On Sun, 8 Dec 2024 21:59:00 +1100
Viktor Dukhovni via Postfix-users <postfix-users@postfix.org> wrote:
- It looks like smtpd(8) on port 25 only uses cleanup(8) via verify(8),
that's not the case. The communication with verify(8) is an exception
for recipient/sender verification, not the rule, and actual messages
are passed through cleanup.
On 09.12.24 08:10, Sad Clouds via Postfix-users wrote:
OK thanks for the info. Another question - does it make sense for
anvil(8) and verify(8) to be used with smtpd mail submission on port
587, or are they only used with smtpd mail relay on port 25?
anvil is used by default by smtpd servers on other ports.
I'm not even sure we can disable it.
However, for better structured policing I recommend using postfwd as policy
service.
verify is used when you call reject_unverified_sender or
reject_unverified_recipient in smtpd_*_restrictions. This means, if you
define it in main.cf and don't override in master.cf, it gets used for
client connections.
Note that MUAs may have troubles understanging rejections of e.g. recipient
addresses, so for client connections it may be better to accept all
recipients and send bounces.
You may want to verify sender addresses then, but I guess you should do that
anyway.
- You don't have "proxyread" which is handy to for LDAP, MySQL, Postgres
table lookups and even "unix:*.byname" when chrooted. But in high
volume systems such tables must not be used for the transport table,
because qmgr<->trivial-rewrite lookups are sequential and should have
very low latency.
I previously looked at proxymap(8) man page but couldn't figure out
which processes used it directly. Is it used directly by most delivery
agents (local, virtual, pipe, lmtp, smtp, etc) or is there some other
arrangement?
proxymap is used when your directives to any ACL as "proxy:" e.g.:
postscreen_cache_map = proxy:btree:$data_directory/postscreen_cache
local_recipient_maps = proxy:unix:passwd.byname $alias_maps $virtual_alias_maps
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
Linux IS user friendly, it's just selective who its friends are...
_______________________________________________
Postfix-users mailing list -- postfix-users@postfix.org
To unsubscribe send an email to postfix-users-le...@postfix.org
