I recently tweaked my settings for my postfix configuration so that I have
the following defined for the 465 & submission port smtpds:
-o smtpd_recipient_restrictions=
-o smtpd_relay_restrictions=permit_sasl_authenticated,reject
-o smtpd_end_of_data_restrictions=
However, this broke cbpolicyd checking on those ports. I believe the
correct solution is to just set:
-o smtpd_recipient_restrictions=
-o smtpd_relay_restrictions=permit_sasl_authenticated,reject
and allow the postconf setting for smtpd_end_of_data_restrictions to apply:
$ postconf smtpd_end_of_data_restrictions
smtpd_end_of_data_restrictions = check_policy_service inet:localhost:10031
I.e., I believe I should leave smtpd_recipient_restrictions and
smtpd_relay_restrictions unchanged for 465/submission. Does that seem
correct?
Thanks,
Quanah
--
Quanah Gibson-Mount
Sr. Member of Technical Staff
Zimbra, Inc
A Division of VMware, Inc.
--------------------
Zimbra :: the leader in open source messaging and collaboration