Documents
Howtos — main.cf
The following is Postfix's main.cf file.# -------------------------------------------------------------------------
# created by: Howard R. Bagcat
# created on: 2003.06.07
# updated on: 2008.07.12
# -------------------------------------------------------------------------
queue_directory = /var/spool/postfix
command_directory = /usr/sbin
daemon_directory = /usr/libexec/postfix
mail_owner = postfix
myhostname = sinai.mu.edu.ph
mydomain = mu.edu.ph
myorigin = $mydomain
inet_interfaces = all
mydestination =
local_recipient_maps = proxy:pgsql:/etc/postfix/vmail/pgsql_recipient_maps.cf
unknown_local_recipient_reject_code = 550
# -------------------------------------------------------------------------
# harishon, hasheni, and zion should be included in the list so logs via
# email will be forwarded.
# -------------------------------------------------------------------------
mynetworks = 127.0.0.1
relay_recipient_maps = proxy:pgsql:/etc/postfix/vmail/pgsql_recipient_maps.cf
# -------------------------------------------------------------------------
# Below configurations are added to enable soft quota implemented
# by Postfix's VDA Patch
# Added on: Sep.25.2003
# -------------------------------------------------------------------------
virtual_alias_domains =
virtual_alias_maps = proxy:pgsql:/etc/postfix/vmail/pgsql_virtual_alias_maps.cf
virtual_gid_maps = static:491
virtual_mailbox_base = /
virtual_mailbox_domains = proxy:pgsql:/etc/postfix/vmail/pgsql_virtual_domains_maps.cf
virtual_mailbox_maps = proxy:pgsql:/etc/postfix/vmail/pgsql_virtual_mailbox_maps.cf
virtual_uid_maps = static:501
maildrop_destination_recipient_limit = 1
virtual_transport = maildrop
virtual_mailbox_limit_maps = pgsql:/etc/postfix/vmail/pgsql_mailbox_limit_maps.cf
virtual_mailbox_limit_override = yes
virtual_maildir_limit_message = "The user you are trying to reach is over quota."
virtual_maildir_extended = yes
virtual_maildir_suffix =
virtual_create_maildirsize = yes
virtual_overquota_bounce = yes
# -------------------------------------------------------------------------
# message_size_limit should work with php's /etc/php.ini settings,
# which are memory_limit and upload_max_filesize current memory_limit=200M,
# upload_max_filesize=180MB, and message_size_limit=180000*1024=184320000
# -------------------------------------------------------------------------
message_size_limit = 30720000
# -------------------------------------------------------------------------
# Below configurations are added to tighten postfix
# Added on: Nov.24.2004
# -------------------------------------------------------------------------
default_process_limit = 3
disable_vrfy_command = yes
smtpd_delay_reject = yes
smtpd_error_sleep_time = 60
smtpd_hard_error_limit = 10
smtpd_helo_required = yes
smtpd_soft_error_limit = 60
smtpd_client_restrictions =
#reject_unknown_client,
permit_mynetworks,
permit_sasl_authenticated,
reject_rbl_client cbl.abuseat.org,
reject_rbl_client list.dsbl.org,
reject_rbl_client sbl-xbl.spamhaus.org,
check_client_access hash:/etc/postfix/vmail/check_client_access,
permit
smtpd_data_restrictions =
reject_unauth_pipelining,
permit
smtpd_helo_restrictions =
#reject_invalid_hostname,
reject_non_fqdn_hostname,
reject_unknown_hostname,
permit_mynetworks,
check_helo_access pgsql:/etc/postfix/vmail/check_helo.pgsql,
permit
smtpd_recipient_restrictions =
reject_non_fqdn_recipient,
reject_unknown_recipient_domain,
reject_unlisted_recipient,
permit_mynetworks,
permit_sasl_authenticated,
reject_unauth_destination,
check_recipient_access pcre:/etc/postfix/vmail/check_recipient_access.pcre,
#check_recipient_maps pgsql:/etc/postfix/vmail/check_recipient_maps.pgsql,
permit
smtpd_sender_restrictions =
reject_non_fqdn_sender,
reject_unknown_sender_domain,
#reject_unlisted_sender,
permit_mynetworks,
permit_sasl_authenticated,
reject_sender_login_mismatch,
reject_authenticated_sender_login_mismatch,
reject_unauthenticated_sender_login_mismatch,
reject_rhsbl_sender dsn.rfc-ignorant.org,
#check_sender_access pgsql:/etc/postfix/vmail/check_sender_access.pgsql,
permit
# -------------------------------------------------------------------------
# Below configuration are added for smtp-auth using sasl
# Added on: jul.15.2006
# -------------------------------------------------------------------------
smtpd_sasl_auth_enable = no
smtpd_sasl_auth_clients = no
smtpd_sasl_local_domain =
smtpd_sasl_security_options = noanonymous
broken_sasl_auth_clients = no
smtp_use_tls = no
smtp_tls_note_starttls_offer = no
#smtp_tls_cert_file = /etc/postfix/tls/smtpd.cert
#smtp_tls_key_file = /etc/postfix/tls/smtpd.key
smtp_tls_loglevel = 1
smtpd_use_tls = no
smtpd_tls_auth_only = no
smtpd_tls_cert_file = /etc/postfix/tls/smtpd.cert
smtpd_tls_key_file = /etc/postfix/tls/smtpd.key
smtpd_tls_loglevel = 1
smtpd_tls_received_header = yes
smtpd_tls_session_cache_timeout = 3600s
alias_maps = hash:/etc/aliases
alias_database = hash:/etc/aliases
home_mailbox = Maildir/
mail_spool_directory = /var/spool/mail
smtpd_banner = sinai.mu.edu.ph ESMTP $mail_name
debug_peer_level = 2
debugger_command =
PATH=/bin:/usr/bin:/usr/local/bin:/usr/X11R6/bin
xxgdb $daemon_directory/$process_name $process_id & sleep 5
sendmail_path = /usr/sbin/sendmail.postfix
newaliases_path = /usr/bin/newaliases.postfix
mailq_path = /usr/bin/mailq.postfix
setgid_group = postdrop