I recently tweaked my settings for my postfix configuration so that I have the following defined for the 465 & submission port smtpds:

   -o smtpd_recipient_restrictions=
   -o smtpd_relay_restrictions=permit_sasl_authenticated,reject
   -o smtpd_end_of_data_restrictions=

However, this broke cbpolicyd checking on those ports. I believe the correct solution is to just set:

   -o smtpd_recipient_restrictions=
   -o smtpd_relay_restrictions=permit_sasl_authenticated,reject

and allow the postconf setting for smtpd_end_of_data_restrictions to apply:

$ postconf smtpd_end_of_data_restrictions
smtpd_end_of_data_restrictions = check_policy_service inet:localhost:10031

I.e., I believe I should leave smtpd_recipient_restrictions and smtpd_relay_restrictions unchanged for 465/submission. Does that seem correct?

Thanks,
Quanah

--

Quanah Gibson-Mount
Sr. Member of Technical Staff
Zimbra, Inc
A Division of VMware, Inc.
--------------------
Zimbra ::  the leader in open source messaging and collaboration

Reply via email to