo.es           |
| Linux User# 490001                      |
\ Web: http://blog-admin.elecgtm.une.cu   /
 -----------------------------------------
   \
    \
        .--.
       |o_o |
       |:_/ |
      //   \ \
     (|     | )
    /'\_   _/`\
    \___)=(___/
Reply to:
Prev by Date: Re: activar root en UBUNTU 9.10
Next by Date: Re: Postfix - Sasl
Previous by thread: Re: Postfix - Sasl
Next by thread: Error al instalar desde isos montados
Index(es):
- Date
- Thread