[Postfixbuch-users] Postfix Start Script ändern.

Günther J. Niederwimmer gjn at gjn.priv.at
Fr Jul 12 13:38:08 CEST 2013


Hallo Andreas,

Am Freitag, 12. Juli 2013, 12:06:06 schrieb Andreas Schulze:
> Am 12.07.2013 12:00 schrieb Günther J. Niederwimmer:
> > Ich will endlich die Spamer Gefahr bannen, gestern Nacht hatte ich wieder
> > einmal so ein Problem 12500 Spam in 20 Minuten :((.
> 
> Wenn Postfix Empfänger gegen einen LDAP-Server prüfen soll (das nehmen ich
> hier mal an) *und* der LDAP-Server nicht erreichbar ist, so leht postfix
> die Nachrichten mit einem temporären Fehler ab.

dachte / hoffte  ich bis jetzt  eigentlich auch, aber da dürfte was "anders" 
laufen :(.
 
> Wenn bei Dir also wg. nicht erreichbarem LDAP-Server SPAM angenommen wird,
> hast Du ein Problem mit der Konfiguration.

Könnte da einer drüber schauen was ich verbockt habe....

Was könnte da falsch sein ?

postconf -n
alias_maps = hash:/etc/aliases, , , ldap:/etc/postfix/ldapalias_maps.cf, 
ldap:/etc/postfix/ldapgalias_maps_both.cf, 
ldap:/etc/postfix/ldapgalias_maps_member.cf, 
ldap:/etc/postfix/ldapgalias_maps_folder.cf, 
ldap:/etc/postfix/ldapgalias_maps_forward.cf, 
ldap:/etc/postfix/ldapualias_maps_folder.cf, 
ldap:/etc/postfix/ldapualias_maps_forward.cf
biff = no
canonical_maps = hash:/etc/postfix/canonical
command_directory = /usr/sbin
config_directory = /etc/postfix
content_filter = amavis:[127.0.0.1]:10024
daemon_directory = /usr/lib/postfix
data_directory = /var/lib/postfix
debug_peer_level = 2
debugger_command = PATH=/bin:/usr/bin:/usr/local/bin:/usr/X11R6/bin ddd 
$daemon_directory/$process_name $process_id & sleep 5
defer_transports =
delay_warning_time = 1h
disable_dns_lookups = no
disable_mime_output_conversion = no
home_mailbox =
html_directory = /usr/share/doc/packages/postfix-doc/html
inet_interfaces = all
inet_protocols = all
mail_owner = postfix
mail_spool_directory =
mailbox_command =
mailbox_size_limit = 0
mailbox_transport = lmtp:unix:/var/lib/imap/socket/lmtp
mailq_path = /usr/bin/mailq
manpage_directory = /usr/share/man
masquerade_classes = envelope_sender, header_sender, header_recipient
masquerade_domains = ldap:/etc/postfix/ldapmasquerade_domains.cf
masquerade_exceptions = root
message_size_limit = 204800000
message_strip_characters = \0
mydestination = $myhostname, localhost.$mydomain, .$mydomain, 
ldap:/etc/postfix/ldapmydestination.cf
myhostname = smtp.4gjn.com
mynetworks = 127.0.0.0/8, 192.168.100.0/24, 89.xxx.xxx.0/28, [::1]/128, 
[2001:15c0:xxxx:xxxx::]/64
mynetworks_style = subnet
newaliases_path = /usr/bin/newaliases
queue_directory = /var/spool/postfix
readme_directory = /usr/share/doc/packages/postfix-doc/README_FILES
relayhost =
relocated_maps = hash:/etc/postfix/relocated
sample_directory = /usr/share/doc/packages/postfix-doc/samples
sender_canonical_maps = hash:/etc/postfix/sender_canonical
sendmail_path = /usr/sbin/sendmail
setgid_group = maildrop
smtp_enforce_tls = no
smtp_sasl_auth_enable = no
smtp_sasl_security_options = noanonymous
smtp_tls_enforce_peername = yes
smtp_tls_per_site = ldap:/etc/postfix/ldapsmtp_tls_per_site.cf
smtp_use_tls = yes
smtpd_banner = $myhostname ESMTP $mail_name
smtpd_client_restrictions = permit_mynetworks, reject_rbl_client 
ix.dnsbl.manitu.net, reject_rbl_client zen.spamhaus.org, reject_rbl_client 
dnsbl.sorbs.net, reject_rbl_client virbl.dnsbl.bit.nl, 
ldap:/etc/postfix/ldapaccess.cf, reject_unknown_client
smtpd_helo_required = yes
smtpd_helo_restrictions = permit_mynetworks, reject_invalid_hostname
smtpd_recipient_restrictions = permit_sasl_authenticated, 
permit_auth_destination, permit_mynetworks, reject_unauth_destination, reject
smtpd_sasl_auth_enable = yes
smtpd_sender_restrictions = ldap:/etc/postfix/ldapaccess.cf
smtpd_tls_CApath = /etc/ssl/certs
smtpd_tls_auth_only = no
smtpd_tls_cert_file = /etc/ssl/servercerts/servercert.pem
smtpd_tls_key_file = /etc/ssl/servercerts/serverkey.pem
smtpd_use_tls = yes
strict_8bitmime = no
strict_rfc821_envelopes = yes
transport_maps = ldap:/etc/postfix/ldaptransport_maps.cf
unknown_local_recipient_reject_code = 550
virtual_alias_domains = ldap:/etc/postfix/ldapvirtual_alias_domains.cf
virtual_alias_maps = ldap:/etc/postfix/ldapuser_recipient_maps.cf, 
ldap:/etc/postfix/ldapgroup_recipient_maps.cf

-- 
mit freundlichen Grüßen / best Regards,

 Günther J. Niederwimmer



Mehr Informationen über die Mailingliste Postfixbuch-users