Le 10/12/2010 03:43, Robert Moskowitz a écrit :
On 12/09/2010 10:31 AM, mouss wrote:
Le 09/12/2010 14:54, Robert Moskowitz a écrit :
This is a new install on Fedora 12 using the tools from:
http://wiki.amahi.org/index.php/Amahi_Mail_System
We have patched the Postfix source to add the Quota patch. It would be
REALLY nice if this was just a part of Postfix
The VDA is patch is not supported. it doesn't look like there's
anything new that would cause change...
I assumed it was not supported, or it would not still be a patch. Why is
it likely to be supported? It seems quotas are common, is there a
bettter way?
quotas are indeed common, but they pose some hard issues that aren't
easy to resolve.
- most people implement that on the delivery side. that will cause
bounces, but as far as you filter spam "enough" and you don't send too
much bounces (that is: over quota situation are not the norm in your
setup), it should be ok.
- there's a policy service
http://postfixquotareject.ramattack.net/
(I've never tried it)
other approaches exist as well. my favourite is to setup two levels of
quota. say:
- "guaranteed" quota: for example, user has up to 100 Mo
- "tolerated" quota: we can accept as much as 500 Mo for user, but
without guarantee
when a user is above his "guaranteed" quota, he is notified to purge his
mail. at say 200 Mo, he is added to an access table and his mail is
rejected. once he purges his mail, he asks to be unlisted.
DCC looks like is is just not working. LOTS of failures to connect. What
port does it use? Perhaps I am blocking it.
sooorry. I don't use DCC. anyway this is off topic here.
But perhaps someone else here does use it...
according to the web, dcc uses port 6277/udp. that's as much as I can say!
[snip]
inet_interfaces = all
this the default. just remove the setting from your main.cf.
I need eth0 and loopback. These are the only interfaces on the box. What
is the difference between all or eth0, lo ?
"all" means all interfaces. so it will include eth0 and lo. if these are
the only interfaces on your box, just remove the setting.
inet_protocols = all
mail_owner = postfix
mailq_path = /usr/bin/mailq.postfix
manpage_directory = /usr/share/man
mydestination = klovia.htt-consult.com, localhost, localhost.localdomain
myhostname = klovia.htt-consult.com
mynetworks = 127.0.0.0/8
good.
you don't have mydomain nor myorigin. the default values will apply.
if the defaults are ok, then it's ok. otherwise, specify explicitely.
My understanding is that the domain SQL table replaces this?
No, not mydomain and myorigin. by default:
- mydomain is derived from myhostname. in your case, it is
htt-consult.com. if this is what you want, then it's ok.
- by default, myorigin=$myhostname. This is the domain added to
addresses without a domain. so in your case, mail sent to <joe> will be
sent to <j...@klovia.htt-consult.com>. if you don't want the klovia part, set
myorigin = $mydomain
to check default values on your system, use 'postconf -d'.
newaliases_path = /usr/bin/newaliases.postfix
proxy_read_maps = $local_recipient_maps $mydestination
$virtual_alias_maps $virtual_alias_domains $virtual_mailbox_maps $vi
rtual_mailbox_domains $relay_recipient_maps $relay_domains
$canonical_maps $sender_canonical_maps $recipient_canonical_maps
$relocated_maps $transport_maps $mynetworks $virtual_mailbox_limit_maps
queue_directory = /var/spool/postfix
readme_directory = /usr/share/doc/postfix-2.6.5/README_FILES
receive_override_options = no_address_mappings
recipient_delimiter = +
you don't have relay_domains. check the default. if you don't need
relay_domain. specify
relay_domains =
explicitely.
According to: http://www.postfix.org/postconf.5.html
"allow_untrusted_routing (default: no)
Forward mail with sender-specified routing (us...@%!]remote[@%!]site)
from untrusted clients to destinations matching $relay_domains.
By default, this feature is turned off. This closes a nasty open relay
loophole where a backup MX host can be tricked into forwarding junk mail
to a primary MX host which then spams it out to the world. "
this is unrelated. in the default setup, your server will accept mail
for any *.klovia.htt-consult.com domain. Some people need this setup
(compaptibility setting, so that they get mail for every unix box...),
but apparently, you don't need this. so use
relay_domains =
sample_directory = /usr/share/doc/postfix-2.6.5/samples
sendmail_path = /usr/sbin/sendmail.postfix
setgid_group = postdrop
smtpd_recipient_restrictions = permit_mynetworks,
permit_sasl_authenticated, reject_unauth_destination
you might need some anti-spam checks, such as
reject_rbl_client zen.spamhaus.org
I am running quite a bit of spam checking. Spamassassin along with
amavisd and clamav.
Razor, Pyzor and DCC are the spamfilters in use.
But DCC gives me all those connection errors, I need to find out what
port it is using and if I have it blocked at my firewall.
