On Thursday 29 Jun 2006 02:21, alan premselaar wrote:
I don't use postfix, but I have basically the same setup using dovecot.
I do, and there is a nice how-to for Postfix/Dovecot/MySQL in the Wiki I believe.
A) I need multi-domain support, with <joe@xyz.com> and <joy@qbc.net> being separate users.
although I personally don't do this (for lack of need, really), it should be doable. You'll want to make sure that whatever back-end you're using for postfix to support multi-domains is configured appropriately for dovecot as well.
I do -- see the how-to.
I personally use filesystem quotas. with this, if the user goes over quota they are no longer able to receive email. my current setup will permfail incoming mail if the system is unable to store it with an error stating "user over quota." this is my preference.
I think the "over quota then defer temporarily" is a mistake. Since it will queue overquota email in the queue, and no one but the admin will know where it is. Either reject it out right, or deliver it and moan at people who are over quota. Heck if Google can give a couple of Gigabytes to people...
I don't do quota's, it is generally a feature of the mail delivery agent. I think Maildrop can do it with virtual users and Postfix, but I've not done this.
Go for the "we'll delete the oldest mail first if you are over quota" would be my advice.... but go carefully and back it up first ;) This is relatively easy with maildir.
C) Password changes. How can I have user-changable pw's, with crack/sanity checking of the new ones? Do I have to have accessible shell accounts on the box for each user? [argh]
Depends where you store the username/password. I've stuck it in a Postgres database, and would need to write a little web application to allow this.
D) Spam: assume I can run spam-assassin and have it move suspected mail into a Junque mailbox; true?
Please don't do this. "Junk" folders for stuff you aren't sure on will be a place where real email rots, or users waste time. Reject the spam as promptly as possible, and let the sender sort out false positives -- harsh but I think the right thing. The alternative is the sender thinks it is read, and the receiver quietly ignores it, and email is perceived as unreliable.
Try this article I wrote here and see if you still feel the need; http://www.debian-administration.org/articles/168
E) Non-guru creation/deletion of accounts: It appears from "Virtual Users" that this is possible via a text file, but I'm not sure...
you can use a passwd style text file as your authentication backend with dovecot, but the question is will your MTA (postfix?) support that for accepting mail? probably not.
Postfix is very happy making a hash out of simple text files for users or virtual users -- but I'd recommend the database approach myself - far more flexible.
Of course you put stuff in a text file, you likely have to write the tools to do the password change as well in that text file. We have one system where the text files are written from the database - for added complexity ;)