| # |
| # Postfix master process configuration file. For details on the format |
| # of the file, see the master(5) manual page (command: "man 5 master"). |
| # |
| # Do not forget to execute "postfix reload" after editing this file. |
| # |
| # ========================================================================== |
| # service type private unpriv chroot wakeup maxproc command + args |
| # (yes) (yes) (yes) (never) (100) |
| # ========================================================================== |
| <% if @clamav_enabled -%> |
| ## Amavis has been enabled because @amavisd is declared |
| policy-spf unix - n n - 0 spawn |
| user=nobody argv=/usr/bin/policyd-spf |
| |
| # AV scan filter (used by content_filter) |
| scan unix - - n - 16 smtp |
| -o smtp_send_xforward_command=yes |
| |
| # For injecting mail back into postfix from the filter |
| 127.0.0.1:10025 inet n - - - - smtpd |
| -o content_filter= |
| -o smtpd_delay_reject=no |
| -o smtpd_client_restrictions=permit_mynetworks,reject |
| -o smtpd_helo_restrictions= |
| -o smtpd_sender_restrictions= |
| -o smtpd_recipient_restrictions=permit_mynetworks,reject |
| -o smtpd_data_restrictions=reject_unauth_pipelining |
| -o smtpd_end_of_data_restrictions= |
| -o smtpd_restriction_classes= |
| -o mynetworks=127.0.0.0/8 |
| -o smtpd_error_sleep_time=0 |
| -o smtpd_soft_error_limit=1001 |
| -o smtpd_hard_error_limit=1000 |
| -o smtpd_client_connection_count_limit=0 |
| -o smtpd_client_connection_rate_limit=0 |
| -o receive_override_options=no_header_body_checks,no_unknown_recipient_checks,no_milters |
| -o local_header_rewrite_clients= |
| -o smtpd_milters= |
| -o local_recipient_maps= |
| -o relay_recipient_maps= |
| <% end -%> |
| |
| <% if @asf_mx_enabled -%> |
| smtp-amavis unix - - - - 2 smtp |
| -o smtp_data_done_timeout=1200 |
| -o smtp_send_xforward_command=yes |
| -o disable_dns_lookups=yes |
| -o max_use=20 |
| <% end -%> |
| |
| <% unless @postscreen -%> |
| smtp inet n - n - - smtpd |
| <% else -%> |
| smtp inet n - n - 1 postscreen |
| tlsproxy unix - - n - 0 tlsproxy |
| dnsblog unix - - n - 0 dnsblog |
| smtpd pass - - n - - smtpd |
| <% end -%> |
| <% @smtp_content_filter.each do |content_filter| -%> |
| -o content_filter=<%= content_filter %> |
| <% end -%> |
| <% if @submission -%> |
| submission inet n - n - - smtpd |
| -o smtpd_tls_security_level=<%= @submission_smtpd_tls_security_level %> |
| -o smtpd_sasl_auth_enable=<%= @submission_smtpd_sasl_auth_enable %> |
| -o smtpd_client_restrictions=<%= @submission_smtpd_client_restrictions %> |
| -o milter_macro_daemon_name=ORIGINATING |
| <% end -%> |
| <% if @ssl -%> |
| smtps inet n - n - - smtpd |
| -o smtpd_tls_wrappermode=yes |
| -o smtpd_sasl_auth_enable=<%= @smtps_smtpd_sasl_auth_enable %> |
| -o smtpd_client_restrictions=<%= @smtps_smtpd_client_restrictions %> |
| -o milter_macro_daemon_name=ORIGINATING |
| <% if @smtps_content_filter -%> |
| <% @smtps_content_filter.each do |content_filter| -%> |
| -o content_filter=<%= content_filter %> |
| <% end -%> |
| <% end -%> |
| <% end -%> |
| <% if @spamassassin_enabled == true -%> |
| spamassassin unix - n n - - pipe |
| flags=Rq user=debian-spamd argv=/usr/bin/spamfilter.sh -oi -f ${sender} ${recipient} |
| <% end -%> |
| |
| #628 inet n - n - - qmqpd |
| pickup fifo n - n 60 1 pickup |
| cleanup unix n - n - 0 cleanup |
| qmgr fifo n - n 300 1 qmgr |
| #qmgr fifo n - n 300 1 oqmgr |
| tlsmgr unix - - n 1000? 1 tlsmgr |
| rewrite unix - - n - - trivial-rewrite |
| bounce unix - - n - 0 bounce |
| defer unix - - n - 0 bounce |
| trace unix - - n - 0 bounce |
| verify unix - - n - 1 verify |
| flush unix n - n 1000? 0 flush |
| proxymap unix - - n - - proxymap |
| proxywrite unix - - n - 1 proxymap |
| smtp unix - - n - - smtp |
| # When relaying mail as backup MX, disable fallback_relay to avoid MX loops |
| relay unix - - n - - smtp |
| -o smtp_fallback_relay= |
| # -o smtp_helo_timeout=5 -o smtp_connect_timeout=5 |
| showq unix n - n - - showq |
| error unix - - n - - error |
| retry unix - - n - - error |
| discard unix - - n - - discard |
| local unix - n n - - local |
| virtual unix - n n - - virtual |
| lmtp unix - - n - - lmtp |
| anvil unix - - n - 1 anvil |
| scache unix - - n - 1 scache |
| |
| # |
| # ==================================================================== |
| # Interfaces to non-Postfix software. Be sure to examine the manual |
| # pages of the non-Postfix software to find out what options it wants. |
| # |
| # Many of the following services use the Postfix pipe(8) delivery |
| # agent. See the pipe(8) man page for information about ${recipient} |
| # and other message envelope options. |
| # ==================================================================== |
| # |
| # maildrop. See the Postfix MAILDROP_README file for details. |
| # Also specify in main.cf: maildrop_destination_recipient_limit=1 |
| # |
| #maildrop unix - n n - - pipe |
| # flags=DRhu user=vmail argv=/usr/local/bin/maildrop -d ${recipient} |
| # |
| # ==================================================================== |
| # |
| # The Cyrus deliver program has changed incompatibly, multiple times. |
| # |
| #old-cyrus unix - n n - - pipe |
| # flags=R user=cyrus argv=/usr/lib/cyrus-imapd/deliver -e -m ${extension} ${user} |
| # |
| # ==================================================================== |
| # |
| # Cyrus 2.1.5 (Amos Gouaux) |
| # Also specify in main.cf: cyrus_destination_recipient_limit=1 |
| # |
| #cyrus unix - n n - - pipe |
| # user=cyrus argv=/usr/lib/cyrus-imapd/deliver -e -r ${sender} -m ${extension} ${user} |
| # |
| # ==================================================================== |
| # |
| # See the Postfix UUCP_README file for configuration details. |
| # |
| #uucp unix - n n - - pipe |
| # flags=Fqhu user=uucp argv=uux -r -n -z -a$sender - $nexthop!rmail ($recipient) |
| # |
| # ==================================================================== |
| # |
| # Other external delivery methods. |
| # |
| #ifmail unix - n n - - pipe |
| # flags=F user=ftn argv=/usr/lib/ifmail/ifmail -r $nexthop ($recipient) |
| # |
| #bsmtp unix - n n - - pipe |
| # flags=Fq. user=bsmtp argv=/usr/local/sbin/bsmtp -f $sender $nexthop $recipient |
| # |
| #scalemail-backend unix - n n - 2 pipe |
| # flags=R user=scalemail argv=/usr/lib/scalemail/bin/scalemail-store |
| # ${nexthop} ${user} ${extension} |
| # |
| #mailman unix - n n - - pipe |
| # flags=FR user=list argv=/usr/lib/mailman/bin/postfix-to-mailman.py |
| # ${nexthop} ${user} |
| <% if @virtual_transport == 'dovecot' -%> |
| dovecot unix - n n - - pipe |
| flags=DRhu user=vmail:vmail argv=<%= @dovecot_directory %>/deliver -f ${sender} -d <%= @dovecot_destination %> |
| <% end -%> |
| <% @master_services.each do |service| -%> |
| <%= service %> |
| <% end -%> |