[Postfixbuch-users] postfix mit tls

Matthias Albert matthias at ma-c.de
Mi Mär 17 18:25:57 CET 2004


> Am Mittwoch, 17. März 2004 18:15 schrieb Matthias Albert:
> 
> > ich würde gerne meinem postfix noch tls beibringen wollen.
> > Folgendes hab ich getan:
> >
> > postfix mit ssl compiliert
> > (make -f Makefile.init makefiles CCARGS="-DHAS_MYSQL
> > -I/usr/include/mysql -DUSE_SASL_AUTH -I/usr/local/include/sasl -DHAS_SSL
> > -I/usr/include/openssl" AUXLIBS="-L/usr/lib -lmysqlclient -lz -lm
> > -L/usr/local/lib -lsasl2 -L/usr/lib -lssl -lcrypto")
> 
> Den Patch hast Du installiert?
nein, ich hab postfix nicht gepatcht...wo find ich den?

> > main.cf
> > ********
> >
> > smtpd_use_ask_ccert = yes
> > smtpd_use_tls = yes
> > smtpd_tls_key_file = /etc/postfix/newreq.pem
> > smtpd_tls_cert_file = /etc/postfix/newcert.pem
> > smtpd_tls_CAfile = /etc/postfix/cacert.pem
> > smtpd_tls_received_header = yes
> > smtpd_tls_session_cache_timeout = 3600s
> > smtpd_sasl_local_domain = meinedomain.com
> 
> postconf -n
> 
> bitte
> 
postconf -n
alias_database = hash:/etc/aliases
alias_maps = mysql:/etc/postfix/mysql_virtual_alias_maps.cf
append_dot_mydomain = yes
biff = no
broken_sasl_auth_clients = yes
command_directory = /usr/sbin
config_directory = /etc/postfix
daemon_directory = /usr/lib/postfix
default_transport = smtp
home_mailbox = Maildir/
mail_owner = postfix
mailbox_command =
mailbox_size_limit = 0
mailq_path = /usr/bin/mailq
manpage_directory = /usr/local/man
myhostname = router.kaiserwg.homeunix.com
mynetworks = 127.0.0.1 127.0.0.0/8 192.168.1.0/24 192.168.0.0/24
myorigin = $my_domain
newaliases_path = /usr/bin/newaliases
program_directory = /usr/lib/postfix
queue_directory = /var/spool/postfix
readme_directory = no
recipient_delimiter = +
relay_domains = kaiserwg.homeunix.com, $mydestination
relayhost =
sample_directory = /etc/postfix
sendmail_path = /usr/sbin/sendmail
setgid_group = postdrop
smtpd_banner = $myorigin Mail Server (Debian/Woody)
smtpd_helo_required = yes
smtpd_helo_restrictions = permit_sasl_authenticated, permit_mynetworks,
reject_invalid_hostname, reject_unknown_hostname,
reject_non_fqdn_hostname, reject_unauth_pipelining
smtpd_recipient_restrictions = permit_mynetworks,
permit_sasl_authenticated, reject_unauth_destination
smtpd_sasl_auth_enable = yes
smtpd_sasl_local_domain = kaiserwg.homeunix.com
smtpd_sasl_security_options = noanonymous
smtpd_sender_restrictions = reject_unknown_sender_domain,
reject_non_fqdn_sender
unknown_local_recipient_reject_code = 450
virtual_alias_maps = mysql:/etc/postfix/mysql_virtual_alias_maps.cf
virtual_gid_maps = static:5001
virtual_mailbox_base = /frei/Mail-base/
virtual_mailbox_domains =
mysql:/etc/postfix/mysql_virtual_domains_maps.cf
virtual_mailbox_limit = 51200000
virtual_mailbox_maps = mysql:/etc/postfix/mysql_virtual_mailbox_maps.cf
virtual_minimum_uid = 5001
virtual_transport = virtual
virtual_uid_maps = static:5001


> -- 
> 	Andreas




Mehr Informationen über die Mailingliste Postfixbuch-users