[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

RE: exim.conf



fyi:  I was able to chmod 755 my root directory and my web server directory... so I can get shell access and my web serber seems to be working now

bernie

-----Original Message-----
From: Bernie Berg 
Sent: Friday, February 15, 2002 3:36 PM
To: Michael Merritt
Cc: debian-isp@lists.debian.org
Subject: RE: exim.conf


I ran the convert-and-create script, and it seemed to do the trick.  The only problem is that is must have also reset some permissions, becuase I cant get a shell with any user besides root now, and I got "forbidden" when accessing my web server.

any ideas on what happended?
bernie

-----Original Message-----
From: Michael Merritt [mailto:michael@miklm.com]
Sent: Friday, February 15, 2002 2:30 PM
To: Bernie Berg
Cc: debian-isp@lists.debian.org
Subject: Fwd: exim.conf



The main things to look at are maildir_delivery: in the TRANSPORTS section.  
Copy that verbatim into your /etc/exim/exim.conf file.

Then look for this (or modify it) at the end of the DIRECTORS section:
localuser:
  driver = localuser
  transport = maildir_delivery

You'll see I've got some virtual domain stuff that may or may not apply to 
you, but this should at least give you the general idea.

If you're delivering mail into /var/spool/mail/$USER now, you'll need to get 
the convert-and-create.pl script from qmail.org and run it to convert your 
existing user mailboxes from mbox to maildir.

Hope this gets you started.  Hopefull I'll have the time RSN to detail my 
setup on my site.  I've done some other stuff w/ exim+courier as well that 
may help some other ppl.

-Michael

----------  Forwarded Message  ----------
Subject: exim.conf
Date: Fri, 15 Feb 2002 14:24:42 -0600
From: Michael Merritt <michael@miklm.com>
To: michael@miklm.com

# This is the main exim configuration file.
# It was originally generated by `eximconfig', part of the exim package
# distributed with Debian, but it may edited by the mail system
 administrator. # This file originally generated by eximconfig at Fri Feb  1
 17:06:40 CST 2002 # See exim info section for details of the things that can
 be configured here.

# Please see the manual for a complete list
# of all the runtime configuration options that can be included in a
# configuration file.

# This file is divided into several parts, all but the last of which are
# terminated by a line containing the word "end". The parts must appear
# in the correct order, and all must be present (even if some of them are
# in fact empty). Blank lines, and lines starting with # are ignored.

######################################################################
#                    MAIN CONFIGURATION SETTINGS                     #
######################################################################

# Specify the domain you want to be added to all unqualified addresses
# here. Unqualified addresses are accepted only from local callers by
# default. See the receiver_unqualified_{hosts,nets} options if you want
# to permit unqualified addresses from remote sources. If this option is
# not set, the primary_hostname value is used for qualification.

qualify_domain = miklm.com

# If you want unqualified recipient addresses to be qualified with a
 different # domain to unqualified sender addresses, specify the recipient
 domain here. # If this option is not set, the qualify_domain value is used.

# qualify_recipient =

# Specify your local domains as a colon-separated list here. If this option
# is not set (i.e. not mentioned in the configuration file), the
# qualify_recipient value is used as the only local domain. If you do not
 want # to do any local deliveries, uncomment the following line, but do not
 supply # any data for it. This sets local_domains to an empty string, which
 is not # the same as not mentioning it at all. An empty string specifies
 that there # are no local domains; not setting it at all causes the default
 value (the # setting of qualify_recipient) to be used.

local_domains = /etc/exim/aliases.conf:/etc/exim/virtuals.conf

# Allow mail addressed to our hostname, or to our IP address.

local_domains_include_host = true
local_domains_include_host_literals = true

# Domains we relay for; that is domains that aren't considered local but we
# accept mail for them.

relay_domains =
 /etc/exim/aliases.conf:/etc/exim/virtuals.conf:/etc/exim/relays.conf

# If this is uncommented, we accept and relay mail for all domains we are
# in the DNS as an MX for.

#relay_domains_include_local_mx = true

# No local deliveries will ever be run under the uids of these users (a
 colon- # separated list). An attempt to do so gets changed so that it runs
 under the # uid of "nobody" instead. This is a paranoic safety catch. Note
 the default # setting means you cannot deliver mail addressed to root as if
 it were a # normal user. This isn't usually a problem, as most sites have an
 alias for # root that redirects such mail to a human administrator.

never_users = root

# The setting below causes Exim to do a reverse DNS lookup on all incoming
# IP calls, in order to get the true host name. If you feel this is too
# expensive, you can specify the networks for which a lookup is done, or
# remove the setting entirely.

host_lookup = *

# The setting below would, if uncommented, cause Exim to check the syntax of
# all the headers that are supposed to contain email addresses (To:, From:,
# etc). This reduces the level of bounced bounces considerably.

# headers_check_syntax

# Exim contains support for the Realtime Blocking List (RBL) that is being
# maintained as part of the DNS. See http://maps.vix.com/rbl/ for
# background. Uncommenting the following line will make Exim reject mail
# from any host whose IP address is blacklisted in the RBL at maps.vix.com.

rbl_domains = rbl.maps.vix.com
rbl_reject_recipients = true
rbl_warn_header = false

# The setting below allows your host to be used as a mail relay by only
# the hosts in the specified networks. See the section of the manual
# entitled "Control of relaying" for more info.

host_accept_relay = localhost : 67.32.32.0/24:67.32.33.0/24:67.32.34.0/24

# If you want Exim to support the "percent hack" for all your local domains,
# uncomment the following line. This is the feature by which mail addressed
# to x%y@z (where z is one of your local domains) is locally rerouted to
# x@y and sent on. Otherwise x%y is treated as an ordinary local part

# percent_hack_domains=*

# If this option is set, then any process that is running as one of the
# listed users may pass a message to Exim and specify the sender's
# address using the "-f" command line option, without Exim's adding a
# "Sender" header.

trusted_users = mail

# If this option is true, the SMTP command VRFY is supported on incoming
# SMTP connections; otherwise it is not.

smtp_verify = true

# Some operating systems use the "gecos" field in the system password file
# to hold other information in addition to users' real names. Exim looks up
# this field when it is creating "sender" and "from" headers. If these
 options # are set, exim uses "gecos_pattern" to parse the gecos field, and
 then # expands "gecos_name" as the user's name. $1 etc refer to sub-fields
 matched # by the pattern.

gecos_pattern = ^([^,:]*)
gecos_name = $1

# This sets the maximum number of messages that will be accepted in one
# connection. The default is 10, which is probably enough for most purposes,
# but is too low on dialup SMTP systems, which often have many more mails
# queued for them when they connect.

smtp_accept_queue_per_connection = 100

# Send a mail to the postmaster when a message is frozen. There are many
# reasons this could happen; one is if exim cannot deliver a mail with no
# return address (normally a bounce) another that may be common on dialup
# systems is if a DNS lookup of a smarthost fails. Read the documentation
# for more details: you might like to look at the auto_thaw option

freeze_tell_mailmaster = true

# This string defines the contents of the \`Received' message header that
# is added to each message, except for the timestamp, which is automatically
# added on at the end, preceded by a semicolon. The string is expanded each
# time it is used.

received_header_text = "Received: \
         ${if def:sender_rcvhost {from ${sender_rcvhost}\n\t}\
         {${if def:sender_ident {from ${sender_ident} }}\
         ${if def:sender_helo_name {(helo=${sender_helo_name})\n\t}}}}\
         by ${primary_hostname} \
         ${if def:received_protocol {with ${received_protocol}}} \
         (Exim ${version_number} #${compile_number} (Debian))\n\t\
         id ${message_id}\
         ${if def:received_for {\n\tfor <$received_for>}}"
end


######################################################################
#                      TRANSPORTS CONFIGURATION                      #
######################################################################
#                       ORDER DOES NOT MATTER                        #
#     Only one appropriate transport is called for each delivery.    #
######################################################################

maildir_delivery:
  driver = appendfile
  no_from_hack
  directory = $home/Maildir
  delivery_date_add
  envelope_to_add
  return_path_add
  maildir_format
  prefix = ""
  suffix = ""
  check_string =
  create_directory

# This transport is used for local delivery to user mailboxes. On debian
# systems group mail is used so we can write to the /var/spool/mail
# directory. (The alternative, which most other unixes use, is to deliver
# as the user's own group, into a sticky-bitted directory)

local_delivery:
  driver = appendfile
  group = mail
  mode = 0660
  mode_fail_narrower = false
  envelope_to_add = true
  file = /var/spool/mail/${local_part}

# This transport is used for handling pipe addresses generated by
# alias or .forward files. If the pipe generates any standard output,
# it is returned to the sender of the message as a delivery error. Set
# return_fail_output instead if you want this to happen only when the
# pipe fails to complete normally.

address_pipe:
  driver = pipe
  return_output

# This transport is used for handling file addresses generated by alias
# or .forward files.

address_file:
  driver = appendfile

# This transport is used for handling file addresses generated by alias
# or .forward files if the path ends in "/", which causes it to be treated
# as a directory name rather than a file name. Each message is then delivered
# to a unique file in the directory. If instead you want all such deliveries
 to # be in the "maildir" format that is used by some other mail software, #
 uncomment the final option below. If this is done, the directory specified #
 in the .forward or alias file is the base maildir directory.
#
# Should you want to be able to specify either maildir or non-maildir
# directory-style deliveries, then you must set up yet another transport,
# called address_directory2. This is used if the path ends in "//" so should
# be the one used for maildir, as the double slash suggests another level
# of directory. In the absence of address_directory2, paths ending in //
# are passed to address_directory.

address_directory:
  driver = appendfile
  no_from_hack
  prefix = ""
  suffix = ""
  maildir_format

# This transport is used for handling autoreplies generated by the filtering
# option of the forwardfile director.

address_reply:
  driver = autoreply

# This transport is used for procmail

procmail_pipe:
  driver = pipe
  command = "/usr/bin/procmail -d ${local_part}"
  return_path_add
  delivery_date_add
  envelope_to_add
  check_string = "From "
  escape_string = ">From "
  user = $local_part
  group = mail

# This transport is used for delivering messages over SMTP connections.

remote_smtp:
  driver = smtp

end


######################################################################
#                      DIRECTORS CONFIGURATION                       #
#             Specifies how local addresses are handled              #
######################################################################
#                          ORDER DOES MATTER                         #
#   A local address is passed to each in turn until it is accepted.  #
######################################################################

# This allows local delivery to be forced, avoiding alias files and
# forwarding.

real_local:
  prefix = real-
  driver = localuser
  transport = local_delivery

# This director handles aliasing using a traditional /etc/aliases file.
# If any of your aliases expand to pipes or files, you will need to set
# up a user and a group for these deliveries to run under. You can do
# this by uncommenting the "user" option below (changing the user name
# as appropriate) and adding a "group" option if necessary.

system_aliases:
  driver = aliasfile
  file_transport = address_file
  pipe_transport = address_pipe
  file = /etc/aliases
  search_type = lsearch
# user = list
# Uncomment the above line if you are running smartlist

# Virtual domain director
#
virtuals:
  driver = aliasfile
  domains = /etc/exim/virtuals.conf
  file = /etc/exim/virtuals/$domain
  search_type = lsearch
  no_more

# This director runs procmail for users who have a .procmailrc file

procmail:
  driver = localuser
  transport = procmail_pipe
  require_files =
 ${local_part}:+${home}:+${home}/.procmailrc:+/usr/bin/procmail no_verify

# This director handles forwarding using traditional .forward files.
# It also allows mail filtering when a forward file starts with the
# string "# Exim filter": to disable filtering, uncomment the "filter"
# option. The check_ancestor option means that if the forward file
# generates an address that is an ancestor of the current one, the
# current one gets passed on instead. This covers the case where A is
# aliased to B and B has a .forward file pointing to A.

# For standard debian setup of one group per user, it is acceptable---normal
# even---for .forward to be group writable. If you have everyone in one
# group, you should comment out the "modemask" line. Without it, the exim
# default of 022 will apply, which is probably what you want.

userforward:
  driver = forwardfile
  file_transport = address_file
  pipe_transport = address_pipe
  reply_transport = address_reply
  no_verify
  check_ancestor
  file = .forward
  modemask = 002
  filter

# This director matches local user mailboxes.

localuser:
  driver = localuser
  transport = maildir_delivery

end


######################################################################
#                      ROUTERS CONFIGURATION                         #
#            Specifies how remote addresses are handled              #
######################################################################
#                          ORDER DOES MATTER                         #
#  A remote address is passed to each in turn until it is accepted.  #
######################################################################

# Remote addresses are those with a domain that does not match any item
# in the "local_domains" setting above.

# This router routes to remote hosts over SMTP using a DNS lookup with
# default options.

lookuphost:
  driver = lookuphost
  transport = remote_smtp

# This router routes to remote hosts over SMTP by explicit IP address,
# given as a "domain literal" in the form [nnn.nnn.nnn.nnn]. The RFCs
# require this facility, which is why it is enabled by default in Exim.
# If you want to lock it out, set forbid_domain_literals in the main
# configuration section above.

literal:
  driver = ipliteral
  transport = remote_smtp

end


######################################################################
#                      RETRY CONFIGURATION                           #
######################################################################

# This single retry rule applies to all domains and all errors. It specifies
# retries every 15 minutes for 2 hours, then increasing retry intervals,
# starting at 2 hours and increasing each time by a factor of 1.5, up to 16
# hours, then retries every 8 hours until 4 days have passed since the first
# failed delivery.

# Domain               Error       Retries
# ------               -----       -------

*                      *           F,2h,15m; G,16h,2h,1.5; F,4d,8h

end


######################################################################
#                      REWRITE CONFIGURATION                         #
######################################################################


# There are no rewriting specifications in this default configuration file.


# This rewriting rule is particularly useful for dialup users who
# don't have their own domain, but could be useful for anyone.
# It looks up the real address of all local users in a file

*@regan.miklm.net    ${lookup{$1}lsearch{/etc/email-addresses}\
						{$value}fail} bcfrF

# End of Exim configuration file

-------------------------------------------------------

-- 
 Michael Merritt                    O2/CO2 Conversion Specialist [o]
--------------------------------------------------------------------
 michael@miklm.com | www.miklm.com | (931) 205-1392 | AIM/MSN miklm
--------------------------------------------------------------------
 "Piracy is not a technological issue. It's a behavior issue."   
                                                       --Steve Jobs


-- 
To UNSUBSCRIBE, email to debian-isp-request@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org



Reply to: