/[adm]/puppet/modules/postfix/templates/main.cf
ViewVC logotype

Contents of /puppet/modules/postfix/templates/main.cf

Parent Directory Parent Directory | Revision Log Revision Log


Revision 340 - (show annotations) (download)
Sat Nov 20 11:52:54 2010 UTC (13 years, 5 months ago) by misc
File size: 2916 byte(s)
- do not let file with passwords to be world readable 
    ( even if being readable by apache is not good either, but needed as the password is used by apache )
- use ldaps for sympa
- use the 2 new facter macro and remove the version copied everywhere
- remove hardcoded domain in bugzilla and others

1 # Please be sure to read the /usr/share/doc/postfix/README.MDK file
2 # to learn about differences from stock postfix to Mandriva package.
3 # This file contains only the parameters changed from a default install
4 # see /etc/postfix/main.cf.dist for a commented, fuller version of this file.
5
6
7 # These are changed by postfix install script
8 readme_directory = /usr/share/doc/postfix/README_FILES
9 html_directory = /usr/share/doc/postfix/html
10 sendmail_path = /usr/sbin/sendmail.postfix
11 setgid_group = postdrop
12 command_directory = /usr/sbin
13 manpage_directory = /usr/share/man
14 daemon_directory = <%= lib_dir %>/postfix/
15 data_directory = /var/lib/postfix
16 newaliases_path = /usr/bin/newaliases
17 mailq_path = /usr/bin/mailq
18 queue_directory = /var/spool/postfix
19 mail_owner = postfix
20
21 # User configurable parameters
22
23 <% if all_tags.include?('postfix::simple_relay') %>
24 inet_interfaces = localhost
25 <% else %>
26 inet_interfaces = all
27 <% end %>
28
29 inet_protocols = all
30 mynetworks_style = host
31 myhostname = <%= fqdn %>
32 mydomain = <%= domain %>
33 mydestination = <%= fqdn %>
34 myorigin = $mydomain
35 <%- if all_tags.include?('postfix::secondary_smtp') -%>
36 relay_domains = <%= domain %>, ml.<%= domain %>
37 <%- end -%>
38
39 mydestination = <%= fqdn %>
40 <%- if all_tags.include?('postfix::primary_smtp') -%>
41 <%= domain %>,
42 <%- if classes.include?('sympa') -%>
43 ml.<%= domain %>
44 <%- end -%>
45
46 alias_maps = hash:/etc/aliases
47 # uncomment if we want to enable ldap based alias
48 # and create the file
49 #ldap:/etc/postfix/ldap_aliases.conf
50 <%- end -%>
51
52
53 <%- if all_tags.include?('postfix::smtp_server') -%>
54 transport_maps = regexp:/etc/postfix/transport_regexp
55 <%- end -%>
56
57 <%- if classes.include?('sympa') -%>
58 sympa_destination_recipient_limit = 1
59 sympabounce_destination_recipient_limit = 1
60 <%- end -%>
61
62 #delay_warning_time = 4h
63 smtpd_banner = $myhostname ESMTP $mail_name ($mail_version) (Mandriva Linux)
64 unknown_local_recipient_reject_code = 450
65 smtp-filter_destination_concurrency_limit = 2
66 lmtp-filter_destination_concurrency_limit = 2
67 smtpd_use_tls = yes
68 smtpd_tls_cert_file = /etc/pki/tls/certs/postfix.pem
69 smtpd_tls_key_file = /etc/pki/tls/private/postfix.pem
70 smtpd_tls_CAfile = /etc/pki/tls/certs/ca-bundle.crt
71
72 <%- if all_tags.include?('postfix::smtp_server') -%>
73 smtpd_etrn_restrictions = reject
74
75 smtpd_helo_required = yes
76
77 smtpd_data_restrictions = reject_unauth_pipelining
78 reject_multi_recipient_bounce
79
80 smtpd_recipient_restrictions = reject_non_fqdn_recipient
81 reject_non_fqdn_sender
82 # not done yet, not sure if we need to offer this kind of service
83 # permit_sasl_authenticated
84 permit_mynetworks
85 reject_unauth_destination
86 reject_non_fqdn_helo_hostname
87 reject_unknown_sender_domain
88 reject_unknown_client
89 <%- if classes.include?('postgrey') -%>
90 check_policy_service unix:extern/postgrey/socket
91 <%- end -%>
92 <%- end -%>
93

  ViewVC Help
Powered by ViewVC 1.1.30