> On Jan 19, 2018, at 9:55 AM, Zach Sheppard <zshepp...@g.oconee.k12.sc.us>
> wrote:
>
> bounce_queue_lifetime = 0
This is a bad idea. Don't do that. Allow transient delivery failures
to be retried.
> default_destination_concurrency_limit = 50
This is the default, remove the setting.
> internal_mail_filter_classes = bounce, notify
Leave this setting at its default value by removing it from main.cf.
> notify_classes = bounce, resource, software
Consider setting this empty, when sending bulk mail, your source of
notices is the mail log, not per-message notices.
> smtp_connect_timeout = 10s
This is may be a bit short, but should be OK unless some destination is
under sustained heavy load.
> smtpd_tls_session_cache_database = btree:${data_directory}/smtpd_scache
You can/should set this empty, and leave session caching to the client via
session tickets.
> smtp_helo_timeout = 30s
This too can be a bit short for overloaded peers.
> smtp_tls_session_cache_database = btree:${data_directory}/smtp_scache
This is your client session cache, correctly configured, DO NOT also
clear this when clearing the smtpd setting.
> --master.cf--
> smtp inet n - y - - smtpd
> pickup unix n - y 60 1 pickup
> cleanup unix n - y - 0 cleanup
> qmgr unix n - n 300 1 qmgr
> tlsmgr unix - - y 1000? 1 tlsmgr
> rewrite unix - - y - - trivial-rewrite
> bounce unix - - y - 0 bounce
> defer unix - - y - 0 bounce
> trace unix - - y - 0 bounce
> verify unix - - y - 1 verify
> flush unix n - y 1000? 0 flush
> proxymap unix - - n - - proxymap
> proxywrite unix - - n - 1 proxymap
> smtp unix - - y - - smtp
> relay unix - - y - - smtp
> showq unix n - y - - showq
> error unix - - y - - error
> retry unix - - y - - error
> discard unix - - y - - discard
> local unix - n n - - local
> virtual unix - n n - - virtual
> lmtp unix - - y - - lmtp
> anvil unix - - y - 1 anvil
> scache unix - - y - 1 scache
> [...]
The master.cf file looks fairly normal, but uses chroot for many
services. This can make for fragile management of the system when
the chroot jail is subtly misconfigured, but is not necessarily a
problem (when done right).
--
Viktor.
